Windows Analysis Report
https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1

Overview

General Information

Sample URL:	https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1
Analysis ID:	1520703
Infos:

Detection

Score:	2
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Detected non-DNS traffic on DNS port

Found iframes

HTML body contains low number of good links

HTTP GET or POST without a user agent

Stores files to the Windows start menu directory

Classification

Signatures

Found iframes

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: Iframe src: https://signup2.framer.website

HTML body contains low number of good links

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: Number of links: 0

Source: https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1

HTTP Parser: No favicon

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: No <meta name="author".. found

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49715 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:56264 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:56265 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.133:443 -> 192.168.2.17:56268 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:56269 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.17:56262 -> 1.1.1.1:53

HTTP GET or POST without a user agent

Source: global traffic

HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13

Source: global traffic	HTTP traffic detected: GET /&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1 HTTP/1.1Host: centered-circle-543619.framer.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2 HTTP/1.1Host: www.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://centered-circle-543619.framer.appsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2 HTTP/1.1Host: www.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://centered-circle-543619.framer.appsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2 HTTP/1.1Host: www.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://centered-circle-543619.framer.appsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: centered-circle-543619.framer.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=NDth+LKMzAYkauP&MD=vhlaKhxM HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br
Source: global traffic	HTTP traffic detected: GET /client/config?cc=CH&setlang=en-CH HTTP/1.1X-Search-CortanaAvailableCapabilities: NoneX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A}X-UserAgeClass: UnknownX-BM-Market: CHX-BM-DateFormat: dd/MM/yyyyX-Device-OSSKU: 48X-BM-DTZ: -240X-DeviceID: 01000A41090080B6X-BM-WindowsFlights: FX:117B9872,FX:119E26AD,FX:11C0E96C,FX:11C6E5C2,FX:11C7EB6A,FX:11C9408A,FX:11C940DB,FX:11CB9A9F,FX:11CB9AC1,FX:11CC111C,FX:11D5BFCD,FX:11DF5B12,FX:11DF5B75,FX:1240931B,FX:124B38D0,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:128EBD7E,FX:129135BB,FX:129E053F,FX:12A74DB5,FX:12AB734D,FX:12B8450E,FX:12BD6E73,FX:12C3331B,FX:12C7D66EX-Search-TimeZone: Bias=300; DaylightBias=-60; TimeZoneKeyName=Eastern Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDoAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAARNAqigkEvEAYKiWvmaFnLvW8ic5TQ6zPasz9GdShd3qxMz05zSKn4vDk4j%2Bxrv1TSpnVnQRhB9HRRmYDs2LauXrre0PN20HzpowYTghERBPbZqps1FkP19%2BFnvImyouT5bWWfi2rR0Mu29q0fIAu7bAs5mmporhFEYlad3A5XQUV6HozQoq2o3dodShWupj7HGFMuLiv7Cand8pdU7yBiu/kjzCY5VYxbb4lk3htKnH%2BLccmOSfcQptsgByDAGYDj/o7NSni2liQ9XHyHZZakJAuOyRs/SBVu4DbH2sMqKXKKJGTHi6TUmqZ1HVLxkN4g1xngjCA4UMPAo/Av6bDMEQZgAAEODAXIn2zDDIK5z0JBCINF6wAfxdM%2Bk0jmlz2A96GTnUGon3upfVqyPoBhihPoxUzmn%2BiU2qGvnBXzslWmr/Qk8JhqrI2CDJw/D4ViIvozza/RhRnAAPkIjjiFndvOpl/dStG7Nw6wVpkXE9daucUUlj/exxoE6OXTzXChLICl9WizAy5fMx97TgMe7czd35GuywNpU8%2BOVJjzCTnXOD9/VCx5IuLgufpbi1oqXT%2BpiQUCVXo0rGTHd6K14cBeTw/ZvboGhEnCsCxoDyZF44Po7ETpwOynIaymf37gloaV2gQRsflbUx%2B2/HAPg8WTPFDMzrh0GaWAyzijAGrjEVMwg8aeLPF/l57tgMFEFeMQc3hp63NX%2BJ%2B8zVAk5sJo0CGpjEdPfEqLUXQ4PN2Gvp1/a5i6MiIB%2BG%2BX0z/PPXj%2BMqXGKYBgGp3B8ZYUYtrOSxJMDaq7M22d4Ke9pA3SdeR%2Bn1zSQ38ptvr4yJqLeDVhM1TRMWzvIZNTKcA0wusBiPlEFroFeCa4WgR6pZMaZB%2BtUays%2BwnpxpZipW2twkud3AHmrTx1eN2u88Ya86ipxIFD23de2291l/cl9CFoMcy%2BkdItcB%26p%3DX-Agent-DeviceId: 01000A41090080B6X-BM-CBT: 1727454411User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045X-Device-isOptin: falseAccept-language: en-GB, en, en-USX-Device-Touch: falseX-Device-ClientSession: 511380DD35DA4782B937448CBE08B234X-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIHost: www.bing.comConnection: Keep-AliveCookie: SRCHUID=V=2&GUID=C4EAB6C130004333A34B5668AE4E4D10&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=en; MUID=4590362BB5CF472B95BBEDB3112D4B7B; MUIDB=4590362BB5CF472B95BBEDB3112D4B7B
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=NDth+LKMzAYkauP&MD=vhlaKhxM HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main.217d9c62.js HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /env.js HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: signup2.framer.websiteConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /env.js HTTP/1.1Host: login.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main.217d9c62.js HTTP/1.1Host: login.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim-Medium.woff2 HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.framer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadCallback HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /auth/web/access-token HTTP/1.1Host: api.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://login.framer.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/1365185/envelope/?sentry_key=6334759d5f8d49868b7d831eef45097b&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.48.0 HTTP/1.1Host: sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim-Regular.woff2 HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.framer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/K6yoKpOcQHk9wlJLNjpajzWpZRBJaealJ-mEGGGiT7U.YAWFBSHO.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/zBq5JgsJ7P7Lx0VTh4nlbFOhkk.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-R7TFBMFV.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-42U43NKG.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-HLBBAAQD.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-ELYU6EKT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadCallback HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/b97XMhB8TUN8Xs4kt4d7tuinqw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/uJsl9iIiM5WlSqK2Efj2lPfvSvg.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FlFPIkkteM5UWSrXxRa6RegmRyY.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/AHdfE36GANzvJkdEsFFF79tW1Q.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/k7Rghu4Ah5kWM0OWuC8aR6TEr0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-R7TFBMFV.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-42U43NKG.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-ELYU6EKT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/K6yoKpOcQHk9wlJLNjpajzWpZRBJaealJ-mEGGGiT7U.YAWFBSHO.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/VYwFny1dOY4auaqcz0u21q0VqBA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/zBq5JgsJ7P7Lx0VTh4nlbFOhkk.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/Wt9C69zC4PM1lWqTEosfVNj6do8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/EALLXJbKpElTZbEI0q7qtJzUt78.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/b97XMhB8TUN8Xs4kt4d7tuinqw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FqdpPA7o2MniyDP4yqXhb7ijXSA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/p7yQMXbmMstaaUPMlE4AEBriXw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/ltWXYcIKMr48JlioIC2HGF9f8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbn HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FlFPIkkteM5UWSrXxRa6RegmRyY.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/uJsl9iIiM5WlSqK2Efj2lPfvSvg.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/lQu9AIemHvHaL6Soot5S8Fzb3qM.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/AHdfE36GANzvJkdEsFFF79tW1Q.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/k7Rghu4Ah5kWM0OWuC8aR6TEr0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-HLBBAAQD.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track HTTP/1.1Host: events.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/0U4RO3dTOlRWUyGKyYqFYaeA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/PvLzm4rTHhoYifPPFlGFVSOo.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/VYwFny1dOY4auaqcz0u21q0VqBA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/EALLXJbKpElTZbEI0q7qtJzUt78.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/SNckdleHSmS2bz6TKJVTHQ2SJok.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script HTTP/1.1Host: events.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FqdpPA7o2MniyDP4yqXhb7ijXSA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/Wt9C69zC4PM1lWqTEosfVNj6do8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/p7yQMXbmMstaaUPMlE4AEBriXw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/ltWXYcIKMr48JlioIC2HGF9f8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/M0yGxTP4PC2N7Kz1XvxzhYUUJs.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/yIJHdnW9CwwrJFDFNvJJFxDKXt0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/lQu9AIemHvHaL6Soot5S8Fzb3qM.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script HTTP/1.1Host: events.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/PvLzm4rTHhoYifPPFlGFVSOo.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/0U4RO3dTOlRWUyGKyYqFYaeA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/SNckdleHSmS2bz6TKJVTHQ2SJok.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbnAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/dubcxWuhhbqw8uaLSFFGvELnk5WmffD3wjoYeQZ33gk.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbnAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/M0yGxTP4PC2N7Kz1XvxzhYUUJs.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/yIJHdnW9CwwrJFDFNvJJFxDKXt0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: centered-circle-543619.framer.app
Source: global traffic	DNS traffic detected: DNS query: www.framer.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: login.framer.com
Source: global traffic	DNS traffic detected: DNS query: sentry.io
Source: global traffic	DNS traffic detected: DNS query: signup2.framer.website
Source: global traffic	DNS traffic detected: DNS query: api.framer.com
Source: global traffic	DNS traffic detected: DNS query: framerusercontent.com
Source: global traffic	DNS traffic detected: DNS query: events.framer.com

