403 Forbidden 6.6 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type HTML document, ASCII text, with very long lines (6578), with no line terminators
Hash 4c2738cbf74bac22d57c329094b4d46b
a913da07bedd99e7192f8600cb41399feec0677c
8c47b23c73183b80f7b2c561b2fc37c390e50d1655b347e7c71097e8ca365216
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Mon, 23 Jun 2025 01:09:37 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5HcFolqNDFkf5L7fKet6jZwaDSDpwkESNV3IqsRSCxR%2F5BqVIzz1Jhohi4qFY6ACSUwMNLtNbu4mapPOXT0kPeQFP0tPdOhNtPWgCCV3IAR9UautOIpJ3UnOxJM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 954019de1ad8569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="954019de1ad8569c", cfL4;desc="?proto=TCP&rtt=3282&min_rtt=468&rtt_var=5606&sent=13&recv=13&lost=0&retrans=0&sent_bytes=9795&recv_bytes=1310&delivery_rate=7203980&cwnd=256&unsent_bytes=0&cid=777aa25eefe758e1&ts=242&x=0"
X-Firefox-Spdy: h2
GET mc.yandex.com/watch/101056890/1?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842009088%29ti%281%29&redirnss=1
200 OK 591 B URL GET mc.yandex.com/watch/101056890/1?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842009088%29ti%281%29&redirnss=1
IP
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64
ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT
Hash 3df3b51b3a4d1305ca60a09bdc57cf6f
4a63c0ddcf90b9a246a552e03aca028b5d5a2a16
40f6c884f0bf1c8eadf168d3b34379eab3272ca3fa76cbab514ece02f542b20e
GET /watch/101056890/1?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842009088%29ti%281%29&redirnss=1 HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://krd30.top
Referer: https://krd30.top/
DNT: 1
Connection: keep-alive
Cookie: yabs-sid=135387201750640996; i=k18ugYSBrrThzSkjAW5eUTiS4yWL2+WKZu7b75+Pl04hBlqYVfZmS16cs2TFvB34tX1RgcZyLAd5SpwytGXlB9s/wMs=; yandexuid=506741361750640996; yuidss=506741361750640996; ymex=1782176996.yrts.1750640996#1782176996.yrtsi.1750640996; bh=YOTS4sIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 591
last-modified: Mon, 23-Jun-2025 01:09:56 GMT
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-content-type-options: nosniff
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
expires: Mon, 23-Jun-2025 01:09:56 GMT
strict-transport-security: max-age=31536000
content-type: application/json; charset=utf-8
access-control-allow-origin: https://krd30.top
X-Firefox-Spdy: h2
GET krd30.top/aes.min.js
200 OK 37 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
Hash b65aeb9a2e2fb623159e858bfaf9b3dd
047e9a59ff70464a8624cd1b56553ff9c43489d4
10a50430d5ba794708dc4279299ca9c73e281ab09fe2847e2b55f68c21177cc8
GET /aes.min.js HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yDEA7D8Gf3O1N0TNAeYjyE5j8ZHhEnDdheoTNg4GLDpe9UlR1nDzv1FmRhot%2FrRZgfzk5Gbp5W2Qz27VlotAiJnnH%2B2HAlBtSPeLACw%2FkvVtifnEPCKuKkpAtno%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Mon, 23 Jun 2025 01:09:54 GMT
cf-ray: 95401a483f3a56c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1481&min_rtt=0&rtt_var=1310&sent=181&recv=203&lost=0&retrans=0&sent_bytes=38467&recv_bytes=24819&delivery_rate=2516248&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14808&unsent_bytes=0&cid=f3d7e0d51723640e&ts=17531&inflight_dur=58&x=44"
GET krd30.top/css/normalize.css
200 OK 4.5 kB URL GET krd30.top/css/normalize.css
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
Hash aab74d6ca10a0902b9fac0e304c4be13
7cc28584e1cd4acf258f32322b198faa19e2c47c
6b1e238b3810eef313f24f098db4d880175b3ed1168f0c9faaaff9b53089c2fa
GET /css/normalize.css HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/?tck=1
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; TCK=aa4a9b4e7cc55a3fbba727ea0a7ea3f2; user_id=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:56 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wDFG4%2BOD0eB9dAff5zwH0U0c5Viy4doLH3qJi%2BGsTkGJJmxPtfmRZ%2B2N2%2FrHJ0SGbNTVVi7zTskFlc7%2FOnk5loffs0as7tkvgFkDIxTz%2F2rBtGmtWu9jjV%2FhNSc%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Mon, 23 Jun 2025 01:09:56 GMT
cf-ray: 95401a4fdf6556c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=840&min_rtt=0&rtt_var=470&sent=207&recv=215&lost=0&retrans=0&sent_bytes=62335&recv_bytes=27413&delivery_rate=4040757&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14923&unsent_bytes=0&cid=f3d7e0d51723640e&ts=18762&inflight_dur=69&x=44"
POST krd30.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1538763759:1750638384:JUC-FVhESN421nOf44P-3onqnhGPFNsYaN62WgH3EWM/954019de1ad8569c/l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7
200 OK 4.2 kB URL POST krd30.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1538763759:1750638384:JUC-FVhESN421nOf44P-3onqnhGPFNsYaN62WgH3EWM/954019de1ad8569c/l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type ASCII text, with very long lines (4168), with no line terminators
