investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
178.128.238.150200 OK 12 kB URL HTTP/1.1 investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash cdb2724ffbb49df31e9da6c1b9cf7b28
fbcb64a1b7541969120ddf5a1c6db9f728b139a7
80e02fbd0e75490d3c0d2bde226714b248ca93a1a206bb4fa295d41540150946
GET /heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:01 GMT
etag: W/"7ccf-5f268bb9e3e74"
accept-ranges: bytes
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3608
Expires: Tue, 17 Jan 2023 06:02:03 GMT
Date: Tue, 17 Jan 2023 05:01:55 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 405f8f149ccdf0005ca0d890c96a9cb4
64de3200cef76133dfad901d6709697d6842405e
3a10790c397a419450ac2c90b941fd20bc49af1dbaeb34678836306de8febfce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A10790C397A419450AC2C90B941FD20BC49AF1DBAEB34678836306DE8FEBFCE"
Last-Modified: Mon, 16 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2640
Expires: Tue, 17 Jan 2023 05:45:55 GMT
Date: Tue, 17 Jan 2023 05:01:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 04:49:12 GMT
content-type: application/json
age: 763
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3524
Expires: Tue, 17 Jan 2023 06:00:39 GMT
Date: Tue, 17 Jan 2023 05:01:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IRTlmNDhUr9ayM7By8abBGYSq1+ZBBa/w0H1M+w50vvWIApxHOIx8trZgqIDiOjZqVwk5i8Pb2c=
x-amz-request-id: 8P934PZFDCY97YQS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 04:44:52 GMT
age: 1023
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 05:01:55 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
investment-formula.info/heungmin/css/fonts.css
178.128.238.150200 OK 432 B URL HTTP/1.1 investment-formula.info/heungmin/css/fonts.css
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
Hash f506533878adade7efbc3b2f4a7aceec
00897b4220146840273fbca1f528d93e8ab2adc0
0b3297133c8adc9404cdb2aea8e08d17ef792540033b2ee69625dd70a645fa45
GET /heungmin/css/fonts.css HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:02 GMT
etag: W/"6a0-5f268bba89ec0"
accept-ranges: bytes
content-type: text/css
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/css/stepSection.css
178.128.238.150200 OK 2.0 kB URL HTTP/1.1 investment-formula.info/heungmin/css/stepSection.css
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
Hash a05a176ec26dc7ca64f0d63e4e60da22
39fa471b64061edf6bc3383f9d875dacbdc8aaf2
d2fa898e07c2ac46e8041ba2761e45b1ce6662829d867843b43d5895ef8abfb4
GET /heungmin/css/stepSection.css HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:03 GMT
etag: W/"1976-5f268bbb0d842"
accept-ranges: bytes
content-type: text/css
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/css/style.css
178.128.238.150200 OK 4.4 kB URL HTTP/1.1 investment-formula.info/heungmin/css/style.css
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type assembler source, ASCII text
Hash 38a4be4e258f37f89e8cdfeb84869864
0a0dd4fb9c2fb7e98a704b55ddf43a38aa75f28b
f5ad5e29fbbdaf1c7c022ca749c6a97443d026837b810659c72fdde76b4fcf9b
GET /heungmin/css/style.css HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:03 GMT
etag: W/"3c10-5f268bbb30ead"
accept-ranges: bytes
content-type: text/css
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/js/letter_screen.js
178.128.238.150200 OK 7.6 kB URL HTTP/1.1 investment-formula.info/heungmin/js/letter_screen.js
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (11799), with no line terminators
Hash 03b109561fedc9c12cefdf1e51095bba
b5e3de8c0af5b01beac32e639fa94386e49be0b8
7933622aba6e6f3a6f2e6f7b3908fbe4f78fff2c0cc14ff48f5245ba7784dda0
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/js/letter_screen.js HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:25 GMT
etag: W/"309f-5f268bd0c89ac"
accept-ranges: bytes
content-type: application/javascript
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/js/script.js
178.128.238.150200 OK 244 B URL HTTP/1.1 investment-formula.info/heungmin/js/script.js
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash 14e416e2c1f9ae2f4f0df9bd4ba43a2f
1dfccdf6d5a1704ab60d2d4159dd2c6aebc62d45
c1dc96fff38f704112ae38b39400214e6dd911aa3c1132a6ce9d507ef9d0ffc8
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/js/script.js HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:26 GMT
etag: W/"f9-5f268bd100068"
accept-ranges: bytes
content-type: application/javascript
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/css/footer.css
178.128.238.150200 OK 595 B URL HTTP/1.1 investment-formula.info/heungmin/css/footer.css