Source: unknown

HTTP traffic detected: POST /RST2.srf HTTP/1.0Connection: Keep-AliveContent-Type: application/soap+xmlAccept: */*User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68})Content-Length: 3592Host: login.live.com

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundAlt-Svc: h3=":443"; ma=2592000Content-Type: text/html; charset=utf-8Date: Fri, 27 Sep 2024 16:26:25 GMTServer: Framer/875dde8Strict-Transport-Security: max-age=31536000Connection: closeTransfer-Encoding: chunked
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundAlt-Svc: h3=":443"; ma=2592000Connection: closeServer: Framer/875dde8Strict-Transport-Security: max-age=31536000Date: Fri, 27 Sep 2024 16:26:27 GMTContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenContent-Type: application/jsonContent-Length: 42Connection: closeDate: Fri, 27 Sep 2024 16:28:29 GMTx-amz-apigw-id: exd_JFpNoAMEMUg=x-amzn-RequestId: 7dac16e7-2619-4855-9b9c-262f4c320153x-amzn-ErrorType: MissingAuthenticationTokenExceptionX-Cache: Error from cloudfrontVia: 1.1 7115bbde016dc7107bc64db76ba40c56.cloudfront.net (CloudFront)X-Amz-Cf-Pop: FRA60-P7X-Amz-Cf-Id: kXE-8-Wd3qpkfEzc--3HomJdRfFWDqsd2Ed2D5n4RvUhFKb_XGYgJg==

Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_190.1.dr	String found in binary or memory: https://events.framer.com/script
Source: chromecache_190.1.dr	String found in binary or memory: https://framerusercontent.com/sites/icons/default-favicon.v3.png
Source: chromecache_190.1.dr	String found in binary or memory: https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs
Source: chromecache_190.1.dr	String found in binary or memory: https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/searchIndex-9jVCSP4SQrfI.json
Source: chromecache_188.1.dr	String found in binary or memory: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F
Source: chromecache_200.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_200.1.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_190.1.dr	String found in binary or memory: https://www.framer.com/
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2)
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_175.1.dr, chromecache_203.1.dr	String found in binary or memory: https://www.google.com/recaptcha/enterprise/
Source: chromecache_171.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=GTM-T3KPVJR
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.
Source: chromecache_175.1.dr, chromecache_203.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__en.js

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56319
Source: unknown	Network traffic detected: HTTP traffic on port 56345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56279
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56313
Source: unknown	Network traffic detected: HTTP traffic on port 56302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56315
Source: unknown	Network traffic detected: HTTP traffic on port 56322 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56287
Source: unknown	Network traffic detected: HTTP traffic on port 56265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56320
Source: unknown	Network traffic detected: HTTP traffic on port 56325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56321
Source: unknown	Network traffic detected: HTTP traffic on port 56351 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56282
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56284
Source: unknown	Network traffic detected: HTTP traffic on port 56271 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56280
Source: unknown	Network traffic detected: HTTP traffic on port 56319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56281
Source: unknown	Network traffic detected: HTTP traffic on port 56294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49691
Source: unknown	Network traffic detected: HTTP traffic on port 56342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56285 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56329
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56323
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56324
Source: unknown	Network traffic detected: HTTP traffic on port 56307 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56330
Source: unknown	Network traffic detected: HTTP traffic on port 56291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56333
Source: unknown	Network traffic detected: HTTP traffic on port 56268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56293
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56295
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56296
Source: unknown	Network traffic detected: HTTP traffic on port 56331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56290
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56292
Source: unknown	Network traffic detected: HTTP traffic on port 56299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56338
Source: unknown	Network traffic detected: HTTP traffic on port 56343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56339
Source: unknown	Network traffic detected: HTTP traffic on port 56286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56335
Source: unknown	Network traffic detected: HTTP traffic on port 56320 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56336
Source: unknown	Network traffic detected: HTTP traffic on port 56304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56341
Source: unknown	Network traffic detected: HTTP traffic on port 56301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56342
Source: unknown	Network traffic detected: HTTP traffic on port 56292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56344
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56340
Source: unknown	Network traffic detected: HTTP traffic on port 56317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 49680 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 56334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56349
Source: unknown	Network traffic detected: HTTP traffic on port 56283 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56345
Source: unknown	Network traffic detected: HTTP traffic on port 56309 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56352
Source: unknown	Network traffic detected: HTTP traffic on port 56266 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56353
Source: unknown	Network traffic detected: HTTP traffic on port 56326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56351
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 56297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 56354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 56312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56306 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49691 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56332 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56300 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56295 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56265
Source: unknown	Network traffic detected: HTTP traffic on port 56267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56300
Source: unknown	Network traffic detected: HTTP traffic on port 56296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56307
Source: unknown	Network traffic detected: HTTP traffic on port 56344 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56269
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56304
Source: unknown	Network traffic detected: HTTP traffic on port 56305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56276
Source: unknown	Network traffic detected: HTTP traffic on port 56350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56310
Source: unknown	Network traffic detected: HTTP traffic on port 56347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56278
Source: unknown	Network traffic detected: HTTP traffic on port 56287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56271
Source: unknown	Network traffic detected: HTTP traffic on port 56293 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56274
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56333 -> 443

