Edit tour

Windows Analysis Report
http://ncn.acemlna.com

Overview

General Information

Sample URL:	http://ncn.acemlna.com
Analysis ID:	1590712
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected phishing page

HTML body contains low number of good links

HTML page contains hidden javascript code

HTML title does not match URL

Stores files to the Windows start menu directory

Suspicious form URL found

Classification

Process Tree

System is w10x64

chrome.exe (PID: 6464 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)

chrome.exe (PID: 5892 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2144 --field-trial-handle=2088,i,16625285114836644899,6677384631365489022,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)

chrome.exe (PID: 5460 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://ncn.acemlna.com" MD5: 83395EAB5B03DEA9720F8D7AC0D15CAA)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

AI detected phishing page

Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin

Joe Sandbox AI: Score: 7 Reasons: The brand 'Ncnielsen' is associated with the domain 'ncnielsen.com'., The URL 'ncn.activehosted.com' does not match the legitimate domain 'ncnielsen.com'., The domain 'activehosted.com' suggests a third-party hosting or service provider, which could be legitimate if Ncnielsen uses this service., The presence of input fields for 'Username / Email' and 'Password' on a non-matching domain increases the risk of phishing., The URL does not contain obvious misspellings or suspicious characters, but the use of a third-party domain is a common phishing tactic. DOM: 2.11.pages.csv

Source: https://ncn.activehosted.com/admin/	HTTP Parser: Number of links: 0
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Number of links: 0

Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin

HTTP Parser: Base64 decoded: UQUWRXUS

Source: https://ncn.activehosted.com/admin/	HTTP Parser: Title: NCN Email Marketing does not match URL
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Title: NCN Email Marketing does not match URL

Source: https://ncn.activehosted.com/admin/	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Form action: login.php

Source: https://ncn.activehosted.com/admin/	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=1&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=2&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: Iframe src: https://solve-widget.forethought.ai/?v=2#src=https%3A%2F%2Fsolve-widget.forethought.ai%2Fembed.js&async=true&id=forethought-widget-embed-script&emit-tracking-events=true&data-api-key=2310ff96-9b16-4a77-9601-827429c9507c&data-ft-workflow-tag=login&data-ft-originatingdomain=ncn.activehosted.com&data-ft-randomizer=2&config-ft-ignore-persistence-parameters=async%7Cdata-ft-originatingDomain%7Cdata-ft-randomizer%7Cdata-ft-embed-script-language&data-ft-embed-script-language=en-US

Source: https://ncn.activehosted.com/admin/	HTTP Parser: <input type="password" .../> found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: <input type="password" .../> found

Source: https://ncn.activehosted.com/admin/	HTTP Parser: No favicon
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No favicon
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No favicon
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No favicon

Source: https://ncn.activehosted.com/admin/	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="author".. found

Source: https://ncn.activehosted.com/admin/	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found
Source: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	HTTP Parser: No <meta name="copyright".. found

Source: unknown

HTTPS traffic detected: 173.222.162.55:443 -> 192.168.2.10:49842 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.85
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.55
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ncn.acemlna.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/ HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q
Source: global traffic	HTTP traffic detected: GET /admin/css/camp-colors.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/css/skin.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/css/animations.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/css/header.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/css/footer.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ncn.activehosted.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery-migrate/3.5.2/jquery-migrate.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ncn.activehosted.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/skin2.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jqueryui/1.13.2/jquery-ui.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ncn.activehosted.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/css-vars-ponyfill/2.4.9/css-vars-ponyfill.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ncn.activehosted.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery-migrate/3.5.2/jquery-migrate.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/content.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ac_global/fontello/css/ac-icons.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/css-vars-ponyfill/2.4.9/css-vars-ponyfill.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/style.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/css/default.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jqueryui/1.13.2/jquery-ui.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png HTTP/1.1Host: nc-nielsen.dkConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/css/css_camp.min.css?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/csrf_protection.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png HTTP/1.1Host: nc-nielsen.dkConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-retrofit/dist/bundle.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/csrf_protection.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/EHawkTalon6.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121337464636 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/ac-pendo.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/EHawkTalon6.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /admin/js/ac-pendo.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /ac-frontend/maestro/assets/zendesk-widget.js HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /agent/static/ed3d50f4-0e02-4aa9-544b-e7c43ee11673/pendo.js HTTP/1.1Host: cdn.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dh5u5fb9y_funnel.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bvkaul0w_wavehand.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vxd0ariod_gift.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ckke9g3gf_browserwindowapp.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gpcxgatc_buttonctaclick.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jhynp592_idcard.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ekr/snippet.js?key=dcd5b484-abf6-47e3-adad-bc7b7da716c4 HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /agent/static/ed3d50f4-0e02-4aa9-544b-e7c43ee11673/pendo.js HTTP/1.1Host: cdn.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vxd0ariod_gift.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ckke9g3gf_browserwindowapp.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ac-frontend/maestro/assets/zendesk-widget.js HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gpcxgatc_buttonctaclick.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bvkaul0w_wavehand.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jhynp592_idcard.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dh5u5fb9y_funnel.png HTTP/1.1Host: d226aj4ao1t61q.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ekr/snippet.js?key=dcd5b484-abf6-47e3-adad-bc7b7da716c4 HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compose/dcd5b484-abf6-47e3-adad-bc7b7da716c4 HTTP/1.1Host: ekr.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-main-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compose/dcd5b484-abf6-47e3-adad-bc7b7da716c4 HTTP/1.1Host: ekr.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?v=2 HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-9606-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-7437-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-3190-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-8173-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-2229-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-main-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embeddable/messaging/custom_ticket_fields HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embeddable/config HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-3190-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-7437-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-8173-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-2229-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web_widget/messenger/latest/web-widget-9606-b6408d4.js HTTP/1.1Host: static.zdassets.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main.64e6aab4.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embeddable/config HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embeddable/messaging/custom_ticket_fields HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=Gsli5JOD9k3iI88koNRROGa0ohyQawXGicnp2pPwp50-1736860713-1.0.1.1-1qMescl6inrCMNPy1mCYahPTYm3dQ7QRg0_IcyoYKQ67OMXRwegk7AgftRucz2cUT9hZua2wuY8hTJvYFGsvpQ; __cfruid=e80dcdc96550697de4f04c0fe785b3ce17d7b1d8-1736860713; _cfuvid=IV4qWGgK4TpjAQEUcXaDbOFdYzIntADHAm9zChH2K8Y-1736860713063-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /static/js/polyfill-with-resolvers.42c0e97c.chunk.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main.64e6aab4.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/polyfill-with-resolvers.42c0e97c.chunk.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/647.38ef54d4.chunk.css HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/621.d916e3cb.chunk.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/647.f82da89b.chunk.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/647.f82da89b.chunk.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jkFLAzEQRv_LnGuyG3TRvQkKCqKC9RyGJLSRZrJkJ0ux9L93IqWn4i2Eee97B6hlByNsmad51JocKXQcl7DNMwevXE4afYqkYQUpMHpkhPEAS5wj59Ke0YvBfj6_P33Ytd3__O7fanpZ1kGQHdKm4ibIRSD7_QXHFaBzuRJfUDM83JtuuJlK9lXGMwlImBp0Lag5JiyB-PFiki8pa0R_q7tem87ciWUJZW4-GVFm6FRv20gTnPtf_2k_d_6dXGk8ngDOgmg5&ct=1736860716075&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9jkFLxDAQhf_LnGvTBi3am6CgICrs6jUMSdiNJJOSTsqi9L9v4qFeFm8h8733vh9Y3Ow4pmcDI6j3x9eHN7VXp6_v00sOT8veQgOodczEv4gc7m5lN1xNKZqs2UUqQE6-nI7M0zwKQZpaLKfFHuPM1rQ6BoEmOBKFjd58_k1S9r6BYBkNMsK4-dSn-8fJIx0yHmwhLKmPHayb5xa96EoYauiSZO2YMFni-62pfBWzmuivRdcL2cmb0rLYNNe-MtLKoWt7VUdgXc8k0W96&v=2.260.1_prod&ct=1736860716081 HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1736860716084&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/621.d916e3cb.chunk.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /files/templates/designs/ncnielsen/images/ncn_favicon_32x32.png HTTP/1.1Host: www.nc-nielsen.dkConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860716705&jzb=eJzFU99P2zAY_F_83CV2Epy0b6uoRCUKk-j2sGmyTGzAXWIH_8jSof7vfIY2YxKq9oDUPMW577s73yk_npDfdhLNkBJSe3W3RRN0a81vJy3zqgWElDmtKC4JxbSaoF455Y1lSsAS-7K4Or9mazZs_gyXob3o1xIIeF2boP3rTEanVYbpp84aEWqvjIaJYBuAHrzv3CxNda0TDlAvH4zzUiS1aVMuWqVTmIXFzqHZEzKNYP8jH-feWtChaT7G-A7ccAtBrfntcmT2rweEr6ZlcbnaLjfL-WNYUCC8s7yVL6BYrNS3Tbg5P_PlfEOvAXTyMUhdQ8YYQt96CbfMp9luMpbSSs-PFVKSkxayl46vx9Qbru8Dv48Xkpp9vYkx7h2Nq--a0hAeYO-5-VvF55EJPgnu4wYpUkzSDGdnwNJL6yIfiCQZxQlhUeTDu3RR5AUe8uGi-04XK0L6-fCr-adqaGxfdVFWb6puDBdHq85OWnW0dzBVEFIkZHp4qvxEUUIih7-GVLufz3Zvjho HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jkFLAzEQRv_LnGuyG3TRvQkKCqKC9RyGJLSRZrJkJ0ux9L93IqWn4i2Eee97B6hlByNsmad51JocKXQcl7DNMwevXE4afYqkYQUpMHpkhPEAS5wj59Ke0YvBfj6_P33Ytd3__O7fanpZ1kGQHdKm4ibIRSD7_QXHFaBzuRJfUDM83JtuuJlK9lXGMwlImBp0Lag5JiyB-PFiki8pa0R_q7tem87ciWUJZW4-GVFm6FRv20gTnPtf_2k_d_6dXGk8ngDOgmg5&ct=1736860716075&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1736860716084&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9jkFLxDAQhf_LnGvTBi3am6CgICrs6jUMSdiNJJOSTsqi9L9v4qFeFm8h8733vh9Y3Ow4pmcDI6j3x9eHN7VXp6_v00sOT8veQgOodczEv4gc7m5lN1xNKZqs2UUqQE6-nI7M0zwKQZpaLKfFHuPM1rQ6BoEmOBKFjd58_k1S9r6BYBkNMsK4-dSn-8fJIx0yHmwhLKmPHayb5xa96EoYauiSZO2YMFni-62pfBWzmuivRdcL2cmb0rLYNNe-MtLKoWt7VUdgXc8k0W96&v=2.260.1_prod&ct=1736860716081 HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860716705&jzb=eJzFU99P2zAY_F_83CV2Epy0b6uoRCUKk-j2sGmyTGzAXWIH_8jSof7vfIY2YxKq9oDUPMW577s73yk_npDfdhLNkBJSe3W3RRN0a81vJy3zqgWElDmtKC4JxbSaoF455Y1lSsAS-7K4Or9mazZs_gyXob3o1xIIeF2boP3rTEanVYbpp84aEWqvjIaJYBuAHrzv3CxNda0TDlAvH4zzUiS1aVMuWqVTmIXFzqHZEzKNYP8jH-feWtChaT7G-A7ccAtBrfntcmT2rweEr6ZlcbnaLjfL-WNYUCC8s7yVL6BYrNS3Tbg5P_PlfEOvAXTyMUhdQ8YYQt96CbfMp9luMpbSSs-PFVKSkxayl46vx9Qbru8Dv48Xkpp9vYkx7h2Nq--a0hAeYO-5-VvF55EJPgnu4wYpUkzSDGdnwNJL6yIfiCQZxQlhUeTDu3RR5AUe8uGi-04XK0L6-fCr-adqaGxfdVFWb6puDBdHq85OWnW0dzBVEFIkZHp4qvxEUUIih7-GVLufz3Zvjho HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkF1zojAUhv9LrllB2w3KXS3slKlfUxhvOh0mhriGhgTzYaWO_90Ddtwd7-C8z5zzvDkh2zYMRUgzqnTJ5V_koQM33CqdljAvVskiXhZ5cay-jzNXvxxyBgihVDlpe2SEJ-NRgH81WpWOWq4kAButvgzTOa9h-zB8wGMchEMcBthDn6z9o0kXbIkwzEOCGPt6GwbeP5v-gFCd1W2WMWPgyH-R0wK-d9Y2JvJ9SeWAgMeB7ZSxrBxQVfukrLn0gTVuk18r361dkVYoAkvfP4Bie8ckvbP5QZ676n0ClRuDohMgxEDvCK3TLM2Xb0WcZk_TWRKjM1BEM2lzsumUpRPCQ_b6g4LFJHyczdu0Sqd7l2AQ2nav0IdlMufrymXxbxtOK7xE5wsYL45P&ct=1736860716706&v=2.260.1_prod&recordingId=log HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /files/templates/designs/ncnielsen/images/ncn_favicon_32x32.png HTTP/1.1Host: www.nc-nielsen.dkConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /08f2ced6-ee5d-45e3-a248-5828d7d63950.png HTTP/1.1Host: d3tnn7lar6ozas.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://solve-widget.forethought.ai/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /workflow/widget-config HTTP/1.1Host: solve-api.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /08f2ced6-ee5d-45e3-a248-5828d7d63950.png HTTP/1.1Host: d3tnn7lar6ozas.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/index.php?error_mesg=invalidlogin HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://ncn.activehosted.com/admin/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860722544&jzb=eJztl2tP4kAUhv9K088gtGARv2xCwEgiYlzWZNc1zXQ6hcG51OkZLLvhv3vaKou3jWs0mg2TQJk57_Q9Zy5PwvlvF5Ypc_fdRFObuTU3Mvo6YyYELnHY67SCvaDZ8T2_vVtzFzzjoE3IY5wRngyO--NwEubzX_mRlYeLCcMXEEq1VVBp_KC75zeDemp0bClwrVBhjcDQDCDN9hsNRdUOwdCCzXQGLN6hWjZILLlqoBYnppm7j2kSM2VQ_Zri9OHxybcJCkobfFKBMjQPIwuglVM9QlFMc4gAz0kMn87AUVriGC8SAQ4Ci1RWCMwbwFRO1YJkNpIcULUgwhYDR_p2Fom4ilmOQ213VXPlclh1W5jFjIv4tuuhNMeMi-xSYpiCgWDyTwX94dlT-YvCpi70NTMOTZ7LctO3e9-3_bTdwfh0dOeHHqHFXV77vsSmc98Gq_3XqsJI5y9xwpXbdGq-zgk_Ji5rfHvDyoRqBYSrjXW8578Zft_VTQTL61QLJ-EmA6c6QilRzImmdU0Zefa0v9mylykgOxxJ8vqM3V61-rUh6dt598b974_My2pf4uE_uJ-rdbtzm5BoiO-uXoH3vOi4zeNup300Wg7nw96VHQRolRgiWRmMByN-Nrdf-7vQ6c2DMQYzlmUIujKct_LD9EcwGHneopdfijJ8ZZmimCnucbQEhml67Wawqq3RQwWnl39lMZ6WLYu3LN6yeMvi_4vFyFZBpqg-dwVLwL34KDjjzV3D2W9twHnNoufpjBD4RHR-B9hULP2pHGyb3w_7D0eLdqDNVMOXx7KnxI97p0wyGSGP5dIpKlG42aXiFWTfMnDLwE_JwI8AHv69vwOev-utLm4AxxAqag HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/camp-colors.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/skin.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/animations.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/header.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/footer.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/skin2.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b6ffcf9edf281e009b6d8a4f00545f6a"If-Modified-Since: Tue, 09 Aug 2022 18:56:35 GMT
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860722544&jzb=eJztl2tP4kAUhv9K088gtGARv2xCwEgiYlzWZNc1zXQ6hcG51OkZLLvhv3vaKou3jWs0mg2TQJk57_Q9Zy5PwvlvF5Ypc_fdRFObuTU3Mvo6YyYELnHY67SCvaDZ8T2_vVtzFzzjoE3IY5wRngyO--NwEubzX_mRlYeLCcMXEEq1VVBp_KC75zeDemp0bClwrVBhjcDQDCDN9hsNRdUOwdCCzXQGLN6hWjZILLlqoBYnppm7j2kSM2VQ_Zri9OHxybcJCkobfFKBMjQPIwuglVM9QlFMc4gAz0kMn87AUVriGC8SAQ4Ci1RWCMwbwFRO1YJkNpIcULUgwhYDR_p2Fom4ilmOQ213VXPlclh1W5jFjIv4tuuhNMeMi-xSYpiCgWDyTwX94dlT-YvCpi70NTMOTZ7LctO3e9-3_bTdwfh0dOeHHqHFXV77vsSmc98Gq_3XqsJI5y9xwpXbdGq-zgk_Ji5rfHvDyoRqBYSrjXW8578Zft_VTQTL61QLJ-EmA6c6QilRzImmdU0Zefa0v9mylykgOxxJ8vqM3V61-rUh6dt598b974_My2pf4uE_uJ-rdbtzm5BoiO-uXoH3vOi4zeNup300Wg7nw96VHQRolRgiWRmMByN-Nrdf-7vQ6c2DMQYzlmUIujKct_LD9EcwGHneopdfijJ8ZZmimCnucbQEhml67Wawqq3RQwWnl39lMZ6WLYu3LN6yeMvi_4vFyFZBpqg-dwVLwL34KDjjzV3D2W9twHnNoufpjBD4RHR-B9hULP2pHGyb3w_7D0eLdqDNVMOXx7KnxI97p0wyGSGP5dIpKlG42aXiFWTfMnDLwE_JwI8AHv69vwOev-utLm4AxxAqag HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/content.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /ac_global/fontello/css/ac-icons.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/style.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/default.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/css/css_camp.min.css?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/csrf_protection.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "820004254"If-Modified-Since: Mon, 13 Jan 2025 21:19:34 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-retrofit/dist/bundle.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYcRange: bytes=167532-167532If-Range: "1088866897"
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-retrofit/dist/bundle.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYcRange: bytes=167532-186348If-Range: "1088866897"
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121898716292 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860707027%2C%22d%22%3A%22b0b3a7ce2c2d871fde0b61ad1ec7499f%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /ac-frontend/maestro/assets/zendesk-widget.js HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d585776b166fe428bbe3201bb1138a61"If-Modified-Since: Thu, 09 Jan 2025 18:09:36 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-retrofit/dist/bundle.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /ac_global/fontello/font/ac-icons.woff2?9608958 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ncn.activehosted.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://ncn.activehosted.com/ac_global/fontello/css/ac-icons.css?v=v1027121898716292Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=Gsli5JOD9k3iI88koNRROGa0ohyQawXGicnp2pPwp50-1736860713-1.0.1.1-1qMescl6inrCMNPy1mCYahPTYm3dQ7QRg0_IcyoYKQ67OMXRwegk7AgftRucz2cUT9hZua2wuY8hTJvYFGsvpQ; __cfruid=e80dcdc96550697de4f04c0fe785b3ce17d7b1d8-1736860713; _cfuvid=IV4qWGgK4TpjAQEUcXaDbOFdYzIntADHAm9zChH2K8Y-1736860713063-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /?v=2 HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "7e6bfae3cfedc1972297e3b418672be0"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860731533&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /nr-spa-1.278.2.min.js HTTP/1.1Host: js-agent.newrelic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://ncn.activehosted.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860731536 HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860732155&jzb=eJw1kF1vIiEYhf8L13a-UHRMmiamJtqo7YWJiZtmgkAdLAPIx-xY43_33XHLHTyH8z7w54rCxQo0RcpQjgbo4MxfL1wVZAOn-RiTCcnGOB_hfIBa6WUwrpIcLlQf883re7WtutNPt4rNot0KKKCMmajDI1OQclJk5Mk6wyML0mhIRKcA1SFYP01TzXRCAbWiNj4InjDTpJQ3UqdSc9EltrYvwjkY2wh_fJa6pUpyZY7yXxk0W4-m197_v3WJiywh5e-a4BvkqBM6bOlhCV46KjVA4bFB2aYcD1fry_K0nJ3jnEDrl6ON6GEsdmE3qt9OmK-He1YC9MJ7eEmPO9wt7J7M13nezrpv1eNzFJqBRwbfeQkC9PAou33eAaV9dqA HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860731533&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860731536 HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /workflow/widget-config HTTP/1.1Host: solve-api.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /nr-spa-1.278.2.min.js HTTP/1.1Host: js-agent.newrelic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkG1PwjAcxL9LX082BgxYYowIxilPkUUSjVlKW1ixa0cfJpPw3emGQcO77e6X_13vAHSZExACSZCQmPINcEBBFdVCRtjqyXw0Hc6SONlvf_Zjkz0VMbEIREgYrmvED_o93wtucimwQZoKboGVFN-KyJhm9nqz2wp6gddt-c1OxwFfpHyUsDLWkCniAAaVfrmInvPXpg5gomp10RZEKRvyzzKS2e9U61yFrssRb0DboyCpUJrgBhKZC3FGuUs5JvtGnuZ3REohk4yozS3lBWQU21O0aq7MKj5vcpU7hyUT0KZ-fFqK7Azh6KruL_JQbVM7dpNcgfBgEajsMCF4ixZRPHtNhtHifjAeDcHRUlASrmO4qt7EDWMO0Ocf4E373fZ4UkbbaLAzo8AWWlcz1abxl3rZSZ-3LTxpv6M-OJ4ALkibdg&ct=1736860732156&v=2.260.1_prod&recordingId=log HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860732155&jzb=eJw1kF1vIiEYhf8L13a-UHRMmiamJtqo7YWJiZtmgkAdLAPIx-xY43_33XHLHTyH8z7w54rCxQo0RcpQjgbo4MxfL1wVZAOn-RiTCcnGOB_hfIBa6WUwrpIcLlQf883re7WtutNPt4rNot0KKKCMmajDI1OQclJk5Mk6wyML0mhIRKcA1SFYP01TzXRCAbWiNj4InjDTpJQ3UqdSc9EltrYvwjkY2wh_fJa6pUpyZY7yXxk0W4-m197_v3WJiywh5e-a4BvkqBM6bOlhCV46KjVA4bFB2aYcD1fry_K0nJ3jnEDrl6ON6GEsdmE3qt9OmK-He1YC9MJ7eEmPO9wt7J7M13nezrpv1eNzFJqBRwbfeQkC9PAou33eAaV9dqA HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1/d3d5c809d5?a=456978955&v=1.278.2&to=M1JQYEMHVhFXB0AMXAoYcUFCElcPGQVQCFoKGFtaVQNATEYMRF8%3D&rst=11051&ck=0&s=4393e6db1c06e3b3&ref=https://ncn.activehosted.com/admin/index.php&ptid=ea0c83264464eeac&af=err,spa,xhr,stn,ins&ap=164&be=1270&fe=8986&dc=4474&at=HxVHFgsdRU4UBRZfSBlK&fsh=1&perf=%7B%22timing%22:%7B%22of%22:1736860721265,%22n%22:0,%22u%22:1278,%22r%22:3,%22ue%22:1281,%22re%22:932,%22f%22:932,%22dn%22:932,%22dne%22:932,%22c%22:932,%22s%22:932,%22ce%22:932,%22rq%22:962,%22rp%22:1270,%22rpe%22:1515,%22di%22:5297,%22ds%22:5743,%22de%22:5744,%22dc%22:10253,%22l%22:10253,%22le%22:10256%7D,%22navigation%22:%7B%22rc%22:1%7D%7D&fp=5294&fcp=5294 HTTP/1.1Host: bam.nr-data.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events/1/d3d5c809d5?a=456978955&v=1.278.2&to=M1JQYEMHVhFXB0AMXAoYcUFCElcPGQVQCFoKGFtaVQNATEYMRF8%3D&rst=11780&ck=0&s=4393e6db1c06e3b3&ref=https://ncn.activehosted.com/admin/index.php&ptid=ea0c83264464eeac HTTP/1.1Host: bam.nr-data.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/index.php?error_mesg=invalidlogin HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=jTODzHABQaSiyGYKvy2FGqwTzPXPLhJajXpHh9ojyYc
Source: global traffic	HTTP traffic detected: GET /core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b6ffcf9edf281e009b6d8a4f00545f6a"If-Modified-Since: Tue, 09 Aug 2022 18:56:35 GMT
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860740835&jzb=eJztlH1P4koUxr_KpH_zVkAQkxsTI0ZuRI3hrlld0wzToYxOZ-rMGSi74bt72gqCL7uu0bg3SxMoc87peZ4zdH6XPzyYJdzb8UaaOeuVvKHRU8tNACLGsN9utLZbtXaj06r5JW8irABtAhHiE8Fp93j_JBgE6fX39MjFh5MBxwaUMe0UFDX1Vme7XmuVE6NDx0BohRXOSEyNARK7U60qpioUUxM-1hZ4WGE6rtIwFqoqVMjTSjJOdrkxKBtzG_0j1IRKEUodiawZdk6st4NzUBNxKH5F2L93fPrfAAtyH3hnEsvQXTB0AFqR4hbI7DFCJfhkZEQ0BqJ0jLG8OQiQuAvKSYmDAZhCqdgx64axAKxCPy4LHN1bAjrMnWOo6c1LXjzrFcsGuhgLGd4vcUMhRceZu4QarqArefwwwX7vy3P-88nLUk-5IWz0kstVXb-2Lrz1vN7ByVl_IYgigcP3YCn8Gp32ugyO-7tjBUOdvmqidSWc7y1K-DFhPuP7CxYiTCugQq3s45r-avpjd3ckeVpmWpKRMBZI8Q4lVHEyjMqacfri6_5u255bQLqQmKblMb8_a-Wpocn7ae-d7H99Ir5gxS816o8O6Hx5LdQGdNjD3kULPOjZwqsdd9rNo_6sd93bu3XdFkqNDI15nnT1czjfGv973Qj7zQvWwaTl1iIK83TaSA-Ti1a37_uTvfRG5ulbxxXL8Is8ngFHm36zWZuXluxhUrCbn9K6uaH1htYbWm9o_ffRGukraYTVl57kI_CuPgvfaHCJ7632Cr6XMHqZ33jq_0_8_gAaFbTtFQZI1lDhn0K0IQm1doowqJADbSINZKbdQ3SXnHHLgQj4pgheq9-P14-j2VX03H1S9gbubwC5AeQfCcjPoCH-wwsa1rdr86s7rCxZbA HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/camp-colors.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/skin.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/animations.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/header.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/footer.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/skin2.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/content.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /ac_global/fontello/css/ac-icons.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/style.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/default.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-css/dist/build.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/css/css_camp.min.css?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/csrf_protection.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "820004254"If-Modified-Since: Mon, 13 Jan 2025 21:19:34 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v102712819748518 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860726627%2C%22d%22%3A%224a9e125d098682f478b6b82102da8b2a%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /ac-frontend/maestro/assets/zendesk-widget.js HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d585776b166fe428bbe3201bb1138a61"If-Modified-Since: Thu, 09 Jan 2025 18:09:36 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=Gsli5JOD9k3iI88koNRROGa0ohyQawXGicnp2pPwp50-1736860713-1.0.1.1-1qMescl6inrCMNPy1mCYahPTYm3dQ7QRg0_IcyoYKQ67OMXRwegk7AgftRucz2cUT9hZua2wuY8hTJvYFGsvpQ; __cfruid=e80dcdc96550697de4f04c0fe785b3ce17d7b1d8-1736860713; _cfuvid=IV4qWGgK4TpjAQEUcXaDbOFdYzIntADHAm9zChH2K8Y-1736860713063-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /?v=2 HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "7e6bfae3cfedc1972297e3b418672be0"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860749501 HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860749499&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860750167&jzb=eJwtkF1vwiAUQP8Lz64fVmsxWZaZmdTMjz30ZVuWBsudohQQaFdn_O_e1T3CuZx7wueF-LMBMiVSM04GZGv1jwNbelHjbTxJ0iyNJiM6otmAtMIJr20pOD4o3-brl01ZlN3ht1s2dd4WgAJWVbpR_j4zTGk2jNIHYzVvKi-0wonGSkR7742bhqGqVMAQtbDXzgMPKl2HjNdChUJx6AKzN09gLa6twe0ehWqZFFzqnfiTodk4Mr30_f_VWUbjYHxFyCwoX7DtAmNUI-WA-PuBRGs6GS1X58VhMTs18xRV35bV0EOaF2xcZO_58_i4eR2eEDpwDvN73CVdbj7S-SqO21l3lD0-NaAqXB7hH549YFOS0OvXDSIbc-k HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /workflow/widget-config HTTP/1.1Host: solve-api.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860749501 HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860749499&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860750167&jzb=eJwtkF1vwiAUQP8Lz64fVmsxWZaZmdTMjz30ZVuWBsudohQQaFdn_O_e1T3CuZx7wueF-LMBMiVSM04GZGv1jwNbelHjbTxJ0iyNJiM6otmAtMIJr20pOD4o3-brl01ZlN3ht1s2dd4WgAJWVbpR_j4zTGk2jNIHYzVvKi-0wonGSkR7742bhqGqVMAQtbDXzgMPKl2HjNdChUJx6AKzN09gLa6twe0ehWqZFFzqnfiTodk4Mr30_f_VWUbjYHxFyCwoX7DtAmNUI-WA-PuBRGs6GS1X58VhMTs18xRV35bV0EOaF2xcZO_58_i4eR2eEDpwDvN73CVdbj7S-SqO21l3lD0-NaAqXB7hH549YFOS0OvXDSIbc-k HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkG9PwjAYxL9LX082UDZYYgwIhgUEIo2JMWYp2wMUunb0z2QSvjvdMGh4t9398tz1jkiXOaAQSUiETClfIwcVVFEtZJRaPZ4Pp4NZjOPD9ucwMdmowGARkiTCcF0jLb_baXn-XS5FahJNBbfAUopvBRLTzF5vBvd-x_eCttf0AwftoHyRpDJWhClwECNKj6-i5_y1qQOYqFpdtQUoZUP-WUYy-73ROleh6_KEN4jtUcBGKA1pIxGZS9KMcpfyFA6NfJM_gZRCxhmo9SPlBWE0tado1VyZJb5scpM7JyUTxKZ-flkK9gZ4clP3F3mutqkdu0muUHi0CFF2mBC9R4sIz97iQbTo9SfDATpZikjgGpNl9SZuGHOQvvwgb9oNHiavZbSN-nsz9G2hVTVTbXZHmLRx52PUa-9m49Yenc4rMZsH&ct=1736860750168&v=2.260.1_prod&recordingId=log HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/index.php?error_mesg=invalidlogin HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=0Cj5kqgYg51ZD2bOeOzdjdiqWM4obOd6Qd-JpZbCGeY
Source: global traffic	HTTP traffic detected: GET /core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b6ffcf9edf281e009b6d8a4f00545f6a"If-Modified-Since: Tue, 09 Aug 2022 18:56:35 GMT
Source: global traffic	HTTP traffic detected: GET /admin/css/camp-colors.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/skin.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/animations.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860759379&jzb=eJztlPtP4zgQx_8VKz_3lT7SgrRChyhqdUAR6q3EsihyHDc1OHawJ216p_7vTBJaymuXRSB2dY3Uh2cm8_2O43wu_nNgkXBn15lollqn4gRGzy03PogYw2635fW8RrfTa3mNijMTVoA2vgjxDv-0f3Iw8sd-dvVvdpTGg9mYYwPKmE4VlDVNb6fXbHjVxOgwZSC0worUSExNARK7W68rpmoUUzM-1RZ4WGM6rtMwFqouVMizWjJN9rgxKBtzG30RakalCKWORN4MOyfW2cU5qIk4lP8i7D88Of1njAWFD_xlEsvQnR-kAFqR8seX-W2ESnDJxIhoCkTpGGNFcxAgcRdUKiUOBmBKpXLHbBrEArAK_aR54OjOEtCgcI6htrOsOPFiWC5b6GIqZHi3dLE0Q8e5u4QarqAveXw_wcHw63P-i8mrUs-5IWzykstNXRcf3aZw53m9w9HZ8UoQRfwUz8Fa-DU63YcyOO6vjuUHOnvVRA-VcL63KOHHhMWM7y9YijCtgAq1sY8P9DfTH7u7E8mzKtOSTISxQMozlFDFSRBVNeP0xeP-btteWEC6kJhm1Sm_e9eqc0OT99PeHx2cPxFfseKnGs1HL-hyfa3UxjQYYu-yBb7o-cJpnOx020fHi-HVcP8m7XsoNTE05kVyZzCmnXHvfPBX53r0d_MGk5Zbiygs0lkrGyTfvP6x6872s2tZpG9SrliOX-TxAjjadNvtxrKyZg-Tgl3_kNY4ypbWW1pvab2l9f-N1khfSSOsvnAkn4Bz-Vn4RoNrfHe6G_hew-hlfuOB-ZP4_QE0Kmk7LA2QvKHCh0K0IQm1do4wqJFDbSINZKHT--geOeOWAxHwXRG8Nr8frx9H86vsufek7A3c3wJyC8jfEpCfQUN8wisaNnuN5eUtiSxYHQ HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/header.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/footer.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/skin2.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/content.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /ac_global/fontello/css/ac-icons.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/style.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/default.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/css/css_camp.min.css?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/csrf_protection.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "820004254"If-Modified-Since: Mon, 13 Jan 2025 21:19:34 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121575627411 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860744206%2C%22d%22%3A%22178c4fc6eda26f13e647b6005e45fe83%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /ac-frontend/maestro/assets/zendesk-widget.js HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d585776b166fe428bbe3201bb1138a61"If-Modified-Since: Thu, 09 Jan 2025 18:09:36 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embeddable/config HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 14 Jan 2025 13:17:52 GMT
Source: global traffic	HTTP traffic detected: GET /embeddable/config HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=Gsli5JOD9k3iI88koNRROGa0ohyQawXGicnp2pPwp50-1736860713-1.0.1.1-1qMescl6inrCMNPy1mCYahPTYm3dQ7QRg0_IcyoYKQ67OMXRwegk7AgftRucz2cUT9hZua2wuY8hTJvYFGsvpQ; __cfruid=e80dcdc96550697de4f04c0fe785b3ce17d7b1d8-1736860713; _cfuvid=IV4qWGgK4TpjAQEUcXaDbOFdYzIntADHAm9zChH2K8Y-1736860713063-0.0.1.1-604800000If-Modified-Since: Tue, 14 Jan 2025 13:17:52 GMT
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "c75041def02eb73f83ad86da82a94d67"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=Gsli5JOD9k3iI88koNRROGa0ohyQawXGicnp2pPwp50-1736860713-1.0.1.1-1qMescl6inrCMNPy1mCYahPTYm3dQ7QRg0_IcyoYKQ67OMXRwegk7AgftRucz2cUT9hZua2wuY8hTJvYFGsvpQ; __cfruid=e80dcdc96550697de4f04c0fe785b3ce17d7b1d8-1736860713; _cfuvid=IV4qWGgK4TpjAQEUcXaDbOFdYzIntADHAm9zChH2K8Y-1736860713063-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /?v=2 HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "7e6bfae3cfedc1972297e3b418672be0"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860767087 HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860767085&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/index.php?error_mesg=invalidlogin HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=iaQfYBg2MNqRcMVSqgcH0e2gGMQizGxPh8IjZ_bur4E
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860767715&jzb=eJztl31P4koUxr_KpH_z0gIWMLkxMWDsXVGvi5vc6zXN0A5ldDpTZ06hrOG7e2gR6-u6RqPJMgkvM3M4z3PODD_C2bUF84RZ25ZQNLQq1kirmWHaBx7jqtNuuh3Xbrttu9OoWFNuOCjt8xA_4B_3D3tH_tDPLn5mB2m8Px0yTECDQKUSipiG2-00bLeaaBWmAXAlMSLVArcmAInZrtdlIGsUt6ZsogywsBaouE7DmMs6lyHLaskk2WFao2zMTPQXl1MqeChUxJfJMHNirO3r3P_KdbvbcGquvR7uAuOoZhKGdOShL5kKUbGgmFj2YbfdOhjMvQtv9yrtu5h1rGnM8k19_I8c_H1ymujht9730wvcNMwYrCTfzprZfvKf2x84znQ3uxT59lXKZIA-bGznHBjaa27Zi8q61WMVpOaFXje67a_da6A6YlC8izC_d3h8OsSA3Ae-BgLD0J0_SgGUJMWLL5YfI1SAQ8aaRxMgUsW4licHDgK7UBwNBdCFUtExk45iDhiFftLlwsHKEp5h7hyXWhYeczz3imkTXUy4CFdTB0MzdLx0V1yFvmDxXQU978dT_vPKq0LNmCbB-DmXZV0HD70svPW03t7RyeBWEEX8FO_BWvg1OnhDyjJY7u-W5Y9U9qqK7ithfW9RwocO8xrfX7AQCZQEymWpj_f0y9sf292xYFk1UIKMuTZAijuUUMnIKKqqgNFnr_u7tT23gHQhMc2qE7b6rlVnmibvp7171Pv3kfgtK36pgT8n976gi_X4HFhjzStYO61WmdaB4MHlC7Ru2tifDa03tN7QekPrP43WSF9BI4w-swQbg3X-WfhGg2t8b7VL-F7D6Hl-f_F_Ng_5_QE0KmjrFQbIMqHEQyFKk4QaM0MY1Mie0pECMlfp3eoOOWGGAeHwvyQ4ys8P5w9Xl6PIufMo7A3c3wByA8gvCcjPoCGe8C0NGx17cX4DvtvQ8Q HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b6ffcf9edf281e009b6d8a4f00545f6a"If-Modified-Since: Tue, 09 Aug 2022 18:56:35 GMT
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860767087 HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /workflow/widget-config HTTP/1.1Host: solve-api.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860767085&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/camp-colors.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/skin.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/animations.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/header.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/footer.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/skin2.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkN1uskAYhO9lj6mgbUFJmqYWm1J_K9iTLw1Z4VXXb9nF_aFS4727YGMbz2DmyTuzc0CqKgD5SEDKRUbYGlmoJJIoLsLM6MlsMAmmSZzst9_7kc5fyxgMgtOUa6YapOP2uh3HvSkEz3SqCGcGWAr-JUHEJDfX296t23Udz_W89r2F_kP1InBtrDCVYCGKpRpeRMf6bdMEUF63umgRSGlC_lhaUPO9UaqQvm2zlLWw6VHChksFWSvluY2znDCbsAz2rWJTPIIQXCQ5yPUDYSWmJDOnSN1c6mV83uQqd4YryrFJ_fdpKNhpYOlV3R_kud6mccwmhUT-wSBYmmF89BFGYTydJ0EYPfVHgwAdDYUFMBXjZf0mpim1kDr_IGfS8-5G4yrchv2dHrim0KqeqTHF7J2N3-aLQsTDIFps0fEEP5ib7g&ct=1736860767716&v=2.260.1_prod&recordingId=log HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admin/css/content.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /ac_global/fontello/css/ac-icons.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/style.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/default.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/css/css_camp.min.css?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/csrf_protection.js HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "820004254"If-Modified-Since: Mon, 13 Jan 2025 21:19:34 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidloginAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/jsc/ac.js?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/js/functions.js?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/mainjs.php?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /admin/js/jq/notification.js?v=v1027121802907500 HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gbu9uvfhph6a0mdatwbzomssrlboczvs=%7B%22v%22%3A%226.0.6%22%2C%22a%22%3A818380843%2C%22b%22%3A%22567496f8ac1d996ff34d56f438a4d6f4%22%2C%22c%22%3A1736860763063%2C%22d%22%3A%22219afb0127157966e5092c7b9573667c%22%2C%22e%22%3Anull%7D; PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1Host: ncn.activehosted.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=m_N6kuwrPjr6u8G0XWHZ0psQwsYnhFHOcKUqX7_C8xU
Source: global traffic	HTTP traffic detected: GET /ac-frontend/maestro/assets/zendesk-widget.js HTTP/1.1Host: platform-cdn.app-us1.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d585776b166fe428bbe3201bb1138a61"If-Modified-Since: Thu, 09 Jan 2025 18:09:36 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=Gsli5JOD9k3iI88koNRROGa0ohyQawXGicnp2pPwp50-1736860713-1.0.1.1-1qMescl6inrCMNPy1mCYahPTYm3dQ7QRg0_IcyoYKQ67OMXRwegk7AgftRucz2cUT9hZua2wuY8hTJvYFGsvpQ; __cfruid=e80dcdc96550697de4f04c0fe785b3ce17d7b1d8-1736860713; _cfuvid=IV4qWGgK4TpjAQEUcXaDbOFdYzIntADHAm9zChH2K8Y-1736860713063-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /?v=2 HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "7e6bfae3cfedc1972297e3b418672be0"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://solve-widget.forethought.ai/?v=2Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860776443&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860776446 HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed.js HTTP/1.1Host: solve-widget.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c75041def02eb73f83ad86da82a94d67"
Source: global traffic	HTTP traffic detected: GET /api/5321290/envelope/?sentry_key=e69efc0111d24ee3b79752765776ca0a&sentry_version=7&sentry_client=sentry.javascript.react%2F7.119.2 HTTP/1.1Host: o185886.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860777064&jzb=eJwtkE1v4jAQhv-Lz5QkJHIAqVoJEQkkoHuge9iqikw8EFPHNv5IkyL-O0Po0fOM33n0flyJ7w2QOZGacTIiB6u_HdjSiwanSZ7SKY3znGZZMiKtcMJrWwqOH8q_xW75Vu7L7vzTbUKzaveAAayqdFD-uTOhs-kkpi_Gah4qL7TCjWAlotp74-ZRpCo1ZohaqLXzwMeVbiLGG6EioTh0Y1ObP2Atnm3AnV6FapkUXOqTeIRhsnFkfh38f62nkyy_IWIWlN-zwxpVVJByRPzzQeLdLM822359Xi8uoaAYdLSsgQH-C3Z5ZP3q_G5pXcSPVhw4h_ID7tJuZf7TYpsk7aL7kgO-BFAVno6xwd4DGqVpfvu8A45cdG4 HTTP/1.1Host: data.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ncn.activehosted.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860776443&v=2.260.1_prod HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/guide.js/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?id=28&jzb=eJx9j8FK9TAUhN8l62vSBi1a-BFBQUFU-K9uwyE5tJHkpKRJKUrf_SYu6ubiLmRmvjPzzRY72xTik2E9U28PL_ev6qjWz6_1OfvH5YjswEDrkCn9WGR3cy2b7mKKwWSdbKBiyNEVaUxpmnshSBOHIi04hjmh4Tp4AcZbEpYMrnwap1uMMUTlcR7-WVrAWePCYCssOPPx24mycwfmMYGBBKzfC9en_aO0AxoyDFgcSOr9P9v2IXv07BgCX0PnVlTGBBEp3e2k8lWa1UR7KZpWyEZeFcqCca68coTLruGtqkfYtp0AmtR8uQ&v=2.260.1_prod&ct=1736860776446 HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /workflow/widget-config HTTP/1.1Host: solve-api.forethought.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkG9vqjAYxb9LXzNhzoCS3NxcB4tkTs1kvlkWUumj1JUW-4fJNX53Cy5u8R2c88tzTs8R6aYCFCIJuZCE8i1yUE0V1UImxOrZIp5F8yzNDrv_h6kpJ3UKFsF5LgzXHdL3R8O-599VUhCTayq4BdZSfCmQKS3t9fvgwR_6XhAEnj9w0Cc0TxK3xgYzBQ5iWOnnq-g5P226ACbaVldtCUrZkF-Wkcx-F1pXKnRdnvMetj1qKITSQHq5KF1MSspdygkcelVR_QUphcxKUNs_lNeYUWJP0ba5Muv0sslN7gI3TGCb-v5hKdgb4PlN3W_ksd2mc-wmlULh0SJY2WFCtEqWSTp_zaJk-W88jSN0shSWwHWK1-2buGHMQfryg7zZKBhMX5pkl4z3JvZtoU07U2eujIw2uJns3qRfxB5BpzM_xJwH&ct=1736860777065&v=2.260.1_prod&recordingId=log HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860777064&jzb=eJwtkE1v4jAQhv-Lz5QkJHIAqVoJEQkkoHuge9iqikw8EFPHNv5IkyL-O0Po0fOM33n0flyJ7w2QOZGacTIiB6u_HdjSiwanSZ7SKY3znGZZMiKtcMJrWwqOH8q_xW75Vu7L7vzTbUKzaveAAayqdFD-uTOhs-kkpi_Gah4qL7TCjWAlotp74-ZRpCo1ZohaqLXzwMeVbiLGG6EioTh0Y1ObP2Atnm3AnV6FapkUXOqTeIRhsnFkfh38f62nkyy_IWIWlN-zwxpVVJByRPzzQeLdLM822359Xi8uoaAYdLSsgQH-C3Z5ZP3q_G5pXcSPVhw4h_ID7tJuZf7TYpsk7aL7kgO-BFAVno6xwd4DGqVpfvu8A45cdG4 HTTP/1.1Host: data.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ncn.acemlna.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: ncn.acemlna.com
Source: global traffic	DNS traffic detected: DNS query: ncn.activehosted.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: platform-cdn.app-us1.com
Source: global traffic	DNS traffic detected: DNS query: nc-nielsen.dk
Source: global traffic	DNS traffic detected: DNS query: d226aj4ao1t61q.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: cdn.pendo.io
Source: global traffic	DNS traffic detected: DNS query: static.zdassets.com
Source: global traffic	DNS traffic detected: DNS query: ekr.zdassets.com
Source: global traffic	DNS traffic detected: DNS query: solve-widget.forethought.ai
Source: global traffic	DNS traffic detected: DNS query: solve-api.forethought.ai
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: prodhostedtest.zendesk.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: o185886.ingest.sentry.io
Source: global traffic	DNS traffic detected: DNS query: data.pendo.io
Source: global traffic	DNS traffic detected: DNS query: www.nc-nielsen.dk
Source: global traffic	DNS traffic detected: DNS query: d3tnn7lar6ozas.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: js-agent.newrelic.com
Source: global traffic	DNS traffic detected: DNS query: bam.nr-data.net

Source: unknown

HTTP traffic detected: POST /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1Host: prodhostedtest.zendesk.comConnection: keep-aliveContent-Length: 515sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/jsonAccept: */*Origin: https://ncn.activehosted.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:18:37 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:18:44 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:18:53 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:19:02 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:19:11 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:19:21 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:19:28 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: nginxDate: Tue, 14 Jan 2025 13:19:38 GMTContent-Type: text/htmlContent-Length: 548Strict-Transport-Security: max-age=31536000; includeSubDomains; preloadVia: 1.1 googleAlt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000Connection: close

Source: chromecache_374.4.dr, chromecache_254.4.dr, chromecache_336.4.dr, chromecache_222.4.dr, chromecache_365.4.dr	String found in binary or memory: http://daneden.me/animate
Source: chromecache_306.4.dr, chromecache_343.4.dr	String found in binary or memory: http://hildenbiddle.com
Source: chromecache_360.4.dr, chromecache_337.4.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://kevin.vanzonneveld.net)
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://kevin.vanzonneveld.net/techblog/article/javascript_equivalent_for_phps_array_keys/
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://kevin.vanzonneveld.net/techblog/article/javascript_equivalent_for_phps_array_values/
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://kevin.vanzonneveld.net/techblog/article/javascript_equivalent_for_phps_preg_quote/
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://magnetiq.com)
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://mathiasbynens.be/demo/url-regex
Source: chromecache_293.4.dr, chromecache_237.4.dr, chromecache_371.4.dr, chromecache_338.4.dr, chromecache_251.4.dr, chromecache_361.4.dr, chromecache_217.4.dr, chromecache_243.4.dr, chromecache_262.4.dr, chromecache_208.4.dr	String found in binary or memory: http://momentjs.com/docs/#/displaying/format/
Source: chromecache_374.4.dr, chromecache_254.4.dr, chromecache_336.4.dr, chromecache_222.4.dr, chromecache_365.4.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_293.4.dr, chromecache_237.4.dr, chromecache_371.4.dr, chromecache_338.4.dr, chromecache_251.4.dr, chromecache_361.4.dr, chromecache_217.4.dr, chromecache_243.4.dr, chromecache_262.4.dr, chromecache_208.4.dr	String found in binary or memory: http://php.net/manual/en/function.strftime.php
Source: chromecache_325.4.dr	String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: chromecache_325.4.dr	String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: chromecache_325.4.dr	String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: chromecache_325.4.dr	String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: chromecache_324.4.dr	String found in binary or memory: http://www.imagemagick.org
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://www.iport.it)
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://www.scottklarr.com/topic/425/how-to-insert-text-into-a-textarea-where-the-cursor-is/
Source: chromecache_379.4.dr, chromecache_207.4.dr	String found in binary or memory: http://www.webtoolkit.info/
Source: chromecache_354.4.dr, chromecache_316.4.dr, chromecache_223.4.dr, chromecache_372.4.dr, chromecache_327.4.dr	String found in binary or memory: https://accessible360.com/accessible360-blog/use-aria-label-screen-reader-text/
Source: chromecache_271.4.dr, chromecache_239.4.dr	String found in binary or memory: https://agent.pendo.io/licenses
Source: chromecache_210.4.dr, chromecache_312.4.dr	String found in binary or memory: https://cdn.pendo.io/agent/static/
Source: chromecache_349.4.dr	String found in binary or memory: https://cloudflareinsights.com
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/0dqacnbvt_deal_task_stage_completed.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/1wbp227ts_ecom_widget_bigcommerce.gif
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/5we4nswko_sso-login.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/6bvfo6yte_align_c.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/6gi3zyew_setup-leads.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/6h4ypui49_api-webhooks.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/6qa3wwjn9_lock-and-key.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/7caox61x3_api-wrapper.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/8xd9k8oyn_loader-white.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/ahsy3cbyf_score_row_edit.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/gmukkz38x_image_resizable_handler.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/gqj1lfhhb_setup-pipelines.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/gvxbrrcoh_etsy.gif
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/hh9ujqgv5_aclogo_li.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/j5rdou4q_mindbody.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/jftq2c8s_aclogo_dk.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/jmdiie8a5_align_l.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/negrhfka1_align-left.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/npy3hbtyq_apps-block-event-track.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/nxhmk8myp_close-option.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/p0pkvuia_setup-process.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/purnl7ljk_align-center.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/rozq2siaa_deal_task_stage_current.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/sm6m7uxqb_otp-globe.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/u57v8te29_align_r.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/vb8qvk7gt_api-info.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/w9mqrrow_sidebar-pattern.png
Source: chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/wbc7rtvkj_google-oidc-logo.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/wqjihb3v1_align-right.png
Source: chromecache_354.4.dr, chromecache_316.4.dr, chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_223.4.dr, chromecache_372.4.dr, chromecache_327.4.dr, chromecache_335.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/y0k71lyoi_learning_content_lightbulb.svg
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/y7m8e6hkf_apps-block-facebook.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/yq2z36nxw_apps-block-twitter.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/yvm9kmshk_score_row_save.png
Source: chromecache_354.4.dr, chromecache_316.4.dr, chromecache_223.4.dr, chromecache_372.4.dr, chromecache_327.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/zlj2s7gvs_icon-search-grey.png
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://d226aj4ao1t61q.cloudfront.net/zq6835y4f_apps-block-site-track.png
Source: chromecache_224.4.dr, chromecache_345.4.dr, chromecache_303.4.dr, chromecache_285.4.dr, chromecache_292.4.dr, chromecache_368.4.dr, chromecache_263.4.dr, chromecache_267.4.dr, chromecache_253.4.dr, chromecache_358.4.dr	String found in binary or memory: https://d3rxaij56vjege.cloudfront.net/media/geomarker.png
Source: chromecache_261.4.dr, chromecache_230.4.dr, chromecache_367.4.dr, chromecache_240.4.dr	String found in binary or memory: https://developer.zendesk.com/documentation/classic-web-widget-sdks/web-widget/getting-started/legal
Source: chromecache_296.4.dr, chromecache_270.4.dr	String found in binary or memory: https://ekr.zendesk.com/compose_product/web_widget/b6408d4833f9bc1811ef5112a5e08fef07367495?features
Source: chromecache_349.4.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Comfortaa:wght
Source: chromecache_354.4.dr, chromecache_316.4.dr, chromecache_223.4.dr, chromecache_372.4.dr, chromecache_327.4.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=IBM
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/comfortaa/v45/1Ptsg8LJRfWJmhDAuUs4Q4FqPfE.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/comfortaa/v45/1Ptsg8LJRfWJmhDAuUs4QIFqPfE.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/comfortaa/v45/1Ptsg8LJRfWJmhDAuUs4QoFqPfE.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/comfortaa/v45/1Ptsg8LJRfWJmhDAuUs4SYFqPfE.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/comfortaa/v45/1Ptsg8LJRfWJmhDAuUs4TYFq.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/comfortaa/v45/1Ptsg8LJRfWJmhDAuUs4ToFqPfE.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AI5sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AI9sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIJsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIVsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIxsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjR7_AI5sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjR7_AI9sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjR7_AIFsdA.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjR7_AIJsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjR7_AIVsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjR7_AIxsdO_q.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AI5sdO_q.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AI9sdO_q.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIFsdA.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIJsdO_q.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIVsdO_q.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjSL9AIxsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AI5sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AI9sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIJsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIVsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIxsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjXr8AI5sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjXr8AI9sdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjXr8AIFsdA.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjXr8AIJsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjXr8AIVsdO_q.woff2)
Source: chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYX9KVElMYYaJe8bpLHnCwDKjXr8AIxsdO_q.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhd7eFb5N.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdLeFb5N.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdXeFb5N.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhd_eFb5N.woff2)
Source: chromecache_235.4.dr, chromecache_364.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/ibmplexsans/v19/zYXgKVElMYYaJe8bpLHnCwDKhdzeFb5N.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwAT9nA2.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwQT9g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwcT9nA2.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwgT9nA2.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwkT9nA2.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwoT9nA2.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCm3FwrK3iLTcvnUwsT9nA2.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvhYwYL8g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcviYwY.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvmYwYL8g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvsYwYL8g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvtYwYL8g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvuYwYL8g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcCo3FwrK3iLTcvvYwYL8g.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-cSZMZ-Y.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-ciZMZ-Y.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-cyZMZ-Y.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-eCZMZ-Y.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf1jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf2jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf3jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf4jvw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR71Wvf8jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf1jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf2jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf3jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf4jvw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7NWPf8jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff1jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff2jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff3jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff8jvzRPA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZAf-LHrw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZBf-LHrw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZDf-LHrw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZKf-LHrw.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZV8f6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZVcf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZVsf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZXMf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZV8f6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZVcf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZVsf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZXMf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZV8f6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZVcf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZVsf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZXMf6lvg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFiD-vYSZviVYUb_rj3ij__anPXDTLYgFE_.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFiD-vYSZviVYUb_rj3ij__anPXDTPYgFE_.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFiD-vYSZviVYUb_rj3ij__anPXDTjYgFE_.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFkD-vYSZviVYUb_rj3ij__anPXDTnohkk72xU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFkD-vYSZviVYUb_rj3ij__anPXDTnojEk72xU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v37/nuFkD-vYSZviVYUb_rj3ij__anPXDTnojUk72xU.woff2)
Source: chromecache_235.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_235.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkAnkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBXkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkC3kaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkCHkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkCXkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkCnkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkaHkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkenkaWzU.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3-UBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3CUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3GUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3OUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3iUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhEq3-OXg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhFq3-OXg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhGq3-OXg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhIq3-OXg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhLq38.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x5DF4xlVMF-BfR8bXMIjhPq3-OXg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x7DF4xlVMF-BfR8bXMIjhOm32WWg.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x7DF4xlVMF-BfR8bXMIjhOm36WWoKC.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x7DF4xlVMF-BfR8bXMIjhOm3CWWoKC.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x7DF4xlVMF-BfR8bXMIjhOm3KWWoKC.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x7DF4xlVMF-BfR8bXMIjhOm3OWWoKC.woff2)
Source: chromecache_260.4.dr	String found in binary or memory: https://fonts.gstatic.com/s/robotomono/v23/L0x7DF4xlVMF-BfR8bXMIjhOm3mWWoKC.woff2)
Source: chromecache_374.4.dr, chromecache_254.4.dr, chromecache_336.4.dr, chromecache_222.4.dr, chromecache_365.4.dr	String found in binary or memory: https://github.com/nickpettit/glide
Source: chromecache_351.4.dr, chromecache_212.4.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_351.4.dr, chromecache_212.4.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.26.0/LICENSE
Source: chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	String found in binary or memory: https://img-us1.com/tmpbuilder_imgfiller_180x150.gif
Source: chromecache_306.4.dr, chromecache_343.4.dr	String found in binary or memory: https://jhildenbiddle.github.io/css-vars-ponyfill/
Source: chromecache_271.4.dr, chromecache_239.4.dr	String found in binary or memory: https://pendo-io-static.storage.googleapis.com/agent/static/ed3d50f4-0e02-4aa9-544b-e7c43ee11673/pen
Source: chromecache_271.4.dr, chromecache_239.4.dr	String found in binary or memory: https://pendo-static-5646107534426112.storage.googleapis.com
Source: chromecache_296.4.dr, chromecache_270.4.dr, chromecache_375.4.dr, chromecache_363.4.dr	String found in binary or memory: https://prodhostedtest.zendesk.com/embeddable/avatars/10718314379804
Source: chromecache_296.4.dr, chromecache_270.4.dr, chromecache_375.4.dr, chromecache_363.4.dr	String found in binary or memory: https://prodhostedtest.zendesk.com/sc/sdk
Source: chromecache_349.4.dr	String found in binary or memory: https://solve-api.forethought.ai/
Source: chromecache_349.4.dr	String found in binary or memory: https://static.cloudflareinsights.com
Source: chromecache_349.4.dr	String found in binary or memory: https://static.cloudflareinsights.com/beacon.min.js
Source: chromecache_296.4.dr, chromecache_270.4.dr	String found in binary or memory: https://static.zdassets.com/web_widget/messenger/latest/web-widget-main-b6408d4.js

Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50349
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50351
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 50374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 50377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 50365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50253
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50255
Source: unknown	Network traffic detected: HTTP traffic on port 50353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50258
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50387 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 50318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50272
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50277
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50282
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50288
Source: unknown	Network traffic detected: HTTP traffic on port 50375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 50229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 50112 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 50367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50383 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 50314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 50246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50371 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 50326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 50348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50293 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893

Source: unknown

HTTPS traffic detected: 173.222.162.55:443 -> 192.168.2.10:49842 version: TLS 1.2

Source: classification engine

Classification label: mal48.phis.win@22/318@100/33

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2144 --field-trial-handle=2088,i,16625285114836644899,6677384631365489022,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://ncn.acemlna.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2144 --field-trial-handle=2088,i,16625285114836644899,6677384631365489022,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
http://ncn.acemlna.com	0%	Avira URL Cloud	safe

Source	Detection	Scanner	Label
https://d226aj4ao1t61q.cloudfront.net/7caox61x3_api-wrapper.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/ac_global/fontello/css/ac-icons.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/ac_global/fontello/css/ac-icons.css?v=v1027121337464636	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121337464636	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/mainjs.php?v=v1027121337464636	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/camp-colors.css?v=v102712819748518	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/w9mqrrow_sidebar-pattern.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/mainjs.php?v=v1027121898716292	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/gvxbrrcoh_etsy.gif	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/header.css?v=v102712819748518	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/nxhmk8myp_close-option.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/js/functions.js?v=v102712819748518	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/node_modules/@activecampaign/camp-core-css/dist/build.css?v=v102712819748518	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/wbc7rtvkj_google-oidc-logo.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121898716292	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/1wbp227ts_ecom_widget_bigcommerce.gif	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121802907500	0%	Avira URL Cloud	safe
http://hildenbiddle.com	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/header.css?v=v1027121802907500	0%	Avira URL Cloud	safe
http://magnetiq.com)	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/npy3hbtyq_apps-block-event-track.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/6qa3wwjn9_lock-and-key.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/j5rdou4q_mindbody.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/6h4ypui49_api-webhooks.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/skin.css?v=v1027121898716292	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/mainjs.php?v=v1027121575627411	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/negrhfka1_align-left.png	0%	Avira URL Cloud	safe
https://d3rxaij56vjege.cloudfront.net/media/geomarker.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/ahsy3cbyf_score_row_edit.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/vxd0ariod_gift.png	0%	Avira URL Cloud	safe
https://ncn.acemlna.com/	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/jhynp592_idcard.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/js/functions.js?v=v1027121898716292	0%	Avira URL Cloud	safe
https://accessible360.com/accessible360-blog/use-aria-label-screen-reader-text/	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/content.css?v=v102712819748518	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/y7m8e6hkf_apps-block-facebook.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/6gi3zyew_setup-leads.png	0%	Avira URL Cloud	safe
http://www.iport.it)	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/css_camp.min.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/gqj1lfhhb_setup-pipelines.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/8xd9k8oyn_loader-white.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/jsc/ac.js?v=v1027121802907500	0%	Avira URL Cloud	safe
https://nc-nielsen.dk/Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png	0%	Avira URL Cloud	safe
http://kevin.vanzonneveld.net/techblog/article/javascript_equivalent_for_phps_preg_quote/	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/header.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/camp-colors.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/jftq2c8s_aclogo_dk.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/animations.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/5we4nswko_sso-login.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/js/ac-pendo.js	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/footer.css?v=v1027121337464636	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/yvm9kmshk_score_row_save.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/css_camp.min.css?v=v102712819748518	0%	Avira URL Cloud	safe
https://jhildenbiddle.github.io/css-vars-ponyfill/	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/footer.css?v=v102712819748518	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/js/functions.js?v=v1027121575627411	0%	Avira URL Cloud	safe
http://mathiasbynens.be/demo/url-regex	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/yq2z36nxw_apps-block-twitter.png	0%	Avira URL Cloud	safe
http://ncn.acemlna.com/	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/admin/css/skin.css?v=v1027121575627411	0%	Avira URL Cloud	safe
https://prodhostedtest.zendesk.com/embeddable/avatars/10718314379804	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/u57v8te29_align_r.png	0%	Avira URL Cloud	safe
https://ncn.activehosted.com/node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121802907500	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/zlj2s7gvs_icon-search-grey.png	0%	Avira URL Cloud	safe
https://d226aj4ao1t61q.cloudfront.net/ckke9g3gf_browserwindowapp.png	0%	Avira URL Cloud	safe
https://prodhostedtest.zendesk.com/embeddable/config	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
solve-ui.pages.dev	188.114.97.3	true	false	high
prodhostedtest.zendesk.com	216.198.54.1	true	false	high
fastly-tls12-bam.nr-data.net	162.247.243.29	true	false	high
cloudflareinsights.com	104.16.80.73	true	false	high
a.nel.cloudflare.com	35.190.80.1	true	false	high
static.cloudflareinsights.com	104.16.80.73	true	false	high
ncn.acemlna.com	54.235.205.181	true	false	unknown
js-agent.newrelic.com	162.247.243.39	true	false	high
o185886.ingest.sentry.io	34.120.195.249	true	false	high
d226aj4ao1t61q.cloudfront.net	65.9.7.201	true	false	high
static.zdassets.com	216.198.53.3	true	false	high
cdn.pendo.io	34.36.213.229	true	false	high
data.pendo.io	34.107.204.85	true	false	high
cdnjs.cloudflare.com	104.17.25.14	true	false	high
solve-api.forethought.ai	104.17.255.3	true	false	high
ekr.zdassets.com	216.198.53.3	true	false	high
www.google.com	142.250.181.228	true	false	high
nc-nielsen.dk	81.95.249.137	true	false	unknown
d3r4ionp7m7mlj.cloudfront.net	143.204.215.3	true	false	unknown
www.nc-nielsen.dk	81.95.249.137	true	false	high
d3tnn7lar6ozas.cloudfront.net	52.222.250.40	true	false	high
ncn.activehosted.com	104.17.204.31	true	true	unknown
solve-widget.forethought.ai	unknown	unknown	false	high
bam.nr-data.net	unknown	unknown	false	high
platform-cdn.app-us1.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121337464636	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/mainjs.php?v=v1027121337464636	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/camp-colors.css?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://solve-widget.forethought.ai/static/js/main.64e6aab4.js	false		high
https://ncn.activehosted.com/admin/mainjs.php?v=v1027121898716292	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/ac_global/fontello/css/ac-icons.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/ac_global/fontello/css/ac-icons.css?v=v1027121337464636	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/header.css?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/node_modules/@activecampaign/camp-core-css/dist/build.css?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://bam.nr-data.net/events/1/d3d5c809d5?a=456978955&v=1.278.2&to=M1JQYEMHVhFXB0AMXAoYcUFCElcPGQVQCFoKGFtaVQNATEYMRF8%3D&rst=11780&ck=0&s=4393e6db1c06e3b3&ref=https://ncn.activehosted.com/admin/index.php&ptid=ea0c83264464eeac	false		high
https://a.nel.cloudflare.com/report/v4?s=ur1a38fWmdlUpMmQHPeLcTi9iNTMwvJYxix8juG707TvDL36NGTZweI1NiQXUaRT66v43w8pqU4%2BM4OpZSQLJIWnaXXArnogSApBrIgEZtuO9GKDnJxnvuwMb509%2F7kF9awoa7%2BQO1aRQtFN	false		high
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121898716292	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/	false		unknown
https://ncn.activehosted.com/admin/css/skin2.css?v=v1027121802907500	false	Avira URL Cloud: safe	unknown
https://static.zdassets.com/web_widget/messenger/latest/web-widget-3190-b6408d4.js	false		high
https://ncn.activehosted.com/admin/js/functions.js?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/header.css?v=v1027121802907500	false	Avira URL Cloud: safe	unknown
https://data.pendo.io/data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860750167&jzb=eJwtkF1vwiAUQP8Lz64fVmsxWZaZmdTMjz30ZVuWBsudohQQaFdn_O_e1T3CuZx7wueF-LMBMiVSM04GZGv1jwNbelHjbTxJ0iyNJiM6otmAtMIJr20pOD4o3-brl01ZlN3ht1s2dd4WgAJWVbpR_j4zTGk2jNIHYzVvKi-0wonGSkR7742bhqGqVMAQtbDXzgMPKl2HjNdChUJx6AKzN09gLa6twe0ehWqZFFzqnfiTodk4Mr30_f_VWUbjYHxFyCwoX7DtAmNUI-WA-PuBRGs6GS1X58VhMTs18xRV35bV0EOaF2xcZO_58_i4eR2eEDpwDvN73CVdbj7S-SqO21l3lD0-NaAqXB7hH549YFOS0OvXDSIbc-k	false		high
https://static.zdassets.com/ekr/snippet.js?key=dcd5b484-abf6-47e3-adad-bc7b7da716c4	false		high
https://data.pendo.io/data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkG9vqjAYxb9LXzNhzoCS3NxcB4tkTs1kvlkWUumj1JUW-4fJNX53Cy5u8R2c88tzTs8R6aYCFCIJuZCE8i1yUE0V1UImxOrZIp5F8yzNDrv_h6kpJ3UKFsF5LgzXHdL3R8O-599VUhCTayq4BdZSfCmQKS3t9fvgwR_6XhAEnj9w0Cc0TxK3xgYzBQ5iWOnnq-g5P226ACbaVldtCUrZkF-Wkcx-F1pXKnRdnvMetj1qKITSQHq5KF1MSspdygkcelVR_QUphcxKUNs_lNeYUWJP0ba5Muv0sslN7gI3TGCb-v5hKdgb4PlN3W_ksd2mc-wmlULh0SJY2WFCtEqWSTp_zaJk-W88jSN0shSWwHWK1-2buGHMQfryg7zZKBhMX5pkl4z3JvZtoU07U2eujIw2uJns3qRfxB5BpzM_xJwH&ct=1736860777065&v=2.260.1_prod&recordingId=log	false		high
https://ncn.activehosted.com/admin/css/skin.css?v=v1027121898716292	false	Avira URL Cloud: safe	unknown
https://bam.nr-data.net/jserrors/1/d3d5c809d5?a=456978955&v=1.278.2&to=M1JQYEMHVhFXB0AMXAoYcUFCElcPGQVQCFoKGFtaVQNATEYMRF8%3D&rst=19564&ck=0&s=4393e6db1c06e3b3&ref=https://ncn.activehosted.com/admin/index.php&ptid=ea0c83264464eeac	false		high
https://ncn.activehosted.com/admin/mainjs.php?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/vxd0ariod_gift.png	false	Avira URL Cloud: safe	unknown
https://data.pendo.io/data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860767715&jzb=eJztl31P4koUxr_KpH_z0gIWMLkxMWDsXVGvi5vc6zXN0A5ldDpTZ06hrOG7e2gR6-u6RqPJMgkvM3M4z3PODD_C2bUF84RZ25ZQNLQq1kirmWHaBx7jqtNuuh3Xbrttu9OoWFNuOCjt8xA_4B_3D3tH_tDPLn5mB2m8Px0yTECDQKUSipiG2-00bLeaaBWmAXAlMSLVArcmAInZrtdlIGsUt6ZsogywsBaouE7DmMs6lyHLaskk2WFao2zMTPQXl1MqeChUxJfJMHNirO3r3P_KdbvbcGquvR7uAuOoZhKGdOShL5kKUbGgmFj2YbfdOhjMvQtv9yrtu5h1rGnM8k19_I8c_H1ymujht9730wvcNMwYrCTfzprZfvKf2x84znQ3uxT59lXKZIA-bGznHBjaa27Zi8q61WMVpOaFXje67a_da6A6YlC8izC_d3h8OsSA3Ae-BgLD0J0_SgGUJMWLL5YfI1SAQ8aaRxMgUsW4licHDgK7UBwNBdCFUtExk45iDhiFftLlwsHKEp5h7hyXWhYeczz3imkTXUy4CFdTB0MzdLx0V1yFvmDxXQU978dT_vPKq0LNmCbB-DmXZV0HD70svPW03t7RyeBWEEX8FO_BWvg1OnhDyjJY7u-W5Y9U9qqK7ithfW9RwocO8xrfX7AQCZQEymWpj_f0y9sf292xYFk1UIKMuTZAijuUUMnIKKqqgNFnr_u7tT23gHQhMc2qE7b6rlVnmibvp7171Pv3kfgtK36pgT8n976gi_X4HFhjzStYO61WmdaB4MHlC7Ru2tifDa03tN7QekPrP43WSF9BI4w-swQbg3X-WfhGg2t8b7VL-F7D6Hl-f_F_Ng_5_QE0KmjrFQbIMqHEQyFKk4QaM0MY1Mie0pECMlfp3eoOOWGGAeHwvyQ4ys8P5w9Xl6PIufMo7A3c3wByA8gvCcjPoCGe8C0NGx17cX4DvtvQ8Q	false		high
https://ncn.acemlna.com/	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/jhynp592_idcard.png	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/js/functions.js?v=v1027121898716292	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/content.css?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://a.nel.cloudflare.com/report/v4?s=%2Bn09fBu1SspZwdvzjRVWw3WGhMKMHSHeGjLru6GKkeiQiyIX5mW%2F6MoeQoR3Glths5Wfnc85FDuar6qteRxb2%2FLUrwHfWKOX7Ac3WQPCfikuD83vFANzbMLHWuS0BtdKbtxEk1rLWKQI8VjX	false		high
https://static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-b6408d4.js	false		high
https://ncn.activehosted.com/admin/css/css_camp.min.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://platform-cdn.app-us1.com/core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css	false		high
https://data.pendo.io/data/ptm.gif/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?v=2.260.1_prod&ct=1736860716705&jzb=eJzFU99P2zAY_F_83CV2Epy0b6uoRCUKk-j2sGmyTGzAXWIH_8jSof7vfIY2YxKq9oDUPMW577s73yk_npDfdhLNkBJSe3W3RRN0a81vJy3zqgWElDmtKC4JxbSaoF455Y1lSsAS-7K4Or9mazZs_gyXob3o1xIIeF2boP3rTEanVYbpp84aEWqvjIaJYBuAHrzv3CxNda0TDlAvH4zzUiS1aVMuWqVTmIXFzqHZEzKNYP8jH-feWtChaT7G-A7ccAtBrfntcmT2rweEr6ZlcbnaLjfL-WNYUCC8s7yVL6BYrNS3Tbg5P_PlfEOvAXTyMUhdQ8YYQt96CbfMp9luMpbSSs-PFVKSkxayl46vx9Qbru8Dv48Xkpp9vYkx7h2Nq--a0hAeYO-5-VvF55EJPgnu4wYpUkzSDGdnwNJL6yIfiCQZxQlhUeTDu3RR5AUe8uGi-04XK0L6-fCr-adqaGxfdVFWb6puDBdHq85OWnW0dzBVEFIkZHp4qvxEUUIih7-GVLufz3Zvjho	false		high
https://bam.nr-data.net/ins/1/d3d5c809d5?a=456978955&v=1.278.2&to=M1JQYEMHVhFXB0AMXAoYcUFCElcPGQVQCFoKGFtaVQNATEYMRF8%3D&rst=19566&ck=0&s=4393e6db1c06e3b3&ref=https://ncn.activehosted.com/admin/index.php&ptid=ea0c83264464eeac&at=HxVHFgsdRU4UBRZfSBlK	false		high
https://ncn.activehosted.com/admin/jsc/ac.js?v=v1027121802907500	false	Avira URL Cloud: safe	unknown
https://nc-nielsen.dk/Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/animations.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://bam.nr-data.net/events/1/d3d5c809d5?a=456978955&v=1.278.2&to=M1JQYEMHVhFXB0AMXAoYcUFCElcPGQVQCFoKGFtaVQNATEYMRF8%3D&rst=19563&ck=0&s=4393e6db1c06e3b3&ref=https://ncn.activehosted.com/admin/index.php&ptid=ea0c83264464eeac	false		high
https://ncn.activehosted.com/admin/css/camp-colors.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://solve-widget.forethought.ai/static/css/647.38ef54d4.chunk.css	false		high
https://ncn.activehosted.com/admin/css/header.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/js/ac-pendo.js	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/footer.css?v=v1027121337464636	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin	true		unknown
https://ncn.activehosted.com/admin/css/css_camp.min.css?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/footer.css?v=v102712819748518	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/admin/css/skin.css?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
https://static.cloudflareinsights.com/beacon.min.js	false		high
https://ncn.activehosted.com/admin/js/functions.js?v=v1027121575627411	false	Avira URL Cloud: safe	unknown
http://ncn.acemlna.com/	false	Avira URL Cloud: safe	unknown
https://data.pendo.io/data/rec/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJxdkG9PwjAYxL9LX082UDZYYgwIhgUEIo2JMWYp2wMUunb0z2QSvjvdMGh4t9398tz1jkiXOaAQSUiETClfIwcVVFEtZJRaPZ4Pp4NZjOPD9ucwMdmowGARkiTCcF0jLb_baXn-XS5FahJNBbfAUopvBRLTzF5vBvd-x_eCttf0AwftoHyRpDJWhClwECNKj6-i5_y1qQOYqFpdtQUoZUP-WUYy-73ROleh6_KEN4jtUcBGKA1pIxGZS9KMcpfyFA6NfJM_gZRCxhmo9SPlBWE0tado1VyZJb5scpM7JyUTxKZ-flkK9gZ4clP3F3mutqkdu0muUHi0CFF2mBC9R4sIz97iQbTo9SfDATpZikjgGpNl9SZuGHOQvvwgb9oNHiavZbSN-nsz9G2hVTVTbXZHmLRx52PUa-9m49Yenc4rMZsH&ct=1736860750168&v=2.260.1_prod&recordingId=log	false		high
https://d226aj4ao1t61q.cloudfront.net/ckke9g3gf_browserwindowapp.png	false	Avira URL Cloud: safe	unknown
https://ncn.activehosted.com/node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121802907500	false	Avira URL Cloud: safe	unknown
https://data.pendo.io/data/recordingconf/ed3d50f4-0e02-4aa9-544b-e7c43ee11673?jzb=eJx9jl9LwzAUR79LnmfSBi06EBEUFEQF53O4NJc20tyE_KM49t2XyNjT8C2Ee87v7FkOC9uyOSUft0LQSBzGZArOLibUfHRWgLaGhCGNK_ezf8AQXFAW43RvqMBi9OImQ2zDLCbQkIBt96yYaJIL7Wl0nVCfz-9PH2qn1p_f9S3bl7LDiixAU4YJ6wWS-v5ihw2DcXSZ0hmVw92t7IYrH5zOtc61LQLboEvFzeEhIKXHs6l-1bJG9Nei64Xs5E21FAyx-eoIl0PHe9VGmuDU__pP-6nz7-RC4-EI2t11eA&ct=1736860776443&v=2.260.1_prod	false		high
https://solve-widget.forethought.ai/?v=2	false		high
https://prodhostedtest.zendesk.com/embeddable/config	false	Avira URL Cloud: safe	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://d226aj4ao1t61q.cloudfront.net/w9mqrrow_sidebar-pattern.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/gvxbrrcoh_etsy.gif	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://github.com/zloirock/core-js	chromecache_351.4.dr, chromecache_212.4.dr	false		high
https://solve-api.forethought.ai/	chromecache_349.4.dr	false		high
http://polymer.github.io/AUTHORS.txt	chromecache_325.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/7caox61x3_api-wrapper.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/1wbp227ts_ecom_widget_bigcommerce.gif	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://static.cloudflareinsights.com	chromecache_349.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/wbc7rtvkj_google-oidc-logo.png	chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	false	Avira URL Cloud: safe	unknown
https://agent.pendo.io/licenses	chromecache_271.4.dr, chromecache_239.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/nxhmk8myp_close-option.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
http://hildenbiddle.com	chromecache_306.4.dr, chromecache_343.4.dr	false	Avira URL Cloud: safe	unknown
http://magnetiq.com)	chromecache_379.4.dr, chromecache_207.4.dr	false	Avira URL Cloud: safe	unknown
http://polymer.github.io/PATENTS.txt	chromecache_325.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/6h4ypui49_api-webhooks.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/npy3hbtyq_apps-block-event-track.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/j5rdou4q_mindbody.png	chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/6qa3wwjn9_lock-and-key.png	chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	false	Avira URL Cloud: safe	unknown
https://d3rxaij56vjege.cloudfront.net/media/geomarker.png	chromecache_224.4.dr, chromecache_345.4.dr, chromecache_303.4.dr, chromecache_285.4.dr, chromecache_292.4.dr, chromecache_368.4.dr, chromecache_263.4.dr, chromecache_267.4.dr, chromecache_253.4.dr, chromecache_358.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/negrhfka1_align-left.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/ahsy3cbyf_score_row_edit.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
http://www.imagemagick.org	chromecache_324.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/y7m8e6hkf_apps-block-facebook.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://accessible360.com/accessible360-blog/use-aria-label-screen-reader-text/	chromecache_354.4.dr, chromecache_316.4.dr, chromecache_223.4.dr, chromecache_372.4.dr, chromecache_327.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/6gi3zyew_setup-leads.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
http://www.iport.it)	chromecache_379.4.dr, chromecache_207.4.dr	false	Avira URL Cloud: safe	unknown
http://daneden.me/animate	chromecache_374.4.dr, chromecache_254.4.dr, chromecache_336.4.dr, chromecache_222.4.dr, chromecache_365.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/gqj1lfhhb_setup-pipelines.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/8xd9k8oyn_loader-white.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
http://kevin.vanzonneveld.net/techblog/article/javascript_equivalent_for_phps_preg_quote/	chromecache_379.4.dr, chromecache_207.4.dr	false	Avira URL Cloud: safe	unknown
http://polymer.github.io/CONTRIBUTORS.txt	chromecache_325.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/jftq2c8s_aclogo_dk.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/5we4nswko_sso-login.png	chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/yvm9kmshk_score_row_save.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
https://jhildenbiddle.github.io/css-vars-ponyfill/	chromecache_306.4.dr, chromecache_343.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/yq2z36nxw_apps-block-twitter.png	chromecache_294.4.dr, chromecache_213.4.dr, chromecache_277.4.dr, chromecache_352.4.dr, chromecache_300.4.dr	false	Avira URL Cloud: safe	unknown
http://mathiasbynens.be/demo/url-regex	chromecache_379.4.dr, chromecache_207.4.dr	false	Avira URL Cloud: safe	unknown
https://cdn.pendo.io/agent/static/	chromecache_210.4.dr, chromecache_312.4.dr	false		high
https://prodhostedtest.zendesk.com/embeddable/avatars/10718314379804	chromecache_296.4.dr, chromecache_270.4.dr, chromecache_375.4.dr, chromecache_363.4.dr	false	Avira URL Cloud: safe	unknown
https://developer.zendesk.com/documentation/classic-web-widget-sdks/web-widget/getting-started/legal	chromecache_261.4.dr, chromecache_230.4.dr, chromecache_367.4.dr, chromecache_240.4.dr	false		high
https://d226aj4ao1t61q.cloudfront.net/u57v8te29_align_r.png	chromecache_353.4.dr, chromecache_241.4.dr, chromecache_258.4.dr, chromecache_252.4.dr, chromecache_335.4.dr	false	Avira URL Cloud: safe	unknown
https://d226aj4ao1t61q.cloudfront.net/zlj2s7gvs_icon-search-grey.png	chromecache_354.4.dr, chromecache_316.4.dr, chromecache_223.4.dr, chromecache_372.4.dr, chromecache_327.4.dr	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
143.204.215.19	unknown	United States	16509	AMAZON-02US	false
81.95.249.137	nc-nielsen.dk	Denmark	207199	ZITCOMDK	false
34.36.213.229	cdn.pendo.io	United States	2686	ATGS-MMD-ASUS	false
54.235.205.181	ncn.acemlna.com	United States	14618	AMAZON-AESUS	false
104.16.80.73	cloudflareinsights.com	United States	13335	CLOUDFLARENETUS	false
52.222.250.117	unknown	United States	16509	AMAZON-02US	false
104.17.204.31	ncn.activehosted.com	United States	13335	CLOUDFLARENETUS	true
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
104.16.79.73	unknown	United States	13335	CLOUDFLARENETUS	false
162.247.243.39	js-agent.newrelic.com	United States	13335	CLOUDFLARENETUS	false
104.17.24.14	unknown	United States	13335	CLOUDFLARENETUS	false
34.107.204.85	data.pendo.io	United States	15169	GOOGLEUS	false
65.9.7.201	d226aj4ao1t61q.cloudfront.net	United States	16509	AMAZON-02US	false
65.9.7.124	unknown	United States	16509	AMAZON-02US	false
52.222.250.40	d3tnn7lar6ozas.cloudfront.net	United States	16509	AMAZON-02US	false
104.17.255.3	solve-api.forethought.ai	United States	13335	CLOUDFLARENETUS	false
104.17.1.4	unknown	United States	13335	CLOUDFLARENETUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
188.114.97.3	solve-ui.pages.dev	European Union	13335	CLOUDFLARENETUS	false
54.82.80.250	unknown	United States	14618	AMAZON-AESUS	false
142.250.181.228	www.google.com	United States	15169	GOOGLEUS	false
216.198.54.3	unknown	United States	7321	LNET-ASNUS	false
104.17.203.31	unknown	United States	13335	CLOUDFLARENETUS	false
216.198.53.3	static.zdassets.com	United States	7321	LNET-ASNUS	false
188.114.96.3	unknown	European Union	13335	CLOUDFLARENETUS	false
216.198.54.1	prodhostedtest.zendesk.com	United States	7321	LNET-ASNUS	false
162.247.243.29	fastly-tls12-bam.nr-data.net	United States	13335	CLOUDFLARENETUS	false
142.250.186.164	unknown	United States	15169	GOOGLEUS	false
143.204.215.3	d3r4ionp7m7mlj.cloudfront.net	United States	16509	AMAZON-02US	false
143.204.215.116	unknown	United States	16509	AMAZON-02US	false
34.120.195.249	o185886.ingest.sentry.io	United States	15169	GOOGLEUS	false
104.17.25.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.10

General Information

Joe Sandbox version:	42.0.0 Malachite
Analysis ID:	1590712
Start date and time:	2025-01-14 14:17:16 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 4m 38s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://ncn.acemlna.com
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	13
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal48.phis.win@22/318@100/33
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, SIHClient.exe, Sgrmuserer.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.131, 142.250.184.238, 66.102.1.84, 142.250.186.78, 142.250.186.46, 142.250.185.206, 142.250.181.234, 142.250.186.67, 199.232.210.172, 142.250.185.202, 142.250.185.170, 172.217.23.106, 216.58.212.138, 142.250.186.138, 172.217.16.138, 142.250.74.202, 142.250.186.74, 216.58.206.42, 142.250.184.202, 142.250.185.234, 142.250.186.170, 142.250.186.106, 172.217.18.10, 142.250.186.42, 172.217.16.131, 216.58.206.46, 142.250.186.155, 172.217.23.123, 172.217.18.27, 142.250.185.123, 172.217.16.219, 142.250.184.251, 142.250.185.91, 216.58.206.91, 142.250.185.155, 216.58.212.187, 172.217.18.123, 142.250.186.59, 142.250.186.91, 142.250.74.219, 216.58.212.155, 142.250.185.187, 216.58.206.59, 142.250.184.219, 172.217.16.206, 172.217.18.110, 172.217.18.14, 142.250.184.206, 216.58.212.163, 172.217.23.99, 13.107.246.45, 2.23.242.162, 172.202.163.200
Excluded domains from analysis (whitelisted): fonts.googleapis.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, otelrules.azureedge.net, slscr.update.microsoft.com, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, pendo-static-5646107534426112.storage.googleapis.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, redirector.gvt1.com, update.googleapis.com, clients.l.google.com
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: http://ncn.acemlna.com

Input	Output
URL: http://ncn.acemlna.com Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": false, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": false, "brand_spoofing_attempt": false, "third_party_hosting": true }
URL: http://ncn.acemlna.com
URL: https://ncn.activehosted.com/admin/js/jq/csrf_prot... Model: Joe Sandbox AI	{ "risk_score": 4, "reasoning": "The provided JavaScript snippet appears to be a monkey-patch for jQuery that automatically adds a CSRF token to AJAX requests and form submissions. While this is a common security practice, the implementation has some moderate-risk indicators that warrant further review." }
/** * Monkey patch jQuery so that for each AJAX request, it grabs the CSRF token * directly from the cookie and sets it as a header. This way, it will always * send the newest token. / (function(allTheJQueries) { function validateUrl(url) { if (typeof url !== 'string') { return false; } // If the URL does not begin with 'http' then it is a relative path, // so it is okay if (url.indexOf('http') !== 0) { return true; } // If it is a fully qualified URL, then it MUST be to the current host var upperCaseUrl = url.toUpperCase(); var upperCaseDocumentLocationOrigin = document.location.origin.toUpperCase(); return upperCaseUrl.indexOf(upperCaseDocumentLocationOrigin) === 0; } /* * This is called every AJAX request, and adds our CSRF token header * to the request / function setHeader(options) { var csrfResponseHeaderName = "X-XSRF-TOKEN"; if (!validateUrl(options.url)) { return; } options.headers = typeof options.headers === 'object' ? options.headers : {}; options.headers[csrfResponseHeaderName] = getCSRFToken(); } /* * Modify the given version of jquery / function modifyPrefilter(jQuery) { if (typeof jQuery === "undefined"\|\| typeof jQuery.ajaxPrefilter !== "function" ) { return false; } // Sanity check. Did we already override beforeSend? if (jQuery.csrfProtection && jQuery.csrfProtection === "enabled") { return false; } jQuery.ajaxPrefilter(setHeader); jQuery.csrfProtection = "enabled"; return true; } /* * Reads a CSRF token cookie value and appends it to * * @param jQueryImpl * @returns {boolean} / function appendCSRFTokenOnFormSubmit(jQueryImpl) { if (typeof jQueryImpl === "undefined" ) { return false; } // Settings page has their own submit handler. We are handling // token injection there. if (window.location.href.indexOf('main.php?action=settings') !== -1) { return false; } try { jQueryImpl(document).on('submit', 'form', function() { appendCSRFToken(this); }); } catch (e) { return false; } return true; } // As there are several jQuery versions, just register on one var csrfFormInterceptorRegistered = false; // We need to do this to ALL of the given versions. // We use different versions at different times. allTheJQueries.forEach(function(jQueryImpl) { modifyPrefilter(jQueryImpl); if (!csrfFormInterceptorRegistered) { csrfFormInterceptorRegistered = appendCSRFTokenOnFormSubmit(jQueryImpl); } }); })([window.jQuery, window.$J, window.$]); /* * Extracts CSRF protection token from the carrier cookie * * @returns {string} / function getCSRFToken() { var csrfCookieName = 'XSRF-TOKEN'; var cookie = window.document.cookie // Break up all the cookies .split(';') // Filter out only cookies with right name .filter(function(cookiePart) { return cookiePart.indexOf(csrfCookieName) > -1; }) // Get the first instance of the CSRF cookiecsr // (In testing we only want the first one, not the last one.) .shift() ; if (typeof cookie === 'undefined') { return; } // Here we split the token cookie and grab just the token itself: // XSRF-TOKEN=sometoken => ["XSRF-TOKEN", "sometoken"] => 'sometoken' var token = cookie.trim().split('=').pop(); return token; } /* * Appends a CSRF protection token to html forms upon submit. Being defined in * global scope, can be manually added to onSubmit event for every form missed * by jQuery. * * @param interceptedForm / function appendCSRFToken(interceptedForm) { var form = interceptedForm; if (!form.elements) { form = interceptedForm.forms[0]; } var csrfInput = getCSRFInputField(form); if (!csrfInput) { csrfInput = attachNewCSRFInputFieldToForm(form); } csrfInput.setAttribute("value", getCSRFToken()); } /* * Retrieves a csrf validation input field from the form * * @param myForm * @returns {} / function getCSRFInputField(myForm) { return myForm.elements._csrf
URL: https://ncn.activehosted.com/ac_global/js/ac.js.ph... Model: Joe Sandbox AI	{ "risk_score": 4, "reasoning": "The provided JavaScript snippet contains a few moderate-risk indicators, such as external data transmission and the use of legacy APIs. However, it does not exhibit any high-risk behaviors like dynamic code execution or data exfiltration. The script appears to be a custom AJAX implementation, which is a common practice in web development. While the code could be improved to use more modern and secure approaches, it does not seem to have a clear malicious intent. Further review may be necessary to determine the full context and purpose of this script." }
// ac.js // Loading... // ajax.js var ac_ajax_debug = true; function ac_ajax_request_object() { var hreq; try { hreq = new XMLHttpRequest(); } catch (e) { hreq = null; } return hreq; } function ac_ajax_call_url(url, post, cb) { var hreq = ac_ajax_request_object(); if (hreq !== null) { hreq.onreadystatechange = function() { try { ac_ajax_handle(hreq, cb); } catch (e) {} }; var method = ( post === null ? 'GET' : 'POST' ); var postType = typeof(post); if ( post !== null ) { if ( postType == 'array' \|\| postType == 'object' ) { var postArr = new Array(); for ( var i in post ) { var postType = typeof(post[i]); if ( postType == 'array' \|\| postType == 'object' ) { for ( var j in post[i] ) { if ( typeof(post[i][j]) != 'function' ) { postArr.push(i + '[' + ( j == 'undefined' ? '' : j ) + ']=' + encodeURIComponent(post[i][j])); } } } else if ( postType != 'function' ) { postArr.push(i + '=' + encodeURIComponent(post[i])); } } post = postArr.join('&'); } } hreq.open(method, url, true); hreq.setRequestHeader("X-XSRF-TOKEN", getCSRFToken()); if ( post !== null ) { hreq.setRequestHeader("Content-type", "application/x-www-form-urlencoded"); } hreq.send(post); } } function ac_ajax_proxy_call_url(base, url, post, cb) { if (post !== null) ac_ajax_call_url(base + "/ac_global/functions/ajax_proxy.php?post=1&url=" + ac_b64_encode(url), post, cb); else ac_ajax_call_url(base + "/ac_global/functions/ajax_proxy.php?url=" + ac_b64_encode(url), post, cb); } function ac_ajax_proxy_call_cb(base, url, func, cb) { if (url.match(/\?/)) url = url + "&f=" + func; else url = url + "?f=" + func; url += "&rand=" + ac_b64_encode(Math.random().toString()); if (arguments.length > 3) { for (var i = 4; i < arguments.length; i++) url += "&p[]=" + encodeURIComponent(arguments[i]); } ac_ajax_proxy_call_url(base, url, null, cb); } function ac_ajax_call(url, func) { if (arguments.length < 3) ac_ajax_call_cb(ac_str_url(url), func, null); else { ac_ajax_call_cb(ac_str_url(url), func, null, ac_ary_last(arguments, 2)); } } function ac_ajax_call_cb(url, func, cb) { if (func) { if (url.match(/\?/)) url = url + "&f=" + func; else url = url + "?f=" + func; } url += "&rand=" + ac_b64_encode(Math.random().toString()); if (arguments.length > 3) { for (var i = 3; i < arguments.length; i++) url += "&p[]=" + encodeURIComponent(arguments[i]); } if ( cb === null ) cb = function(){}; ac_ajax_call_url(url, null, cb); } function ac_ajax_post_cb(url, func, cb, post) { if (func) { if (url.match(/\?/)) url = url + "&f=" + func; else url = url + "?f=" + func; } url += "&rand=" + ac_b64_encode(Math.random().toString()); if ( cb === null ) cb = function(){}; ac_ajax_call_url(url, post, cb); } function ac_ajax_handle(hreq, cb) { if (hreq !== null) { if (hreq.readyState == 4) { if (hreq.status == 200) { try { var xml = hreq.responseXML; if (xml !== null && xml.documentElement !== null) { if (cb === null) cb = eval("cb_" + xml.documentElement.nodeName); if (typeof cb == "function") cb(xml.documentElement, hreq.responseText); } else { if ( hreq.responseText != '' ) { if (typeof ac_ajax_handle_text == 'function') ac_ajax_handle_text(hreq.responseText); } } /* var rootNode = ( xml !== null ? xml.documentElement : null ); if (cb === null && rootNode) { cb = eval("cb_" + rootNode.nodeName);
URL: https://ncn.activehosted.com/node_modules/@activec... Model: Joe Sandbox AI	{ "risk_score": 6, "reasoning": "This script exhibits several moderate-risk behaviors, including external data transmission, fallback domains, and aggressive DOM manipulation. While it does not contain any high-risk indicators like dynamic code execution or data exfiltration, the overall behavior is somewhat suspicious and requires further review." }
!function(){"use strict";function t(t,e){var n=Object.keys(t);if(Object.getOwnPropertySymbols){var r=Object.getOwnPropertySymbols(t);e&&(r=r.filter((function(e){return Object.getOwnPropertyDescriptor(t,e).enumerable}))),n.push.apply(n,r)}return n}function e(e){for(var n=1;n<arguments.length;n++){var r=null!=arguments[n]?arguments[n]:{};n%2?t(Object(r),!0).forEach((function(t){s(e,t,r[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):t(Object(r)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(r,t))}))}return e}function n(t){return n="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t},n(t)}function r(t,e,n,r,o,i,a){try{var s=t[i](a),l=s.value}catch(t){return void n(t)}s.done?e(l):Promise.resolve(l).then(r,o)}function o(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}function i(t,e){for(var n=0;n<e.length;n++){var r=e[n];r.enumerable=r.enumerable\|\|!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object.defineProperty(t,r.key,r)}}function a(t,e,n){return e&&i(t.prototype,e),n&&i(t,n),Object.defineProperty(t,"prototype",{writable:!1}),t}function s(t,e,n){return e in t?Object.defineProperty(t,e,{value:n,enumerable:!0,configurable:!0,writable:!0}):t[e]=n,t}function l(t,e){if("function"!=typeof e&&null!==e)throw new TypeError("Super expression must either be null or a function");t.prototype=Object.create(e&&e.prototype,{constructor:{value:t,writable:!0,configurable:!0}}),Object.defineProperty(t,"prototype",{writable:!1}),e&&u(t,e)}function c(t){return c=Object.setPrototypeOf?Object.getPrototypeOf:function(t){return t.__proto__\|\|Object.getPrototypeOf(t)},c(t)}function u(t,e){return u=Object.setPrototypeOf\|\|function(t,e){return t.__proto__=e,t},u(t,e)}function h(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],(function(){}))),!0}catch(t){return!1}}function d(t,e,n){return d=h()?Reflect.construct:function(t,e,n){var r=[null];r.push.apply(r,e);var o=new(Function.bind.apply(t,r));return n&&u(o,n.prototype),o},d.apply(null,arguments)}function f(t){var e="function"==typeof Map?new Map:void 0;return f=function(t){if(null===t\|\|(n=t,-1===Function.toString.call(n).indexOf("[native code]")))return t;var n;if("function"!=typeof t)throw new TypeError("Super expression must either be null or a function");if(void 0!==e){if(e.has(t))return e.get(t);e.set(t,r)}function r(){return d(t,arguments,c(this).constructor)}return r.prototype=Object.create(t.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),u(r,t)},f(t)}function p(t,e){if(e&&("object"==typeof e\|\|"function"==typeof e))return e;if(void 0!==e)throw new TypeError("Derived constructors may only return object or undefined");return function(t){if(void 0===t)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return t}(t)}function v(t){var e=h();return function(){var n,r=c(t);if(e){var o=c(this).constructor;n=Reflect.construct(r,arguments,o)}else n=r.apply(this,arguments);return p(this,n)}}function m(t,e){for(;!Object.prototype.hasOwnProperty.call(t,e)&&null!==(t=c(t)););return t}function y(){return y="undefined"!=typeof Reflect&&Reflect.get?Reflect.get:function(t,e,n){var r=m(t,e);if(r){var o=Object.getOwnPropertyDescriptor(r,e);return o.get?o.get.call(arguments.length<3?t:n):o.value}},y.apply(this,arguments)}function _(t,e){return e\|\|(e=t.slice(0)),Object.freeze(Object.defineProperties(t,{raw:{value:Object.freeze(e)}}))}function g(t){return function(t){if(Array.isArray(t))return w(t)}(t)\|\|function(t){if("undefined"!=typeof Symbol&&null!=t[Symbol.iterator]\|\|null!=t["@@iterator"])return Array.from(t)}(t)\|\|b(t)\|\|function(){throw
URL: https://ncn.activehosted.com/admin/js/functions.js... Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "The provided JavaScript snippet appears to be a collection of utility functions and does not contain any high-risk indicators. The functions are primarily focused on DOM manipulation, form handling, and editor management, which are common in web applications. While some of the practices, such as the use of legacy APIs like `XDomainRequest`, may be considered outdated, there is no evidence of malicious intent or data exfiltration. Overall, the risk score is low, and the code seems to be part of a legitimate web application." }
function console_log() { // attempt to send a message to the console try { for(var i =0; i < arguments.length; i++) { console.log(arguments[i]); } } catch(e) {} // fail gracefully if it does not exist } function form_branding_delete(plan, rsid, formid) { if (!plan && !rsid ) { alert(strFormUpgrade); } else { form_part_delete("branding",formid); } } function jump(url) { ac_loader_show(); window.location = url; } /* CLONER FUNCTIONS / function clone_1st_element(node, elem, clearInputs) { return ac_dom_clone_node(node, elem, 0, clearInputs); } function clone_1st_div(node) { return clone_1st_element(node, 'div', true); } function clone_1st_tr(node) { return clone_1st_element(node, 'tr', false); } function clear_inputs(node) { $J('input', node).each(function(i) { var o = $J(this); var t = o.attr('type'); if (t == 'text' \|\| t == 'file') o.val(''); }); } function clear_selects(node) { $J('select', node).each(function(i) { this.selectedIndex = -1; }); } function clear_areas(node) { $J('textarea', node).html(''); } function remove_element(node) { var me = $J(node); var dad = me.parent(); if ( $J("> div", dad).length > 1 ) { me.remove(); } else { clear_inputs(node); clear_selects(node); clear_areas(node); } } / CLONER END / function preview_template(id, isBasic) { if ( !isBasic ) { var preview_url = plink + '/template/' + id + '/preview_dual'; } else { var preview_url = plink + '/admin/preview_dual.php?t=' + id; } window.open(preview_url ,'preview','height=812,width=1250,menubar=no,location=no,resizable=yes,scrollbars=no,status=yes'); } function toggleEditor(id, action, settings) { if ( action == ac_editor_is(id + 'Editor') ) return false; ac_editor_toggle(id + 'Editor', settings); $J('#' + id + 'EditorLinkOn').toggleClass("currenttab", action).toggleClass("othertab", !action); $J('#' + id + 'EditorLinkOff').toggleClass("currenttab", !action).toggleClass("othertab", action); $J('#' + id + 'EditorLinkDefault').toggle( action != ( ac_js_admin.htmleditor == 1 ) ); return false; } function setDefaultEditor(id) { var isEditor = ac_editor_is(id + 'Editor'); if ( isEditor == ( ac_js_admin.htmleditor == 1 ) ) return false; // send save command // save new admin limit remotelly ac.get("user.user_update_value", ['htmleditor', ( isEditor ? 1 : 0 )]); $J('#' + id + 'EditorLinkDefault').toggle(); ac_js_admin.htmleditor = ( isEditor ? 1 : 0 ); return false; } function form_editor_personalization_push(nodes, id) { for (var i = 0; i < nodes.length; i++) $J('#' + id).append(nodes[i]); } function form_editor_insert(field, value) { // only today tag should be reset if ( value.match( /^%TODAY[+-]\d+%$/ ) ) { value = '%TODAY%'; } if ( value == '%TODAY%' ) { var entered = prompt(strEnterRange, '+1'); if ( !entered \|\| !entered.match( /^[-+]?\d+$/ ) ) { alert(strEnterRangeInvalid); return ''; } if ( !entered.match(/^[-+].$/) ) { entered = '+' + entered; } value = '%TODAY' + entered + '%'; } ac_form_insert_cursor(field, value); } function form_editor_defaults(prfx, format, sets) { $J('#' + prfx + 'textField').val(''); $J('#' + prfx + 'formatField').val(format); ac_form_value_set($J('#' + prfx + 'Editor').get(0), ''); // show appropriate editor ac_editor_mime_switch(prfx, $J('#' + prfx + 'formatField').val()); } function form_editor_update(prfx, ary, suffix) { if ( typeof suffix != 'string' ) suffix = 'PersTags'; if(ary.format) $J('#' + prfx + 'formatField').val(ary.format); $J('#' + prfx + 'textField').val(ary.text); ac_form_value_set($J('#' + prfx + 'Editor').get(0), ary.html); // show appropriate editor ac_editor_mime_switch(prfx, $J('#' + prfx + 'formatField').val()); } function export_link_build(context, ary) { var link = 'export.php?action=' + context; for ( var i in ary ) { link += '&' + i + '=' + ary[i]; } if ( typeof(ourflag) == 'undefined' \|\| prompt('Go to this export URL?', link) ) wi
URL: https://ncn.activehosted.com/admin/js/jq/notificat... Model: Joe Sandbox AI	{ "risk_score": 3, "reasoning": "The provided JavaScript snippet appears to be a simple notification plugin that displays success, error, warning, or notice messages on a web page. It does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or redirects to malicious domains. The code uses standard jQuery methods and DOM manipulation, which are considered low-risk practices. While the snippet uses some legacy APIs like `XDomainRequest`, these are not inherently malicious and are used in a transparent manner for displaying notifications. Overall, the script seems to be a legitimate utility with no clear signs of malicious intent." }
// // Notification // Usage: $J('#your-container').notification({text: 'Successfully sent', type: 'success'}) // // Docs: // // type: string (success, error, warning, notice) // text: string (alert text) // persist: boolean (should the alert remain on screen) // delay: int (time in milliseconds for the alert to disappear if persistant is set to true) (function($){ $.fn.notification = function( options ) { var _this = this; // Default options var settings = $.extend({ text: "Supply some text for your notification.", type: "success", persist: true, delay: 5000 }, options ); var template = '<div class="notify ' + settings.type + ' ">' + settings.text + '</div>'; var existing = $("> div.notify." + settings.type, _this); if ( existing.length ) { existing //.removeClass() //.addClass('notify') //.addClass(settings.type) .html(settings.text) ; var timeout = existing.data('notify-timeout'); if ( timeout ) { clearTimeout(timeout); timeout = false; } } else { existing = $(template); _this.prepend(existing); } if (settings.persist != true) { var timeout = setTimeout(function() { _this.find('.notify').animate({ opacity: 0}, 500, function() { _this.find('.notify').remove(); clearTimeout(timeout); }); }, settings.delay); existing.data('notify-timeout', timeout); } }; })(jQuery);
URL: https://ncn.activehosted.com/admin/... Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "The provided JavaScript code appears to be a legitimate login and support functionality for a web application. It includes common practices such as fading the login container, appending the user's email to a forgotten password link, and opening a support page in a new window. There are no high-risk indicators like dynamic code execution, data exfiltration, or suspicious redirects. The code seems to be focused on improving the user experience and providing standard login and support features." }
function fade_login() { $J('#login_container').fadeTo(1000, 0.55); $J('#login_container').fadeTo(5000, 0.25); $J('#login_container').fadeTo(1000, 1.00); } function lookup_link_fix(e) { var url = $J(this).attr('href'); var usr = $J('#user').val(); if (ac_str_email(usr)) { $J(this).attr('href', url + '&email=' + usr); } } function contactSupport() { let url = 'https://help.activecampaign.com/hc/en-us/requests/new'; window.open(url, '_blank'); } $J(document).ready(function () { $J("a.forgotpass").click(lookup_link_fix); // if there is a hash, append it to links if (window.location.hash) { $J("form[name=log_user]").attr('action', $J("form[name=log_user]").attr('action') + window.location.hash); } });
URL: https://ncn.activehosted.com/admin/index.php?error... Model: Joe Sandbox AI	{ "risk_score": 3, "reasoning": "The provided JavaScript code appears to be primarily focused on handling login-related functionality, such as displaying error notifications, fixing links, and opening a support contact page. While it includes some dynamic behavior, such as fading the login container and appending the current URL hash to the login form action, the overall risk level is relatively low. The code does not exhibit any high-risk indicators like dynamic code execution, data exfiltration, or redirects to suspicious domains. The use of jQuery and common login-related functionality suggests this is likely a legitimate script, with some minor outdated practices (e.g., `fadeTo`) that could be improved." }
$J(document).ready(function () { $J("form").notification({text: "Invalid username or password. Forgot your password? <a href='?action=account_lookup'>Reset it</a>", type: "error"}); $J(".notify a").click(lookup_link_fix); }); function fade_login() { $J('#login_container').fadeTo(1000, 0.55); $J('#login_container').fadeTo(5000, 0.25); $J('#login_container').fadeTo(1000, 1.00); } function lookup_link_fix(e) { var url = $J(this).attr('href'); var usr = $J('#user').val(); if (ac_str_email(usr)) { $J(this).attr('href', url + '&email=' + usr); } } function contactSupport() { let url = 'https://help.activecampaign.com/hc/en-us/requests/new'; window.open(url, '_blank'); } $J(document).ready(function () { $J("a.forgotpass").click(lookup_link_fix); // if there is a hash, append it to links if (window.location.hash) { $J("form[name=log_user]").attr('action', $J("form[name=log_user]").attr('action') + window.location.hash); } });
URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email", "Password" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	{ "brands": [ "Ncnielsen" ] }
	{ "brands": [ "Ncnielsen" ] }
URL: https://ncn.activehosted.com/admin/index.php?error... Model: Joe Sandbox AI	```json { "risk_score": 2, "reasoning": "The script includes a deny list for certain domains, which suggests an attempt to block data transmission to these domains. However, it does not actively send data to external domains or execute dynamic code. The presence of analytics and telemetry configurations indicates a legitimate purpose, but the script's complexity and potential for aggressive data handling warrant a moderate risk score." }
(window.NREUM\|\|(NREUM={})).init={privacy:{cookies_enabled:true},ajax:{deny_list:["api.candu.ai","collect-us.app-us1.com","sockjs.pusher.com","www.google-analytics.com","js-agent.newrelic.com"]},session_trace:{sampling_rate:0.0,mode:"FIXED_RATE",enabled:true,error_sampling_rate:0.0},distributed_tracing:{enabled:true}};(window.NREUM\|\|(NREUM={})).loader_config={agentID:"456980009",accountID:"149034",trustKey:"149034",xpid:"VQIOUVVXGwcFUlhVDwgCUw==",licenseKey:"d3d5c809d5",applicationID:"456978955"};;/! For license information please see nr-loader-spa-1.278.2.min.js.LICENSE.txt / (()=>{var e,t,r={8122:(e,t,r)=>{"use strict";r.d(t,{a:()=>i});var n=r(944);function i(e,t){try{if(!e\|\|"object"!=typeof e)return(0,n.R)(3);if(!t\|\|"object"!=typeof t)return(0,n.R)(4);const r=Object.create(Object.getPrototypeOf(t),Object.getOwnPropertyDescriptors(t)),o=0===Object.keys(r).length?e:r;for(let a in o)if(void 0!==e[a])try{if(null===e[a]){r[a]=null;continue}Array.isArray(e[a])&&Array.isArray(t[a])?r[a]=Array.from(new Set([...e[a],...t[a]])):"object"==typeof e[a]&&"object"==typeof t[a]?r[a]=i(e[a],t[a]):r[a]=e[a]}catch(e){(0,n.R)(1,e)}return r}catch(e){(0,n.R)(2,e)}}},2555:(e,t,r)=>{"use strict";r.d(t,{Vp:()=>c,fn:()=>s,x1:()=>u});var n=r(384),i=r(8122);const o={beacon:n.NT.beacon,errorBeacon:n.NT.errorBeacon,licenseKey:void 0,applicationID:void 0,sa:void 0,queueTime:void 0,applicationTime:void 0,ttGuid:void 0,user:void 0,account:void 0,product:void 0,extra:void 0,jsAttributes:{},userAttributes:void 0,atts:void 0,transactionName:void 0,tNamePlain:void 0},a={};function s(e){try{const t=c(e);return!!t.licenseKey&&!!t.errorBeacon&&!!t.applicationID}catch(e){return!1}}function c(e){if(!e)throw new Error("All info objects require an agent identifier!");if(!a[e])throw new Error("Info for ".concat(e," was never set"));return a[e]}function u(e,t){if(!e)throw new Error("All info objects require an agent identifier!");a[e]=(0,i.a)(t,o);const r=(0,n.nY)(e);r&&(r.info=a[e])}},9417:(e,t,r)=>{"use strict";r.d(t,{D0:()=>p,gD:()=>m,xN:()=>g});var n=r(3333),i=r(993);const o=e=>{if(!e\|\|"string"!=typeof e)return!1;try{document.createDocumentFragment().querySelector(e)}catch{return!1}return!0};var a=r(2614),s=r(944),c=r(384),u=r(8122);const d="[data-nr-mask]",l=()=>{const e={feature_flags:[],experimental:{marks:!1,measures:!1,resources:!1},mask_selector:"*",block_selector:"[data-nr-block]",mask_input_options:{color:!1,date:!1,"datetime-local":!1,email:!1,month:!1,number:!1,range:!1,search:!1,tel:!1,text:!1,time:!1,url:!1,week:!1,textarea:!1,select:!1,password:!0}};return{ajax:{deny_list:void 0,block_internal:!0,enabled:!0,autoStart:!0},distributed_tracing:{enabled:void 0,exclude_newrelic_header:void 0,cors_use_newrelic_header:void 0,cors_use_tracecontext_headers:void 0,allowed_origins:void 0},get feature_flags(){return e.feature_flags},set feature_flags(t){e.feature_flags=t},generic_events:{enabled:!0,autoStart:!0},harvest:{interval:30},jserrors:{enabled:!0,autoStart:!0},logging:{enabled:!0,autoStart:!0,level:i.p_.INFO},metrics:{enabled:!0,autoStart:!0},obfuscate:void 0,page_action:{enabled:!0},page_view_event:{enabled:!0,autoStart:!0},page_view_timing:{enabled:!0,autoStart:!0},performance:{get capture_marks(){return e.feature_flags.includes(n.$v.MARKS)\|\|e.experimental.marks},set capture_marks(t){e.experimental.marks=t},get capture_measures(){return e.feature_flags.includes(n.$v.MEASURES)\|\|e.experimental.measures},set capture_measures(t){e.experimental.measures=t},resources:{get enabled(){return e.feature_flags.includes(n.$v.RESOURCES)\|\|e.experimental.resources},set enabled(t){e.experimental.resources=t},asset_types:[],first_party_domains:[],ignore_newrelic:!0}},privacy:{cookies_enabled:!0},proxy:{assets:void 0,beacon:void 0},session:{expiresMs:a.wk,inactiveMs:a.BB},session_replay:{autoStart:!0,enabled:!1,preload:!1,sampling_rate:10,error_sampling_rate:100,collect_fonts:!1,inline_images:!1,fix_stylesheets:!0,mask_all_inputs:!0,get mask_text_selector(){return e.mask_sele
URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/jsc/ac.js?v=v10... Model: Joe Sandbox AI	```json { "risk_score": 4, "reasoning": "The script includes a redirect function that can redirect users to potentially untrusted domains, which is a high-risk indicator (+3 points). It also uses aggressive DOM manipulation with the clickToEdit function, which is a moderate-risk indicator (+2 points). However, there is no evidence of data exfiltration or dynamic code execution. The script does not interact with suspicious domains, so no additional points are added. The final score is adjusted to reflect the potential for misuse in redirecting users." }
var ac={rand:function(){return ac.str.cast(Math.random())},randHex:function(){var a=ac.rand().split(".");return sprintf("%x",a[1])},hidden:function(a){return"none"==$J(a).css("display")},empty:function(a){for(var c in a)if("function"!=typeof a[c])return!1;return!0},redirect:function(a){a.match(/^http/)\|\|(a=ac_js_site.p_link+"/"+a);window.location.href=a},refresh:function(){window.location.reload(!0)},highlight:function(a){a.focus();a.select()},distance:function(a,c){return Math.sqrt(Math.pow(a,2)+ Math.pow(c,2))},uniqid:function(){return ac.encodeBase64(Math.random().toString()).replace(/(\+\|\/\|=)+/,"")},clickToEdit:function(a,c,d){var e=ac.uniqid();c=c\|\|function(){};d=d\|\|{};$J(document).on("click",a,function(a){d.allowPropagation\|\|a.stopPropagation();a=$J(this);a.hasClass("click-to-edit")\|\|(a.addClass("click-to-edit "+e).data("click-to-edit-original",a.html()),!1!==d.select_all&&document.execCommand("selectAll",!1,null))});$J(document).on("keypress",a,function(a){if(13==a.which){var d=$J(this); a.preventDefault();d.blur();c(d)}});$J(document).on("click",function(a){_.each($J(".click-to-edit."+e),function(a){a=$J(a);a.removeClass("click-to-edit "+e);c(a)})})},decodeBase64:function(a){return window.atob?decodeURIComponent(window.atob(a)):decodeURIComponent(ac._decodeBase64(a))},encodeBase64:function(a){return window.btoa?window.btoa(encodeURIComponent(a)):ac._encodeBase64(encodeURIComponent(a))},var:function(a,c){var d={};"string"==typeof a?d[a]=c:"object"==typeof a&&(d=a);$J.each(d,function(a, c){for(var e=$J("*[var='"+ac.str.escape(a)+"']"),f=0,l;f<e.length;f++){var k=$J(e[f]);l="function"==typeof c?c(a,d):c;if(k.is("select"))k.val(l);else if(k.is("input"))switch(k.prop("type")){case "radio":k.val()==l&&k.prop("checked",!0);break;case "checkbox":k.val()==l?k.prop("checked",!0):k.prop("checked",!1);break;default:k.val(l)}else k.html(l)}})},droparea:function(a,c,d,e){var f=e.init\|\|function(){},g=e.start\|\|function(){},h=e.complete\|\|function(a,c){};e=e.error\|\|function(a){};$J(a).attr({"data-post":"old-imageup-dnd.php", "data-width":c,"data-height":d,name:"dropfile"}).droparea({instructions:"",over:"",init:f,start:g,complete:h,error:e})},inherit:function(a){var c={};a&&(c.__proto__=a);return c},automodal:function(a,c){a.title\|\|(a.title="[Please use the title property to set a title for this modal]");a.body\|\|(a.body="");a.oklabel\|\|(a.oklabel=strOK);a.okclass\|\|(a.okclass="green");a.closelabel\|\|(a.closelabel=a.hideok?strClose:strCancel);a.classes\|\|(a.classes="");a.dont_blur\|\|$J(document.activeElement).blur();c=c\|\|function(){}; $J("#ac_automodal").remove();var d=""+('<div id="ac_automodal" class="modal '+(a.condor?"modal--condor ":"")+"show "+a.classes+'" style="display:none;">');d=d+'<div class="modal-dialog"><div class="modal-content"><div class="modal-header">'+('<a href="#" onclick="return false;" class="close_x" data-dismiss="modal">'+ac.icon("x",{pos:"middle",size:"medium"})+"</a>");d+=sprintf("<h3>%s</h3>",a.title);d=d+'</div><form><div class="modal-body">'+(a.condor?a.body:'<div class="body">'+a.body+"</div>");if(a.inputs)for(var e= 0;e<a.inputs.length;e++){var f=a.inputs[e];f.label=f.label\|\|"";f.type=f.type\|\|"text";f.name=f.name\|\|"name"+e;f.className=f.className\|\|"";f.default=f.default\|\|"";f.attrs=f.attrs\|\|"";f.placeholder=f.placeholder\|\|"";f.placeholder&&(f.placeholder=' placeholder="'+f.placeholder+'"');switch(f.type){case "select":case "select-multiple":f.options=f.options\|\|[];d+=sprintf('<fieldset class="select-options %s">',f.className);d+=sprintf("<label>%s</label>",f.label?f.label:"");d+=sprintf('<select name="%s" %s>', f.name,f.type,"select-multiple"==f.type?"multiple":"");for(e=0;e<f.options.length;e++)d+=sprintf('<option %s value="%s">%s</option>',f.options[e].value==f.default?"selected":"",f.options[e].value,f.options[e].label);d+="</select>";d+="</fieldset>";break;case "textarea":f.rows=f.rows\|\|8;f.cols=f.cols\|\|40;d+=sprintf('<fieldset class="input %s">',f.className);d+=sprintf("<label>%s</label>",f.label?f.label:"");
URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	{ "brands": [ "ActiveCampaign" ] }
	{ "brands": [ "ActiveCampaign" ] }
URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	{ "brands": [ "Ncnielsen" ] }
	{ "brands": [ "Ncnielsen" ] }
URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	```json{ "legit_domain": "activecampaign.com", "classification": "known", "reasons": [ "The brand 'ActiveCampaign' is a known email marketing and automation service.", "The URL 'ncn.activehosted.com' uses a subdomain of 'activehosted.com', which is associated with ActiveCampaign's services.", "The domain 'activehosted.com' is commonly used by ActiveCampaign for hosting customer accounts and services.", "No suspicious elements such as misspellings or unusual domain extensions were found in the URL." ], "riskscore": 2}
URL: ncn.activehosted.com Brands: ActiveCampaign Input Fields: Username / Email
URL: https://ncn.activehosted.com/admin/ Model: Joe Sandbox AI	```json{ "legit_domain": "ncnielsen.com", "classification": "unknown", "reasons": [ "The URL 'ncn.activehosted.com' does not match the expected domain for the brand 'Ncnielsen'.", "The domain 'activehosted.com' suggests a third-party service provider, which could be legitimate if Ncnielsen uses this service.", "The subdomain 'ncn' could be a legitimate subdomain used by Ncnielsen on a third-party service, but it is not a full match to the brand's primary domain.", "The brand 'Ncnielsen' is not widely recognized, making it difficult to classify as 'known' or 'wellknown'.", "The presence of input fields for 'Username / Email' is common in phishing sites, but not definitive without further context." ], "riskscore": 6}
URL: ncn.activehosted.com Brands: Ncnielsen Input Fields: Username / Email
URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email", "Password" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "brands": [ "Ncnielsen" ] }
	{ "brands": [ "Ncnielsen" ] }
URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email", "Password" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "brands": [ "Ncnielsen" ] }
	{ "brands": [ "Ncnielsen" ] }
URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email", "Password" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	```json{ "legit_domain": "ncnielsen.com", "classification": "known", "reasons": [ "The brand 'Ncnielsen' is associated with the domain 'ncnielsen.com'.", "The URL 'ncn.activehosted.com' does not match the legitimate domain 'ncnielsen.com'.", "The domain 'activehosted.com' suggests a third-party hosting or service provider, which could be legitimate if Ncnielsen uses this service.", "The presence of input fields for 'Username / Email' and 'Password' on a non-matching domain increases the risk of phishing.", "The URL does not contain obvious misspellings or suspicious characters, but the use of a third-party domain is a common phishing tactic." ], "riskscore": 7} Google indexed: False
URL: ncn.activehosted.com Brands: Ncnielsen Input Fields: Username / Email, Password
URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "brands": [ "Ncnielsen" ] }
	{ "brands": [ "Ncnielsen" ] }
URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	```json{ "legit_domain": "ncnielsen.com", "classification": "known", "reasons": [ "The brand 'Ncnielsen' is associated with the domain 'ncnielsen.com'.", "The URL 'ncn.activehosted.com' does not match the legitimate domain 'ncnielsen.com'.", "The domain 'activehosted.com' suggests a third-party service provider, which could be legitimate if Ncnielsen uses this service.", "The presence of input fields for 'Username / Email' and 'Password' on a non-matching domain raises suspicion.", "The use of a subdomain 'ncn' could indicate a legitimate use of a service provider, but it is also a common tactic in phishing." ], "riskscore": 6}
URL: ncn.activehosted.com Brands: Ncnielsen Input Fields: Username / Email, Password
URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Get more out of ActiveCampaign", "prominent_button_name": "Login", "text_input_field_labels": [ "Username / Email", "Password" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://ncn.activehosted.com/admin/index.php?error_mesg=invalidlogin Model: Joe Sandbox AI	{ "brands": [ "ActiveCampaign" ] }
	{ "brands": [ "ActiveCampaign" ] }