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
Hash dac94e498a817cfad1d96720356326b6
3592061a4d36ffa5deccad69af3b262d9213c1f0
fc7a93fbe28390ce0885852f658ecdf6519f0f18036f8a6ead86fa25d73b8e50
GET /heungmin/css/footer.css HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:02 GMT
etag: W/"4c4-5f268bba8a2a8"
accept-ranges: bytes
content-type: text/css
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/js/deposit_screen.js
178.128.238.150200 OK 17 kB URL HTTP/1.1 investment-formula.info/heungmin/js/deposit_screen.js
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (35397), with no line terminators
Hash 5aae946da7ecebd6991075019f39d255
9424c864ab2a76d52920c3e380ad25b77840ea27
7491f06ab921a3edbefd0362cde0f7d35da4fd6c4e0408631a5d6931ec61c376
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/js/deposit_screen.js HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:25 GMT
etag: W/"8a85-5f268bd008f36"
accept-ranges: bytes
content-type: application/javascript
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/js/jquery.min.js
178.128.238.150200 OK 49 kB URL HTTP/1.1 investment-formula.info/heungmin/js/jquery.min.js
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (32038)
Hash 53c95af208c3f585b3b6be7f9adc17b1
82f983126b3e93db61052712fe3906c4baabf2d9
ba0bb0ce31ea329abd9b2c45eba5ab31eb6bf2eb7b4e7215d7c7b1c633961d14
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/js/jquery.min.js HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:25 GMT
etag: W/"179dc-5f268bd07edf7"
accept-ranges: bytes
content-type: application/javascript
access-control-allow-origin: *
content-encoding: gzip
transfer-encoding: chunked
vary: Accept-Encoding
investment-formula.info/heungmin/images/WORLD%20news%206.jpg
178.128.238.150200 OK 2.1 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%206.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x75, components 3\012- data
Hash 37e7f4031d64deb2900e8a6410c66d18
bc554fce00b4ed85a4fa9d9a52defec0852b1842
a5f52a5fc5ef2f8e53ffb40c391ab7a9332b4e4a689c7ec475c1e1b2287c7f34
GET /heungmin/images/WORLD%20news%206.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:22 GMT
etag: "85c-5f268bce17621"
accept-ranges: bytes
content-length: 2140
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/WORLD%20news%207.jpg
178.128.238.150200 OK 3.0 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%207.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x75, components 3\012- data
Hash e1597185cc223f4895091d8bf7da4042
0a9ccf2ca151e8c1e065f41f649992835a81162d
d198d29c6a8dbfce563a97508948bd4a9be8392375edb6aeb67e1fc93e6ef97b
GET /heungmin/images/WORLD%20news%207.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:23 GMT
etag: "b89-5f268bce9b38b"
accept-ranges: bytes
content-length: 2953
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/WORLD%20news%204.jpg
178.128.238.150200 OK 2.3 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%204.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x75, components 3\012- data
Hash 05e535c479d341b7de91549d26e52e93
2d1d8e2907b399637f4b5ea2e9bfdcaf70244e93
7f91daab5b8994927f1ecb67fbb85b978a4ea88c856856203be6d96168937e66
GET /heungmin/images/WORLD%20news%204.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:21 GMT
etag: "8d1-5f268bccf70c4"
accept-ranges: bytes
content-length: 2257
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/WORLD%20news%205.jpg
178.128.238.150200 OK 2.0 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%205.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x75, components 3\012- data
Hash 1438fd038b7f35381ca847dfae150775
87551621fe1e7cd6e20ea47b8d6b99a0c720b2c4
fba3bd0e321cf7a78e545de17e340131ca8e27b9ae3fdafece925a2d2fb81581
GET /heungmin/images/WORLD%20news%205.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:22 GMT
etag: "7b9-5f268bce17239"
accept-ranges: bytes
content-length: 1977
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/1.jpg
178.128.238.150200 OK 41 kB URL HTTP/1.1 investment-formula.info/heungmin/images/1.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 740x420, components 3\012- data
Hash 6e97d738b553aa160e05d838deb253e3
36801a6d617cfb8335872cff1b53954b9d2da1c7
5e6caf5867693eee66282b3cb35e89e731c6ed1a3f19b4ebafc87f4fead19fe7
GET /heungmin/images/1.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:13 GMT
etag: "9e7b-5f268bc54c5db"
accept-ranges: bytes
content-length: 40571
content-type: image/jpeg
access-control-allow-origin: *
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 04:17:25 GMT
age: 2670
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