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49715 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:56264 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:56265 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.133:443 -> 192.168.2.17:56268 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:56269 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@26/83@34/17

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2108 --field-trial-handle=2084,i,16560348228593317482,7181066931834296216,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2108 --field-trial-handle=2084,i,16560348228593317482,7181066931834296216,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
108.138.7.13	unknown	United States	16509	AMAZON-02US	false
108.138.7.78	framerusercontent.com	United States	16509	AMAZON-02US	false
35.186.247.156	sentry.io	United States	15169	GOOGLEUS	false
216.58.206.36	www.google.com	United States	15169	GOOGLEUS	false
3.160.150.29	unknown	United States	16509	AMAZON-02US	false
3.70.101.28	unknown	United States	16509	AMAZON-02US	false
142.250.186.132	unknown	United States	15169	GOOGLEUS	false
18.245.60.100	api.framer.com	United States	16509	AMAZON-02US	false
35.156.224.161	framer-web-login.netlify.app	United States	16509	AMAZON-02US	false
142.250.184.196	unknown	United States	15169	GOOGLEUS	false
3.160.150.112	events.framer.com	United States	16509	AMAZON-02US	false
13.32.27.66	www.framer.com	United States	7018	ATT-INTERNET4US	false
35.71.142.77	signup2.framer.website	United States	237	MERIT-AS-14US	false
142.250.185.132	unknown	United States	15169	GOOGLEUS	false
3.160.150.33	unknown	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false