Hash f425c9bb590069265b17967629b69596
10b093193bdf592f6b416f7736f248506095c3c4
63ecab39fc9f358e138c87f6a62b54997564b54a250fdd562818550b5eb3f2b3
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1538763759:1750638384:JUC-FVhESN421nOf44P-3onqnhGPFNsYaN62WgH3EWM/954019de1ad8569c/l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7 HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/
cf-chl: l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4279
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:53 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TaolMoIPyNuiwvbmTWmUCMiczO0KTqwObTA7rDEj4KAWb5ldaGf%2BPA5tXwz6mk0LOhJjtyXQRA%2B6kIktglvbsp7WEWJOqes42mdExQgqJ8zTQtuuq0d%2FDCZU%2Fpk%3D"}],"group":"cf-nel","max_age":604800}
cf-chl-out-s: 0903TkJIXHzCP7Mh0rNih+ZAflzOznx9Em6bwX7uCnDviE1dZ5sbxW5KevbE36RbXF7vA1OuaUPCYlSBb72SCwW8J1HwreC4vjvnIzEtqQEWHmUTRAbY0DTDLdpFDyAPQTXMX3y3vC6MG6Msvwu6x51FUjwhsVQ8hds0bdj+6NpJBC/jyPjkzqQwXFr+J0/XlqPS6IvVFsfYJP7oXU+9kse9tUdV/Tbl2DRKTVmj2imBiK4zJiQLId/hAFv5sW1BEpzgTV1Y0L5NGkXb+I/Yy1wh9jkDOPFw10brsm9P+18ULYmqVGdTTZCrY24z3Ncdg05geNIr1sGAL//ph8iUIIvVzUx+CU+rvarnSnM+t+hTZOzZc6lX2Fr0wJ+SNsGzFAEqhObmQKFIEp7QqHXAfjyw+KFMCkSFpH7dZzc9deiRgnNG56J3ST2c+f13mp6x$JGOw6oV18Jwn8r3g01P/Vg==
cf-chl-out: FYBHn8SSvdk0w4FJQjGjlcDHHSe9pShXH8V8b9QzeNgGSn1bwfu/4g8Dau4vwx5qgmCh9DfuDRm442ZjbmZv/A==$LZUrdMtRWx8X7oA/3xhuvw==
set-cookie: cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=krd30.top; Expires=Tue, 23 Jun 2026 01:09:53 GMT
content-encoding: br
cf-ray: 95401a42bf2156c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1612&min_rtt=0&rtt_var=1904&sent=168&recv=196&lost=0&retrans=0&sent_bytes=31682&recv_bytes=18838&delivery_rate=2516248&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14808&unsent_bytes=0&cid=f3d7e0d51723640e&ts=16325&inflight_dur=51&x=44"
GET mc.yandex.ru/metrika/tag.js
200 OK 244 kB URL GET mc.yandex.ru/metrika/tag.js
IP
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64
ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (675)
Size 244 kB (243785 bytes)
Hash c89a2181249bbc3bd25c1854ee0e1d17
da4b9d7990aebc5f3c9c9e35f9dce2aa350655b6
4412a4dbfeca169b3047b06889b9249b5a915e44d3892c87fcc145b660142adb
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 81150
access-control-allow-origin: *
set-cookie: _yasc=msED3Z9PngROM1fi9zbN/NVSBrLtLYZdIKAt0BG+GGWOL+2sEGg7gHIdsTakb1HqDske; domain=.yandex.ru; path=/; expires=Thu, 21 Jun 2035 01:09:56 GMT; secure
i=KnxkT33GY/7oXNWYK+3cryINcvJWlTj3Tt30uu0lmAXWDT8Ja67wxRNO3wD6iuwhhuO5lcbbHLAMsBZafW0gpWv27So=; Expires=Wed, 23-Jun-2027 01:09:56 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=3497227961750640996; Expires=Wed, 23-Jun-2027 01:09:56 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yashr=684709071750640996; Path=/; Domain=.yandex.ru; Expires=Tue, 23 Jun 2026 01:09:56 GMT; SameSite=None; Secure; HttpOnly
bh=YOTS4sIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.ru; Expires=Tue, 28 Jul 2026 01:09:56 GMT; SameSite=None; Secure
timing-allow-origin: *
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
last-modified: Thu, 19 Jun 2025 12:44:59 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
etag: "6854064b-13cfe"
expires: Mon, 23 Jun 2025 02:09:56 GMT
strict-transport-security: max-age=31536000
date: Mon, 23 Jun 2025 01:09:56 GMT
X-Firefox-Spdy: h2
GET krd30.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 10 kB URL GET krd30.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; TCK=aa4a9b4e7cc55a3fbba727ea0a7ea3f2; user_id=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Mon, 23 Jun 2025 01:09:56 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XNFiCuKy11VfigOGXHqUHG12mOGrvpfA4%2FQtFM4Uq2Bx%2BGJfAPaFJoqISRwVlMNz4rvfvAF%2BpQ4OoIWRz4r0hTTe6XeKDZP2ijwYBHow4GFYaFuXrryeLBeJ0AE%3D"}],"group":"cf-nel","max_age":604800}
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 95401a52bf8156c5-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=861&min_rtt=0&rtt_var=396&sent=210&recv=217&lost=0&retrans=0&sent_bytes=64433&recv_bytes=28491&delivery_rate=4040757&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14923&unsent_bytes=0&cid=f3d7e0d51723640e&ts=18841&inflight_dur=71&x=44"
GET krd30.top/favicon.ico
200 OK 1.5 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (762)
Hash c89b20eed361d867105762b080476da6
68710806d1b92f713ec35308e5de63109b55cf70
bdf61305e25681c1c7326dd57174bcc8f46c473f1d34623fad25fa391bcc63af
GET /favicon.ico HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/?__cf_chl_rt_tk=uHRH6SnU_69KNYYzz3OsA1ryNttCk4s0xPTaQNqrfnc-1750640977-1.0.1.1-HUMAoIMC_tGPkOBBKkw86wkaBuYaJCb7S2l8u1VfnXM
