Windows Analysis Report
https://xeinadinuk.accountantspace.co.uk

Overview

General Information

Sample URL:	https://xeinadinuk.accountantspace.co.uk
Analysis ID:	1500522
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

HTML body contains low number of good links

HTML body with high number of embedded SVGs detected

Classification

Signatures

HTML body contains low number of good links

Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/

HTTP Parser: Number of links: 0

HTML body with high number of embedded SVGs detected

HTTP Parser: Total embedded SVG size: 197618

HTTP Parser: <input type="password" .../> found

Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="author".. found
Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="author".. found

Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="copyright".. found
Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49826 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49844 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/ HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/css/style.min.css?v=9c36d04a1cae7a1c8dc097d5038f549f HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/Scripts/lib.min.js?v=1348967b506b4f6306818ac4698d04d0 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/5.11.2/css/all.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://xeinadinuk.accountantspace.co.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://xeinadinuk.accountantspace.co.uk/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/q.js/1.4.1/q.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://xeinadinuk.accountantspace.co.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://xeinadinuk.accountantspace.co.uk/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/Scripts/app.min.js?v=1092a1a2912824a6c7910ccfe3edf064 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /ajax/libs/q.js/1.4.1/q.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/Scripts/lib.min.js?v=1348967b506b4f6306818ac4698d04d0 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@3.4.1/dist/js/bootstrap.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/jquery@2.2.4/dist/jquery.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/jquery-ui-dist@1.12.1/jquery-ui.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/inputmask@3.3.5/dist/jquery.inputmask.bundle.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/breeze-client@1.6.3/breeze.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/moment@2.24.0/min/moment-with-locales.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/Scripts/app.min.js?v=1092a1a2912824a6c7910ccfe3edf064 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/locales/en/app.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css?v=1724853405446 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/locales/en/app.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/config/features.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /activation/api/aaamigration/aaaflags/subdomain/xeinadinuk HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: sGnYoQhpy5EigRHxJNdv0g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /html/config/features.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /Content-Type: application/jsonX-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /activation/api/aaamigration/aaaflags/subdomain/xeinadinuk HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/content/favicon.ico HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 91Yttz+n2kYs3jdm8wYkpg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: NDL7SXd22Sx4LWd7JaizOA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /html/content/favicon.ico HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: mIL5uFpDC2XZ1+KH+zYMvg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/all.min.css HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/components/1.x.x/all.min.css HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-medium.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-small.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-small.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-medium.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/components/1.x.x/bundle.js HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/components/1.x.x/bundle.js HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.20.17/icons/assets/wk-icons.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/all.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: ",link:"https://www.youtube.com/watch?v=D0d2QgTzcHU",linkText:"Alan Cooper from Liberty Leasing Ltd explains why this rapidly expanding, FCA-regulated asset finance company chose Twinfield and what it's brought to the firm."},n={image:this.cdnEndPoint+"content/images/dopayLogo.png",name:"Khaled Abou-Zied, Group Finance Director, dopay",text:" equals www.youtube.com (Youtube)
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: ",link:"https://www.youtube.com/watch?v=wSeH3SCVPJg",linkText:"Philip Woodgate of Goodman Jones and their client, Khaled Abou-Zied from Dopay, explain why and how Twinfield was the right choice for Dopay. "},i={image:this.cdnEndPoint+"content/images/GoodmanLogo.jpg",name:"Philip Woodgate, Partner, Goodman Jones LLP",text:'"Twinfield delivers. As users for over ten years we equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: xeinadinuk.accountantspace.co.uk
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: fast.appcues.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: api.appcues.net
Source: global traffic	DNS traffic detected: DNS query: login.wolterskluwer.eu
Source: global traffic	DNS traffic detected: DNS query: cdn.wolterskluwer.io

Source: chromecache_154.2.dr, chromecache_152.2.dr, chromecache_173.2.dr, chromecache_120.2.dr	String found in binary or memory: http://angularjs.org
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://dbaron.org/log/20100309-faster-timeouts
Source: chromecache_101.2.dr	String found in binary or memory: http://durandaljs.com
Source: chromecache_152.2.dr, chromecache_120.2.dr	String found in binary or memory: http://errors.angularjs.org/1.7.9/
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://es5.github.io/#x15.5.4.20
Source: chromecache_101.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_101.2.dr	String found in binary or memory: http://getharvest.com
Source: chromecache_156.2.dr, chromecache_103.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://jsperf.com/string-repeat2/2
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://paulmillr.com)
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: http://www.addison.de
Source: chromecache_181.2.dr, chromecache_101.2.dr, chromecache_167.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-additional-properties-of-the-string.prototype-ob
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-call
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-string.prototype-
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-terms-and-definitions-number-type
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-toobject
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-typeof-operator-runtime-semantics-evaluation
Source: chromecache_110.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://api.accountantspace.co.uk/compliance/
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://api.accountantspace.co.uk/data-collection/
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://api.accountantspace.co.uk/practice-portal
Source: chromecache_190.2.dr	String found in binary or memory: https://az416426.vo.msecnd.net/scripts/b/ai.2.min.js
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2416
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2465
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2482
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2515
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=143658
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=143865
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=144190
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1062484
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1063993
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1170742
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=869996
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=907077#c14
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/bootstrap
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/breeze-client
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/inputmask
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/jquery
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/jquery-ui-dist
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/moment
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/icons/assets/wk-icons.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/icons/assets/wk-icons.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Italic.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Italic.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-LightItalic.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-LightItalic.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-MediumItalic.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-MediumItalic.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff2)
Source: chromecache_162.2.dr, chromecache_171.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/icons/assets/flags/
Source: chromecache_190.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
Source: chromecache_190.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/q.js/1.4.1/q.min.js
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://code.google.com/p/chromium/issues/detail?id=575314
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://code.google.com/p/v8/issues/detail?id=4161
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Math/imul
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://esdiscuss.org/topic/fixing-promise-resolve
Source: chromecache_164.2.dr, chromecache_117.2.dr	String found in binary or memory: https://fast.appcues.com
Source: chromecache_190.2.dr	String found in binary or memory: https://fast.appcues.com/27330.js
Source: chromecache_174.2.dr, chromecache_150.2.dr	String found in binary or memory: https://fast.appcues.com/generic/main/6.2.21/appcues.main.37c675fb5e2bda615a7b768ac06082e017429ff1.j
Source: chromecache_190.2.dr	String found in binary or memory: https://fast.appcues.com/widget-bundle.js
Source: chromecache_190.2.dr	String found in binary or memory: https://fast.appcues.com/widget.css
Source: chromecache_106.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_106.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_190.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Cabin:400
Source: chromecache_121.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvp9nsBXw.woff2)
Source: chromecache_121.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvptnsBXw.woff2)
Source: chromecache_121.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2)
Source: chromecache_179.2.dr, chromecache_126.2.dr, chromecache_155.2.dr, chromecache_175.2.dr, chromecache_183.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://gist.github.com/WebReflection/4327762cb87a8c634a29
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://gist.github.com/WebReflection/5593554
Source: chromecache_101.2.dr	String found in binary or memory: https://github.com/BlueSpire/Durandal
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/Raynos/observ-hash/issues/2#issuecomment-35857671
Source: chromecache_110.2.dr	String found in binary or memory: https://github.com/RobinHerbots/Inputmask
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/domenic/promises-unwrapping/issues/75
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/es-shims/es5-shim/blob/v3.4.0/es5-shim.js#L1304-L1324
Source: chromecache_101.2.dr	String found in binary or memory: https://github.com/harvesthq/chosen
Source: chromecache_101.2.dr	String found in binary or memory: https://github.com/harvesthq/chosen/blob/master/LICENSE.md
Source: chromecache_137.2.dr	String found in binary or memory: https://github.com/lipis/bootstrap-social
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/ljharb/is-arguments/blob/master/index.js
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/blob/0.35.3/LICENSE
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/176
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/252
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/314#issuecomment-70293986
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/438
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/petkaantonov/bluebird/wiki/Optimization-killers#32-leaking-arguments
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/tc39/ecma262/pull/316
Source: chromecache_101.2.dr, chromecache_183.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/umdjs/umd/blob/master/returnExports.js
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://login.wolterskluwer.eu
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://login.wolterskluwer.eu/selfservice/extern/locallogout
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://ocuksbstatic.blob.core.windows.net/iserve/WK-Basecone-Brochure-SMEs.pdf
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://twitter.com/ljharb/status/849335573114363904
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/flux/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/pricing/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/spenser/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.youtube.com/watch?v=D0d2QgTzcHU
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.youtube.com/watch?v=wSeH3SCVPJg

