Resubmissions

11/06/2024, 20:30 UTC

240611-zam9ks1alh 1

11/06/2024, 20:25 UTC

240611-y698jszhjg 1

11/06/2024, 20:23 UTC

240611-y589vszglj 1

Analysis

  • max time kernel
    26s
  • max time network
    23s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240426-en
  • resource tags

    arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    11/06/2024, 20:30 UTC

General

  • Target

    https://in.xero.com/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton

Score
1/10

Malware Config

Signatures

  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies Internet Explorer settings 1 TTPs 1 IoCs
  • Modifies registry class 1 IoCs
  • NTFS ADS 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 7 IoCs
  • Suspicious use of FindShellTrayWindow 34 IoCs
  • Suspicious use of SendNotifyMessage 12 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://in.xero.com/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
    1⤵
    • Enumerates system info in registry
    • Modifies registry class
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:3352
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x104,0x108,0x10c,0x100,0x110,0x7ffda9ac3cb8,0x7ffda9ac3cc8,0x7ffda9ac3cd8
      2⤵
        PID:684
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1944 /prefetch:2
        2⤵
          PID:4584
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2352 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:4236
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2772 /prefetch:8
          2⤵
            PID:1536
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
            2⤵
              PID:4964
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
              2⤵
                PID:2252
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5016 /prefetch:8
                2⤵
                • Suspicious behavior: EnumeratesProcesses
                PID:2508
              • C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5272 /prefetch:8
                2⤵
                • Suspicious behavior: EnumeratesProcesses
                PID:1704
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5476 /prefetch:1
                2⤵
                  PID:2928
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5368 /prefetch:8
                  2⤵
                  • NTFS ADS
                  • Suspicious behavior: EnumeratesProcesses
                  PID:3864
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4652 /prefetch:1
                  2⤵
                    PID:4380
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
                    2⤵
                      PID:3156
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
                      2⤵
                        PID:1680
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1928,2699782730057480436,13220406349031967829,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5884 /prefetch:1
                        2⤵
                          PID:236
                      • C:\Windows\System32\CompPkgSrv.exe
                        C:\Windows\System32\CompPkgSrv.exe -Embedding
                        1⤵
                          PID:4512
                        • C:\Windows\System32\CompPkgSrv.exe
                          C:\Windows\System32\CompPkgSrv.exe -Embedding
                          1⤵
                            PID:5092
                          • C:\Windows\System32\rundll32.exe
                            C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
                            1⤵
                              PID:2096
                            • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
                              "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\Invoice 24.0229-42.pdf"
                              1⤵
                              • Checks processor information in registry
                              • Modifies Internet Explorer settings
                              • Suspicious use of FindShellTrayWindow
                              • Suspicious use of SetWindowsHookEx
                              PID:2328
                              • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
                                2⤵
                                  PID:4124
                                  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                    "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=531E8C7E754D5413A1B42D604DCF1E7B --mojo-platform-channel-handle=1764 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
                                    3⤵
                                      PID:1836
                                    • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=ACFA5F370AB19E2D0469208933DE91E9 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=ACFA5F370AB19E2D0469208933DE91E9 --renderer-client-id=2 --mojo-platform-channel-handle=1756 --allow-no-sandbox-job /prefetch:1
                                      3⤵
                                        PID:3168
                                      • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                        "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=6906B4B26BEE4013AB2365B93A9B634A --mojo-platform-channel-handle=2356 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
                                        3⤵
                                          PID:3196
                                        • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                          "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=03D8A25747D45C6776B5338057BE7933 --mojo-platform-channel-handle=1860 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
                                          3⤵
                                            PID:980
                                          • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                            "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=6E7D07B5790EAFB4ADD74BA8CB288A53 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=6E7D07B5790EAFB4ADD74BA8CB288A53 --renderer-client-id=6 --mojo-platform-channel-handle=2640 --allow-no-sandbox-job /prefetch:1
                                            3⤵
                                              PID:4120
                                            • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                              "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=DEBD529DD0498EE3234454DF4B71B9D9 --mojo-platform-channel-handle=2364 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
                                              3⤵
                                                PID:1844
                                          • C:\Windows\System32\CompPkgSrv.exe
                                            C:\Windows\System32\CompPkgSrv.exe -Embedding
                                            1⤵
                                              PID:4628