Private

IP
192.168.2.17

Contacted Domains

Name	IP	Active
framerusercontent.com	108.138.7.78	true
api.framer.com	18.245.60.100	true
signup2.framer.website	35.71.142.77	true
events.framer.com	3.160.150.112	true
centered-circle-543619.framer.app	35.71.142.77	true
framer-web-login.netlify.app	35.156.224.161	true
www.framer.com	13.32.27.66	true
sentry.io	35.186.247.156	true
www.google.com	216.58.206.36	true
login.framer.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://www.google.com/js/bg/dubcxWuhhbqw8uaLSFFGvELnk5WmffD3wjoYeQZ33gk.js	false	unknown
https://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY	false	unknown
https://framerusercontent.com/images/EALLXJbKpElTZbEI0q7qtJzUt78.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/p7yQMXbmMstaaUPMlE4AEBriXw.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/SNckdleHSmS2bz6TKJVTHQ2SJok.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/chunk-R7TFBMFV.mjs	false	unknown
https://framerusercontent.com/images/FqdpPA7o2MniyDP4yqXhb7ijXSA.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/lQu9AIemHvHaL6Soot5S8Fzb3qM.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/chunk-ELYU6EKT.mjs	false	unknown
https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2	false	unknown
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbn	false	unknown
https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2	false	unknown
https://framerusercontent.com/images/b97XMhB8TUN8Xs4kt4d7tuinqw.png?scale-down-to=1024	false	unknown
https://signup2.framer.website/	false	unknown
https://framerusercontent.com/images/Wt9C69zC4PM1lWqTEosfVNj6do8.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/chunk-HLBBAAQD.mjs	false	unknown
https://events.framer.com/script	false	unknown
https://framerusercontent.com/images/PvLzm4rTHhoYifPPFlGFVSOo.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/chunk-42U43NKG.mjs	false	unknown
https://framerusercontent.com/images/VYwFny1dOY4auaqcz0u21q0VqBA.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/zBq5JgsJ7P7Lx0VTh4nlbFOhkk.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/M0yGxTP4PC2N7Kz1XvxzhYUUJs.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs	false	unknown
https://login.framer.com/fonts/GT-Walsheim-Medium.woff2	false	unknown
https://sentry.io/api/1365185/envelope/?sentry_key=6334759d5f8d49868b7d831eef45097b&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.48.0	false	unknown
https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F	false	unknown
https://framerusercontent.com/images/ltWXYcIKMr48JlioIC2HGF9f8.png?scale-down-to=1024	false	unknown
https://login.framer.com/fonts/GT-Walsheim-Regular.woff2	false	unknown
https://framerusercontent.com/images/k7Rghu4Ah5kWM0OWuC8aR6TEr0.png?scale-down-to=1024	false	unknown
https://login.framer.com/static/js/main.217d9c62.js	false	unknown
https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2	false	unknown
https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/K6yoKpOcQHk9wlJLNjpajzWpZRBJaealJ-mEGGGiT7U.YAWFBSHO.mjs	false	unknown
https://framerusercontent.com/images/AHdfE36GANzvJkdEsFFF79tW1Q.png?scale-down-to=1024	false	unknown
https://login.framer.com/env.js	false	unknown
https://framerusercontent.com/images/uJsl9iIiM5WlSqK2Efj2lPfvSvg.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/FlFPIkkteM5UWSrXxRa6RegmRyY.png?scale-down-to=1024	false	unknown
https://framerusercontent.com/images/yIJHdnW9CwwrJFDFNvJJFxDKXt0.png?scale-down-to=1024	false	unknown
https://events.framer.com/track	false	unknown
https://api.framer.com/auth/web/access-token	false	unknown
https://centered-circle-543619.framer.app/favicon.ico	false	unknown
https://framerusercontent.com/images/0U4RO3dTOlRWUyGKyYqFYaeA.png?scale-down-to=1024	false	unknown
https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1	false	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 15:26:26 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	3175D6F7518C4DBC274E0F1500A03394	7D5321B0B6F18F4C99E4E32FDD697EDFF6496CF8	4549449D833A4F1939C22AC7D8F0AB5851E2C6E6DA71D7F8F4773EC1331D9A5C
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 15:26:26 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	6EA06BAFDD609288E9A4DEA74FB35349	FD81FDACBB1F3514C382D05DE44B8A73E49EFBAD	91BAF878455A6E7A038FCAB7968803F4F85494028DBF4705C712F7ACAE187C3E
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	A1C78E1F725B79AE5115707552E95203	DB7A44197E62EC2E45A42BF0FE46BAB70EC6A1F7	2CE137D1E5B7A1B9E188A4D530ED08E35633B54AC812DE4A74099ADC8882C2F2
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 15:26:26 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	1C2F93A5A3E648024CA3189A4B9BB52E	397B040C270875D89B3C0485C98DEBF4BB8A5BD1	FEFF51A7A8CA4840B119877EC1571A6A9896A7BF5DEEEA636F600EF35DEF3722
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 15:26:26 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	F471EF1C44A81DF332E93B7864B66DAA	032B0B9643930E44CF30D6D3F2A659D3E53BF72C	DB2E6AED2BD01E1EBF65E70AA59738FF9464202C0149240FE4CCBF1EE96BF277