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Jan 14 12:18:16 2025, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2673
Entropy (8bit):	3.973537807620838
Encrypted:	false
SSDEEP:	48:8AfbdTjTki5HYidAKZdA1uehwiZUklqehay+3:8A1oiP9y
MD5:	92B44171419E6BB296067A2F10400AE0
SHA1:	8C94348A53BAAB6DB86C2CBD7D85B575D7C9D055
SHA-256:	4C281310C1961F796F6C87D4528BDD10E031E6D049F00956C5078588B53BD9E3
SHA-512:	4BC3584618173782D617F2F01EAF4E2ACA92DF4ADE8AB3D4A71635F1B2A8550426DCB748BA75C40A9088741A1DE33E0590A30583C7CD0CF25872701623042186
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.......f......y... w......................1....P.O. .:i.....+00.../C:\.....................1.....EW$O..PROGRA~1..t......O.I.ZFj....B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.ZFj....L.....................p+j.G.o.o.g.l.e.....T.1.....EW.L..Chrome..>......CW.V.ZFj....M......................k..C.h.r.o.m.e.....`.1.....EW.L..APPLIC~1..H......CW.V.ZFj...........................k..A.p.p.l.i.c.a.t.i.o.n.....n.2. w..BW. .CHROME~1.EXE..R......CW.V.ZHj....N.......................3.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............,.h.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Jan 14, 2025 14:18:19.101027012 CET	192.168.2.10	1.1.1.1	0xbee	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:19.101177931 CET	192.168.2.10	1.1.1.1	0xaae3	Standard query (0)	www.google.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:20.589294910 CET	192.168.2.10	1.1.1.1	0x6b7b	Standard query (0)	ncn.acemlna.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:20.589597940 CET	192.168.2.10	1.1.1.1	0x6e73	Standard query (0)	ncn.acemlna.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:21.070628881 CET	192.168.2.10	1.1.1.1	0xe9a1	Standard query (0)	ncn.acemlna.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.070801973 CET	192.168.2.10	1.1.1.1	0x5c7c	Standard query (0)	ncn.acemlna.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:21.877901077 CET	192.168.2.10	1.1.1.1	0xfe83	Standard query (0)	ncn.activehosted.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.878041983 CET	192.168.2.10	1.1.1.1	0x378b	Standard query (0)	ncn.activehosted.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:23.436352968 CET	192.168.2.10	1.1.1.1	0x647d	Standard query (0)	cdnjs.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.436501026 CET	192.168.2.10	1.1.1.1	0xabe4	Standard query (0)	cdnjs.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:23.437547922 CET	192.168.2.10	1.1.1.1	0x201d	Standard query (0)	platform-cdn.app-us1.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.437843084 CET	192.168.2.10	1.1.1.1	0xa98c	Standard query (0)	platform-cdn.app-us1.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:24.061485052 CET	192.168.2.10	1.1.1.1	0x3806	Standard query (0)	nc-nielsen.dk	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:24.061989069 CET	192.168.2.10	1.1.1.1	0xc000	Standard query (0)	nc-nielsen.dk	65	IN (0x0001)	false
Jan 14, 2025 14:18:24.094731092 CET	192.168.2.10	1.1.1.1	0xf521	Standard query (0)	cdnjs.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:24.094877958 CET	192.168.2.10	1.1.1.1	0x7a41	Standard query (0)	cdnjs.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:25.245258093 CET	192.168.2.10	1.1.1.1	0x462a	Standard query (0)	nc-nielsen.dk	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.245618105 CET	192.168.2.10	1.1.1.1	0xedd7	Standard query (0)	nc-nielsen.dk	65	IN (0x0001)	false
Jan 14, 2025 14:18:25.768469095 CET	192.168.2.10	1.1.1.1	0x965c	Standard query (0)	ncn.activehosted.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.768688917 CET	192.168.2.10	1.1.1.1	0xb21e	Standard query (0)	ncn.activehosted.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:27.137923002 CET	192.168.2.10	1.1.1.1	0xb69e	Standard query (0)	d226aj4ao1t61q.cloudfront.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:27.138231993 CET	192.168.2.10	1.1.1.1	0xde74	Standard query (0)	d226aj4ao1t61q.cloudfront.net	65	IN (0x0001)	false
Jan 14, 2025 14:18:27.304697037 CET	192.168.2.10	1.1.1.1	0x45a8	Standard query (0)	cdn.pendo.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:27.304852009 CET	192.168.2.10	1.1.1.1	0x9a7d	Standard query (0)	cdn.pendo.io	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.334472895 CET	192.168.2.10	1.1.1.1	0xea18	Standard query (0)	static.zdassets.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.335728884 CET	192.168.2.10	1.1.1.1	0x9036	Standard query (0)	static.zdassets.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.436943054 CET	192.168.2.10	1.1.1.1	0x26ac	Standard query (0)	d226aj4ao1t61q.cloudfront.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.436943054 CET	192.168.2.10	1.1.1.1	0xc5b1	Standard query (0)	d226aj4ao1t61q.cloudfront.net	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.555721998 CET	192.168.2.10	1.1.1.1	0x1d5a	Standard query (0)	platform-cdn.app-us1.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.555912971 CET	192.168.2.10	1.1.1.1	0xd345	Standard query (0)	platform-cdn.app-us1.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.568924904 CET	192.168.2.10	1.1.1.1	0x799a	Standard query (0)	cdn.pendo.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.569314003 CET	192.168.2.10	1.1.1.1	0x81fe	Standard query (0)	cdn.pendo.io	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.996680021 CET	192.168.2.10	1.1.1.1	0xd27a	Standard query (0)	ekr.zdassets.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.996829987 CET	192.168.2.10	1.1.1.1	0xc487	Standard query (0)	ekr.zdassets.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.997236013 CET	192.168.2.10	1.1.1.1	0x56c5	Standard query (0)	solve-widget.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.997356892 CET	192.168.2.10	1.1.1.1	0x3748	Standard query (0)	solve-widget.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:18:28.998349905 CET	192.168.2.10	1.1.1.1	0xfb39	Standard query (0)	static.zdassets.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.998526096 CET	192.168.2.10	1.1.1.1	0xd13d	Standard query (0)	static.zdassets.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:29.779056072 CET	192.168.2.10	1.1.1.1	0xd74	Standard query (0)	ekr.zdassets.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.779249907 CET	192.168.2.10	1.1.1.1	0x24f	Standard query (0)	ekr.zdassets.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:30.221384048 CET	192.168.2.10	1.1.1.1	0xf596	Standard query (0)	solve-widget.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.221585989 CET	192.168.2.10	1.1.1.1	0x7821	Standard query (0)	solve-widget.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:18:30.226522923 CET	192.168.2.10	1.1.1.1	0x3dfa	Standard query (0)	solve-widget.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.226950884 CET	192.168.2.10	1.1.1.1	0x1421	Standard query (0)	solve-widget.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:18:31.601792097 CET	192.168.2.10	1.1.1.1	0xd913	Standard query (0)	solve-api.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.601974964 CET	192.168.2.10	1.1.1.1	0x1fce	Standard query (0)	solve-api.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:18:31.602722883 CET	192.168.2.10	1.1.1.1	0xa29b	Standard query (0)	static.cloudflareinsights.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.603072882 CET	192.168.2.10	1.1.1.1	0x1099	Standard query (0)	static.cloudflareinsights.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:31.603709936 CET	192.168.2.10	1.1.1.1	0xe434	Standard query (0)	cloudflareinsights.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.603844881 CET	192.168.2.10	1.1.1.1	0x6d28	Standard query (0)	cloudflareinsights.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:31.707884073 CET	192.168.2.10	1.1.1.1	0xb5ff	Standard query (0)	prodhostedtest.zendesk.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.708381891 CET	192.168.2.10	1.1.1.1	0x32a0	Standard query (0)	prodhostedtest.zendesk.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:32.306227922 CET	192.168.2.10	1.1.1.1	0x9c95	Standard query (0)	static.cloudflareinsights.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:32.306467056 CET	192.168.2.10	1.1.1.1	0x4867	Standard query (0)	static.cloudflareinsights.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:32.372785091 CET	192.168.2.10	1.1.1.1	0xc2aa	Standard query (0)	prodhostedtest.zendesk.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:32.372982979 CET	192.168.2.10	1.1.1.1	0xe5a8	Standard query (0)	prodhostedtest.zendesk.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:34.417057991 CET	192.168.2.10	1.1.1.1	0x8a4e	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:34.417215109 CET	192.168.2.10	1.1.1.1	0xcbae	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:36.681102991 CET	192.168.2.10	1.1.1.1	0x3f4c	Standard query (0)	o185886.ingest.sentry.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:36.681317091 CET	192.168.2.10	1.1.1.1	0xec15	Standard query (0)	o185886.ingest.sentry.io	65	IN (0x0001)	false
Jan 14, 2025 14:18:36.756306887 CET	192.168.2.10	1.1.1.1	0x47cf	Standard query (0)	data.pendo.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:36.756802082 CET	192.168.2.10	1.1.1.1	0x4189	Standard query (0)	data.pendo.io	65	IN (0x0001)	false
Jan 14, 2025 14:18:36.759202003 CET	192.168.2.10	1.1.1.1	0x9187	Standard query (0)	www.nc-nielsen.dk	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:36.759352922 CET	192.168.2.10	1.1.1.1	0xf783	Standard query (0)	www.nc-nielsen.dk	65	IN (0x0001)	false
Jan 14, 2025 14:18:37.265670061 CET	192.168.2.10	1.1.1.1	0x9bbe	Standard query (0)	o185886.ingest.sentry.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:37.265809059 CET	192.168.2.10	1.1.1.1	0x582b	Standard query (0)	o185886.ingest.sentry.io	65	IN (0x0001)	false
Jan 14, 2025 14:18:37.389393091 CET	192.168.2.10	1.1.1.1	0xa155	Standard query (0)	data.pendo.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:37.389624119 CET	192.168.2.10	1.1.1.1	0xc0b8	Standard query (0)	data.pendo.io	65	IN (0x0001)	false
Jan 14, 2025 14:18:37.917263031 CET	192.168.2.10	1.1.1.1	0x8179	Standard query (0)	www.nc-nielsen.dk	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:37.917537928 CET	192.168.2.10	1.1.1.1	0x3a8b	Standard query (0)	www.nc-nielsen.dk	65	IN (0x0001)	false
Jan 14, 2025 14:18:38.814933062 CET	192.168.2.10	1.1.1.1	0xa443	Standard query (0)	d3tnn7lar6ozas.cloudfront.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:38.815099955 CET	192.168.2.10	1.1.1.1	0xfe1a	Standard query (0)	d3tnn7lar6ozas.cloudfront.net	65	IN (0x0001)	false
Jan 14, 2025 14:18:39.114106894 CET	192.168.2.10	1.1.1.1	0xaa4b	Standard query (0)	solve-api.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:39.114331007 CET	192.168.2.10	1.1.1.1	0x6225	Standard query (0)	solve-api.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:18:40.282033920 CET	192.168.2.10	1.1.1.1	0xcc8d	Standard query (0)	d3tnn7lar6ozas.cloudfront.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:40.282033920 CET	192.168.2.10	1.1.1.1	0x7c55	Standard query (0)	d3tnn7lar6ozas.cloudfront.net	65	IN (0x0001)	false
Jan 14, 2025 14:18:52.199523926 CET	192.168.2.10	1.1.1.1	0xb5ce	Standard query (0)	js-agent.newrelic.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:52.199685097 CET	192.168.2.10	1.1.1.1	0xe677	Standard query (0)	js-agent.newrelic.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:52.989506960 CET	192.168.2.10	1.1.1.1	0xaa1a	Standard query (0)	bam.nr-data.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:52.989681959 CET	192.168.2.10	1.1.1.1	0xf4b0	Standard query (0)	bam.nr-data.net	65	IN (0x0001)	false
Jan 14, 2025 14:18:53.030071020 CET	192.168.2.10	1.1.1.1	0xcf55	Standard query (0)	js-agent.newrelic.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:53.030213118 CET	192.168.2.10	1.1.1.1	0xf176	Standard query (0)	js-agent.newrelic.com	65	IN (0x0001)	false
Jan 14, 2025 14:18:54.304214001 CET	192.168.2.10	1.1.1.1	0xaf7c	Standard query (0)	bam.nr-data.net	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:54.304500103 CET	192.168.2.10	1.1.1.1	0x80a	Standard query (0)	bam.nr-data.net	65	IN (0x0001)	false
Jan 14, 2025 14:19:19.162874937 CET	192.168.2.10	1.1.1.1	0xd5ef	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:19.163245916 CET	192.168.2.10	1.1.1.1	0x94a9	Standard query (0)	www.google.com	65	IN (0x0001)	false
Jan 14, 2025 14:19:27.992618084 CET	192.168.2.10	1.1.1.1	0x4afe	Standard query (0)	platform-cdn.app-us1.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:27.992837906 CET	192.168.2.10	1.1.1.1	0x90be	Standard query (0)	platform-cdn.app-us1.com	65	IN (0x0001)	false
Jan 14, 2025 14:19:27.993464947 CET	192.168.2.10	1.1.1.1	0x7a69	Standard query (0)	cdnjs.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:27.993611097 CET	192.168.2.10	1.1.1.1	0xb69	Standard query (0)	cdnjs.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 14:19:34.428376913 CET	192.168.2.10	1.1.1.1	0x1ab	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:34.428508997 CET	192.168.2.10	1.1.1.1	0x3a84	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false
Jan 14, 2025 14:19:34.668179989 CET	192.168.2.10	1.1.1.1	0xb688	Standard query (0)	solve-widget.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:34.668426037 CET	192.168.2.10	1.1.1.1	0x4d0c	Standard query (0)	solve-widget.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:19:35.764960051 CET	192.168.2.10	1.1.1.1	0x8f36	Standard query (0)	solve-api.forethought.ai	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:35.765604973 CET	192.168.2.10	1.1.1.1	0xd179	Standard query (0)	solve-api.forethought.ai	65	IN (0x0001)	false
Jan 14, 2025 14:19:37.026845932 CET	192.168.2.10	1.1.1.1	0xba77	Standard query (0)	o185886.ingest.sentry.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:37.027051926 CET	192.168.2.10	1.1.1.1	0xdf44	Standard query (0)	o185886.ingest.sentry.io	65	IN (0x0001)	false
Jan 14, 2025 14:19:37.750376940 CET	192.168.2.10	1.1.1.1	0x3d74	Standard query (0)	data.pendo.io	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:37.751055956 CET	192.168.2.10	1.1.1.1	0x9f9a	Standard query (0)	data.pendo.io	65	IN (0x0001)	false

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class	DNS over HTTPS
Jan 14, 2025 14:18:19.107671976 CET	1.1.1.1	192.168.2.10	0xbee	No error (0)	www.google.com		142.250.181.228	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:19.107790947 CET	1.1.1.1	192.168.2.10	0xaae3	No error (0)	www.google.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:20.606168032 CET	1.1.1.1	192.168.2.10	0x6b7b	No error (0)	ncn.acemlna.com		54.235.205.181	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:20.606168032 CET	1.1.1.1	192.168.2.10	0x6b7b	No error (0)	ncn.acemlna.com		34.237.253.202	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:20.606168032 CET	1.1.1.1	192.168.2.10	0x6b7b	No error (0)	ncn.acemlna.com		54.225.69.136	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:20.606168032 CET	1.1.1.1	192.168.2.10	0x6b7b	No error (0)	ncn.acemlna.com		54.82.80.250	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.086910963 CET	1.1.1.1	192.168.2.10	0xe9a1	No error (0)	ncn.acemlna.com		54.82.80.250	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.086910963 CET	1.1.1.1	192.168.2.10	0xe9a1	No error (0)	ncn.acemlna.com		34.237.253.202	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.086910963 CET	1.1.1.1	192.168.2.10	0xe9a1	No error (0)	ncn.acemlna.com		54.235.205.181	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.086910963 CET	1.1.1.1	192.168.2.10	0xe9a1	No error (0)	ncn.acemlna.com		54.225.69.136	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.889219046 CET	1.1.1.1	192.168.2.10	0x378b	No error (0)	ncn.activehosted.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:21.889559031 CET	1.1.1.1	192.168.2.10	0xfe83	No error (0)	ncn.activehosted.com		104.17.204.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.889559031 CET	1.1.1.1	192.168.2.10	0xfe83	No error (0)	ncn.activehosted.com		104.17.205.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.889559031 CET	1.1.1.1	192.168.2.10	0xfe83	No error (0)	ncn.activehosted.com		104.17.202.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.889559031 CET	1.1.1.1	192.168.2.10	0xfe83	No error (0)	ncn.activehosted.com		104.17.206.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:21.889559031 CET	1.1.1.1	192.168.2.10	0xfe83	No error (0)	ncn.activehosted.com		104.17.203.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.443649054 CET	1.1.1.1	192.168.2.10	0x647d	No error (0)	cdnjs.cloudflare.com		104.17.25.14	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.443649054 CET	1.1.1.1	192.168.2.10	0x647d	No error (0)	cdnjs.cloudflare.com		104.17.24.14	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.444498062 CET	1.1.1.1	192.168.2.10	0xabe4	No error (0)	cdnjs.cloudflare.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:23.448246956 CET	1.1.1.1	192.168.2.10	0xa98c	No error (0)	platform-cdn.app-us1.com	d3r4ionp7m7mlj.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:23.450262070 CET	1.1.1.1	192.168.2.10	0x201d	No error (0)	platform-cdn.app-us1.com	d3r4ionp7m7mlj.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:23.450262070 CET	1.1.1.1	192.168.2.10	0x201d	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.450262070 CET	1.1.1.1	192.168.2.10	0x201d	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.19	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.450262070 CET	1.1.1.1	192.168.2.10	0x201d	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.65	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:23.450262070 CET	1.1.1.1	192.168.2.10	0x201d	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.116	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:24.101378918 CET	1.1.1.1	192.168.2.10	0x7a41	No error (0)	cdnjs.cloudflare.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:24.101912975 CET	1.1.1.1	192.168.2.10	0xf521	No error (0)	cdnjs.cloudflare.com		104.17.24.14	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:24.101912975 CET	1.1.1.1	192.168.2.10	0xf521	No error (0)	cdnjs.cloudflare.com		104.17.25.14	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:24.128609896 CET	1.1.1.1	192.168.2.10	0x3806	No error (0)	nc-nielsen.dk		81.95.249.137	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.290549994 CET	1.1.1.1	192.168.2.10	0x462a	No error (0)	nc-nielsen.dk		81.95.249.137	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.776180029 CET	1.1.1.1	192.168.2.10	0x965c	No error (0)	ncn.activehosted.com		104.17.203.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.776180029 CET	1.1.1.1	192.168.2.10	0x965c	No error (0)	ncn.activehosted.com		104.17.205.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.776180029 CET	1.1.1.1	192.168.2.10	0x965c	No error (0)	ncn.activehosted.com		104.17.202.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.776180029 CET	1.1.1.1	192.168.2.10	0x965c	No error (0)	ncn.activehosted.com		104.17.204.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.776180029 CET	1.1.1.1	192.168.2.10	0x965c	No error (0)	ncn.activehosted.com		104.17.206.31	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:25.778072119 CET	1.1.1.1	192.168.2.10	0xb21e	No error (0)	ncn.activehosted.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:27.145520926 CET	1.1.1.1	192.168.2.10	0xb69e	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.201	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:27.145520926 CET	1.1.1.1	192.168.2.10	0xb69e	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.124	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:27.145520926 CET	1.1.1.1	192.168.2.10	0xb69e	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:27.145520926 CET	1.1.1.1	192.168.2.10	0xb69e	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.19	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:27.312437057 CET	1.1.1.1	192.168.2.10	0x45a8	No error (0)	cdn.pendo.io		34.36.213.229	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.341806889 CET	1.1.1.1	192.168.2.10	0xea18	No error (0)	static.zdassets.com		216.198.53.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.341806889 CET	1.1.1.1	192.168.2.10	0xea18	No error (0)	static.zdassets.com		216.198.54.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.448265076 CET	1.1.1.1	192.168.2.10	0x26ac	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.124	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.448265076 CET	1.1.1.1	192.168.2.10	0x26ac	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.448265076 CET	1.1.1.1	192.168.2.10	0x26ac	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.201	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.448265076 CET	1.1.1.1	192.168.2.10	0x26ac	No error (0)	d226aj4ao1t61q.cloudfront.net		65.9.7.19	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.563128948 CET	1.1.1.1	192.168.2.10	0xd345	No error (0)	platform-cdn.app-us1.com	d3r4ionp7m7mlj.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:28.575619936 CET	1.1.1.1	192.168.2.10	0x799a	No error (0)	cdn.pendo.io		34.36.213.229	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.580761909 CET	1.1.1.1	192.168.2.10	0x1d5a	No error (0)	platform-cdn.app-us1.com	d3r4ionp7m7mlj.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:28.580761909 CET	1.1.1.1	192.168.2.10	0x1d5a	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.19	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.580761909 CET	1.1.1.1	192.168.2.10	0x1d5a	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.580761909 CET	1.1.1.1	192.168.2.10	0x1d5a	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.116	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:28.580761909 CET	1.1.1.1	192.168.2.10	0x1d5a	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.65	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.004929066 CET	1.1.1.1	192.168.2.10	0xd27a	No error (0)	ekr.zdassets.com		216.198.53.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.004929066 CET	1.1.1.1	192.168.2.10	0xd27a	No error (0)	ekr.zdassets.com		216.198.54.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.004992962 CET	1.1.1.1	192.168.2.10	0x56c5	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:29.004992962 CET	1.1.1.1	192.168.2.10	0x56c5	No error (0)	solve-ui.pages.dev		188.114.97.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.004992962 CET	1.1.1.1	192.168.2.10	0x56c5	No error (0)	solve-ui.pages.dev		188.114.96.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.005312920 CET	1.1.1.1	192.168.2.10	0x3748	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:29.005312920 CET	1.1.1.1	192.168.2.10	0x3748	No error (0)	solve-ui.pages.dev			65	IN (0x0001)	false
Jan 14, 2025 14:18:29.005984068 CET	1.1.1.1	192.168.2.10	0xfb39	No error (0)	static.zdassets.com		216.198.54.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.005984068 CET	1.1.1.1	192.168.2.10	0xfb39	No error (0)	static.zdassets.com		216.198.53.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.785967112 CET	1.1.1.1	192.168.2.10	0xd74	No error (0)	ekr.zdassets.com		216.198.54.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:29.785967112 CET	1.1.1.1	192.168.2.10	0xd74	No error (0)	ekr.zdassets.com		216.198.53.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.228916883 CET	1.1.1.1	192.168.2.10	0xf596	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:30.228916883 CET	1.1.1.1	192.168.2.10	0xf596	No error (0)	solve-ui.pages.dev		188.114.96.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.228916883 CET	1.1.1.1	192.168.2.10	0xf596	No error (0)	solve-ui.pages.dev		188.114.97.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.229091883 CET	1.1.1.1	192.168.2.10	0x7821	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:30.229091883 CET	1.1.1.1	192.168.2.10	0x7821	No error (0)	solve-ui.pages.dev			65	IN (0x0001)	false
Jan 14, 2025 14:18:30.235243082 CET	1.1.1.1	192.168.2.10	0x3dfa	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:30.235243082 CET	1.1.1.1	192.168.2.10	0x3dfa	No error (0)	solve-ui.pages.dev		188.114.97.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.235243082 CET	1.1.1.1	192.168.2.10	0x3dfa	No error (0)	solve-ui.pages.dev		188.114.96.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:30.236438036 CET	1.1.1.1	192.168.2.10	0x1421	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:30.236438036 CET	1.1.1.1	192.168.2.10	0x1421	No error (0)	solve-ui.pages.dev			65	IN (0x0001)	false
Jan 14, 2025 14:18:31.608864069 CET	1.1.1.1	192.168.2.10	0xd913	No error (0)	solve-api.forethought.ai		104.17.255.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.608864069 CET	1.1.1.1	192.168.2.10	0xd913	No error (0)	solve-api.forethought.ai		104.17.1.4	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.609271049 CET	1.1.1.1	192.168.2.10	0x1fce	No error (0)	solve-api.forethought.ai			65	IN (0x0001)	false
Jan 14, 2025 14:18:31.609442949 CET	1.1.1.1	192.168.2.10	0xa29b	No error (0)	static.cloudflareinsights.com		104.16.80.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.609442949 CET	1.1.1.1	192.168.2.10	0xa29b	No error (0)	static.cloudflareinsights.com		104.16.79.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.609961987 CET	1.1.1.1	192.168.2.10	0x1099	No error (0)	static.cloudflareinsights.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:31.610287905 CET	1.1.1.1	192.168.2.10	0xe434	No error (0)	cloudflareinsights.com		104.16.80.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.610287905 CET	1.1.1.1	192.168.2.10	0xe434	No error (0)	cloudflareinsights.com		104.16.79.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.610743046 CET	1.1.1.1	192.168.2.10	0x6d28	No error (0)	cloudflareinsights.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:31.724493980 CET	1.1.1.1	192.168.2.10	0xb5ff	No error (0)	prodhostedtest.zendesk.com		216.198.54.1	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:31.724493980 CET	1.1.1.1	192.168.2.10	0xb5ff	No error (0)	prodhostedtest.zendesk.com		216.198.53.1	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:32.313272953 CET	1.1.1.1	192.168.2.10	0x9c95	No error (0)	static.cloudflareinsights.com		104.16.79.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:32.313272953 CET	1.1.1.1	192.168.2.10	0x9c95	No error (0)	static.cloudflareinsights.com		104.16.80.73	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:32.314193010 CET	1.1.1.1	192.168.2.10	0x4867	No error (0)	static.cloudflareinsights.com			65	IN (0x0001)	false
Jan 14, 2025 14:18:32.386707067 CET	1.1.1.1	192.168.2.10	0xc2aa	No error (0)	prodhostedtest.zendesk.com		216.198.54.1	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:32.386707067 CET	1.1.1.1	192.168.2.10	0xc2aa	No error (0)	prodhostedtest.zendesk.com		216.198.53.1	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:34.423587084 CET	1.1.1.1	192.168.2.10	0x8a4e	No error (0)	a.nel.cloudflare.com		35.190.80.1	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:36.688560963 CET	1.1.1.1	192.168.2.10	0x3f4c	No error (0)	o185886.ingest.sentry.io		34.120.195.249	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:36.763417006 CET	1.1.1.1	192.168.2.10	0x47cf	No error (0)	data.pendo.io		34.107.204.85	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:36.825311899 CET	1.1.1.1	192.168.2.10	0x9187	No error (0)	www.nc-nielsen.dk		81.95.249.137	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:37.284936905 CET	1.1.1.1	192.168.2.10	0x9bbe	No error (0)	o185886.ingest.sentry.io		34.120.195.249	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:37.398053885 CET	1.1.1.1	192.168.2.10	0xa155	No error (0)	data.pendo.io		34.107.204.85	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:37.943228960 CET	1.1.1.1	192.168.2.10	0x8179	No error (0)	www.nc-nielsen.dk		81.95.249.137	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:38.824417114 CET	1.1.1.1	192.168.2.10	0xa443	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.40	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:38.824417114 CET	1.1.1.1	192.168.2.10	0xa443	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.34	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:38.824417114 CET	1.1.1.1	192.168.2.10	0xa443	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.117	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:38.824417114 CET	1.1.1.1	192.168.2.10	0xa443	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.231	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:39.121211052 CET	1.1.1.1	192.168.2.10	0xaa4b	No error (0)	solve-api.forethought.ai		104.17.255.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:39.121211052 CET	1.1.1.1	192.168.2.10	0xaa4b	No error (0)	solve-api.forethought.ai		104.17.1.4	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:39.122112989 CET	1.1.1.1	192.168.2.10	0x6225	No error (0)	solve-api.forethought.ai			65	IN (0x0001)	false
Jan 14, 2025 14:18:40.300751925 CET	1.1.1.1	192.168.2.10	0xcc8d	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.117	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:40.300751925 CET	1.1.1.1	192.168.2.10	0xcc8d	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.231	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:40.300751925 CET	1.1.1.1	192.168.2.10	0xcc8d	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.40	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:40.300751925 CET	1.1.1.1	192.168.2.10	0xcc8d	No error (0)	d3tnn7lar6ozas.cloudfront.net		52.222.250.34	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:52.206551075 CET	1.1.1.1	192.168.2.10	0xb5ce	No error (0)	js-agent.newrelic.com		162.247.243.39	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:52.996309042 CET	1.1.1.1	192.168.2.10	0xaa1a	No error (0)	bam.nr-data.net	bam.cell.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:52.996309042 CET	1.1.1.1	192.168.2.10	0xaa1a	No error (0)	bam.cell.nr-data.net	fastly-tls12-bam.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:52.996309042 CET	1.1.1.1	192.168.2.10	0xaa1a	No error (0)	fastly-tls12-bam.nr-data.net		162.247.243.29	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:52.996396065 CET	1.1.1.1	192.168.2.10	0xf4b0	No error (0)	bam.nr-data.net	bam.cell.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:52.996396065 CET	1.1.1.1	192.168.2.10	0xf4b0	No error (0)	bam.cell.nr-data.net	fastly-tls12-bam.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:53.036640882 CET	1.1.1.1	192.168.2.10	0xcf55	No error (0)	js-agent.newrelic.com		162.247.243.39	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:18:54.311799049 CET	1.1.1.1	192.168.2.10	0x80a	No error (0)	bam.nr-data.net	bam.cell.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:54.311799049 CET	1.1.1.1	192.168.2.10	0x80a	No error (0)	bam.cell.nr-data.net	fastly-tls12-bam.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:54.312871933 CET	1.1.1.1	192.168.2.10	0xaf7c	No error (0)	bam.nr-data.net	bam.cell.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:54.312871933 CET	1.1.1.1	192.168.2.10	0xaf7c	No error (0)	bam.cell.nr-data.net	fastly-tls12-bam.nr-data.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:18:54.312871933 CET	1.1.1.1	192.168.2.10	0xaf7c	No error (0)	fastly-tls12-bam.nr-data.net		162.247.243.29	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:19.169873953 CET	1.1.1.1	192.168.2.10	0x94a9	No error (0)	www.google.com			65	IN (0x0001)	false
Jan 14, 2025 14:19:19.169891119 CET	1.1.1.1	192.168.2.10	0xd5ef	No error (0)	www.google.com		142.250.186.164	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:28.000227928 CET	1.1.1.1	192.168.2.10	0x7a69	No error (0)	cdnjs.cloudflare.com		104.17.25.14	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:28.000227928 CET	1.1.1.1	192.168.2.10	0x7a69	No error (0)	cdnjs.cloudflare.com		104.17.24.14	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:28.000322104 CET	1.1.1.1	192.168.2.10	0xb69	No error (0)	cdnjs.cloudflare.com			65	IN (0x0001)	false
Jan 14, 2025 14:19:28.009974957 CET	1.1.1.1	192.168.2.10	0x90be	No error (0)	platform-cdn.app-us1.com	d3r4ionp7m7mlj.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:19:28.018367052 CET	1.1.1.1	192.168.2.10	0x4afe	No error (0)	platform-cdn.app-us1.com	d3r4ionp7m7mlj.cloudfront.net		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:19:28.018367052 CET	1.1.1.1	192.168.2.10	0x4afe	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.116	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:28.018367052 CET	1.1.1.1	192.168.2.10	0x4afe	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:28.018367052 CET	1.1.1.1	192.168.2.10	0x4afe	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.19	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:28.018367052 CET	1.1.1.1	192.168.2.10	0x4afe	No error (0)	d3r4ionp7m7mlj.cloudfront.net		143.204.215.65	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:34.435165882 CET	1.1.1.1	192.168.2.10	0x1ab	No error (0)	a.nel.cloudflare.com		35.190.80.1	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:34.675381899 CET	1.1.1.1	192.168.2.10	0xb688	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:19:34.675381899 CET	1.1.1.1	192.168.2.10	0xb688	No error (0)	solve-ui.pages.dev		188.114.96.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:34.675381899 CET	1.1.1.1	192.168.2.10	0xb688	No error (0)	solve-ui.pages.dev		188.114.97.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:34.676049948 CET	1.1.1.1	192.168.2.10	0x4d0c	No error (0)	solve-widget.forethought.ai	solve-ui.pages.dev		CNAME (Canonical name)	IN (0x0001)	false
Jan 14, 2025 14:19:34.676049948 CET	1.1.1.1	192.168.2.10	0x4d0c	No error (0)	solve-ui.pages.dev			65	IN (0x0001)	false
Jan 14, 2025 14:19:35.772735119 CET	1.1.1.1	192.168.2.10	0x8f36	No error (0)	solve-api.forethought.ai		104.17.1.4	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:35.772735119 CET	1.1.1.1	192.168.2.10	0x8f36	No error (0)	solve-api.forethought.ai		104.17.255.3	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:35.774842978 CET	1.1.1.1	192.168.2.10	0xd179	No error (0)	solve-api.forethought.ai			65	IN (0x0001)	false
Jan 14, 2025 14:19:37.044964075 CET	1.1.1.1	192.168.2.10	0xba77	No error (0)	o185886.ingest.sentry.io		34.120.195.249	A (IP address)	IN (0x0001)	false
Jan 14, 2025 14:19:37.757189035 CET	1.1.1.1	192.168.2.10	0x3d74	No error (0)	data.pendo.io		34.107.204.85	A (IP address)	IN (0x0001)	false

Timestamp	Bytes transferred	Direction	Data
Jan 14, 2025 14:18:20.612612009 CET	430	OUT	GET / HTTP/1.1 Host: ncn.acemlna.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Jan 14, 2025 14:18:21.067676067 CET	147	IN	HTTP/1.1 301 Moved Permanently location: https://ncn.acemlna.com/ date: Tue, 14 Jan 2025 13:18:20 GMT server: istio-envoy content-length: 0
Jan 14, 2025 14:19:06.082273960 CET	6	OUT	Data Raw: 00 Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:21 UTC	658	OUT	GET / HTTP/1.1 Host: ncn.acemlna.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:21 UTC	246	IN	HTTP/1.1 307 Temporary Redirect cache-control: public, max-age=2628000 location: https://ncn.activehosted.com/ date: Tue, 14 Jan 2025 13:18:21 GMT content-length: 0 x-envoy-upstream-service-time: 1 server: istio-envoy connection: close

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:22 UTC	663	OUT	GET / HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:22 UTC	1367	IN	HTTP/1.1 302 Found Date: Tue, 14 Jan 2025 13:18:22 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: close location: https://ncn.activehosted.com/admin/ Cache-Control: no-store, no-cache, must-revalidate content-security-policy: upgrade-insecure-requests;report-uri /csp/ content-security-policy-report-only: default-src https: 'self';font-src https: data: 'self';script-src 'unsafe-eval' 'unsafe-inline' 'report-sample' https:;script-src-elem 'unsafe-inline' https:;style-src 'unsafe-inline' https:;style-src-elem 'unsafe-inline' https:;img-src https: blob: data:;connect-src https: wss:;worker-src https: blob:;form-action 'self';block-all-mixed-content;report-uri /csp/ expires: Thu, 19 Nov 1981 08:52:00 GMT pragma: no-cache Set-Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; path=/; secure; HttpOnly; SameSite=Lax x-content-type-options: nosniff x-request-id: 07dc0562703cbbeafc011ba29b010f05 x-xss-protection: 1; mode=block CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; path=/; expires=Tue, 14-Jan-25 13:48:22 GMT; domain=.activehosted.com; HttpOnly; Secure; SameSite=None Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare
2025-01-14 13:18:22 UTC	32	IN	Data Raw: 43 46 2d 52 41 59 3a 20 39 30 31 64 65 39 35 65 34 65 33 65 30 66 37 34 2d 45 57 52 0d 0a 0d 0a Data Ascii: CF-RAY: 901de95e4e3e0f74-EWR