                                            Network

                                            • flag-us
                                              DNS
                                              in.xero.com
                                              msedge.exe
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              in.xero.com
                                              IN A
                                              Response
                                              in.xero.com
                                              IN CNAME
                                              in.xero.com.edgekey.net
                                              in.xero.com.edgekey.net
                                              IN CNAME
                                              e6513.a.akamaiedge.net
                                              e6513.a.akamaiedge.net
                                              IN A
                                              104.90.24.196
                                            • flag-us
                                              DNS
                                              ocsp.digicert.com
                                              msedge.exe
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              ocsp.digicert.com
                                              IN A
                                              Response
                                              ocsp.digicert.com
                                              IN CNAME
                                              ocsp.edge.digicert.com
                                              ocsp.edge.digicert.com
                                              IN CNAME
                                              fp2e7a.wpc.2be4.phicdn.net
                                              fp2e7a.wpc.2be4.phicdn.net
                                              IN CNAME
                                              fp2e7a.wpc.phicdn.net
                                              fp2e7a.wpc.phicdn.net
                                              IN A
                                              192.229.221.95
                                            • flag-us
                                              DNS
                                              4.159.190.20.in-addr.arpa
                                              msedge.exe
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              4.159.190.20.in-addr.arpa
                                              IN PTR
                                              Response
                                            • flag-us
                                              DNS
                                              edge.xero.com
                                              msedge.exe
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              edge.xero.com
                                              IN A
                                              Response
                                              edge.xero.com
                                              IN CNAME
                                              new-edge.xero.com.edgekey.net
                                              new-edge.xero.com.edgekey.net
                                              IN CNAME
                                              e11670.a.akamaiedge.net
                                              e11670.a.akamaiedge.net
                                              IN A
                                              104.90.26.211
                                            • flag-us
                                              DNS
                                              bam.nr-data.net
                                              msedge.exe
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              bam.nr-data.net
                                              IN A
                                              Response
                                              bam.nr-data.net
                                              IN CNAME
                                              bam.cell.nr-data.net
                                              bam.cell.nr-data.net
                                              IN CNAME
                                              fastly-tls12-bam.nr-data.net
                                              fastly-tls12-bam.nr-data.net
                                              IN A
                                              162.247.243.29
                                            • flag-us
                                              DNS
                                              product-analytics-bff.xero.com
                                              msedge.exe
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              product-analytics-bff.xero.com
                                              IN A
                                              Response
                                              product-analytics-bff.xero.com
                                              IN CNAME
                                              product-analytics-bff.xero.com.edgekey.net
                                              product-analytics-bff.xero.com.edgekey.net
                                              IN CNAME
                                              e6513.a.akamaiedge.net
                                              e6513.a.akamaiedge.net
                                              IN A
                                              104.90.24.196
                                            • flag-be
                                              GET
                                              https://in.xero.com/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              GET /R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton HTTP/2.0
                                              host: in.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              sec-ch-ua-mobile: ?0
                                              dnt: 1
                                              upgrade-insecure-requests: 1
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
                                              sec-fetch-site: none
                                              sec-fetch-mode: navigate
                                              sec-fetch-user: ?1
                                              sec-fetch-dest: document
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              Response
                                              HTTP/2.0 302
                                              content-type: text/html; charset=utf-8
                                              content-length: 197
                                              server: nginx
                                              location: /m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
                                              strict-transport-security: max-age=31536000
                                              x-frame-options: SAMEORIGIN
                                              x-s: EC2AMAZ-9639784
                                              x-ua-compatible: IE=edge
                                              x-envoy-upstream-service-time: 111
                                              cache-control: private, max-age=0
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              set-cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1; Domain=.xero.com; Path=/; Expires=Wed, 11 Jun 2025 20:31:10 GMT; Max-Age=31536000; Secure
                                              set-cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:09 GMT; Max-Age=7199
                                              set-cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF8/JTfKPAQAAUVf/CBhzVQIjw68dHQ6JmC1mnGtTp1W8SxSzVygpu31nc1Vvr2pkU9WwHYXLOVXDbgbo+ibfrmtkiMz9GGIHa71JgOdrCmJD+gqYXC2hDUhqWJ6BE2cdp2EF3/xv+TeKHSMMqVZXJB4ZfpzvMKm037tJtz1YjtIHthK9/FXs8L4UWtdwgJGauQyUixL/ZAtmymhEM0njEhy1HginmlLLHV0iZ8dL1sUPKzRBl7IKapZYM5dcPcIMxn1F9noayVNRbSb65BpuMTbwzK14ujTjTrO+eyqZf6mtMAiGQpZ7Gsa/EO24+Ug8poVLxtESJGS5EHBS/dO0/BownpKj1jxaLyYl2uZ44nHo4gAXAVUYL6b6RmQcdEyft20oHz6MPw==~4403778~3293751; Domain=.xero.com; Path=/; Expires=Wed, 12 Jun 2024 00:31:09 GMT; Max-Age=14399
                                            • flag-be
                                              GET
                                              https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              GET /m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton HTTP/2.0
                                              host: in.xero.com
                                              dnt: 1
                                              upgrade-insecure-requests: 1
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
                                              sec-fetch-site: none
                                              sec-fetch-mode: navigate
                                              sec-fetch-user: ?1
                                              sec-fetch-dest: document
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              sec-ch-ua-mobile: ?0
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF8/JTfKPAQAAUVf/CBhzVQIjw68dHQ6JmC1mnGtTp1W8SxSzVygpu31nc1Vvr2pkU9WwHYXLOVXDbgbo+ibfrmtkiMz9GGIHa71JgOdrCmJD+gqYXC2hDUhqWJ6BE2cdp2EF3/xv+TeKHSMMqVZXJB4ZfpzvMKm037tJtz1YjtIHthK9/FXs8L4UWtdwgJGauQyUixL/ZAtmymhEM0njEhy1HginmlLLHV0iZ8dL1sUPKzRBl7IKapZYM5dcPcIMxn1F9noayVNRbSb65BpuMTbwzK14ujTjTrO+eyqZf6mtMAiGQpZ7Gsa/EO24+Ug8poVLxtESJGS5EHBS/dO0/BownpKj1jxaLyYl2uZ44nHo4gAXAVUYL6b6RmQcdEyft20oHz6MPw==~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "4baedabc45b24a7d8480e516702c407d"
                                              content-type: text/html
                                              content-length: 21166
                                              server: nginx
                                              x-amz-id-2: CbANF2mkLdeels3FdqnnrSuEf08VJ4A89Gt2ayo/ueIdRLSYbv5OgDZaADxXiXtzm3h3FiIkYQ0=
                                              x-amz-request-id: Q4PWXTH9XTW29VRV
                                              x-amz-replication-status: COMPLETED
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: GOhooeu3W0qnkLLTBr.sVeaLF2l9eXOM
                                              accept-ranges: bytes
                                              vary: Accept-Encoding
                                              content-encoding: gzip
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                              x-envoy-upstream-service-time: 29
                                              cache-control: max-age=144
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              set-cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:10 GMT; Max-Age=7200; Secure
                                              set-cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751; Domain=.xero.com; Path=/; Expires=Wed, 12 Jun 2024 00:31:09 GMT; Max-Age=14399
                                            • flag-be
                                              GET
                                              https://in.xero.com/api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getDocument
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              GET /api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getDocument HTTP/2.0
                                              host: in.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              tracestate: 2990187@nr=0-1-1962024-1134228971-b70c02ad3b623376----1718137871280
                                              traceparent: 00-7c96fb68d68c54eb36682e51bdbea4e9-b70c02ad3b623376-01
                                              sec-ch-ua-mobile: ?0
                                              xero-correlation-id: 7f231018-e250-43d5-9a5b-ebfeb4d08fe5
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjE5NjIwMjQiLCJhcCI6IjExMzQyMjg5NzEiLCJpZCI6ImI3MGMwMmFkM2I2MjMzNzYiLCJ0ciI6IjdjOTZmYjY4ZDY4YzU0ZWIzNjY4MmU1MWJkYmVhNGU5IiwidGkiOjE3MTgxMzc4NzEyODAsInRrIjoiMjk5MDE4NyJ9fQ==
                                              content-type: application/json
                                              x-client: xero-secure-fetch