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49826 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49844 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@18/153@28/11

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2376 --field-trial-handle=2324,i,8835228511342235594,6212627677141902743,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://xeinadinuk.accountantspace.co.uk"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2376 --field-trial-handle=2324,i,8835228511342235594,6212627677141902743,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
151.101.1.229	jsdelivr.map.fastly.net	United States	54113	FASTLYUS	false
45.60.123.62	maga2pa.impervadns.net	United States	19551	INCAPSULAUS	false
52.38.248.37	api.appcues.net	United States	16509	AMAZON-02US	false
18.245.31.33	unknown	United States	16509	AMAZON-02US	false
18.239.83.84	dxqv408cny2ja.cloudfront.net	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.164	www.google.com	United States	15169	GOOGLEUS	false
104.17.25.14	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.9
192.168.2.6

Contacted Domains

Name	IP	Active
jsdelivr.map.fastly.net	151.101.1.229	true
bg.microsoft.map.fastly.net	199.232.214.172	true
maga2pa.impervadns.net	45.60.123.62	true
cdnjs.cloudflare.com	104.17.24.14	true
www.google.com	142.250.185.164	true
dxqv408cny2ja.cloudfront.net	18.239.83.84	true
api.appcues.net	52.38.248.37	true
windowsupdatebg.s.llnwi.net	87.248.205.0	true
cdn.wolterskluwer.io	unknown	unknown
cdn.jsdelivr.net	unknown	unknown
login.wolterskluwer.eu	unknown	unknown
xeinadinuk.accountantspace.co.uk	unknown	unknown
fast.appcues.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://xeinadinuk.accountantspace.co.uk/html/css/style.min.css?v=9c36d04a1cae7a1c8dc097d5038f549f	false	Avira URL Cloud: safe	unknown
https://cdn.jsdelivr.net/npm/jquery@2.2.4/dist/jquery.min.js	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/logo/assets/wheel-small.svg	false	Avira URL Cloud: safe	unknown
https://cdn.jsdelivr.net/npm/moment@2.24.0/min/moment-with-locales.min.js	false	Avira URL Cloud: safe	unknown
https://api.appcues.net/v1/socket/websocket?vsn=2.0.0	false	Avira URL Cloud: safe	unknown
https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	false		unknown
https://xeinadinuk.accountantspace.co.uk/html/Scripts/lib.min.js?v=1348967b506b4f6306818ac4698d04d0	false	Avira URL Cloud: safe	unknown
https://cdn.jsdelivr.net/npm/breeze-client@1.6.3/breeze.min.js	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/html/content/favicon.ico	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/html/locales/en/app.json	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/html/config/features.json	false	Avira URL Cloud: safe	unknown
https://cdn.jsdelivr.net/npm/bootstrap@3.4.1/dist/js/bootstrap.min.js	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css?v=1724853405446	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/html/	false		unknown
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff2	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/components/1.x.x/all.min.css	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/components/1.x.x/bundle.js	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff2	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/activation/api/aaamigration/aaaflags/subdomain/xeinadinuk	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/all.min.css	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff2	false	Avira URL Cloud: safe	unknown
https://xeinadinuk.accountantspace.co.uk/html/Scripts/app.min.js?v=1092a1a2912824a6c7910ccfe3edf064	false	Avira URL Cloud: safe	unknown
https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/logo/assets/wheel-medium.svg	false	Avira URL Cloud: safe	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 100	Unicode text, UTF-8 (with BOM) text, with no line terminators	60414E1A3D7B43E34121EB0BE25079EB	54A549F2D7025D0C7F10BA799FE4E4B7B8D77313	99A2042B719B04EB5C9FF03AFC3747D09D73DC373228DDD76001B984BA23E1B4
Chrome Cache Entry: 101	ASCII text, with very long lines (63963)	9C36D04A1CAE7A1C8DC097D5038F549F	36EABF74142A0D50C6959D6B5807B7CAC1101E50	F92236FF97B99BFD711FC135CA3683F59C17AE210DF3B9F204C0E09F5E9BA746
Chrome Cache Entry: 102	Web Open Font Format (Version 2), TrueType, length 28132, version 1.0	3F0A305675C5261E48FE4D03F9A7B219	5C3C7179D6ABF805C62F8ED93CE18328CC876998	9678D6087C119525FCB3F50CD70564C0756E0B8D0A641D396AD2E3EBC3E598FC
Chrome Cache Entry: 103	ASCII text, with very long lines (32074)	C15B1008DEC3C8967EA657A7BB4BAAEC	78489E580ADAEF931E6E5B131DAB556C397E4A1A	28CE75D953678C4942DF47A11707A15E3C756021CF89090E3E6AA7AD6B6971C3
Chrome Cache Entry: 104	SVG Scalable Vector Graphics image	C95CE072E627B7E218879EB660A5D96A	B76F4EF8F2131345BE24526CC6BB1ADB2CBFA403	4A696D6F647520F0A59E788BAF7F48BAD9344331F5215474E315B160B0A3EFB2