investment-formula.info/heungmin/fonts/OpenSans-Regular.woff
178.128.238.150200 OK 68 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/OpenSans-Regular.woff
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 67540, version 1.10\012- data
Hash ce3b96ab2b51255e60d2d1aae633dae3
7dfe02ed6882d52af84f2dece074a6523a7e362f
baec724e63a42c587dcde455031c730f69002246904cadffcfaf20a3d75948bd
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/OpenSans-Regular.woff HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/css/fonts.css
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:08 GMT
etag: "107d4-5f268bc0ac04c"
accept-ranges: bytes
content-length: 67540
content-type: font/woff
access-control-allow-origin: *
investment-formula.info/heungmin/images/BG-letter.jpg
178.128.238.150200 OK 25 kB URL HTTP/1.1 investment-formula.info/heungmin/images/BG-letter.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 740x475, components 3\012- data
Hash 3368eb082db10ade90fb5c1492b53d2d
9fef3c6662a9481f0f4ea8023aee43df011783b8
942409499a298d9ef499cb3a2fe62d7b9687da6c4b798a97074a04ddf2421d2b
GET /heungmin/images/BG-letter.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:15 GMT
etag: "61e7-5f268bc706064"
accept-ranges: bytes
content-length: 25063
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/OpenSans-Bold.woff
178.128.238.150200 OK 70 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/OpenSans-Bold.woff
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 70184, version 1.10\012- data
Hash 58308bcc8dce00a629bd46305a1c5494
47001bc7161391eec279fda285585d18797f33f5
7030e021bf4902f402a936a583c06a0261854af53ff6720909636a39379832bd
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/OpenSans-Bold.woff HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/css/fonts.css
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:08 GMT
etag: "11228-5f268bbfd1c0c"
accept-ranges: bytes
content-length: 70184
content-type: font/woff
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/Roboto-Bold.woff
178.128.238.150200 OK 94 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/Roboto-Bold.woff
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 93700, version 0.0\012- data
Hash 08cb8f79715774f9a6285ee7db2919a3
6fa3b472bb5a784436faa1ef5d2896d426968689
8aa340f033ddfa5e7f8bfe80638c3b137887eb30996588852ec218d2007e68b7
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/Roboto-Bold.woff HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/css/fonts.css
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:10 GMT
etag: "16e04-5f268bc282f97"
accept-ranges: bytes
content-length: 93700
content-type: font/woff
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/Georgia.woff
178.128.238.150200 OK 81 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/Georgia.woff
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 80888, version 5.0\012- data
Hash 457a113b1fcd5789bba7930ddc946f0a
85a22e6c3b0937a061e473ea2d6c35d578f1c078
2657c7bdeb82834001ab5a41d3f49fd00a42ec194d5dc444bd3eacd0f8d502ca
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/Georgia.woff HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/css/fonts.css
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:06 GMT
etag: "13bf8-5f268bbe945d5"
accept-ranges: bytes
content-length: 80888
content-type: font/woff
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/Georgia-Bold.woff
178.128.238.150200 OK 75 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/Georgia-Bold.woff
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 74800, version 5.0\012- data
Hash ce66539e131728b902a6671cdb49c0a4
47314cbfd005548cbb0b49547c165182dea46cfc
f0cc1df910fa0e7e427ff75eb039a779cb09870266878ace53dc5e94eaae543e
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/Georgia-Bold.woff HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/css/fonts.css
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:05 GMT
etag: "12430-5f268bbdd1896"
accept-ranges: bytes
content-length: 74800
content-type: font/woff
access-control-allow-origin: *
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d03545e1fc5a8876441094039811aac5
99fcc840f3516298625c528e9b408132f7fcbb9c
166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4647
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 05:01:56 GMT
Last-Modified: Tue, 17 Jan 2023 03:44:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
investment-formula.info/heungmin/images/comment-7.jpg