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	880	OUT	GET /admin/ HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q
2025-01-14 13:18:23 UTC	1088	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:23 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-store, no-cache, must-revalidate content-security-policy: upgrade-insecure-requests;report-uri /csp/ content-security-policy-report-only: default-src https: 'self';font-src https: data: 'self';script-src 'unsafe-eval' 'unsafe-inline' 'report-sample' https:;script-src-elem 'unsafe-inline' https:;style-src 'unsafe-inline' https:;style-src-elem 'unsafe-inline' https:;img-src https: blob: data:;connect-src https: wss:;worker-src https: blob:;form-action 'self';block-all-mixed-content;report-uri /csp/ expires: Thu, 19 Nov 1981 08:52:00 GMT pragma: no-cache Set-Cookie: XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI; path=/; secure; SameSite=Strict x-content-type-options: nosniff x-request-id: ba1900390992fbec1153896d063b07de x-xss-protection: 1; mode=block CF-Cache-Status: DYNAMIC Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de962fc287cb1-EWR
2025-01-14 13:18:23 UTC	281	IN	Data Raw: 31 63 62 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 4c 61 6e 67 75 61 67 65 22 20 63 6f 6e 74 65 6e 74 3d 22 65 6e 2d 75 73 22 20 2f 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 6f 62 6f 74 73 22 20 63 6f 6e 74 65 6e 74 3d 22 6e 6f 69 6e 64 65 78 22 20 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 Data Ascii: 1cb2<!DOCTYPE html><html lang="en"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Language" content="en-us" /> <meta name="robots" content="noindex" /> <link rel="icon" href="htt
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 65 73 2f 74 65 6d 70 6c 61 74 65 73 2f 64 65 73 69 67 6e 73 2f 6e 63 6e 69 65 6c 73 65 6e 2f 69 6d 61 67 65 73 2f 6e 63 6e 5f 66 61 76 69 63 6f 6e 5f 33 32 78 33 32 2e 70 6e 67 22 20 2f 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 4e 43 4e 20 45 6d 61 69 6c 20 4d 61 72 6b 65 74 69 6e 67 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 64 6e 6a 73 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 61 6a 61 78 2f 6c 69 62 73 2f 6a 71 75 65 72 79 2f 33 2e 37 2e 31 2f 6a 71 75 65 72 79 2e 6d 69 6e 2e 6a 73 22 20 69 6e 74 65 67 72 69 74 79 3d 22 73 68 61 35 31 32 2d 76 32 43 4a 37 55 61 59 79 34 4a 77 71 4c 44 49 72 5a 55 49 2f 34 68 71 65 6f 51 69 65 4f 6d 41 5a 4e 58 42 65 51 79 6a 6f 32 31 64 61 64 6e 77 52 2b Data Ascii: es/templates/designs/ncnielsen/images/ncn_favicon_32x32.png" /> <title>NCN Email Marketing</title> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js" integrity="sha512-v2CJ7UaYy4JwqLDIrZUI/4hqeoQieOmAZNXBeQyjo21dadnwR+
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 20 2f 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 6a 73 63 2f 61 63 2e 6a 73 3f 76 3d 76 31 30 32 37 31 32 31 33 33 37 34 36 34 36 33 36 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 6a 73 2f 66 75 6e 63 74 69 6f 6e 73 2e 6a 73 3f 76 3d 76 31 30 32 37 31 32 31 33 33 37 34 36 34 36 33 36 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 63 73 73 2f 63 61 6d 70 2d 63 6f 6c 6f 72 73 2e 63 73 73 3f 76 3d 76 31 30 32 37 31 32 31 33 33 37 34 36 34 36 33 36 22 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 68 72 65 66 3d 22 63 73 73 2f 73 6b 69 6e 2e 63 73 73 3f 76 3d 76 31 30 32 37 31 32 31 33 33 37 34 36 34 36 33 36 22 20 72 65 Data Ascii: /> <script src="jsc/ac.js?v=v1027121337464636"></script> <script src="js/functions.js?v=v1027121337464636"></script> <link href="css/camp-colors.css?v=v1027121337464636" rel="stylesheet" /> <link href="css/skin.css?v=v1027121337464636" re
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 65 67 72 69 74 79 3d 22 73 68 61 35 31 32 2d 58 61 50 4a 64 33 58 57 47 62 42 44 43 68 51 36 43 74 46 2b 77 44 71 53 37 74 6c 4f 37 62 59 6e 75 4c 33 37 6b 46 75 6c 36 33 63 6f 4f 58 58 42 34 51 79 46 68 41 41 59 4f 35 6d 67 55 56 32 6b 50 78 67 6e 49 57 7a 41 59 63 62 33 2b 34 41 6a 4d 6e 74 42 53 51 3d 3d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3d 22 61 6e 6f 6e 79 6d 6f 75 73 22 20 72 65 66 65 72 72 65 72 70 6f 6c 69 63 79 3d 22 6e 6f 2d 72 65 66 65 72 72 65 72 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 3e 63 73 73 56 61 72 73 28 29 3b 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 6e 6f 64 65 5f 6d 6f 64 75 6c 65 73 2f 40 61 63 74 69 76 65 63 61 6d 70 61 69 67 6e 2f 63 61 6d 70 2d 63 6f 72 65 2d 72 65 Data Ascii: egrity="sha512-XaPJd3XWGbBDChQ6CtF+wDqS7tlO7bYnuL37kFul63coOXXB4QyFhAAYO5mgUV2kPxgnIWzAYcb3+4AjMntBSQ==" crossorigin="anonymous" referrerpolicy="no-referrer"></script><script>cssVars();</script> <script src="/node_modules/@activecampaign/camp-core-re
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 20 20 20 20 20 20 20 69 64 3d 22 61 63 5f 72 65 73 75 6c 74 5f 74 65 78 74 22 3e 43 68 61 6e 67 65 73 20 53 61 76 65 64 2e 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 69 64 3d 22 61 63 5f 65 72 72 6f 72 5f 62 61 72 22 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 22 3e 3c 73 70 61 6e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 64 3d 22 61 63 5f 65 72 72 6f 72 5f 74 65 78 74 22 3e 45 72 72 6f 72 20 4f 63 63 75 72 72 65 64 21 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 22 20 69 64 3d 22 6c 6f 67 69 6e Data Ascii: id="ac_result_text">Changes Saved.</span></div> <div id="ac_error_bar" style="display:none;"><span id="ac_error_text">Error Occurred!</span></div> <div class="ac_login_box_container" id="login
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 69 76 65 63 61 6d 70 61 69 67 6e 2e 63 6f 6d 2f 68 63 2f 65 6e 2d 75 73 2f 72 65 71 75 65 73 74 73 2f 6e 65 77 27 3b 0a 20 20 20 20 20 20 20 20 77 69 6e 64 6f 77 2e 6f 70 65 6e 28 75 72 6c 2c 20 27 5f 62 6c 61 6e 6b 27 29 3b 0a 20 20 20 20 7d 0a 0a 20 20 20 20 24 4a 28 64 6f 63 75 6d 65 6e 74 29 2e 72 65 61 64 79 28 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 0a 20 20 20 20 20 20 20 20 24 4a 28 22 61 2e 66 6f 72 67 6f 74 70 61 73 73 22 29 2e 63 6c 69 63 6b 28 6c 6f 6f 6b 75 70 5f 6c 69 6e 6b 5f 66 69 78 29 3b 0a 20 20 20 20 20 20 20 20 2f 2f 20 69 66 20 74 68 65 72 65 20 69 73 20 61 20 68 61 73 68 2c 20 61 70 70 65 6e 64 20 69 74 20 74 6f 20 6c 69 6e 6b 73 0a 20 20 20 20 20 20 20 20 69 66 20 28 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 61 73 68 29 20 Data Ascii: ivecampaign.com/hc/en-us/requests/new'; window.open(url, '_blank'); } $J(document).ready(function () { $J("a.forgotpass").click(lookup_link_fix); // if there is a hash, append it to links if (window.location.hash)
2025-01-14 13:18:23 UTC	228	IN	Data Raw: 65 63 6b 65 64 22 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 6c 61 62 65 6c 20 66 6f 72 3d 22 72 6d 75 22 20 63 6c 61 73 73 3d 22 63 68 65 63 6b 62 6f 78 22 3e 52 65 6d 65 6d 62 65 72 20 6d 79 20 75 73 65 72 6e 61 6d 65 3c 2f 6c 61 62 65 6c 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 20 20 3c 69 6e 70 75 74 20 74 79 70 65 3d 22 73 75 62 6d 69 74 22 20 63 6c 61 73 73 3d 22 61 63 5f 62 75 74 74 6f 6e 20 62 75 74 74 6f 6e 5f 6c 61 72 67 65 20 61 6c 74 31 20 66 72 69 67 68 74 20 6e 6f 6d 61 72 67 69 6e 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 76 61 6c 75 65 3d 22 4c 6f 67 69 6e 22 20 74 61 62 69 6e 64 65 78 3d 22 34 22 2f 3e 0a 20 0d 0a Data Ascii: ecked" /> <label for="rmu" class="checkbox">Remember my username</label> </div> <input type="submit" class="ac_button button_large alt1 fright nomargin" value="Login" tabindex="4"/>
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 31 63 38 66 0d 0a 20 20 20 3c 2f 64 69 76 3e 0a 3c 2f 66 6f 72 6d 3e 0a 3c 73 63 72 69 70 74 3e 0a 63 6f 6e 73 74 20 65 48 61 77 6b 54 61 6c 6f 6e 53 65 74 74 69 6e 67 73 20 3d 20 7b 0a 20 20 20 20 63 6f 6f 6b 69 65 3a 20 7b 0a 20 20 20 20 20 20 20 20 53 61 6d 65 53 69 74 65 3a 27 53 74 72 69 63 74 27 2c 0a 20 20 20 20 20 20 20 20 53 65 63 75 72 65 3a 74 72 75 65 2c 0a 20 20 20 20 20 20 20 20 50 61 74 68 3a 27 2f 61 64 6d 69 6e 27 2c 0a 20 20 20 20 7d 2c 0a 20 20 20 20 62 69 6e 64 3a 20 7b 0a 20 20 20 20 20 20 20 20 4f 75 74 49 64 3a 27 74 61 6c 6f 6e 27 2c 0a 20 20 20 20 7d 2c 0a 7d 3b 0a 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 61 64 6d 69 6e 2f 6a 73 2f 45 48 61 77 6b 54 61 6c 6f 6e 36 2e 6a 73 22 3e 3c 2f 73 63 72 69 70 Data Ascii: 1c8f </div></form><script>const eHawkTalonSettings = { cookie: { SameSite:'Strict', Secure:true, Path:'/admin', }, bind: { OutId:'talon', },};</script><script src="/admin/js/EHawkTalon6.js"></scrip
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3d 22 34 38 22 20 63 6c 61 73 73 3d 22 6d 62 2d 34 20 6d 78 2d 61 75 74 6f 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 20 63 6c 61 73 73 3d 22 62 6f 64 79 2d 32 20 73 6c 61 74 65 2d 31 32 30 20 6d 74 2d 30 20 6d 62 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 49 6d 70 6f 72 74 20 61 6e 64 20 66 6f 6c 6c 6f 77 2d 75 70 20 77 69 74 68 20 70 61 73 74 20 70 72 6f 73 70 65 63 74 73 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 Data Ascii: height="48" class="mb-4 mx-auto"> <p class="body-2 slate-120 mt-0 mb-2"> Import and follow-up with past prospects</p>
2025-01-14 13:18:23 UTC	1369	IN	Data Raw: 64 3d 22 70 65 6e 64 6f 2d 63 61 72 64 2d 72 65 77 61 72 64 2d 63 6f 6e 74 61 63 74 73 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 61 63 74 69 76 65 63 61 6d 70 61 69 67 6e 2e 63 6f 6d 2f 6d 61 72 6b 65 74 70 6c 61 63 65 2f 72 65 63 69 70 65 2f 66 6f 72 77 61 72 64 2d 61 2d 63 61 6d 70 61 69 67 6e 2d 69 6e 63 65 6e 74 69 76 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 63 6c 61 73 73 3d 22 74 69 6c 65 20 6d 62 2d 32 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d Data Ascii: d="pendo-card-reward-contacts" href="https://www.activecampaign.com/marketplace/recipe/forward-a-campaign-incentive" class="tile mb-2"> <div class=

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	857	OUT	GET /admin/css/camp-colors.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	370	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 1371 Connection: close etag: "3067619625" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96809690fa0-EWR
2025-01-14 13:18:24 UTC	999	IN	Data Raw: 3a 72 6f 6f 74 20 7b 0a 20 20 2f 2a 20 50 72 69 6d 61 72 79 20 70 61 6c 65 74 74 65 20 2a 2f 0a 20 20 2d 2d 6f 63 65 61 6e 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 35 30 30 29 3b 0a 20 20 2d 2d 6f 63 65 61 6e 2d 31 32 30 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 36 30 30 29 3b 0a 20 20 2d 2d 6f 63 65 61 6e 2d 38 30 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 34 30 30 29 3b 0a 20 20 2d 2d 6f 63 65 61 6e 2d 36 30 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 33 30 30 29 3b 0a 20 20 2d 2d 6f 63 65 61 6e 2d 34 30 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 32 30 30 29 3b 0a 20 20 2d 2d 6f 63 65 61 6e 2d 33 30 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 31 35 30 29 3b 0a 20 20 2d 2d 6f 63 65 61 6e 2d 32 30 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 31 30 30 29 3b 0a 20 Data Ascii: :root { /* Primary palette */ --ocean: var(--ocean-500); --ocean-120: var(--ocean-600); --ocean-80: var(--ocean-400); --ocean-60: var(--ocean-300); --ocean-40: var(--ocean-200); --ocean-30: var(--ocean-150); --ocean-20: var(--ocean-100);
2025-01-14 13:18:24 UTC	372	IN	Data Raw: 20 20 2d 2d 6c 61 76 65 6e 64 65 72 2d 36 30 3a 20 23 63 33 61 37 66 63 3b 0a 20 20 2d 2d 6c 61 76 65 6e 64 65 72 2d 34 30 3a 20 23 65 61 65 30 66 65 3b 0a 20 20 2d 2d 6c 61 76 65 6e 64 65 72 2d 32 30 3a 20 23 66 37 66 32 66 66 3b 0a 20 20 2d 2d 62 61 6e 61 6e 61 3a 20 23 66 61 63 66 33 66 3b 0a 20 20 2d 2d 62 61 6e 61 6e 61 2d 31 32 30 3a 20 23 64 65 61 61 30 30 3b 0a 20 20 2d 2d 62 61 6e 61 6e 61 2d 38 30 3a 20 23 66 62 64 39 36 35 3b 0a 20 20 2d 2d 62 61 6e 61 6e 61 2d 36 30 3a 20 23 66 63 65 32 38 62 3b 0a 20 20 2d 2d 62 61 6e 61 6e 61 2d 34 30 3a 20 23 66 64 65 63 62 32 3b 0a 20 20 2d 2d 62 61 6e 61 6e 61 2d 32 30 3a 20 23 66 66 66 39 65 36 3b 0a 0a 20 20 2f 2a 20 4e 65 75 74 72 61 6c 73 20 2a 2f 0a 20 20 2d 2d 62 6c 61 63 6b 3a 20 23 30 30 30 3b 0a Data Ascii: --lavender-60: #c3a7fc; --lavender-40: #eae0fe; --lavender-20: #f7f2ff; --banana: #facf3f; --banana-120: #deaa00; --banana-80: #fbd965; --banana-60: #fce28b; --banana-40: #fdecb2; --banana-20: #fff9e6; /* Neutrals */ --black: #000;

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	850	OUT	GET /admin/css/skin.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	372	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 430286 Connection: close etag: "4284232231" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de9680c2e43ed-EWR
2025-01-14 13:18:24 UTC	997	IN	Data Raw: 68 74 6d 6c 20 7b 20 6d 61 72 67 69 6e 3a 20 30 3b 70 61 64 64 69 6e 67 3a 20 30 3b 63 6f 6c 6f 72 3a 20 23 30 30 30 3b 68 65 69 67 68 74 3a 20 31 30 30 25 3b 6d 69 6e 2d 68 65 69 67 68 74 3a 20 31 30 30 25 3b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 49 42 4d 20 50 6c 65 78 20 53 61 6e 73 27 2c 20 68 65 6c 76 65 74 69 63 61 2c 20 61 72 69 61 6c 2c 20 73 65 72 69 66 3b 20 2f 2a 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 33 34 33 34 33 34 3b 20 2a 2f 20 7d 0a 62 6f 64 79 2c 20 64 69 76 2c 20 64 6c 2c 20 64 74 2c 20 64 64 2c 20 75 6c 2c 20 6f 6c 2c 20 6c 69 2c 20 68 31 2c 20 68 32 2c 20 68 33 2c 20 68 34 2c 20 68 35 2c 20 68 36 2c 20 70 72 65 2c 20 63 6f 64 65 2c 20 62 6c 6f 63 6b 71 75 6f 74 65 20 7b 20 6d 61 72 67 69 6e 3a 20 30 3b 70 61 Data Ascii: html { margin: 0;padding: 0;color: #000;height: 100%;min-height: 100%;font-family: 'IBM Plex Sans', helvetica, arial, serif; /* background-color: #343434; */ }body, div, dl, dt, dd, ul, ol, li, h1, h2, h3, h4, h5, h6, pre, code, blockquote { margin: 0;pa
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 69 72 65 63 74 69 6f 6e 3a 20 63 6f 6c 75 6d 6e 3b 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 73 6c 61 74 65 2d 36 30 30 29 3b 2d 77 65 62 6b 69 74 2d 66 6f 6e 74 2d 73 6d 6f 6f 74 68 69 6e 67 3a 20 73 75 62 70 69 78 65 6c 2d 61 6e 74 69 61 6c 69 61 73 65 64 3b 20 7d 0a 69 6d 67 20 7b 20 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 3b 20 7d 0a 73 74 72 6f 6e 67 20 7b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 37 30 30 3b 20 7d 0a 61 3a 6c 69 6e 6b 2c 20 61 3a 76 69 73 69 74 65 64 20 7b 20 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 6f 63 65 61 6e 2d 35 30 30 29 3b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 20 7d 0a 61 3a 68 6f 76 65 72 20 7b 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 75 6e 64 65 72 6c 69 6e 65 3b 20 7d 0a 2e 6c 61 73 74 63 Data Ascii: irection: column;color: var(--slate-600);-webkit-font-smoothing: subpixel-antialiased; }img { border: none; }strong { font-weight: 700; }a:link, a:visited { color: var(--ocean-500);text-decoration: none; }a:hover { text-decoration: underline; }.lastc
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6f 74 20 68 65 61 64 65 72 20 23 67 6c 6f 62 61 6c 2d 6e 61 76 69 67 61 74 69 6f 6e 20 61 2c 0a 23 67 6c 6f 62 61 6c 2d 72 6f 6f 74 20 68 65 61 64 65 72 20 23 67 6c 6f 62 61 6c 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 69 76 2e 72 65 70 6f 72 74 73 2d 64 72 6f 70 64 6f 77 6e 20 7b 0a 09 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 73 6c 61 74 65 2d 32 30 30 29 0a 7d 0a 0a 23 67 6c 6f 62 61 6c 2d 72 6f 6f 74 20 68 65 61 64 65 72 20 23 67 6c 6f 62 61 6c 2d 6e 61 76 69 67 61 74 69 6f 6e 20 61 2e 61 63 74 69 76 65 2c 0a 23 67 6c 6f 62 61 6c 2d 72 6f 6f 74 20 68 65 61 64 65 72 20 23 67 6c 6f 62 61 6c 2d 6e 61 76 69 67 61 74 69 6f 6e 20 64 69 76 2e 72 65 70 6f 72 74 73 2d 64 72 6f 70 64 6f 77 6e 2e 61 63 74 69 76 65 20 7b 0a 09 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 0a 7d Data Ascii: ot header #global-navigation a,#global-root header #global-navigation div.reports-dropdown {color: var(--slate-200)}#global-root header #global-navigation a.active,#global-root header #global-navigation div.reports-dropdown.active {color: #fff;}
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 30 20 36 30 25 3b 0a 09 09 2d 6d 6f 7a 2d 62 6f 78 2d 66 6c 65 78 3a 20 30 3b 0a 09 09 2d 6d 73 2d 66 6c 65 78 3a 20 30 20 30 20 36 30 25 3b 0a 09 09 66 6c 65 78 3a 20 30 20 30 20 36 30 25 3b 20 7d 0a 7d 0a 0a 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 66 65 61 74 75 72 65 64 2d 70 61 6e 65 20 2e 77 72 61 70 70 65 72 20 7b 0a 09 6d 61 78 2d 77 69 64 74 68 3a 20 37 30 30 70 78 3b 0a 09 6d 61 72 67 69 6e 3a 20 61 75 74 6f 3b 0a 09 77 69 64 74 68 3a 20 31 30 30 25 3b 0a 7d 0a 0a 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 66 65 61 74 75 72 65 64 2d 70 61 6e 65 20 2e 74 69 6c 65 20 7b 0a 09 77 69 64 74 68 3a 20 35 30 25 3b 0a 7d 0a 0a 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 69 6e 2d 77 69 64 74 68 3a 31 30 32 34 70 78 29 20 7b 0a 09 62 6f 64 79 2e 6c 6f Data Ascii: 0 60%;-moz-box-flex: 0;-ms-flex: 0 0 60%;flex: 0 0 60%; }}body.login .featured-pane .wrapper {max-width: 700px;margin: auto;width: 100%;}body.login .featured-pane .tile {width: 50%;}@media screen and (min-width:1024px) {body.lo
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 72 61 6e 73 70 61 72 65 6e 74 3b 20 62 6f 72 64 65 72 2d 72 69 67 68 74 3a 20 30 20 73 6f 6c 69 64 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 20 62 6f 72 64 65 72 2d 74 6f 70 3a 20 2e 32 35 72 65 6d 20 73 6f 6c 69 64 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 20 7d 0a 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 68 6f 76 65 72 2d 6c 69 6e 6b 2d 62 6f 72 64 65 72 2e 68 6f 76 65 72 2d 6c 69 6e 6b 2d 62 6f 72 64 65 72 2d 61 72 72 6f 77 3a 61 66 74 65 72 20 7b 20 72 69 67 68 74 3a 20 2d 2e 33 31 32 35 72 65 6d 3b 20 7d 0a 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 68 6f 76 65 72 2d 6c 69 6e 6b 2d 62 6f 72 64 65 72 3a 66 6f 63 75 73 3a 61 66 74 65 72 2c 20 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 68 6f 76 65 72 2d 6c 69 6e 6b 2d 62 6f 72 64 65 72 3a 68 6f 76 65 72 3a 61 66 74 65 72 20 Data Ascii: transparent; border-right: 0 solid transparent; border-top: .25rem solid transparent; }body.login .hover-link-border.hover-link-border-arrow:after { right: -.3125rem; }body.login .hover-link-border:focus:after, body.login .hover-link-border:hover:after
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 7d 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 20 7b 77 69 64 74 68 3a 34 35 30 70 78 3b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 49 42 4d 20 50 6c 65 78 20 53 61 6e 73 22 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 74 6f 70 3a 35 30 25 3b 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 59 28 2d 35 30 25 29 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 20 30 20 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 20 2e 61 63 5f 6c 6f 67 69 6e 5f 68 65 61 64 20 7b 2d 6d 6f 7a 2d 62 6f 72 64 65 72 2d 72 61 64 69 75 73 2d 74 6f 70 6c 65 66 74 3a 36 70 78 3b 20 2d 6d 6f 7a 2d 62 6f 72 64 Data Ascii: }.ac_login_box_container {width:450px;font-family: "IBM Plex Sans", Helvetica, sans-serif;position: relative;top:50%;transform: translateY(-50%);padding-top: 0 !important;}.ac_login_box_container .ac_login_head {-moz-border-radius-topleft:6px; -moz-bord
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 67 3a 30 20 32 30 70 78 3b 7d 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 65 72 72 6f 72 20 2e 6e 6f 2d 72 65 73 75 6c 74 73 20 7b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 35 70 78 3b 70 61 64 64 69 6e 67 3a 31 36 70 78 3b 7d 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 65 72 72 6f 72 20 2e 6e 6f 2d 72 65 73 75 6c 74 73 20 61 20 7b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 62 6f 6c 64 3b 7d 0a 0a 2f 2a 20 4c 6f 67 69 6e 20 46 61 69 6c 65 64 20 2a 2f 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 66 61 69 6c 65 64 2e 6e 6f 2d 72 65 73 75 6c 74 73 20 7b 20 70 61 64 64 69 6e 67 3a 20 33 30 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 35 30 25 3b 63 6f 6c 6f 72 3a 20 23 37 37 36 65 33 30 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 66 66 66 33 61 35 3b 20 7d 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 66 61 Data Ascii: g:0 20px;}.ac_login_error .no-results { font-size:15px;padding:16px;}.ac_login_error .no-results a { font-weight: bold;}/* Login Failed */.ac_login_failed.no-results { padding: 30px;line-height: 150%;color: #776e30;background: #fff3a5; }.ac_login_fa
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 37 64 63 3b 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 20 7d 0a 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 69 63 6f 6e 2d 6c 6f 67 69 6e 20 7b 20 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 20 20 68 65 69 67 68 74 3a 20 32 34 70 78 3b 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 31 32 70 78 3b 20 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 6d 69 64 64 6c 65 3b 20 77 69 64 74 68 3a 20 32 34 70 78 3b 20 7d 0a 62 6f 64 79 2e 6c 6f 67 69 6e 20 2e 69 63 6f 6e 2d 6c 6f 67 69 6e 2e 73 73 6f 20 7b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 3a 20 75 72 6c 28 22 68 74 74 70 73 3a 2f 2f 64 32 32 36 61 6a 34 61 6f 31 74 36 31 71 2e 63 6c 6f 75 64 66 72 6f 6e 74 2e 6e 65 74 2f 35 77 65 34 6e 73 77 6b 6f 5f 73 73 6f Data Ascii: 7dc; text-decoration: none; }body.login .icon-login { display: inline-block; height: 24px; margin-right: 12px; vertical-align: middle; width: 24px; }body.login .icon-login.sso { background-image: url("https://d226aj4ao1t61q.cloudfront.net/5we4nswko_sso
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 2d 66 6c 65 78 3b 64 69 73 70 6c 61 79 3a 20 2d 6d 6f 7a 2d 66 6c 65 78 3b 64 69 73 70 6c 61 79 3a 20 2d 6d 73 2d 66 6c 65 78 62 6f 78 3b 64 69 73 70 6c 61 79 3a 20 66 6c 65 78 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 20 63 6f 6c 75 6d 6e 3b 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 20 63 6f 6c 75 6d 6e 3b 2d 6d 6f 7a 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 20 63 6f 6c 75 6d 6e 3b 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 34 70 78 3b 7a 6f 6f 6d 3a 20 31 3b 76 65 72 74 69 63 61 6c 2d 61 6c 69 67 6e 3a 20 74 6f 70 3b 20 7d 0a 23 75 78 62 6f 64 79 3a 61 66 74 65 72 20 7b 20 2f 2a 20 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 63 6f 6e 74 65 6e 74 3a 20 27 27 3b 77 69 64 74 68 3a 20 31 30 30 25 3b 64 69 73 70 Data Ascii: -flex;display: -moz-flex;display: -ms-flexbox;display: flex;flex-direction: column;-webkit-flex-direction: column;-moz-flex-direction: column;font-size: 14px;zoom: 1;vertical-align: top; }#uxbody:after { /* position: relative;content: '';width: 100%;disp
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 64 3a 20 23 46 46 46 3b 20 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 65 30 64 66 64 62 3b 20 2d 6d 6f 7a 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 33 70 78 20 33 70 78 20 34 70 78 20 23 65 30 64 66 64 63 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 33 70 78 20 33 70 78 20 34 70 78 20 23 65 30 64 66 64 63 3b 20 62 6f 78 2d 73 68 61 64 6f 77 3a 33 70 78 20 33 70 78 20 34 70 78 20 23 65 30 64 66 64 63 3b 7d 0a 0a 2e 75 78 6c 66 74 63 6f 6c 6d 20 7b 20 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 66 6c 65 78 2d 67 72 6f 77 3a 20 31 3b 70 61 64 64 69 6e 67 3a 20 38 37 70 78 20 32 33 70 78 20 32 33 70 78 20 32 33 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 46 46 46 3b 77 69 64 74 68 3a 20 61 75 74 6f 3b 6d 69 6e 2d 77 69 Data Ascii: d: #FFF; border:1px solid #e0dfdb; -moz-box-shadow:3px 3px 4px #e0dfdc; -webkit-box-shadow:3px 3px 4px #e0dfdc; box-shadow:3px 3px 4px #e0dfdc;}.uxlftcolm { position: relative;flex-grow: 1;padding: 87px 23px 23px 23px;background: #FFF;width: auto;min-wi

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	856	OUT	GET /admin/css/animations.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	371	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 76307 Connection: close etag: "1278287647" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de9680c01f791-EWR
2025-01-14 13:18:24 UTC	998	IN	Data Raw: 40 63 68 61 72 73 65 74 20 22 55 54 46 2d 38 22 3b 0a 2f 2a 21 0a 41 6e 69 6d 61 74 65 2e 63 73 73 20 2d 20 68 74 74 70 3a 2f 2f 64 61 6e 65 64 65 6e 2e 6d 65 2f 61 6e 69 6d 61 74 65 0a 4c 69 63 65 6e 73 65 64 20 75 6e 64 65 72 20 74 68 65 20 4d 49 54 20 6c 69 63 65 6e 73 65 20 2d 20 68 74 74 70 3a 2f 2f 6f 70 65 6e 73 6f 75 72 63 65 2e 6f 72 67 2f 6c 69 63 65 6e 73 65 73 2f 4d 49 54 0a 0a 43 6f 70 79 72 69 67 68 74 20 28 63 29 20 32 30 31 34 20 44 61 6e 69 65 6c 20 45 64 65 6e 0a 2a 2f 0a 0a 2e 61 6e 69 6d 61 74 65 64 20 7b 0a 20 20 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 20 31 73 3b 0a 20 20 20 20 20 20 20 20 20 20 61 6e 69 6d 61 74 69 6f 6e 2d 64 75 72 61 74 69 6f 6e 3a 20 31 73 3b 0a 20 20 2d 77 65 62 6b 69 74 Data Ascii: @charset "UTF-8";/!Animate.css - http://daneden.me/animateLicensed under the MIT license - http://opensource.org/licenses/MITCopyright (c) 2014 Daniel Eden/.animated { -webkit-animation-duration: 1s; animation-duration: 1s; -webkit
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 36 31 30 2c 20 30 2e 33 35 35 2c 20 31 2e 30 30 30 29 3b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 30 2c 30 2c 30 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 30 2c 30 2c 30 29 3b 0a 20 20 7d 0a 0a 20 20 34 30 25 2c 20 34 33 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 63 75 62 69 63 2d 62 65 7a 69 65 72 28 30 2e 37 35 35 2c 20 30 2e 30 35 30 2c 20 30 2e 38 35 35 2c 20 30 2e 30 36 30 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 69 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 63 75 62 69 63 2d 62 65 7a Data Ascii: 610, 0.355, 1.000); -webkit-transform: translate3d(0,0,0); transform: translate3d(0,0,0); } 40%, 43% { -webkit-transition-timing-function: cubic-bezier(0.755, 0.050, 0.855, 0.060); transition-timing-function: cubic-bez
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 77 65 62 6b 69 74 2d 74 72 61 6e 73 69 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 63 75 62 69 63 2d 62 65 7a 69 65 72 28 30 2e 37 35 35 2c 20 30 2e 30 35 30 2c 20 30 2e 38 35 35 2c 20 30 2e 30 36 30 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 69 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 63 75 62 69 63 2d 62 65 7a 69 65 72 28 30 2e 37 35 35 2c 20 30 2e 30 35 30 2c 20 30 2e 38 35 35 2c 20 30 2e 30 36 30 29 3b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 30 2c 20 2d 31 35 70 78 2c 20 30 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 30 2c 20 2d 31 35 70 78 2c 20 30 29 Data Ascii: webkit-transition-timing-function: cubic-bezier(0.755, 0.050, 0.855, 0.060); transition-timing-function: cubic-bezier(0.755, 0.050, 0.855, 0.060); -webkit-transform: translate3d(0, -15px, 0); transform: translate3d(0, -15px, 0)
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 31 29 3b 0a 20 20 7d 0a 0a 20 20 35 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2e 30 35 2c 20 31 2e 30 35 2c 20 31 2e 30 35 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2e 30 35 2c 20 31 2e 30 35 2c 20 31 2e 30 35 29 3b 0a 20 20 7d 0a 0a 20 20 31 30 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2c 20 31 2c 20 31 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2c 20 31 2c 20 31 29 3b 0a 20 20 7d 0a 7d 0a 0a 2e 70 75 6c 73 65 20 7b 0a 20 20 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 6e 61 6d 65 3a 20 Data Ascii: 1); } 50% { -webkit-transform: scale3d(1.05, 1.05, 1.05); transform: scale3d(1.05, 1.05, 1.05); } 100% { -webkit-transform: scale3d(1, 1, 1); transform: scale3d(1, 1, 1); }}.pulse { -webkit-animation-name:
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 31 2e 32 35 2c 20 31 29 3b 0a 20 20 7d 0a 0a 20 20 35 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2e 31 35 2c 20 30 2e 38 35 2c 20 31 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2e 31 35 2c 20 30 2e 38 35 2c 20 31 29 3b 0a 20 20 7d 0a 0a 20 20 36 35 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 2e 39 35 2c 20 31 2e 30 35 2c 20 31 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 2e 39 35 2c 20 31 2e 30 35 2c 20 31 29 3b 0a 20 20 7d 0a 0a 20 20 37 35 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f Data Ascii: 1.25, 1); } 50% { -webkit-transform: scale3d(1.15, 0.85, 1); transform: scale3d(1.15, 0.85, 1); } 65% { -webkit-transform: scale3d(.95, 1.05, 1); transform: scale3d(.95, 1.05, 1); } 75% { -webkit-transfo
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 68 61 6b 65 3b 0a 7d 0a 0a 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 73 77 69 6e 67 20 7b 0a 20 20 32 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 31 35 64 65 67 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 31 35 64 65 67 29 3b 0a 20 20 7d 0a 0a 20 20 34 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 2d 31 30 64 65 67 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 2d 31 30 64 65 67 29 3b 0a Data Ascii: hake;}@-webkit-keyframes swing { 20% { -webkit-transform: rotate3d(0, 0, 1, 15deg); transform: rotate3d(0, 0, 1, 15deg); } 40% { -webkit-transform: rotate3d(0, 0, 1, -10deg); transform: rotate3d(0, 0, 1, -10deg);
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 74 61 64 61 20 7b 0a 20 20 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2c 20 31 2c 20 31 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2c 20 31 2c 20 31 29 3b 0a 20 20 7d 0a 0a 20 20 31 30 25 2c 20 32 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 2e 39 2c 20 2e 39 2c 20 2e 39 29 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 2d 33 64 65 67 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 2e 39 2c 20 2e 39 2c 20 2e 39 29 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c Data Ascii: bkit-keyframes tada { 0% { -webkit-transform: scale3d(1, 1, 1); transform: scale3d(1, 1, 1); } 10%, 20% { -webkit-transform: scale3d(.9, .9, .9) rotate3d(0, 0, 1, -3deg); transform: scale3d(.9, .9, .9) rotate3d(0, 0,
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2c 20 31 2c 20 31 29 3b 0a 20 20 7d 0a 7d 0a 0a 2e 74 61 64 61 20 7b 0a 20 20 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 2d 6e 61 6d 65 3a 20 74 61 64 61 3b 0a 20 20 20 20 20 20 20 20 20 20 61 6e 69 6d 61 74 69 6f 6e 2d 6e 61 6d 65 3a 20 74 61 64 61 3b 0a 7d 0a 0a 2f 2a 20 6f 72 69 67 69 6e 61 6c 6c 79 20 61 75 74 68 6f 72 65 64 20 62 79 20 4e 69 63 6b 20 50 65 74 74 69 74 20 2d 20 68 74 74 70 73 3a 2f 2f 67 69 74 68 75 62 2e 63 6f 6d 2f 6e 69 63 6b 70 65 74 74 69 74 2f 67 6c 69 64 65 20 2a 2f 0a 0a 40 2d 77 65 62 6b 69 74 2d 6b 65 79 66 72 61 6d 65 73 20 77 6f 62 62 6c 65 20 7b 0a 20 20 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 6e Data Ascii: transform: scale3d(1, 1, 1); }}.tada { -webkit-animation-name: tada; animation-name: tada;}/* originally authored by Nick Pettit - https://github.com/nickpettit/glide */@-webkit-keyframes wobble { 0% { -webkit-transform: n
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 29 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 2d 35 64 65 67 29 3b 0a 20 20 7d 0a 0a 20 20 33 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 32 30 25 2c 20 30 2c 20 30 29 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 33 64 65 67 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 32 30 25 2c 20 30 2c 20 30 29 20 72 6f 74 61 74 65 33 64 28 30 2c 20 30 2c 20 31 2c 20 33 64 65 67 29 3b 0a 20 20 7d 0a 0a 20 20 34 35 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 33 64 28 2d 31 35 25 2c 20 30 2c 20 30 29 20 72 6f 74 61 74 65 33 64 28 30 2c 20 Data Ascii: ) rotate3d(0, 0, 1, -5deg); } 30% { -webkit-transform: translate3d(20%, 0, 0) rotate3d(0, 0, 1, 3deg); transform: translate3d(20%, 0, 0) rotate3d(0, 0, 1, 3deg); } 45% { -webkit-transform: translate3d(-15%, 0, 0) rotate3d(0,
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 0a 20 20 36 30 25 20 7b 0a 20 20 20 20 6f 70 61 63 69 74 79 3a 20 31 3b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2e 30 33 2c 20 31 2e 30 33 2c 20 31 2e 30 33 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 31 2e 30 33 2c 20 31 2e 30 33 2c 20 31 2e 30 33 29 3b 0a 20 20 7d 0a 0a 20 20 38 30 25 20 7b 0a 20 20 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 2e 39 37 2c 20 2e 39 37 2c 20 2e 39 37 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 33 64 28 2e 39 37 2c 20 2e 39 37 2c 20 2e 39 37 29 3b 0a 20 20 7d 0a 0a 20 20 31 30 30 25 20 7b 0a 20 20 20 20 6f 70 61 63 69 Data Ascii: 60% { opacity: 1; -webkit-transform: scale3d(1.03, 1.03, 1.03); transform: scale3d(1.03, 1.03, 1.03); } 80% { -webkit-transform: scale3d(.97, .97, .97); transform: scale3d(.97, .97, .97); } 100% { opaci

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	852	OUT	GET /admin/css/header.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	369	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 39824 Connection: close etag: "70578097" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de967ea234375-EWR
2025-01-14 13:18:24 UTC	1000	IN	Data Raw: 2f 2a 0a 09 47 6c 6f 62 61 6c 20 61 64 6d 69 6e 20 68 65 61 64 65 72 0a 20 2a 2f 0a 0a 0a 2f 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 5c 0a 20 20 20 20 46 72 61 6d 65 77 6f 72 6b 0a 5c 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 7b 70 6f 73 69 74 69 6f 6e 3a 66 69 78 65 64 3b 20 74 6f 70 3a 30 3b 20 77 69 64 74 68 3a 31 30 30 25 3b 20 6d 61 72 67 69 6e 3a 30 3b 20 70 61 64 64 69 6e 67 3a 30 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 23 32 37 34 43 37 43 3b 20 68 65 69 67 68 74 3a 36 34 70 78 3b 20 7a 6f 6f 6d 3a 31 3b 20 7a 2d 69 6e 64 65 78 3a 39 39 30 3b 7d 0a 23 70 61 67 Data Ascii: /Global admin header //------------------------------------\ Framework\------------------------------------/#page_header {position:fixed; top:0; width:100%; margin:0; padding:0; background:#274C7C; height:64px; zoom:1; z-index:990;}#pag
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 20 20 48 65 61 64 65 72 20 61 6c 74 65 72 6e 61 74 65 20 63 6f 6c 6f 72 73 0a 5c 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 62 6f 64 79 2e 74 65 6d 70 6c 61 74 65 5f 76 69 65 77 20 23 70 61 67 65 5f 68 65 61 64 65 72 2c 20 62 6f 64 79 2e 64 65 73 69 67 6e 65 72 32 20 23 70 61 67 65 5f 68 65 61 64 65 72 2c 20 62 6f 64 79 2e 63 61 6d 70 61 69 67 6e 5f 6e 65 77 20 23 70 61 67 65 5f 68 65 61 64 65 72 2c 20 62 6f 64 79 2e 63 61 6d 70 61 69 67 6e 5f 64 65 73 69 67 6e 65 72 20 23 70 61 67 65 5f 68 65 61 64 65 72 2c 20 62 6f 64 79 2e 6f 6c 64 2e 74 65 6d 70 6c 61 74 65 20 23 70 61 67 65 5f 68 65 61 64 65 72 20 7b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 66 66 66 20 21 69 6d 70 6f 72 Data Ascii: Header alternate colors\------------------------------------/body.template_view #page_header, body.designer2 #page_header, body.campaign_new #page_header, body.campaign_designer #page_header, body.old.template #page_header { background: #fff !impor
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 31 61 34 64 38 61 3b 20 70 61 64 64 69 6e 67 3a 30 20 32 30 70 78 20 30 20 32 30 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 33 37 70 78 3b 20 63 6f 6c 6f 72 3a 23 64 61 64 61 64 61 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 3b 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 37 30 30 3b 20 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 31 30 33 39 36 62 3b 20 62 6f 72 64 65 72 2d 72 69 67 68 74 3a 31 70 78 20 73 6f 6c 69 64 20 23 31 30 33 39 36 62 3b 20 62 6f 72 64 65 72 2d 72 69 67 68 74 3a 6e 6f 6e 65 3b 20 7a 2d 69 6e 64 65 78 3a 35 30 30 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e Data Ascii: kground-color:#1a4d8a; padding:0 20px 0 20px; line-height:37px; color:#dadada; font-size:14px; text-decoration:none; font-weight:700; border:1px solid #10396b; border-right:1px solid #10396b; border-right:none; z-index:500;}#page_header .hdrwrap .act_men
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 65 6e 74 3a 31 30 30 25 3b 20 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 20 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 27 2e 2e 2f 69 6d 61 67 65 73 2f 61 63 74 5f 6d 65 6e 75 5f 6c 69 5f 73 65 61 72 63 68 2e 70 6e 67 27 29 20 6e 6f 2d 72 65 70 65 61 74 20 32 70 78 20 31 31 70 78 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 6c 69 20 64 69 76 2e 73 65 61 72 63 68 77 72 61 70 20 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 20 68 65 69 67 68 74 3a 33 31 70 78 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 30 30 25 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 31 61 34 64 38 61 3b 20 70 61 64 64 69 6e 67 3a 33 70 78 20 35 70 Data Ascii: ent:100%; white-space:nowrap; overflow:hidden; background:url('../images/act_menu_li_search.png') no-repeat 2px 11px;}#page_header .hdrwrap .act_menu li div.searchwrap {display:none; height:31px; line-height:100%; background-color:#1a4d8a; padding:3px 5p
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 39 36 62 3b 20 2d 6d 73 2d 66 69 6c 74 65 72 3a 22 70 72 6f 67 69 64 3a 44 58 49 6d 61 67 65 54 72 61 6e 73 66 6f 72 6d 2e 4d 69 63 72 6f 73 6f 66 74 2e 53 68 61 64 6f 77 28 53 74 72 65 6e 67 74 68 3d 34 2c 20 44 69 72 65 63 74 69 6f 6e 3d 31 33 35 2c 20 43 6f 6c 6f 72 3d 27 23 31 30 33 39 36 62 27 29 22 3b 20 66 69 6c 74 65 72 3a 70 72 6f 67 69 64 3a 44 58 49 6d 61 67 65 54 72 61 6e 73 66 6f 72 6d 2e 4d 69 63 72 6f 73 6f 66 74 2e 53 68 61 64 6f 77 28 53 74 72 65 6e 67 74 68 3d 34 2c 20 44 69 72 65 63 74 69 6f 6e 3d 31 33 35 2c 20 43 6f 6c 6f 72 3d 27 23 31 30 33 39 36 62 27 29 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 6c 69 20 2e 61 63 63 74 5f 69 6d 67 20 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 Data Ascii: 96b; -ms-filter:"progid:DXImageTransform.Microsoft.Shadow(Strength=4, Direction=135, Color='#10396b')"; filter:progid:DXImageTransform.Microsoft.Shadow(Strength=4, Direction=135, Color='#10396b');}#page_header .hdrwrap .act_menu li .acct_img {position:ab
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 30 3b 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 33 70 78 20 33 70 78 20 30 20 30 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 6c 69 20 61 2e 68 6c 70 2e 61 63 74 69 76 65 20 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 2d 63 6f 6c 6f 72 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 20 2d 6d 6f 7a 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 30 20 38 70 78 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 2e 33 30 29 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 30 20 38 70 78 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 2e 33 30 29 3b 20 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 30 20 38 70 78 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 2e 33 30 29 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 Data Ascii: 0; border-radius:3px 3px 0 0;}#page_header .hdrwrap .act_menu li a.hlp.active {border-bottom-color:transparent; -moz-box-shadow:0 0 8px rgba(0, 0, 0, .30); -webkit-box-shadow:0 0 8px rgba(0, 0, 0, .30); box-shadow:0 0 8px rgba(0, 0, 0, .30);}#page_heade
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 3a 31 70 78 3b 20 6d 61 72 67 69 6e 3a 30 20 30 20 33 70 78 3b 20 70 61 64 64 69 6e 67 3a 30 3b 20 62 6f 72 64 65 72 3a 6e 6f 6e 65 3b 20 62 6f 72 64 65 72 2d 74 6f 70 3a 31 70 78 20 73 6f 6c 69 64 20 23 31 62 34 34 37 36 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 75 6c 20 6c 69 20 3e 20 75 6c 20 3e 20 6c 69 20 61 3a 6c 69 6e 6b 2c 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 75 6c 20 6c 69 20 3e 20 75 6c 20 3e 20 6c 69 20 61 3a 76 69 73 69 74 65 64 20 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 20 6d 61 72 67 69 6e 3a 30 21 69 6d 70 6f 72 74 61 6e 74 3b 20 70 61 64 64 69 6e 67 3a 36 70 78 20 32 30 70 78 3b 20 62 61 63 6b 67 72 6f 75 6e Data Ascii: t:1px; margin:0 0 3px; padding:0; border:none; border-top:1px solid #1b4476;}#page_header .hdrwrap .act_menu ul li > ul > li a:link,#page_header .hdrwrap .act_menu ul li > ul > li a:visited {display:block; margin:0!important; padding:6px 20px; backgroun
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 35 70 78 21 69 6d 70 6f 72 74 61 6e 74 3b 20 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 21 69 6d 70 6f 72 74 61 6e 74 3b 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 34 70 78 21 69 6d 70 6f 72 74 61 6e 74 3b 20 63 6f 6c 6f 72 3a 23 64 65 64 65 64 65 3b 20 77 6f 72 64 2d 77 72 61 70 3a 62 72 65 61 6b 2d 77 6f 72 64 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 75 6c 20 6c 69 20 75 6c 2e 73 74 61 74 75 73 20 6c 69 2e 6e 6f 73 74 61 74 75 73 65 73 20 7b 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 21 69 6d 70 6f 72 74 61 6e 74 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 30 70 78 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e Data Ascii: 5px!important; display:block!important; line-height:14px!important; color:#dedede; word-wrap:break-word;}#page_header .hdrwrap .act_menu ul li ul.status li.nostatuses {margin-top:0!important; margin-bottom:10px!important;}#page_header .hdrwrap .act_men
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 61 70 68 63 6f 6e 74 3a 66 69 72 73 74 2d 63 68 69 6c 64 20 7b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 35 70 78 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 75 6c 20 6c 69 20 75 6c 2e 73 74 61 74 75 73 20 6c 69 20 2e 67 72 61 70 68 63 6f 6e 74 20 73 70 61 6e 20 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 20 6d 61 72 67 69 6e 3a 30 21 69 6d 70 6f 72 74 61 6e 74 3b 20 70 61 64 64 69 6e 67 3a 30 20 30 20 34 70 78 20 30 21 69 6d 70 6f 72 74 61 6e 74 3b 20 77 69 64 74 68 3a 31 30 30 70 78 21 69 6d 70 6f 72 74 61 6e 74 3b 20 63 6f 6c 6f 72 3a 23 66 66 66 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 23 70 61 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f Data Ascii: aphcont:first-child {margin-right:5px!important;}#page_header .hdrwrap .act_menu ul li ul.status li .graphcont span {display:block; margin:0!important; padding:0 0 4px 0!important; width:100px!important; color:#fff!important;}#page_header .hdrwrap .act_
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 67 65 5f 68 65 61 64 65 72 20 2e 68 64 72 77 72 61 70 20 2e 61 63 74 5f 6d 65 6e 75 20 75 6c 20 6c 69 23 68 65 6c 70 20 75 6c 20 6c 69 20 66 6f 72 6d 20 64 69 76 2e 68 73 65 61 72 63 68 20 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 20 70 61 64 64 69 6e 67 3a 35 70 78 20 30 3b 20 77 69 64 74 68 3a 31 34 38 70 78 3b 20 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 20 68 65 69 67 68 74 3a 32 30 70 78 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 23 66 66 66 20 75 72 6c 28 27 2e 2e 2f 69 6d 61 67 65 73 2f 68 65 6c 70 5f 73 65 61 72 63 68 2e 70 6e 67 27 29 20 6e 6f 2d 72 65 70 65 61 74 20 36 70 78 20 35 30 25 3b 20 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 31 62 34 34 37 36 3b 20 2d 6d 6f 7a 2d 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 33 70 78 Data Ascii: ge_header .hdrwrap .act_menu ul li#help ul li form div.hsearch {position:relative; padding:5px 0; width:148px; display:block; height:20px; background:#fff url('../images/help_search.png') no-repeat 6px 50%; border:1px solid #1b4476; -moz-border-radius:3px

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	852	OUT	GET /admin/css/footer.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	370	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 2090 Connection: close etag: "2280831335" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de9680fbd421d-EWR
2025-01-14 13:18:24 UTC	999	IN	Data Raw: 2f 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 2f 2a 20 41 64 6d 69 6e 20 47 6c 6f 62 61 6c 20 46 6f 6f 74 65 72 20 53 74 79 6c 65 20 20 20 20 09 09 09 20 2a 2f 20 0a 2f 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 0a 0a 0a 2f 2a 2d 2d 2d 2d 2d 2d 20 46 72 61 6d 65 77 6f 72 6b 20 2d 2d 2d 2d 2d 2d 2a 2f 0a 23 70 61 67 65 5f 66 6f 6f 74 65 72 20 7b 77 69 64 74 68 3a 31 30 30 25 3b 68 65 69 67 68 74 3a 36 34 70 78 3b 70 61 64 64 69 6e 67 3a 32 34 70 78 20 32 34 70 78 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 34 65 34 65 34 65 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 6c Data Ascii: /-------------------------------------------//* Admin Global Footer Style / /-------------------------------------------//------ Framework ------*/#page_footer {width:100%;height:64px;padding:24px 24px; background: #4e4e4e;text-align:l
2025-01-14 13:18:24 UTC	1091	IN	Data Raw: 32 32 70 78 3b 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 20 70 6f 73 69 74 69 6f 6e 3a 20 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 35 30 25 3b 20 6c 65 66 74 3a 20 35 30 25 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2d 31 31 70 78 3b 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 2d 31 31 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 30 20 7d 0a 2e 73 75 70 70 6f 72 74 2d 69 63 6f 6e 20 73 70 61 6e 3a 62 65 66 6f 72 65 20 7b 20 6d 61 72 67 69 6e 3a 20 30 3b 7d 0a 0a 2f 2a 20 4d 65 6e 75 20 2a 2f 0a 2e 73 75 70 70 6f 72 74 2d 6d 65 6e 75 20 7b 20 64 69 73 70 6c 61 79 3a 20 6e 6f 6e 65 3b 70 6f 73 69 74 69 6f 6e 3a 20 66 69 78 65 64 3b 20 77 69 64 74 68 3a 20 32 35 30 70 78 3b 20 72 69 67 68 74 3a 20 32 30 70 78 3b 20 62 6f 74 74 6f 6d 3a 20 38 30 70 78 3b 20 62 Data Ascii: 22px;color: #fff; position: absolute; top: 50%; left: 50%; margin-left: -11px; margin-top: -11px;line-height: 0 }.support-icon span:before { margin: 0;}/* Menu */.support-menu { display: none;position: fixed; width: 250px; right: 20px; bottom: 80px; b