Chrome Cache Entry: 105	ASCII text, with very long lines (65536), with no line terminators	8DBB34C31314FDBEC1D3FB969163F54E	2DA9799C3DB7282F33CB1D1324B58348ABD63AF6	B44DBE330EDE5F0EBE5FA5D8D833868536D263774AB4D58409D5A88D232F8052
Chrome Cache Entry: 106	ASCII text, with very long lines (56656)	41D394990448B2C2B1AFE840E837DC8E	29250EF1FA6BFBDA364A1112A86B2FB7157DD44B	F8DE3F57F49B005896D4C3C10979DF9CFF5048DDFE29EBBE36507ED1EBFF60A4
Chrome Cache Entry: 107	ASCII text, with very long lines (65409)	30F39AE5D1D05A439046A7640510B486	716EFA29594EDAE8832BB8B12E7FB19BC06E06FE	BDE9BE4CBE799089A419225F87C2A9986043F6C7CB55853AAADAB7200713F136
Chrome Cache Entry: 108	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	4CDC517830ED85482F4CBECAA6DF3D0B	8D29B8B411009F613D239BBF261D610AC9AA72D7	F4A9B5F17FB3ED6C2D35EAC8DB30CD181EC1F9583CC76079B731EBEF3CDCB6FF
Chrome Cache Entry: 109	MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel	7B55148C1A330DFC1E9F80383918F69E	CBA12F20AE7817C83198D9D3A6B8DFB3D7FB0AEF	CD3B42EEE8383EC5CE44178BA0BE7DE74208C9BAFBA4F2497F32A7CBC0A7C505
Chrome Cache Entry: 110	ASCII text, with very long lines (686)	4D4ACF1B08F01EB06D5A4AB531CFF91E	823E7F75C70B927F5839D1A18040069978E41A61	730ACF15B8C81C1BB76EDB0B125CFB97D1F61D82B723575FD731A1D894DA34CB
Chrome Cache Entry: 111	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	756983964F7F66B1748D3AA178D49360	7C9BC38D4114CD8350AEA9A979D1813954117FCA	0FDA09BFB852989155762F5117D42C13434562425312B0343483EE5B839D9818
Chrome Cache Entry: 112	ASCII text, with very long lines (23117), with no line terminators	BD2739A8E548E19D0AA126A96453785E	FC726FFE905EC73C66C77527AA44C85C9B310395	41DB7B14881F9D878E4E1BBA54A99BE14460F78D77BC057BFFDAA4DC19A1A234
Chrome Cache Entry: 113	ASCII text, with no line terminators	8B068D499E6F22B2F38E0D392E2241CB	0D5F386322F3AB5F9A23B3EA4FEE82DB7342E7CA	204B5CE9D23D945629BE6876AB815F0A7A63ECAA052B43F0D42E2542C5FBC37B
Chrome Cache Entry: 114	gzip compressed data, from Unix, original size modulo 2^32 136387	F1B6F46427C54686C891BCF27253F333	63E84AFB9D358A06C84982A4B093A6C3D589D9BA	38E8F28A3D43795D238BCCF8A8E254466CB49A131294CCEC0F6589CA22301CD4
Chrome Cache Entry: 115	ASCII text, with very long lines (15790), with no line terminators	AE377A5204804C4A37A24A5770ED584F	A73FEEB0B4E6865D41DB75444DDCB0E5F23FE7FA	4C381F393559F472A1CEA79B0E74F0F95B5D53AE207CAD1A52499547D67AD15E
Chrome Cache Entry: 116	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	4ECEBBB3C7365F942AE1F20B0F6A0C2C	469BD482A78C4E2E557CD643DB911E6EB43D6D09	1EA81772F9878D8174BBF78BABEA0113700778A6B427E86935104482B2BC55E0
Chrome Cache Entry: 117	Unicode text, UTF-8 text, with very long lines (65504), with no line terminators	A949F1DF7EB424928C8D059123AD5A92	27D305B5F87671661275115F4E372024D0519F06	A4C820D4D48F5DD4F98291113D926CF9B55C7FD1C50CEE912C339D1E0061C1F8
Chrome Cache Entry: 118	ASCII text, with no line terminators	CA9611F1A8608983B1F47422C089A91A	D6F31BCB46E89F866A48C55D84CA593728ECCBA5	9DBF5758F1956B1A3A7BDEE6EA9AE6855FFB06925D0EDC2C6D4D7A3CD5BE1FE9
Chrome Cache Entry: 119	Unicode text, UTF-8 text, with very long lines (65528), with no line terminators	3715806CC33686C2EEB939A914C48F57	BE61BDF4A5F647675A17863A67FCBF33B0CB1A13	651748D5EF2377D5383FAE36CD19A8B2B760D6A9655F099FC0BFF5C9F061CDFB
Chrome Cache Entry: 120	ASCII text, with very long lines (671), with CRLF line terminators	765C34F204E136237BFBFB0CB9F3D797	E9E881A37455622665208B117A75D7BD5D901F19	FEA7B3E605064BD192BE3FA431828F1E5CCF6CF8C41601DBD6BF2C121724FCBF
Chrome Cache Entry: 121	ASCII text	3CF043CB7CAEC230C136A334AC226276	04DC20794618FFFB757301EA2B4AFEA8B1647476	F60088F1B82DB63FC3CA1E1C52B2F0ACFBB46DBBB10A97B1D0672135816C9EB8
Chrome Cache Entry: 122	ASCII text, with very long lines (65536), with no line terminators	A95936A1D5249B647BCC3782B8C9AE41	0DE948D17BEED33AC8A79510163FA03D3FFF9708	66A3DA3C3EEE32CBEEDAD89D5791E83A10515671A6F1C97C254AFB8A9A8968EC
Chrome Cache Entry: 123	ASCII text, with very long lines (15790), with no line terminators	AE377A5204804C4A37A24A5770ED584F	A73FEEB0B4E6865D41DB75444DDCB0E5F23FE7FA	4C381F393559F472A1CEA79B0E74F0F95B5D53AE207CAD1A52499547D67AD15E
Chrome Cache Entry: 124	Web Open Font Format (Version 2), TrueType, length 28076, version 1.0	876D74BCD0A927ABA5BE92BF7993F1AA	1FFC2B292EB17625A33FEAF5460E84D137846811	DCB085AD0FCA889C4A1B898CCC7458C5D586E5740E7B7BFFE065AC6A5E247ADA
Chrome Cache Entry: 125	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	C546C474F0C25D075E6A6D174FC660A2	47BC59FBF723C9CBC1F73F30E5D0827FADE95863	A1AAB6BF344685D67A6434D8F8609765D1CFFE8689780BA0FB110CE1CB12A898
Chrome Cache Entry: 126	ASCII text, with very long lines (39553)	2F34B630FFE30BA2FF2B91E3F3C322A1	B16FD8226BD6BFB08E568F1B1D0A21D60247CEFB	9EE2FCFF6709E4D0D24B09CA0FC56AADE12B4961ED9C43FD13B03248BFB57AFE