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 15:26:26 2024, atime=Mon Oct 2 20:46:57 2023, length=1210144, window=hide	F49C1BE5623887C97BC88ADB4CF53B46	125F73BE5C4FFC7A98D9C974FD2FEE2B0F862BBE	CC94575B78435E668FD49B25A6A07AAACE7603E6E446716FF247B9E360329094
Chrome Cache Entry: 167	ASCII text, with very long lines (65465)	CA8C137B76D2AFC2589198D0BD154AB5	1155C2E0807BFF6D41B7431DC617C040812AC940	9F1FAB37A3FBFEFB360DB6CF484837FF666B06515440D16E8BA51AFCE98F4DF4
Chrome Cache Entry: 168	ISO Media, AVIF Image	8EDB7908057DF85282615D881B280F5B	F43A8F2287F9BB397A3C7AC65238466E1D53D942	3B8EE98B9234AD94AF5A58FDF78B34DF8BC28096ED487F168BA5EABC5C644869
Chrome Cache Entry: 169	ISO Media, AVIF Image	1E4887E2E5E42C8E8A1F9D0DCC9E754A	7660462F288CCBD3F2133D6714B131A8D25F8C84	DB54D022BA423AD5576B6CC2E97FD6510DB4B0C6ADD6488141A5534667E841C4
Chrome Cache Entry: 170	ISO Media, AVIF Image	1D4B241699DF464D0135A4D74F416312	8C59461774CDBE0E9538F844B5E6DBDA3C75249D	6B70BABE74515D25922A64465EDCC82D38A04E9BD354B653B544E4605DBF74B3
Chrome Cache Entry: 171	HTML document, ASCII text, with very long lines (988), with no line terminators	1006FCB9896499B8E64FC9A557C76817	11B4748CA65CF0E7599B9D277351FA101E8D7862	E9FD4EB1F515B9A3B282ACF2651CF7D22FF26C82323CBC634DBCFAFC1B25706C
Chrome Cache Entry: 172	ASCII text, with no line terminators	AFB69DF47958EB78B4E941270772BD6A	D9FE9A625E906FF25C1F165E7872B1D9C731E78E	874809FB1235F80831B706B9E9B903D80BD5662D036B7712CC76F8C684118878
Chrome Cache Entry: 173	ISO Media, AVIF Image	924E2ECC3C0FD72DDC92FBB7D03A932F	1BA9B24A012DF8902A0963C2DAA51BA08E6A7602	F339869C45EF9B1CB1395804A6712F675B69D0BDFAA529AF9D336F052FE44782
Chrome Cache Entry: 174	ASCII text, with very long lines (724)	33AFF52B82A1DF246136E75500D93220	4675754451AF81F996EAB925923C31EF5115A9F4	B5E8EC5D4DCC080657DEB2D004F65D974BF4EC9E9AA5D621E10749182FFF8731
Chrome Cache Entry: 175	ASCII text, with very long lines (1592), with no line terminators	0B813D87E494875D57CD1EEAC4D34767	F8988F2B1CDD27894CCC26F21BD3982880B53432	EEBF55D5FCDEEAE1C68F89A7864614350CCF9DE7842A895EAEF80488BEFC4BE9
Chrome Cache Entry: 176	ASCII text, with very long lines (65536), with no line terminators	4A026ED751D23BE3CDBA4E014F0F5F53	EDAAFABA64F6663FDE92DC7EF909630E6E87AE47	A7EAB0F478E32CE81B66A8DA7C883CA00FD9051281DAE908A20DC05743A9863B
Chrome Cache Entry: 177	Web Open Font Format (Version 2), CFF, length 38432, version 2.327	4A6C74ED99C7A0C2957D57A0CF74926D	2F6363BFD729B567FC6DC5E56A407A20AAB48F00	F1ED19F850A7AE27B423697A041CEC917463BB14B7F3302C4224B012C1852AFD
Chrome Cache Entry: 178	ASCII text	F5FE0CAB78140E0E5AA29F68CE8C2888	4E02FF9F9E7144B978E8C80EDA3A4CABE5288B0B	7B2FAEC4335DE81ABBF1EBF794F91A4F2B870B317093448B84082B5F411C741C
Chrome Cache Entry: 179	ASCII text, with very long lines (65536), with no line terminators	4A026ED751D23BE3CDBA4E014F0F5F53	EDAAFABA64F6663FDE92DC7EF909630E6E87AE47	A7EAB0F478E32CE81B66A8DA7C883CA00FD9051281DAE908A20DC05743A9863B
Chrome Cache Entry: 180	ISO Media, AVIF Image	D199B7F9C10AB128D120625147FCBE70	87003C266ABC5D35147FE6E64D5FF36D2542BA1F	671B5A30167CA3EA6D70192ED75B9AE0A33616C139F61C1C9EAC745A6C03DC52
Chrome Cache Entry: 181	ASCII text, with very long lines (35125)	262A64435E54D56443F14D68B60DCC63	021DC45A50A873FDF7FCE1C667DBCFEA7833451F	21FAA1CA7D12C9EA82E048620A0BE2D393175FCDCEA340DC9FAB622C566A5F99
Chrome Cache Entry: 182	ASCII text, with very long lines (402)	BAC0D5B5F6A61029B51079932CCDA746	9C42942192643D366F236B17FE9B6B516770DBC9	4E0EA1029EAB3B7C0BB3183EAA684B29064F2DE371720317B8A35519FE26589E
Chrome Cache Entry: 183	ISO Media, AVIF Image	469F725A1EDC238E1F1F00AB145D13D5	2D22FE6A4164C89DA056DFCD50EFAC590794E4CC	52AAB6F6D74FA3935B690A9365863A94ED57A866A3827404A9FA6075E3B5D6E9
Chrome Cache Entry: 184	ASCII text	7EC5ECD016AD73C362FB6E3B69B25D8A	5075566786A2F18701E848E86FDB39E625D5CA2A	B4739D0EB6AC24A6B1624A21639397D4FB4FF1E837B976B901BEA1E733D24CE2
Chrome Cache Entry: 185	ASCII text, with very long lines (402)	BAC0D5B5F6A61029B51079932CCDA746	9C42942192643D366F236B17FE9B6B516770DBC9	4E0EA1029EAB3B7C0BB3183EAA684B29064F2DE371720317B8A35519FE26589E
Chrome Cache Entry: 186	ASCII text	7EC5ECD016AD73C362FB6E3B69B25D8A	5075566786A2F18701E848E86FDB39E625D5CA2A	B4739D0EB6AC24A6B1624A21639397D4FB4FF1E837B976B901BEA1E733D24CE2
Chrome Cache Entry: 187	Web Open Font Format (Version 2), TrueType, length 20248, version 1.0	7C250B154223D810EA33E61A54EA44E9	D5C93C110B8ECA3DFF9A07B3B3FC02E706DF1F0A	4E6C62AEA082FA5D57929A9674552137402496DA78265BA67A27833C51050589
Chrome Cache Entry: 188	HTML document, ASCII text	05F4C23596C44046784809ACCCAE4F5E	51F781603453A8851BF2DF062CBA5D7AC47BE1E8	9F95E55F359969CB6825F5B23AF9B6D7D3B2BCCBAC6C5C11A07D1D4356B664AB