178.128.238.150200 OK 4.0 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-7.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash eeb38af7eab6cd9cd09806bf10602e80
013c8cdce081d0643703c193dd44cb8ac073d095
e08e96968bc63c53cf741e3687aae10863fced1294723c092293a289caedcc03
GET /heungmin/images/comment-7.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:17 GMT
etag: "fae-5f268bc8f0c18"
accept-ranges: bytes
content-length: 4014
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/RobotoCondensed-Bold.ttf
178.128.238.150200 OK 166 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/RobotoCondensed-Bold.ttf
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409\012- data
Size 166 kB (166340 bytes)
Hash e38804ae070b58fbf4fdd88fd6853929
15e8faa21a00eb5b40d3837e16960a39d78fe45c
14948aedbcaf906a9cacab38de5fff889bde887ecbd710b8a1ada3ae84c65477
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/RobotoCondensed-Bold.ttf HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/css/fonts.css
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:55 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:12 GMT
etag: "289c4-5f268bc3b88ce"
accept-ranges: bytes
content-length: 166340
content-type: font/ttf
access-control-allow-origin: *
investment-formula.info/heungmin/images/WORLD%20news%203.jpg
178.128.238.150200 OK 3.2 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%203.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x75, components 3\012- data
Hash ec17a6541ae369d531f8a4fb2a78f2a0
b7f72040b1a497a18597f9b14723ba3f3325270b
9e8c51540ab3f45cded9a3beed7341f5f2e80447cba477b559f7d219b12c9c95
GET /heungmin/images/WORLD%20news%203.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:21 GMT
etag: "c9f-5f268bccf3244"
accept-ranges: bytes
content-length: 3231
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/letterAvatar.jpg
178.128.238.150404 Not Found 196 B URL HTTP/1.1 investment-formula.info/heungmin/images/letterAvatar.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /heungmin/images/letterAvatar.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
Cookie: PHPREFS=full
HTTP/1.1 404 Not Found
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
content-length: 196
content-type: text/html; charset=iso-8859-1
access-control-allow-origin: *
investment-formula.info/heungmin/images/twitterF.png
178.128.238.150200 OK 1.7 kB URL HTTP/1.1 investment-formula.info/heungmin/images/twitterF.png
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 150 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d33a21e0c5c701154ea6a9493275661
ad37f4e51b73775ea99a697dc50cca0518332a53
6b60214f2db1242c3f19082b713e08d29d650fe96a785144a771e51289e6f41a
GET /heungmin/images/twitterF.png HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:20 GMT
etag: "6aa-5f268bcbb5c0c"
accept-ranges: bytes
content-length: 1706
content-type: image/png
access-control-allow-origin: *
investment-formula.info/heungmin/images/WORLD%20news%201.jpg
178.128.238.150200 OK 82 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%201.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x185, components 3\012- data
Hash c7bd258282cae9b7ea9f93bfb43e8e56
b5e4bcc63d05a312786f42666cadaa64858c99fe
47e1d4a88f126f4b317703bf66f0f56528f74f2128dfc79a105ed35e2c8fb5eb
GET /heungmin/images/WORLD%20news%201.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:21 GMT
etag: "13f3f-5f268bcc70862"
accept-ranges: bytes
content-length: 81727
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/WORLD%20news%202.jpg
178.128.238.150200 OK 55 kB URL HTTP/1.1 investment-formula.info/heungmin/images/WORLD%20news%202.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x185, components 3\012- data
Hash 78b41177b297383f0d0d320deef47f98
d219d62d3228db924c497d9e51bd9956055e8d5c
88163e01eaa288404ec26898ea8cf2e9ac3840b2aed69667127d2db2d529ed56
GET /heungmin/images/WORLD%20news%202.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:21 GMT
etag: "d830-5f268bcc7623a"
accept-ranges: bytes
content-length: 55344
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/3.jpg
178.128.238.150200 OK 45 kB URL HTTP/1.1 investment-formula.info/heungmin/images/3.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 740x420, components 3\012- data
Hash 23f7ea45d7e098c6f3bcab07020a25ad
c59b405fbbed997d5903f9fcf626e27ce2422c54
827d542314770dc5401472d839752dbf326e1cf0bb6fe0cd95622dc20a36266a
GET /heungmin/images/3.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:14 GMT
etag: "b0f6-5f268bc64b7f6"
accept-ranges: bytes
content-length: 45302
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/header-desktop.jpg