Chrome Cache Entry: 127	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	5C331D23F7DE3EF9C8E9BCF42D312910	DC6F04AD760B7378DF8BD9CEE556D2C9DE99FA08	FEFA2E3B615B6BE66C8A0AE6ADEC5DD3A65E97FD8780707C22D7596EE3406A89
Chrome Cache Entry: 128	ASCII text, with very long lines (32065)	2F6B11A7E914718E0290410E85366FE9	69BB69E25CA7D5EF0935317584E6153F3FD9A88C	05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E
Chrome Cache Entry: 129	SVG Scalable Vector Graphics image	35EB9EECCA96FFF84B71E3E06EC39C74	50751683D1C188D1C264544FFAC159F1D232FDE2	EB1C10185424739D47557586E2C6923E49B9CCE542293A2124D407FB1ECDAF12
Chrome Cache Entry: 130	ASCII text, with CRLF line terminators	08FBA50E2146A7994789EE63E3AA59C1	15A3AE8399CD39794CD248C1073B6885932FD813	4002A80FD21B36F46ECDD7B26A80DE9F134B090DA89D077C0979081DA2221C20
Chrome Cache Entry: 131	ASCII text, with very long lines (65450), with CRLF line terminators	7C5D886A944957E9ED1CC3C5EBA023E9	723652FAFE15C44F0EC6273B5383D07344DB07DD	E863418BAC8E02F87754F2880A927A199875150BE702C34F515A6680F645F89C
Chrome Cache Entry: 132	ASCII text, with very long lines (65536), with no line terminators	1B1C80B617BFCAF8C0766D41C4A3C680	6319F4A7D5F345583A730AB527704FF2491A9043	01D40DF7C31566CE3812ADB24F0B682AE7E19D4FAE67BBF69179C3E6FAB3655A
Chrome Cache Entry: 133	MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	C546C474F0C25D075E6A6D174FC660A2	47BC59FBF723C9CBC1F73F30E5D0827FADE95863	A1AAB6BF344685D67A6434D8F8609765D1CFFE8689780BA0FB110CE1CB12A898
Chrome Cache Entry: 134	ASCII text, with CRLF line terminators	823C8C9573F0DB1EB44199D9899D434E	E17471A321411BB36279834AA9F6D129D5781451	AB608C33070AC82DC44D277DAA2C0F3C96233C4797AE1D6D87900A10650139D4
Chrome Cache Entry: 135	SVG Scalable Vector Graphics image	D35B324745DACB564415B9CA1A44B880	BDCC948A0BA9523E709DECBFE84CDDE46DB28FCE	68301F50E34142C1DB26F2C75F0437111CC796295ED0A2E7898C22862E2767A8
Chrome Cache Entry: 136	Unicode text, UTF-8 (with BOM) text, with no line terminators	60414E1A3D7B43E34121EB0BE25079EB	54A549F2D7025D0C7F10BA799FE4E4B7B8D77313	99A2042B719B04EB5C9FF03AFC3747D09D73DC373228DDD76001B984BA23E1B4
Chrome Cache Entry: 137	ASCII text, with very long lines (556), with CRLF line terminators	E211F3EB78F9E7C2FD2BF0043481EA72	7A0031B909533E7528F2E55E1180FB2EEAA5F000	275AD38575769A9C620913155A7BACF2636AAE462F78A2D67DB83C4D1461A60E
Chrome Cache Entry: 138	JSON data	1C80892A2890D1BDE01390BB4DA55F2D	04E42C181F1919E3528F6BE1DA974DD649724136	1E2477A9A4FE85D5174BD244499A74F622E529DDA7A4FC258C67EFA56C4C6EBB
Chrome Cache Entry: 139	MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel	7B55148C1A330DFC1E9F80383918F69E	CBA12F20AE7817C83198D9D3A6B8DFB3D7FB0AEF	CD3B42EEE8383EC5CE44178BA0BE7DE74208C9BAFBA4F2497F32A7CBC0A7C505
Chrome Cache Entry: 140	JSON data	459E595F0CF3765897907FA30278291C	6C9C06740A2A69EF99E3A05AE768DC76EC33A85C	9F53AD7DFD66CD28F347E979F7668D9EAF75E8DE77A688B403CFCBDA3791ED26
Chrome Cache Entry: 141	gzip compressed data, from Unix, original size modulo 2^32 22636	EEF92091FA6BD0B262FE0FA5372449E2	F008802E3DC19F5BED3BBB9CDBEFA3EAAFF7C170	F112B15DCD50A0CA45C9DA64DC600BBE47E4912BB362B7F47467E2EAA078C60D
Chrome Cache Entry: 142	JSON data	0F1CA11D2370E1BBCFD45FE2C52C8D9C	EBF4EA54BFE7E3924A4B12BEAE96F8C93230B4B8	749DB89B7E8A08BB2B9449A47A11412A3534B0D5D580B8175FF67BF65DED5291
Chrome Cache Entry: 143	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	756983964F7F66B1748D3AA178D49360	7C9BC38D4114CD8350AEA9A979D1813954117FCA	0FDA09BFB852989155762F5117D42C13434562425312B0343483EE5B839D9818
Chrome Cache Entry: 144	JSON data	0F1CA11D2370E1BBCFD45FE2C52C8D9C	EBF4EA54BFE7E3924A4B12BEAE96F8C93230B4B8	749DB89B7E8A08BB2B9449A47A11412A3534B0D5D580B8175FF67BF65DED5291
Chrome Cache Entry: 145	gzip compressed data, from Unix, original size modulo 2^32 136387	F1B6F46427C54686C891BCF27253F333	63E84AFB9D358A06C84982A4B093A6C3D589D9BA	38E8F28A3D43795D238BCCF8A8E254466CB49A131294CCEC0F6589CA22301CD4
Chrome Cache Entry: 146	JSON data	459E595F0CF3765897907FA30278291C	6C9C06740A2A69EF99E3A05AE768DC76EC33A85C	9F53AD7DFD66CD28F347E979F7668D9EAF75E8DE77A688B403CFCBDA3791ED26
Chrome Cache Entry: 147	ASCII text, with very long lines (65450), with CRLF line terminators	7C5D886A944957E9ED1CC3C5EBA023E9	723652FAFE15C44F0EC6273B5383D07344DB07DD	E863418BAC8E02F87754F2880A927A199875150BE702C34F515A6680F645F89C
Chrome Cache Entry: 148	ASCII text, with very long lines (65536), with no line terminators	8DBB34C31314FDBEC1D3FB969163F54E	2DA9799C3DB7282F33CB1D1324B58348ABD63AF6	B44DBE330EDE5F0EBE5FA5D8D833868536D263774AB4D58409D5A88D232F8052
Chrome Cache Entry: 149	Unicode text, UTF-8 text, with very long lines (1714), with CRLF line terminators	789AF0CE86B1480A128292E6ABCFD3D4	983ADE3E58AE2A045816560B6B543E4ABAA84350	7651F142C898F84A78126AB98F68961E90DEA34BB46365A59C80AF7EC5D344D7