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	555	OUT	GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://ncn.activehosted.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:24 UTC	964	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: application/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=30672000 ETag: W/"64ed75bb-76fe" Last-Modified: Tue, 29 Aug 2023 04:36:11 GMT cf-cdnjs-via: cfworker/kv Cross-Origin-Resource-Policy: cross-origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff CF-Cache-Status: HIT Age: 314781 Expires: Sun, 04 Jan 2026 13:18:24 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iqw4%2FQL46YAebqX8fCy6RfgKOcF81TFQlOuZjRm7vRQ0d6Hlf5uTGVqgtcD%2BPZJgTM2ItYETPUrxbDLS5g8d%2FAinvM7JFM9r%2BnUaW%2FtPMmk5M%2FxTRxNMBOxZdnw7JsJmCvQ0U3ov"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=15780000 Server: cloudflare CF-RAY: 901de9680c0e43aa-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 13:18:24 UTC	405	IN	Data Raw: 37 62 65 63 0d 0a 2f 2a 21 20 6a 51 75 65 72 79 20 76 33 2e 37 2e 31 20 7c 20 28 63 29 20 4f 70 65 6e 4a 53 20 46 6f 75 6e 64 61 74 69 6f 6e 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6e 74 72 69 62 75 74 6f 72 73 20 7c 20 6a 71 75 65 72 79 2e 6f 72 67 2f 6c 69 63 65 6e 73 65 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3f 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3d 65 2e 64 6f 63 75 6d 65 6e 74 3f 74 28 65 2c 21 30 29 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 69 66 28 21 65 2e 64 6f 63 75 6d 65 6e 74 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f Data Ascii: 7bec/! jQuery v3.7.1 \| (c) OpenJS Foundation and other contributors \| jquery.org/license /!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Erro
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 2e 67 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 2c 61 65 3d 6f 65 2e 73 6c 69 63 65 2c 67 3d 6f 65 2e 66 6c 61 74 3f 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6f 65 2e 66 6c 61 74 2e 63 61 6c 6c 28 65 29 7d 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6f 65 2e 63 6f 6e 63 61 74 2e 61 70 70 6c 79 28 5b 5d 2c 65 29 7d 2c 73 3d 6f 65 2e 70 75 73 68 2c 73 65 3d 6f 65 2e 69 6e 64 65 78 4f 66 2c 6e 3d 7b 7d 2c 69 3d 6e 2e 74 6f 53 74 72 69 6e 67 2c 75 65 3d 6e 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 2c 6f 3d 75 65 2e 74 6f 53 74 72 69 6e 67 2c 61 3d 6f 2e 63 61 6c 6c 28 4f 62 6a 65 63 74 29 2c 6c 65 3d 7b 7d 2c 76 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 65 Data Ascii: .getPrototypeOf,ae=oe.slice,g=oe.flat?function(e){return oe.flat.call(e)}:function(e){return oe.concat.apply([],e)},s=oe.push,se=oe.indexOf,n={},i=n.toString,ue=n.hasOwnProperty,o=ue.toString,a=o.call(Object),le={},v=function(e){return"function"==typeof e
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 2e 63 61 6c 6c 28 65 2c 74 2c 65 29 7d 29 29 7d 2c 73 6c 69 63 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 70 75 73 68 53 74 61 63 6b 28 61 65 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 29 7d 2c 66 69 72 73 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 65 71 28 30 29 7d 2c 6c 61 73 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 65 71 28 2d 31 29 7d 2c 65 76 65 6e 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 70 75 73 68 53 74 61 63 6b 28 63 65 2e 67 72 65 70 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 28 74 2b 31 29 25 32 7d 29 29 7d 2c 6f 64 64 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 Data Ascii: .call(e,t,e)}))},slice:function(){return this.pushStack(ae.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},even:function(){return this.pushStack(ce.grep(this,function(e,t){return(t+1)%2}))},odd:function(){re
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6e 63 65 7d 2c 6e 29 7d 2c 65 61 63 68 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 2c 72 3d 30 3b 69 66 28 63 28 65 29 29 7b 66 6f 72 28 6e 3d 65 2e 6c 65 6e 67 74 68 3b 72 3c 6e 3b 72 2b 2b 29 69 66 28 21 31 3d 3d 3d 74 2e 63 61 6c 6c 28 65 5b 72 5d 2c 72 2c 65 5b 72 5d 29 29 62 72 65 61 6b 7d 65 6c 73 65 20 66 6f 72 28 72 20 69 6e 20 65 29 69 66 28 21 31 3d 3d 3d 74 2e 63 61 6c 6c 28 65 5b 72 5d 2c 72 2c 65 5b 72 5d 29 29 62 72 65 61 6b 3b 72 65 74 75 72 6e 20 65 7d 2c 74 65 78 74 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 2c 6e 3d 22 22 2c 72 3d 30 2c 69 3d 65 2e 6e 6f 64 65 54 79 70 65 3b 69 66 28 21 69 29 77 68 69 6c 65 28 74 3d 65 5b 72 2b 2b 5d 29 6e 2b 3d 63 65 2e 74 65 78 74 28 74 29 3b 72 65 74 75 72 6e 20 31 3d 3d 3d Data Ascii: nce},n)},each:function(e,t){var n,r=0;if(c(e)){for(n=e.length;r<n;r++)if(!1===t.call(e[r],r,e[r]))break}else for(r in e)if(!1===t.call(e[r],r,e[r]))break;return e},text:function(e){var t,n="",r=0,i=e.nodeType;if(!i)while(t=e[r++])n+=ce.text(t);return 1===
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 63 65 2e 63 6f 6e 74 61 69 6e 73 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 74 26 26 74 2e 70 61 72 65 6e 74 4e 6f 64 65 3b 72 65 74 75 72 6e 20 65 3d 3d 3d 6e 7c 7c 21 28 21 6e 7c 7c 31 21 3d 3d 6e 2e 6e 6f 64 65 54 79 70 65 7c 7c 21 28 65 2e 63 6f 6e 74 61 69 6e 73 3f 65 2e 63 6f 6e 74 61 69 6e 73 28 6e 29 3a 65 2e 63 6f 6d 70 61 72 65 44 6f 63 75 6d 65 6e 74 50 6f 73 69 74 69 6f 6e 26 26 31 36 26 65 2e 63 6f 6d 70 61 72 65 44 6f 63 75 6d 65 6e 74 50 6f 73 69 74 69 6f 6e 28 6e 29 29 29 7d 3b 76 61 72 20 66 3d 2f 28 5b 5c 30 2d 5c 78 31 66 5c 78 37 66 5d 7c 5e 2d 3f 5c 64 29 7c 5e 2d 24 7c 5b 5e 5c 78 38 30 2d 5c 75 46 46 46 46 5c 77 2d 5d 2f 67 3b 66 75 6e 63 74 69 6f 6e 20 70 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 74 3f 22 5c 30 22 Data Ascii: ce.contains=function(e,t){var n=t&&t.parentNode;return e===n\|\|!(!n\|\|1!==n.nodeType\|\|!(e.contains?e.contains(n):e.compareDocumentPosition&&16&e.compareDocumentPosition(n)))};var f=/([\0-\x1f\x7f]\|^-?\d)\|^-$\|[^\x80-\uFFFF\w-]/g;function p(e,t){return t?"\0"
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 28 28 5b 2b 2d 5d 7c 29 28 5c 5c 64 2a 29 6e 7c 29 22 2b 67 65 2b 22 2a 28 3f 3a 28 5b 2b 2d 5d 7c 29 22 2b 67 65 2b 22 2a 28 5c 5c 64 2b 29 7c 29 29 22 2b 67 65 2b 22 2a 5c 5c 29 7c 29 22 2c 22 69 22 29 2c 62 6f 6f 6c 3a 6e 65 77 20 52 65 67 45 78 70 28 22 5e 28 3f 3a 22 2b 66 2b 22 29 24 22 2c 22 69 22 29 2c 6e 65 65 64 73 43 6f 6e 74 65 78 74 3a 6e 65 77 20 52 65 67 45 78 70 28 22 5e 22 2b 67 65 2b 22 2a 5b 3e 2b 7e 5d 7c 3a 28 65 76 65 6e 7c 6f 64 64 7c 65 71 7c 67 74 7c 6c 74 7c 6e 74 68 7c 66 69 72 73 74 7c 6c 61 73 74 29 28 3f 3a 5c 5c 28 22 2b 67 65 2b 22 2a 28 28 3f 3a 2d 5c 5c 64 29 3f 5c 5c 64 2a 29 22 2b 67 65 2b 22 2a 5c 5c 29 7c 29 28 3f 3d 5b 5e 2d 5d 7c 24 29 22 2c 22 69 22 29 7d 2c 4e 3d 2f 5e 28 3f 3a 69 6e 70 75 74 7c 73 65 6c 65 63 74 Data Ascii: (([+-]\|)(\\d)n\|)"+ge+"(?:([+-]\|)"+ge+"(\\d+)\|))"+ge+"\\)\|)","i"),bool:new RegExp("^(?:"+f+")$","i"),needsContext:new RegExp("^"+ge+"[>+~]\|:(even\|odd\|eq\|gt\|lt\|nth\|first\|last)(?:\\("+ge+"((?:-\\d)?\\d)"+ge+"\\)\|)(?=[^-]\|$)","i")},N=/^(?:input\|select
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 65 73 74 28 74 29 29 29 7b 69 66 28 63 3d 74 2c 66 3d 65 2c 31 3d 3d 3d 70 26 26 28 78 2e 74 65 73 74 28 74 29 7c 7c 6d 2e 74 65 73 74 28 74 29 29 29 7b 28 66 3d 48 2e 74 65 73 74 28 74 29 26 26 55 28 65 2e 70 61 72 65 6e 74 4e 6f 64 65 29 7c 7c 65 29 3d 3d 65 26 26 6c 65 2e 73 63 6f 70 65 7c 7c 28 28 73 3d 65 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 22 69 64 22 29 29 3f 73 3d 63 65 2e 65 73 63 61 70 65 53 65 6c 65 63 74 6f 72 28 73 29 3a 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 22 69 64 22 2c 73 3d 53 29 29 2c 6f 3d 28 6c 3d 59 28 74 29 29 2e 6c 65 6e 67 74 68 3b 77 68 69 6c 65 28 6f 2d 2d 29 6c 5b 6f 5d 3d 28 73 3f 22 23 22 2b 73 3a 22 3a 73 63 6f 70 65 22 29 2b 22 20 22 2b 51 28 6c 5b 6f 5d 29 3b 63 3d 6c 2e 6a 6f 69 6e 28 22 2c 22 29 7d 74 72 Data Ascii: test(t))){if(c=t,f=e,1===p&&(x.test(t)\|\|m.test(t))){(f=H.test(t)&&U(e.parentNode)\|\|e)==e&&le.scope\|\|((s=e.getAttribute("id"))?s=ce.escapeSelector(s):e.setAttribute("id",s=S)),o=(l=Y(t)).length;while(o--)l[o]=(s?"#"+s:":scope")+" "+Q(l[o]);c=l.join(",")}tr
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 26 26 28 72 3d 28 54 3d 6e 29 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 2c 43 3d 21 63 65 2e 69 73 58 4d 4c 44 6f 63 28 54 29 2c 69 3d 72 2e 6d 61 74 63 68 65 73 7c 7c 72 2e 77 65 62 6b 69 74 4d 61 74 63 68 65 73 53 65 6c 65 63 74 6f 72 7c 7c 72 2e 6d 73 4d 61 74 63 68 65 73 53 65 6c 65 63 74 6f 72 2c 72 2e 6d 73 4d 61 74 63 68 65 73 53 65 6c 65 63 74 6f 72 26 26 79 65 21 3d 54 26 26 28 74 3d 54 2e 64 65 66 61 75 6c 74 56 69 65 77 29 26 26 74 2e 74 6f 70 21 3d 3d 74 26 26 74 2e 61 64 64 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 22 75 6e 6c 6f 61 64 22 2c 4d 29 2c 6c 65 2e 67 65 74 42 79 49 64 3d 24 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 72 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 65 29 2e 69 64 Data Ascii: umentElement&&(r=(T=n).documentElement,C=!ce.isXMLDoc(T),i=r.matches\|\|r.webkitMatchesSelector\|\|r.msMatchesSelector,r.msMatchesSelector&&ye!=T&&(t=T.defaultView)&&t.top!==t&&t.addEventListener("unload",M),le.getById=$(function(e){return r.appendChild(e).id
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 43 6c 61 73 73 4e 61 6d 65 26 26 43 29 72 65 74 75 72 6e 20 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 43 6c 61 73 73 4e 61 6d 65 28 65 29 7d 2c 64 3d 5b 5d 2c 24 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3b 72 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 65 29 2e 69 6e 6e 65 72 48 54 4d 4c 3d 22 3c 61 20 69 64 3d 27 22 2b 53 2b 22 27 20 68 72 65 66 3d 27 27 20 64 69 73 61 62 6c 65 64 3d 27 64 69 73 61 62 6c 65 64 27 3e 3c 2f 61 3e 3c 73 65 6c 65 63 74 20 69 64 3d 27 22 2b 53 2b 22 2d 5c 72 5c 5c 27 20 64 69 73 61 62 6c 65 64 3d 27 64 69 73 61 62 6c 65 64 27 3e 3c 6f 70 74 69 6f 6e 20 73 65 6c 65 63 74 65 64 3d 27 27 3e 3c 2f 6f 70 74 69 6f 6e 3e 3c 2f 73 65 6c 65 63 74 3e 22 2c 65 2e 71 75 65 72 79 Data Ascii: t.getElementsByClassName&&C)return t.getElementsByClassName(e)},d=[],$(function(e){var t;r.appendChild(e).innerHTML="<a id='"+S+"' href='' disabled='disabled'></a><select id='"+S+"-\r\\' disabled='disabled'><option selected=''></option></select>",e.query
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6d 61 74 63 68 65 73 53 65 6c 65 63 74 6f 72 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 69 66 28 56 28 65 29 2c 43 26 26 21 68 5b 74 2b 22 20 22 5d 26 26 28 21 64 7c 7c 21 64 2e 74 65 73 74 28 74 29 29 29 74 72 79 7b 76 61 72 20 6e 3d 69 2e 63 61 6c 6c 28 65 2c 74 29 3b 69 66 28 6e 7c 7c 6c 65 2e 64 69 73 63 6f 6e 6e 65 63 74 65 64 4d 61 74 63 68 7c 7c 65 2e 64 6f 63 75 6d 65 6e 74 26 26 31 31 21 3d 3d 65 2e 64 6f 63 75 6d 65 6e 74 2e 6e 6f 64 65 54 79 70 65 29 72 65 74 75 72 6e 20 6e 7d 63 61 74 63 68 28 65 29 7b 68 28 74 2c 21 30 29 7d 72 65 74 75 72 6e 20 30 3c 49 28 74 2c 54 2c 6e 75 6c 6c 2c 5b 65 5d 29 2e 6c 65 6e 67 74 68 7d 2c 49 2e 63 6f 6e 74 61 69 6e 73 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 28 65 2e 6f 77 6e 65 72 44 Data Ascii: matchesSelector=function(e,t){if(V(e),C&&!h[t+" "]&&(!d\|\|!d.test(t)))try{var n=i.call(e,t);if(n\|\|le.disconnectedMatch\|\|e.document&&11!==e.document.nodeType)return n}catch(e){h(t,!0)}return 0<I(t,T,null,[e]).length},I.contains=function(e,t){return(e.ownerD

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	571	OUT	GET /ajax/libs/jquery-migrate/3.5.2/jquery-migrate.min.js HTTP/1.1 Host: cdnjs.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://ncn.activehosted.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:24 UTC	963	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: application/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=30672000 ETag: W/"66984d4f-13c6" Last-Modified: Wed, 17 Jul 2024 23:01:35 GMT cf-cdnjs-via: cfworker/kv Cross-Origin-Resource-Policy: cross-origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff CF-Cache-Status: HIT Age: 35060 Expires: Sun, 04 Jan 2026 13:18:24 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j4ES6qPlcp0%2BZ%2F9bw9asFUm3odkjiESNUgV3pJeffh5%2BreSPEnxfFuNHeAUuiDI%2BGj3aVsUBZT0aIDEhvO37SCfk1SprbQ8iOtuBIhrAH%2FzSejhnk76ZQyqhHfbgbVlQLi%2BkY7oZ"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=15780000 Server: cloudflare CF-RAY: 901de9681fc77295-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 13:18:24 UTC	406	IN	Data Raw: 33 36 61 38 0d 0a 2f 2a 21 20 6a 51 75 65 72 79 20 4d 69 67 72 61 74 65 20 76 33 2e 35 2e 32 20 7c 20 28 63 29 20 4f 70 65 6e 4a 53 20 46 6f 75 6e 64 61 74 69 6f 6e 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6e 74 72 69 62 75 74 6f 72 73 20 7c 20 6a 71 75 65 72 79 2e 63 6f 6d 2f 6c 69 63 65 6e 73 65 20 2a 2f 0a 22 75 6e 64 65 66 69 6e 65 64 22 3d 3d 74 79 70 65 6f 66 20 6a 51 75 65 72 79 2e 6d 69 67 72 61 74 65 4d 75 74 65 26 26 28 6a 51 75 65 72 79 2e 6d 69 67 72 61 74 65 4d 75 74 65 3d 21 30 29 2c 66 75 6e 63 74 69 6f 6e 28 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 6a 71 75 65 72 79 22 5d 2c 66 75 6e 63 74 69 6f Data Ascii: 36a8/! jQuery Migrate v3.5.2 \| (c) OpenJS Foundation and other contributors \| jquery.com/license /"undefined"==typeof jQuery.migrateMute&&(jQuery.migrateMute=!0),function(t){"use strict";"function"==typeof define&&define.amd?define(["jquery"],functio
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 22 3b 66 75 6e 63 74 69 6f 6e 20 65 28 65 29 7b 72 65 74 75 72 6e 20 30 3c 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 66 6f 72 28 76 61 72 20 72 3d 2f 5e 28 5c 64 2b 29 5c 2e 28 5c 64 2b 29 5c 2e 28 5c 64 2b 29 2f 2c 6e 3d 72 2e 65 78 65 63 28 65 29 7c 7c 5b 5d 2c 6f 3d 72 2e 65 78 65 63 28 74 29 7c 7c 5b 5d 2c 61 3d 31 3b 61 3c 3d 33 3b 61 2b 2b 29 7b 69 66 28 2b 6f 5b 61 5d 3c 2b 6e 5b 61 5d 29 72 65 74 75 72 6e 20 31 3b 69 66 28 2b 6e 5b 61 5d 3c 2b 6f 5b 61 5d 29 72 65 74 75 72 6e 2d 31 7d 72 65 74 75 72 6e 20 30 7d 28 73 2e 66 6e 2e 6a 71 75 65 72 79 2c 65 29 7d 73 2e 6d 69 67 72 61 74 65 56 65 72 73 69 6f 6e 3d 22 33 2e 35 2e 32 22 3b 76 61 72 20 74 3d 4f 62 6a 65 63 74 2e 63 72 65 61 74 65 28 6e 75 6c 6c 29 3b 73 2e 6d 69 67 72 61 74 65 44 69 Data Ascii: t";function e(e){return 0<=function(e,t){for(var r=/^(\d+)\.(\d+)\.(\d+)/,n=r.exec(e)\|\|[],o=r.exec(t)\|\|[],a=1;a<=3;a++){if(+o[a]<+n[a])return 1;if(+n[a]<+o[a])return-1}return 0}(s.fn.jquery,e)}s.migrateVersion="3.5.2";var t=Object.create(null);s.migrateDi
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 69 64 65 64 22 29 3b 72 65 74 75 72 6e 20 61 28 65 2c 74 2c 72 2c 6e 2c 6f 29 2c 30 7d 66 75 6e 63 74 69 6f 6e 20 69 28 65 2c 74 2c 72 2c 6e 29 7b 72 65 74 75 72 6e 20 61 28 65 2c 74 2c 72 2c 6e 29 2c 30 7d 73 2e 6d 69 67 72 61 74 65 44 65 64 75 70 6c 69 63 61 74 65 57 61 72 6e 69 6e 67 73 3d 21 30 2c 73 2e 6d 69 67 72 61 74 65 57 61 72 6e 69 6e 67 73 3d 5b 5d 2c 76 6f 69 64 20 30 3d 3d 3d 73 2e 6d 69 67 72 61 74 65 54 72 61 63 65 26 26 28 73 2e 6d 69 67 72 61 74 65 54 72 61 63 65 3d 21 30 29 2c 73 2e 6d 69 67 72 61 74 65 52 65 73 65 74 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 6f 3d 7b 7d 2c 73 2e 6d 69 67 72 61 74 65 57 61 72 6e 69 6e 67 73 2e 6c 65 6e 67 74 68 3d 30 7d 2c 22 42 61 63 6b 43 6f 6d 70 61 74 22 3d 3d 3d 6e 2e 64 6f 63 75 6d 65 6e 74 2e 63 6f 6d Data Ascii: ided");return a(e,t,r,n,o),0}function i(e,t,r,n){return a(e,t,r,n),0}s.migrateDeduplicateWarnings=!0,s.migrateWarnings=[],void 0===s.migrateTrace&&(s.migrateTrace=!0),s.migrateReset=function(){o={},s.migrateWarnings.length=0},"BackCompat"===n.document.com
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 22 2c 22 6a 51 75 65 72 79 2e 66 6e 2e 73 69 7a 65 28 29 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 72 65 6d 6f 76 65 64 3b 20 75 73 65 20 74 68 65 20 2e 6c 65 6e 67 74 68 20 70 72 6f 70 65 72 74 79 22 29 2c 63 28 73 2c 22 70 61 72 73 65 4a 53 4f 4e 22 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 4a 53 4f 4e 2e 70 61 72 73 65 2e 61 70 70 6c 79 28 6e 75 6c 6c 2c 61 72 67 75 6d 65 6e 74 73 29 7d 2c 22 70 61 72 73 65 4a 53 4f 4e 22 2c 22 6a 51 75 65 72 79 2e 70 61 72 73 65 4a 53 4f 4e 20 69 73 20 64 65 70 72 65 63 61 74 65 64 3b 20 75 73 65 20 4a 53 4f 4e 2e 70 61 72 73 65 22 29 2c 63 28 73 2c 22 68 6f 6c 64 52 65 61 64 79 22 2c 73 2e 68 6f 6c 64 52 65 61 64 79 2c 22 68 6f 6c 64 52 65 61 64 79 22 2c 22 6a 51 75 65 72 79 2e 68 6f 6c Data Ascii: ","jQuery.fn.size() is deprecated and removed; use the .length property"),c(s,"parseJSON",function(){return JSON.parse.apply(null,arguments)},"parseJSON","jQuery.parseJSON is deprecated; use JSON.parse"),c(s,"holdReady",s.holdReady,"holdReady","jQuery.hol
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 2e 63 61 6c 6c 28 65 29 5d 7c 7c 22 6f 62 6a 65 63 74 22 3a 74 79 70 65 6f 66 20 65 7d 2c 22 74 79 70 65 22 2c 22 6a 51 75 65 72 79 2e 74 79 70 65 20 69 73 20 64 65 70 72 65 63 61 74 65 64 22 29 2c 63 28 73 2c 22 69 73 46 75 6e 63 74 69 6f 6e 22 2c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 65 7d 2c 22 69 73 46 75 6e 63 74 69 6f 6e 22 2c 22 6a 51 75 65 72 79 2e 69 73 46 75 6e 63 74 69 6f 6e 28 29 20 69 73 20 64 65 70 72 65 63 61 74 65 64 22 29 2c 63 28 73 2c 22 69 73 57 69 6e 64 6f 77 22 2c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6e 75 6c 6c 21 3d 65 26 26 65 3d 3d 3d 65 2e 77 69 6e 64 6f 77 7d 2c 22 69 73 57 69 6e 64 6f 77 22 2c 22 Data Ascii: type.toString.call(e)]\|\|"object":typeof e},"type","jQuery.type is deprecated"),c(s,"isFunction",function(e){return"function"==typeof e},"isFunction","jQuery.isFunction() is deprecated"),c(s,"isWindow",function(e){return null!=e&&e===e.window},"isWindow","
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 51 75 65 72 79 2e 66 6e 2e 72 65 6d 6f 76 65 41 74 74 72 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 65 74 73 20 62 6f 6f 6c 65 61 6e 20 70 72 6f 70 65 72 74 69 65 73 3a 20 22 2b 74 29 2c 72 2e 70 72 6f 70 28 74 2c 21 31 29 29 7d 29 2c 6a 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 2c 22 72 65 6d 6f 76 65 41 74 74 72 2d 62 6f 6f 6c 22 29 2c 69 28 73 2e 66 6e 2c 22 74 6f 67 67 6c 65 43 6c 61 73 73 22 2c 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 76 6f 69 64 20 30 21 3d 3d 74 26 26 22 62 6f 6f 6c 65 61 6e 22 21 3d 74 79 70 65 6f 66 20 74 3f 62 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 3a 28 75 28 22 74 6f 67 67 6c 65 43 6c 61 73 73 2d 62 6f 6f 6c 22 2c 22 6a 51 75 65 72 79 2e 66 6e 2e 74 6f 67 67 6c 65 Data Ascii: Query.fn.removeAttr no longer sets boolean properties: "+t),r.prop(t,!1))}),j.apply(this,arguments)},"removeAttr-bool"),i(s.fn,"toggleClass",function(t){return void 0!==t&&"boolean"!=typeof t?b.apply(this,arguments):(u("toggleClass-bool","jQuery.fn.toggle
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 3a 21 30 2c 66 6f 6e 74 57 65 69 67 68 74 3a 21 30 2c 67 72 69 64 41 72 65 61 3a 21 30 2c 67 72 69 64 43 6f 6c 75 6d 6e 3a 21 30 2c 67 72 69 64 43 6f 6c 75 6d 6e 45 6e 64 3a 21 30 2c 67 72 69 64 43 6f 6c 75 6d 6e 53 74 61 72 74 3a 21 30 2c 67 72 69 64 52 6f 77 3a 21 30 2c 67 72 69 64 52 6f 77 45 6e 64 3a 21 30 2c 67 72 69 64 52 6f 77 53 74 61 72 74 3a 21 30 2c 6c 69 6e 65 48 65 69 67 68 74 3a 21 30 2c 6f 70 61 63 69 74 79 3a 21 30 2c 6f 72 64 65 72 3a 21 30 2c 6f 72 70 68 61 6e 73 3a 21 30 2c 73 63 61 6c 65 3a 21 30 2c 77 69 64 6f 77 73 3a 21 30 2c 7a 49 6e 64 65 78 3a 21 30 2c 7a 6f 6f 6d 3a 21 30 2c 66 69 6c 6c 4f 70 61 63 69 74 79 3a 21 30 2c 66 6c 6f 6f 64 4f 70 61 63 69 74 79 3a 21 30 2c 73 74 6f 70 4f 70 61 63 69 74 79 3a 21 30 2c 73 74 72 6f 6b 65 Data Ascii: :!0,fontWeight:!0,gridArea:!0,gridColumn:!0,gridColumnEnd:!0,gridColumnStart:!0,gridRow:!0,gridRowEnd:!0,gridRowStart:!0,lineHeight:!0,opacity:!0,order:!0,orphans:!0,scale:!0,widows:!0,zIndex:!0,zoom:!0,fillOpacity:!0,floodOpacity:!0,stopOpacity:!0,stroke
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 73 20 63 61 6d 65 6c 43 61 73 65 64 20 6e 61 6d 65 73 3a 20 22 2b 74 29 2c 32 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 26 26 28 6e 5b 74 5d 3d 72 29 2c 6e 5b 74 5d 29 3a 4d 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 2c 22 64 61 74 61 2d 63 61 6d 65 6c 43 61 73 65 22 29 2c 73 2e 66 78 26 26 28 48 3d 73 2e 54 77 65 65 6e 2e 70 72 6f 74 6f 74 79 70 65 2e 72 75 6e 2c 45 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 7d 2c 69 28 73 2e 54 77 65 65 6e 2e 70 72 6f 74 6f 74 79 70 65 2c 22 72 75 6e 22 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 31 3c 73 2e 65 61 73 69 6e 67 5b 74 68 69 73 2e 65 61 73 69 6e 67 5d 2e 6c 65 6e 67 74 68 26 26 28 75 28 22 65 61 73 69 6e 67 2d 6f 6e 65 2d 61 72 67 22 2c 22 27 6a 51 75 65 72 79 Data Ascii: s camelCased names: "+t),2<arguments.length&&(n[t]=r),n[t]):M.apply(this,arguments)},"data-camelCase"),s.fx&&(H=s.Tween.prototype.run,E=function(e){return e},i(s.Tween.prototype,"run",function(){1<s.easing[this.easing].length&&(u("easing-one-arg","'jQuery
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 22 61 64 64 22 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 6e 26 26 22 6c 6f 61 64 22 3d 3d 3d 74 26 26 22 63 6f 6d 70 6c 65 74 65 22 3d 3d 3d 6e 2e 64 6f 63 75 6d 65 6e 74 2e 72 65 61 64 79 53 74 61 74 65 26 26 75 28 22 6c 6f 61 64 2d 61 66 74 65 72 2d 65 76 65 6e 74 22 2c 22 6a 51 75 65 72 79 28 77 69 6e 64 6f 77 29 2e 6f 6e 28 27 6c 6f 61 64 27 2e 2e 2e 29 20 63 61 6c 6c 65 64 20 61 66 74 65 72 20 6c 6f 61 64 20 65 76 65 6e 74 20 6f 63 63 75 72 72 65 64 22 29 2c 4f 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 2c 22 6c 6f 61 64 2d 61 66 74 65 72 2d 65 76 65 6e 74 22 29 2c 73 2e 65 61 63 68 28 5b 22 6c 6f 61 64 22 2c 22 75 6e 6c 6f 61 64 22 2c 22 65 72 72 6f 72 22 5d 2c 66 75 6e 63 74 69 6f 6e 28 Data Ascii: "add",function(e,t){return e===n&&"load"===t&&"complete"===n.document.readyState&&u("load-after-event","jQuery(window).on('load'...) called after load event occurred"),O.apply(this,arguments)},"load-after-event"),s.each(["load","unload","error"],function(
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6e 20 74 68 69 73 2e 6f 6e 28 74 2c 65 2c 72 2c 6e 29 7d 2c 22 70 72 65 2d 6f 6e 2d 6d 65 74 68 6f 64 73 22 2c 22 6a 51 75 65 72 79 2e 66 6e 2e 64 65 6c 65 67 61 74 65 28 29 20 69 73 20 64 65 70 72 65 63 61 74 65 64 22 29 2c 63 28 73 2e 66 6e 2c 22 75 6e 64 65 6c 65 67 61 74 65 22 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 72 29 7b 72 65 74 75 72 6e 20 31 3d 3d 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3f 74 68 69 73 2e 6f 66 66 28 65 2c 22 2a 2a 22 29 3a 74 68 69 73 2e 6f 66 66 28 74 2c 65 7c 7c 22 2a 2a 22 2c 72 29 7d 2c 22 70 72 65 2d 6f 6e 2d 6d 65 74 68 6f 64 73 22 2c 22 6a 51 75 65 72 79 2e 66 6e 2e 75 6e 64 65 6c 65 67 61 74 65 28 29 20 69 73 20 64 65 70 72 65 63 61 74 65 64 22 29 2c 63 28 73 2e 66 6e 2c 22 68 6f 76 65 72 22 2c 66 75 6e 63 Data Ascii: n this.on(t,e,r,n)},"pre-on-methods","jQuery.fn.delegate() is deprecated"),c(s.fn,"undelegate",function(e,t,r){return 1===arguments.length?this.off(e,""):this.off(t,e\|\|"",r)},"pre-on-methods","jQuery.fn.undelegate() is deprecated"),c(s.fn,"hover",func

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	851	OUT	GET /admin/css/skin2.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	371	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 502312 Connection: close etag: "879062167" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96808de1835-EWR
2025-01-14 13:18:24 UTC	998	IN	Data Raw: 2f 2a 20 53 65 6e 64 65 72 20 44 65 74 61 69 6c 73 20 4d 6f 64 61 6c 20 28 62 61 73 69 63 20 65 64 69 74 6f 72 29 20 2a 2f 0a 23 74 65 6d 70 6c 61 74 65 2d 73 65 74 74 69 6e 67 20 2e 73 65 63 74 69 6f 6e 20 2e 73 65 74 74 69 6e 67 2d 73 65 63 74 69 6f 6e 2d 63 6f 6e 74 61 69 6e 65 72 20 2e 66 72 6f 6d 2d 69 6e 70 75 74 2d 77 72 61 70 20 7b 20 77 69 64 74 68 3a 20 31 30 30 25 20 21 69 6d 70 6f 72 74 61 6e 74 3b 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 70 61 64 64 69 6e 67 3a 30 20 35 70 78 20 30 20 30 20 21 69 6d 70 6f 72 74 61 6e 74 3b 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 66 66 66 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 30 30 25 3b 62 6f 72 Data Ascii: /* Sender Details Modal (basic editor) */#template-setting .section .setting-section-container .from-input-wrap { width: 100% !important;position: relative;padding:0 5px 0 0 !important;display: inline-block;background-color: #ffffff;line-height: 100%;bor
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 72 61 70 20 61 2e 66 72 6f 6d 2d 70 65 72 73 20 7b 20 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 63 6f 6c 6f 72 3a 20 23 62 62 62 62 62 62 3b 20 70 6f 73 69 74 69 6f 6e 3a 20 61 62 73 6f 6c 75 74 65 3b 20 74 6f 70 3a 20 35 30 25 3b 20 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 59 28 2d 35 30 25 29 3b 20 72 69 67 68 74 3a 20 35 70 78 3b 7d 0a 23 74 65 6d 70 6c 61 74 65 2d 73 65 74 74 69 6e 67 20 2e 73 65 63 74 69 6f 6e 20 2e 73 65 74 74 69 6e 67 2d 73 65 63 74 69 6f 6e 2e 6e 61 6d 65 2d 66 69 65 6c 64 20 2e 61 63 5f 70 6f 70 6f 76 65 72 2d 6d 65 6e 75 20 2e 70 6f 70 6f 76 65 72 2d 66 6f 6f 74 65 72 20 2e 61 63 5f 62 75 74 74 6f 6e 20 7b 20 77 69 64 74 68 3a 20 34 37 25 3b 7d 0a 23 74 65 6d 70 6c 61 74 65 2d 73 65 74 74 69 6e 67 20 2e 73 65 63 Data Ascii: rap a.from-pers { float: right;color: #bbbbbb; position: absolute; top: 50%; transform: translateY(-50%); right: 5px;}#template-setting .section .setting-section.name-field .ac_popover-menu .popover-footer .ac_button { width: 47%;}#template-setting .sec
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 61 72 28 2d 2d 73 6c 61 74 65 2d 32 30 30 29 21 69 6d 70 6f 72 74 61 6e 74 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 34 70 78 3b 66 6f 6e 74 3a 31 34 70 78 20 22 49 42 4d 20 50 6c 65 78 20 53 61 6e 73 22 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 21 69 6d 70 6f 72 74 61 6e 74 3b 63 6f 6c 6f 72 3a 23 33 33 33 21 69 6d 70 6f 72 74 61 6e 74 3b 66 6c 6f 61 74 3a 6c 65 66 74 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 31 30 70 78 3b 70 61 64 64 69 6e 67 3a 30 20 35 70 78 20 30 20 30 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 23 74 65 6d 70 6c 61 74 65 2d 73 65 74 74 69 6e 67 20 2e 73 65 63 74 69 6f 6e 20 2e 73 65 74 74 69 6e 67 2d 73 65 63 74 69 6f 6e 2e 6e 61 6d 65 2d 66 69 65 6c 64 20 2e 69 6e 70 75 74 2d 77 72 61 70 20 69 6e 70 75 74 Data Ascii: ar(--slate-200)!important;border-radius:4px;font:14px "IBM Plex Sans", Helvetica, sans-serif!important;color:#333!important;float:left;margin-right:10px;padding:0 5px 0 0!important;}#template-setting .section .setting-section.name-field .input-wrap input
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 64 69 75 73 3a 36 70 78 3b 20 2d 6d 6f 7a 2d 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 36 70 78 3b 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 36 70 78 3b 7d 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 2e 75 70 6c 6f 61 64 20 69 6e 70 75 74 5b 74 79 70 65 3d 22 73 75 62 6d 69 74 22 5d 20 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 36 65 63 33 34 66 3b 7d 0a 2f 2a 20 6d 65 6e 75 20 73 74 75 66 66 20 2a 2f 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 2e 73 69 64 65 6d 65 6e 75 20 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 20 66 6c 6f 61 74 3a 72 69 67 68 74 3b 20 70 61 64 64 69 6e 67 3a 31 30 70 78 3b 20 77 69 64 74 68 3a 32 32 30 70 78 3b 7d 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 2e 73 69 64 65 6d 65 6e 75 20 3e 20 2e 68 65 61 64 Data Ascii: dius:6px; -moz-border-radius:6px; border-radius:6px;}#modal_gallery .upload input[type="submit"] {background:#6ec34f;}/* menu stuff */#modal_gallery .sidemenu {position:relative; float:right; padding:10px; width:220px;}#modal_gallery .sidemenu > .head
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 67 61 6c 6c 65 72 79 20 2e 66 6f 6c 64 65 72 5f 6c 69 73 74 20 3e 20 2e 66 6f 6c 64 65 72 73 20 3e 20 75 6c 20 3e 20 6c 69 20 3e 20 61 20 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 20 66 6c 6f 61 74 3a 6c 65 66 74 3b 20 68 65 69 67 68 74 3a 31 30 30 25 3b 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 31 35 70 78 3b 20 63 6f 6c 6f 72 3a 23 35 35 35 3b 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 3b 7d 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 2e 66 6f 6c 64 65 72 5f 6c 69 73 74 20 3e 20 2e 66 6f 6c 64 65 72 73 20 3e 20 75 6c 20 3e 20 6c 69 20 3e 20 61 2e 66 6f 6c 64 65 72 2d 64 65 6c 65 74 65 20 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 20 74 6f 70 3a 36 70 78 3b 20 6d 61 72 67 69 Data Ascii: gallery .folder_list > .folders > ul > li > a {display:block; float:left; height:100%; margin-left:15px; color:#555; text-decoration:none;}#modal_gallery .folder_list > .folders > ul > li > a.folder-delete {position:absolute; display:none; top:6px; margi
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 64 69 76 2e 69 6d 61 67 65 2d 63 6f 6e 74 61 69 6e 65 72 20 3e 20 64 69 76 2e 69 6d 61 67 65 2d 70 69 63 74 75 72 65 20 3e 20 69 6d 67 20 7b 6d 61 78 2d 77 69 64 74 68 3a 31 31 38 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 31 31 38 70 78 3b 7d 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 2e 69 6d 61 67 65 73 20 3e 20 2e 69 6d 61 67 65 20 3e 20 64 69 76 2e 69 6d 61 67 65 2d 63 6f 6e 74 61 69 6e 65 72 20 3e 20 64 69 76 2e 69 6d 61 67 65 2d 70 69 63 74 75 72 65 20 3e 20 64 69 76 2e 69 6d 61 67 65 2d 69 6d 67 74 61 67 20 7b 6d 61 78 2d 68 65 69 67 68 74 3a 31 31 38 70 78 3b 20 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 7d 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 2e 69 6d 61 67 65 73 20 3e 20 2e 69 6d 61 67 65 20 3e 20 64 69 76 2e 69 6d 61 67 65 Data Ascii: div.image-container > div.image-picture > img {max-width:118px; max-height:118px;}#modal_gallery .images > .image > div.image-container > div.image-picture > div.image-imgtag {max-height:118px; cursor:pointer;}#modal_gallery .images > .image > div.image
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 6c 65 66 74 20 74 6f 70 2c 20 6c 65 66 74 20 62 6f 74 74 6f 6d 2c 20 63 6f 6c 6f 72 2d 73 74 6f 70 28 30 25 2c 23 38 32 63 63 35 64 29 2c 20 63 6f 6c 6f 72 2d 73 74 6f 70 28 31 30 30 25 2c 23 35 33 62 37 33 63 29 29 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 2d 77 65 62 6b 69 74 2d 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 74 6f 70 2c 20 23 38 32 63 63 35 64 20 30 25 2c 23 35 33 62 37 33 63 20 31 30 30 25 29 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 2d 6f 2d 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 74 6f 70 2c 20 23 38 32 63 63 35 64 20 30 25 2c 23 35 33 62 37 33 63 20 31 30 30 25 29 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 2d 6d 73 2d 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 74 6f 70 2c 20 23 38 32 63 63 35 64 20 30 25 2c 23 35 33 62 37 33 Data Ascii: left top, left bottom, color-stop(0%,#82cc5d), color-stop(100%,#53b73c)); background:-webkit-linear-gradient(top, #82cc5d 0%,#53b73c 100%); background:-o-linear-gradient(top, #82cc5d 0%,#53b73c 100%); background:-ms-linear-gradient(top, #82cc5d 0%,#53b73
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 3a 2d 31 30 30 70 78 3b 20 70 61 64 64 69 6e 67 3a 32 38 70 78 20 30 20 30 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 20 77 69 64 74 68 3a 32 30 30 70 78 3b 20 63 6f 6c 6f 72 3a 23 37 37 37 3b 7d 0a 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 5f 6c 6f 61 64 69 6e 67 20 7b 77 69 64 74 68 3a 39 37 2e 38 25 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 20 23 6d 6f 64 61 6c 5f 67 61 6c 6c 65 72 79 5f 6c 6f 61 64 69 6e 67 20 3e 20 69 6d 67 20 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 38 70 78 21 69 6d 70 6f 72 74 61 6e 74 3b 7d 0a 0a 23 73 75 62 73 63 72 69 62 65 72 5f 69 6d 70 6f 72 74 20 2e 75 70 67 72 61 64 65 70 6c 61 6e 20 3e 20 61 20 7b 20 6d 61 72 67 69 6e 3a 31 30 Data Ascii: t:-100px; padding:28px 0 0; font-size:12px; width:200px; color:#777;}#modal_gallery #modal_gallery_loading {width:97.8%!important;}#modal_gallery #modal_gallery_loading > img {margin-left:8px!important;}#subscriber_import .upgradeplan > a { margin:10
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 3a 31 3b 20 7a 6f 6f 6d 3a 31 3b 20 7d 0a 23 73 75 62 73 63 72 69 62 65 72 5f 69 6d 70 6f 72 74 20 2e 75 70 67 72 61 64 65 70 6c 61 6e 20 3e 20 61 3a 68 6f 76 65 72 20 7b 74 65 78 74 2d 73 68 61 64 6f 77 3a 31 70 78 20 30 20 30 20 23 66 66 66 36 64 32 3b 20 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 63 36 61 31 31 33 3b 20 62 6f 72 64 65 72 2d 74 6f 70 2d 63 6f 6c 6f 72 3a 23 63 33 61 33 32 36 3b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 2d 77 65 62 6b 69 74 2d 67 72 61 64 69 65 6e 74 28 20 6c 69 6e 65 61 72 2c 20 6c 65 66 74 20 74 6f 70 2c 20 6c 65 66 74 20 62 6f 74 74 6f 6d 2c 20 63 6f 6c 6f 72 2d 73 74 6f 70 28 30 2e 30 35 2c 20 23 66 37 63 62 32 30 29 2c 20 63 6f 6c 6f 72 2d 73 74 6f 70 28 31 2c 20 23 66 65 64 34 32 37 29 20 29 3b 20 62 61 63 6b Data Ascii: :1; zoom:1; }#subscriber_import .upgradeplan > a:hover {text-shadow:1px 0 0 #fff6d2; border:1px solid #c6a113; border-top-color:#c3a326; background:-webkit-gradient( linear, left top, left bottom, color-stop(0.05, #f7cb20), color-stop(1, #fed427) ); back
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 63 6f 6c 6f 72 3a 20 23 36 39 36 39 36 39 3b 20 7d 0a 0a 0a 23 73 75 62 73 63 72 69 62 65 72 44 65 74 61 69 6c 73 20 68 32 2e 70 72 69 6e 74 61 62 6c 65 20 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 7d 0a 23 74 61 62 5f 64 65 74 61 69 6c 73 5f 2c 0a 23 74 61 62 5f 6c 69 76 65 5f 74 72 61 76 65 6c 5f 2c 0a 23 74 61 62 5f 63 61 6d 70 61 69 67 6e 73 5f 2c 0a 23 74 61 62 5f 6c 6f 67 5f 2c 0a 23 74 61 62 5f 6e 6f 74 65 73 5f 0a 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 7d 0a 23 73 75 62 73 63 72 69 62 65 72 44 65 74 61 69 6c 73 20 20 23 6e 6f 74 65 73 20 2e 6f 70 74 69 6f 6e 73 20 7b 66 6f 6e 74 2d 73 69 7a 65 3a 31 31 70 78 3b 20 63 6f 6c 6f 72 3a 23 33 33 33 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 6e 6f 72 6d 61 6c 3b 20 70 61 64 64 69 6e 67 2d 74 6f 70 3a Data Ascii: color: #696969; }#subscriberDetails h2.printable {display:none;}#tab_details_,#tab_live_travel_,#tab_campaigns_,#tab_log_,#tab_notes_{display:none;}#subscriberDetails #notes .options {font-size:11px; color:#333; font-weight:normal; padding-top:

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	561	OUT	GET /ajax/libs/jqueryui/1.13.2/jquery-ui.min.js HTTP/1.1 Host: cdnjs.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://ncn.activehosted.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:24 UTC	956	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: application/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=30672000 ETag: W/"62e445d5-10919" Last-Modified: Fri, 29 Jul 2022 20:40:53 GMT cf-cdnjs-via: cfworker/kv Cross-Origin-Resource-Policy: cross-origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff CF-Cache-Status: HIT Age: 35059 Expires: Sun, 04 Jan 2026 13:18:23 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CBLfS0AkxHEecpbc1z78zDANloHUWdnjRlzawQD68OCrHjnXZ2v9P2FRLMe%2BICKJg9qTD5VRGjOj3WQBuSL15sjKmk93Xfp6IHkzu4PH6ws8455DJJQXX9zH5R%2FwEVDNh3ZAD3YC"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=15780000 Server: cloudflare CF-RAY: 901de967ed34435b-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 13:18:24 UTC	413	IN	Data Raw: 33 39 37 35 0d 0a 2f 2a 21 20 6a 51 75 65 72 79 20 55 49 20 2d 20 76 31 2e 31 33 2e 32 20 2d 20 32 30 32 32 2d 30 37 2d 31 34 0a 2a 20 68 74 74 70 3a 2f 2f 6a 71 75 65 72 79 75 69 2e 63 6f 6d 0a 2a 20 49 6e 63 6c 75 64 65 73 3a 20 77 69 64 67 65 74 2e 6a 73 2c 20 70 6f 73 69 74 69 6f 6e 2e 6a 73 2c 20 64 61 74 61 2e 6a 73 2c 20 64 69 73 61 62 6c 65 2d 73 65 6c 65 63 74 69 6f 6e 2e 6a 73 2c 20 65 66 66 65 63 74 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 62 6c 69 6e 64 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 62 6f 75 6e 63 65 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 63 6c 69 70 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 64 72 6f 70 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 Data Ascii: 3975/! jQuery UI - v1.13.2 - 2022-07-14 http://jqueryui.com* Includes: widget.js, position.js, data.js, disable-selection.js, effect.js, effects/effect-blind.js, effects/effect-bounce.js, effects/effect-clip.js, effects/effect-drop.js, effects/effec
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 63 61 6c 65 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 73 68 61 6b 65 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 73 69 7a 65 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 73 6c 69 64 65 2e 6a 73 2c 20 65 66 66 65 63 74 73 2f 65 66 66 65 63 74 2d 74 72 61 6e 73 66 65 72 2e 6a 73 2c 20 66 6f 63 75 73 61 62 6c 65 2e 6a 73 2c 20 66 6f 72 6d 2d 72 65 73 65 74 2d 6d 69 78 69 6e 2e 6a 73 2c 20 6a 71 75 65 72 79 2d 70 61 74 63 68 2e 6a 73 2c 20 6b 65 79 63 6f 64 65 2e 6a 73 2c 20 6c 61 62 65 6c 73 2e 6a 73 2c 20 73 63 72 6f 6c 6c 2d 70 61 72 65 6e 74 2e 6a 73 2c 20 74 61 62 62 61 62 6c 65 2e 6a 73 2c 20 75 6e 69 71 75 65 2d 69 64 2e 6a 73 2c 20 77 69 64 67 65 74 73 2f 61 63 63 6f 72 64 69 6f 6e 2e 6a 73 2c 20 77 69 Data Ascii: cale.js, effects/effect-shake.js, effects/effect-size.js, effects/effect-slide.js, effects/effect-transfer.js, focusable.js, form-reset-mixin.js, jquery-patch.js, keycode.js, labels.js, scroll-parent.js, tabbable.js, unique-id.js, widgets/accordion.js, wi
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 69 66 28 21 74 68 69 73 7c 7c 21 74 68 69 73 2e 5f 63 72 65 61 74 65 57 69 64 67 65 74 29 72 65 74 75 72 6e 20 6e 65 77 20 6e 28 74 2c 65 29 3b 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 26 26 74 68 69 73 2e 5f 63 72 65 61 74 65 57 69 64 67 65 74 28 74 2c 65 29 7d 2c 56 2e 65 78 74 65 6e 64 28 6e 2c 73 2c 7b 76 65 72 73 69 6f 6e 3a 65 2e 76 65 72 73 69 6f 6e 2c 5f 70 72 6f 74 6f 3a 56 2e 65 78 74 65 6e 64 28 7b 7d 2c 65 29 2c 5f 63 68 69 6c 64 43 6f 6e 73 74 72 75 63 74 6f 72 73 3a 5b 5d 7d 29 2c 28 6f 3d 6e 65 77 20 69 29 2e 6f 70 74 69 6f 6e 73 3d 56 2e 77 69 64 67 65 74 2e 65 78 74 65 6e 64 28 7b 7d 2c 6f 2e 6f 70 74 69 6f 6e 73 29 2c 56 2e 65 61 63 68 28 65 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 73 29 7b 66 75 Data Ascii: unction(t,e){if(!this\|\|!this._createWidget)return new n(t,e);arguments.length&&this._createWidget(t,e)},V.extend(n,s,{version:e.version,_proto:V.extend({},e),_childConstructors:[]}),(o=new i).options=V.widget.extend({},o.options),V.each(e,function(e,s){fu
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 28 6e 3d 65 2c 21 31 29 3a 65 3f 22 66 75 6e 63 74 69 6f 6e 22 21 3d 74 79 70 65 6f 66 20 65 5b 69 5d 7c 7c 22 5f 22 3d 3d 3d 69 2e 63 68 61 72 41 74 28 30 29 3f 56 2e 65 72 72 6f 72 28 22 6e 6f 20 73 75 63 68 20 6d 65 74 68 6f 64 20 27 22 2b 69 2b 22 27 20 66 6f 72 20 22 2b 6f 2b 22 20 77 69 64 67 65 74 20 69 6e 73 74 61 6e 63 65 22 29 3a 28 74 3d 65 5b 69 5d 2e 61 70 70 6c 79 28 65 2c 73 29 29 21 3d 3d 65 26 26 76 6f 69 64 20 30 21 3d 3d 74 3f 28 6e 3d 74 26 26 74 2e 6a 71 75 65 72 79 3f 6e 2e 70 75 73 68 53 74 61 63 6b 28 74 2e 67 65 74 28 29 29 3a 74 2c 21 31 29 3a 76 6f 69 64 20 30 3a 56 2e 65 72 72 6f 72 28 22 63 61 6e 6e 6f 74 20 63 61 6c 6c 20 6d 65 74 68 6f 64 73 20 6f 6e 20 22 2b 6f 2b 22 20 70 72 69 6f 72 20 74 6f 20 69 6e 69 74 69 61 6c 69 7a Data Ascii: (n=e,!1):e?"function"!=typeof e[i]\|\|"_"===i.charAt(0)?V.error("no such method '"+i+"' for "+o+" widget instance"):(t=e[i].apply(e,s))!==e&&void 0!==t?(n=t&&t.jquery?n.pushStack(t.get()):t,!1):void 0:V.error("cannot call methods on "+o+" prior to initializ
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 5f 69 6e 69 74 28 29 7d 2c 5f 67 65 74 43 72 65 61 74 65 4f 70 74 69 6f 6e 73 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 7b 7d 7d 2c 5f 67 65 74 43 72 65 61 74 65 45 76 65 6e 74 44 61 74 61 3a 56 2e 6e 6f 6f 70 2c 5f 63 72 65 61 74 65 3a 56 2e 6e 6f 6f 70 2c 5f 69 6e 69 74 3a 56 2e 6e 6f 6f 70 2c 64 65 73 74 72 6f 79 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 69 3d 74 68 69 73 3b 74 68 69 73 2e 5f 64 65 73 74 72 6f 79 28 29 2c 56 2e 65 61 63 68 28 74 68 69 73 2e 63 6c 61 73 73 65 73 45 6c 65 6d 65 6e 74 4c 6f 6f 6b 75 70 2c 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 69 2e 5f 72 65 6d 6f 76 65 43 6c 61 73 73 28 65 2c 74 29 7d 29 2c 74 68 69 73 2e 65 6c 65 6d 65 6e 74 2e 6f 66 66 28 74 68 69 73 2e 65 76 65 6e 74 4e 61 6d 65 73 70 61 63 65 29 Data Ascii: _init()},_getCreateOptions:function(){return{}},_getCreateEventData:V.noop,_create:V.noop,_init:V.noop,destroy:function(){var i=this;this._destroy(),V.each(this.classesElementLookup,function(t,e){i._removeClass(e,t)}),this.element.off(this.eventNamespace)
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 64 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 74 68 69 73 2e 5f 74 6f 67 67 6c 65 43 6c 61 73 73 28 74 68 69 73 2e 77 69 64 67 65 74 28 29 2c 74 68 69 73 2e 77 69 64 67 65 74 46 75 6c 6c 4e 61 6d 65 2b 22 2d 64 69 73 61 62 6c 65 64 22 2c 6e 75 6c 6c 2c 21 21 74 29 2c 74 26 26 28 74 68 69 73 2e 5f 72 65 6d 6f 76 65 43 6c 61 73 73 28 74 68 69 73 2e 68 6f 76 65 72 61 62 6c 65 2c 6e 75 6c 6c 2c 22 75 69 2d 73 74 61 74 65 2d 68 6f 76 65 72 22 29 2c 74 68 69 73 2e 5f 72 65 6d 6f 76 65 43 6c 61 73 73 28 74 68 69 73 2e 66 6f 63 75 73 61 62 6c 65 2c 6e 75 6c 6c 2c 22 75 69 2d 73 74 61 74 65 2d 66 6f 63 75 73 22 29 29 7d 2c 65 6e 61 62 6c 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 5f 73 65 74 4f 70 74 69 6f 6e 73 28 7b 64 69 73 61 62 6c Data Ascii: d:function(t){this._toggleClass(this.widget(),this.widgetFullName+"-disabled",null,!!t),t&&(this._removeClass(this.hoverable,null,"ui-state-hover"),this._removeClass(this.focusable,null,"ui-state-focus"))},enable:function(){return this._setOptions({disabl
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 7b 65 78 74 72 61 3a 6e 3f 65 3a 69 2c 6b 65 79 73 3a 6e 3f 74 3a 65 2c 65 6c 65 6d 65 6e 74 3a 6e 3f 74 68 69 73 2e 65 6c 65 6d 65 6e 74 3a 74 2c 61 64 64 3a 73 3d 22 62 6f 6f 6c 65 61 6e 22 3d 3d 74 79 70 65 6f 66 20 73 3f 73 3a 69 7d 3b 72 65 74 75 72 6e 20 69 2e 65 6c 65 6d 65 6e 74 2e 74 6f 67 67 6c 65 43 6c 61 73 73 28 74 68 69 73 2e 5f 63 6c 61 73 73 65 73 28 69 29 2c 73 29 2c 74 68 69 73 7d 2c 5f 6f 6e 3a 66 75 6e 63 74 69 6f 6e 28 6e 2c 6f 2c 74 29 7b 76 61 72 20 61 2c 72 3d 74 68 69 73 3b 22 62 6f 6f 6c 65 61 6e 22 21 3d 74 79 70 65 6f 66 20 6e 26 26 28 74 3d 6f 2c 6f 3d 6e 2c 6e 3d 21 31 29 2c 74 3f 28 6f 3d 61 3d 56 28 6f 29 2c 74 68 69 73 2e 62 69 6e 64 69 6e 67 73 3d 74 68 69 73 2e 62 69 6e 64 69 6e 67 73 2e 61 64 64 28 6f 29 29 3a 28 74 3d Data Ascii: {extra:n?e:i,keys:n?t:e,element:n?this.element:t,add:s="boolean"==typeof s?s:i};return i.element.toggleClass(this._classes(i),s),this},_on:function(n,o,t){var a,r=this;"boolean"!=typeof n&&(t=o,o=n,n=!1),t?(o=a=V(o),this.bindings=this.bindings.add(o)):(t=
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 74 29 7b 74 68 69 73 2e 5f 72 65 6d 6f 76 65 43 6c 61 73 73 28 56 28 74 2e 63 75 72 72 65 6e 74 54 61 72 67 65 74 29 2c 6e 75 6c 6c 2c 22 75 69 2d 73 74 61 74 65 2d 66 6f 63 75 73 22 29 7d 7d 29 7d 2c 5f 74 72 69 67 67 65 72 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 69 29 7b 76 61 72 20 73 2c 6e 2c 6f 3d 74 68 69 73 2e 6f 70 74 69 6f 6e 73 5b 74 5d 3b 69 66 28 69 3d 69 7c 7c 7b 7d 2c 28 65 3d 56 2e 45 76 65 6e 74 28 65 29 29 2e 74 79 70 65 3d 28 74 3d 3d 3d 74 68 69 73 2e 77 69 64 67 65 74 45 76 65 6e 74 50 72 65 66 69 78 3f 74 3a 74 68 69 73 2e 77 69 64 67 65 74 45 76 65 6e 74 50 72 65 66 69 78 2b 74 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 2c 65 2e 74 61 72 67 65 74 3d 74 68 69 73 2e 65 6c 65 6d 65 6e 74 5b 30 5d 2c 6e 3d 65 2e 6f 72 69 67 69 6e 61 Data Ascii: t){this._removeClass(V(t.currentTarget),null,"ui-state-focus")}})},_trigger:function(t,e,i){var s,n,o=this.options[t];if(i=i\|\|{},(e=V.Event(e)).type=(t===this.widgetEventPrefix?t:this.widgetEventPrefix+t).toLowerCase(),e.target=this.element[0],n=e.origina
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 27 3e 3c 64 69 76 20 73 74 79 6c 65 3d 27 68 65 69 67 68 74 3a 33 30 30 70 78 3b 77 69 64 74 68 3a 61 75 74 6f 3b 27 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 22 29 2c 69 3d 65 2e 63 68 69 6c 64 72 65 6e 28 29 5b 30 5d 3b 72 65 74 75 72 6e 20 56 28 22 62 6f 64 79 22 29 2e 61 70 70 65 6e 64 28 65 29 2c 74 3d 69 2e 6f 66 66 73 65 74 57 69 64 74 68 2c 65 2e 63 73 73 28 22 6f 76 65 72 66 6c 6f 77 22 2c 22 73 63 72 6f 6c 6c 22 29 2c 74 3d 3d 3d 28 69 3d 69 2e 6f 66 66 73 65 74 57 69 64 74 68 29 26 26 28 69 3d 65 5b 30 5d 2e 63 6c 69 65 6e 74 57 69 64 74 68 29 2c 65 2e 72 65 6d 6f 76 65 28 29 2c 73 3d 74 2d 69 7d 2c 67 65 74 53 63 72 6f 6c 6c 49 6e 66 6f 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 2e 69 73 57 69 6e 64 6f 77 7c 7c 74 2e 69 73 44 6f Data Ascii: '><div style='height:300px;width:auto;'></div></div>"),i=e.children()[0];return V("body").append(e),t=i.offsetWidth,e.css("overflow","scroll"),t===(i=i.offsetWidth)&&(i=e[0].clientWidth),e.remove(),s=t-i},getScrollInfo:function(t){var e=t.isWindow\|\|t.isDo
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 68 74 28 29 2c 6f 66 66 73 65 74 3a 65 2e 6f 66 66 73 65 74 28 29 7d 3b 72 65 74 75 72 6e 20 5f 5b 30 5d 2e 70 72 65 76 65 6e 74 44 65 66 61 75 6c 74 26 26 28 75 2e 61 74 3d 22 6c 65 66 74 20 74 6f 70 22 29 2c 70 3d 65 2e 77 69 64 74 68 2c 66 3d 65 2e 68 65 69 67 68 74 2c 6d 3d 56 2e 65 78 74 65 6e 64 28 7b 7d 2c 67 3d 65 2e 6f 66 66 73 65 74 29 2c 56 2e 65 61 63 68 28 5b 22 6d 79 22 2c 22 61 74 22 5d 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 2c 65 2c 69 3d 28 75 5b 74 68 69 73 5d 7c 7c 22 22 29 2e 73 70 6c 69 74 28 22 20 22 29 3b 28 69 3d 31 3d 3d 3d 69 2e 6c 65 6e 67 74 68 3f 6f 2e 74 65 73 74 28 69 5b 30 5d 29 3f 69 2e 63 6f 6e 63 61 74 28 5b 22 63 65 6e 74 65 72 22 5d 29 3a 6c 2e 74 65 73 74 28 69 5b 30 5d 29 3f 5b 22 63 65 6e 74 65 72 22 5d Data Ascii: ht(),offset:e.offset()};return _[0].preventDefault&&(u.at="left top"),p=e.width,f=e.height,m=V.extend({},g=e.offset),V.each(["my","at"],function(){var t,e,i=(u[this]\|\|"").split(" ");(i=1===i.length?o.test(i[0])?i.concat(["center"]):l.test(i[0])?["center"]

