| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | | 12 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash3968a5de5df4f55126f1d3be1aff3716 677a1599e8503f210fd26d8a55d9b0284b41aac6 83f134cead1894c4c995d5b9cf014a7b7dce5eaa7649b15277358c47eb3f8c0e
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/nmsgg/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:40 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 875d6ae97c4d1d22-CPH
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit | 104.17.2.184 | | 18 kB |
URL challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit IP104.17.2.184:0
File typeJavaScript source, ASCII text, with very long lines (42414) Hash374fec8b5e50cd6ab980f3fef21a5aa0 7f474607991a19b6f1b78cc32e0f75b501b60774 8af2da74872f03e058ab79a584176d2086afc01bbd42dd2ed14259179341be6a
GET /turnstile/v0/g/54ea73d52131/api.js?onload=lmgW1&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6ae7bdc19984-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875d6ae38f5092fe | 104.21.78.86 | | 109 kB |
URL hajarwater.sa/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875d6ae38f5092fe IP104.21.78.86:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size109 kB (108991 bytes) Hash687f4cd82038f1d1ee8c9b057e54c745 2ccfadf18b251c132d93b084af03de66b08a675b 5e11849bfcf521022cc3b1f9359e03607ff60b3a29f7691f0e91d83004f5725b
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=875d6ae38f5092fe HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&__cf_chl_rt_tk=HUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:39 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6ae5cbb692fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hajarwater.sa/ar/Buy10boxesGet5free/dist/favicon.6afd2bd2.png | 104.21.78.86 | | 338 kB |
URL hajarwater.sa/ar/Buy10boxesGet5free/dist/favicon.6afd2bd2.png IP104.21.78.86:0
File typeHTML document, ASCII text, with very long lines (64584) Size338 kB (337834 bytes) Hashb3380eefb800df8bc40a4a98eff81c70 c844fae879c7e7352fa9e7a5c38134db7fe63401 a69df49feaca8fca12b50ebc03303fc96b46eaaafff4bc53f05bf74050f06243
GET /ar/Buy10boxesGet5free/dist/favicon.6afd2bd2.png HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&__cf_chl_rt_tk=HUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
date: Wed, 17 Apr 2024 15:23:40 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: FMDiBeG0nPsc6ggNgNr4ziMqZNAMsqc/OELCSgNnXzhIEdVI4HvU2UmiIg6c0VKFv5+snyak2nFAmf+rjw6DauLt5Y2AlyQW6KUueHNK37Cjl5ahw9j46h3rueYO6AlCBqyzXeQbfsvJ2b0zkZcYDQ==$b3zximoh7QlrIeYJ09JVIg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6ae98b1792fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/611357505:1713363287:jbcDJtaivZlRSYT7zOmcpeGRbCLpUh5jG-f7BHJj4k0/875d6ae8aacb1d22/8b43d3ae312b7b0 | 104.17.2.184 | | 72 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/611357505:1713363287:jbcDJtaivZlRSYT7zOmcpeGRbCLpUh5jG-f7BHJj4k0/875d6ae8aacb1d22/8b43d3ae312b7b0 IP104.17.2.184:0
File typeASCII text, with very long lines (65536), with no line terminators Hash8c974c47a4e7f8920e2416a73b1ed8a0 7c4dea8727b9e4085a4b8e86dcbef20fac9a80c8 23a457ce7f1ecd09244da1c8c5894e7795dedc41e56321535f8bfc170ba4b0f3
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/611357505:1713363287:jbcDJtaivZlRSYT7zOmcpeGRbCLpUh5jG-f7BHJj4k0/875d6ae8aacb1d22/8b43d3ae312b7b0 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/nmsgg/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8b43d3ae312b7b0
Content-Length: 3515