                                              accept: */*
                                              sec-fetch-site: same-origin
                                              sec-fetch-mode: cors
                                              sec-fetch-dest: empty
                                              referer: https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              content-type: application/json; charset=utf-8
                                              server: nginx
                                              x-robots-tag: noindex
                                              x-rate-limit-limit: 1s
                                              x-rate-limit-remaining: 9
                                              x-rate-limit-reset: 2024-06-11T20:31:13.0542963Z
                                              x-envoy-upstream-service-time: 556
                                              vary: Accept-Encoding
                                              content-encoding: gzip
                                              content-length: 1123
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              set-cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:10 GMT; Max-Age=7198; Secure
                                            • flag-be
                                              GET
                                              https://in.xero.com/api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getLogo
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              GET /api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getLogo HTTP/2.0
                                              host: in.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                              sec-fetch-site: same-origin
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: image
                                              referer: https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              content-type: text/plain; charset=utf-8
                                              server: nginx
                                              access-control-allow-origin: https://in.xero.com
                                              xero-correlation-id: 0e519aaf-5e12-455f-9184-f911e8602671
                                              api-supported-versions: 1.0
                                              x-rate-limit-limit: 1s
                                              x-rate-limit-remaining: 9
                                              x-rate-limit-reset: 2024-06-11T20:31:14.7480658Z
                                              content-length: 1
                                              expires: Tue, 11 Jun 2024 20:31:13 GMT
                                              cache-control: max-age=0, no-cache, no-store
                                              pragma: no-cache
                                              date: Tue, 11 Jun 2024 20:31:13 GMT
                                              set-cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFzHKTfKPAQAAl2X/CBiyzI+8Nkb2VrOkl8pfn8gBjblg14lBs0NID2tF8VE3M74kVEselnJ+61FmpI7DX/C8oVJv+Mjuc+KkbelkeZz27PaDTpjX5ODQbc4fPEdeJmWrIdua0+1JCbVilS+cOyXq8TD8rSvUOOOI+Hoj0A/brfVyGR4nKJbZ1LxsAHDzgk0/W1x9rta3fSYfSmXuawfjBcfRg8mNtNwumLEakH1Fo7+CCCL+Py3oNA==~1; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:10 GMT; Max-Age=7197; Secure
                                            • flag-be
                                              POST
                                              https://product-analytics-bff.xero.com/events
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              POST /events HTTP/2.0
                                              host: product-analytics-bff.xero.com
                                              content-length: 1012
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain;charset=UTF-8
                                              accept: */*
                                              origin: https://in.xero.com
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: empty
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              content-type: text/plain; charset=utf-8
                                              server: nginx
                                              access-control-allow-origin: https://in.xero.com
                                              xero-correlation-id: a94c005e-68ee-479a-8fc7-02985bf26fd6
                                              api-supported-versions: 1.0
                                              x-rate-limit-limit: 1s
                                              x-rate-limit-remaining: 9
                                              x-rate-limit-reset: 2024-06-11T20:31:14.7729756Z
                                              content-length: 1
                                              expires: Tue, 11 Jun 2024 20:31:13 GMT
                                              cache-control: max-age=0, no-cache, no-store
                                              pragma: no-cache
                                              date: Tue, 11 Jun 2024 20:31:13 GMT
                                              set-cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFzLKTfKPAQAAtWX/CBjemDmdPFqOskS5jJ3gRORFP6e5wcEX78uCZJGZpTaH9GWqTe+y8TWerErixuuBtJE8xbWG6k9n9gL8GTr8HulT8bsFU5whY+Aqu0szo0cemxD6i7u6aWCp0IE7CYrKJTe/ogl7CXsxSRRTd83pf8mtxfQUoYnjbV2szCEHF0m1JjyG85qWv5KZL/8v6E1gzQuI2lkTxk1yF1nlzk+juSxTl0UCSsGuAv0Wbw==~1; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:10 GMT; Max-Age=7197; Secure
                                            • flag-be
                                              POST
                                              https://product-analytics-bff.xero.com/events
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              POST /events HTTP/2.0
                                              host: product-analytics-bff.xero.com
                                              content-length: 1086
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain;charset=UTF-8
                                              accept: */*
                                              origin: https://in.xero.com
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: empty
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              content-type: text/plain; charset=utf-8
                                              server: nginx
                                              access-control-allow-origin: https://in.xero.com
                                              xero-correlation-id: ca54ead9-3c3e-48f0-ad40-cf2dcb5007f0
                                              api-supported-versions: 1.0
                                              x-rate-limit-limit: 1s
                                              x-rate-limit-remaining: 9
                                              x-rate-limit-reset: 2024-06-11T20:31:14.8083676Z
                                              content-length: 1
                                              expires: Tue, 11 Jun 2024 20:31:13 GMT
                                              cache-control: max-age=0, no-cache, no-store
                                              pragma: no-cache
                                              date: Tue, 11 Jun 2024 20:31:13 GMT
                                              set-cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFzPKTfKPAQAA3mX/CBgmY8LKIMd+wTf8H6D5Hp+ufK8nS7QGNgRnloU91tMaXSNjk+XC2iDWms/z4QQy9doI/T0OmaSzE1SksQwx6LDhljjXu4z8P91/fsY9FsVw04+7Zaba93H0ugrZEDwWWDxvsJtiCtRKzOvwjZqhcE1jBupJLZW7dz5iClnefGmQuoKbsNh5ILkU5c64R06CFKAU9pY+S52IDy8kjVwzOm4fbtyshtZOdbIBBw==~1; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:10 GMT; Max-Age=7197; Secure
                                            • flag-be
                                              POST
                                              https://product-analytics-bff.xero.com/events
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              POST /events HTTP/2.0
                                              host: product-analytics-bff.xero.com
                                              content-length: 1154
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain;charset=UTF-8
                                              accept: */*
                                              origin: https://in.xero.com
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: empty
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              content-type: image/png
                                              content-length: 8666
                                              server: nginx
                                              x-robots-tag: noindex
                                              x-envoy-upstream-service-time: 251
                                              date: Tue, 11 Jun 2024 20:31:13 GMT
                                            • flag-be
                                              GET
                                              https://in.xero.com/api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getPdf
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              GET /api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getPdf HTTP/2.0
                                              host: in.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              sec-ch-ua-mobile: ?0
                                              upgrade-insecure-requests: 1
                                              dnt: 1
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
                                              sec-fetch-site: same-origin
                                              sec-fetch-mode: navigate
                                              sec-fetch-user: ?1
                                              sec-fetch-dest: document
                                              referer: https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFzPKTfKPAQAA3mX/CBgmY8LKIMd+wTf8H6D5Hp+ufK8nS7QGNgRnloU91tMaXSNjk+XC2iDWms/z4QQy9doI/T0OmaSzE1SksQwx6LDhljjXu4z8P91/fsY9FsVw04+7Zaba93H0ugrZEDwWWDxvsJtiCtRKzOvwjZqhcE1jBupJLZW7dz5iClnefGmQuoKbsNh5ILkU5c64R06CFKAU9pY+S52IDy8kjVwzOm4fbtyshtZOdbIBBw==~1
                                              Response
                                              HTTP/2.0 200
                                              content-type: text/plain; charset=utf-8
                                              server: nginx
                                              access-control-allow-origin: https://in.xero.com
                                              xero-correlation-id: 30eddc42-b60d-465f-970b-8c05cd9dbfb0
                                              api-supported-versions: 1.0
                                              x-rate-limit-limit: 1s
                                              x-rate-limit-remaining: 9
                                              x-rate-limit-reset: 2024-06-11T20:31:18.7899733Z
                                              content-length: 1
                                              expires: Tue, 11 Jun 2024 20:31:17 GMT
                                              cache-control: max-age=0, no-cache, no-store
                                              pragma: no-cache
                                              date: Tue, 11 Jun 2024 20:31:17 GMT
                                              set-cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF3bKTfKPAQAAYnX/CBhK7On/fib+8qHjb55tYqbdKfeSHG6hkei2qsuJEaYHG1E8rq/yjaCv1dnpLlE6cIaZunB5Zv08a4Yr4s3n5cibGu0jo48LJF2x+v/xdbp1jO84BKEnIESrJuZIJFxN4oaOOI7Yc8DwwazCM/uabI5GQ1YtvMLLRG13Xpho+CtAyW4C7ck4bM+3eCjMfkYZM/UE7cy5RlBG8+HUiZz05cNI5Himc4r2uRQ+/Q==~1; Domain=.xero.com; Path=/; Expires=Tue, 11 Jun 2024 22:31:10 GMT; Max-Age=7193; Secure
                                            • flag-be
                                              POST
                                              https://product-analytics-bff.xero.com/events
                                              msedge.exe
                                              Remote address:
                                              104.90.24.196:443
                                              Request
                                              POST /events HTTP/2.0