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:23 UTC	577	OUT	GET /ajax/libs/css-vars-ponyfill/2.4.9/css-vars-ponyfill.min.js HTTP/1.1 Host: cdnjs.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://ncn.activehosted.com sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: script Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:24 UTC	950	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: application/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=30672000 ETag: W/"65e79664-1ed5" Last-Modified: Tue, 05 Mar 2024 22:02:12 GMT cf-cdnjs-via: cfworker/kv Cross-Origin-Resource-Policy: cross-origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff CF-Cache-Status: MISS Expires: Sun, 04 Jan 2026 13:18:24 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y4qG1nmM13VF%2BrQP4w5%2FRLxFOO59bwBQqg%2FQHtbOde5%2Bk6aGM6aHNAM%2FDON1tnZVrKDxM8VKG85G6BXnZdKvoLMIXPW8dTjdVfMaiBDNta1Loc4mGZk75bWEtOZthTV1xKYA4bAN"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=15780000 Server: cloudflare CF-RAY: 901de9682ddf8c35-EWR alt-svc: h3=":443"; ma=86400
2025-01-14 13:18:24 UTC	419	IN	Data Raw: 35 62 35 62 0d 0a 2f 2a 21 0a 20 2a 20 63 73 73 2d 76 61 72 73 2d 70 6f 6e 79 66 69 6c 6c 0a 20 2a 20 76 32 2e 34 2e 39 0a 20 2a 20 68 74 74 70 73 3a 2f 2f 6a 68 69 6c 64 65 6e 62 69 64 64 6c 65 2e 67 69 74 68 75 62 2e 69 6f 2f 63 73 73 2d 76 61 72 73 2d 70 6f 6e 79 66 69 6c 6c 2f 0a 20 2a 20 28 63 29 20 32 30 31 38 2d 32 30 32 34 20 4a 6f 68 6e 20 48 69 6c 64 65 6e 62 69 64 64 6c 65 20 3c 68 74 74 70 3a 2f 2f 68 69 6c 64 65 6e 62 69 64 64 6c 65 2e 63 6f 6d 3e 0a 20 2a 20 4d 49 54 20 6c 69 63 65 6e 73 65 0a 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 Data Ascii: 5b5b/! css-vars-ponyfill * v2.4.9 * https://jhildenbiddle.github.io/css-vars-ponyfill/ * (c) 2018-2024 John Hildenbiddle <http://hildenbiddle.com> * MIT license */!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?module.expor
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 7b 72 65 74 75 72 6e 20 65 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 3f 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 2e 62 69 6e 64 28 29 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 6f 72 28 76 61 72 20 74 3d 31 3b 74 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 74 2b 2b 29 7b 76 61 72 20 72 3d 61 72 67 75 6d 65 6e 74 73 5b 74 5d 3b 66 6f 72 28 76 61 72 20 6e 20 69 6e 20 72 29 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 2e 68 61 73 4f 77 6e 50 72 6f 70 65 72 74 79 2e 63 61 6c 6c 28 72 2c 6e 29 26 26 28 65 5b 6e 5d 3d 72 5b 6e 5d 29 7d 72 65 74 75 72 6e 20 65 7d 2c 65 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 66 75 6e 63 74 69 6f 6e 20 74 28 65 29 7b 76 61 72 20 74 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 31 26 Data Ascii: {return e=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},e.apply(this,arguments)}function t(e){var t=arguments.length>1&
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 65 20 73 61 6d 65 20 70 72 6f 74 6f 63 6f 6c 20 28 22 2e 63 6f 6e 63 61 74 28 65 2c 22 29 22 29 29 2c 61 28 6e 75 6c 6c 2c 74 29 7d 65 6c 73 65 7b 76 61 72 20 6f 3d 6e 65 77 20 58 4d 4c 48 74 74 70 52 65 71 75 65 73 74 3b 6f 2e 6f 70 65 6e 28 22 47 45 54 22 2c 65 29 2c 72 2e 6d 69 6d 65 54 79 70 65 26 26 6f 2e 6f 76 65 72 72 69 64 65 4d 69 6d 65 54 79 70 65 26 26 6f 2e 6f 76 65 72 72 69 64 65 4d 69 6d 65 54 79 70 65 28 72 2e 6d 69 6d 65 54 79 70 65 29 2c 72 2e 6f 6e 42 65 66 6f 72 65 53 65 6e 64 28 6f 2c 65 2c 74 29 2c 6f 2e 6f 6e 72 65 61 64 79 73 74 61 74 65 63 68 61 6e 67 65 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 34 3d 3d 3d 6f 2e 72 65 61 64 79 53 74 61 74 65 29 7b 76 61 72 20 65 3d 6f 2e 72 65 73 70 6f 6e 73 65 54 65 78 74 3b 6f 2e 73 74 61 74 Data Ascii: e same protocol (".concat(e,")")),a(null,t)}else{var o=new XMLHttpRequest;o.open("GET",e),r.mimeType&&o.overrideMimeType&&o.overrideMimeType(r.mimeType),r.onBeforeSend(o,e,t),o.onreadystatechange=function(){if(4===o.readyState){var e=o.responseText;o.stat
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 75 63 63 65 73 73 28 65 2c 72 2c 6e 29 3b 66 28 65 3d 76 6f 69 64 20 30 21 3d 3d 6f 26 26 21 31 3d 3d 3d 42 6f 6f 6c 65 61 6e 28 6f 29 3f 22 22 3a 6f 7c 7c 65 2c 72 2c 6e 2c 28 66 75 6e 63 74 69 6f 6e 28 65 2c 6e 29 7b 6e 75 6c 6c 3d 3d 3d 63 5b 74 5d 26 26 28 6e 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 73 2e 6f 6e 45 72 72 6f 72 28 65 2e 78 68 72 2c 72 2c 65 2e 75 72 6c 29 7d 29 29 2c 21 73 2e 66 69 6c 74 65 72 7c 7c 73 2e 66 69 6c 74 65 72 2e 74 65 73 74 28 65 29 3f 63 5b 74 5d 3d 65 3a 63 5b 74 5d 3d 22 22 2c 69 28 29 29 7d 29 29 7d 66 75 6e 63 74 69 6f 6e 20 6c 28 65 2c 74 29 7b 76 61 72 20 73 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 32 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 Data Ascii: uccess(e,r,n);f(e=void 0!==o&&!1===Boolean(o)?"":o\|\|e,r,n,(function(e,n){null===c[t]&&(n.forEach((function(e){return s.onError(e.xhr,r,e.url)})),!s.filter\|\|s.filter.test(e)?c[t]=e:c[t]="",i())}))}function l(e,t){var s=arguments.length>2&&void 0!==argument
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 62 6c 65 64 26 26 65 2e 64 69 73 61 62 6c 65 64 2c 64 3d 22 73 74 79 6c 65 22 3d 3d 3d 65 2e 6e 6f 64 65 4e 61 6d 65 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 3b 69 66 28 6c 26 26 21 66 29 69 66 28 2d 31 21 3d 3d 6f 2e 69 6e 64 65 78 4f 66 28 22 64 61 74 61 3a 74 65 78 74 2f 63 73 73 22 29 29 7b 76 61 72 20 70 3d 64 65 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 6f 2e 73 75 62 73 74 72 69 6e 67 28 6f 2e 69 6e 64 65 78 4f 66 28 22 2c 22 29 2b 31 29 29 3b 73 2e 75 73 65 43 53 53 4f 4d 26 26 28 70 3d 41 72 72 61 79 2e 61 70 70 6c 79 28 6e 75 6c 6c 2c 65 2e 73 68 65 65 74 2e 63 73 73 52 75 6c 65 73 29 2e 6d 61 70 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 2e 63 73 73 54 65 78 74 7d 29 29 2e 6a 6f 69 6e 28 22 22 29 29 2c 75 28 70 Data Ascii: bled&&e.disabled,d="style"===e.nodeName.toLowerCase();if(l&&!f)if(-1!==o.indexOf("data:text/css")){var p=decodeURIComponent(o.substring(o.indexOf(",")+1));s.useCSSOM&&(p=Array.apply(null,e.sheet.cssRules).map((function(e){return e.cssText})).join("")),u(p
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 3d 3d 6e 2e 6c 65 6e 67 74 68 3f 63 3d 5b 6e 2e 70 6f 70 28 29 2c 75 5d 3a 28 28 6f 3d 6e 2e 70 6f 70 28 29 29 3c 73 26 26 28 73 3d 6f 2c 61 3d 75 29 2c 75 3d 72 2e 69 6e 64 65 78 4f 66 28 74 2c 6c 2b 31 29 29 2c 6c 3d 69 3c 75 26 26 69 3e 3d 30 3f 69 3a 75 3b 6e 2e 6c 65 6e 67 74 68 26 26 28 63 3d 5b 73 2c 61 5d 29 7d 72 65 74 75 72 6e 20 63 7d 66 75 6e 63 74 69 6f 6e 20 69 28 74 29 7b 76 61 72 20 72 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 31 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 31 5d 3f 61 72 67 75 6d 65 6e 74 73 5b 31 5d 3a 7b 7d 2c 6e 3d 7b 70 72 65 73 65 72 76 65 53 74 61 74 69 63 3a 21 30 2c 72 65 6d 6f 76 65 43 6f 6d 6d 65 6e 74 73 3a 21 31 7d 2c 73 3d 65 28 7b 7d 2c 6e 2c 72 29 2c 61 3d 5b 5d 3b 66 75 6e 63 Data Ascii: ==n.length?c=[n.pop(),u]:((o=n.pop())<s&&(s=o,a=u),u=r.indexOf(t,l+1)),l=i<u&&i>=0?i:u;n.length&&(c=[s,a])}return c}function i(t){var r=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},n={preserveStatic:!0,removeComments:!1},s=e({},n,r),a=[];func
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 5d 2e 74 72 69 6d 28 29 2c 21 69 28 2f 5e 3a 5c 73 2a 2f 29 29 72 65 74 75 72 6e 20 63 28 22 70 72 6f 70 65 72 74 79 20 6d 69 73 73 69 6e 67 20 27 3a 27 22 29 3b 76 61 72 20 6e 3d 69 28 2f 5e 28 28 3f 3a 5c 2f 5c 2a 2e 2a 3f 5c 2a 5c 2f 7c 27 28 3f 3a 5c 5c 27 7c 2e 29 2a 3f 27 7c 22 28 3f 3a 5c 5c 22 7c 2e 29 2a 3f 22 7c 5c 28 28 5c 73 2a 27 28 3f 3a 5c 5c 27 7c 2e 29 2a 3f 27 7c 22 28 3f 3a 5c 5c 22 7c 2e 29 2a 3f 22 7c 5b 5e 29 5d 2a 3f 29 5c 73 2a 5c 29 7c 5b 5e 7d 3b 5d 29 2b 29 2f 29 2c 6f 3d 7b 74 79 70 65 3a 22 64 65 63 6c 61 72 61 74 69 6f 6e 22 2c 70 72 6f 70 65 72 74 79 3a 72 2e 72 65 70 6c 61 63 65 28 65 2c 22 22 29 2c 76 61 6c 75 65 3a 6e 3f 6e 5b 30 5d 2e 72 65 70 6c 61 63 65 28 65 2c 22 22 29 2e 74 72 69 6d 28 29 3a 22 22 7d 3b 72 65 74 75 Data Ascii: ].trim(),!i(/^:\s/))return c("property missing ':'");var n=i(/^((?:\/\.?\\/\|'(?:\\'\|.)?'\|"(?:\\"\|.)?"\|\((\s'(?:\\'\|.)?'\|"(?:\\"\|.)?"\|[^)]?)\s*\)\|[^};])+)/),o={type:"declaration",property:r.replace(e,""),value:n?n[0].replace(e,"").trim():""};retu
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6f 6e 20 43 28 29 7b 69 66 28 69 28 2f 5e 40 68 6f 73 74 5c 73 2a 2f 29 29 72 65 74 75 72 6e 7b 74 79 70 65 3a 22 68 6f 73 74 22 2c 72 75 6c 65 73 3a 4d 28 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 78 28 29 7b 76 61 72 20 65 3d 69 28 2f 5e 40 6d 65 64 69 61 28 5b 5e 7b 5d 2b 29 2a 2f 29 3b 69 66 28 65 29 72 65 74 75 72 6e 7b 74 79 70 65 3a 22 6d 65 64 69 61 22 2c 6d 65 64 69 61 3a 28 65 5b 31 5d 7c 7c 22 22 29 2e 74 72 69 6d 28 29 2c 72 75 6c 65 73 3a 4d 28 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 4f 28 29 7b 76 61 72 20 65 3d 69 28 2f 5e 40 63 75 73 74 6f 6d 2d 6d 65 64 69 61 5c 73 2b 28 2d 2d 5b 5e 5c 73 5d 2b 29 5c 73 2a 28 5b 5e 7b 3b 5d 2b 29 3b 2f 29 3b 69 66 28 65 29 72 65 74 75 72 6e 7b 74 79 70 65 3a 22 63 75 73 74 6f 6d 2d 6d 65 64 69 61 22 2c 6e 61 6d 65 Data Ascii: on C(){if(i(/^@host\s/))return{type:"host",rules:M()}}function x(){var e=i(/^@media([^{]+)/);if(e)return{type:"media",media:(e[1]\|\|"").trim(),rules:M()}}function O(){var e=i(/^@custom-media\s+(--[^\s]+)\s*([^{;]+);/);if(e)return{type:"custom-media",name
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6f 6e 20 4d 28 65 29 7b 69 66 28 21 65 26 26 21 75 28 29 29 72 65 74 75 72 6e 20 63 28 22 6d 69 73 73 69 6e 67 20 27 7b 27 22 29 3b 66 6f 72 28 76 61 72 20 72 2c 6e 3d 70 28 29 3b 74 2e 6c 65 6e 67 74 68 26 26 28 65 7c 7c 22 7d 22 21 3d 3d 74 5b 30 5d 29 26 26 28 72 3d 5f 28 29 7c 7c 6a 28 29 29 3b 29 72 2e 74 79 70 65 26 26 6e 2e 70 75 73 68 28 72 29 2c 6e 3d 6e 2e 63 6f 6e 63 61 74 28 70 28 29 29 3b 72 65 74 75 72 6e 20 65 7c 7c 6c 28 29 3f 6e 3a 63 28 22 6d 69 73 73 69 6e 67 20 27 7d 27 22 29 7d 72 65 74 75 72 6e 7b 74 79 70 65 3a 22 73 74 79 6c 65 73 68 65 65 74 22 2c 73 74 79 6c 65 73 68 65 65 74 3a 7b 72 75 6c 65 73 3a 4d 28 21 30 29 2c 65 72 72 6f 72 73 3a 61 7d 7d 7d 66 75 6e 63 74 69 6f 6e 20 75 28 74 29 7b 76 61 72 20 72 3d 61 72 67 75 6d 65 6e Data Ascii: on M(e){if(!e&&!u())return c("missing '{'");for(var r,n=p();t.length&&(e\|\|"}"!==t[0])&&(r=_()\|\|j());)r.type&&n.push(r),n=n.concat(p());return e\|\|l()?n:c("missing '}'")}return{type:"stylesheet",stylesheet:{rules:M(!0),errors:a}}}function u(t){var r=argumen
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6c 75 65 73 2e 6a 6f 69 6e 28 22 2c 22 29 2b 22 7b 22 2b 6f 28 65 2e 64 65 63 6c 61 72 61 74 69 6f 6e 73 29 2b 22 7d 22 7d 2c 6b 65 79 66 72 61 6d 65 73 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 40 22 2b 28 65 2e 76 65 6e 64 6f 72 7c 7c 22 22 29 2b 22 6b 65 79 66 72 61 6d 65 73 20 22 2b 65 2e 6e 61 6d 65 2b 22 7b 22 2b 6f 28 65 2e 6b 65 79 66 72 61 6d 65 73 29 2b 22 7d 22 7d 2c 6d 65 64 69 61 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 40 6d 65 64 69 61 20 22 2b 65 2e 6d 65 64 69 61 2b 22 7b 22 2b 6f 28 65 2e 72 75 6c 65 73 29 2b 22 7d 22 7d 2c 6e 61 6d 65 73 70 61 63 65 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 22 40 6e 61 6d 65 73 70 61 63 65 20 22 2b 65 2e 6e 61 6d 65 2b 22 3b 22 7d 2c 70 61 67 65 3a 66 Data Ascii: lues.join(",")+"{"+o(e.declarations)+"}"},keyframes:function(e){return"@"+(e.vendor\|\|"")+"keyframes "+e.name+"{"+o(e.keyframes)+"}"},media:function(e){return"@media "+e.media+"{"+o(e.rules)+"}"},namespace:function(e){return"@namespace "+e.name+";"},page:f

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:24 UTC	620	OUT	GET /core-platform-core-resources/jquery-ui/1.13.2/css/smoothness/jquery-ui.min.css HTTP/1.1 Host: platform-cdn.app-us1.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:24 UTC	536	IN	HTTP/1.1 200 OK Content-Type: text/css Content-Length: 28988 Connection: close Date: Tue, 14 Jan 2025 13:17:51 GMT Last-Modified: Tue, 09 Aug 2022 18:56:35 GMT x-amz-server-side-encryption: AES256 Cache-Control: max-age=0, must-revalidate Accept-Ranges: bytes Server: AmazonS3 ETag: "b6ffcf9edf281e009b6d8a4f00545f6a" X-Cache: Hit from cloudfront Via: 1.1 80d90c7955dda88e3912960ead8e99d6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA53-C1 X-Amz-Cf-Id: _kLoVei0n9jzyTRNlAYYx4OTrXwSqMWlHsqA2lfWByPsbEq7_HW0wg== Age: 34
2025-01-14 13:18:24 UTC	16384	IN	Data Raw: 2e 75 69 2d 68 65 6c 70 65 72 2d 68 69 64 64 65 6e 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 7d 2e 75 69 2d 68 65 6c 70 65 72 2d 68 69 64 64 65 6e 2d 61 63 63 65 73 73 69 62 6c 65 7b 63 6c 69 70 3a 72 65 63 74 28 30 20 30 20 30 20 30 29 3b 62 6f 72 64 65 72 3a 30 3b 68 65 69 67 68 74 3a 31 70 78 3b 6d 61 72 67 69 6e 3a 2d 31 70 78 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 70 61 64 64 69 6e 67 3a 30 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 77 69 64 74 68 3a 31 70 78 7d 2e 75 69 2d 68 65 6c 70 65 72 2d 72 65 73 65 74 7b 62 6f 72 64 65 72 3a 30 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 30 30 25 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 3b 6c 69 73 74 2d 73 74 79 6c 65 3a 6e 6f 6e 65 3b 6d 61 72 67 69 6e 3a 30 3b 6f 75 74 6c 69 6e 65 3a Data Ascii: .ui-helper-hidden{display:none}.ui-helper-hidden-accessible{clip:rect(0 0 0 0);border:0;height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.ui-helper-reset{border:0;font-size:100%;line-height:1.3;list-style:none;margin:0;outline:
2025-01-14 13:18:24 UTC	12604	IN	Data Raw: 66 6f 63 75 73 2c 2e 75 69 2d 77 69 64 67 65 74 2d 63 6f 6e 74 65 6e 74 20 2e 75 69 2d 73 74 61 74 65 2d 68 6f 76 65 72 2c 2e 75 69 2d 77 69 64 67 65 74 2d 68 65 61 64 65 72 20 2e 75 69 2d 73 74 61 74 65 2d 66 6f 63 75 73 2c 2e 75 69 2d 77 69 64 67 65 74 2d 68 65 61 64 65 72 20 2e 75 69 2d 73 74 61 74 65 2d 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 65 64 65 64 65 64 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 63 63 63 3b 63 6f 6c 6f 72 3a 23 32 62 32 62 32 62 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 34 30 30 7d 2e 75 69 2d 73 74 61 74 65 2d 66 6f 63 75 73 20 61 2c 2e 75 69 2d 73 74 61 74 65 2d 66 6f 63 75 73 20 61 3a 68 6f 76 65 72 2c 2e 75 69 2d 73 74 61 74 65 2d 66 6f 63 75 73 20 61 3a 6c 69 6e 6b 2c 2e 75 69 2d 73 74 61 74 65 2d Data Ascii: focus,.ui-widget-content .ui-state-hover,.ui-widget-header .ui-state-focus,.ui-widget-header .ui-state-hover{background:#ededed;border:1px solid #ccc;color:#2b2b2b;font-weight:400}.ui-state-focus a,.ui-state-focus a:hover,.ui-state-focus a:link,.ui-state-

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:24 UTC	853	OUT	GET /admin/css/content.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	369	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 251 Connection: close etag: "2999994847" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96c285741f9-EWR
2025-01-14 13:18:24 UTC	251	IN	Data Raw: 2f 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 2f 2a 20 41 64 6d 69 6e 20 47 6c 6f 62 61 6c 20 43 6f 6e 74 65 6e 74 20 53 74 79 6c 65 20 20 20 20 09 09 09 09 09 09 20 2a 2f 20 0a 2f 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 0a 0a 0a 0a 2f 2a 2d 2d 2d 2d 2d 2d 20 46 72 61 6d 65 77 6f 72 6b 20 2d 2d 2d 2d 2d 2d 2a 2f 0a 2e 61 63 2d 63 6f 6e 74 65 6e 74 5f 77 72 61 70 20 7b 20 70 61 64 64 69 6e 67 3a 20 30 20 32 33 70 78 20 32 33 70 78 20 32 33 70 78 3b 77 69 64 74 68 3a 31 30 30 25 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 7d Data Ascii: /-------------------------------------------//* Admin Global Content Style / /-------------------------------------------//------ Framework ------*/.ac-content_wrap { padding: 0 23px 23px 23px;width:100%;box-sizing:border-box;}

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:24 UTC	867	OUT	GET /ac_global/fontello/css/ac-icons.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	370	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 13515 Connection: close etag: "978599102" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96cde3041d3-EWR
2025-01-14 13:18:24 UTC	999	IN	Data Raw: 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 61 63 2d 69 63 6f 6e 73 27 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 2f 61 63 2d 69 63 6f 6e 73 2e 65 6f 74 3f 39 36 30 38 39 35 38 27 29 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 2f 61 63 2d 69 63 6f 6e 73 2e 65 6f 74 3f 39 36 30 38 39 35 38 23 69 65 66 69 78 27 29 20 66 6f 72 6d 61 74 28 27 65 6d 62 65 64 64 65 64 2d 6f 70 65 6e 74 79 70 65 27 29 2c 0a 20 20 20 20 20 20 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 2f 61 63 2d 69 63 6f 6e 73 2e 77 6f 66 66 32 3f 39 36 30 38 39 35 38 27 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 32 27 29 2c 0a 20 20 20 20 20 20 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 2f 61 63 2d 69 63 6f 6e 73 2e 77 6f Data Ascii: @font-face { font-family: 'ac-icons'; src: url('../font/ac-icons.eot?9608958'); src: url('../font/ac-icons.eot?9608958#iefix') format('embedded-opentype'), url('../font/ac-icons.woff2?9608958') format('woff2'), url('../font/ac-icons.wo
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 6c 6f 63 6b 3b 0a 20 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 20 69 6e 68 65 72 69 74 3b 0a 20 20 77 69 64 74 68 3a 20 31 65 6d 3b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 2e 32 65 6d 3b 0a 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0a 20 20 2f 2a 20 6f 70 61 63 69 74 79 3a 20 2e 38 3b 20 2a 2f 0a 0a 20 20 2f 2a 20 46 6f 72 20 73 61 66 65 74 79 20 2d 20 72 65 73 65 74 20 70 61 72 65 6e 74 20 73 74 79 6c 65 73 2c 20 74 68 61 74 20 63 61 6e 20 62 72 65 61 6b 20 67 6c 79 70 68 20 63 6f 64 65 73 2a 2f 0a 20 20 66 6f 6e 74 2d 76 61 72 69 61 6e 74 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 6e 6f 6e 65 3b 0a 0a 20 20 2f 2a 20 66 69 78 20 62 75 74 74 6f 6e 73 20 68 65 69 67 68 74 2c Data Ascii: lock; text-decoration: inherit; width: 1em; margin-right: .2em; text-align: center; /* opacity: .8; / / For safety - reset parent styles, that can break glyph codes/ font-variant: normal; text-transform: none; / fix buttons height,
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 6c 69 73 74 5f 64 65 6c 65 74 65 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 35 36 27 3b 20 7d 20 2f 2a 20 27 56 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 73 65 72 69 65 73 5f 61 64 64 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 35 37 27 3b 20 7d 20 2f 2a 20 27 57 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 73 65 72 69 65 73 5f 64 65 6c 65 74 65 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 35 38 27 3b 20 7d 20 2f 2a 20 27 58 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 74 61 67 5f 61 64 64 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 35 39 27 3b 20 7d 20 2f 2a 20 27 59 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 74 61 67 5f 64 65 6c 65 74 65 3a 62 65 Data Ascii: /.ac-icon-list_delete:before { content: '\56'; } / 'V' /.ac-icon-series_add:before { content: '\57'; } / 'W' /.ac-icon-series_delete:before { content: '\58'; } / 'X' /.ac-icon-tag_add:before { content: '\59'; } / 'Y' */.ac-icon-tag_delete:be
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 66 79 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 31 30 27 3b 20 7d 20 2f 2a 20 27 ee a0 90 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 6c 69 73 74 2d 62 75 6c 6c 65 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 31 31 27 3b 20 7d 20 2f 2a 20 27 ee a0 91 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 6c 69 73 74 2d 6e 75 6d 62 65 72 65 64 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 31 32 27 3b 20 7d 20 2f 2a 20 27 ee a0 92 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 75 6e 64 65 72 6c 69 6e 65 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 31 33 27 3b 20 7d 20 2f 2a 20 27 ee a0 93 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 63 6f 67 2d 63 69 72 63 6c 65 64 3a 62 65 66 6f Data Ascii: fy:before { content: '\e810'; } /* '' /.ac-icon-list-bullet:before { content: '\e811'; } / '' /.ac-icon-list-numbered:before { content: '\e812'; } / '' /.ac-icon-underline:before { content: '\e813'; } / '' */.ac-icon-cog-circled:befo
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 32 36 27 3b 20 7d 20 2f 2a 20 27 ee a0 a6 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 69 6e 64 65 6e 74 2d 72 69 67 68 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 32 37 27 3b 20 7d 20 2f 2a 20 27 ee a0 a7 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 69 6e 64 65 6e 74 2d 6c 65 66 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 32 38 27 3b 20 7d 20 2f 2a 20 27 ee a0 a8 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 63 6f 64 65 2d 31 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 32 39 27 3b 20 7d 20 2f 2a 20 27 ee a0 a9 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 62 75 63 6b 65 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 Data Ascii: fore { content: '\e826'; } /* '' /.ac-icon-indent-right:before { content: '\e827'; } / '' /.ac-icon-indent-left:before { content: '\e828'; } / '' /.ac-icon-code-1:before { content: '\e829'; } / '' */.ac-icon-bucket:before { content:
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 2f 2a 20 27 ee a0 bd 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 66 6f 6c 64 65 72 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 33 65 27 3b 20 7d 20 2f 2a 20 27 ee a0 be 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 66 6f 6c 64 65 72 2d 6f 70 65 6e 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 33 66 27 3b 20 7d 20 2f 2a 20 27 ee a0 bf 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 74 72 61 73 68 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 34 30 27 3b 20 7d 20 2f 2a 20 27 ee a1 80 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 6d 65 6e 75 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 34 31 27 3b 20 7d 20 2f 2a 20 27 ee a1 81 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 63 77 3a Data Ascii: /* '' /.ac-icon-folder:before { content: '\e83e'; } / '' /.ac-icon-folder-open:before { content: '\e83f'; } / '' /.ac-icon-trash:before { content: '\e840'; } / '' /.ac-icon-menu:before { content: '\e841'; } / '' */.ac-icon-cw:
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 2d 61 6c 65 72 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 35 35 27 3b 20 7d 20 2f 2a 20 27 ee a1 95 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 61 72 63 68 69 76 65 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 35 36 27 3b 20 7d 20 2f 2a 20 27 ee a1 96 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 63 61 6c 65 6e 64 61 72 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 35 37 27 3b 20 7d 20 2f 2a 20 27 ee a1 97 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 64 6f 77 6e 2d 31 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 35 38 27 3b 20 7d 20 2f 2a 20 27 ee a1 98 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 6c 65 66 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 Data Ascii: -alert:before { content: '\e855'; } /* '' /.ac-icon-archive:before { content: '\e856'; } / '' /.ac-icon-calendar:before { content: '\e857'; } / '' /.ac-icon-down-1:before { content: '\e858'; } / '' */.ac-icon-left:before { content: '
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 36 63 27 3b 20 7d 20 2f 2a 20 27 ee a1 ac 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 75 70 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 36 64 27 3b 20 7d 20 2f 2a 20 27 ee a1 ad 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 63 6f 67 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 36 65 27 3b 20 7d 20 2f 2a 20 27 ee a1 ae 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 67 70 6c 75 73 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 36 66 27 3b 20 7d 20 2f 2a 20 27 ee a1 af 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 74 77 69 74 74 65 72 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 37 30 27 3b 20 7d 20 2f 2a 20 27 ee a1 b0 27 20 2a 2f 0a 2e 61 Data Ascii: content: '\e86c'; } /* '' /.ac-icon-up:before { content: '\e86d'; } / '' /.ac-icon-cog:before { content: '\e86e'; } / '' /.ac-icon-gplus:before { content: '\e86f'; } / '' /.ac-icon-twitter:before { content: '\e870'; } / '' */.a
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 3a 20 27 5c 65 38 37 38 27 3b 20 7d 20 2f 2a 20 27 ee a1 b8 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 74 68 75 6d 62 73 2d 64 6f 77 6e 2d 61 6c 74 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 37 39 27 3b 20 7d 20 2f 2a 20 27 ee a1 b9 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 77 6f 72 64 70 72 65 73 73 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 37 61 27 3b 20 7d 20 2f 2a 20 27 ee a1 ba 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 66 61 63 65 62 6f 6f 6b 2d 73 71 75 61 72 65 64 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 37 62 27 3b 20 7d 20 2f 2a 20 27 ee a1 bb 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 66 6c 61 73 68 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 Data Ascii: : '\e878'; } /* '' /.ac-icon-thumbs-down-alt:before { content: '\e879'; } / '' /.ac-icon-wordpress:before { content: '\e87a'; } / '' /.ac-icon-facebook-squared:before { content: '\e87b'; } / '' */.ac-icon-flash:before { content: '\e8
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 3a 20 27 5c 65 38 38 66 27 3b 20 7d 20 2f 2a 20 27 ee a2 8f 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 70 61 6c 65 74 74 65 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 39 30 27 3b 20 7d 20 2f 2a 20 27 ee a2 90 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 67 70 6c 75 73 2d 63 69 72 63 6c 65 64 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 39 31 27 3b 20 7d 20 2f 2a 20 27 ee a2 91 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 67 69 74 68 75 62 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 39 32 27 3b 20 7d 20 2f 2a 20 27 ee a2 92 27 20 2a 2f 0a 2e 61 63 2d 69 63 6f 6e 2d 66 6c 69 63 6b 72 3a 62 65 66 6f 72 65 20 7b 20 63 6f 6e 74 65 6e 74 3a 20 27 5c 65 38 39 33 27 3b 20 7d 20 2f 2a 20 27 ee a2 Data Ascii: : '\e88f'; } /* '' /.ac-icon-palette:before { content: '\e890'; } / '' /.ac-icon-gplus-circled:before { content: '\e891'; } / '' /.ac-icon-github:before { content: '\e892'; } / '' /.ac-icon-flickr:before { content: '\e893'; } / '

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:24 UTC	851	OUT	GET /admin/css/style.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:24 UTC	371	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 153634 Connection: close etag: "936064791" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96d9eff19cb-EWR
2025-01-14 13:18:24 UTC	998	IN	Data Raw: 2f 2a 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 0a 20 57 41 52 4e 49 4e 47 3a 20 44 45 50 52 45 43 41 54 45 44 20 2d 20 44 4f 20 4e 4f 54 20 41 44 44 20 54 4f 20 54 48 49 53 20 46 49 4c 45 0a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 0a 2f 2a 0a 20 20 47 6c 6f 62 61 6c 20 65 6c 65 6d 65 6e 74 20 73 74 79 6c 69 6e 67 0a 2a 2f 0a 0a 2f 2a 20 49 6d 70 6f 72 74 20 2f 20 49 6e 63 6c 75 64 65 20 66 6f 6e 74 73 20 68 65 72 65 20 2a 2f 0a 40 69 6d 70 6f 72 74 20 75 72 6c 28 22 68 74 74 70 73 3a 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 2f 63 73 73 3f 66 61 6d 69 6c 79 3d 49 42 4d 2b 50 6c 65 78 2b 53 61 6e 73 3a 32 30 30 2c 33 30 30 2c 34 Data Ascii: /* --------------------------- WARNING: DEPRECATED - DO NOT ADD TO THIS FILE-------------------------------// Global element styling// Import / Include fonts here */@import url("https://fonts.googleapis.com/css?family=IBM+Plex+Sans:200,300,4
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 2f 0a 2e 6e 6f 72 6d 61 6c 2d 74 65 78 74 20 7b 20 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 73 6c 61 74 65 2d 36 30 30 29 3b 20 7d 0a 2e 6d 65 64 69 75 6d 2d 74 65 78 74 20 7b 20 63 6f 6c 6f 72 3a 20 23 37 41 37 41 37 41 3b 20 7d 0a 2e 6c 69 67 68 74 2d 74 65 78 74 20 7b 20 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 73 6c 61 74 65 2d 34 30 30 29 3b 20 7d 0a 2e 78 6c 69 67 68 74 2d 74 65 78 74 20 7b 20 63 6f 6c 6f 72 3a 20 76 61 72 28 2d 2d 73 6c 61 74 65 2d 34 30 30 29 3b 20 7d 0a 2e 74 65 78 74 2d 72 65 64 20 7b 20 63 6f 6c 6f 72 3a 20 23 46 33 37 43 37 42 3b 7d 0a 2e 74 65 78 74 2d 67 72 65 65 6e 20 7b 20 63 6f 6c 6f 72 3a 20 23 36 30 43 42 39 38 3b 7d 0a 2e 74 65 78 74 2d 62 6c 75 65 20 7b 20 63 6f 6c 6f 72 3a 20 23 34 30 37 33 62 35 3b 7d 0a 0a 2f 2a 2d 2d Data Ascii: /.normal-text { color: var(--slate-600); }.medium-text { color: #7A7A7A; }.light-text { color: var(--slate-400); }.xlight-text { color: var(--slate-400); }.text-red { color: #F37C7B;}.text-green { color: #60CB98;}.text-blue { color: #4073b5;}/*--
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 66 6c 65 78 2d 73 74 61 72 74 3b 20 7d 0a 2e 61 63 5f 66 6c 65 78 2d 6a 75 73 74 69 66 79 2d 72 69 67 68 74 20 7b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 20 65 6e 64 3b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 20 65 6e 64 3b 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 66 6c 65 78 2d 65 6e 64 3b 2d 6d 6f 7a 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 66 6c 65 78 2d 65 6e 64 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 66 6c 65 78 2d 65 6e 64 3b 20 7d 0a 2e 61 63 5f 66 6c 65 78 2d 6a 75 73 74 69 66 79 2d 61 72 6f 75 6e 64 20 7b 20 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 20 64 69 73 74 72 69 62 75 74 65 3b 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d Data Ascii: ify-content: flex-start; }.ac_flex-justify-right { -webkit-box-pack: end;-ms-flex-pack: end;-webkit-justify-content: flex-end;-moz-justify-content: flex-end;justify-content: flex-end; }.ac_flex-justify-around { -ms-flex-pack: distribute;-webkit-justify-
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 2d 6d 73 2d 66 6c 65 78 3a 20 30 20 30 20 31 36 2e 36 36 37 25 3b 20 66 6c 65 78 3a 20 30 20 30 20 31 36 2e 36 36 37 25 3b 20 7d 0a 2e 61 63 5f 66 6c 65 78 2d 63 6f 6c 2e 61 63 5f 66 6c 65 78 33 20 7b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 3a 20 30 20 30 20 32 35 25 3b 20 2d 6d 6f 7a 2d 62 6f 78 2d 66 6c 65 78 3a 20 30 3b 20 2d 6d 6f 7a 2d 66 6c 65 78 3a 20 30 20 30 20 32 35 25 3b 20 2d 6d 73 2d 66 6c 65 78 3a 20 30 20 30 20 32 35 25 3b 20 66 6c 65 78 3a 20 30 20 30 20 32 35 25 3b 20 7d 0a 2e 61 63 5f 66 6c 65 78 2d 63 6f 6c 2e 61 63 5f 66 6c 65 78 34 20 7b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 3a 20 30 20 30 20 33 33 2e 33 33 Data Ascii: -ms-flex: 0 0 16.667%; flex: 0 0 16.667%; }.ac_flex-col.ac_flex3 { -webkit-box-flex: 0; -webkit-flex: 0 0 25%; -moz-box-flex: 0; -moz-flex: 0 0 25%; -ms-flex: 0 0 25%; flex: 0 0 25%; }.ac_flex-col.ac_flex4 { -webkit-box-flex: 0; -webkit-flex: 0 0 33.33
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 31 2e 36 36 37 25 3b 20 2d 6d 73 2d 66 6c 65 78 3a 20 30 20 30 20 39 31 2e 36 36 37 25 3b 20 66 6c 65 78 3a 20 30 20 30 20 39 31 2e 36 36 37 25 3b 20 7d 0a 2e 61 63 5f 66 6c 65 78 2d 63 6f 6c 2e 61 63 5f 66 6c 65 78 31 32 20 7b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 3a 20 30 20 30 20 31 30 30 25 3b 20 2d 6d 6f 7a 2d 62 6f 78 2d 66 6c 65 78 3a 20 30 3b 20 2d 6d 6f 7a 2d 66 6c 65 78 3a 20 30 20 30 20 31 30 30 25 3b 20 2d 6d 73 2d 66 6c 65 78 3a 20 30 20 30 20 31 30 30 25 3b 20 66 6c 65 78 3a 20 30 20 30 20 31 30 30 25 3b 20 7d 0a 0a 2f 2a 20 43 6f 6c 75 6d 6e 20 6d 6f 64 69 66 69 65 72 73 20 2a 2f 0a 2e 61 63 5f 66 6c 65 78 2d 61 75 74 6f 68 65 69 67 68 74 20 7b 20 64 69 73 70 6c 61 79 3a 20 2d Data Ascii: 1.667%; -ms-flex: 0 0 91.667%; flex: 0 0 91.667%; }.ac_flex-col.ac_flex12 { -webkit-box-flex: 0; -webkit-flex: 0 0 100%; -moz-box-flex: 0; -moz-flex: 0 0 100%; -ms-flex: 0 0 100%; flex: 0 0 100%; }/* Column modifiers */.ac_flex-autoheight { display: -
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 20 7b 20 77 69 64 74 68 3a 20 31 36 2e 36 36 36 36 36 36 36 37 25 3b 20 7d 0a 2e 61 63 5f 63 6f 6c 2e 74 77 6f 68 61 6c 66 20 7b 20 77 69 64 74 68 3a 20 32 31 2e 37 34 34 34 34 34 34 34 34 34 34 25 20 7d 0a 2e 61 63 5f 63 6f 6c 2e 74 68 72 65 65 20 7b 20 77 69 64 74 68 3a 20 32 35 25 3b 20 7d 0a 2e 61 63 5f 63 6f 6c 2e 74 68 72 65 65 68 61 6c 66 20 7b 20 77 69 64 74 68 3a 20 32 37 25 3b 20 7d 0a 2e 61 63 5f 63 6f 6c 2e 66 6f 75 72 20 7b 20 77 69 64 74 68 3a 20 33 33 2e 33 33 33 33 33 33 33 25 3b 20 7d 0a 2e 61 63 5f 63 6f 6c 2e 66 69 76 65 20 7b 20 77 69 64 74 68 3a 20 34 31 2e 36 36 36 36 36 36 36 37 25 3b 20 7d 0a 2e 61 63 5f 63 6f 6c 2e 73 69 78 20 7b 20 77 69 64 74 68 3a 20 34 38 2e 32 36 36 36 36 36 36 36 36 36 25 3b 20 7d 0a 2e 61 63 5f 63 6f 6c 2e Data Ascii: { width: 16.66666667%; }.ac_col.twohalf { width: 21.74444444444% }.ac_col.three { width: 25%; }.ac_col.threehalf { width: 27%; }.ac_col.four { width: 33.3333333%; }.ac_col.five { width: 41.66666667%; }.ac_col.six { width: 48.2666666666%; }.ac_col.
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 65 6d 3b 20 7d 0a 2e 61 63 5f 66 73 2d 73 68 6d 65 64 69 75 6d 20 7b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 34 70 78 20 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 2e 36 65 6d 3b 20 7d 0a 2e 61 63 5f 66 73 2d 6c 61 72 67 65 20 7b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 36 70 78 20 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 2e 36 65 6d 3b 20 7d 0a 2e 61 63 5f 66 73 2d 78 6c 61 72 67 65 20 7b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 37 70 78 20 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 2e 39 65 6d 3b 20 7d 0a 2e 61 63 5f 66 73 2d 78 78 6c 61 72 67 65 20 7b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 30 70 78 20 21 69 6d 70 6f 72 74 61 6e 74 3b 6c 69 6e 65 2d 68 65 69 67 Data Ascii: em; }.ac_fs-shmedium { font-size: 14px !important;line-height: 1.6em; }.ac_fs-large { font-size: 16px !important;line-height: 1.6em; }.ac_fs-xlarge { font-size: 17px !important;line-height: 1.9em; }.ac_fs-xxlarge { font-size: 20px !important;line-heig
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 0a 2f 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 5c 0a 20 20 20 54 61 67 73 0a 5c 2a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2a 2f 0a 75 6c 2e 74 61 67 69 74 20 7b 20 70 61 64 64 69 6e 67 3a 20 30 3b 6d 61 72 67 69 6e 3a 20 30 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 6e 6f 6e 65 3b 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 3b 20 7d 0a 75 6c 2e 74 61 67 69 74 20 2e 74 61 67 69 74 2d 63 68 6f 69 63 65 20 7b 20 70 Data Ascii: /-------------------------------------------------------------------------\ Tags\------------------------------------------------------------------------/ul.tagit { padding: 0;margin: 0;background: none;border: none; }ul.tagit .tagit-choice { p
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 64 69 6e 67 3a 20 35 70 78 20 31 34 70 78 3b 0a 20 20 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 0a 7d 0a 2e 61 63 5f 62 61 64 67 65 2e 68 6f 76 65 72 20 7b 0a 20 20 63 75 72 73 6f 72 3a 20 70 6f 69 6e 74 65 72 3b 0a 7d 0a 2e 61 63 5f 62 61 64 67 65 2e 62 6c 75 65 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 45 31 45 39 46 34 3b 0a 20 20 63 6f 6c 6f 72 3a 20 23 34 30 37 33 42 35 3b 0a 7d 0a 2e 61 63 5f 62 61 64 67 65 2e 62 6f 72 64 65 72 20 7b 0a 20 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 6e 6f 6e 65 3b 0a 20 20 62 6f 72 64 65 72 3a 20 76 61 72 28 2d 2d 73 6c 61 74 65 2d 32 30 30 29 20 31 70 78 20 73 6f 6c 69 64 3b 0a 7d 0a 2e 61 63 5f 62 61 64 67 65 2e 68 6f 76 65 72 3a 68 6f 76 65 72 20 7b 0a 20 20 62 61 Data Ascii: ding: 5px 14px; display: inline-block;}.ac_badge.hover { cursor: pointer;}.ac_badge.blue { background-color: #E1E9F4; color: #4073B5;}.ac_badge.border { background: none; border: var(--slate-200) 1px solid;}.ac_badge.hover:hover { ba
2025-01-14 13:18:24 UTC	1369	IN	Data Raw: 3b 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 34 70 78 3b 20 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 20 63 6f 6c 6f 72 3a 23 35 35 35 3b 20 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 21 69 6d 70 6f 72 74 61 6e 74 3b 20 7a 6f 6f 6d 3a 31 3b 20 2d 6d 6f 7a 2d 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 20 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 20 20 7d 0a 2e 62 74 6e 73 6d 61 6c 6c 20 7b 6d 61 72 67 69 6e 3a 30 20 30 20 31 30 70 78 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 38 66 38 66 38 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 33 70 78 3b 20 62 6f 72 64 65 72 3a 31 70 Data Ascii: ; border-radius:4px; display:inline-block; color:#555; cursor:pointer!important; zoom:1; -moz-box-sizing:border-box; -webkit-box-sizing:border-box; box-sizing:border-box; }.btnsmall {margin:0 0 10px; background-color:#f8f8f8;border-radius:3px; border:1p