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:38 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b1F0t66Lk1vEXdkqOfABjQfbeARNuim6poWcu1EkWnpvajUHOUDrzR7XTE7bfCx%2B8MgIdJDCScFPPRW8zOq6qOHBqNghvF4qCinznKY0jQ2QY%2BsEJ0qm2%2F8VEec%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFBel80QUFBUVp6ZEhKcGJtY01EQUFLYzJWemMybHZibDlwWkFaemRISnBibWNNRVFBUE1USTNMakF1TUM0eE9qVXlORGN5fAbcb21ocraljWo9xOgvfdMqN0vC58EwHDTRei9cn-UV; HttpOnly; Path=/; Max-Age=7200; Expires=Mon, 23 Jun 2025 03:09:38 GMT
_lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX2pQLUFBQUlHYzNSeWFXNW5EQWNBQlhSSWIzTjBCbk4wY21sdVp3eEFBRDVyY21GclpXNDJaMlkyYnpSeWVHVjNlV054ZDJwblptTm9lbWQ0ZVdabGIybzFlR0ZtY1dKbWJUUjJaM1o1WVdsbk1uWnRlSFo1WkM1dmJtbHZiZ1p6ZEhKcGJtY01EQUFLYzJWemMybHZibDlwWkFaemRISnBibWNNRVFBUE1USTNMakF1TUM0eE9qVXlORGN5fODt4GdHs2SKxtlxcKWFNYhx7WB7Fy2Gu7zz_0YpGPt-; HttpOnly; Path=/; Max-Age=7200; Expires=Mon, 23 Jun 2025 03:09:38 GMT
_lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalEzTWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd845mIiaRmkPx4VeV-mkOgVdRTJwWHsOSs9Nyms6EDCwk=; HttpOnly; Path=/; Max-Age=7200; Expires=Mon, 23 Jun 2025 03:09:38 GMT
k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; Max-Age=86400; Path=/; SameSite=Lax
x-kfp: 20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a
cf-cache-status: BYPASS
content-encoding: br
cf-ray: 954019df5de756c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1892&min_rtt=0&rtt_var=2508&sent=157&recv=190&lost=0&retrans=0&sent_bytes=26481&recv_bytes=13382&delivery_rate=2516248&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14808&unsent_bytes=0&cid=f3d7e0d51723640e&ts=1327&inflight_dur=46&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=954019e3b8f6b503&lang=auto
200 OK 147 kB URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=954019e3b8f6b503&lang=auto
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 147 kB (146704 bytes)
Hash 966d2eb20c1a381ca4c947a88a484bda
d5bd035de4e9f971fa052ede4c3e5a1803918ee5
8d4699a4f9dc75a6f0aa4f9b757d99e83073ff0c8fc3bd6ddf94ba2fd553f020
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=954019e3b8f6b503&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:38 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 954019e4c953b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET krd30.top/favicon.ico
200 OK 0 B IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/?tck=1
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; TCK=aa4a9b4e7cc55a3fbba727ea0a7ea3f2; user_id=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:56 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NW%2Bpkh6Sqgctnwr9zEZWum1Ag6hyPAbTS7QxFsxA07yiChm1DbfHnSduwwTNcFKpebXKRm9FcohJpBbV0aqYabBYDODtqTuNqapMA8YtClwlnlr1U0KsWtzl7VI%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Mon, 23 Jun 2025 01:09:56 GMT
cf-ray: 95401a544faf56c5-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=899&min_rtt=0&rtt_var=544&sent=225&recv=232&lost=0&retrans=0&sent_bytes=71843&recv_bytes=44343&delivery_rate=4040757&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14923&unsent_bytes=0&cid=f3d7e0d51723640e&ts=19544&inflight_dur=116&x=44"
GET mc.yandex.com/watch/101056890?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(42009088)ti(1)
302 Found 591 B URL GET mc.yandex.com/watch/101056890?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(42009088)ti(1)
IP
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64
ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/101056890?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(42009088)ti(1) HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
pragma: no-cache
strict-transport-security: max-age=31536000
last-modified: Mon, 23-Jun-2025 01:09:56 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
expires: Mon, 23-Jun-2025 01:09:56 GMT
access-control-allow-origin: https://krd30.top
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
location: /watch/101056890/1?wmode=7&page-url=https%3A%2F%2Fkrd30.top%2F%3Ftck%3D1&page-ref=https%3A%2F%2Fkrd30.top%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Ai3icr3vaukfptwrwd2g3ha7bh00r%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2091%3Acn%3A1%3Adp%3A0%3Als%3A423065791568%3Ahid%3A305469821%3Az%3A0%3Ai%3A20250623010956%3Aet%3A1750640997%3Ac%3A1%3Arn%3A277851997%3Arqn%3A1%3Au%3A1750640997995166956%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A1147%3Awv%3A2%3Ads%3A0%2C0%2C627%2C0%2C%2C0%2C%2C494%2C4%2C%2C%2C%2C1172%3Aco%3A0%3Acpf%3A1%3Ans%3A1750640995095%3Anp%3ATGludXggeDg2XzY0%3Arqnl%3A1%3Ast%3A1750640997%3At%3ACaptcha&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842009088%29ti%281%29&redirnss=1