Chrome Cache Entry: 189	PNG image data, 614 x 1024, 8-bit colormap, non-interlaced	FDA9AA7360BB1D4C2BDC16BAD81E5002	7C97DC8B81491428E2C2AB9F3405DE55684D90B2	DD77C5A21E1B53B725038A3F8666DA31F0EBEF28348EE650E7091CFEC7E95F74
Chrome Cache Entry: 190	HTML document, Unicode text, UTF-8 text, with very long lines (64515), with CRLF line terminators	6F8C3DA94B85EE441850FBE5F9D9F945	A15CB5BC431F4C764241287C0B7DAC4E6B9A2269	58042214C762D9EF014E7BC22F9F70560B9B00D13CF1A86E8EFE74B013874AD3
Chrome Cache Entry: 191	ISO Media, AVIF Image	C5D5C198A3E043FC7CED1885434B53F2	069DF820DD14F248D7EC17F3735A8D754EBC4E3D	6E7D6C1D2C0A13A6DDAF762C6AE0F8509F6EEB755380DE41404D7528CDA72059
Chrome Cache Entry: 192	ASCII text, with very long lines (65465)	CA8C137B76D2AFC2589198D0BD154AB5	1155C2E0807BFF6D41B7431DC617C040812AC940	9F1FAB37A3FBFEFB360DB6CF484837FF666B06515440D16E8BA51AFCE98F4DF4
Chrome Cache Entry: 193	PNG image data, 612 x 1024, 8-bit colormap, non-interlaced	4C6B45398B5951913F2C8CB25E27D48B	EAB74D7CB40BCC9A411342F3DFFA1AA1547F2A3E	CFFFE060B270C551875F96395A3EE6EDA0562B9D58596499290C9C75083EE309
Chrome Cache Entry: 194	ISO Media, AVIF Image	800FB5385D66D95D975750B556B7AA85	B8579639173F61B2EB2045B40BD8DA0131E6AB4F	1F3A2816A9EA875EAD3A4FDBCEBA8412ED122C128F3C29EF03CEEB9FAFD3A732
Chrome Cache Entry: 195	ISO Media, AVIF Image	783C44FF2B4A5AD2735E52B245F79395	2064B876B5887377DAAC1363CA32B4CA258084CA	4D6672E6476A1CE01A85DA912F8EE5B4A8CA25389818B8D7E615C786066490DC
Chrome Cache Entry: 196	Web Open Font Format (Version 2), TrueType, length 20024, version 1.0	C6C9CC5CF5101629A4138BB1B7EDC046	94D6CB5B48A786240314BEA4D197F87BC33E3A5E	62BD14B670C4D27D750A20D31B924EF5866E45B1635E769730A57792DD3B52BD
Chrome Cache Entry: 197	Web Open Font Format (Version 2), TrueType, length 19032, version 1.0	27EFE7989FC51B3DCAE329681D061245	F8513D5B15571F058DB9776600B26741C96F207E	8DF31A855A1E926287C7AA0A46D942A08A33070EDE77D511738E220119BB12B2
Chrome Cache Entry: 198	ASCII text, with very long lines (35125)	262A64435E54D56443F14D68B60DCC63	021DC45A50A873FDF7FCE1C667DBCFEA7833451F	21FAA1CA7D12C9EA82E048620A0BE2D393175FCDCEA340DC9FAB622C566A5F99
Chrome Cache Entry: 199	ASCII text	F5FE0CAB78140E0E5AA29F68CE8C2888	4E02FF9F9E7144B978E8C80EDA3A4CABE5288B0B	7B2FAEC4335DE81ABBF1EBF794F91A4F2B870B317093448B84082B5F411C741C
Chrome Cache Entry: 200	ASCII text, with very long lines (724)	33AFF52B82A1DF246136E75500D93220	4675754451AF81F996EAB925923C31EF5115A9F4	B5E8EC5D4DCC080657DEB2D004F65D974BF4EC9E9AA5D621E10749182FFF8731
Chrome Cache Entry: 202	ISO Media, AVIF Image	6A6ECB11D1059E4EE5AB0308676C1CA7	3961FAC69758FC506346B2CCA8B8E4C22EF164B5	7DAE4D248B50D3DB27966F69352B0548FE0BC74F047728EA634CFF74F30416EC
Chrome Cache Entry: 203	ASCII text, with very long lines (1592), with no line terminators	0B813D87E494875D57CD1EEAC4D34767	F8988F2B1CDD27894CCC26F21BD3982880B53432	EEBF55D5FCDEEAE1C68F89A7864614350CCF9DE7842A895EAEF80488BEFC4BE9
Chrome Cache Entry: 204	ISO Media, AVIF Image	099116A59E5CF911D382D26DCBDA44C1	ED527E9035E63971816551E92F0EB871AF536476	E790FD4E0193863F8BFC7C1F005E95085858178039B6A8F220D589161148C1B9
Chrome Cache Entry: 205	ISO Media, AVIF Image	6CD6DB2DBEEF34292D409D2EC33350B7	22C2713D4F5CBC4E2F5644B82342063399AF4650	ADA3978B473EFAC6D3A26904B7131FBAABB51E36CAA3957854BC44BDBD862EE4
Chrome Cache Entry: 206	Web Open Font Format (Version 2), CFF, length 40000, version 2.327	C3BB319FEDF9B44C13B9A44D0D21F52A	FDEEA035012F4C3197D7F82BC68B4D38DA4FA26A	D5833892A75EF71B7FAD7D1CA40D9AB88651FD8C80023476718DFD5D6FBBBEFF
Chrome Cache Entry: 207	ISO Media, AVIF Image	05328B3E2404C6EE83012114B6748F4A	18F8C998C0B290E36E423A1AEBBBA0C61FE299FB	5DBB8A0758CFE1A6E66DC06DAB0E109EB714BCB634C8085FC3C1FE785EDBB15F
Chrome Cache Entry: 208	PNG image data, 616 x 1024, 8-bit colormap, non-interlaced	62A556C304BFB3AFFA6F1E5C9777D313	B8336C765A4F927CCB2C1193E74076C1D18834E2	F0656A0CEB439442DFB22042B2C6ABDC1BE008BBAE1902972EF05E3E22D12504
Chrome Cache Entry: 209	ASCII text, with very long lines (717)	03685DEB4C026396F0FD8DEE917F56BE	55B4075F43AB1401E66C6DEF90DB557832D6D939	B72F056746CD0B294F92617C9314BC7F89628BE4B552DA867647C71431C76CE9
Chrome Cache Entry: 210	PNG image data, 614 x 1024, 8-bit colormap, non-interlaced	68AD19FC36498C6999E619B9F723B55B	660429CC5A24B25FC971674BB49BA7344F51089E	B3B4E474BC5BDD6C0FD2E594CEE6F1269374D74A1408866613F7F6A012D19A01
Chrome Cache Entry: 211	PNG image data, 612 x 1024, 8-bit colormap, non-interlaced	3E811BD898A9843F4889590EB118D1B6	5B4F0CFB88EC6B11EC1015CD2D3635D67A8F35B5	78DC7C347AD0F0380E9C32D78F2F0EFBFFF2F015C92563AD173F6F7F7A14F1F7
Chrome Cache Entry: 212	ASCII text, with very long lines (717)	03685DEB4C026396F0FD8DEE917F56BE	55B4075F43AB1401E66C6DEF90DB557832D6D939	B72F056746CD0B294F92617C9314BC7F89628BE4B552DA867647C71431C76CE9
Chrome Cache Entry: 213	PNG image data, 616 x 1024, 8-bit colormap, non-interlaced	9DE4779D7C01D7235AD99130664B4BED	D0FA720F989F5788A58A6B1DE62D0F45AD703115	A93C9752662418E7FCA6A9C5759B2B088A3281AAF853899804365E7E4FEE83E3