                                              host: product-analytics-bff.xero.com
                                              content-length: 1144
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain;charset=UTF-8
                                              accept: */*
                                              origin: https://in.xero.com
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: empty
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFzPKTfKPAQAA3mX/CBgmY8LKIMd+wTf8H6D5Hp+ufK8nS7QGNgRnloU91tMaXSNjk+XC2iDWms/z4QQy9doI/T0OmaSzE1SksQwx6LDhljjXu4z8P91/fsY9FsVw04+7Zaba93H0ugrZEDwWWDxvsJtiCtRKzOvwjZqhcE1jBupJLZW7dz5iClnefGmQuoKbsNh5ILkU5c64R06CFKAU9pY+S52IDy8kjVwzOm4fbtyshtZOdbIBBw==~1
                                              Response
                                              HTTP/2.0 200
                                              content-type: application/pdf
                                              content-length: 57365
                                              server: nginx
                                              x-robots-tag: noindex
                                              content-disposition: attachment;filename="Invoice 24.0229-42.pdf"
                                              x-envoy-upstream-service-time: 778
                                              date: Tue, 11 Jun 2024 20:31:18 GMT
                                              set-cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF4vKTfKPAQAAUnj/CBjOw0AFltGdeyjzVXNZcUGEH/QJ/LofbL72EJ98TVf3T5l0D/AQL4LDCMEYKkgTOFpATxisT/SMqXxncGoJrbik7Q7+kQeqMZINnJZC6rmjl0f7MaO14TYPHHzLgsfJWOKkq8Ulb3dmxHBxdiUt8XB+1B32heK/nZmOSQT1MYfKuQj10vKhnjYUhWdks+D9l7DZyRE/IQF5PS4UezdYqDUx6jqpxAwwssr0Q/UdgIm46mQEdGXsaqyZioy3AeWtjHSi+7YAQEdzEeohVwwUh+gT491BqH/Xo1rkxUV8w4xGkr6Lp1IuiVrpnrFtv+gjEF9H14eFGhBoCS4IFKFYL9SkIFo2yO24kOKkiBqFaK+M2pxswXnCnSgPSpSV+/T//8VcHh8=~4403778~3293751; Domain=.xero.com; Path=/; Expires=Wed, 12 Jun 2024 00:31:09 GMT; Max-Age=14391
                                            • flag-us
                                              DNS
                                              241.197.17.2.in-addr.arpa
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              241.197.17.2.in-addr.arpa
                                              IN PTR
                                              Response
                                              241.197.17.2.in-addr.arpa
                                              IN PTR
                                              a2-17-197-241deploystaticakamaitechnologiescom
                                            • flag-us
                                              DNS
                                              secure.globalsign.com
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              secure.globalsign.com
                                              IN A
                                              Response
                                              secure.globalsign.com
                                              IN CNAME
                                              global.prd.cdn.globalsign.com
                                              global.prd.cdn.globalsign.com
                                              IN CNAME
                                              cdn.globalsigncdn.com.cdn.cloudflare.net
                                              cdn.globalsigncdn.com.cdn.cloudflare.net
                                              IN A
                                              104.18.20.226
                                              cdn.globalsigncdn.com.cdn.cloudflare.net
                                              IN A
                                              104.18.21.226
                                            • flag-us
                                              DNS
                                              226.20.18.104.in-addr.arpa
                                              Remote address:
                                              8.8.8.8:53
                                              Request
                                              226.20.18.104.in-addr.arpa
                                              IN PTR
                                              Response
                                            • flag-be
                                              GET
                                              https://edge.xero.com/identity/client/1.1.13/identity.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /identity/client/1.1.13/identity.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              origin: https://in.xero.com
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              dnt: 1
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              Response
                                              HTTP/2.0 200
                                              content-type: application/javascript
                                              accept-ranges: bytes
                                              content-encoding: br
                                              etag: "f1293d9665cf5713b80b2fb0fab4a84e"
                                              last-modified: Sat, 09 Mar 2024 12:15:00 GMT
                                              server: Akamai Resource Optimizer
                                              x-amz-id-2: sMeheSzJC2l7oQzxh/ERASoRP9jSzHAPBaDdZw97ykTPKR6HpJJRPbWuOlqRwg4q+stY6wm+neZ4eixZbbrG4hmKLTtTWKcXpspj372hoKA=
                                              x-amz-replication-status: COMPLETED
                                              x-amz-request-id: BNRXNTYWG9YQ6PPY
                                              x-amz-version-id: 0sJHPsDrc755DaXVg_u2i.Zyk7niPYR.
                                              content-length: 49155
                                              cache-control: max-age=3461221
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/common/react-dom/18.2.0/react-dom.min.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /common/react-dom/18.2.0/react-dom.min.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              origin: https://in.xero.com
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              dnt: 1
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              Response
                                              HTTP/2.0 200
                                              content-type: application/javascript
                                              accept-ranges: bytes
                                              content-encoding: br
                                              etag: "d86dcdbfed4c273c4742744941259902"
                                              last-modified: Thu, 15 Feb 2024 04:12:45 GMT
                                              server: Akamai Resource Optimizer
                                              x-amz-id-2: 4wacfOrlG0jNReRkzP9wYGIbgh2rB3qEGcuKdpUxON0tEfyRkwQybZHi8kacBFFG1josr440poQ=
                                              x-amz-replication-status: COMPLETED
                                              x-amz-request-id: 3P7TKRN98N0HGN01
                                              x-amz-version-id: EJsYzQc6pukoGPmuPGfVkKIpS5A4Ygkg
                                              content-length: 3748
                                              cache-control: max-age=1898828
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/common/react/18.2.0/react.min.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /common/react/18.2.0/react.min.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              origin: https://in.xero.com
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              dnt: 1
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              Response
                                              HTTP/2.0 200
                                              content-type: application/javascript
                                              accept-ranges: bytes
                                              content-encoding: br
                                              etag: "64141792105ea4861f9f33294d65ab81"
                                              last-modified: Thu, 01 Feb 2024 15:06:14 GMT
                                              server: Akamai Resource Optimizer
                                              x-amz-id-2: fk/Rbf1Bquxh4dS4vVPbNYPzNabAXUVTvJbhFi8ZIfVfR1cUmcs8Yi3r0dDE3+SlZ+vyNBj9FX4=
                                              x-amz-replication-status: COMPLETED
                                              x-amz-request-id: 7VTSW3YDK78H10RB
                                              x-amz-version-id: G1nXV2WL5TOG9H66DUG.98aIUmv.GmQn
                                              content-length: 37237
                                              cache-control: max-age=3123341
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/style/xui/22.0.0/xui.min.css
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /style/xui/22.0.0/xui.min.css HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: text/css,*/*;q=0.1
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: style
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              content-type: text/css
                                              accept-ranges: bytes
                                              content-encoding: br
                                              etag: "2d6e56e859c536646b2f1a76684e2227"
                                              last-modified: Mon, 05 Feb 2024 04:45:50 GMT
                                              server: Akamai Resource Optimizer
                                              x-amz-id-2: yCqWFVu4BuVlZzdbdm5moSEmtjaPMStZfLYA+iK4V+ld7X6KiTdEHUjPAHLK0eXHiEe/JxmR5e4=
                                              x-amz-replication-status: COMPLETED
                                              x-amz-request-id: 76KSMQG105E5G0YR
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: .Pjdl2kyB0QraET.foteRAiOQJMevsZ0
                                              content-length: 26533
                                              cache-control: max-age=3513266
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/main.3cf9c16495486cc66bcb.css
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/main.3cf9c16495486cc66bcb.css HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: text/css,*/*;q=0.1
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: style
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              content-type: text/css
                                              accept-ranges: bytes
                                              content-encoding: br
                                              etag: "a8ccd32eeae2573b015b4aac7604ed0e"
                                              last-modified: Tue, 11 Jun 2024 19:33:53 GMT
                                              server: Akamai Resource Optimizer
                                              x-amz-id-2: Ss5pxwpCQdmQNKcO2J/+tE8h3wRwddkU04j7Nq1tHKgwvx0DJMNJKD9HoBQ3/FcH9DWA1ZfkBquTg/MWY4lRdXC0eBQZFnNoAipQEfV1cg8=
                                              x-amz-replication-status: COMPLETED
                                              x-amz-request-id: JDDVW45E1X0KJA9K
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: s6QqTVEzwmkkmN6XBTn5foCZ0s9MJo2Q
                                              content-length: 184
                                              cache-control: max-age=99
                                              date: Tue, 11 Jun 2024 20:31:10 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/main.36dab28f36c1a4da644f.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/main.36dab28f36c1a4da644f.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: DYqdxwc3Z2QLxBZT9rTvgrvka6nU4y6i7lXho7Lbe31V7xaR9LfoTg2Ms9mMbposTWgdgafOeC8=
                                              x-amz-request-id: 8WRJJB3ZEZCDWQNX
                                              x-amz-replication-status: PENDING
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "4aa3f94dbb17342f563c07f7fa66ebe2"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: 0LVchiL56hTUAwEflHhU15hjUePmQV3X
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 187436
                                              cache-control: max-age=210