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://ncn.acemlna.com

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 207

Chrome Cache Entry: 208

Chrome Cache Entry: 209

Chrome Cache Entry: 210

Chrome Cache Entry: 211

Chrome Cache Entry: 212

Chrome Cache Entry: 213

Chrome Cache Entry: 214

Chrome Cache Entry: 215

Chrome Cache Entry: 216

Chrome Cache Entry: 217

Chrome Cache Entry: 218

Chrome Cache Entry: 219

Chrome Cache Entry: 220

Chrome Cache Entry: 221

Chrome Cache Entry: 222

Chrome Cache Entry: 223

Chrome Cache Entry: 224

Chrome Cache Entry: 225

Chrome Cache Entry: 226

Chrome Cache Entry: 227

Windows Analysis Report
http://ncn.acemlna.com

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:24 UTC	853	OUT	GET /admin/css/default.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	371	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:24 GMT Content-Type: text/css; charset=utf-8 Content-Length: 55497 Connection: close etag: "4029875369" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96dc8ed8c1d-EWR
2025-01-14 13:18:25 UTC	998	IN	Data Raw: 0a 0a 2f 2a 20 50 41 47 45 20 44 45 46 41 55 4c 54 53 20 2a 2f 0a 2f 2a 20 53 65 74 74 69 6e 67 20 74 68 65 20 6d 61 69 6e 20 62 6f 64 79 2c 20 66 6f 6e 74 2c 20 63 6f 6c 6f 72 2c 20 61 6e 64 20 6c 69 6e 6b 20 64 65 66 61 75 6c 74 73 20 2a 2f 0a 0a 0a 0a 0a 0a 0a 0a 0a 0a 0a 0a 0a 2f 2a 20 44 4f 20 4e 4f 54 20 45 44 49 54 20 54 48 49 53 20 46 49 4c 45 2e 20 20 55 53 45 20 4d 41 49 4e 20 43 53 53 20 46 49 4c 45 20 54 4f 20 4f 56 45 52 52 49 44 45 20 2a 2f 0a 0a 2f 2a 20 44 4f 20 4e 4f 54 20 45 44 49 54 20 54 48 49 53 20 46 49 4c 45 2e 20 20 55 53 45 20 4d 41 49 4e 20 43 53 53 20 46 49 4c 45 20 54 4f 20 4f 56 45 52 52 49 44 45 20 2a 2f 0a 0a 2f 2a 20 44 4f 20 4e 4f 54 20 45 44 49 54 20 54 48 49 53 20 46 49 4c 45 2e 20 20 55 53 45 20 4d 41 49 4e 20 43 53 53 Data Ascii: /* PAGE DEFAULTS // Setting the main body, font, color, and link defaults // DO NOT EDIT THIS FILE. USE MAIN CSS FILE TO OVERRIDE // DO NOT EDIT THIS FILE. USE MAIN CSS FILE TO OVERRIDE // DO NOT EDIT THIS FILE. USE MAIN CSS
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 69 6e 67 2d 62 6f 74 74 6f 6d 3a 32 30 70 78 3b 0a 0a 09 6d 61 72 67 69 6e 3a 31 70 78 3b 0a 09 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 30 3b 0a 7d 0a 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 7b 20 70 61 64 64 69 6e 67 2d 74 6f 70 3a 37 35 70 78 3b 20 77 69 64 74 68 3a 33 30 30 70 78 3b 20 7d 0a 09 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 20 69 6d 67 20 7b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 38 70 78 3b 20 7d 0a 09 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 20 61 2c 20 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 5f 63 6f 6e 74 61 69 6e 65 72 20 61 3a 76 69 73 69 74 65 64 7b 20 63 6f 6c 6f 72 3a 23 39 39 39 39 39 39 3b 20 7d 0a 09 2e 61 63 5f 6c 6f 67 69 6e 5f 62 6f 78 Data Ascii: ing-bottom:20px;margin:1px;margin-bottom:0;}.ac_login_box_container{ padding-top:75px; width:300px; }.ac_login_box_container img { margin-bottom:8px; }.ac_login_box_container a, .ac_login_box_container a:visited{ color:#999999; }.ac_login_box
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 62 6f 72 64 65 72 2d 72 61 64 69 75 73 2d 62 6f 74 74 6f 6d 6c 65 66 74 3a 36 70 78 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 30 20 30 20 36 70 78 20 36 70 78 3b 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 30 20 30 20 36 70 78 20 36 70 78 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 31 70 78 20 31 70 78 20 72 67 62 61 28 32 30 36 2c 20 32 30 36 2c 20 32 30 36 2c 20 30 2e 36 29 3b 20 2d 6d 6f 7a 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 31 70 78 20 31 70 78 20 72 67 62 61 28 32 30 36 2c 20 32 30 36 2c 20 32 30 36 2c 20 30 2e 36 29 3b 20 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 31 70 78 20 31 70 78 20 72 67 62 61 28 32 30 36 2c 20 32 30 36 2c 20 32 30 36 2c 20 30 2e 36 29 7d 0a 0a 2f 2a 20 43 6f 72 65 20 Data Ascii: border-radius-bottomleft:6px; -webkit-border-radius:0 0 6px 6px; border-radius:0 0 6px 6px; -webkit-box-shadow:0 1px 1px rgba(206, 206, 206, 0.6); -moz-box-shadow:0 1px 1px rgba(206, 206, 206, 0.6); box-shadow:0 1px 1px rgba(206, 206, 206, 0.6)}/* Core
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 61 63 5f 61 64 6d 69 6e 5f 73 69 64 65 20 68 32 7b 20 63 6f 6c 6f 72 3a 20 23 37 44 38 46 41 32 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 31 31 70 78 3b 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 6e 6f 72 6d 61 6c 3b 20 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 35 70 78 3b 20 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 33 70 78 3b 20 7d 0a 09 09 23 61 63 5f 61 64 6d 69 6e 5f 73 69 64 65 20 68 31 20 61 2c 20 23 61 63 5f 61 64 6d 69 6e 5f 73 69 64 65 20 68 31 20 61 3a 76 69 73 69 74 65 64 7b 20 62 6f 72 64 65 72 3a 6e 6f 6e 65 3b 20 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 3b 20 6d 61 72 67 69 6e 3a 30 3b 20 70 61 64 64 69 6e 67 3a 30 3b 20 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 3b 20 63 6f 6c 6f 72 Data Ascii: ac_admin_side h2{ color: #7D8FA2; font-size:11px; font-weight:normal; display:block; margin-bottom:5px; padding-bottom:3px; }#ac_admin_side h1 a, #ac_admin_side h1 a:visited{ border:none; display:inline; margin:0; padding:0; text-decoration:none; color
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 20 2e 73 74 61 72 74 75 70 5f 63 6f 6e 74 61 69 6e 65 72 7b 20 62 6f 72 64 65 72 3a 20 32 70 78 20 73 6f 6c 69 64 20 23 45 45 46 33 46 39 20 3b 20 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 35 70 78 3b 20 7d 0a 09 09 23 61 63 5f 61 64 6d 69 6e 5f 63 6f 6e 74 65 6e 74 20 2e 73 74 61 72 74 75 70 5f 63 6f 6e 74 61 69 6e 65 72 20 68 33 7b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 2e 2e 2f 2e 2e 2f 61 63 5f 67 6c 6f 62 61 6c 2f 6d 65 64 69 61 2f 61 63 5f 74 61 62 6c 65 5f 68 65 61 64 65 72 2e 67 69 66 29 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 74 6f 70 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 72 65 70 65 61 74 2d 78 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 44 45 45 37 45 46 3b 20 70 61 64 Data Ascii: .startup_container{ border: 2px solid #EEF3F9 ; margin-bottom:15px; }#ac_admin_content .startup_container h3{ background:url(../../ac_global/media/ac_table_header.gif); background-position:top; background-repeat:repeat-x; background-color:#DEE7EF; pad
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 63 5f 74 61 62 6c 65 5f 68 65 61 64 65 72 2e 67 69 66 29 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 74 6f 70 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 72 65 70 65 61 74 2d 78 3b 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 44 45 45 37 45 46 3b 20 70 61 64 64 69 6e 67 3a 35 70 78 3b 20 63 6f 6c 6f 72 3a 20 23 36 36 36 36 36 36 3b 20 62 6f 72 64 65 72 2d 74 6f 70 3a 31 70 78 20 73 6f 6c 69 64 20 23 44 45 45 37 45 46 3b 20 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 31 70 78 20 73 6f 6c 69 64 20 23 44 30 44 42 45 35 3b 20 62 6f 72 64 65 72 2d 6c 65 66 74 3a 31 70 78 20 73 6f 6c 69 64 20 23 44 45 45 37 45 46 3b 20 7d 0a 09 2e 61 63 5f 74 61 62 6c 65 5f 68 65 61 64 65 72 20 74 64 20 61 2c 20 2e 61 63 5f 74 61 Data Ascii: c_table_header.gif); background-position:top; background-repeat:repeat-x; background-color:#DEE7EF; padding:5px; color: #666666; border-top:1px solid #DEE7EF; border-bottom:1px solid #D0DBE5; border-left:1px solid #DEE7EF; }.ac_table_header td a, .ac_ta
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 61 72 5f 6e 6f 6e 65 20 7b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 75 72 6c 28 2e 2e 2f 2e 2e 2f 61 63 5f 67 6c 6f 62 61 6c 2f 6d 65 64 69 61 2f 61 63 5f 73 74 61 72 5f 6e 6f 6e 65 2e 67 69 66 29 20 6e 6f 2d 72 65 70 65 61 74 20 63 65 6e 74 65 72 3b 20 70 61 64 64 69 6e 67 3a 30 3b 20 62 6f 72 64 65 72 3a 6e 6f 6e 65 3b 20 6d 61 72 67 69 6e 3a 30 3b 20 7d 0a 61 2e 61 63 5f 73 74 61 72 5f 68 61 6c 66 20 7b 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 75 72 6c 28 2e 2e 2f 2e 2e 2f 61 63 5f 67 6c 6f 62 61 6c 2f 6d 65 64 69 61 2f 61 63 5f 73 74 61 72 5f 68 61 6c 66 2e 67 69 66 29 20 6e 6f 2d 72 65 70 65 61 74 20 63 65 6e 74 65 72 3b 20 70 61 64 64 69 6e 67 3a 30 3b 20 62 6f 72 64 65 72 3a 6e 6f 6e 65 3b 20 6d 61 72 67 69 6e 3a 30 3b 20 7d 0a 61 2e 61 63 5f 73 74 61 Data Ascii: ar_none { background: url(../../ac_global/media/ac_star_none.gif) no-repeat center; padding:0; border:none; margin:0; }a.ac_star_half { background: url(../../ac_global/media/ac_star_half.gif) no-repeat center; padding:0; border:none; margin:0; }a.ac_sta
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 3a 33 70 78 3b 0a 09 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 2e 2e 2f 2e 2e 2f 61 63 5f 67 6c 6f 62 61 6c 2f 6d 65 64 69 61 2f 64 72 6f 70 64 6f 77 6e 5f 64 6f 77 6e 5f 61 72 72 6f 77 2e 67 69 66 29 3b 0a 09 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 72 69 67 68 74 3b 0a 09 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 3b 0a 0a 7d 0a 0a 2e 66 69 65 6c 64 5f 64 72 6f 70 64 6f 77 6e 5f 76 61 6c 75 65 7b 0a 09 62 6f 72 64 65 72 2d 6c 65 66 74 3a 31 70 78 20 73 6f 6c 69 64 20 23 39 39 39 39 39 39 3b 0a 09 62 6f 72 64 65 72 2d 72 69 67 68 74 3a 31 70 78 20 73 6f 6c 69 64 20 23 36 36 36 36 36 36 3b 0a 09 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 31 70 78 20 73 6f 6c 69 64 20 23 36 36 36 36 36 36 3b 0a 09 Data Ascii: :3px;background:url(../../ac_global/media/dropdown_down_arrow.gif);background-position:right;background-repeat:no-repeat;}.field_dropdown_value{border-left:1px solid #999999;border-right:1px solid #666666;border-bottom:1px solid #666666;
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 30 70 78 3b 0a 09 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 30 3b 0a 7d 0a 2e 74 6f 70 5f 6e 61 76 5f 62 75 74 74 6f 6e 2c 0a 2e 62 6f 74 74 6f 6d 5f 6e 61 76 5f 62 75 74 74 6f 6e 20 7b 0a 09 62 6f 72 64 65 72 3a 20 31 70 78 20 73 6f 6c 69 64 20 62 6c 61 63 6b 3b 0a 09 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 77 68 69 74 65 3b 0a 09 62 6f 72 64 65 72 2d 6c 65 66 74 3a 20 31 70 78 20 73 6f 6c 69 64 20 77 68 69 74 65 3b 0a 09 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 62 6f 6c 64 3b 0a 7d 0a 0a 0a 0a 0a 0a 2e 61 63 5f 69 63 6f 6e 5f 73 65 6c 65 63 74 20 7b 20 77 69 64 74 68 3a 20 34 31 30 70 78 3b 20 68 65 69 67 68 74 3a 20 36 30 70 78 3b 20 6f 76 65 72 66 6c 6f 77 3a 20 61 75 74 6f 3b 20 70 61 64 64 69 6e 67 3a 20 32 70 78 3b 20 62 6f Data Ascii: 0px;margin-right: 0;}.top_nav_button,.bottom_nav_button {border: 1px solid black;border-top: 1px solid white;border-left: 1px solid white;font-weight: bold;}.ac_icon_select { width: 410px; height: 60px; overflow: auto; padding: 2px; bo
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 69 64 3a 44 58 49 6d 61 67 65 54 72 61 6e 73 66 6f 72 6d 2e 4d 69 63 72 6f 73 6f 66 74 2e 53 68 61 64 6f 77 28 63 6f 6c 6f 72 3d 67 72 61 79 2c 64 69 72 65 63 74 69 6f 6e 3d 31 33 35 29 3b 0a 7d 0a 0a 23 64 68 74 6d 6c 70 6f 69 6e 74 65 72 7b 0a 09 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 0a 09 6c 65 66 74 3a 20 2d 33 30 30 70 78 3b 0a 09 7a 2d 69 6e 64 65 78 3a 20 31 30 31 3b 0a 09 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 6e 3b 0a 7d 0a 0a 0a 0a 2e 61 63 5f 70 61 67 69 6e 61 74 6f 72 20 7b 0a 09 66 6f 6e 74 2d 73 69 7a 65 3a 31 30 70 78 3b 0a 09 6d 61 72 67 69 6e 2d 74 6f 70 3a 35 70 78 3b 0a 09 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 43 43 43 43 43 43 3b 0a 09 63 6f 6c 6f 72 3a 23 36 36 36 36 36 36 3b 0a 7d 0a 0a 2e Data Ascii: id:DXImageTransform.Microsoft.Shadow(color=gray,direction=135);}#dhtmlpointer{position:absolute;left: -300px;z-index: 101;visibility: hidden;}.ac_paginator {font-size:10px;margin-top:5px;border:1px solid #CCCCCC;color:#666666;}.

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:24 UTC	630	OUT	GET /Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png HTTP/1.1 Host: nc-nielsen.dk Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://ncn.activehosted.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:25 UTC	256	IN	HTTP/1.1 200 OK Cache-Control: public,max-age=10368000 Content-Type: image/png Last-Modified: Wed, 01 Jun 2022 12:56:44 GMT Accept-Ranges: bytes ETag: "5771edbb775d81:0" Date: Tue, 14 Jan 2025 13:18:25 GMT Connection: close Content-Length: 5742
2025-01-14 13:18:25 UTC	5742	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 03 e8 00 00 00 c2 08 03 00 00 00 ed a2 18 1b 00 00 00 19 74 45 58 74 53 6f 66 74 77 61 72 65 00 41 64 6f 62 65 20 49 6d 61 67 65 52 65 61 64 79 71 c9 65 3c 00 00 00 33 50 4c 54 45 c5 c6 c8 8b 8e 90 52 56 59 f1 f1 f1 26 2b 30 d4 d4 d5 a8 aa ac 6f 72 75 e2 e3 e3 35 39 3e 43 48 4c b7 b8 ba 7d 80 83 9a 9c 9e 60 64 67 18 1d 22 ff ff ff cd 4d 84 62 00 00 15 d1 49 44 41 54 78 da ec 9d d9 96 dc 2a 0c 45 99 6c e3 b1 fc ff 5f 7b ab 3b 37 43 a7 0b 90 84 f0 50 39 e7 21 2b 0f 89 4d 09 6d 21 c4 60 b3 43 10 f4 f6 32 30 01 04 01 74 08 82 00 3a 04 41 00 1d 82 20 80 0e 41 10 40 87 20 08 a0 43 10 04 d0 21 08 02 e8 10 04 d0 21 08 02 e8 10 04 01 74 08 82 00 3a 44 55 e7 5e a8 bb 76 9b 97 57 6d 46 57 02 74 28 d3 39 8f 17 ba Data Ascii: PNGIHDRtEXtSoftwareAdobe ImageReadyqe<3PLTERVY&+0oru59>CHL}`dg"MbIDATx*El_{;7CP9!+Mm!`C20t:A A@ C!!t:DU^vWmFWt(9

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	889	OUT	GET /node_modules/@activecampaign/camp-core-css/dist/build.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	450	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:25 GMT Content-Type: text/css; charset=utf-8 Content-Length: 1856241 Connection: close etag: "345603316" last-modified: Mon, 13 Jan 2025 21:19:38 GMT CF-Cache-Status: MISS Expires: Tue, 14 Jan 2025 17:18:25 GMT Cache-Control: public, max-age=14400 Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de96f88e04268-EWR
2025-01-14 13:18:25 UTC	919	IN	Data Raw: 3a 72 6f 6f 74 7b 2d 2d 62 2d 30 3a 30 3b 2d 2d 62 2d 31 30 30 3a 31 70 78 3b 2d 2d 62 2d 32 30 30 3a 32 70 78 3b 2d 2d 62 2d 33 30 30 3a 34 70 78 3b 2d 2d 62 2d 6e 6f 6e 65 3a 6e 6f 6e 65 3b 2d 2d 62 2d 64 61 73 68 65 64 3a 64 61 73 68 65 64 3b 2d 2d 62 2d 73 6f 6c 69 64 3a 73 6f 6c 69 64 3b 2d 2d 72 61 64 69 69 2d 30 3a 30 3b 2d 2d 72 61 64 69 69 2d 31 30 30 3a 34 70 78 3b 2d 2d 72 61 64 69 69 2d 32 30 30 3a 38 70 78 3b 2d 2d 72 61 64 69 69 2d 72 6f 75 6e 64 65 64 3a 39 39 72 65 6d 3b 2d 2d 72 61 64 69 69 2d 63 69 72 63 6c 65 3a 31 30 30 25 3b 2d 2d 73 68 61 64 6f 77 2d 35 30 3a 30 20 31 70 78 20 34 70 78 20 72 67 62 61 28 33 31 2c 33 33 2c 34 31 2c 30 2e 33 29 3b 2d 2d 73 68 61 64 6f 77 2d 31 30 30 3a 30 20 34 70 78 20 38 70 78 20 2d 32 70 78 20 72 67 Data Ascii: :root{--b-0:0;--b-100:1px;--b-200:2px;--b-300:4px;--b-none:none;--b-dashed:dashed;--b-solid:solid;--radii-0:0;--radii-100:4px;--radii-200:8px;--radii-rounded:99rem;--radii-circle:100%;--shadow-50:0 1px 4px rgba(31,33,41,0.3);--shadow-100:0 4px 8px -2px rg
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 30 3a 23 31 39 63 63 61 33 3b 2d 2d 6d 69 6e 74 2d 36 30 30 3a 23 31 31 38 36 36 66 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 61 6e 64 72 6f 69 64 3a 23 33 64 64 63 38 34 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 61 70 70 6c 65 3a 23 31 66 32 31 32 39 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 66 61 63 65 62 6f 6f 6b 3a 23 31 38 37 37 66 32 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 69 6e 73 74 61 67 72 61 6d 3a 23 31 66 32 31 32 39 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 6c 69 6e 6b 65 64 2d 69 6e 3a 23 32 38 36 37 62 32 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 74 77 69 74 74 65 72 3a 23 31 64 61 31 66 32 3b 2d 2d 6e 65 74 77 6f 72 6b 2d 79 6f 75 2d 74 75 62 65 3a 72 65 64 3b 2d 2d 6f 63 65 61 6e 2d 31 30 30 3a 23 66 34 66 37 66 66 3b 2d 2d 6f 63 65 61 6e 2d 31 35 30 3a 23 65 61 66 30 66 66 3b 2d 2d 6f 63 Data Ascii: 0:#19cca3;--mint-600:#11866f;--network-android:#3ddc84;--network-apple:#1f2129;--network-facebook:#1877f2;--network-instagram:#1f2129;--network-linked-in:#2867b2;--network-twitter:#1da1f2;--network-you-tube:red;--ocean-100:#f4f7ff;--ocean-150:#eaf0ff;--oc
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 69 6e 73 22 2c 22 41 76 65 6e 69 72 22 2c 22 41 76 65 6e 69 72 20 4e 65 78 74 22 2c 22 46 75 74 75 72 61 22 2c 68 65 6c 76 65 74 69 63 61 2c 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 2d 2d 66 66 2d 73 74 61 6e 64 61 72 64 3a 22 49 42 4d 20 50 6c 65 78 20 53 61 6e 73 22 2c 22 46 72 61 6e 6b 6c 69 6e 20 47 6f 74 68 69 63 22 2c 22 49 54 43 20 46 72 61 6e 6b 6c 69 6e 20 47 6f 74 68 69 63 22 2c 68 65 6c 76 65 74 69 63 61 2c 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 2d 2d 66 66 2d 6d 6f 6e 6f 73 70 61 63 65 3a 22 49 42 4d 20 50 6c 65 78 20 4d 6f 6e 6f 22 2c 6d 6f 6e 6f 73 70 61 63 65 3b 2d 2d 66 73 2d 31 30 30 3a 31 32 70 78 3b 2d 2d 66 73 2d 32 30 30 3a 31 34 70 78 3b 2d 2d 66 73 2d 33 30 30 3a 31 36 70 78 3b 2d 2d 66 73 2d 34 30 30 3a 31 38 Data Ascii: ins","Avenir","Avenir Next","Futura",helvetica,arial,sans-serif;--ff-standard:"IBM Plex Sans","Franklin Gothic","ITC Franklin Gothic",helvetica,arial,sans-serif;--ff-monospace:"IBM Plex Mono",monospace;--fs-100:12px;--fs-200:14px;--fs-300:16px;--fs-400:18
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 3b 77 69 64 74 68 3a 61 75 74 6f 3b 68 65 69 67 68 74 3a 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 30 3b 6d 61 72 67 69 6e 3a 30 3b 6f 76 65 72 66 6c 6f 77 3a 76 69 73 69 62 6c 65 3b 63 6c 69 70 3a 61 75 74 6f 3b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 72 6d 61 6c 7d 2e 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 2d 6e 6f 6e 65 7b 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 3a 6e 6f 6e 65 7d 2e 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 2d 61 75 74 6f 7b 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 3a 61 75 74 6f 7d 2e 76 69 73 69 62 6c 65 7b 76 69 73 69 62 69 6c 69 74 79 3a 76 69 73 69 62 6c 65 7d 2e 69 6e 76 69 73 69 62 6c 65 7b 76 69 73 69 62 69 6c 69 74 79 3a 68 69 64 64 65 6e 7d 2e 73 74 61 74 69 63 7b 70 6f 73 69 74 69 6f 6e 3a 73 74 61 74 69 63 7d 2e 66 69 Data Ascii: ;width:auto;height:auto;padding:0;margin:0;overflow:visible;clip:auto;white-space:normal}.pointer-events-none{pointer-events:none}.pointer-events-auto{pointer-events:auto}.visible{visibility:visible}.invisible{visibility:hidden}.static{position:static}.fi
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 72 28 2d 2d 73 70 2d 39 30 30 2c 33 32 70 78 29 3b 6c 65 66 74 3a 76 61 72 28 2d 2d 73 70 2d 39 30 30 2c 33 32 70 78 29 7d 2e 69 6e 73 65 74 2d 31 30 30 30 7b 74 6f 70 3a 76 61 72 28 2d 2d 73 70 2d 31 30 30 30 2c 34 38 70 78 29 3b 72 69 67 68 74 3a 76 61 72 28 2d 2d 73 70 2d 31 30 30 30 2c 34 38 70 78 29 3b 62 6f 74 74 6f 6d 3a 76 61 72 28 2d 2d 73 70 2d 31 30 30 30 2c 34 38 70 78 29 3b 6c 65 66 74 3a 76 61 72 28 2d 2d 73 70 2d 31 30 30 30 2c 34 38 70 78 29 7d 2e 69 6e 73 65 74 2d 31 31 30 30 7b 74 6f 70 3a 76 61 72 28 2d 2d 73 70 2d 31 31 30 30 2c 36 34 70 78 29 3b 72 69 67 68 74 3a 76 61 72 28 2d 2d 73 70 2d 31 31 30 30 2c 36 34 70 78 29 3b 62 6f 74 74 6f 6d 3a 76 61 72 28 2d 2d 73 70 2d 31 31 30 30 2c 36 34 70 78 29 3b 6c 65 66 74 3a 76 61 72 28 2d 2d Data Ascii: r(--sp-900,32px);left:var(--sp-900,32px)}.inset-1000{top:var(--sp-1000,48px);right:var(--sp-1000,48px);bottom:var(--sp-1000,48px);left:var(--sp-1000,48px)}.inset-1100{top:var(--sp-1100,64px);right:var(--sp-1100,64px);bottom:var(--sp-1100,64px);left:var(--
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 31 29 3b 6c 65 66 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 33 30 30 2c 20 38 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 34 30 30 7b 74 6f 70 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 34 30 30 2c 20 31 32 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 34 30 30 2c 20 31 32 70 78 29 2a 2d 31 29 3b 62 6f 74 74 6f 6d 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 34 30 30 2c 20 31 32 70 78 29 2a 2d 31 29 3b 6c 65 66 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 34 30 30 2c 20 31 32 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 35 30 30 7b 74 6f 70 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 35 30 30 2c 20 31 36 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 35 30 30 2c Data Ascii: 1);left:calc(var(--sp-300, 8px)-1)}.-inset-400{top:calc(var(--sp-400, 12px)-1);right:calc(var(--sp-400, 12px)-1);bottom:calc(var(--sp-400, 12px)-1);left:calc(var(--sp-400, 12px)-1)}.-inset-500{top:calc(var(--sp-500, 16px)-1);right:calc(var(--sp-500,
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 31 32 30 30 2c 20 38 30 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 31 33 30 30 7b 74 6f 70 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 31 33 30 30 2c 20 31 32 38 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 31 33 30 30 2c 20 31 32 38 70 78 29 2a 2d 31 29 3b 62 6f 74 74 6f 6d 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 31 33 30 30 2c 20 31 32 38 70 78 29 2a 2d 31 29 3b 6c 65 66 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 31 33 30 30 2c 20 31 32 38 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 31 34 30 30 7b 74 6f 70 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 31 34 30 30 2c 20 32 30 30 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d Data Ascii: t:calc(var(--sp-1200, 80px)-1)}.-inset-1300{top:calc(var(--sp-1300, 128px)-1);right:calc(var(--sp-1300, 128px)-1);bottom:calc(var(--sp-1300, 128px)-1);left:calc(var(--sp-1300, 128px)-1)}.-inset-1400{top:calc(var(--sp-1400, 200px)-1);right:calc(var(-
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 6c 7b 74 6f 70 3a 2d 31 30 30 25 3b 72 69 67 68 74 3a 2d 31 30 30 25 3b 62 6f 74 74 6f 6d 3a 2d 31 30 30 25 3b 6c 65 66 74 3a 2d 31 30 30 25 7d 2e 69 6e 73 65 74 2d 78 2d 30 7b 6c 65 66 74 3a 76 61 72 28 2d 2d 73 70 2d 30 2c 30 29 3b 72 69 67 68 74 3a 76 61 72 28 2d 2d 73 70 2d 30 2c 30 29 7d 2e 69 6e 73 65 74 2d 78 2d 31 30 30 7b 6c 65 66 74 3a 76 61 72 28 2d 2d 73 70 2d 31 30 30 2c 32 70 78 29 3b 72 69 67 68 74 3a 76 61 72 28 2d 2d 73 70 2d 31 30 30 2c 32 70 78 29 7d 2e 69 6e 73 65 74 2d 78 2d 32 30 30 7b 6c 65 66 74 3a 76 61 72 28 2d 2d 73 70 2d 32 30 30 2c 34 70 78 29 3b 72 69 67 68 74 3a 76 61 72 28 2d 2d 73 70 2d 32 30 30 2c 34 70 78 29 7d 2e 69 6e 73 65 74 2d 78 2d 33 30 30 7b 6c 65 66 74 3a 76 61 72 28 2d 2d 73 70 2d 33 30 30 2c 38 70 78 29 3b 72 Data Ascii: l{top:-100%;right:-100%;bottom:-100%;left:-100%}.inset-x-0{left:var(--sp-0,0);right:var(--sp-0,0)}.inset-x-100{left:var(--sp-100,2px);right:var(--sp-100,2px)}.inset-x-200{left:var(--sp-200,4px);right:var(--sp-200,4px)}.inset-x-300{left:var(--sp-300,8px);r
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 76 61 72 28 2d 2d 73 70 2d 33 30 30 2c 20 38 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 33 30 30 2c 20 38 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 78 2d 34 30 30 7b 6c 65 66 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 34 30 30 2c 20 31 32 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 34 30 30 2c 20 31 32 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 78 2d 35 30 30 7b 6c 65 66 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 35 30 30 2c 20 31 36 70 78 29 2a 2d 31 29 3b 72 69 67 68 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 2d 35 30 30 2c 20 31 36 70 78 29 2a 2d 31 29 7d 2e 2d 69 6e 73 65 74 2d 78 2d 36 30 30 7b 6c 65 66 74 3a 63 61 6c 63 28 76 61 72 28 2d 2d 73 70 Data Ascii: var(--sp-300, 8px)-1);right:calc(var(--sp-300, 8px)-1)}.-inset-x-400{left:calc(var(--sp-400, 12px)-1);right:calc(var(--sp-400, 12px)-1)}.-inset-x-500{left:calc(var(--sp-500, 16px)-1);right:calc(var(--sp-500, 16px)-1)}.-inset-x-600{left:calc(var(--sp
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 30 25 7d 2e 2d 69 6e 73 65 74 2d 78 2d 31 5c 2f 32 7b 6c 65 66 74 3a 2d 35 30 25 3b 72 69 67 68 74 3a 2d 35 30 25 7d 2e 2d 69 6e 73 65 74 2d 78 2d 31 5c 2f 33 7b 6c 65 66 74 3a 2d 33 33 2e 33 33 33 33 33 33 25 3b 72 69 67 68 74 3a 2d 33 33 2e 33 33 33 33 33 33 25 7d 2e 2d 69 6e 73 65 74 2d 78 2d 32 5c 2f 33 7b 6c 65 66 74 3a 2d 36 36 2e 36 36 36 36 36 37 25 3b 72 69 67 68 74 3a 2d 36 36 2e 36 36 36 36 36 37 25 7d 2e 2d 69 6e 73 65 74 2d 78 2d 31 5c 2f 34 7b 6c 65 66 74 3a 2d 32 35 25 3b 72 69 67 68 74 3a 2d 32 35 25 7d 2e 2d 69 6e 73 65 74 2d 78 2d 32 5c 2f 34 7b 6c 65 66 74 3a 2d 35 30 25 3b 72 69 67 68 74 3a 2d 35 30 25 7d 2e 2d 69 6e 73 65 74 2d 78 2d 33 5c 2f 34 7b 6c 65 66 74 3a 2d 37 35 25 3b 72 69 67 68 74 3a 2d 37 35 25 7d 2e 2d 69 6e 73 65 74 2d Data Ascii: 0%}.-inset-x-1\/2{left:-50%;right:-50%}.-inset-x-1\/3{left:-33.333333%;right:-33.333333%}.-inset-x-2\/3{left:-66.666667%;right:-66.666667%}.-inset-x-1\/4{left:-25%;right:-25%}.-inset-x-2\/4{left:-50%;right:-50%}.-inset-x-3\/4{left:-75%;right:-75%}.-inset-

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	858	OUT	GET /admin/css/css_camp.min.css?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	372	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:25 GMT Content-Type: text/css; charset=utf-8 Content-Length: 120803 Connection: close etag: "2397369548" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de9700ae25e67-EWR
2025-01-14 13:18:25 UTC	997	IN	Data Raw: 2f 2a 21 20 6e 6f 72 6d 61 6c 69 7a 65 2e 63 73 73 20 76 38 2e 30 2e 30 20 7c 20 4d 49 54 20 4c 69 63 65 6e 73 65 20 7c 20 67 69 74 68 75 62 2e 63 6f 6d 2f 6e 65 63 6f 6c 61 73 2f 6e 6f 72 6d 61 6c 69 7a 65 2e 63 73 73 20 2a 2f 68 74 6d 6c 7b 2d 77 65 62 6b 69 74 2d 74 65 78 74 2d 73 69 7a 65 2d 61 64 6a 75 73 74 3a 31 30 30 25 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 31 35 7d 68 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 65 6d 3b 6d 61 72 67 69 6e 3a 2e 36 37 65 6d 20 30 7d 68 72 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 69 7a 69 6e 67 3a 63 6f 6e 74 65 6e 74 2d 62 6f 78 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 63 6f 6e 74 65 6e 74 2d 62 6f 78 3b 68 65 69 67 68 74 3a 30 3b 6f 76 65 72 66 6c 6f 77 3a 76 69 73 69 62 6c 65 7d 70 72 65 7b 66 6f 6e 74 2d 66 61 6d Data Ascii: /! normalize.css v8.0.0 \| MIT License \| github.com/necolas/normalize.css /html{-webkit-text-size-adjust:100%;line-height:1.15}h1{font-size:2em;margin:.67em 0}hr{-webkit-box-sizing:content-box;box-sizing:content-box;height:0;overflow:visible}pre{font-fam
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 79 70 65 3d 73 75 62 6d 69 74 5d 3a 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 2d 69 6e 6e 65 72 2c 62 75 74 74 6f 6e 3a 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 2d 69 6e 6e 65 72 7b 62 6f 72 64 65 72 2d 73 74 79 6c 65 3a 6e 6f 6e 65 3b 70 61 64 64 69 6e 67 3a 30 7d 5b 74 79 70 65 3d 62 75 74 74 6f 6e 5d 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 72 69 6e 67 2c 5b 74 79 70 65 3d 72 65 73 65 74 5d 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 72 69 6e 67 2c 5b 74 79 70 65 3d 73 75 62 6d 69 74 5d 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 72 69 6e 67 2c 62 75 74 74 6f 6e 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 72 69 6e 67 7b 6f 75 74 6c 69 6e 65 3a 2e 30 36 32 35 72 65 6d 20 64 6f 74 74 65 64 20 42 75 74 74 6f 6e 54 65 78 74 7d 66 69 65 6c 64 73 65 74 7b 70 61 64 64 69 6e 67 3a 2e 33 35 65 6d 20 2e 37 35 65 6d 20 Data Ascii: ype=submit]::-moz-focus-inner,button::-moz-focus-inner{border-style:none;padding:0}[type=button]:-moz-focusring,[type=reset]:-moz-focusring,[type=submit]:-moz-focusring,button:-moz-focusring{outline:.0625rem dotted ButtonText}fieldset{padding:.35em .75em
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 42 4d 20 50 6c 65 78 20 53 61 6e 73 2c 46 72 61 6e 6b 6c 69 6e 20 47 6f 74 68 69 63 2c 49 54 43 20 46 72 61 6e 6b 6c 69 6e 20 47 6f 74 68 69 63 2c 68 65 6c 76 65 74 69 63 61 2c 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 2e 31 32 35 72 65 6d 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 37 35 72 65 6d 3b 6d 61 72 67 69 6e 3a 30 7d 3a 3a 2d 6d 6f 7a 2d 73 65 6c 65 63 74 69 6f 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 32 32 44 32 3b 63 6f 6c 6f 72 3a 23 66 66 66 7d 3a 3a 73 65 6c 65 63 74 69 6f 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 32 32 44 32 3b 63 6f 6c 6f 72 3a 23 66 66 66 7d 69 6d 67 7b 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 25 7d 2e 62 67 2d 63 65 6e 74 65 72 7b Data Ascii: BM Plex Sans,Franklin Gothic,ITC Franklin Gothic,helvetica,arial,sans-serif;font-size:1.125rem;line-height:1.75rem;margin:0}::-moz-selection{background-color:#0022D2;color:#fff}::selection{background-color:#0022D2;color:#fff}img{max-width:100%}.bg-center{
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 7d 2e 6c 2d 2d 62 67 2d 74 6f 70 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 74 6f 70 7d 2e 6c 2d 2d 62 67 2d 72 69 67 68 74 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 31 30 30 25 7d 2e 6c 2d 2d 62 67 2d 62 6f 74 74 6f 6d 2c 2e 6c 2d 2d 62 67 2d 72 69 67 68 74 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 7d 2e 6c 2d 2d 62 67 2d 62 6f 74 74 6f 6d 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 62 6f 74 74 6f 6d 7d 2e 6c 2d 2d 62 67 2d 6c 65 66 74 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 30 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 7d 7d 40 6d 65 64 69 61 20 73 Data Ascii: peat:no-repeat}.l--bg-top{background-position:top}.l--bg-right{background-position:100%}.l--bg-bottom,.l--bg-right{background-repeat:no-repeat}.l--bg-bottom{background-position:bottom}.l--bg-left{background-position:0;background-repeat:no-repeat}}@media s
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 2d 72 61 64 69 75 73 3a 30 7d 2e 62 72 2d 31 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 2e 32 35 72 65 6d 7d 2e 62 72 2d 74 6f 70 2d 31 7b 62 6f 72 64 65 72 2d 74 6f 70 2d 6c 65 66 74 2d 72 61 64 69 75 73 3a 2e 32 35 72 65 6d 7d 2e 62 72 2d 72 69 67 68 74 2d 31 2c 2e 62 72 2d 74 6f 70 2d 31 7b 62 6f 72 64 65 72 2d 74 6f 70 2d 72 69 67 68 74 2d 72 61 64 69 75 73 3a 2e 32 35 72 65 6d 7d 2e 62 72 2d 62 6f 74 74 6f 6d 2d 31 2c 2e 62 72 2d 72 69 67 68 74 2d 31 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 2d 72 69 67 68 74 2d 72 61 64 69 75 73 3a 2e 32 35 72 65 6d 7d 2e 62 72 2d 62 6f 74 74 6f 6d 2d 31 2c 2e 62 72 2d 6c 65 66 74 2d 31 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 2d 6c 65 66 74 2d 72 61 64 69 75 73 3a 2e 32 35 72 65 6d 7d 2e 62 72 2d 6c 65 66 74 2d Data Ascii: -radius:0}.br-1{border-radius:.25rem}.br-top-1{border-top-left-radius:.25rem}.br-right-1,.br-top-1{border-top-right-radius:.25rem}.br-bottom-1,.br-right-1{border-bottom-right-radius:.25rem}.br-bottom-1,.br-left-1{border-bottom-left-radius:.25rem}.br-left-
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 68 74 2d 72 61 64 69 75 73 3a 36 32 34 39 39 39 39 39 2e 39 33 37 35 72 65 6d 7d 2e 62 72 2d 62 6f 74 74 6f 6d 2d 70 69 6c 6c 2c 2e 62 72 2d 6c 65 66 74 2d 70 69 6c 6c 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 2d 6c 65 66 74 2d 72 61 64 69 75 73 3a 36 32 34 39 39 39 39 39 2e 39 33 37 35 72 65 6d 7d 2e 62 72 2d 6c 65 66 74 2d 70 69 6c 6c 7b 62 6f 72 64 65 72 2d 74 6f 70 2d 6c 65 66 74 2d 72 61 64 69 75 73 3a 36 32 34 39 39 39 39 39 2e 39 33 37 35 72 65 6d 7d 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 69 6e 2d 77 69 64 74 68 3a 33 30 72 65 6d 29 7b 2e 73 2d 2d 62 72 2d 30 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 30 7d 2e 73 2d 2d 62 72 2d 31 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 2e 32 35 72 65 6d 7d 2e 73 2d 2d 62 72 2d 32 7b 62 Data Ascii: ht-radius:62499999.9375rem}.br-bottom-pill,.br-left-pill{border-bottom-left-radius:62499999.9375rem}.br-left-pill{border-top-left-radius:62499999.9375rem}@media screen and (min-width:30rem){.s--br-0{border-radius:0}.s--br-1{border-radius:.25rem}.s--br-2{b
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 72 64 65 72 2d 72 69 67 68 74 2d 73 74 79 6c 65 3a 73 6f 6c 69 64 7d 2e 73 2d 2d 62 62 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 2d 73 74 79 6c 65 3a 73 6f 6c 69 64 7d 2e 73 2d 2d 62 6c 7b 62 6f 72 64 65 72 2d 6c 65 66 74 2d 73 74 79 6c 65 3a 73 6f 6c 69 64 7d 7d 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 69 6e 2d 77 69 64 74 68 3a 34 35 72 65 6d 29 7b 2e 6d 2d 2d 62 73 2d 6e 6f 6e 65 7b 62 6f 72 64 65 72 2d 73 74 79 6c 65 3a 6e 6f 6e 65 7d 2e 6d 2d 2d 62 73 2d 73 6f 6c 69 64 7b 62 6f 72 64 65 72 2d 73 74 79 6c 65 3a 73 6f 6c 69 64 7d 2e 6d 2d 2d 62 74 7b 62 6f 72 64 65 72 2d 74 6f 70 2d 73 74 79 6c 65 3a 73 6f 6c 69 64 7d 2e 6d 2d 2d 62 72 7b 62 6f 72 64 65 72 2d 72 69 67 68 74 2d 73 74 79 6c 65 3a 73 6f 6c 69 64 7d 2e 6d 2d 2d 62 62 7b Data Ascii: rder-right-style:solid}.s--bb{border-bottom-style:solid}.s--bl{border-left-style:solid}}@media screen and (min-width:45rem){.m--bs-none{border-style:none}.m--bs-solid{border-style:solid}.m--bt{border-top-style:solid}.m--br{border-right-style:solid}.m--bb{
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 2e 6a 73 2d 65 6e 64 7b 6a 75 73 74 69 66 79 2d 73 65 6c 66 3a 65 6e 64 7d 2e 6a 73 2d 63 65 6e 74 65 72 7b 6a 75 73 74 69 66 79 2d 73 65 6c 66 3a 63 65 6e 74 65 72 7d 2e 6a 73 2d 73 74 72 65 74 63 68 7b 6a 75 73 74 69 66 79 2d 73 65 6c 66 3a 73 74 72 65 74 63 68 7d 2e 6a 63 2d 73 74 61 72 74 7b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 73 74 61 72 74 7d 2e 6a 63 2d 65 6e 64 7b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 65 6e 64 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 65 6e 64 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 65 6e 64 7d 2e 6a 63 2d 66 6c 65 78 2d 73 74 61 72 74 7b 2d 6d 73 2d 66 6c 65 78 2d Data Ascii: .js-end{justify-self:end}.js-center{justify-self:center}.js-stretch{justify-self:stretch}.jc-start{-ms-flex-pack:start;-webkit-box-pack:start;justify-content:start}.jc-end{-ms-flex-pack:end;-webkit-box-pack:end;justify-content:end}.jc-flex-start{-ms-flex-
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 74 61 72 74 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 73 74 61 72 74 7d 2e 61 69 2d 65 6e 64 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 65 6e 64 7d 2e 61 69 2d 66 6c 65 78 2d 73 74 61 72 74 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 7d 2e 61 69 2d 66 6c 65 78 2d 65 6e 64 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 61 6c 69 67 6e 2d Data Ascii: tart;-webkit-box-align:start;align-items:start}.ai-end{-ms-flex-align:end;-webkit-box-align:end;align-items:end}.ai-flex-start{-ms-flex-align:start;-webkit-box-align:start;align-items:flex-start}.ai-flex-end{-ms-flex-align:end;-webkit-box-align:end;align-
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 61 63 6b 3a 65 6e 64 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 65 6e 64 7d 2e 73 2d 2d 6a 63 2d 66 6c 65 78 2d 73 74 61 72 74 7b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 66 6c 65 78 2d 73 74 61 72 74 7d 2e 73 2d 2d 6a 63 2d 66 6c 65 78 2d 65 6e 64 7b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 65 6e 64 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 65 6e 64 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 66 6c 65 78 2d 65 6e 64 7d 2e 73 2d 2d 6a 63 2d 63 65 6e 74 65 72 7b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 63 65 6e 74 65 72 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 63 65 6e 74 65 72 3b Data Ascii: ack:end;justify-content:end}.s--jc-flex-start{-ms-flex-pack:start;-webkit-box-pack:start;justify-content:flex-start}.s--jc-flex-end{-ms-flex-pack:end;-webkit-box-pack:end;justify-content:flex-end}.s--jc-center{-ms-flex-pack:center;-webkit-box-pack:center;

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	828	OUT	GET /admin/js/jq/csrf_protection.js HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	378	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:25 GMT Content-Type: application/javascript Content-Length: 4364 Connection: close etag: "820004254" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: HIT Age: 7062 Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de9703dfaf5fa-EWR
2025-01-14 13:18:25 UTC	991	IN	Data Raw: 2f 2a 2a 0a 20 2a 20 4d 6f 6e 6b 65 79 20 70 61 74 63 68 20 6a 51 75 65 72 79 20 73 6f 20 74 68 61 74 20 66 6f 72 20 65 61 63 68 20 41 4a 41 58 20 72 65 71 75 65 73 74 2c 20 69 74 20 67 72 61 62 73 20 74 68 65 20 43 53 52 46 20 74 6f 6b 65 6e 20 0a 20 2a 20 64 69 72 65 63 74 6c 79 20 66 72 6f 6d 20 74 68 65 20 63 6f 6f 6b 69 65 20 61 6e 64 20 73 65 74 73 20 69 74 20 61 73 20 61 20 68 65 61 64 65 72 2e 20 54 68 69 73 20 77 61 79 2c 20 69 74 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 0a 20 2a 20 73 65 6e 64 20 74 68 65 20 6e 65 77 65 73 74 20 74 6f 6b 65 6e 2e 0a 20 2a 2f 0a 28 66 75 6e 63 74 69 6f 6e 28 61 6c 6c 54 68 65 4a 51 75 65 72 69 65 73 29 20 7b 0a 0a 09 66 75 6e 63 74 69 6f 6e 20 76 61 6c 69 64 61 74 65 55 72 6c 28 75 72 6c 29 20 7b 0a 09 09 69 66 20 Data Ascii: /** * Monkey patch jQuery so that for each AJAX request, it grabs the CSRF token * directly from the cookie and sets it as a header. This way, it will always * send the newest token. */(function(allTheJQueries) {function validateUrl(url) {if
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 3d 3d 3d 20 27 6f 62 6a 65 63 74 27 20 3f 20 6f 70 74 69 6f 6e 73 2e 68 65 61 64 65 72 73 20 3a 20 7b 7d 3b 0a 09 09 6f 70 74 69 6f 6e 73 2e 68 65 61 64 65 72 73 5b 63 73 72 66 52 65 73 70 6f 6e 73 65 48 65 61 64 65 72 4e 61 6d 65 5d 20 3d 20 67 65 74 43 53 52 46 54 6f 6b 65 6e 28 29 3b 0a 09 7d 0a 0a 09 2f 2a 2a 0a 09 20 2a 20 4d 6f 64 69 66 79 20 74 68 65 20 67 69 76 65 6e 20 76 65 72 73 69 6f 6e 20 6f 66 20 6a 71 75 65 72 79 0a 09 20 2a 2f 0a 09 66 75 6e 63 74 69 6f 6e 20 6d 6f 64 69 66 79 50 72 65 66 69 6c 74 65 72 28 6a 51 75 65 72 79 29 20 7b 0a 09 09 69 66 20 28 74 79 70 65 6f 66 20 6a 51 75 65 72 79 20 3d 3d 3d 20 22 75 6e 64 65 66 69 6e 65 64 22 7c 7c 0a 09 09 09 74 79 70 65 6f 66 20 6a 51 75 65 72 79 2e 61 6a 61 78 50 72 65 66 69 6c 74 65 72 20 Data Ascii: === 'object' ? options.headers : {};options.headers[csrfResponseHeaderName] = getCSRFToken();}/** * Modify the given version of jquery */function modifyPrefilter(jQuery) {if (typeof jQuery === "undefined"\|\|typeof jQuery.ajaxPrefilter
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 29 20 7b 0a 09 09 6d 6f 64 69 66 79 50 72 65 66 69 6c 74 65 72 28 6a 51 75 65 72 79 49 6d 70 6c 29 3b 0a 09 09 69 66 20 28 21 63 73 72 66 46 6f 72 6d 49 6e 74 65 72 63 65 70 74 6f 72 52 65 67 69 73 74 65 72 65 64 29 20 7b 0a 09 09 09 63 73 72 66 46 6f 72 6d 49 6e 74 65 72 63 65 70 74 6f 72 52 65 67 69 73 74 65 72 65 64 20 3d 20 61 70 70 65 6e 64 43 53 52 46 54 6f 6b 65 6e 4f 6e 46 6f 72 6d 53 75 62 6d 69 74 28 6a 51 75 65 72 79 49 6d 70 6c 29 3b 0a 09 09 7d 0a 09 7d 29 3b 0a 0a 7d 29 28 5b 77 69 6e 64 6f 77 2e 6a 51 75 65 72 79 2c 20 77 69 6e 64 6f 77 2e 24 4a 2c 20 77 69 6e 64 6f 77 2e 24 5d 29 3b 0a 0a 2f 2a 2a 0a 20 2a 20 45 78 74 72 61 63 74 73 20 43 53 52 46 20 70 72 6f 74 65 63 74 69 6f 6e 20 74 6f 6b 65 6e 20 66 72 6f 6d 20 74 68 65 20 63 61 72 72 Data Ascii: ) {modifyPrefilter(jQueryImpl);if (!csrfFormInterceptorRegistered) {csrfFormInterceptorRegistered = appendCSRFTokenOnFormSubmit(jQueryImpl);}});})([window.jQuery, window.$J, window.$]);/** * Extracts CSRF protection token from the carr
2025-01-14 13:18:25 UTC	635	IN	Data Raw: 09 09 63 73 72 66 49 6e 70 75 74 20 3d 20 61 74 74 61 63 68 4e 65 77 43 53 52 46 49 6e 70 75 74 46 69 65 6c 64 54 6f 46 6f 72 6d 28 66 6f 72 6d 29 3b 0a 09 7d 0a 0a 09 63 73 72 66 49 6e 70 75 74 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 22 76 61 6c 75 65 22 2c 20 67 65 74 43 53 52 46 54 6f 6b 65 6e 28 29 29 3b 0a 7d 0a 0a 2f 2a 2a 0a 20 2a 20 52 65 74 72 69 65 76 65 73 20 61 20 63 73 72 66 20 76 61 6c 69 64 61 74 69 6f 6e 20 69 6e 70 75 74 20 66 69 65 6c 64 20 66 72 6f 6d 20 74 68 65 20 66 6f 72 6d 0a 20 2a 0a 20 2a 20 40 70 61 72 61 6d 20 6d 79 46 6f 72 6d 0a 20 2a 20 40 72 65 74 75 72 6e 73 20 7b 2a 7d 0a 20 2a 2f 0a 66 75 6e 63 74 69 6f 6e 20 67 65 74 43 53 52 46 49 6e 70 75 74 46 69 65 6c 64 28 6d 79 46 6f 72 6d 29 20 7b 0a 09 72 65 74 75 72 6e 20 6d Data Ascii: csrfInput = attachNewCSRFInputFieldToForm(form);}csrfInput.setAttribute("value", getCSRFToken());}/** * Retrieves a csrf validation input field from the form * * @param myForm * @returns {} /function getCSRFInputField(myForm) {return m

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	868	OUT	GET /ac_global/js/ac.js.php?inc=ajax,dom,b64,str,array,utf,editor,ui,loader HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	297	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:25 GMT Content-Type: text/javascript;charset=UTF-8 Transfer-Encoding: chunked Connection: close CF-Cache-Status: DYNAMIC Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de970de954294-EWR
2025-01-14 13:18:25 UTC	1072	IN	Data Raw: 66 36 30 0d 0a 2f 2f 20 61 63 2e 6a 73 0a 2f 2f 20 4c 6f 61 64 69 6e 67 2e 2e 2e 0a 0a 2f 2f 20 61 6a 61 78 2e 6a 73 0a 0a 76 61 72 20 61 63 5f 61 6a 61 78 5f 64 65 62 75 67 20 3d 20 74 72 75 65 3b 0a 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 61 6a 61 78 5f 72 65 71 75 65 73 74 5f 6f 62 6a 65 63 74 28 29 20 7b 0a 20 20 20 20 76 61 72 20 68 72 65 71 3b 0a 0a 20 20 20 20 74 72 79 20 7b 0a 20 20 20 20 20 20 20 20 68 72 65 71 20 3d 20 6e 65 77 20 58 4d 4c 48 74 74 70 52 65 71 75 65 73 74 28 29 3b 0a 20 20 20 20 7d 20 63 61 74 63 68 20 28 65 29 20 7b 0a 09 09 68 72 65 71 20 3d 20 6e 75 6c 6c 3b 0a 20 20 20 20 7d 0a 0a 20 20 20 20 72 65 74 75 72 6e 20 68 72 65 71 3b 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 61 6a 61 78 5f 63 61 6c 6c 5f 75 72 6c 28 75 72 6c Data Ascii: f60// ac.js// Loading...// ajax.jsvar ac_ajax_debug = true;function ac_ajax_request_object() { var hreq; try { hreq = new XMLHttpRequest(); } catch (e) {hreq = null; } return hreq;}function ac_ajax_call_url(url
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 28 20 70 6f 73 74 54 79 70 65 20 21 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 0a 09 09 20 20 20 20 20 20 20 20 20 20 20 20 09 70 6f 73 74 41 72 72 2e 70 75 73 68 28 69 20 2b 20 27 3d 27 20 2b 20 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 70 6f 73 74 5b 69 5d 29 29 3b 0a 09 09 09 09 20 20 20 20 7d 0a 09 09 09 20 20 20 20 7d 0a 09 09 09 20 20 20 20 70 6f 73 74 20 3d 20 70 6f 73 74 41 72 72 2e 6a 6f 69 6e 28 27 26 27 29 3b 0a 09 09 20 20 20 20 7d 0a 09 20 20 20 20 7d 0a 20 20 20 20 20 20 20 20 68 72 65 71 2e 6f 70 65 6e 28 6d 65 74 68 6f 64 2c 20 75 72 6c 2c 20 74 72 75 65 29 3b 0a 20 20 20 20 20 20 20 20 68 72 65 71 2e 73 65 74 52 65 71 75 65 73 74 48 65 61 64 65 72 28 22 58 2d 58 53 52 46 2d 54 4f 4b 45 4e 22 2c 20 67 65 74 43 53 52 46 Data Ascii: ( postType != 'function' ) { postArr.push(i + '=' + encodeURIComponent(post[i])); } } post = postArr.join('&'); } } hreq.open(method, url, true); hreq.setRequestHeader("X-XSRF-TOKEN", getCSRF
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 63 74 69 6f 6e 20 61 63 5f 61 6a 61 78 5f 63 61 6c 6c 5f 63 62 28 75 72 6c 2c 20 66 75 6e 63 2c 20 63 62 29 20 7b 0a 20 20 20 20 69 66 20 28 66 75 6e 63 29 20 7b 0a 20 20 20 20 20 20 20 20 69 66 20 28 75 72 6c 2e 6d 61 74 63 68 28 2f 5c 3f 2f 29 29 0a 20 20 20 20 20 20 20 20 20 20 20 20 75 72 6c 20 3d 20 75 72 6c 20 2b 20 22 26 66 3d 22 20 2b 20 66 75 6e 63 3b 0a 20 20 20 20 20 20 20 20 65 6c 73 65 0a 20 20 20 20 20 20 20 20 20 20 20 20 75 72 6c 20 3d 20 75 72 6c 20 2b 20 22 3f 66 3d 22 20 2b 20 66 75 6e 63 3b 0a 20 20 20 20 7d 0a 0a 20 20 20 20 75 72 6c 20 2b 3d 20 22 26 72 61 6e 64 3d 22 20 2b 20 61 63 5f 62 36 34 5f 65 6e 63 6f 64 65 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2e 74 6f 53 74 72 69 6e 67 28 29 29 3b 0a 0a 20 20 20 20 69 66 20 28 61 72 67 Data Ascii: ction ac_ajax_call_cb(url, func, cb) { if (func) { if (url.match(/\?/)) url = url + "&f=" + func; else url = url + "?f=" + func; } url += "&rand=" + ac_b64_encode(Math.random().toString()); if (arg
2025-01-14 13:18:25 UTC	133	IN	Data Raw: 65 5f 74 65 78 74 28 68 72 65 71 2e 72 65 73 70 6f 6e 73 65 54 65 78 74 29 3b 0a 09 09 09 09 09 09 7d 0a 09 09 09 09 09 7d 0a 09 09 09 09 09 2f 2a 0a 09 09 09 09 09 76 61 72 20 72 6f 6f 74 4e 6f 64 65 20 3d 20 28 20 78 6d 6c 20 21 3d 3d 20 6e 75 6c 6c 20 3f 20 78 6d 6c 2e 64 6f 63 75 6d 65 6e 74 45 6c 65 6d 65 6e 74 20 3a 20 6e 75 6c 6c 20 29 3b 0a 09 09 09 09 09 69 66 20 28 63 62 20 3d 3d 0d 0a Data Ascii: e_text(hreq.responseText);}}/*var rootNode = ( xml !== null ? xml.documentElement : null );if (cb ==
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 31 66 66 61 0d 0a 3d 20 6e 75 6c 6c 20 26 26 20 72 6f 6f 74 4e 6f 64 65 29 20 7b 0a 09 09 09 09 09 09 63 62 20 3d 20 65 76 61 6c 28 22 63 62 5f 22 20 2b 20 72 6f 6f 74 4e 6f 64 65 2e 6e 6f 64 65 4e 61 6d 65 29 3b 0a 09 09 09 09 09 7d 0a 09 09 09 09 09 69 66 20 28 74 79 70 65 6f 66 20 63 62 20 3d 3d 20 22 66 75 6e 63 74 69 6f 6e 22 29 0a 09 09 09 09 09 09 63 62 28 72 6f 6f 74 4e 6f 64 65 2c 20 68 72 65 71 2e 72 65 73 70 6f 6e 73 65 54 65 78 74 29 3b 0a 09 09 09 09 09 2a 2f 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 7d 20 63 61 74 63 68 20 28 65 29 20 7b 0a 09 09 09 09 09 61 6c 65 72 74 28 65 29 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 7d 0a 7d 0a Data Ascii: 1ffa= null && rootNode) {cb = eval("cb_" + rootNode.nodeName);}if (typeof cb == "function")cb(rootNode, hreq.responseText);*/ } catch (e) {alert(e); } } } }}
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 61 6c 75 65 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 62 72 65 61 6b 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 61 73 65 20 34 3a 20 20 20 20 20 2f 2f 20 43 44 41 54 41 5f 53 45 43 54 49 4f 4e 5f 4e 4f 44 45 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 61 72 79 5b 22 5f 5f 63 64 61 74 61 22 5d 20 3d 20 63 6e 6f 64 65 2e 6e 6f 64 65 56 61 6c 75 65 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 62 72 65 61 6b 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 63 61 73 65 20 31 3a 20 20 20 20 20 2f 2f 20 45 4c 45 4d 45 4e 54 5f 4e 4f 44 45 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 66 20 28 61 63 5f 64 6f 6d 5f 69 73 6e 75 6c 6c 28 63 6e 6f 64 65 2e 66 69 72 73 74 43 68 69 6c 64 29 29 20 7b 0a 09 09 09 09 09 76 61 72 20 69 64 78 Data Ascii: alue; break; case 4: // CDATA_SECTION_NODE ary["__cdata"] = cnode.nodeValue; break; case 1: // ELEMENT_NODE if (ac_dom_isnull(cnode.firstChild)) {var idx
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 28 61 72 79 5b 69 64 78 5d 29 20 21 3d 20 22 61 72 72 61 79 22 20 26 26 20 74 79 70 65 6f 66 28 61 72 79 5b 69 64 78 5d 29 20 21 3d 20 22 6f 62 6a 65 63 74 22 29 20 7b 0a 09 09 09 09 09 09 09 61 6c 65 72 74 28 74 79 70 65 6f 66 28 61 72 79 5b 69 64 78 5d 29 29 3b 0a 09 09 09 09 09 09 09 2f 2f 63 6f 6e 74 69 6e 75 65 3b 0a 09 09 09 09 09 09 7d 0a 09 09 09 09 09 09 61 72 79 5b 69 64 78 5d 2e 70 75 73 68 28 28 66 69 6c 74 65 72 20 3d 3d 3d 20 6e 75 6c 6c 29 20 3f 20 6e 6f 64 65 64 61 74 61 20 3a 20 66 69 6c 74 65 72 28 6e 6f 64 65 64 61 74 61 29 29 3b 0a 09 09 09 09 09 7d 0a 09 09 09 09 7d 20 65 6c 73 65 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 76 61 72 20 69 64 78 20 3d 20 63 6e 6f 64 65 2e 6e 6f 64 65 4e 61 6d 65 2e 74 6f 4c 6f Data Ascii: (ary[idx]) != "array" && typeof(ary[idx]) != "object") {alert(typeof(ary[idx]));//continue;}ary[idx].push((filter === null) ? nodedata : filter(nodedata));}} else { var idx = cnode.nodeName.toLo
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 73 70 6c 61 79 20 3d 20 22 62 6c 6f 63 6b 22 3b 0a 7d 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 64 6f 6d 5f 64 69 73 70 6c 61 79 5f 69 6e 6c 69 6e 65 62 6c 6f 63 6b 28 69 64 29 20 7b 0a 09 24 28 69 64 29 2e 73 74 79 6c 65 2e 64 69 73 70 6c 61 79 20 3d 20 22 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 22 3b 0a 7d 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 64 6f 6d 5f 64 69 73 70 6c 61 79 5f 6e 6f 6e 65 28 69 64 29 20 7b 0a 09 24 28 69 64 29 2e 73 74 79 6c 65 2e 64 69 73 70 6c 61 79 20 3d 20 22 6e 6f 6e 65 22 3b 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 64 6f 6d 5f 74 6f 67 67 6c 65 5f 63 6c 61 73 73 28 69 64 2c 20 63 6c 61 73 73 4e 61 6d 65 31 2c 20 63 6c 61 73 73 4e 61 6d 65 32 29 20 7b 0a 09 76 61 72 20 6e 6f 64 65 20 3d 20 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 Data Ascii: splay = "block";}function ac_dom_display_inlineblock(id) {$(id).style.display = "inline-block";}function ac_dom_display_none(id) {$(id).style.display = "none";}function ac_dom_toggle_class(id, className1, className2) {var node = document.getE
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 20 7b 0a 09 09 69 66 20 28 74 79 70 65 6f 66 20 66 69 6c 74 65 72 20 21 3d 20 22 66 75 6e 63 74 69 6f 6e 22 29 0a 09 09 09 6e 6f 64 65 2e 72 65 6d 6f 76 65 43 68 69 6c 64 28 6e 6f 64 65 2e 63 68 69 6c 64 4e 6f 64 65 73 5b 69 5d 29 3b 0a 09 09 65 6c 73 65 20 69 66 20 28 66 69 6c 74 65 72 28 6e 6f 64 65 2e 63 68 69 6c 64 4e 6f 64 65 73 5b 69 5d 29 29 0a 09 09 09 6e 6f 64 65 2e 72 65 6d 6f 76 65 43 68 69 6c 64 28 6e 6f 64 65 2e 63 68 69 6c 64 4e 6f 64 65 73 5b 69 5d 29 3b 0a 09 7d 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 64 6f 6d 5f 61 70 70 65 6e 64 5f 63 68 69 6c 64 74 65 78 74 28 6e 6f 64 65 2c 20 74 65 78 74 29 20 7b 0a 20 20 20 20 6e 6f 64 65 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 54 65 78 74 4e 6f 64 Data Ascii: {if (typeof filter != "function")node.removeChild(node.childNodes[i]);else if (filter(node.childNodes[i]))node.removeChild(node.childNodes[i]);}}function ac_dom_append_childtext(node, text) { node.appendChild(document.createTextNod
2025-01-14 13:18:25 UTC	1349	IN	Data Raw: 6e 63 3b 0a 09 7d 20 65 6c 73 65 20 7b 0a 09 09 64 6f 63 75 6d 65 6e 74 2e 6f 6e 63 6c 69 63 6b 20 3d 20 66 75 6e 63 74 69 6f 6e 28 65 29 20 7b 0a 09 09 09 6f 6c 64 6f 6e 63 6c 69 63 6b 28 65 29 3b 0a 09 09 09 66 75 6e 63 28 65 29 3b 0a 09 09 7d 0a 09 7d 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 61 63 5f 64 6f 6d 5f 68 6f 6f 6b 28 66 75 6e 63 31 2c 20 66 75 6e 63 32 29 20 7b 0a 09 2f 2f 76 61 72 20 6f 6c 64 66 75 6e 63 20 3d 20 66 75 6e 63 31 3b 0a 09 65 76 61 6c 28 27 76 61 72 20 6f 6c 64 66 75 6e 63 20 3d 20 27 20 2b 20 66 75 6e 63 31 20 2b 20 27 3b 27 29 3b 0a 09 69 66 20 28 20 74 79 70 65 6f 66 20 6f 6c 64 66 75 6e 63 20 21 3d 20 27 66 75 6e 63 74 69 6f 6e 27 20 29 20 7b 0a 09 09 65 76 61 6c 28 66 75 6e 63 31 20 2b 20 27 20 3d 20 66 75 6e 63 32 3b 27 29 Data Ascii: nc;} else {document.onclick = function(e) {oldonclick(e);func(e);}}}function ac_dom_hook(func1, func2) {//var oldfunc = func1;eval('var oldfunc = ' + func1 + ';');if ( typeof oldfunc != 'function' ) {eval(func1 + ' = func2;')