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:40 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: aXsWXAESIrTclyO4DpvXV5FvSD3MhunE6c2ACiJ1NtvjC3bDt9tw4lshBiKcvZd/Pxy//2OtDrYiqVTJIPE+PFJ9WmZgHdgsIFkX2FL9sqv1zEewjvz5X2BqLsnIDMfmW2iQjgmqAC9j8/eIGs0hDS9SeIC077byxB3tnD5g5dFziiE5gAQzp5c5RHzUKns8CFXfwxyYCQ5fYfecXRLs1kqF4kw2Rc54AEFR2yo/tkyBHHhKl0GGRIVtMguPKKPSSvo8LDI/sUECMNDaF4ZlI1RLDBwtZn9DgM8M6vm8ZuyRdkFKwox+vMG/iJR1cAT6nikUTkCDYi2AD+hUqn3n8Nvyk1BkZuGCAcKIY11HOQ2JcR/3tXcjHxzJKPYSDO15xdVK3/4oU5/P3lfCGIQbtyFzv7SXgMOjZkStHr++864=$52Ho02VDal1W0uiAcJcBag==
server: cloudflare
cf-ray: 875d6aeb9f9e1d22-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.assets.salla.network/themes/1247874246/1.139.0/images/s-empty.png | 104.18.42.168 | 200 OK | 118 B |
URL GET HTTP/2cdn.assets.salla.network/themes/1247874246/1.139.0/images/s-empty.png IP104.18.42.168:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typePNG image data, 390 x 220, 1-bit colormap, non-interlaced Hashc48aff23177844ced15c05ec5754b521 6de51183b64280fc6e577f9d4d97266b99334230 abc95f76d3063f2890fd859f8f1bd3b347adb51a9010f442b800076fb8d529bc
GET /themes/1247874246/1.139.0/images/s-empty.png HTTP/1.1
Host: cdn.assets.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: image/png
content-length: 118
cf-bgj: imgq:85,h2pri
cf-polished: origSize=119, status=webp_bigger
content-md5: dwXNV9XbGFto2/it3DsADw==
etag: "7705CD57D5DB185B68DBF8ADDC3B000F"
last-modified: Wed, 14 Feb 2024 09:23:14 GMT
x-oss-hash-crc64ecma: 4478996838173928230
x-oss-object-type: Normal
x-oss-request-id: 65FE6D538FF6FF37327D5C21
x-oss-server-time: 2
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:45 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 875d6b0b0d6dabde-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.salla.sa/bqEja/HCqVyGUP7QoVKNWiVUrL07oj6tOAeKlzCP54R5e2.jpg | 172.64.145.121 | 200 OK | 41 kB |
URL GET HTTP/2cdn.salla.sa/bqEja/HCqVyGUP7QoVKNWiVUrL07oj6tOAeKlzCP54R5e2.jpg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1000x1000, Scaling: [none]x[none], YUV color, decoders should clamp Hash1f6285101d49dd0def7e666055177a84 f06c3c0a01928d427ac6e060d418642ad0f1cfb4 32abe832a5f2117539ad25dfd34014ba32de8bd37869501d60eca567f62dda8f
GET /bqEja/HCqVyGUP7QoVKNWiVUrL07oj6tOAeKlzCP54R5e2.jpg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: image/webp
content-length: 40736
cache-control: public, max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=87385
content-disposition: inline; filename="HCqVyGUP7QoVKNWiVUrL07oj6tOAeKlzCP54R5e2.webp"
etag: "1209250337b20b03213c25f37c02baf3"
last-modified: Tue, 16 Jan 2024 06:37:17 GMT
vary: Accept
x-amz-id-2: Gcu39LWFpgkw3LqhVojZI4z1YpM9rGHfnQDkGGl8x6r+gtJX30h9F6bqAa8T5AZePBtXsuqzHbc=
x-amz-request-id: N0QF4CR7XJ6A6S6J
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0b2db86df0-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.salla.sa/cdn-cgi/image/fit=scale-down,width=400,height=400,onerror=redirect,format=auto/bqEja/qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.jpg | 172.64.145.121 | 200 OK | 7.6 kB |
URL GET HTTP/2cdn.salla.sa/cdn-cgi/image/fit=scale-down,width=400,height=400,onerror=redirect,format=auto/bqEja/qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.jpg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
Hash23ccbf524e3c2931048a475e1b654144 7959fddb61f6f4ddb7e1d202722b63df4e3995e0 4697cbbfe10db8d93ee4075a963a117d9f688c6d6e0170e8a699d216948365da
GET /cdn-cgi/image/fit=scale-down,width=400,height=400,onerror=redirect,format=auto/bqEja/qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.jpg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: image/avif
content-length: 7639
cf-ray: 875d6b0b1db46df0-CPH
cf-cache-status: HIT
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "cfp1aKtspyhCk_V6RYnRkuZdCvOzoW2K7ONT99skHwDQ:9441509fe7656321c56e7bb162747dc4"
last-modified: Sun, 21 Jan 2024 07:12:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=44+169 c=0+0 v=2024.3.2 l=7639