178.128.238.150200 OK 98 kB URL HTTP/1.1 investment-formula.info/heungmin/images/header-desktop.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x198, components 3\012- data
Hash 88a6b88471b88fefac5c2b0d856c8668
885107a37a69b3e39c6f894a5277b25cd1638b64
7a5bd4c77498bc48312560dad6bcc482e497ba92f019188d9a63e69f1211614f
GET /heungmin/images/header-desktop.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:18 GMT
etag: "17f96-5f268bc9e851a"
accept-ranges: bytes
content-length: 98198
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/formVector.png
178.128.238.150200 OK 452 B URL HTTP/1.1 investment-formula.info/heungmin/images/formVector.png
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 41 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash bbfa207156037d0633af4168190069c5
3288daa6eced04238bc7775037aae6d00bba3a71
4d14f1d95280f35b84be311cfc6f9ed5c1c0a8a1f82544a01550df6fc84c5d0a
GET /heungmin/images/formVector.png HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:18 GMT
etag: "1c4-5f268bc9768c2"
accept-ranges: bytes
content-length: 452
content-type: image/png
access-control-allow-origin: *
investment-formula.info/heungmin/images/reg.jpg
178.128.238.150200 OK 13 kB URL HTTP/1.1 investment-formula.info/heungmin/images/reg.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 190x270, components 3\012- data
Hash 8528e23b0044e8fe83959a3016e4683e
01eee40858474f6bd8ced679ce96571407036d03
ec2cbd2a8e3b9f7a9ae2f81afda06603e73f3559dc5d8d4a17b9c382c0d78bad
GET /heungmin/images/reg.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:19 GMT
etag: "32c5-5f268bcb3499b"
accept-ranges: bytes
content-length: 12997
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/2.jpg
178.128.238.150200 OK 75 kB URL HTTP/1.1 investment-formula.info/heungmin/images/2.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 740x420, components 3\012- data
Hash 1bd66d109903a15d8f626b57eee3f364
a2ee265453a6e54ec895fef4d9f842d08f3400c6
218396b1c044ecf99ebcea5b3354bb23067c168f77f16804f1b992ad08f90e0c
GET /heungmin/images/2.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:13 GMT
etag: "1269e-5f268bc56d536"
accept-ranges: bytes
content-length: 75422
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/arrowDown.png
178.128.238.150200 OK 2.1 kB URL HTTP/1.1 investment-formula.info/heungmin/images/arrowDown.png
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 202 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash b3e87ea16242190123b8d68f5fd707fe
84db371b7fa14b8c3d02ec6a6ea896d28a36f5cd
f95c64c15c6ac0aec9098db9ea6829ea6813982330861a393f01968e767aed52
GET /heungmin/images/arrowDown.png HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:14 GMT
etag: "851-5f268bc64758e"
accept-ranges: bytes
content-length: 2129
content-type: image/png
access-control-allow-origin: *
investment-formula.info/heungmin/images/bg_dep.png
178.128.238.150200 OK 736 B URL HTTP/1.1 investment-formula.info/heungmin/images/bg_dep.png
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 190 x 226, 8-bit/color RGBA, non-interlaced\012- data
Hash 453fcb651dee2fc3540d4b4814cede84
27fdaefb39ef964d8392d34054d248264a27b275
12c77018b8efd514d66a1d7de3a632b9a335a6064c3ea8194488ed17c5e0e848
GET /heungmin/images/bg_dep.png HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:15 GMT
etag: "2e0-5f268bc6cddf0"
accept-ranges: bytes
content-length: 736
content-type: image/png
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/like.svg
178.128.238.150200 OK 1.1 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/like.svg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1039)
Hash b6d86349a87d841ebe98a03c9e57da51
9eb752cc517900b3a375f0a67ac96ca8e0525989
9d5b8201c4e4ded87900628635f6d3c4839440bb05abe9e1f338003a103a8de2
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/like.svg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:06 GMT
etag: "477-5f268bbed7bfa"
accept-ranges: bytes
content-length: 1143
content-type: image/svg+xml
access-control-allow-origin: *
investment-formula.info/heungmin/fonts/dislike.svg
178.128.238.150200 OK 2.4 kB URL HTTP/1.1 investment-formula.info/heungmin/fonts/dislike.svg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2262)
Hash 6cfc9a582f37ddbc1ec4bec1c669f36c
c11f9c7c721b80bd89f7cbf2ff22aebb287b2a0c
36303de370016a54d97664a1f4cfaf6019fed527351e45e2f254b006d0377bd4
Analyzer Verdict Alert fortinet Phishing
GET /heungmin/fonts/dislike.svg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:04 GMT
etag: "93d-5f268bbced045"
accept-ranges: bytes
content-length: 2365
content-type: image/svg+xml