access-control-allow-credentials: true
set-cookie: yabs-sid=135387201750640996; Path=/; SameSite=None; Secure
i=k18ugYSBrrThzSkjAW5eUTiS4yWL2+WKZu7b75+Pl04hBlqYVfZmS16cs2TFvB34tX1RgcZyLAd5SpwytGXlB9s/wMs=; Expires=Thu, 21-Jun-2035 01:09:46 GMT; Domain=.yandex.com; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=506741361750640996; Expires=Thu, 21-Jun-2035 01:09:46 GMT; Domain=.yandex.com; Path=/; Secure; SameSite=None
yuidss=506741361750640996; Expires=Tue, 23-Jun-2026 01:09:56 GMT; Domain=.yandex.com; Path=/; SameSite=None; Secure
ymex=1782176996.yrts.1750640996#1782176996.yrtsi.1750640996; Expires=Tue, 23-Jun-2026 01:09:56 GMT; Domain=.yandex.com; Path=/; SameSite=None; Secure
bh=YOTS4sIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Tue, 28 Jul 2026 01:09:56 GMT; SameSite=None; Secure
bh=YOTS4sIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Tue, 28 Jul 2026 01:09:56 GMT; SameSite=None; Secure
X-Firefox-Spdy: h2
GET mc.yandex.com/metrika/advert.gif
200 OK 43 B URL GET mc.yandex.com/metrika/advert.gif
IP
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64
ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 43
accept-ranges: bytes
set-cookie: _yasc=Yf4NOggUaIoSXh8tkeMVTBIjIz8Ladlsl1XWO3/0ex8delkxKQODtSUj3ezbCQgavM80; domain=.yandex.com; path=/; expires=Thu, 21 Jun 2035 01:09:56 GMT; secure
i=bTaAzzQPG4JxLIKUPfRu0+94qZ8cAEPnxxVF9ohLyQPOMArBLO7jZX0lrRS4qEbl/REzAOhRLrHlSBYwvfG2WhPyVs8=; Expires=Wed, 23-Jun-2027 01:09:56 GMT; Domain=.yandex.com; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9294373601750640996; Expires=Wed, 23-Jun-2027 01:09:56 GMT; Domain=.yandex.com; Path=/; Secure; SameSite=None
yashr=4925189611750640996; Path=/; Domain=.yandex.com; Expires=Tue, 23 Jun 2026 01:09:56 GMT; SameSite=None; Secure; HttpOnly
bh=YOTS4sIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Tue, 28 Jul 2026 01:09:56 GMT; SameSite=None; Secure
last-modified: Thu, 19 Jun 2025 12:44:59 GMT
timing-allow-origin: *
content-type: image/gif
cache-control: max-age=3600
date: Mon, 23 Jun 2025 01:09:56 GMT
etag: "6854064b-2b"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Mon, 23 Jun 2025 02:09:56 GMT
X-Firefox-Spdy: h2
301 Moved Permanently 6.6 kB IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jun 2025 01:09:37 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 23 Jun 2025 02:09:37 GMT
Location: https://krd30.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7RCN81gZfASZ3PK6Foq0l6YWJiGGIHouffotHOt8VtHRu46i5VvtjTkFPyKGWx4u%2B4QOFtX%2ByWI6Z7Iu8LQXObkFwUl0MkP314F0%2B56Co6FHVv3XU8MHsxtaiEY%3D"}],"group":"cf-nel","max_age":604800}
Nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
Cf-Ray: 954019dddeb35695-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=436&min_rtt=436&rtt_var=218&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=394&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET krd30.top/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=954019de1ad8569c
200 OK 114 kB URL GET krd30.top/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=954019de1ad8569c
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 114 kB (114093 bytes)
Hash e96f0c4df038147ff3743818b7a7f097
e92e89d77007862b303d976581a0f2720cc7ce7f
855353a3e35bc5fa81f01201c3f3aa3bf2b3554db34f2506073460c843159fae
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=954019de1ad8569c HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/?__cf_chl_rt_tk=uHRH6SnU_69KNYYzz3OsA1ryNttCk4s0xPTaQNqrfnc-1750640977-1.0.1.1-HUMAoIMC_tGPkOBBKkw86wkaBuYaJCb7S2l8u1VfnXM
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Jun 2025 01:09:37 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: br
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KxBSELiyBuy2iNZKWU17y%2Bom5ARlnm4fUZnOZLaEKNMDUz08gfUNp6r2vW1oY5TLsdQBuU92oeVOQAVkZtfHJemcVXAgOlWG6tGRu%2BFb5wNYQBEWtsv4ObZOfMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 954019df2b37569c-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2728&min_rtt=468&rtt_var=4123&sent=18&recv=16&lost=0&retrans=0&sent_bytes=14492&recv_bytes=1568&delivery_rate=7203980&cwnd=256&unsent_bytes=0&cid=777aa25eefe758e1&ts=409&x=0"
X-Firefox-Spdy: h2
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
200 OK 290 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 290 kB (290208 bytes)
Hash d02545286e7c65661b78fa09c8a25adb
b3e859d4cef5598f95438e7df739cde37dd85958
e5849f5002d2f1fb26fd9b160fc78635834813ef49c54a24129d33ce8df0eeeb
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4162
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:39 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$YVsHH/jVem1su4EEe6ancg==
priority: u=3,i=?0
server: cloudflare