                                              date: Tue, 11 Jun 2024 20:31:11 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/locale.en-NZ.fef92760d1973c04a409.chunk.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/locale.en-NZ.fef92760d1973c04a409.chunk.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              last-modified: Sat, 08 Jun 2024 16:51:38 GMT
                                              etag: "171f07bd0491bcc586b2fea0746bef76"
                                              server: Akamai Image Manager
                                              content-length: 368
                                              content-type: image/webp
                                              cache-control: private, no-transform, max-age=43200
                                              expires: Wed, 12 Jun 2024 08:31:11 GMT
                                              date: Tue, 11 Jun 2024 20:31:11 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/favicon.png
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/favicon.png HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: image
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: CxlpiRgphZv+ChUYTU2Xen74FVGzcRP2HfIH9xVJQOvenUY7oFu30NMtK8lg0//Mva22vYwsIKQ=
                                              x-amz-request-id: EA5M5EP6419BBN93
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "b6b1c3c0d217b12ad93c3658249df484"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: cGmM.hAvPoCeqHoc6nmGsAmhLSX5_C_r
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 10831
                                              cache-control: max-age=188
                                              date: Tue, 11 Jun 2024 20:31:11 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/favicon.ico
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/favicon.ico HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: image
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpF+HJTfKPAQAAllj/CBhVQe4WwnKd4cFE2UyCVjRVwDMgdHJhO1jSCbu/+VFItHjElYQf3A/vSplj1YmV4cFwInuQTCesU+IlB7cfSxMUtwTRqOy4w0iE3xhB/x1KMIytM9lEjQdsTPoSkf2z3DKsL/4+I5s4kWfcddFcE7/r2dFGJFLNv2Np0zvxzUUUlmPu5/Dp5uaqazHFn+hswRTjCycxaQy2nPi93nVGfYCWxzB5ajj1zVKJrQ==~1
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: c8/CDn7uVlqyaGEgkGseblTunHvKSSFJ3vrPJ7y/khq3ctpUhk2xyCCx6bAbhyVwvOX3rf4V9Zk=
                                              x-amz-request-id: KTBWR70BM14AN8B9
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "c169aee3c6f710672ae66cdb0ae20879"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: sQE1_zzSkpbjflTE6_c2qP1GHqIj0TkG
                                              accept-ranges: bytes
                                              content-type: image/vnd.microsoft.icon
                                              server: AmazonS3
                                              content-length: 24838
                                              cache-control: max-age=143
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/347.5ab3cb3fd90a50140446.chunk.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/347.5ab3cb3fd90a50140446.chunk.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: 8qpC6c8KWl6F1YMg1wffVnCAbAXXOTdttvC6ZLiBhn7jEthpiq3VVKtHmqzJ5mBWRTO88BbiPkX9PelwMF+e30DqaJNtXpya
                                              x-amz-request-id: BJ2X7QEHT0BFH4DV
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "a03be90cbc4aad3c4231df2c7bdeb0a3"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: fXHK7SfkXXJCN6TT_LLAzvvXzLih.h7z
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 3396
                                              cache-control: max-age=65
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/478.43716649831f158dd179.chunk.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/478.43716649831f158dd179.chunk.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: jMqtRpXEE9PJmz1dnJ/3TaFx5ZHI5HUandIKyrYjujbChvGUBgGpXn6KRlQx2GyqVG66mRkosi4=
                                              x-amz-request-id: 9W09RQ3WWY8VT6ZY
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "5bccfb4beef83b2f03ea0526c23afdc4"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: 8yFvNa61_H8htZSMOpgS8Z.qhiHMDiT_
                                              accept-ranges: bytes
                                              content-type: text/css
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 6829
                                              cache-control: max-age=79
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/333.09935eff4b843e2a4f8c.chunk.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/333.09935eff4b843e2a4f8c.chunk.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: e1x1/F1S+DUHw9Qc/An8EVAxU2a3qoSCBd52Cd5+sqwhhRsC/4fM/yOdCo71Wym8kSHRr5OljkU=
                                              x-amz-request-id: 39C4RG09BR27A875
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:48 GMT
                                              etag: "2b915672cfab9577503451e3dab8e51c"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: zUCQUc73v.9DC.PX9K7N2dT4O9CJnZPc
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 5791
                                              cache-control: max-age=297
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/146.c1895492b4087ffb5d99.chunk.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/146.c1895492b4087ffb5d99.chunk.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: SsRafE5WzQz8TEqfZRWywlhAT7CM248KRwoQSyqvS0Abs+V9FhIGyHlrO6/6a7Wu5pTfCNgnR5g=
                                              x-amz-request-id: 5DV81DQ6KSGMQNVQ
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:48 GMT
                                              etag: "b954b90143e630d1058e1ee55bc14b0f"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: FnuVOOTO823_75eziErW4afA4gqwsRVp
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 104405
                                              cache-control: max-age=124
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/IndexRoute.4d5848f23f975a55af12.css
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/IndexRoute.4d5848f23f975a55af12.css HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: text/css,*/*;q=0.1
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: style
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: hZggts60pQMhIGEXFzC68X5hdOhA6ALqkFsquqfoIGUbPXyk20qk1EYS8IUegU7qfxwL6RuOCueAoPL3UX/48DQ3jjSmKPSpr93ROEywQDA=
                                              x-amz-request-id: 9RFZGANRWH69AY8J
                                              x-amz-replication-status: COMPLETED
                                              last-modified: Tue, 11 Jun 2024 19:19:49 GMT
                                              etag: "55a0b5318205fc911f112944fac7fcc7"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: tU586ajysNDXm1HeF9BltXEfi7tLzaay
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 189374
                                              cache-control: max-age=163
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/IndexRoute.d836fee56eb2aa06e649.chunk.js
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/IndexRoute.d836fee56eb2aa06e649.chunk.js HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: */*
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: eM2BmfkEM0ypVEByJ/12wo3Bkusw0wJDN+IstV9mLc47IxDy2ruUD3Uyuc+XEGWhJk7ZeL14DPs=
                                              x-amz-request-id: FZVG14CPQ60KZJTR
                                              x-amz-replication-status: PENDING
                                              last-modified: Tue, 11 Jun 2024 19:19:48 GMT
                                              etag: "6132d28a87c3c9ca0311c3a19f2e68ef"
                                              x-amz-server-side-encryption: AES256
                                              x-amz-version-id: KHru6XUuk2GqJRk4xUW65WZcRgr_42NJ
                                              accept-ranges: bytes
                                              content-type: application/javascript
                                              server: AmazonS3
                                              content-encoding: gzip
                                              content-length: 16058
                                              cache-control: max-age=212
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              vary: Accept-Encoding
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-be
                                              GET
                                              https://edge.xero.com/business/mybills/production/e7e2131e8ee7f228180e.png
                                              msedge.exe
                                              Remote address:
                                              104.90.26.211:443
                                              Request
                                              GET /business/mybills/production/e7e2131e8ee7f228180e.png HTTP/2.0
                                              host: edge.xero.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              dnt: 1
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                              sec-fetch-site: same-site
                                              sec-fetch-mode: no-cors
                                              sec-fetch-dest: image
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              cookie: _abck=0CD7908ED12BDC66E32B4B67B5E84DA7~-1~YAAQbLIpF83JTfKPAQAAUVf/CAyCrYsuJ8k0qash4yhKAaGH8/kxq16BJuEphUstmb97cQsTexnsRnIUOy4n1lR8a3X5Y+BxqVEB0B0raqWYVo95igxXhHawuuGCmYQ9hk1mV2kXy7MhIrmYJB044uX//QV6fjCdHJei22OfZFjV2+oniuSjbxZntQI3LIrlsn00LY68zSOCIaTEqaiKVbSDg4afjnyLWSbglEac1fCCc65B0w5UWGtJBimvTA8wxJLR7jViJQxmq/1WJhpKs1ATu+BEafb85uGWIM5LWlvbRzANkmrhNy95TpwBKTbCupBCCvQpcvkeXVpumCtfIavqayVIOEaoiJiisAwqRlUxqKwiGM8lvMBGSA==~-1~-1~-1
                                              cookie: ak_bmsc=EC653E6A16ED0512E60A24C2D9C8A0B5~000000000000000000000000000000~YAAQbLIpF87JTfKPAQAAUVf/CBg9Mp4Se+pAw9oudVVDggKzWX77WOBtPshiEnq4YlGva0TOFx0Fns5x3LJ2yKLFSYzr3p8tC2p00RFlzkkNTBgOMzLmCU2oh2eL6N+G2Tm6xW14hCXqfA27i98W0xJCtiShSPhlnpEtNEvMHlisQBNrQPTiLM2oXO2JMdCTlBbvsBMeJ2iYq1wRjoYfJxog5GcI1cLUD12YetCIab0ukSY8YyQsrop2GdulOY+kkm41qz9KjwJ1ayn/xpVyyXVb3oCmaR7YVmEjTJgx0Bivs7A/aoHEpA9iNLbjHwah4blB+H4d/2QE0jUQD1MJ6hDn53ksbJPakGyAv4bv/izk/jXO1q1lOoZLmVc2GIEIe/AdTTeWoDWC
                                              cookie: bm_sz=6BDFCA53EB9081976707F1302145A8B8~YAAQbLIpF+LJTfKPAQAAllj/CBiPJuX3AO1y5fbvteYbv8GIMCgzS65d1vQxrSvsC3kZavEVBwxm2eIAORe9AiW2PSyHS2PZRnOak8C8jV++jIQeGPL6El0/rlFcVAF5SGdlxk3gGmtFU9RJhM9v3ZbrKz0WEOlre37M4ZX92+peyo7jOw/9DyqAvCc6Pava2T2wcWRPy94mlScRpJlXdxDA0hRH5Oh5sN9UOkn+tkfOXsMClcUjvBtMOUfj2Tnp01O8CW+4Yk0s2+edKBqhmErXXBmVnq3/UjkPD1n7pwso+87jW6KxxZkNzYCVhBLrBqVtiXJiXJjsv4JNi0WoSqEqm3opwmG+A7Z/Q/PiFMaE+WQMUvadugjCzYpN4m7Y+nju/gTF6yc+PmbCRtGz81C1~4403778~3293751
                                              cookie: bm_sv=2988AFCAC96C4399F9A7EE0940DE9EB1~YAAQbLIpFyLKTfKPAQAAGmH/CBhSspF3RiIoEI2E8WVDWRCqmSBx0EMKHmz8mgBAzRrOgDC6XcNOgquJiReni1RjkNVvj879OBKQx5WeTiAmaNndxuMIkwv9guaYvBJasNyBaBgGgFh8nuulE1rB5ZKETEHQN3k5iYstOrcCu1T0XN3OicQjMKc9anGlz+4eelJvl/bBVJwY8ARujp+mnXu+yw0NMNV/ITWfS1RUjo0iHziiCAHay/qISN66FA==~1
                                              Response
                                              HTTP/2.0 200
                                              last-modified: Tue, 11 Jun 2024 05:37:25 GMT
                                              etag: "9a7eb6b860fdb34e470a6c0cc9e90d9c"
                                              server: Akamai Image Manager
                                              content-length: 11377
                                              content-type: image/png
                                              cache-control: private, no-transform, max-age=32733
                                              expires: Wed, 12 Jun 2024 05:36:46 GMT
                                              date: Tue, 11 Jun 2024 20:31:13 GMT
                                              access-control-max-age: 3000
                                              access-control-allow-methods: GET
                                              access-control-allow-origin: *
                                            • flag-us