access-control-allow-origin: *
push.services.mozilla.com/
54.187.39.66101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.39.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1RDsexRfreA+Oe4kzpEJBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3i2amj+YzzZUySCkScDtfe0wTFc=
investment-formula.info/heungmin/images/Logo.jpg
178.128.238.150200 OK 9.7 kB URL HTTP/1.1 investment-formula.info/heungmin/images/Logo.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 138x40, components 3\012- data
Hash 5cd5b00e2e34243a8d6a26115cb8ee37
2482bc20a605654e368b7b25a8d3a77c2450e5fb
268b2db085f0397b388684f65af9f41108f4e91e8771c4d162913ed9246f20b7
GET /heungmin/images/Logo.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:19 GMT
etag: "25d3-5f268bca9a0e7"
accept-ranges: bytes
content-length: 9683
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/stepManager.jpg
178.128.238.150200 OK 12 kB URL HTTP/1.1 investment-formula.info/heungmin/images/stepManager.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash 26f5b5f078e2109ac79eed4ea2d276fa
e3873c2a7c051f7724283f36c33b53f0c93842b4
47847102329f2365a231c58de646e49b2652b4e990c4c1d6930c7e4bb5e2ba81
GET /heungmin/images/stepManager.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:20 GMT
etag: "2e0e-5f268bcba90eb"
accept-ranges: bytes
content-length: 11790
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-1.jpg
178.128.238.150200 OK 3.9 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-1.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash 3c5919a5034f2dc91d5cb9d85978014c
a3241d2c63d6bff65a2b6b1200f3305b39dfef34
fb285fbb97b9b39311f8ad596204e8bb3da0fa30fe7effaf0ac493853126066b
GET /heungmin/images/comment-1.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:15 GMT
etag: "f35-5f268bc767ed3"
accept-ranges: bytes
content-length: 3893
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-2.jpg
178.128.238.150200 OK 4.8 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-2.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash 8cc76313da29964bd5d5bfaae4e4fd0e
f6dd1d58ecfbc3e8be9eb39fc2a97fbe0c51f9bc
d641babdbaace7b6d8492b342508ec0268b6fe987c7c033c6809cafa630d70f9
GET /heungmin/images/comment-2.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:16 GMT
etag: "12b7-5f268bc7a10e7"
accept-ranges: bytes
content-length: 4791
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-3.jpg
178.128.238.150200 OK 4.8 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-3.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash 8a176ce52df4c3614a54d82fffb87ca4
196fb098535cf7bf7c44b15571fd3921d72c2fe6
b0ce4088da0d70299acf46a90d6035fa98d689e8d043b5b8ea2bd3442c8ca98b
GET /heungmin/images/comment-3.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:16 GMT
etag: "12cb-5f268bc7e9915"
accept-ranges: bytes
content-length: 4811
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-4.jpg
178.128.238.150200 OK 4.9 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-4.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash 05982abf8b65b7304639a351ffb61643
6a4c447e9fdf8fca137dafb2bc95d0b108421127
b76cb7c16d6aebe6bc712e479318ee006cd23ed8800e48b1f06b80065cf3d8d8
GET /heungmin/images/comment-4.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:16 GMT
etag: "134a-5f268bc8217a1"
accept-ranges: bytes
content-length: 4938
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-5.jpg
178.128.238.150200 OK 4.0 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-5.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash 3e209f176e64aab8295bff9851b8e60c
1efc23067c34cb2743e705043a430298e473539e
42a7b3597c4954cf07ad332a02c5d14e9624c6c1e9023774eb3ec2d1739e29ce
GET /heungmin/images/comment-5.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:17 GMT
etag: "f90-5f268bc86bb26"
accept-ranges: bytes
content-length: 3984
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-6.jpg
178.128.238.150200 OK 4.1 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-6.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash ac6387a63178d3f1fb3e30ab16214f5e
1a90ef058abe0c356f0ace466b5fdeb254f37268
05b3b84aa7028d2af707dd727bfeff10fed8c861775ad1f3e940c5b7d788922a
GET /heungmin/images/comment-6.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:17 GMT
etag: "fec-5f268bc8a31e2"
accept-ranges: bytes
content-length: 4076
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/comment-8.jpg
178.128.238.150200 OK 5.0 kB URL HTTP/1.1 investment-formula.info/heungmin/images/comment-8.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 41x41, components 3\012- data