Chrome Cache Entry: 150	ASCII text, with very long lines (19067)	9172BFEEA3BAFF5C2799245400BC9FBD	6FA7F93C9E96B73972E0904EA4A2F0A9F4ADDD41	6D02EB2B2C82CBBC89F5E056461E56EA14F3AC63F0483095B45ADF9D79055BAC
Chrome Cache Entry: 151	Web Open Font Format (Version 2), TrueType, length 129488, version 4.6946	F0B8B4E288FFE614D50924B0A22CB66F	CA7EDC6D1905523E8BA1299BF2B25D458E309EC5	C9D1C88B4D4A995A07959935954C0263F0BEC7A1327D41EC42CEA1A5AEC88A81
Chrome Cache Entry: 152	ASCII text, with very long lines (671), with CRLF line terminators	765C34F204E136237BFBFB0CB9F3D797	E9E881A37455622665208B117A75D7BD5D901F19	FEA7B3E605064BD192BE3FA431828F1E5CCF6CF8C41601DBD6BF2C121724FCBF
Chrome Cache Entry: 153	PC bitmap, Windows 3.x format, 60 x 60 x 32, resolution 3780 x 3780 px/m, cbSize 14454, bits offset 54	8DD10CC483E1A772B6977AE7ACBD9FE8	1E612AB4E8BE4F9615BF41E78F786478824B84EB	99528431F351BEAF6AE245EA2E96FF1B9FE4FA15D5BDF7799BE3E938493BC0E6
Chrome Cache Entry: 154	ASCII text, with very long lines (1253), with CRLF line terminators	AC6CF5DC25E23BA8764388B557DEBC3B	A5D151E496262A29CF88B8FFEEA68E547FA9E5F8	5C458B84091402CBE86561DC6F75C945848072BDC4A7E43D57FE22A8892EFC56
Chrome Cache Entry: 155	ASCII text, with very long lines (39553)	2F34B630FFE30BA2FF2B91E3F3C322A1	B16FD8226BD6BFB08E568F1B1D0A21D60247CEFB	9EE2FCFF6709E4D0D24B09CA0FC56AADE12B4961ED9C43FD13B03248BFB57AFE
Chrome Cache Entry: 156	ASCII text, with very long lines (32074)	C15B1008DEC3C8967EA657A7BB4BAAEC	78489E580ADAEF931E6E5B131DAB556C397E4A1A	28CE75D953678C4942DF47A11707A15E3C756021CF89090E3E6AA7AD6B6971C3
Chrome Cache Entry: 157	ASCII text, with very long lines (32017)	4B676B78BF02496643FC8F2A04627098	00994E58E1DBD56E427A018A5679E9F2E3E972A1	F0B4CFD472940AE53A080C0F3D4D8F7B8CE7C5A267CEC7585EAF0E2E4E3F8913
Chrome Cache Entry: 158	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	2F044DBC5AA9B85999F7FAD62F52EA1F	99406A39782D0D7171D99275619944814C81F15B	BD5803E2E4D049528EE76E29FE1114F950DE7F51A014B461BF57E1349B17F64D
Chrome Cache Entry: 159	ASCII text, with CRLF line terminators	F2517C54677F40337CA80B13C8E0D56F	B15E9C1F145767F676C31596C66ED323564D96B4	E0F5297DBF397BB9AE3426FA3A328109C50518103CA5E84FA7F6143E596A49DC
Chrome Cache Entry: 160	ASCII text, with very long lines (65536), with no line terminators	1B1C80B617BFCAF8C0766D41C4A3C680	6319F4A7D5F345583A730AB527704FF2491A9043	01D40DF7C31566CE3812ADB24F0B682AE7E19D4FAE67BBF69179C3E6FAB3655A
Chrome Cache Entry: 161	Unicode text, UTF-8 (with BOM) text, with very long lines (502), with CRLF line terminators	69A739436E59455F395A89BC7E1AF671	FC8487997F86D18ADA9515349F5C9271A95A0CD6	97E82E06413FB418597900939A79DAFA9CD65C4D43A63C3E2CEFD487401C7FAC
Chrome Cache Entry: 162	Unicode text, UTF-8 (with BOM) text, with very long lines (849), with CRLF line terminators	A8F123F3CE775F945F752B59BB01F90A	478E7A81741AFC61DEC6FC82D2F076E26D54DA92	0D9BA1057F6D997DADC859C3CBC1BF42C33116A50C3ED26DCBE1D372C1F4BEE9
Chrome Cache Entry: 163	ASCII text, with no line terminators	CA9611F1A8608983B1F47422C089A91A	D6F31BCB46E89F866A48C55D84CA593728ECCBA5	9DBF5758F1956B1A3A7BDEE6EA9AE6855FFB06925D0EDC2C6D4D7A3CD5BE1FE9
Chrome Cache Entry: 164	Unicode text, UTF-8 text, with very long lines (65504), with no line terminators	A949F1DF7EB424928C8D059123AD5A92	27D305B5F87671661275115F4E372024D0519F06	A4C820D4D48F5DD4F98291113D926CF9B55C7FD1C50CEE912C339D1E0061C1F8
Chrome Cache Entry: 165	SVG Scalable Vector Graphics image	35EB9EECCA96FFF84B71E3E06EC39C74	50751683D1C188D1C264544FFAC159F1D232FDE2	EB1C10185424739D47557586E2C6923E49B9CCE542293A2124D407FB1ECDAF12
Chrome Cache Entry: 166	Web Open Font Format (Version 2), TrueType, length 129740, version 4.6946	B8538974949E095F154EEF59DD942B1B	1CBE908D3BB8DAB1978A19D9E66E6AB756A6ED8E	89A6001A9E48F854AEB5020315AA57B3D7D3D7389AC697EB6B2F96D79284B22E
Chrome Cache Entry: 167	ASCII text, with very long lines (65536), with no line terminators	CC1792056F011D9935011C3625C9068C	1C2129B449BC36244B2082EC4936A80CA9E33C64	DF20F41AD6779332CABB0C4460ED81C497292509182338EF7BED4F21A749923B
Chrome Cache Entry: 168	Web Open Font Format (Version 2), TrueType, length 132864, version 4.6946	6B928CF33F317817B2DB0736A0A04252	011BA5C0989DE2CA11E67153618AC414BB71B6AC	C9DDE2EAC972AF273A2E70666BEB6C577834268B9EA12E9A436FD787E17A20CE
Chrome Cache Entry: 169	ASCII text, with very long lines (672)	5BE05CE494E7CAC41D062A0B12A1657C	18E8D5CE83DB9C4CACDB301F0105A370CC0F5224	C2F5A697CF483B8A50B286EC9481C2767BCC448AD563047894E7E623DE8049EB
Chrome Cache Entry: 170	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	5C331D23F7DE3EF9C8E9BCF42D312910	DC6F04AD760B7378DF8BD9CEE556D2C9DE99FA08	FEFA2E3B615B6BE66C8A0AE6ADEC5DD3A65E97FD8780707C22D7596EE3406A89
Chrome Cache Entry: 171	Unicode text, UTF-8 (with BOM) text, with very long lines (849), with CRLF line terminators	A8F123F3CE775F945F752B59BB01F90A	478E7A81741AFC61DEC6FC82D2F076E26D54DA92	0D9BA1057F6D997DADC859C3CBC1BF42C33116A50C3ED26DCBE1D372C1F4BEE9