cf-ray: 954019e83a9bb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
200 OK 30 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type ASCII text, with very long lines (29584), with no line terminators
Hash 6e3f0aa21d2cbd1f12cb99e4ffef2b27
c1f9a6361d0320cb974771d68bd5097a698c1d59
9b0a2a159a1045dfdbb8715e7baf5588952c9dced83cc08b2fa6a3afd107a9d3
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 36023
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:46 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 5L+/E77FN/mtoTIHQm0zC3t+jZZlvfAow25cLG53fqp44Qz0PmKHH8KXSKj3sFzA$uqqxgZSnIPw6WRjyJ79Xdg==
priority: u=3,i=?0
server: cloudflare
cf-ray: 95401a15dcc0b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.googleapis.com/css2?family=Inter:wght@300;400;500;700&display=swap
200 OK 10 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@300;400;500;700&display=swap
IP
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
Hash dac220f57a143d451efb35a693ad1193
01bf3d5cede5c698e109759554dfaabc32219caf
81173243f2186d5d50ec00944139c2c5ed2bf32addb74bce14bf521df131b573
GET /css2?family=Inter:wght@300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 23 Jun 2025 01:09:55 GMT
date: Mon, 23 Jun 2025 01:09:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST krd30.top/cdn-cgi/challenge-platform/h/g/jsd/r/0.6122541968268649:1750638317:tWEQMK4ZX4vmbk5N4C0S0e7iX_d9NzCayZLUC2qDGYQ/95401a4b7f5456c5
200 OK 0 B URL POST krd30.top/cdn-cgi/challenge-platform/h/g/jsd/r/0.6122541968268649:1750638317:tWEQMK4ZX4vmbk5N4C0S0e7iX_d9NzCayZLUC2qDGYQ/95401a4b7f5456c5
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.6122541968268649:1750638317:tWEQMK4ZX4vmbk5N4C0S0e7iX_d9NzCayZLUC2qDGYQ/95401a4b7f5456c5 HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12075
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/?tck=1
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; TCK=aa4a9b4e7cc55a3fbba727ea0a7ea3f2; user_id=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:56 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=315y8l8rcy7SWKZkn8SmqQV4pEGwKVuB0xzScOgruODdnV%2FqHIV%2FL3ypOvhWv7IlVimixbQIQemKq1FSCKbhIJGuZ%2B3TqvzZE3x7O8352ASv9E6zCZuQrby7OdQ%3D"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=h9Nch3OPQqRY.cUgBt38j7xyc.upACvgClvLweJWIdM-1750640996-1.2.1.1-yiMv3maYkrNHoBylTXJy6hPUMrwcrCxCPd2vJMNh3HZqqQYE22KeUKqNWpXvsFTrqALxqA2yQFXfWsPcbS_m0wtTz_t0O1_4E9v18rtQOdg88FOmuVSEj5usjPI5lN8erLKWR9csBGLp_cQqMmgmZwdt8DoERViZNsNohkAiL_Ym5z3JiuMZRRksPItsKIvGqX6KudNnVn7m2OrwjRExYMxrEHK35D70UIAIFLO6GXAKDBkJeLRtu2h1ir6.RVRImlCXLgeKhx_tNvuSlPplVZFxR99S8hyXvIEUUGcjEOD3Vt90hXp_Tjofl8rMwuS6w.iluQs7bFfFBaf8lcGXYG_KVo4YclR0OQL4yCn_uf.FesktHcoVq8FSCXV78t1p; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=krd30.top; Expires=Tue, 23 Jun 2026 01:09:56 GMT
cf-ray: 95401a543fae56c5-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=782&min_rtt=0&rtt_var=414&sent=224&recv=231&lost=0&retrans=0&sent_bytes=70787&recv_bytes=44298&delivery_rate=4040757&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14923&unsent_bytes=0&cid=f3d7e0d51723640e&ts=19088&inflight_dur=94&x=44"
GET krd30.top/favicon.ico
200 OK 1.5 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (762)
Hash c89b20eed361d867105762b080476da6
68710806d1b92f713ec35308e5de63109b55cf70
bdf61305e25681c1c7326dd57174bcc8f46c473f1d34623fad25fa391bcc63af
GET /favicon.ico HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:39 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hhKhKU1nyrtBzc%2FXqVsNZ1BgNOGWvPmGOVEugj17XYCzkeo8p9fqfDbB8jjoEg7bnOvRHZj%2BBCWfIMC24yOYuxvs%2BAwXI2cASQSvGDoy%2BVnnY0SLtsIADpXFHb0%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFBel80QUFBUVp6ZEhKcGJtY01EQUFLYzJWemMybHZibDlwWkFaemRISnBibWNNRVFBUE1USTNMakF1TUM0eE9qVXlORGd5fKaCceTsx-p_snCG6_N3WABzgdtfQpJzhpIsonX6gL5G; HttpOnly; Path=/; Max-Age=7200; Expires=Mon, 23 Jun 2025 03:09:38 GMT
_lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX2pQLUFBQUlHYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1fFyTODBS33VeNQaL81ibXVEZpKj09kQIV9g1qByDGxyL; HttpOnly; Path=/; Max-Age=7200; Expires=Mon, 23 Jun 2025 03:09:38 GMT
_lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; HttpOnly; Path=/; Max-Age=7200; Expires=Mon, 23 Jun 2025 03:09:38 GMT
k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; Max-Age=86400; Path=/; SameSite=Lax
x-kfp: 20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 954019dfdde856c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1760&min_rtt=0&rtt_var=2144&sent=161&recv=191&lost=0&retrans=0&sent_bytes=29035&recv_bytes=13427&delivery_rate=2516248&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14808&unsent_bytes=0&cid=f3d7e0d51723640e&ts=2007&inflight_dur=49&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1