Hash 100910ed1652182568726410bb389f32
4b906ec1e6d72266d6d63fcff07c5d96aa3e9d01
44e04cf962efaaeebb526df6c35dfda168a96d27d6eac4661668eed170bb26a7
GET /heungmin/images/comment-8.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:17 GMT
etag: "1373-5f268bc926b64"
accept-ranges: bytes
content-length: 4979
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/header-tablet.jpg
178.128.238.150200 OK 44 kB URL HTTP/1.1 investment-formula.info/heungmin/images/header-tablet.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 768x134, components 3\012- data
Hash 4245ffe9eeb8c9d95375471f2bfbac68
e89113f6b0df174fd5b44e5ba223ae598e880e93
cdb43cfc03be96c2b2d26c6eadaf0daffd4aa1af95aa6f99d4ed46c497a716b8
GET /heungmin/images/header-tablet.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:19 GMT
etag: "ad4d-5f268bcaa8378"
accept-ranges: bytes
content-length: 44365
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/images/header-mobile.jpg
178.128.238.150200 OK 18 kB URL HTTP/1.1 investment-formula.info/heungmin/images/header-mobile.jpg
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 360x63, components 3\012- data
Hash 68d060dd6798940e26551ba7172e4273
afb0497ac707c75bdd98c208b9253b3d6d9410d4
b031d720a5c15ac4dbfe41734c0be40cf9fd596181d52d1d47151506b6a172e3
GET /heungmin/images/header-mobile.jpg HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:18 GMT
etag: "44a7-5f268bca17706"
accept-ranges: bytes
content-length: 17575
content-type: image/jpeg
access-control-allow-origin: *
investment-formula.info/heungmin/favicon.ico
178.128.238.150200 OK 9.7 kB URL HTTP/1.1 investment-formula.info/heungmin/favicon.ico
IP 178.128.238.150:0
ASN #14061 DIGITALOCEAN-ASN
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash 83afde828ba7618f4604a1b60b351729
08e375552af10152191f0145ee698758e2282b1c
7533081f9f5692afc67e049206e2c08f1bcb52495fd54e53f4c9a285c5fa79a9
GET /heungmin/favicon.ico HTTP/1.1
Host: investment-formula.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
Cookie: PHPREFS=full
HTTP/1.1 200 OK
date: Tue, 17 Jan 2023 05:01:56 GMT
server: Apache/2.4.53 (CentOS Stream)
last-modified: Mon, 16 Jan 2023 22:02:00 GMT
etag: "25be-5f268bb8c6bdf"
accept-ranges: bytes
content-length: 9662
content-type: image/vnd.microsoft.icon
access-control-allow-origin: *
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6670
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:01:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6670
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:01:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6670
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:01:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6670
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:01:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6670
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 05:01:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad210f0ba6ce6930724549cbba76e83d
e4badc3fbca9913bc11d968dac5cad1f900ff492
ad5f754d5dbe870feabfe090a46838614e96d72e78b9a2a8010ab339c67130be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9529
x-amzn-requestid: 56f2b9a5-91c6-421a-ad84-165376e23dcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm6Fm-oAMFrDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-67a0c1fe6aad6e6b71e50463;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mzmFGVDfMuZte5CJUmchEQIVAuDUKdGfUpm7PRTUqnsP44IcDmbl8A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 26142
etag: "e4badc3fbca9913bc11d968dac5cad1f900ff492"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F385b83d3-24b4-4a2f-b857-c5ad36c6c6f1.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F385b83d3-24b4-4a2f-b857-c5ad36c6c6f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcaf94e244d0b492c26d4964836f4913
fde259440056930606a16b88e6d87e2edc420bd6
6cc207b89ceda6a27a0c9905a3284044984af07cdf5eb91a84b93bc56e414806
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F385b83d3-24b4-4a2f-b857-c5ad36c6c6f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3027
x-amzn-requestid: 9599f603-0ef7-40c7-aa0e-699a82057dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tr0GvUoAMFfmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c318-3d11e6404c85fcb737852aaf;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9U7jKrDbganO37QtU-I_g8A9G3XEHtsj-z6s0UF419IdEj_Zw1-uw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 26142