Chrome Cache Entry: 172	JSON data	1C80892A2890D1BDE01390BB4DA55F2D	04E42C181F1919E3528F6BE1DA974DD649724136	1E2477A9A4FE85D5174BD244499A74F622E529DDA7A4FC258C67EFA56C4C6EBB
Chrome Cache Entry: 173	ASCII text, with very long lines (1253), with CRLF line terminators	AC6CF5DC25E23BA8764388B557DEBC3B	A5D151E496262A29CF88B8FFEEA68E547FA9E5F8	5C458B84091402CBE86561DC6F75C945848072BDC4A7E43D57FE22A8892EFC56
Chrome Cache Entry: 174	ASCII text, with very long lines (19067)	9172BFEEA3BAFF5C2799245400BC9FBD	6FA7F93C9E96B73972E0904EA4A2F0A9F4ADDD41	6D02EB2B2C82CBBC89F5E056461E56EA14F3AC63F0483095B45ADF9D79055BAC
Chrome Cache Entry: 175	ASCII text, with very long lines (39553), with CRLF line terminators	105A4995B8777AEAF68BFF64BF7D2AE0	E21390F730EB97D3D26B908AAACECD0A00A433E0	A915D483B99AF421F4813E6B60599B4E39FAFF120E54B5E9838386D4AE1A4C60
Chrome Cache Entry: 176	ASCII text, with very long lines (32017)	4B676B78BF02496643FC8F2A04627098	00994E58E1DBD56E427A018A5679E9F2E3E972A1	F0B4CFD472940AE53A080C0F3D4D8F7B8CE7C5A267CEC7585EAF0E2E4E3F8913
Chrome Cache Entry: 177	ASCII text, with no line terminators	CA9611F1A8608983B1F47422C089A91A	D6F31BCB46E89F866A48C55D84CA593728ECCBA5	9DBF5758F1956B1A3A7BDEE6EA9AE6855FFB06925D0EDC2C6D4D7A3CD5BE1FE9
Chrome Cache Entry: 178	SVG Scalable Vector Graphics image	C95CE072E627B7E218879EB660A5D96A	B76F4EF8F2131345BE24526CC6BB1ADB2CBFA403	4A696D6F647520F0A59E788BAF7F48BAD9344331F5215474E315B160B0A3EFB2
Chrome Cache Entry: 179	ASCII text, with very long lines (39553), with CRLF line terminators	105A4995B8777AEAF68BFF64BF7D2AE0	E21390F730EB97D3D26B908AAACECD0A00A433E0	A915D483B99AF421F4813E6B60599B4E39FAFF120E54B5E9838386D4AE1A4C60
Chrome Cache Entry: 180	Unicode text, UTF-8 text, with very long lines (65528), with no line terminators	3715806CC33686C2EEB939A914C48F57	BE61BDF4A5F647675A17863A67FCBF33B0CB1A13	651748D5EF2377D5383FAE36CD19A8B2B760D6A9655F099FC0BFF5C9F061CDFB
Chrome Cache Entry: 181	ASCII text, with very long lines (65536), with no line terminators	CC1792056F011D9935011C3625C9068C	1C2129B449BC36244B2082EC4936A80CA9E33C64	DF20F41AD6779332CABB0C4460ED81C497292509182338EF7BED4F21A749923B
Chrome Cache Entry: 182	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	4CDC517830ED85482F4CBECAA6DF3D0B	8D29B8B411009F613D239BBF261D610AC9AA72D7	F4A9B5F17FB3ED6C2D35EAC8DB30CD181EC1F9583CC76079B731EBEF3CDCB6FF
Chrome Cache Entry: 183	ASCII text, with very long lines (65365), with CRLF line terminators	E4144B27FFE4358234EA86D48C68B3AF	EC8374EC72171245107A6319EAC3F3B5ADDC340B	DC6FFE00EA357A0F8CE9D0104243CD52ED4A09E4C4594D27DBE5B44C3AF92C4D
Chrome Cache Entry: 184	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	2F044DBC5AA9B85999F7FAD62F52EA1F	99406A39782D0D7171D99275619944814C81F15B	BD5803E2E4D049528EE76E29FE1114F950DE7F51A014B461BF57E1349B17F64D
Chrome Cache Entry: 185	ASCII text, with very long lines (32065)	2F6B11A7E914718E0290410E85366FE9	69BB69E25CA7D5EF0935317584E6153F3FD9A88C	05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E
Chrome Cache Entry: 186	Unicode text, UTF-8 text, with very long lines (1714), with CRLF line terminators	789AF0CE86B1480A128292E6ABCFD3D4	983ADE3E58AE2A045816560B6B543E4ABAA84350	7651F142C898F84A78126AB98F68961E90DEA34BB46365A59C80AF7EC5D344D7
Chrome Cache Entry: 187	ASCII text, with very long lines (65536), with no line terminators	D1B774F9EB73495FA7C52673C652E53D	54246A764D90F610BB21904D7F6C0CBD11EE1EEE	80AFF5560C430F1150FD83C327E6319934C1CF430E6519A5F5E4CA4931BE8FF3
Chrome Cache Entry: 188	ASCII text, with very long lines (23044), with no line terminators	15E91484DCE07E38D1525154EB72FBEB	FF82B21EDE88A4F171E05F1DFFAA971A53E0AC2D	65589739D0D6EB70B36F2753C16C33E6D88B2270787E2035E274052C28251DDA
Chrome Cache Entry: 189	SVG Scalable Vector Graphics image	D35B324745DACB564415B9CA1A44B880	BDCC948A0BA9523E709DECBFE84CDDE46DB28FCE	68301F50E34142C1DB26F2C75F0437111CC796295ED0A2E7898C22862E2767A8
Chrome Cache Entry: 190	HTML document, Unicode text, UTF-8 text, with very long lines (2811), with CRLF line terminators	E7A92FFAD837083610F8A929F528E578	5D3BDF3ED0646A4E78F943F084E18CB2FDA4581A	98F2E679B4A244E78191C0EE5784F7464F7966F1B5C172CCEC6927D8A8A201AC
Chrome Cache Entry: 191	PC bitmap, Windows 3.x format, 60 x 60 x 32, resolution 3780 x 3780 px/m, cbSize 14454, bits offset 54	8DD10CC483E1A772B6977AE7ACBD9FE8	1E612AB4E8BE4F9615BF41E78F786478824B84EB	99528431F351BEAF6AE245EA2E96FF1B9FE4FA15D5BDF7799BE3E938493BC0E6
Chrome Cache Entry: 98	ASCII text, with very long lines (65409)	30F39AE5D1D05A439046A7640510B486	716EFA29594EDAE8832BB8B12E7FB19BC06E06FE	BDE9BE4CBE799089A419225F87C2A9986043F6C7CB55853AAADAB7200713F136
Chrome Cache Entry: 99	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	4ECEBBB3C7365F942AE1F20B0F6A0C2C	469BD482A78C4E2E557CD643DB911E6EB43D6D09	1EA81772F9878D8174BBF78BABEA0113700778A6B427E86935104482B2BC55E0