Found iframes

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: Iframe src: https://signup2.framer.website

HTML body contains low number of good links

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: Number of links: 0

Source: https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1

HTTP Parser: No favicon

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: No <meta name="author".. found

Source: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49715 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:56264 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:56265 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.133:443 -> 192.168.2.17:56268 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:56269 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.17:56262 -> 1.1.1.1:53

HTTP GET or POST without a user agent

Source: global traffic

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.13

Source: global traffic	HTTP traffic detected: GET /&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1 HTTP/1.1Host: centered-circle-543619.framer.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2 HTTP/1.1Host: www.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://centered-circle-543619.framer.appsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2 HTTP/1.1Host: www.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://centered-circle-543619.framer.appsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2 HTTP/1.1Host: www.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://centered-circle-543619.framer.appsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: centered-circle-543619.framer.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=NDth+LKMzAYkauP&MD=vhlaKhxM HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /ab HTTP/1.1Host: evoke-windowsservices-tas.msedge.netCache-Control: no-store, no-cacheX-PHOTOS-CALLERID: 9NMPJ99VJBWVX-EVOKE-RING: X-WINNEXT-RING: PublicX-WINNEXT-TELEMETRYLEVEL: BasicX-WINNEXT-OSVERSION: 10.0.19045.0X-WINNEXT-APPVERSION: 1.23082.131.0X-WINNEXT-PLATFORM: DesktopX-WINNEXT-CANTAILOR: FalseX-MSEDGE-CLIENTID: {c1afbad7-f7da-40f2-92f9-8846a91d69bd}X-WINNEXT-PUBDEVICEID: dbfen2nYS7HW6ON4OdOknKxxv2CCI5LJBTojzDztjwI=If-None-Match: 2056388360_-1434155563Accept-Encoding: gzip, deflate, br
Source: global traffic	HTTP traffic detected: GET /client/config?cc=CH&setlang=en-CH HTTP/1.1X-Search-CortanaAvailableCapabilities: NoneX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A}X-UserAgeClass: UnknownX-BM-Market: CHX-BM-DateFormat: dd/MM/yyyyX-Device-OSSKU: 48X-BM-DTZ: -240X-DeviceID: 01000A41090080B6X-BM-WindowsFlights: FX:117B9872,FX:119E26AD,FX:11C0E96C,FX:11C6E5C2,FX:11C7EB6A,FX:11C9408A,FX:11C940DB,FX:11CB9A9F,FX:11CB9AC1,FX:11CC111C,FX:11D5BFCD,FX:11DF5B12,FX:11DF5B75,FX:1240931B,FX:124B38D0,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:128EBD7E,FX:129135BB,FX:129E053F,FX:12A74DB5,FX:12AB734D,FX:12B8450E,FX:12BD6E73,FX:12C3331B,FX:12C7D66EX-Search-TimeZone: Bias=300; DaylightBias=-60; TimeZoneKeyName=Eastern Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDoAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAARNAqigkEvEAYKiWvmaFnLvW8ic5TQ6zPasz9GdShd3qxMz05zSKn4vDk4j%2Bxrv1TSpnVnQRhB9HRRmYDs2LauXrre0PN20HzpowYTghERBPbZqps1FkP19%2BFnvImyouT5bWWfi2rR0Mu29q0fIAu7bAs5mmporhFEYlad3A5XQUV6HozQoq2o3dodShWupj7HGFMuLiv7Cand8pdU7yBiu/kjzCY5VYxbb4lk3htKnH%2BLccmOSfcQptsgByDAGYDj/o7NSni2liQ9XHyHZZakJAuOyRs/SBVu4DbH2sMqKXKKJGTHi6TUmqZ1HVLxkN4g1xngjCA4UMPAo/Av6bDMEQZgAAEODAXIn2zDDIK5z0JBCINF6wAfxdM%2Bk0jmlz2A96GTnUGon3upfVqyPoBhihPoxUzmn%2BiU2qGvnBXzslWmr/Qk8JhqrI2CDJw/D4ViIvozza/RhRnAAPkIjjiFndvOpl/dStG7Nw6wVpkXE9daucUUlj/exxoE6OXTzXChLICl9WizAy5fMx97TgMe7czd35GuywNpU8%2BOVJjzCTnXOD9/VCx5IuLgufpbi1oqXT%2BpiQUCVXo0rGTHd6K14cBeTw/ZvboGhEnCsCxoDyZF44Po7ETpwOynIaymf37gloaV2gQRsflbUx%2B2/HAPg8WTPFDMzrh0GaWAyzijAGrjEVMwg8aeLPF/l57tgMFEFeMQc3hp63NX%2BJ%2B8zVAk5sJo0CGpjEdPfEqLUXQ4PN2Gvp1/a5i6MiIB%2BG%2BX0z/PPXj%2BMqXGKYBgGp3B8ZYUYtrOSxJMDaq7M22d4Ke9pA3SdeR%2Bn1zSQ38ptvr4yJqLeDVhM1TRMWzvIZNTKcA0wusBiPlEFroFeCa4WgR6pZMaZB%2BtUays%2BwnpxpZipW2twkud3AHmrTx1eN2u88Ya86ipxIFD23de2291l/cl9CFoMcy%2BkdItcB%26p%3DX-Agent-DeviceId: 01000A41090080B6X-BM-CBT: 1727454411User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045X-Device-isOptin: falseAccept-language: en-GB, en, en-USX-Device-Touch: falseX-Device-ClientSession: 511380DD35DA4782B937448CBE08B234X-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIHost: www.bing.comConnection: Keep-AliveCookie: SRCHUID=V=2&GUID=C4EAB6C130004333A34B5668AE4E4D10&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=en; MUID=4590362BB5CF472B95BBEDB3112D4B7B; MUIDB=4590362BB5CF472B95BBEDB3112D4B7B
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=NDth+LKMzAYkauP&MD=vhlaKhxM HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://centered-circle-543619.framer.app/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main.217d9c62.js HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /env.js HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: signup2.framer.websiteConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /env.js HTTP/1.1Host: login.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main.217d9c62.js HTTP/1.1Host: login.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim-Medium.woff2 HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.framer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadCallback HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /auth/web/access-token HTTP/1.1Host: api.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://login.framer.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/1365185/envelope/?sentry_key=6334759d5f8d49868b7d831eef45097b&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.48.0 HTTP/1.1Host: sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/GT-Walsheim-Regular.woff2 HTTP/1.1Host: login.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.framer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2FAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/K6yoKpOcQHk9wlJLNjpajzWpZRBJaealJ-mEGGGiT7U.YAWFBSHO.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/zBq5JgsJ7P7Lx0VTh4nlbFOhkk.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-R7TFBMFV.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-42U43NKG.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-HLBBAAQD.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-ELYU6EKT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadCallback HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/b97XMhB8TUN8Xs4kt4d7tuinqw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/uJsl9iIiM5WlSqK2Efj2lPfvSvg.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FlFPIkkteM5UWSrXxRa6RegmRyY.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/AHdfE36GANzvJkdEsFFF79tW1Q.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/k7Rghu4Ah5kWM0OWuC8aR6TEr0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-R7TFBMFV.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-42U43NKG.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-ELYU6EKT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/K6yoKpOcQHk9wlJLNjpajzWpZRBJaealJ-mEGGGiT7U.YAWFBSHO.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/VYwFny1dOY4auaqcz0u21q0VqBA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/zBq5JgsJ7P7Lx0VTh4nlbFOhkk.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/Wt9C69zC4PM1lWqTEosfVNj6do8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/EALLXJbKpElTZbEI0q7qtJzUt78.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/b97XMhB8TUN8Xs4kt4d7tuinqw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FqdpPA7o2MniyDP4yqXhb7ijXSA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/p7yQMXbmMstaaUPMlE4AEBriXw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/ltWXYcIKMr48JlioIC2HGF9f8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbn HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://login.framer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FlFPIkkteM5UWSrXxRa6RegmRyY.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/uJsl9iIiM5WlSqK2Efj2lPfvSvg.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/lQu9AIemHvHaL6Soot5S8Fzb3qM.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/AHdfE36GANzvJkdEsFFF79tW1Q.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/k7Rghu4Ah5kWM0OWuC8aR6TEr0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/chunk-HLBBAAQD.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track HTTP/1.1Host: events.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/0U4RO3dTOlRWUyGKyYqFYaeA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/PvLzm4rTHhoYifPPFlGFVSOo.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/VYwFny1dOY4auaqcz0u21q0VqBA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/EALLXJbKpElTZbEI0q7qtJzUt78.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/SNckdleHSmS2bz6TKJVTHQ2SJok.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script HTTP/1.1Host: events.framer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/FqdpPA7o2MniyDP4yqXhb7ijXSA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/Wt9C69zC4PM1lWqTEosfVNj6do8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/p7yQMXbmMstaaUPMlE4AEBriXw.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/ltWXYcIKMr48JlioIC2HGF9f8.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://signup2.framer.websitesec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/M0yGxTP4PC2N7Kz1XvxzhYUUJs.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/yIJHdnW9CwwrJFDFNvJJFxDKXt0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://signup2.framer.website/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/lQu9AIemHvHaL6Soot5S8Fzb3qM.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script HTTP/1.1Host: events.framer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/PvLzm4rTHhoYifPPFlGFVSOo.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/0U4RO3dTOlRWUyGKyYqFYaeA.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/SNckdleHSmS2bz6TKJVTHQ2SJok.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbnAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/dubcxWuhhbqw8uaLSFFGvELnk5WmffD3wjoYeQZ33gk.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJC2yQEIprbJAQipncoBCLf3ygEIkqHLAQiFoM0BCLnKzQEIitPNAQjB1M0BCLrYzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LcRWAYqAAAAAO5gUOuCftzMzi6K1qwQJq5g3lxj&co=aHR0cHM6Ly9sb2dpbi5mcmFtZXIuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&badge=inline&cb=owet8mp4mgbnAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/M0yGxTP4PC2N7Kz1XvxzhYUUJs.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/yIJHdnW9CwwrJFDFNvJJFxDKXt0.png?scale-down-to=1024 HTTP/1.1Host: framerusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: centered-circle-543619.framer.app
Source: global traffic	DNS traffic detected: DNS query: www.framer.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: login.framer.com
Source: global traffic	DNS traffic detected: DNS query: sentry.io
Source: global traffic	DNS traffic detected: DNS query: signup2.framer.website
Source: global traffic	DNS traffic detected: DNS query: api.framer.com
Source: global traffic	DNS traffic detected: DNS query: framerusercontent.com
Source: global traffic	DNS traffic detected: DNS query: events.framer.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundAlt-Svc: h3=":443"; ma=2592000Content-Type: text/html; charset=utf-8Date: Fri, 27 Sep 2024 16:26:25 GMTServer: Framer/875dde8Strict-Transport-Security: max-age=31536000Connection: closeTransfer-Encoding: chunked
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundAlt-Svc: h3=":443"; ma=2592000Connection: closeServer: Framer/875dde8Strict-Transport-Security: max-age=31536000Date: Fri, 27 Sep 2024 16:26:27 GMTContent-Length: 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenContent-Type: application/jsonContent-Length: 42Connection: closeDate: Fri, 27 Sep 2024 16:28:29 GMTx-amz-apigw-id: exd_JFpNoAMEMUg=x-amzn-RequestId: 7dac16e7-2619-4855-9b9c-262f4c320153x-amzn-ErrorType: MissingAuthenticationTokenExceptionX-Cache: Error from cloudfrontVia: 1.1 7115bbde016dc7107bc64db76ba40c56.cloudfront.net (CloudFront)X-Amz-Cf-Pop: FRA60-P7X-Amz-Cf-Id: kXE-8-Wd3qpkfEzc--3HomJdRfFWDqsd2Ed2D5n4RvUhFKb_XGYgJg==

Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_190.1.dr	String found in binary or memory: https://events.framer.com/script
Source: chromecache_190.1.dr	String found in binary or memory: https://framerusercontent.com/sites/icons/default-favicon.v3.png
Source: chromecache_190.1.dr	String found in binary or memory: https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/default_script0.BFQQGJDT.mjs
Source: chromecache_190.1.dr	String found in binary or memory: https://framerusercontent.com/sites/nOuIbWFMjWDWBgyVncyHY/searchIndex-9jVCSP4SQrfI.json
Source: chromecache_188.1.dr	String found in binary or memory: https://login.framer.com/sign-up/?ref=site-404&redirect=https%3A%2F%2Fframer.com%2F
Source: chromecache_200.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_200.1.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_190.1.dr	String found in binary or memory: https://www.framer.com/
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Bold-subset.woff2)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Medium-subset.woff2)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff)
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2
Source: chromecache_188.1.dr	String found in binary or memory: https://www.framer.com/fonts/GT-Walsheim/GT-Walsheim-Regular-subset.woff2)
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_175.1.dr, chromecache_203.1.dr	String found in binary or memory: https://www.google.com/recaptcha/enterprise/
Source: chromecache_171.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=GTM-T3KPVJR
Source: chromecache_174.1.dr, chromecache_200.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.
Source: chromecache_175.1.dr, chromecache_203.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__en.js

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56319
Source: unknown	Network traffic detected: HTTP traffic on port 56345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56279
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56313
Source: unknown	Network traffic detected: HTTP traffic on port 56302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56315
Source: unknown	Network traffic detected: HTTP traffic on port 56322 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56287
Source: unknown	Network traffic detected: HTTP traffic on port 56265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56320
Source: unknown	Network traffic detected: HTTP traffic on port 56325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56321
Source: unknown	Network traffic detected: HTTP traffic on port 56351 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56282
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56284
Source: unknown	Network traffic detected: HTTP traffic on port 56271 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56280
Source: unknown	Network traffic detected: HTTP traffic on port 56319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56281
Source: unknown	Network traffic detected: HTTP traffic on port 56294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49691
Source: unknown	Network traffic detected: HTTP traffic on port 56342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56285 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56329
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56323
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56324
Source: unknown	Network traffic detected: HTTP traffic on port 56307 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56330
Source: unknown	Network traffic detected: HTTP traffic on port 56291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56333
Source: unknown	Network traffic detected: HTTP traffic on port 56268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56293
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56295
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56296
Source: unknown	Network traffic detected: HTTP traffic on port 56331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56290
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56292
Source: unknown	Network traffic detected: HTTP traffic on port 56299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56338
Source: unknown	Network traffic detected: HTTP traffic on port 56343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56339
Source: unknown	Network traffic detected: HTTP traffic on port 56286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56335
Source: unknown	Network traffic detected: HTTP traffic on port 56320 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56336
Source: unknown	Network traffic detected: HTTP traffic on port 56304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56341
Source: unknown	Network traffic detected: HTTP traffic on port 56301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56342
Source: unknown	Network traffic detected: HTTP traffic on port 56292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56344
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56340
Source: unknown	Network traffic detected: HTTP traffic on port 56317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 49680 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 56334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56349
Source: unknown	Network traffic detected: HTTP traffic on port 56283 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56345
Source: unknown	Network traffic detected: HTTP traffic on port 56309 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56352
Source: unknown	Network traffic detected: HTTP traffic on port 56266 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56353
Source: unknown	Network traffic detected: HTTP traffic on port 56326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56351
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 56297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 56354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 56312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56306 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49691 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56332 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56300 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56295 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56265
Source: unknown	Network traffic detected: HTTP traffic on port 56267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56300
Source: unknown	Network traffic detected: HTTP traffic on port 56296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56307
Source: unknown	Network traffic detected: HTTP traffic on port 56344 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56269
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56304
Source: unknown	Network traffic detected: HTTP traffic on port 56305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56276
Source: unknown	Network traffic detected: HTTP traffic on port 56350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56310
Source: unknown	Network traffic detected: HTTP traffic on port 56347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56278
Source: unknown	Network traffic detected: HTTP traffic on port 56287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56271
Source: unknown	Network traffic detected: HTTP traffic on port 56293 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 56274
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 56333 -> 443

Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49715 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.17:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.31.71:443 -> 192.168.2.17:56264 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.5.88:443 -> 192.168.2.17:56265 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.133:443 -> 192.168.2.17:56268 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.17:56269 version: TLS 1.2

Source: classification engine

Classification label: clean2.win@26/83@34/17

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2108 --field-trial-handle=2084,i,16560348228593317482,7181066931834296216,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2108 --field-trial-handle=2084,i,16560348228593317482,7181066931834296216,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1520703
Product:	CloudBasic
Start time:	18:25:55
Start date:	27.09.2024
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://centered-circle-543619.framer.app/&c=E,1,kW_Efw8oqXBba0mg00J-xSQ9zPPpYD2YLIVLjEHpGyiw5F-SQd30Pct4TxGjEuy5Ib7-_UYZQ0jSQEBMqOR5JMpNOTFXfkyjMYDO2Os35edxMsMWXrTn6Z_JtLk,&typo=1