etag: "fde259440056930606a16b88e6d87e2edc420bd6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23558a9c-5e81-40b3-9128-4d3adbf13bd0.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23558a9c-5e81-40b3-9128-4d3adbf13bd0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d83151ff2e8bb0726f9576dfa3d5e3b7
085f624f8e4522cf946d12f2427c40e6953b42f2
05aedc682431e631fc2354e9a432b241ea90256980643b327b922854b05d4302
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23558a9c-5e81-40b3-9128-4d3adbf13bd0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8247
x-amzn-requestid: 4e9f89a6-b604-4171-9f41-66b9fbe4b8e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: excJLHWjIAMFckg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a707-4379c4e00cfecc1a01903192;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:11:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E-4xmvMJ9wX0nsGZyjpYckzkZKdp0rbmf8UNgxXQJhD-m7PoONDgQw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 07:33:08 GMT
age: 77329
etag: "085f624f8e4522cf946d12f2427c40e6953b42f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec0e283376914297c3fb2464ed15a31b
acd84e057b6c618fd3b31915983998c00fe21dc4
3d02b82d8f6a00703de7594f5b34baf0010294c1a7023818344ca341e4ac203c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10660
x-amzn-requestid: ac5d6edc-5228-4318-a99f-c08d3265aa87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3HXpH4PoAMF78Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5ec30-044bf7c40e44de637c0c2dba;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 00:30:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkEloLsB0trkJ9t_rqIbVsZmUi9ytfJ9JdQ-zjs7ZM5smU4xVwvkxA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 00:31:58 GMT
age: 16199
etag: "acd84e057b6c618fd3b31915983998c00fe21dc4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fefb1f12a78ad92ed309da2c54984a3c
caf58bf6276e226a20a0d0cf6fc3d422f922eb28
baf6596c635254885f32e423cbc5667694754243f01109cbdbeb54c337b16bc2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14703
x-amzn-requestid: bdc14ffc-297a-4046-9a4f-26d454f6f9be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2trpGZkoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c317-58908dd71980be98200e8f6c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: J674keESjH0GJBC8A6WnCmsHdxNtHNu5pbsv7EwSFSFMcxVCrZeFrw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 02:43:40 GMT
age: 8297
etag: "caf58bf6276e226a20a0d0cf6fc3d422f922eb28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57828b7affae7633b38d0fb6057b894d
db4cd956ba7e1e6b43174c250b7d4f1193277be9
26d83d511af9583a8f0a9ef1bd2ce3deab3ca42fa2c2ae141b61cd123afa9625
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: eac845c9-b10c-4fce-b2ff-01b4111b506e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2OjhHp_IAMFeyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c59149-0058376c385a7bf91e07a395;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 18:02:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJvk4N80rrZjzks6MsuDc3XXdRIBAmoEQLVkvN6TXISBtWwXHYDJ_A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 18:44:18 GMT
etag: "db4cd956ba7e1e6b43174c250b7d4f1193277be9"
content-type: image/jpeg
age: 37059
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.cdnmetric.com/get/static.js?referrer=http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
104.21.11.44200 OK 0 B URL HTTP/2 api.cdnmetric.com/get/static.js?referrer=http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf
IP 104.21.11.44:0
GET /get/static.js?referrer=http://investment-formula.info/heungmin/?cep=R0K7e88vXWYdxQwLS0ToGn4E-AY3LbTfG8AN7kwiRxSd6BW2ly-ov1wBSbSeBsqN9c2hJHMV-ZW_0Xt0oXBOB1b1EAit39OW4F0XqFqOVjbMxpct0a_SszFiMoNzJeRL_y3t_pwEWxxkb_Bnm60qeCsS23JjtgFX48tJg2eEnAZiDvUZILNXkOlS5GuP7dk88dON6gpGww4dWXqPIxjSmSB-Cv9yf7_dqH3DxinH61_UNjVS_oYvSjr2SMQE8QS2YagroiFBl9B-4eRNi1pBeZWfU6wWB5HQhxWNHEImuWDaKzXPRLYGYWwO4-4Z-zwydyMqBoloT4MczQa5q-0PBScGeunyphFP7hRz1nhIMQz5FPI21AQPvXAJ7NwHVP3rr-2hudLMvdIP2Ndiqh4SNA&lptoken=165a730e93be34f693cf HTTP/1.1
Host: api.cdnmetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://investment-formula.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 17 Jan 2023 05:01:57 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/7.2.21
access-control-allow-origin: http://investment-formula.info
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5QaqhfUMcHsuBwzEinw6uYpoinSOtztpDyiVVm5Yc0RHB2b58mVPyZFfofJTgVvYseogk8sDBWCBAOiWVbfxOj%2FbmQ7R4D26VSPv9Waq0BN62jVOGDQ%2BKUi%2F0zXPj6w7uTFIoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78ac892f3a54b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2