HTML body contains low number of good links

HTTP Parser: Number of links: 0

HTML body with high number of embedded SVGs detected

HTTP Parser: Total embedded SVG size: 197618

HTTP Parser: <input type="password" .../> found

Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="author".. found
Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="author".. found

Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="copyright".. found
Source: https://login.wolterskluwer.eu/auth/core/login?signin=fbd494a82bfa796c18c5f8b21d35e2dc9a829f47d8e36fa84e3acade16340385&client_id=WK.UK.OneClick.MFA&redirect_uri=https://xeinadinuk.accountantspace.co.uk/	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49826 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49844 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199
Source: unknown	TCP traffic detected without corresponding DNS query: 40.113.103.199

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/ HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/css/style.min.css?v=9c36d04a1cae7a1c8dc097d5038f549f HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/Scripts/lib.min.js?v=1348967b506b4f6306818ac4698d04d0 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/5.11.2/css/all.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://xeinadinuk.accountantspace.co.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://xeinadinuk.accountantspace.co.uk/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/q.js/1.4.1/q.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://xeinadinuk.accountantspace.co.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://xeinadinuk.accountantspace.co.uk/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/Scripts/app.min.js?v=1092a1a2912824a6c7910ccfe3edf064 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /ajax/libs/q.js/1.4.1/q.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/Scripts/lib.min.js?v=1348967b506b4f6306818ac4698d04d0 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /npm/bootstrap@3.4.1/dist/js/bootstrap.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/jquery@2.2.4/dist/jquery.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/jquery-ui-dist@1.12.1/jquery-ui.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/inputmask@3.3.5/dist/jquery.inputmask.bundle.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/breeze-client@1.6.3/breeze.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /npm/moment@2.24.0/min/moment-with-locales.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html/Scripts/app.min.js?v=1092a1a2912824a6c7910ccfe3edf064 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/locales/en/app.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css?v=1724853405446 HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/locales/en/app.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/config/features.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /activation/api/aaamigration/aaaflags/subdomain/xeinadinuk HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: sGnYoQhpy5EigRHxJNdv0g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /html/config/features.json HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /Content-Type: application/jsonX-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /activation/api/aaamigration/aaaflags/subdomain/xeinadinuk HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /html/content/favicon.ico HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://xeinadinuk.accountantspace.co.uk/html/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /servicehosts/oneclick/api/configuration/subdomains/xeinadinuk/theme/css HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 91Yttz+n2kYs3jdm8wYkpg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: NDL7SXd22Sx4LWd7JaizOA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /html/content/favicon.ico HTTP/1.1Host: xeinadinuk.accountantspace.co.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: visid_incap_2815525=1cDmLerCTAGGLDEu1Oh8gZUsz2YAAAAAQUIPAAAAAAACUXUntjpdoXd9DzHOTUyO; incap_ses_1700_2815525=uaYeMF/S0RvtS9IoHZ2XF5Ysz2YAAAAA4vmWOuK9AfDa/+H+thwOJA==
Source: global traffic	HTTP traffic detected: GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1Host: api.appcues.netConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://xeinadinuk.accountantspace.co.ukSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: mIL5uFpDC2XZ1+KH+zYMvg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/all.min.css HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/components/1.x.x/all.min.css HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-medium.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-small.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-small.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.x.x/logo/assets/wheel-medium.svg HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/components/1.x.x/bundle.js HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/components/1.x.x/bundle.js HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.wolterskluwer.eu/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wk/fundamentals/1.20.17/icons/assets/wk-icons.woff2 HTTP/1.1Host: cdn.wolterskluwer.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.wolterskluwer.eusec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/all.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: ",link:"https://www.youtube.com/watch?v=D0d2QgTzcHU",linkText:"Alan Cooper from Liberty Leasing Ltd explains why this rapidly expanding, FCA-regulated asset finance company chose Twinfield and what it's brought to the firm."},n={image:this.cdnEndPoint+"content/images/dopayLogo.png",name:"Khaled Abou-Zied, Group Finance Director, dopay",text:" equals www.youtube.com (Youtube)
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: ",link:"https://www.youtube.com/watch?v=wSeH3SCVPJg",linkText:"Philip Woodgate of Goodman Jones and their client, Khaled Abou-Zied from Dopay, explain why and how Twinfield was the right choice for Dopay. "},i={image:this.cdnEndPoint+"content/images/GoodmanLogo.jpg",name:"Philip Woodgate, Partner, Goodman Jones LLP",text:'"Twinfield delivers. As users for over ten years we equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: xeinadinuk.accountantspace.co.uk
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: fast.appcues.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: api.appcues.net
Source: global traffic	DNS traffic detected: DNS query: login.wolterskluwer.eu
Source: global traffic	DNS traffic detected: DNS query: cdn.wolterskluwer.io