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	833	OUT	GET /admin/jsc/ac.js?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	370	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:25 GMT Content-Type: application/javascript Content-Length: 54805 Connection: close etag: "1865969015" last-modified: Mon, 13 Jan 2025 21:19:56 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de972fd8142e5-EWR
2025-01-14 13:18:25 UTC	999	IN	Data Raw: 76 61 72 20 61 63 3d 7b 72 61 6e 64 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 61 63 2e 73 74 72 2e 63 61 73 74 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 29 7d 2c 72 61 6e 64 48 65 78 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3d 61 63 2e 72 61 6e 64 28 29 2e 73 70 6c 69 74 28 22 2e 22 29 3b 72 65 74 75 72 6e 20 73 70 72 69 6e 74 66 28 22 25 78 22 2c 61 5b 31 5d 29 7d 2c 68 69 64 64 65 6e 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 22 6e 6f 6e 65 22 3d 3d 24 4a 28 61 29 2e 63 73 73 28 22 64 69 73 70 6c 61 79 22 29 7d 2c 65 6d 70 74 79 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 66 6f 72 28 76 61 72 20 63 20 69 6e 20 61 29 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 21 3d 74 79 70 65 6f 66 20 61 5b 63 5d 29 72 65 74 75 72 6e 21 31 Data Ascii: var ac={rand:function(){return ac.str.cast(Math.random())},randHex:function(){var a=ac.rand().split(".");return sprintf("%x",a[1])},hidden:function(a){return"none"==$J(a).css("display")},empty:function(a){for(var c in a)if("function"!=typeof a[c])return!1
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 64 3d 24 4a 28 74 68 69 73 29 3b 0a 61 2e 70 72 65 76 65 6e 74 44 65 66 61 75 6c 74 28 29 3b 64 2e 62 6c 75 72 28 29 3b 63 28 64 29 7d 7d 29 3b 24 4a 28 64 6f 63 75 6d 65 6e 74 29 2e 6f 6e 28 22 63 6c 69 63 6b 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 5f 2e 65 61 63 68 28 24 4a 28 22 2e 63 6c 69 63 6b 2d 74 6f 2d 65 64 69 74 2e 22 2b 65 29 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 61 3d 24 4a 28 61 29 3b 61 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 22 63 6c 69 63 6b 2d 74 6f 2d 65 64 69 74 20 22 2b 65 29 3b 63 28 61 29 7d 29 7d 29 7d 2c 64 65 63 6f 64 65 42 61 73 65 36 34 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 77 69 6e 64 6f 77 2e 61 74 6f 62 3f 64 65 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 77 69 6e 64 6f 77 2e 61 74 6f 62 28 61 Data Ascii: d=$J(this);a.preventDefault();d.blur();c(d)}});$J(document).on("click",function(a){_.each($J(".click-to-edit."+e),function(a){a=$J(a);a.removeClass("click-to-edit "+e);c(a)})})},decodeBase64:function(a){return window.atob?decodeURIComponent(window.atob(a
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 28 61 2e 6f 6b 6c 61 62 65 6c 3d 73 74 72 4f 4b 29 3b 61 2e 6f 6b 63 6c 61 73 73 7c 7c 28 61 2e 6f 6b 63 6c 61 73 73 3d 22 67 72 65 65 6e 22 29 3b 61 2e 63 6c 6f 73 65 6c 61 62 65 6c 7c 7c 28 61 2e 63 6c 6f 73 65 6c 61 62 65 6c 3d 61 2e 68 69 64 65 6f 6b 3f 73 74 72 43 6c 6f 73 65 3a 73 74 72 43 61 6e 63 65 6c 29 3b 61 2e 63 6c 61 73 73 65 73 7c 7c 28 61 2e 63 6c 61 73 73 65 73 3d 22 22 29 3b 61 2e 64 6f 6e 74 5f 62 6c 75 72 7c 7c 24 4a 28 64 6f 63 75 6d 65 6e 74 2e 61 63 74 69 76 65 45 6c 65 6d 65 6e 74 29 2e 62 6c 75 72 28 29 3b 63 3d 63 7c 7c 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 3b 0a 24 4a 28 22 23 61 63 5f 61 75 74 6f 6d 6f 64 61 6c 22 29 2e 72 65 6d 6f 76 65 28 29 3b 76 61 72 20 64 3d 22 22 2b 28 27 3c 64 69 76 20 69 64 3d 22 61 63 5f 61 75 74 6f 6d Data Ascii: (a.oklabel=strOK);a.okclass\|\|(a.okclass="green");a.closelabel\|\|(a.closelabel=a.hideok?strClose:strCancel);a.classes\|\|(a.classes="");a.dont_blur\|\|$J(document.activeElement).blur();c=c\|\|function(){};$J("#ac_automodal").remove();var d=""+('<div id="ac_autom
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 65 5d 2e 76 61 6c 75 65 3d 3d 66 2e 64 65 66 61 75 6c 74 3f 22 73 65 6c 65 63 74 65 64 22 3a 22 22 2c 66 2e 6f 70 74 69 6f 6e 73 5b 65 5d 2e 76 61 6c 75 65 2c 66 2e 6f 70 74 69 6f 6e 73 5b 65 5d 2e 6c 61 62 65 6c 29 3b 64 2b 3d 22 3c 2f 73 65 6c 65 63 74 3e 22 3b 64 2b 3d 22 3c 2f 66 69 65 6c 64 73 65 74 3e 22 3b 62 72 65 61 6b 3b 63 61 73 65 20 22 74 65 78 74 61 72 65 61 22 3a 66 2e 72 6f 77 73 3d 66 2e 72 6f 77 73 7c 7c 38 3b 66 2e 63 6f 6c 73 3d 66 2e 63 6f 6c 73 7c 7c 34 30 3b 64 2b 3d 73 70 72 69 6e 74 66 28 27 3c 66 69 65 6c 64 73 65 74 20 63 6c 61 73 73 3d 22 69 6e 70 75 74 20 25 73 22 3e 27 2c 66 2e 63 6c 61 73 73 4e 61 6d 65 29 3b 64 2b 3d 73 70 72 69 6e 74 66 28 22 3c 6c 61 62 65 6c 3e 25 73 3c 2f 6c 61 62 65 6c 3e 22 2c 66 2e 6c 61 62 65 6c 3f Data Ascii: e].value==f.default?"selected":"",f.options[e].value,f.options[e].label);d+="</select>";d+="</fieldset>";break;case "textarea":f.rows=f.rows\|\|8;f.cols=f.cols\|\|40;d+=sprintf('<fieldset class="input %s">',f.className);d+=sprintf("<label>%s</label>",f.label?
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 7b 69 66 28 61 2e 6f 6b 29 7b 76 61 72 20 64 3d 0a 7b 7d 3b 24 4a 28 22 23 61 63 5f 61 75 74 6f 6d 6f 64 61 6c 20 66 69 65 6c 64 73 65 74 20 69 6e 70 75 74 2c 20 23 61 63 5f 61 75 74 6f 6d 6f 64 61 6c 20 66 69 65 6c 64 73 65 74 20 74 65 78 74 61 72 65 61 2c 20 23 61 63 5f 61 75 74 6f 6d 6f 64 61 6c 20 66 69 65 6c 64 73 65 74 20 73 65 6c 65 63 74 22 29 2e 65 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 61 2c 63 29 7b 64 5b 63 2e 6e 61 6d 65 5d 3d 63 2e 76 61 6c 75 65 7d 29 3b 24 4a 28 22 23 61 63 5f 61 75 74 6f 6d 6f 64 61 6c 20 64 69 76 2e 6f 70 74 69 6f 6e 2d 75 69 22 29 2e 65 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 29 7b 64 5b 5b 24 4a 28 74 68 69 73 29 2e 64 61 74 61 28 22 6e 61 6d 65 22 29 5d 5d 3d 24 4a 28 22 2e 73 65 6c 65 63 74 65 64 22 2c 74 68 69 73 29 Data Ascii: {if(a.ok){var d={};$J("#ac_automodal fieldset input, #ac_automodal fieldset textarea, #ac_automodal fieldset select").each(function(a,c){d[c.name]=c.value});$J("#ac_automodal div.option-ui").each(function(){d[[$J(this).data("name")]]=$J(".selected",this)
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 6c 6f 61 64 65 72 22 29 2e 6c 65 6e 67 74 68 26 26 24 4a 28 22 62 6f 64 79 22 29 2e 61 70 70 65 6e 64 28 27 3c 64 69 76 20 63 6c 61 73 73 3d 22 61 63 20 6c 6f 61 64 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 6f 61 64 69 6e 67 5f 62 61 72 22 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 66 6c 65 78 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 63 65 6e 74 65 72 3b 62 6f 72 64 65 72 3a 20 30 3b 22 3e 3c 69 6d 67 20 73 72 63 3d 22 2f 63 61 6d 70 61 69 67 6e 2f 73 74 72 69 70 6f 2f 69 63 6f 6e 73 2f 6c 6f 61 64 69 6e 67 2d 69 6e 64 69 63 61 74 6f 72 2e 73 76 67 22 20 77 69 64 74 68 3d 22 33 32 22 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6c 6f 61 64 6f 76 65 72 6c 61 79 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e Data Ascii: loader").length&&$J("body").append('<div class="ac loader"><div class="loading_bar" style="display: flex;justify-content: center;border: 0;"><img src="/campaign/stripo/icons/loading-indicator.svg" width="32"></div><div class="loadoverlay" style="backgroun
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 63 3a 63 2c 64 61 74 61 3a 66 7d 29 7d 3b 61 63 2e 61 70 69 2e 63 61 6c 6c 62 61 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 63 29 7b 63 26 26 63 2e 65 72 72 6f 72 3f 63 6f 6e 73 6f 6c 65 5f 6c 6f 67 28 63 2e 65 72 72 6f 72 29 3a 61 28 63 29 7d 7d 3b 61 63 2e 61 70 69 2e 65 72 72 6f 72 3d 66 75 6e 63 74 69 6f 6e 28 63 2c 65 29 7b 76 61 72 20 64 3d 21 31 2c 67 3d 21 31 3b 63 7c 7c 28 63 3d 7b 65 72 72 6f 72 3a 22 45 72 72 6f 72 3a 20 55 6e 72 65 63 6f 67 6e 69 7a 65 64 20 72 65 73 70 6f 6e 73 65 20 72 65 63 65 69 76 65 64 2e 22 7d 29 3b 21 63 2e 6d 65 73 73 61 67 65 26 26 63 2e 65 72 72 6f 72 26 26 28 63 2e 6d 65 73 73 61 67 65 3d 0a 63 2e 65 72 72 6f 72 2c 64 3d 21 30 29 3b 69 66 28 63 2e 6d 65 73 73 61 67 Data Ascii: c:c,data:f})};ac.api.callback=function(a){return function(c){c&&c.error?console_log(c.error):a(c)}};ac.api.error=function(c,e){var d=!1,g=!1;c\|\|(c={error:"Error: Unrecognized response received."});!c.message&&c.error&&(c.message=c.error,d=!0);if(c.messag
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 20 64 3b 31 3d 3d 63 2e 6c 65 6e 67 74 68 26 26 22 46 4f 52 4d 22 21 3d 63 5b 30 5d 2e 74 61 67 4e 61 6d 65 26 26 28 63 3d 61 28 22 3c 66 6f 72 6d 3e 3c 2f 66 6f 72 6d 3e 22 29 2e 68 74 6d 6c 28 63 2e 68 74 6d 6c 28 29 29 29 3b 61 2e 65 61 63 68 28 63 2e 73 65 72 69 61 6c 69 7a 65 41 72 72 61 79 28 29 2c 66 75 6e 63 74 69 6f 6e 28 61 2c 63 29 7b 63 2e 6e 61 6d 65 2e 6d 61 74 63 68 28 2f 5c 5b 5d 24 2f 29 3f 28 66 5b 63 2e 6e 61 6d 65 5d 7c 7c 28 66 5b 63 2e 6e 61 6d 65 5d 3d 30 29 2c 64 5b 63 2e 6e 61 6d 65 2e 72 65 70 6c 61 63 65 28 2f 5c 5b 5d 24 2f 2c 73 70 72 69 6e 74 66 28 22 5b 25 64 5d 22 2c 66 5b 63 2e 6e 61 6d 65 5d 29 29 5d 3d 63 2e 76 61 6c 75 65 2c 66 5b 63 2e 6e 61 6d 65 5d 2b 2b 29 3a 64 5b 63 2e 6e 61 6d 65 5d 3d 63 2e 76 61 6c 75 65 7d 29 Data Ascii: d;1==c.length&&"FORM"!=c[0].tagName&&(c=a("<form></form>").html(c.html()));a.each(c.serializeArray(),function(a,c){c.name.match(/\[]$/)?(f[c.name]\|\|(f[c.name]=0),d[c.name.replace(/\[]$/,sprintf("[%d]",f[c.name]))]=c.value,f[c.name]++):d[c.name]=c.value})
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 2c 31 3a 22 42 22 2c 32 3a 22 43 22 2c 33 3a 22 44 22 2c 34 3a 22 45 22 2c 35 3a 22 46 22 2c 36 3a 22 47 22 2c 37 3a 22 48 22 2c 38 3a 22 49 22 2c 39 3a 22 4a 22 2c 31 30 3a 22 4b 22 2c 31 31 3a 22 4c 22 2c 31 32 3a 22 4d 22 2c 31 33 3a 22 4e 22 2c 31 34 3a 22 4f 22 2c 31 35 3a 22 50 22 2c 31 36 3a 22 51 22 2c 31 37 3a 22 52 22 2c 31 38 3a 22 53 22 2c 31 39 3a 22 54 22 2c 32 30 3a 22 55 22 2c 32 31 3a 22 56 22 2c 32 32 3a 22 57 22 2c 32 33 3a 22 58 22 2c 32 34 3a 22 59 22 2c 32 35 3a 22 5a 22 2c 32 36 3a 22 61 22 2c 32 37 3a 22 62 22 2c 32 38 3a 22 63 22 2c 32 39 3a 22 64 22 2c 33 30 3a 22 65 22 2c 33 31 3a 22 66 22 2c 33 32 3a 22 67 22 2c 33 33 3a 22 68 22 2c 33 34 3a 22 69 22 2c 33 35 3a 22 6a 22 2c 33 36 3a 22 6b 22 2c 33 37 3a 22 6c 22 2c 33 38 3a 22 Data Ascii: ,1:"B",2:"C",3:"D",4:"E",5:"F",6:"G",7:"H",8:"I",9:"J",10:"K",11:"L",12:"M",13:"N",14:"O",15:"P",16:"Q",17:"R",18:"S",19:"T",20:"U",21:"V",22:"W",23:"X",24:"Y",25:"Z",26:"a",27:"b",28:"c",29:"d",30:"e",31:"f",32:"g",33:"h",34:"i",35:"j",36:"k",37:"l",38:"
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 28 66 2b 32 29 2c 32 29 29 3b 69 66 28 22 5f 22 3d 3d 64 2e 63 68 61 72 41 74 28 66 2b 33 29 29 62 72 65 61 6b 3b 65 2b 3d 53 74 72 69 6e 67 2e 66 72 6f 6d 43 68 61 72 43 6f 64 65 28 61 28 64 2e 63 68 61 72 41 74 28 66 2b 0a 32 29 2c 36 29 7c 63 28 64 2e 63 68 61 72 41 74 28 66 2b 33 29 2c 30 29 29 7d 72 65 74 75 72 6e 20 65 7d 7d 29 28 29 3b 61 63 2e 62 72 6f 77 73 65 72 3d 7b 7d 3b 0a 76 61 72 20 42 72 6f 77 73 65 72 44 65 74 65 63 74 3d 7b 69 6e 69 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 62 72 6f 77 73 65 72 3d 74 68 69 73 2e 73 65 61 72 63 68 53 74 72 69 6e 67 28 74 68 69 73 2e 64 61 74 61 42 72 6f 77 73 65 72 29 7c 7c 22 41 6e 20 75 6e 6b 6e 6f 77 6e 20 62 72 6f 77 73 65 72 22 3b 74 68 69 73 2e 76 65 72 73 69 6f 6e 3d 74 68 69 73 2e 73 Data Ascii: (f+2),2));if("_"==d.charAt(f+3))break;e+=String.fromCharCode(a(d.charAt(f+2),6)\|c(d.charAt(f+3),0))}return e}})();ac.browser={};var BrowserDetect={init:function(){this.browser=this.searchString(this.dataBrowser)\|\|"An unknown browser";this.version=this.s

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	839	OUT	GET /admin/js/functions.js?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:25 UTC	370	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:25 GMT Content-Type: application/javascript Content-Length: 47585 Connection: close etag: "3866858117" last-modified: Mon, 13 Jan 2025 21:19:34 GMT CF-Cache-Status: MISS Accept-Ranges: bytes Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de973482b42e4-EWR
2025-01-14 13:18:25 UTC	999	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 20 63 6f 6e 73 6f 6c 65 5f 6c 6f 67 28 29 20 7b 0a 09 2f 2f 20 61 74 74 65 6d 70 74 20 74 6f 20 73 65 6e 64 20 61 20 6d 65 73 73 61 67 65 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 0a 09 74 72 79 20 7b 0a 09 09 66 6f 72 28 76 61 72 20 69 20 3d 30 3b 20 69 20 3c 20 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 20 69 2b 2b 29 20 7b 0a 09 09 09 63 6f 6e 73 6f 6c 65 2e 6c 6f 67 28 61 72 67 75 6d 65 6e 74 73 5b 69 5d 29 3b 0a 09 09 7d 0a 09 7d 20 63 61 74 63 68 28 65 29 20 7b 7d 20 2f 2f 20 66 61 69 6c 20 67 72 61 63 65 66 75 6c 6c 79 20 69 66 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 65 78 69 73 74 0a 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 66 6f 72 6d 5f 62 72 61 6e 64 69 6e 67 5f 64 65 6c 65 74 65 28 70 6c 61 6e 2c 20 72 73 69 64 Data Ascii: function console_log() {// attempt to send a message to the consoletry {for(var i =0; i < arguments.length; i++) {console.log(arguments[i]);}} catch(e) {} // fail gracefully if it does not exist}function form_branding_delete(plan, rsid
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 2d 31 3b 0a 09 7d 29 3b 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 63 6c 65 61 72 5f 61 72 65 61 73 28 6e 6f 64 65 29 20 7b 0a 09 24 4a 28 27 74 65 78 74 61 72 65 61 27 2c 20 6e 6f 64 65 29 2e 68 74 6d 6c 28 27 27 29 3b 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 72 65 6d 6f 76 65 5f 65 6c 65 6d 65 6e 74 28 6e 6f 64 65 29 20 7b 0a 09 76 61 72 20 6d 65 20 3d 20 24 4a 28 6e 6f 64 65 29 3b 0a 09 76 61 72 20 64 61 64 20 3d 20 6d 65 2e 70 61 72 65 6e 74 28 29 3b 0a 09 69 66 20 28 20 24 4a 28 22 3e 20 64 69 76 22 2c 20 64 61 64 29 2e 6c 65 6e 67 74 68 20 3e 20 31 20 29 20 7b 0a 09 09 6d 65 2e 72 65 6d 6f 76 65 28 29 3b 0a 09 7d 20 65 6c 73 65 20 7b 0a 09 09 63 6c 65 61 72 5f 69 6e 70 75 74 73 28 6e 6f 64 65 29 3b 0a 09 09 63 6c 65 61 72 5f 73 65 6c 65 63 74 73 28 6e 6f Data Ascii: -1;});}function clear_areas(node) {$J('textarea', node).html('');}function remove_element(node) {var me = $J(node);var dad = me.parent();if ( $J("> div", dad).length > 1 ) {me.remove();} else {clear_inputs(node);clear_selects(no
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 5d 29 3b 0a 0a 09 24 4a 28 27 23 27 20 2b 20 69 64 20 2b 20 27 45 64 69 74 6f 72 4c 69 6e 6b 44 65 66 61 75 6c 74 27 29 2e 74 6f 67 67 6c 65 28 29 3b 0a 09 61 63 5f 6a 73 5f 61 64 6d 69 6e 2e 68 74 6d 6c 65 64 69 74 6f 72 20 3d 20 28 20 69 73 45 64 69 74 6f 72 20 3f 20 31 20 3a 20 30 20 29 3b 0a 09 72 65 74 75 72 6e 20 66 61 6c 73 65 3b 0a 7d 0a 0a 0a 0a 0a 66 75 6e 63 74 69 6f 6e 20 66 6f 72 6d 5f 65 64 69 74 6f 72 5f 70 65 72 73 6f 6e 61 6c 69 7a 61 74 69 6f 6e 5f 70 75 73 68 28 6e 6f 64 65 73 2c 20 69 64 29 20 7b 0a 09 66 6f 72 20 28 76 61 72 20 69 20 3d 20 30 3b 20 69 20 3c 20 6e 6f 64 65 73 2e 6c 65 6e 67 74 68 3b 20 69 2b 2b 29 0a 09 09 24 4a 28 27 23 27 20 2b 20 69 64 29 2e 61 70 70 65 6e 64 28 6e 6f 64 65 73 5b 69 5d 29 3b 0a 7d 0a 0a 0a 0a 66 75 Data Ascii: ]);$J('#' + id + 'EditorLinkDefault').toggle();ac_js_admin.htmleditor = ( isEditor ? 1 : 0 );return false;}function form_editor_personalization_push(nodes, id) {for (var i = 0; i < nodes.length; i++)$J('#' + id).append(nodes[i]);}fu
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 66 78 20 2b 20 27 66 6f 72 6d 61 74 46 69 65 6c 64 27 29 2e 76 61 6c 28 29 29 3b 0a 7d 0a 0a 0a 0a 0a 0a 66 75 6e 63 74 69 6f 6e 20 65 78 70 6f 72 74 5f 6c 69 6e 6b 5f 62 75 69 6c 64 28 63 6f 6e 74 65 78 74 2c 20 61 72 79 29 20 7b 0a 09 76 61 72 20 6c 69 6e 6b 20 3d 20 27 65 78 70 6f 72 74 2e 70 68 70 3f 61 63 74 69 6f 6e 3d 27 20 2b 20 63 6f 6e 74 65 78 74 3b 0a 09 66 6f 72 20 28 20 76 61 72 20 69 20 69 6e 20 61 72 79 20 29 20 7b 0a 09 09 6c 69 6e 6b 20 2b 3d 20 27 26 27 20 2b 20 69 20 2b 20 27 3d 27 20 2b 20 61 72 79 5b 69 5d 3b 0a 09 7d 0a 09 69 66 20 28 20 74 79 70 65 6f 66 28 6f 75 72 66 6c 61 67 29 20 3d 3d 20 27 75 6e 64 65 66 69 6e 65 64 27 20 7c 7c 20 70 72 6f 6d 70 74 28 27 47 6f 20 74 6f 20 74 68 69 73 20 65 78 70 6f 72 74 20 55 52 4c 3f 27 2c Data Ascii: fx + 'formatField').val());}function export_link_build(context, ary) {var link = 'export.php?action=' + context;for ( var i in ary ) {link += '&' + i + '=' + ary[i];}if ( typeof(ourflag) == 'undefined' \|\| prompt('Go to this export URL?',
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 6f 6e 74 65 78 74 0a 09 09 76 61 72 20 66 75 6e 63 20 3d 20 6e 75 6c 6c 3b 0a 09 09 74 72 79 20 7b 0a 09 09 09 76 61 72 20 66 75 6e 63 20 3d 20 65 76 61 6c 28 61 63 5f 61 63 74 69 6f 6e 20 2b 20 22 5f 6c 69 73 74 5f 73 65 61 72 63 68 22 29 3b 0a 09 09 7d 20 63 61 74 63 68 20 28 65 29 20 7b 0a 09 09 09 2f 2f 20 64 6f 20 6e 6f 74 68 69 6e 67 2c 20 6e 6f 6e 65 20 66 6f 75 6e 64 0a 09 09 7d 0a 09 09 69 66 20 28 20 74 79 70 65 6f 66 20 66 75 6e 63 20 3d 3d 20 22 66 75 6e 63 74 69 6f 6e 22 20 29 20 7b 0a 09 09 09 66 75 6e 63 28 29 3b 0a 09 09 7d 0a 09 7d 0a 7d 0a 0a 0a 66 75 6e 63 74 69 6f 6e 20 70 61 72 65 6e 74 73 5f 6c 69 73 74 5f 73 65 6c 65 63 74 28 61 6c 6c 2c 20 66 69 72 73 74 49 73 41 6c 6c 29 20 7b 0a 09 69 66 20 28 20 61 6c 6c 20 29 20 7b 0a 09 09 61 Data Ascii: ontextvar func = null;try {var func = eval(ac_action + "_list_search");} catch (e) {// do nothing, none found}if ( typeof func == "function" ) {func();}}}function parents_list_select(all, firstIsAll) {if ( all ) {a
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 22 29 3b 0a 09 2f 2f 20 6f 70 65 6e 20 6d 6f 64 61 6c 0a 09 24 4a 28 27 23 6d 65 73 73 61 67 65 5f 61 63 74 69 76 65 72 73 73 27 29 2e 6d 6f 64 61 6c 28 22 73 68 6f 77 22 29 3b 0a 7d 0a 0a 66 75 6e 63 74 69 6f 6e 20 66 6f 72 6d 5f 65 64 69 74 6f 72 5f 61 63 74 69 76 65 72 73 73 5f 69 6e 73 65 72 74 28 29 20 7b 0a 09 2f 2f 20 62 75 69 6c 64 20 74 68 65 20 63 6f 64 65 0a 09 76 61 72 20 63 6f 64 65 20 3d 20 66 6f 72 6d 5f 65 64 69 74 6f 72 5f 61 63 74 69 76 65 72 73 73 5f 62 75 69 6c 64 28 29 3b 0a 09 69 66 20 28 20 63 6f 64 65 20 3d 3d 20 27 27 20 29 20 72 65 74 75 72 6e 3b 0a 0a 09 2f 2f 20 70 75 73 68 20 69 74 20 69 6e 74 6f 20 6e 65 65 64 65 64 20 65 64 69 74 6f 72 0a 09 61 63 5f 65 64 69 74 6f 72 5f 69 6e 73 65 72 74 28 24 4a 28 27 23 61 63 74 69 76 65 Data Ascii: ");// open modal$J('#message_activerss').modal("show");}function form_editor_activerss_insert() {// build the codevar code = form_editor_activerss_build();if ( code == '' ) return;// push it into needed editorac_editor_insert($J('#active
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 20 27 25 5c 6e 5c 6e 27 20 2b 20 2f 2f 20 73 74 61 72 74 20 66 65 65 64 20 73 65 63 74 69 6f 6e 0a 09 09 27 25 52 53 53 3a 43 48 41 4e 4e 45 4c 3a 54 49 54 4c 45 25 5c 6e 5c 6e 27 20 2b 20 2f 2f 20 70 72 69 6e 74 20 6f 75 74 20 74 69 74 6c 65 0a 09 09 27 25 52 53 53 2d 4c 4f 4f 50 7c 4c 49 4d 49 54 3a 27 20 2b 20 6c 6f 6f 70 20 2b 20 27 25 5c 6e 5c 6e 27 20 2b 20 2f 2f 20 73 74 61 72 74 20 69 74 65 6d 20 73 65 63 74 69 6f 6e 0a 09 09 27 25 52 53 53 3a 49 54 45 4d 3a 44 41 54 45 25 5c 6e 27 20 2b 20 2f 2f 20 77 69 74 68 69 6e 20 61 20 73 65 63 74 69 6f 6e 0a 09 09 27 25 52 53 53 3a 49 54 45 4d 3a 54 49 54 4c 45 25 5c 6e 27 20 2b 0a 09 09 27 25 52 53 53 3a 49 54 45 4d 3a 53 55 4d 4d 41 52 59 25 5c 6e 27 20 2b 0a 09 09 27 25 52 53 53 3a 49 54 45 4d 3a 4c 49 Data Ascii: '%\n\n' + // start feed section'%RSS:CHANNEL:TITLE%\n\n' + // print out title'%RSS-LOOP\|LIMIT:' + loop + '%\n\n' + // start item section'%RSS:ITEM:DATE%\n' + // within a section'%RSS:ITEM:TITLE%\n' +'%RSS:ITEM:SUMMARY%\n' +'%RSS:ITEM:LI
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 0a 0a 09 2f 2f 20 63 6c 65 61 72 20 61 6e 79 20 73 65 74 54 69 6d 65 6f 75 74 73 20 72 75 6e 6e 69 6e 67 2e 20 28 6f 6e 65 20 69 73 20 75 73 65 64 20 66 6f 72 20 53 75 72 76 65 79 4d 6f 6e 6b 65 79 20 69 6e 74 65 67 72 61 74 69 6f 6e 29 0a 09 61 63 2e 73 74 6f 70 28 22 63 61 6d 70 61 69 67 6e 5f 73 65 72 76 69 63 65 5f 67 65 74 22 29 3b 0a 0a 09 69 66 20 28 75 73 65 5f 64 65 73 69 67 6e 65 72 29 20 7b 0a 09 09 69 66 20 28 61 63 2e 62 72 6f 77 73 65 72 2e 69 73 49 45 28 29 29 20 7b 0a 09 09 09 2f 2f 22 69 6e 73 65 72 74 48 54 4d 4c 22 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 49 45 20 28 67 72 72 72 29 2e 20 53 6f 20 77 65 20 68 61 76 65 20 74 6f 20 64 6f 20 73 6f 6d 65 74 68 69 6e 67 20 64 69 66 66 65 72 65 6e Data Ascii: // clear any setTimeouts running. (one is used for SurveyMonkey integration)ac.stop("campaign_service_get");if (use_designer) {if (ac.browser.isIE()) {//"insertHTML" command is not supported by IE (grrr). So we have to do something differen
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 78 74 2c 20 74 65 78 74 29 20 7c 7c 20 27 27 3b 20 2f 2f 20 43 6f 65 72 63 65 20 6e 75 6c 6c 20 74 6f 20 62 6c 61 6e 6b 20 73 74 72 69 6e 67 20 69 66 20 75 73 65 72 20 63 61 6e 63 65 6c 73 0a 09 09 69 66 20 28 20 65 6e 74 65 72 65 64 2e 74 72 69 6d 28 29 20 3d 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 65 6e 74 65 72 65 64 20 3d 20 74 65 78 74 3b 0a 09 09 7d 0a 09 09 69 66 20 28 20 74 65 78 74 6f 6e 6c 79 20 29 20 7b 0a 09 09 09 76 61 6c 20 3d 20 65 6e 74 65 72 65 64 20 2b 20 27 20 28 27 20 2b 20 73 74 72 53 75 72 76 65 79 54 65 78 74 32 20 2b 20 27 3a 20 27 20 2b 20 73 70 6c 69 74 5f 76 61 6c 75 65 5b 32 5d 20 2b 20 27 20 2d 2d 20 27 20 2b 20 6c 69 6e 6b 5f 68 72 65 66 20 2b 20 27 29 27 3b 0a 09 09 7d 20 65 6c 73 65 20 7b 0a 09 09 09 76 61 6c 20 3d 20 27 3c Data Ascii: xt, text) \|\| ''; // Coerce null to blank string if user cancelsif ( entered.trim() === '' ) {entered = text;}if ( textonly ) {val = entered + ' (' + strSurveyText2 + ': ' + split_value[2] + ' -- ' + link_href + ')';} else {val = '<
2025-01-14 13:18:25 UTC	1369	IN	Data Raw: 09 09 69 66 20 28 20 65 6e 74 65 72 65 64 2e 74 72 69 6d 28 29 20 3d 3d 3d 20 27 27 20 29 20 7b 0a 09 09 09 65 6e 74 65 72 65 64 20 3d 20 74 65 78 74 3b 0a 09 09 7d 0a 09 09 69 66 20 28 20 74 65 78 74 6f 6e 6c 79 20 29 20 7b 0a 09 09 09 76 61 6c 20 3d 20 65 6e 74 65 72 65 64 20 2b 20 27 20 3c 27 20 2b 20 76 61 6c 20 2b 20 27 3e 27 3b 0a 09 09 7d 20 65 6c 73 65 20 7b 0a 09 09 09 76 61 6c 20 3d 20 27 3c 61 20 68 72 65 66 3d 22 27 20 2b 20 76 61 6c 20 2b 20 27 22 3e 27 20 2b 20 65 6e 74 65 72 65 64 20 2b 20 27 3c 2f 61 3e 27 3b 0a 09 09 7d 0a 09 7d 0a 09 72 65 74 75 72 6e 20 76 61 6c 3b 0a 7d 0a 0a 0a 2f 2f 20 43 61 6d 70 61 69 67 6e 20 50 65 72 73 6f 6e 61 6c 69 7a 61 74 69 6f 6e 0a 66 75 6e 63 74 69 6f 6e 20 63 61 6d 70 61 69 67 6e 5f 70 65 72 73 6f 6e 61 Data Ascii: if ( entered.trim() === '' ) {entered = text;}if ( textonly ) {val = entered + ' <' + val + '>';} else {val = '<a href="' + val + '">' + entered + '</a>';}}return val;}// Campaign Personalizationfunction campaign_persona

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:25 UTC	390	OUT	GET /Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png HTTP/1.1 Host: nc-nielsen.dk Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-14 13:18:26 UTC	256	IN	HTTP/1.1 200 OK Cache-Control: public,max-age=10368000 Content-Type: image/png Last-Modified: Wed, 01 Jun 2022 12:56:44 GMT Accept-Ranges: bytes ETag: "5771edbb775d81:0" Date: Tue, 14 Jan 2025 13:18:26 GMT Connection: close Content-Length: 5742
2025-01-14 13:18:26 UTC	5742	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 03 e8 00 00 00 c2 08 03 00 00 00 ed a2 18 1b 00 00 00 19 74 45 58 74 53 6f 66 74 77 61 72 65 00 41 64 6f 62 65 20 49 6d 61 67 65 52 65 61 64 79 71 c9 65 3c 00 00 00 33 50 4c 54 45 c5 c6 c8 8b 8e 90 52 56 59 f1 f1 f1 26 2b 30 d4 d4 d5 a8 aa ac 6f 72 75 e2 e3 e3 35 39 3e 43 48 4c b7 b8 ba 7d 80 83 9a 9c 9e 60 64 67 18 1d 22 ff ff ff cd 4d 84 62 00 00 15 d1 49 44 41 54 78 da ec 9d d9 96 dc 2a 0c 45 99 6c e3 b1 fc ff 5f 7b ab 3b 37 43 a7 0b 90 84 f0 50 39 e7 21 2b 0f 89 4d 09 6d 21 c4 60 b3 43 10 f4 f6 32 30 01 04 01 74 08 82 00 3a 04 41 00 1d 82 20 80 0e 41 10 40 87 20 08 a0 43 10 04 d0 21 08 02 e8 10 04 d0 21 08 02 e8 10 04 01 74 08 82 00 3a 44 55 e7 5e a8 bb 76 9b 97 57 6d 46 57 02 74 28 d3 39 8f 17 ba Data Ascii: PNGIHDRtEXtSoftwareAdobe ImageReadyqe<3PLTERVY&+0oru59>CHL}`dg"MbIDATx*El_{;7CP9!+Mm!`C20t:A A@ C!!t:DU^vWmFWt(9

Timestamp	Bytes transferred	Direction	Data
2025-01-14 13:18:26 UTC	834	OUT	GET /admin/mainjs.php?v=v1027121337464636 HTTP/1.1 Host: ncn.activehosted.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://ncn.activehosted.com/admin/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=a97b71cd31c2c70a038936a4a2e0e55f; __cf_bm=pRlPR3v6T0Vp4whtzaj1BEeOkVuex8Orw1PFXlGpqn8-1736860702-1.0.1.1-lc0YyTAtVuTbrQrJxTCxWhj.EZPfBVGWCihqHP8aVF0lCys0BIekFKV9a2x8ISUgXadqSiro7G7ZryHFvo0j3Q; XSRF-TOKEN=Y4Ytkw3r5dmnUE8mXT2IBmBzY1qpXuHcLZPoJWPFCOI
2025-01-14 13:18:26 UTC	450	IN	HTTP/1.1 200 OK Date: Tue, 14 Jan 2025 13:18:26 GMT Content-Type: text/javascript; charset=utf-8 Content-Length: 7385 Connection: close Cache-Control: no-store, no-cache, must-revalidate expires: Thu, 19 Nov 1981 08:52:00 GMT pragma: no-cache x-request-id: 3fd01b2fe0414efc34ce1175df79270f CF-Cache-Status: DYNAMIC Strict-Transport-Security: max-age=63072000; includeSubDomains; preload Server: cloudflare CF-RAY: 901de975ed4ede95-EWR
2025-01-14 13:18:26 UTC	919	IN	Data Raw: 76 61 72 20 61 63 5f 6a 73 5f 61 64 6d 69 6e 20 3d 20 7b 20 22 69 64 22 20 3a 20 30 2c 20 22 75 73 65 72 6e 61 6d 65 22 20 3a 20 22 22 2c 20 22 66 69 72 73 74 5f 6e 61 6d 65 22 20 3a 20 22 22 2c 20 22 6c 61 73 74 5f 6e 61 6d 65 22 20 3a 20 22 22 2c 20 22 65 6d 61 69 6c 22 20 3a 20 22 22 2c 20 22 6c 61 73 74 5f 6c 6f 67 69 6e 22 20 3a 20 6e 75 6c 6c 2c 20 22 73 6f 75 72 63 65 69 64 22 20 3a 20 30 2c 20 22 73 6f 75 72 63 65 75 70 64 61 74 65 64 22 20 3a 20 6e 75 6c 6c 2c 20 22 70 72 6f 64 75 63 74 73 65 74 22 20 3a 20 6e 75 6c 6c 2c 20 22 61 62 73 69 64 22 20 3a 20 30 2c 20 22 70 61 72 65 6e 74 69 64 22 20 3a 20 30 2c 20 22 61 70 70 72 6f 76 65 64 22 20 3a 20 31 2c 20 22 73 61 6c 74 22 20 3a 20 22 22 2c 20 22 70 68 6f 6e 65 22 20 3a 20 22 22 2c 20 22 73 69 Data Ascii: var ac_js_admin = { "id" : 0, "username" : "", "first_name" : "", "last_name" : "", "email" : "", "last_login" : null, "sourceid" : 0, "sourceupdated" : null, "productset" : null, "absid" : 0, "parentid" : 0, "approved" : 1, "salt" : "", "phone" : "", "si
2025-01-14 13:18:26 UTC	1369	IN	Data Raw: 61 69 6c 73 5f 73 65 6e 74 22 20 3a 20 30 2c 20 22 67 72 6f 75 70 73 22 20 3a 20 7b 20 31 20 3a 20 31 20 7d 2c 20 22 6c 69 73 74 73 22 20 3a 20 7b 20 33 20 3a 20 33 2c 20 35 20 3a 20 35 2c 20 36 20 3a 20 36 2c 20 37 20 3a 20 37 2c 20 38 20 3a 20 38 2c 20 39 20 3a 20 39 2c 20 31 30 20 3a 20 31 30 2c 20 31 31 20 3a 20 31 31 2c 20 31 32 20 3a 20 31 32 2c 20 31 33 20 3a 20 31 33 2c 20 31 34 20 3a 20 31 34 2c 20 31 35 20 3a 20 31 35 2c 20 31 36 20 3a 20 31 36 2c 20 31 37 20 3a 20 31 37 2c 20 31 39 20 3a 20 31 39 2c 20 32 30 20 3a 20 32 30 2c 20 32 31 20 3a 20 32 31 2c 20 32 32 20 3a 20 32 32 2c 20 32 33 20 3a 20 32 33 2c 20 32 34 20 3a 20 32 34 2c 20 32 35 20 3a 20 32 35 2c 20 32 36 20 3a 20 32 36 2c 20 32 37 20 3a 20 32 37 2c 20 32 38 20 3a 20 32 38 2c 20 32 Data Ascii: ails_sent" : 0, "groups" : { 1 : 1 }, "lists" : { 3 : 3, 5 : 5, 6 : 6, 7 : 7, 8 : 8, 9 : 9, 10 : 10, 11 : 11, 12 : 12, 13 : 13, 14 : 14, 15 : 15, 16 : 16, 17 : 17, 19 : 19, 20 : 20, 21 : 21, 22 : 22, 23 : 23, 24 : 24, 25 : 25, 26 : 26, 27 : 27, 28 : 28, 2
2025-01-14 13:18:26 UTC	1369	IN	Data Raw: 6e 74 5f 65 64 69 74 22 20 3a 20 30 2c 20 22 70 67 5f 61 63 63 6f 75 6e 74 5f 64 65 6c 65 74 65 22 20 3a 20 30 2c 20 22 70 67 5f 61 63 63 6f 75 6e 74 5f 6d 61 6e 61 67 65 5f 63 75 73 74 6f 6d 5f 66 69 65 6c 64 22 20 3a 20 30 2c 20 22 70 67 5f 64 65 61 6c 22 20 3a 20 31 2c 20 22 70 67 5f 64 65 61 6c 5f 64 65 6c 65 74 65 22 20 3a 20 31 2c 20 22 70 67 5f 64 65 61 6c 5f 72 65 61 73 73 69 67 6e 22 20 3a 20 31 2c 20 22 70 67 5f 64 65 61 6c 5f 66 69 65 6c 64 73 22 20 3a 20 31 2c 20 22 70 67 5f 64 65 61 6c 67 72 6f 75 70 5f 61 64 64 22 20 3a 20 31 2c 20 22 70 67 5f 64 65 61 6c 67 72 6f 75 70 5f 65 64 69 74 22 20 3a 20 31 2c 20 22 70 67 5f 64 65 61 6c 67 72 6f 75 70 5f 64 65 6c 65 74 65 22 20 3a 20 31 2c 20 22 70 67 5f 73 61 76 65 64 5f 72 65 73 70 6f 6e 73 65 73 Data Ascii: nt_edit" : 0, "pg_account_delete" : 0, "pg_account_manage_custom_field" : 0, "pg_deal" : 1, "pg_deal_delete" : 1, "pg_deal_reassign" : 1, "pg_deal_fields" : 1, "pg_dealgroup_add" : 1, "pg_dealgroup_edit" : 1, "pg_dealgroup_delete" : 1, "pg_saved_responses
2025-01-14 13:18:26 UTC	1369	IN	Data Raw: 64 5f 61 64 6d 69 6e 5f 74 65 6d 70 6c 61 74 65 5f 68 74 6d 5f 62 61 63 6b 75 70 22 20 3a 20 6e 75 6c 6c 2c 20 22 62 72 61 6e 64 5f 61 64 6d 69 6e 5f 74 65 6d 70 6c 61 74 65 5f 63 73 73 22 20 3a 20 22 22 2c 20 22 62 72 61 6e 64 5f 61 64 6d 69 6e 5f 74 65 6d 70 6c 61 74 65 5f 63 73 73 5f 62 61 63 6b 75 70 22 20 3a 20 6e 75 6c 6c 2c 20 22 62 72 61 6e 64 5f 70 75 62 6c 69 63 5f 74 65 6d 70 6c 61 74 65 5f 68 74 6d 22 20 3a 20 22 25 50 41 47 45 43 4f 4e 54 45 4e 54 25 5c 72 5c 6e 22 2c 20 22 62 72 61 6e 64 5f 70 75 62 6c 69 63 5f 74 65 6d 70 6c 61 74 65 5f 63 73 73 22 20 3a 20 22 22 2c 20 22 62 72 61 6e 64 5f 66 61 76 69 63 6f 6e 22 20 3a 20 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 6e 63 2d 6e 69 65 6c 73 65 6e 2e 64 6b 2f 66 69 6c 65 73 2f 74 65 6d 70 6c 61 74 Data Ascii: d_admin_template_htm_backup" : null, "brand_admin_template_css" : "", "brand_admin_template_css_backup" : null, "brand_public_template_htm" : "%PAGECONTENT%\r\n", "brand_public_template_css" : "", "brand_favicon" : "https://www.nc-nielsen.dk/files/templat
2025-01-14 13:18:26 UTC	1369	IN	Data Raw: 31 2c 20 22 73 6f 63 69 61 6c 64 61 74 61 22 20 3a 20 30 2c 20 22 6d 61 78 63 61 6d 70 61 69 67 6e 69 64 22 20 3a 20 31 35 30 2c 20 22 6d 61 78 6c 69 73 74 69 64 22 20 3a 20 32 34 2c 20 22 73 65 6e 74 65 6d 61 69 6c 73 22 20 3a 20 30 2c 20 22 64 65 6c 65 74 65 64 73 75 62 73 22 20 3a 20 30 2c 20 22 6f 6e 62 65 68 61 6c 66 6f 66 22 20 3a 20 30 2c 20 22 73 65 6e 74 5f 65 6d 61 69 6c 5f 74 65 73 74 5f 6d 69 6e 5f 63 6f 75 6e 74 22 20 3a 20 31 2c 20 22 73 65 6e 74 5f 65 6d 61 69 6c 5f 74 65 73 74 5f 6d 69 6e 5f 64 61 74 65 22 20 3a 20 22 32 30 32 35 2d 30 31 2d 31 34 20 30 31 3a 32 30 3a 34 37 22 2c 20 22 73 65 6e 74 5f 65 6d 61 69 6c 5f 74 65 73 74 5f 68 72 5f 63 6f 75 6e 74 22 20 3a 20 36 2c 20 22 73 65 6e 74 5f 65 6d 61 69 6c 5f 74 65 73 74 5f 68 72 5f 64 Data Ascii: 1, "socialdata" : 0, "maxcampaignid" : 150, "maxlistid" : 24, "sentemails" : 0, "deletedsubs" : 0, "onbehalfof" : 0, "sent_email_test_min_count" : 1, "sent_email_test_min_date" : "2025-01-14 01:20:47", "sent_email_test_hr_count" : 6, "sent_email_test_hr_d
2025-01-14 13:18:26 UTC	990	IN	Data Raw: 69 65 6c 73 65 6e 2e 64 6b 2f 46 69 6c 65 73 2f 49 6d 61 67 65 73 2f 6e 63 6e 69 65 6c 73 65 6e 2f 44 69 76 65 72 73 65 2f 6e 63 5f 6e 69 65 6c 73 65 6e 5f 6c 6f 67 6f 5f 61 63 2e 70 6e 67 22 2c 20 22 62 72 61 6e 64 5f 73 69 74 65 5f 6c 6f 67 6f 5f 73 6d 61 6c 6c 22 20 3a 20 22 68 74 74 70 73 3a 2f 2f 6e 63 2d 6e 69 65 6c 73 65 6e 2e 64 6b 2f 46 69 6c 65 73 2f 54 65 6d 70 6c 61 74 65 73 2f 44 65 73 69 67 6e 73 2f 6e 63 6e 69 65 6c 73 65 6e 2f 69 6d 61 67 65 73 2f 6e 63 5f 6e 69 65 6c 73 65 6e 5f 6c 6f 67 6f 5f 6b 76 61 64 72 61 74 2e 70 6e 67 22 2c 20 22 62 72 61 6e 64 5f 68 65 61 64 65 72 5f 74 65 78 74 22 20 3a 20 30 2c 20 22 62 72 61 6e 64 5f 68 65 61 64 65 72 5f 74 65 78 74 5f 76 61 6c 75 65 22 20 3a 20 22 22 2c 20 22 62 72 61 6e 64 5f 68 65 61 64 65 Data Ascii: ielsen.dk/Files/Images/ncnielsen/Diverse/nc_nielsen_logo_ac.png", "brand_site_logo_small" : "https://nc-nielsen.dk/Files/Templates/Designs/ncnielsen/images/nc_nielsen_logo_kvadrat.png", "brand_header_text" : 0, "brand_header_text_value" : "", "brand_heade