200 OK 86 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced
Hash 70c202196187ab3c11b4e094c20c6de1
9c52b959e74aee9d79cbc9f35d1f9f65a3b8c863
6255b9231d09ebe6aa1ac19ba46bdd81f3df58989c9ef2e11d6cd6e2e7b21643
GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:38 GMT
content-type: image/png
content-length: 86
priority: u=4,i=?0
server: cloudflare
cf-ray: 954019e49943b503-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
200 OK 5.0 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type ASCII text, with very long lines (4952), with no line terminators
Hash 6a1efdac76576b94182ada96169e93ca
89aecae330105a08d82440bc298960ad8c3f9966
fc343ee878a14aa6f540bfd952cec51cee8923e7e74e894112fa77b79ad8bc89
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1076833066:1750638346:5R4wQHYDqwXoKxap1kEM5UskfvxxZ5OVCo3ZbvTEdsw/954019e3b8f6b503/vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: vfN0XbNd40wdo4z03TndgF6i4SkwsrZEQBnd44A.W88-1750640978-1.2.1.1-ZsZa8e8Rv7gAhZwj8Ocd3owLj7ZzwjAEpG3dcWXnhPfQJB54MlKOrmNCdvAoHpyW
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 48098
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:53 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 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$le1cNi9kgE181nX53kFKtA==
cf-chl-out: pKfRwfp34gAjprAekhOqIkJKEGjKxHQETV7mOAGy7sXlJtduEH+7YUbwxlOXawJwsNAtWUr8iO9P0bg0tZ9985vzB2V9ln7vI2shITFDGoM=$VyM22p2Cjfu01//6vrsP8w==
priority: u=3,i=?0
server: cloudflare
cf-ray: 95401a40ee79b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
200 OK 21 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (15066)
Hash bf12274a47dcacecbc956ce79733bc9c
f996422b90ccb8b05fb9a46e55247fdd63d7c9ed
7e63d3999d331013f03fc3aa896a55d8e55da302ac4a26fd454d0504232753c8
GET /?tck=1 HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://krd30.top/
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; TCK=aa4a9b4e7cc55a3fbba727ea0a7ea3f2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:55 GMT
content-type: text/html;charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4pjZHkrk7fogKCH3XsbvlNqPWg0iHlOiYINEjC86geP4p6LNpj4q8dTb9r6smX4YhjZApGihPXhScN0qepiqumXqKmpWogc%2FCQFjWcwBx7ZtuKorDKD7Tq1cCM%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: user_id=
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 95401a4b7f5456c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1120&min_rtt=0&rtt_var=853&sent=192&recv=208&lost=0&retrans=0&sent_bytes=48008&recv_bytes=26088&delivery_rate=3232597&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14241&unsent_bytes=0&cid=f3d7e0d51723640e&ts=18301&inflight_dur=63&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/d/954019e3b8f6b503/1750640979246/GsCW-Ayk53ue4TW
200 OK 444 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/d/954019e3b8f6b503/1750640979246/GsCW-Ayk53ue4TW
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type PNG image data, 58 x 97, 8-bit/color RGBA, non-interlaced
Hash 87208263a096a4e3cfcb315d160f2813
53a7e6a4d1534c7890a535a12f545f5772889047
4d9ecb691abcf635e8741fd6ce5be60fdf5d82457eafca2db5bf09e3990a7bfa
GET /cdn-cgi/challenge-platform/h/g/d/954019e3b8f6b503/1750640979246/GsCW-Ayk53ue4TW HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:41 GMT
content-type: image/png
content-length: 444
priority: u=4,i=?0
server: cloudflare
cf-ray: 954019f69857b503-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/954019e3b8f6b503/1750640979252/5e4df24730da995b3946dc302bc5930c977db9862f0119a2b4955aed6023bb37/otZ_ocEuKrl1nSb
401 Unauthorized 1 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/954019e3b8f6b503/1750640979252/5e4df24730da995b3946dc302bc5930c977db9862f0119a2b4955aed6023bb37/otZ_ocEuKrl1nSb
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type very short file (no magic)
Hash ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/954019e3b8f6b503/1750640979252/5e4df24730da995b3946dc302bc5930c977db9862f0119a2b4955aed6023bb37/otZ_ocEuKrl1nSb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Mon, 23 Jun 2025 01:09:45 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gXk3yRzDamVs5RtwwK8WTDJd9uYYvARmitJVa7WAjuzcAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIF5N8kcw2plbOUbcMCvFkwyXfbmGLwEZorSVWu1gI7s3ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIF5N8kcw2plbOUbcMCvFkwyXfbmGLwEZorSVWu1gI7s3ABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApfbVKW9jv_cm7VCxn62oVAVC5hFmu-kZjUyoHVY59NkyKyHKMDjFTQQtwRz5WaCrisTztPUBe5IEqngHq_K6n0LVGgP-vP5_EV8Q63SdqECb9NxgQT_jnGDYKP38YIvPHP47CMaQOOm6F4tfy50OTdVLxmir-nwtG4EsjQpjbWt5h0uKnWtYHo0z3T2TGAaak3xueW6uC1Y9XvXRyQ4VLq2YT2Pj5nG5iT9qz95HGc0b9CcuEADcgyRRUmYpFDKa4E7gznEbKSul9XcN8oNCkL49spyNT1stpPVhL9fnQZz0zdIsTIdKR-iKQoy9HKyPEeNpcQhrSF7DgSPJTnR6xwIDAQAB", max-age=20