                                              GET
                                              https://js-agent.newrelic.com/nr-spa-1.259.0.min.js
                                              msedge.exe
                                              Remote address:
                                              162.247.243.39:443
                                              Request
                                              GET /nr-spa-1.259.0.min.js HTTP/2.0
                                              host: js-agent.newrelic.com
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              origin: https://in.xero.com
                                              sec-ch-ua-mobile: ?0
                                              user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              dnt: 1
                                              accept: */*
                                              sec-fetch-site: cross-site
                                              sec-fetch-mode: cors
                                              sec-fetch-dest: script
                                              referer: https://in.xero.com/
                                              accept-encoding: gzip, deflate, br
                                              accept-language: en-US,en;q=0.9
                                              Response
                                              HTTP/2.0 200
                                              x-amz-id-2: XFMvu+cCXL2/2zwVlWNkXa4OeSFmy2cqgfDOmA2xvJWJr36AXUHhF+wAUiDevrgHSo+y1TEuyNY=
                                              x-amz-request-id: V02ASDHCEN1T4EFP
                                              last-modified: Wed, 08 May 2024 16:12:10 GMT
                                              etag: "9f304785bceda64ea9a44cc154717736"
                                              x-amz-server-side-encryption: AES256
                                              cache-control: public, max-age=31536000, stale-while-revalidate=86400, stale-if-error=86400
                                              x-amz-version-id: D653xUBTsr1IzXJkieUT12lVq6LvASPt
                                              content-type: application/javascript
                                              server: AmazonS3
                                              access-control-allow-origin: *
                                              content-encoding: br
                                              accept-ranges: bytes
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              via: 1.1 varnish
                                              x-served-by: cache-lcy-eglc8600067-LCY
                                              x-cache: HIT
                                              x-cache-hits: 75262
                                              vary: Accept-Encoding
                                              cross-origin-resource-policy: cross-origin
                                              strict-transport-security: max-age=300
                                              content-length: 34128
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=2983&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1&af=err,xhr,stn,ins,spa&be=1241&fe=1102&dc=1099&fsh=1&perf=%7B%22timing%22:%7B%22of%22:1718137868648,%22n%22:0,%22r%22:14,%22re%22:930,%22f%22:930,%22dn%22:930,%22dne%22:930,%22c%22:930,%22s%22:930,%22ce%22:930,%22rq%22:921,%22rp%22:1242,%22rpe%22:1264,%22di%22:1741,%22ds%22:2340,%22de%22:2340,%22dc%22:2341,%22l%22:2341,%22le%22:2343%7D,%22navigation%22:%7B%22rc%22:1%7D%7D&fp=1792&fcp=2635
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=2983&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1&af=err,xhr,stn,ins,spa&be=1241&fe=1102&dc=1099&fsh=1&perf=%7B%22timing%22:%7B%22of%22:1718137868648,%22n%22:0,%22r%22:14,%22re%22:930,%22f%22:930,%22dn%22:930,%22dne%22:930,%22c%22:930,%22s%22:930,%22ce%22:930,%22rq%22:921,%22rp%22:1242,%22rpe%22:1264,%22di%22:1741,%22ds%22:2340,%22de%22:2340,%22dc%22:2341,%22l%22:2341,%22le%22:2343%7D,%22navigation%22:%7B%22rc%22:1%7D%7D&fp=1792&fcp=2635 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 0
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: keep-alive
                                              Content-Length: 151
                                              date: Tue, 11 Jun 2024 20:31:12 GMT
                                              content-type: text/plain
                                              cross-origin-resource-policy: cross-origin
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              access-control-allow-origin: https://in.xero.com
                                              access-control-expose-headers: Date
                                              timing-allow-origin: https://in.xero.com
                                              x-served-by: cache-lcy-eglc8600068-LCY
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=3966&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=3966&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 363
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: close
                                              Content-Length: 24
                                              date: Tue, 11 Jun 2024 20:31:13 GMT
                                              content-type: image/gif
                                              access-control-allow-origin: https://in.xero.com
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              x-served-by: cache-lcy-eglc8600066-LCY
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=13317&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=13317&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 744
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: keep-alive
                                              Content-Length: 24
                                              date: Tue, 11 Jun 2024 20:31:22 GMT
                                              content-type: image/gif
                                              access-control-allow-origin: https://in.xero.com
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              x-served-by: cache-lcy-eglc8600073-LCY
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20875&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20875&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 385
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              Content-Type: text/plain;charset=UTF-8
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: no-cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: keep-alive
                                              Content-Length: 24
                                              date: Tue, 11 Jun 2024 20:31:30 GMT
                                              content-type: image/gif
                                              cross-origin-resource-policy: cross-origin
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              access-control-allow-origin: https://in.xero.com
                                              x-served-by: cache-lcy-eglc8600088-LCY
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=13317&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=13317&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 838
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              content-type: text/plain
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: keep-alive
                                              Content-Length: 24
                                              date: Tue, 11 Jun 2024 20:31:22 GMT
                                              content-type: image/gif
                                              access-control-allow-origin: https://in.xero.com
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              x-served-by: cache-lcy-eglc8600068-LCY
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20877&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20877&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 860
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              Content-Type: text/plain;charset=UTF-8
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: no-cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: keep-alive
                                              Content-Length: 24
                                              date: Tue, 11 Jun 2024 20:31:30 GMT
                                              content-type: image/gif
                                              cross-origin-resource-policy: cross-origin
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              access-control-allow-origin: https://in.xero.com
                                              x-served-by: cache-lcy-eglc8600085-LCY
                                            • flag-us
                                              POST
                                              https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20880&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              msedge.exe
                                              Remote address:
                                              162.247.243.29:443
                                              Request
                                              POST /jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20880&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1 HTTP/1.1
                                              Host: bam.nr-data.net
                                              Connection: keep-alive
                                              Content-Length: 575
                                              sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
                                              DNT: 1
                                              sec-ch-ua-mobile: ?0
                                              User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
                                              Content-Type: text/plain;charset=UTF-8
                                              Accept: */*
                                              Origin: https://in.xero.com
                                              Sec-Fetch-Site: cross-site
                                              Sec-Fetch-Mode: no-cors
                                              Sec-Fetch-Dest: empty
                                              Referer: https://in.xero.com/
                                              Accept-Encoding: gzip, deflate, br
                                              Accept-Language: en-US,en;q=0.9
                                              Response
                                              HTTP/1.1 200
                                              Connection: keep-alive
                                              Content-Length: 24
                                              date: Tue, 11 Jun 2024 20:31:30 GMT
                                              content-type: image/gif
                                              cross-origin-resource-policy: cross-origin
                                              access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
                                              access-control-allow-credentials: true
                                              access-control-allow-origin: https://in.xero.com
                                              x-served-by: cache-lcy-eglc8600052-LCY
                                            • 104.90.24.196:443
                                              in.xero.com
                                              tls
                                              msedge.exe
                                              1.1kB
                                              4.5kB
                                              10
                                              9
                                            • 104.90.24.196:443
                                              https://product-analytics-bff.xero.com/events
                                              tls, http2
                                              msedge.exe
                                              13.3kB
                                              104.2kB
                                              65
                                              107