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.78.86 | 302 Found | 0 B |
URL GET HTTP/3hajarwater.sa/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=VFx_FYlZUTy7qQaNYTdUu6Vbs.H4dWsZDusKdW327vw-1713367419-1.0.1.1-CCxBzWBkSx6mH8wSfgxMTgXUR9986A397_Jp89yrGBTmyrgeRxer7JyV0m5lzzTP754T96OdAsFj31rmfOKfLA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Wed, 17 Apr 2024 15:23:46 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0d28ea92fe-CPH
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/fonts/sallaicons.css?v=2.0.3 | 172.64.145.88 | 200 OK | 53 kB |
URL GET HTTP/2cdn.salla.network/fonts/sallaicons.css?v=2.0.3 IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeASCII text, with very long lines (35535), with no line terminators Hash250fbffa1634520a06f8ef13708d75d3 1ab86ff0b717f9299790b9d57ea09bfc8b3daa47 964c530419b2e504bf93ab4597de6fc302e8df0129bb7443f1f219622b29d18f
GET /fonts/sallaicons.css?v=2.0.3 HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=35545
content-md5: mhCo9N8TdzgtsZCEKIMSew==
last-modified: Wed, 15 Mar 2023 12:41:34 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 11809056538034708572
x-oss-object-type: Normal
x-oss-request-id: 654F01AC1621A43138206955
x-oss-server-time: 15
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 4111268
expires: Thu, 17 Apr 2025 15:23:45 GMT
cache-control: public, max-age=31536000
server: cloudflare
cf-ray: 875d6b0b0c2d1d02-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.salla.sa/bqEja/qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.jpg | 172.64.145.121 | 200 OK | 13 kB |
URL GET HTTP/3cdn.salla.sa/bqEja/qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.jpg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp Hash7c2fde9da5134d55d6e1add4d6dd4ba7 20ff2c04f0775cbe77c4951131b098e528a3c7a3 de8179c3f655e953d104dcd280148ab6aa0e93e4abd2203d87efbfdfe4ff46ad
GET /bqEja/qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.jpg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: image/webp
content-length: 12626
cache-control: public, max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=30787
content-disposition: inline; filename="qjLBhmWbGrKOHYQ8Wbt0DHEwS09fclLWrqCk1dHO.webp"
etag: "9441509fe7656321c56e7bb162747dc4"
last-modified: Sun, 21 Jan 2024 07:12:23 GMT
vary: Accept
x-amz-id-2: TRAi3nOzbNEKW+rh3CyTwOPGV5wbqQmHFys5apX589qftKi/lvN0Fet8rW4D1aY2UeQpsl7IL20=
x-amz-request-id: SZZ3H48Y66W1JAAK
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0ecee0930d-CPH
alt-svc: h3=":443"; ma=86400
|
|
| cdn.assets.salla.network/themes/1247874246/1.139.0/app.js | 172.64.145.88 | 200 OK | 45 kB |
URL GET HTTP/3cdn.assets.salla.network/themes/1247874246/1.139.0/app.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash82963e8f2440af51034189b546cf4556 20893a688a9cdc837e2ee2587708d858ef01d237 3268201efec9c8ac3615f191e28f6aa39007f6c312c1d8f3251f1daea9d55e54
GET /themes/1247874246/1.139.0/app.js HTTP/1.1
Host: cdn.assets.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
content-md5: gpY+jyRAr1EDQYm1Rs9FVg==
etag: W/"82963E8F2440AF51034189B546CF4556"
last-modified: Wed, 14 Feb 2024 09:23:13 GMT
x-oss-hash-crc64ecma: 9629519600419922129
x-oss-object-type: Normal
x-oss-request-id: 65F1EE17CA02BA3033E609E9
x-oss-server-time: 44
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 19912
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 875d6b0d1c7192d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hajarwater.sa/cdn-cgi/challenge-platform/h/g/jsd/r/875d6b05bb6b92fe | 104.21.78.86 | 200 OK | 472 B |
URL POST HTTP/3hajarwater.sa/cdn-cgi/challenge-platform/h/g/jsd/r/875d6b05bb6b92fe IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