priority: u=4,i=?0
server: cloudflare
cf-ray: 95401a0e39d4b503-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
200 OK 2.4 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1082)
Hash e483896f816d8801c3dbd5df81f8a5e1
697179684b8e5e183b6629ded3d768a1c6eb7665
00367ee566671d27245f4b6c37628f3e38dc6b0e077e40134c2abc9957a3d071
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
POST / HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/?__cf_chl_tk=uHRH6SnU_69KNYYzz3OsA1ryNttCk4s0xPTaQNqrfnc-1750640977-1.0.1.1-HUMAoIMC_tGPkOBBKkw86wkaBuYaJCb7S2l8u1VfnXM
Content-Type: application/x-www-form-urlencoded
Content-Length: 3587
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:54 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k3VAV%2BShW7U44OMGTSMc3%2FO4RcQwZvgfMn9DrRajOQW%2FXdxj1K014FTC%2Fn0ioDPhKIkBkG2M9rphtcvQRETa472bge23GMnx0zZi%2FOTm3NbE4YpVMPqqakDrjcQ%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 95401a439f3156c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1566&min_rtt=0&rtt_var=1519&sent=177&recv=201&lost=0&retrans=0&sent_bytes=36617&recv_bytes=23789&delivery_rate=2516248&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14808&unsent_bytes=0&cid=f3d7e0d51723640e&ts=17026&inflight_dur=55&x=44"
GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7W0I5nvwUgHU.woff2
200 OK 19 kB URL GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7W0I5nvwUgHU.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 18664, version 1.0
Hash be9f418664929cb873436f8f4b5b5beb
1a47d6de5c3f88415b0522609694be08fb954a66
3f8137d61fbd7fb1e0f5b2dc67c6995a95cdd74fa132d1879c7db0a3bd270399
GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7W0I5nvwUgHU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jun 2025 22:32:30 GMT
expires: Thu, 18 Jun 2026 22:32:30 GMT
cache-control: public, max-age=31536000
age: 355046
last-modified: Wed, 28 May 2025 18:54:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET krd30.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js?
200 OK 10 kB URL GET krd30.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js?
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (9971), with no line terminators
Hash 8d9e09fb65e177c4f942ff07b817682e
dc35dd95e55323f481c7439dc86c0cf47798cfc1
463f6895c257affbec8e74b50882ff422a383be7f335b912fe5b7d787b51a2d6
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/180b6a431d85/main.js? HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _lte=MTc1MDY0MDk3OHxEWDhFQVFMX2dBQUJFQUVRQUFEX3JmLUFBQU1HYzNSeWFXNW5EQXdBQ25ObGMzTnBiMjVmYVdRR2MzUnlhVzVuREJFQUR6RXlOeTR3TGpBdU1UbzFNalE0TWdaemRISnBibWNNQndBRmRFaHZjM1FHYzNSeWFXNW5ERUFBUG10eVlXdGxialpuWmpadk5ISjRaWGQ1WTNGM2FtZG1ZMmg2WjNoNVptVnZhalY0WVdaeFltWnROSFpuZG5saGFXY3lkbTE0ZG5sa0xtOXVhVzl1Qm5OMGNtbHVad3dKQUFkMFUyTm9aVzFsQm5OMGNtbHVad3dHQUFSb2RIUnd8OGlIj-rIq_9VcgKDVCQF1A-gLi9I-LyYHiB0XJdxIsw=; k_fp=20e3d91aece07e640146f6d8df2a7512f50b28b6f56414031e9d14257275553a; cf_clearance=ZZrG5Fu8aBIj2Ajd.20SstJlz2.stIWAPVzkrNhEq38-1750640993-1.2.1.1-d5Oc.fmhDoUi8yVEECvYONLD5Ctn3Aq_2LS3GNCNpMwMB_S5eAUj7bYoHpI9j7E.Qwr6dZ2ptDYClqrlM8HGUPY9Cv1DbMYPsAmam.KaTTvnPkyZSX.rPf6S2hXbx3XHjaEoXi4zxB_oyzkhAyGZ5QQT8wFx06IXtPhAnXGgXHFk6Nmit0rMNvq0SEhXBtRsyjSNfgQ7W7d7N6SsYJEmWX6YlW0JUYrglbZSnv3l98eMQotwHAxQKZCxFlsGyCEtFoslFAF2g3U8_8ovQYjfWF.HTDaVtEsOA7Ld8aq7jQ6NBMJeq9lD1tL3kV4022CM6UAr601Pd4gCHNxbqJiTsmlRxwz70Rkjob02KZ_u64qt2Av0JNePMPRFcln.pOcy; TCK=aa4a9b4e7cc55a3fbba727ea0a7ea3f2; user_id=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:56 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pe%2BvKRrhs8c1%2BQpXj%2B1jqtdrkjmnstFI5z5m5lq8d606sjN97GGXXHi1GLyfOkdMfc54iBHrROVwfXGlHx2dkCUrqSC6K5qlG0Su%2FdTGr3cm7wRS8YQtMfdUluo%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
content-encoding: br
cf-ray: 95401a52ef8756c5-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=871&min_rtt=0&rtt_var=316&sent=212&recv=218&lost=0&retrans=0&sent_bytes=65158&recv_bytes=29542&delivery_rate=4040757&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=14923&unsent_bytes=0&cid=f3d7e0d51723640e&ts=18869&inflight_dur=92&x=44"
403 Forbidden 7.5 kB IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type HTML document, ASCII text, with very long lines (7474), with no line terminators
Hash bc03fbe17af975eba1ef137a89cac877
f3b16d6974bd274930613396465b7ab26e7836d1
2018df67a9a05e37e571fce48e1e09edd7cafb0af24b6dd5081cfd3f5ebfa82a