Source: chromecache_154.2.dr, chromecache_152.2.dr, chromecache_173.2.dr, chromecache_120.2.dr	String found in binary or memory: http://angularjs.org
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://dbaron.org/log/20100309-faster-timeouts
Source: chromecache_101.2.dr	String found in binary or memory: http://durandaljs.com
Source: chromecache_152.2.dr, chromecache_120.2.dr	String found in binary or memory: http://errors.angularjs.org/1.7.9/
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://es5.github.io/#x15.5.4.20
Source: chromecache_101.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_101.2.dr	String found in binary or memory: http://getharvest.com
Source: chromecache_156.2.dr, chromecache_103.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://jsperf.com/string-repeat2/2
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://paulmillr.com)
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: chromecache_186.2.dr	String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: http://www.addison.de
Source: chromecache_181.2.dr, chromecache_101.2.dr, chromecache_167.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-additional-properties-of-the-string.prototype-ob
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-call
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-string.prototype-
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-terms-and-definitions-number-type
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-toobject
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: http://www.ecma-international.org/ecma-262/6.0/#sec-typeof-operator-runtime-semantics-evaluation
Source: chromecache_110.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://api.accountantspace.co.uk/compliance/
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://api.accountantspace.co.uk/data-collection/
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://api.accountantspace.co.uk/practice-portal
Source: chromecache_190.2.dr	String found in binary or memory: https://az416426.vo.msecnd.net/scripts/b/ai.2.min.js
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2416
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2465
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2482
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.ecmascript.org/show_bug.cgi?id=2515
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=143658
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=143865
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=144190
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1062484
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1063993
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1170742
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=869996
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=907077#c14
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/bootstrap
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/breeze-client
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/inputmask
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/jquery
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/jquery-ui-dist
Source: chromecache_190.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/moment
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/icons/assets/wk-icons.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/icons/assets/wk-icons.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Italic.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Italic.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Light.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-LightItalic.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-LightItalic.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Medium.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-MediumItalic.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-MediumItalic.woff2)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff)
Source: chromecache_161.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.15.5/typography/assets/FiraSans-Regular.woff2)
Source: chromecache_162.2.dr, chromecache_171.2.dr	String found in binary or memory: https://cdn.wolterskluwer.io/wk/fundamentals/1.x.x/icons/assets/flags/
Source: chromecache_190.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
Source: chromecache_190.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/q.js/1.4.1/q.min.js
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://code.google.com/p/chromium/issues/detail?id=575314
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://code.google.com/p/v8/issues/detail?id=4161
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Math/imul
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://esdiscuss.org/topic/fixing-promise-resolve
Source: chromecache_164.2.dr, chromecache_117.2.dr	String found in binary or memory: https://fast.appcues.com
Source: chromecache_190.2.dr	String found in binary or memory: https://fast.appcues.com/27330.js
Source: chromecache_174.2.dr, chromecache_150.2.dr	String found in binary or memory: https://fast.appcues.com/generic/main/6.2.21/appcues.main.37c675fb5e2bda615a7b768ac06082e017429ff1.j
Source: chromecache_190.2.dr	String found in binary or memory: https://fast.appcues.com/widget-bundle.js
Source: chromecache_190.2.dr	String found in binary or memory: https://fast.appcues.com/widget.css
Source: chromecache_106.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_106.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_190.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Cabin:400
Source: chromecache_121.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvp9nsBXw.woff2)
Source: chromecache_121.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvptnsBXw.woff2)
Source: chromecache_121.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2)
Source: chromecache_179.2.dr, chromecache_126.2.dr, chromecache_155.2.dr, chromecache_175.2.dr, chromecache_183.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://gist.github.com/WebReflection/4327762cb87a8c634a29
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://gist.github.com/WebReflection/5593554
Source: chromecache_101.2.dr	String found in binary or memory: https://github.com/BlueSpire/Durandal
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/Raynos/observ-hash/issues/2#issuecomment-35857671
Source: chromecache_110.2.dr	String found in binary or memory: https://github.com/RobinHerbots/Inputmask
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/domenic/promises-unwrapping/issues/75
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/es-shims/es5-shim/blob/v3.4.0/es5-shim.js#L1304-L1324
Source: chromecache_101.2.dr	String found in binary or memory: https://github.com/harvesthq/chosen
Source: chromecache_101.2.dr	String found in binary or memory: https://github.com/harvesthq/chosen/blob/master/LICENSE.md
Source: chromecache_137.2.dr	String found in binary or memory: https://github.com/lipis/bootstrap-social
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/ljharb/is-arguments/blob/master/index.js
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/blob/0.35.3/LICENSE
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/176
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/252
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/314#issuecomment-70293986
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/paulmillr/es6-shim/issues/438
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/petkaantonov/bluebird/wiki/Optimization-killers#32-leaking-arguments
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/tc39/ecma262/pull/316
Source: chromecache_101.2.dr, chromecache_183.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://github.com/umdjs/umd/blob/master/returnExports.js
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://login.wolterskluwer.eu
Source: chromecache_138.2.dr, chromecache_172.2.dr	String found in binary or memory: https://login.wolterskluwer.eu/selfservice/extern/locallogout
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://ocuksbstatic.blob.core.windows.net/iserve/WK-Basecone-Brochure-SMEs.pdf
Source: chromecache_149.2.dr, chromecache_186.2.dr	String found in binary or memory: https://twitter.com/ljharb/status/849335573114363904
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/flux/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/pricing/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.basecone.com/en/spenser/
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.youtube.com/watch?v=D0d2QgTzcHU
Source: chromecache_148.2.dr, chromecache_105.2.dr	String found in binary or memory: https://www.youtube.com/watch?v=wSeH3SCVPJg

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49826 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49844 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@18/153@28/11

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2376 --field-trial-handle=2324,i,8835228511342235594,6212627677141902743,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://xeinadinuk.accountantspace.co.uk"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2376 --field-trial-handle=2324,i,8835228511342235594,6212627677141902743,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1500522
Product:	CloudBasic
Start time:	15:55:40
Start date:	28.08.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://xeinadinuk.accountantspace.co.uk

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://xeinadinuk.accountantspace.co.uk

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://xeinadinuk.accountantspace.co.uk