Hash90253d99c7ddea78c32ca4b953ad9357 2bf969862319fe26384c02de2cb81358878f9c95 afab81099948fe6b3dfa2ded706f3bb19bec8b86e8521b531ca4a733dc3cd065
POST /cdn-cgi/challenge-platform/h/g/jsd/r/875d6b05bb6b92fe HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12319
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=VFx_FYlZUTy7qQaNYTdUu6Vbs.H4dWsZDusKdW327vw-1713367419-1.0.1.1-CCxBzWBkSx6mH8wSfgxMTgXUR9986A397_Jp89yrGBTmyrgeRxer7JyV0m5lzzTP754T96OdAsFj31rmfOKfLA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=Sn5VPDHGDHXmrcG4Px09N2MLKDiu.1M0en.AUjerz1c-1713367426-1.0.1.1-hwzYBefmdMXxz0YPyOWmV6r8CLwvu9Gr1rqbIo89WMoZ1G1KlO6omvC0NLW_2jV0Gg0l_NAp0EtxCBZo.W1GrA; path=/; expires=Thu, 17-Apr-25 15:23:46 GMT; domain=.hajarwater.sa; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0ecc0492fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.assets.salla.network/themes/1247874246/1.139.0/app.css | 104.18.42.168 | 200 OK | 181 kB |
URL GET HTTP/2cdn.assets.salla.network/themes/1247874246/1.139.0/app.css IP104.18.42.168:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeASCII text, with very long lines (65419) Size181 kB (180695 bytes) Hashae22af02f8d1d0fd2f835e0349f7a756 425b530cd1decfbb799641d8923a65006a48f0a6 dcfe3636f0b1444d561c557684f0408ca5c8db528f96a7c38e42c3354b382e41
GET /themes/1247874246/1.139.0/app.css HTTP/1.1
Host: cdn.assets.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: text/css; charset=utf-8
cf-bgj: minify
cf-polished: origSize=513754
content-md5: /grdlopvBgPn6DTwmlo7vA==
last-modified: Wed, 14 Feb 2024 09:23:13 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 3385733500780553981
x-oss-object-type: Normal
x-oss-request-id: 65F1C8E84EB01C35364A2B03
x-oss-server-time: 38
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:45 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
server: cloudflare
cf-ray: 875d6b0b0d6cabde-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/cdn-cgi/rum? | 104.21.78.86 | 204 No Content | 0 B |
URL POST HTTP/3hajarwater.sa/cdn-cgi/rum? IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
content-type: application/json
Content-Length: 6181
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=Sn5VPDHGDHXmrcG4Px09N2MLKDiu.1M0en.AUjerz1c-1713367426-1.0.1.1-hwzYBefmdMXxz0YPyOWmV6r8CLwvu9Gr1rqbIo89WMoZ1G1KlO6omvC0NLW_2jV0Gg0l_NAp0EtxCBZo.W1GrA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Wed, 17 Apr 2024 15:23:46 GMT
access-control-allow-origin: https://hajarwater.sa
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 875d6b105edd92fe-CPH
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE | 104.21.78.86 | 200 OK | 98 kB |
URL User Request POST HTTP/3hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE IP104.21.78.86:443
CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4771) Hash43bd7e9fc73a27a230a4ff35bfc710c3 0ce9837ba461ff9aa9978c61031a8c78d485a17a a00c21c792e0f75fd2825e42141de4177dfdeba5c4efa809bab3b8caf921a321
POST /ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&__cf_chl_tk=HUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855
Content-Type: application/x-www-form-urlencoded
Content-Length: 4646
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,Origin
cache-control: max-age=0, must-revalidate, no-cache, no-store, private
s-session-type: guest
s-ray: 50
s-is-local: false
content-security-policy: frame-ancestors https://s.salla.sa https://mahally.com/ salla.partners
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: allow-from https://s.salla.sa
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
pragma: no-cache
expires: Sun, 02 Jan 1990 00:00:00 GMT
x-envoy-upstream-service-time: 540
cf-cache-status: DYNAMIC