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Mon, 23 Jun 2025 01:09:37 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jfJC4dq%2FHpAOG0dTPjOrbO6SWQMnZn5zd9IqMq8gUnfJpUVTLfKpAlZB3zfYtHWXaCn3Mx%2BoIy5W8pSDTkRkK4qRVg%2BmITepOICmhTU5AfHbQg82UE1JkdmZnyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 954019dcca6f569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="954019dcca6f569c", cfL4;desc="?proto=TCP&rtt=507&min_rtt=484&rtt_var=115&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3265&recv_bytes=1243&delivery_rate=7203980&cwnd=253&unsent_bytes=0&cid=777aa25eefe758e1&ts=46&x=0"
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/turnstile/v0/g/180b6a431d85/api.js?onload=ZJgv0&render=explicit
200 OK 49 kB URL GET challenges.cloudflare.com/turnstile/v0/g/180b6a431d85/api.js?onload=ZJgv0&render=explicit
IP
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type JavaScript source, ASCII text, with very long lines (48827)
Hash 37dbac94aef1db73de816d49652909e2
324ec5206208c2c336cfd6f924c4e19b80cc5706
cad4395e83a0a0d66da04e657e32491d430580ce68aeb4bd59031b3e37ab9c99
GET /turnstile/v0/g/180b6a431d85/api.js?onload=ZJgv0&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 23 Jun 2025 01:09:37 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 16 Jun 2025 16:33:10 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 954019e029d5568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST krd30.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1538763759:1750638384:JUC-FVhESN421nOf44P-3onqnhGPFNsYaN62WgH3EWM/954019de1ad8569c/l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7
200 OK 19 kB URL POST krd30.top/cdn-cgi/challenge-platform/h/g/flow/ov1/1538763759:1750638384:JUC-FVhESN421nOf44P-3onqnhGPFNsYaN62WgH3EWM/954019de1ad8569c/l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7
IP
Certificate IssuerGoogle Trust Services
Subjectkrd30.top
FingerprintCF:A1:9D:22:C8:50:94:76:B1:9C:C8:21:59:4D:3D:C2:9A:3C:91:D4
ValidityFri, 13 Jun 2025 06:37:21 GMT - Thu, 11 Sep 2025 07:34:54 GMT
File type ASCII text, with very long lines (19440), with no line terminators
Hash 9995591c88d054b54d798b85dc941ec6
5eda02e7146e5808ef0287503687c0e1d3e8d8dd
28807e38d9b541b1cd216897ffde721f70c37389215d96e149abd8797fa5dae5
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1538763759:1750638384:JUC-FVhESN421nOf44P-3onqnhGPFNsYaN62WgH3EWM/954019de1ad8569c/l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7 HTTP/1.1
Host: krd30.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://krd30.top/
cf-chl: l9hB374c51uCWlcBsraDgflEpvC0.JjF1vuHS.RKeuI-1750640977-1.2.1.1-1ZKQut9GIgHxdoKcnMC4q3Thrp9deAEv6MTjee42oFp2G6XXPvBx_4UtgsnNhOM7
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1943
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:38 GMT
content-type: text/plain; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ugdG%2B%2BuOlrrs4ThWYqDkSILa3eVZScEbz16D86XEbyPunsI8hJki8q58XZns%2F9SCa8tMroCfghYkoGDNvSl8ePX6owd0RCVZqLVc%2Fi9mGUdu4Ri3USjxsXTAU%2F8%3D"}],"group":"cf-nel","max_age":604800}
cf-chl-gen: mWv59bE3+H7HSZmG1bZbDEjUWq8OKlK5JcSDIsMZH9s=$h6s8G/ugo/S78XEWEy4d/w==
content-encoding: br
cf-ray: 954019e1fdee56c5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3788&min_rtt=563&rtt_var=4005&sent=143&recv=184&lost=0&retrans=0&sent_bytes=10808&recv_bytes=13118&delivery_rate=334677&ss_exit_cwnd=14898&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=f3d7e0d51723640e&ts=817&inflight_dur=38&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
200 OK 26 kB URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
IP
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
Fingerprint66:48:DF:B4:8B:9D:6A:8C:3A:B7:0F:CF:92:C7:AF:56:B9:3D:A2:1C
ValidityTue, 29 Apr 2025 17:49:00 GMT - Mon, 28 Jul 2025 18:48:58 GMT
File type HTML document, ASCII text, with very long lines (26515), with no line terminators
Hash 5a27967d5a086ec097acd884ba32f8f5
3e2215800a7ac090a2722ff850dc7cb04248a865
e11daa2de1c80de88e52c5d716801abbf730ca40270fcb6cebb4aeb0c20d47a7
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/g9ojq/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 23 Jun 2025 01:09:38 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-sWDop5CHJ0Psi1gd' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 954019e3b8f6b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
File type Web Open Font Format (Version 2), TrueType, length 48532, version 1.0
Hash 225835e6e0496c54dc2aca9f3d533892
942ef5298bbe74bfe44e445def5f2bfc94027fa8
acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087
GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://krd30.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 10:50:44 GMT
expires: Fri, 19 Jun 2026 10:50:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:51:44 GMT
content-type: font/woff2
age: 310752
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
104.21.82.182
142.250.74.10
87.250.250.119
0.0.0.0