                                              HTTP Request

                                              GET https://in.xero.com/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton

                                              HTTP Response

                                              302

                                              HTTP Request

                                              GET https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK?utm_source=newInvoicingGetLinkButton

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://in.xero.com/api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getDocument

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://in.xero.com/api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getLogo

                                              HTTP Request

                                              POST https://product-analytics-bff.xero.com/events

                                              HTTP Request

                                              POST https://product-analytics-bff.xero.com/events

                                              HTTP Request

                                              POST https://product-analytics-bff.xero.com/events

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://in.xero.com/api/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK/getPdf

                                              HTTP Request

                                              POST https://product-analytics-bff.xero.com/events

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200
                                            • 104.90.26.211:443
                                              https://edge.xero.com/common/react/18.2.0/react.min.js
                                              tls, http2
                                              msedge.exe
                                              3.8kB
                                              99.5kB
                                              55
                                              80

                                              HTTP Request

                                              GET https://edge.xero.com/identity/client/1.1.13/identity.js

                                              HTTP Request

                                              GET https://edge.xero.com/common/react-dom/18.2.0/react-dom.min.js

                                              HTTP Request

                                              GET https://edge.xero.com/common/react/18.2.0/react.min.js

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200
                                            • 104.90.26.211:443
                                              https://edge.xero.com/business/mybills/production/e7e2131e8ee7f228180e.png
                                              tls, http2
                                              msedge.exe
                                              18.2kB
                                              618.2kB
                                              293
                                              473

                                              HTTP Request

                                              GET https://edge.xero.com/style/xui/22.0.0/xui.min.css

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/main.3cf9c16495486cc66bcb.css

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/main.36dab28f36c1a4da644f.js

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/locale.en-NZ.fef92760d1973c04a409.chunk.js

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/favicon.png

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/favicon.ico

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/347.5ab3cb3fd90a50140446.chunk.js

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/478.43716649831f158dd179.chunk.js

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/333.09935eff4b843e2a4f8c.chunk.js

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/146.c1895492b4087ffb5d99.chunk.js

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/IndexRoute.4d5848f23f975a55af12.css

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/IndexRoute.d836fee56eb2aa06e649.chunk.js

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Response

                                              200

                                              HTTP Request

                                              GET https://edge.xero.com/business/mybills/production/e7e2131e8ee7f228180e.png

                                              HTTP Response

                                              200
                                            • 104.90.26.211:443
                                              edge.xero.com
                                              tls
                                              msedge.exe
                                              1.1kB
                                              4.8kB
                                              10
                                              9
                                            • 104.90.26.211:443
                                              edge.xero.com
                                              tls
                                              msedge.exe
                                              931 B
                                              4.2kB
                                              9
                                              7
                                            • 104.90.26.211:443
                                              edge.xero.com
                                              tls
                                              msedge.exe
                                              839 B
                                              4.1kB
                                              7
                                              5
                                            • 162.247.243.39:443
                                              https://js-agent.newrelic.com/nr-spa-1.259.0.min.js
                                              tls, http2
                                              msedge.exe
                                              2.7kB
                                              41.8kB
                                              35
                                              37

                                              HTTP Request

                                              GET https://js-agent.newrelic.com/nr-spa-1.259.0.min.js

                                              HTTP Response

                                              200
                                            • 162.247.243.29:443
                                              https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=3966&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              tls, http
                                              msedge.exe
                                              3.5kB
                                              5.9kB
                                              12
                                              14

                                              HTTP Request

                                              POST https://bam.nr-data.net/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=2983&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1&af=err,xhr,stn,ins,spa&be=1241&fe=1102&dc=1099&fsh=1&perf=%7B%22timing%22:%7B%22of%22:1718137868648,%22n%22:0,%22r%22:14,%22re%22:930,%22f%22:930,%22dn%22:930,%22dne%22:930,%22c%22:930,%22s%22:930,%22ce%22:930,%22rq%22:921,%22rp%22:1242,%22rpe%22:1264,%22di%22:1741,%22ds%22:2340,%22de%22:2340,%22dc%22:2341,%22l%22:2341,%22le%22:2343%7D,%22navigation%22:%7B%22rc%22:1%7D%7D&fp=1792&fcp=2635

                                              HTTP Response

                                              200

                                              HTTP Request

                                              POST https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=3966&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1

                                              HTTP Response

                                              200
                                            • 162.247.243.29:443
                                              https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20875&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              tls, http
                                              msedge.exe
                                              3.7kB
                                              1.6kB
                                              9
                                              8

                                              HTTP Request

                                              POST https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=13317&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1

                                              HTTP Response

                                              200

                                              HTTP Request

                                              POST https://bam.nr-data.net/events/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20875&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1

                                              HTTP Response

                                              200
                                            • 162.247.243.29:443
                                              https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20877&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              tls, http
                                              msedge.exe
                                              4.5kB
                                              5.6kB
                                              12
                                              13

                                              HTTP Request

                                              POST https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=13317&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1

                                              HTTP Response

                                              200

                                              HTTP Request

                                              POST https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20877&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1

                                              HTTP Response

                                              200
                                            • 162.247.243.29:443
                                              https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20880&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1
                                              tls, http
                                              msedge.exe
                                              2.3kB
                                              1.1kB
                                              7
                                              6

                                              HTTP Request

                                              POST https://bam.nr-data.net/jserrors/1/bd61b676be?a=1134228971&sa=1&v=1.259.0&t=Unnamed%20Transaction&rst=20880&ck=0&s=e7711a35624a8e05&ref=https://in.xero.com/m/R6YuIU20fKEJ6WKkN9fMkyDoO7K5pFEUW4U3wXwK&ptid=3ef2058f1d8815f1

                                              HTTP Response

                                              200
                                            • 8.8.8.8:53
                                              in.xero.com
                                              dns
                                              msedge.exe
                                              387 B
                                              932 B
                                              6
                                              6

                                              DNS Request

                                              in.xero.com

                                              DNS Response

                                              104.90.24.196

                                              DNS Request

                                              ocsp.digicert.com

                                              DNS Response

                                              192.229.221.95

                                              DNS Request

                                              4.159.190.20.in-addr.arpa

                                              DNS Request

                                              edge.xero.com

                                              DNS Response

                                              104.90.26.211

                                              DNS Request

                                              bam.nr-data.net

                                              DNS Response

                                              162.247.243.29

                                              DNS Request

                                              product-analytics-bff.xero.com

                                              DNS Response

                                              104.90.24.196

                                            • 8.8.8.8:53
                                              241.197.17.2.in-addr.arpa
                                              dns
                                              210 B
                                              451 B
                                              3
                                              3

                                              DNS Request

                                              241.197.17.2.in-addr.arpa

                                              DNS Request

                                              secure.globalsign.com

                                              DNS Response

                                              104.18.20.226
                                              104.18.21.226

                                              DNS Request

                                              226.20.18.104.in-addr.arpa

                                            • 224.0.0.251:5353
                                              517 B
                                              8

                                            MITRE ATT&CK Enterprise v15

                                            Replay Monitor

                                            Loading Replay Monitor...

                                            Downloads

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                              Filesize

                                              152B

                                              MD5

                                              9faad3e004614b187287bed750e56acc

                                              SHA1

                                              eeea3627a208df5a8cf627b0d39561167d272ac5

                                              SHA256

                                              64a60300c46447926ce44b48ce179d01eff3dba906b83b17e48db0c738ca38a9

                                              SHA512

                                              a7470fe359229c2932aa39417e1cd0dc47f351963cbb39f4026f3a2954e05e3238f3605e13c870c9fe24ae56a0d07e1a6943df0e891bdcd46fd9ae4b7a48ab90

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                              Filesize

                                              152B

                                              MD5

                                              7915c5c12c884cc2fa03af40f3d2e49d

                                              SHA1

                                              d48085f85761cde9c287b0b70a918c7ce8008629

                                              SHA256

                                              e79d4b86d8cabd981d719da7f55e0540831df7fa0f8df5b19c0671137406c3da

                                              SHA512

                                              4c71eb6836546d4cfdb39cd84b6c44687b2c2dee31e2e658d12f809225cbd495f20ce69030bff1d80468605a3523d23b6dea166975cedae25b02a75479c3f217

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                              Filesize

                                              312B

                                              MD5

                                              9fc966148b69da1f7156112c7746c59c

                                              SHA1

                                              0e34e5bc8af4ffed4c0d6071ba94e653626174f1

                                              SHA256

                                              70977211255b9dfc6849347f24b0c71da6f4c35f6ee6f90ffc20820ef23fcc54

                                              SHA512

                                              65c205cd5f82e5933dd766d0089b78c3d9187905f5a7daea8ba4efd73cbf6ce3de2797b0ac60d67ec9f3ba5ba5cfb89a4e23bde7f71b0bbf5b9c4b7318661829

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                              Filesize

                                              6KB

                                              MD5

                                              b1a4a1248eea29c69c96e1319129d966

                                              SHA1

                                              99f23d40488953975e8cafe2b6620ef2f956eba4

                                              SHA256

                                              12f238d84bae6115041dd386167ea9eab5555e2245b6eee1fbe19b46aa7a316d

                                              SHA512

                                              684a617c58209ef694a188873fa55d8239b9bbb169d3c8f862a74acc1ca920d125222ae81f75f671a3b327a436a2f4b7e1c6d241812690d868ddd811fec320ae

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                              Filesize

                                              16B

                                              MD5

                                              46295cac801e5d4857d09837238a6394

                                              SHA1

                                              44e0fa1b517dbf802b18faf0785eeea6ac51594b

                                              SHA256

                                              0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

                                              SHA512

                                              8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                              Filesize

                                              16B

                                              MD5

                                              206702161f94c5cd39fadd03f4014d98

                                              SHA1

                                              bd8bfc144fb5326d21bd1531523d9fb50e1b600a

                                              SHA256

                                              1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

                                              SHA512

                                              0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\ef913f86-71df-46a1-bf67-64d15b979985.tmp

                                              Filesize

                                              5KB

                                              MD5

                                              7567e4d044b2a74a91cbdd13c56fe8fb

                                              SHA1

                                              2e370f789aa4d585e4e7d45e3ed777269ec9b073

                                              SHA256

                                              50c9c264a90599819ba6339f699acafa8da50a2b5258d5a4ab6b40b149b730b6

                                              SHA512

                                              76854cf9bb788b7eac5a9ea94988de1ff9f4abd9c86a5c03fbf664d7f9cb8daa5ec92990a26ed1520672dddc837e9edbd03775e0cb411ecdf60c8b8b7601bace

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                              Filesize

                                              11KB

                                              MD5

                                              308aeee75fad9713f75ac2bfbf135d0d

                                              SHA1

                                              b5496483df85ecb9b2f8c0e045d196d664f74452

                                              SHA256

                                              a28813ec4e8fef1bbe4e61001392213d12713d65cb014413171810babbc34831

                                              SHA512

                                              976670836ee5e7fb96dacaab4006f72ef04c5261ce4f6c5258925d7399c73f8c33db8d3b0beec517cd2096a0c905b4ba30a48bb4d2b803f20d37512df69cb964

                                            • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

                                              Filesize

                                              11KB

                                              MD5

                                              c782b5e91be62398122ce69857305766

                                              SHA1

                                              19d0aa4443e621b82bb7426f066d2f66a457218a

                                              SHA256

                                              44aedec3a9fb03228eec0b853ec3769f092ac2d4924676b6eac56a658008da33

                                              SHA512

                                              32e9dd27f83d5b706a62aeae7a1c11ffa9afe6c2466ab3e4cae8e542bef2aa3863c5ebabc94a86ce202b0a595466cf7cd845d3bd1161b4f1be49d79781404f0e

                                            • C:\Users\Admin\Downloads\Invoice 24.0229-42.pdf

                                              Filesize

                                              56KB

                                              MD5

                                              4d03f9232b53f17da14e7da561d11626

                                              SHA1

                                              9dbeb7605a15a4d1ca3d3b82920aab7d18491332

                                              SHA256

                                              da32caa5641f460c926b46baefd9e0250769ef2ac470ad49efa05203314e0d8e

                                              SHA512

                                              6c47e2f5883ec44f764933786e31e0bc131e04d8a6d4566d9e20a9a5b55105139c7ed54d0a36eb466ce3ecd2a3ae18d102e54b953451a0355021d3ceb50f8dc3

                                            • C:\Users\Admin\Downloads\Invoice 24.0229-42.pdf:Zone.Identifier

                                              Filesize

                                              220B

                                              MD5

                                              994d756a7a0aa1e10700da86fbbc89fe

                                              SHA1

                                              78626b223d0c21347a8f48605c91ad613bfcf9a2

                                              SHA256

                                              06074a883f1599aec6fa87047f68db60e56acc95b6b8c8bf9f7262f67c192504

                                              SHA512

                                              d27d17a38d17b1ac548178dae063e4603c818190ed771ea46e911919ab7bf9defc0e5d1b7835d3b5cd67148088ea51f238a4438d74f4a4fde7a0c65460aacb4e

                                            We care about your privacy.

                                            This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.