set-cookie: cf_chl_3=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.hajarwater.sa; Secure
cf_clearance=VFx_FYlZUTy7qQaNYTdUu6Vbs.H4dWsZDusKdW327vw-1713367419-1.0.1.1-CCxBzWBkSx6mH8wSfgxMTgXUR9986A397_Jp89yrGBTmyrgeRxer7JyV0m5lzzTP754T96OdAsFj31rmfOKfLA; path=/; expires=Thu, 17-Apr-25 15:23:44 GMT; domain=.hajarwater.sa; HttpOnly; Secure; SameSite=None
XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; expires=Thu, 25 Apr 2024 00:03:45 GMT; Max-Age=636000; path=/; secure
__said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; expires=Thu, 25 Apr 2024 00:03:45 GMT; Max-Age=636000; path=/; secure; httponly
__cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5; SameSite=None; Secure; path=/; expires=Wed, 17-Apr-24 16:23:45 GMT; HttpOnly
strict-transport-security: max-age=15552000; preload
server: cloudflare
cf-ray: 875d6b05bb6b92fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 | 104.16.79.73 | 200 OK | 120 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP104.16.79.73:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typegzip compressed data, from Unix Size120 kB (119682 bytes) Hash9e961080976584a5e12036bab092663d 1e6a656da3a51b6d260d0cd9a127fed156a50c83 7fba065632d49e434f69e78646f16f9b31b9e318c22eba387860de59e216c575
GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Mon, 15 Apr 2024 22:09:58 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b0a6cb29311-CPH
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/cdn-cgi/challenge-platform/h/g/flow/ov1/1266840655:1713363011:YoC03IKC70naZHRI-JwLuq6IO8e2DQVKZrAG8-ukBb8/875d6ae38f5092fe/e3f27f3604ccc19 | 104.21.78.86 | | 37 kB |
URL hajarwater.sa/cdn-cgi/challenge-platform/h/g/flow/ov1/1266840655:1713363011:YoC03IKC70naZHRI-JwLuq6IO8e2DQVKZrAG8-ukBb8/875d6ae38f5092fe/e3f27f3604ccc19 IP104.21.78.86:0
File typeASCII text, with very long lines (16024), with no line terminators Hash4fa91ac5f2e86a21bebb7fede8a282ec 496ef22b0565f396091ccdd30dd395bc03c69560 d6a251e79df19655a04aa13e632288ee21dbbf3f45c6c257eb675b06d3b133d0
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1266840655:1713363011:YoC03IKC70naZHRI-JwLuq6IO8e2DQVKZrAG8-ukBb8/875d6ae38f5092fe/e3f27f3604ccc19 HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
Content-type: application/x-www-form-urlencoded
CF-Challenge: e3f27f3604ccc19
Content-Length: 2109
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:40 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: gkD0OVFyPTBWT9U/TX7vouNuwEEIUnzKM9z1eE7tuvdfyaXzRQw6DGUKU/8ehODD$So22V41Su1OXz/AtLle3mw==
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6ae75f2092fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.assets.salla.network/themes/customization/984717185/1298199463.css?v=1712223172 | 104.18.42.168 | 200 OK | 9.6 kB |
URL GET HTTP/2cdn.assets.salla.network/themes/customization/984717185/1298199463.css?v=1712223172 IP104.18.42.168:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeASCII text, with no line terminators Hashc4d28b8a1469c45508dd0a171927126e 3a990b49c560ed9d7f6729078b8748eb68dc9792 947eb7cdf0167bee61e98a68d9533d7623364806caa120a3b032d20e8d89c0b5
GET /themes/customization/984717185/1298199463.css?v=1712223172 HTTP/1.1
Host: cdn.assets.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1654
content-md5: IglHgb5yfOKP/hFbLQl1YQ==
last-modified: Thu, 04 Apr 2024 09:32:52 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 9010515895807888787
x-oss-object-type: Normal
x-oss-request-id: 660E73C68FF6FF38300A7E5E
x-oss-server-time: 3
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 17917
expires: Thu, 17 Apr 2025 15:23:45 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
server: cloudflare
cf-ray: 875d6b0b0d71abde-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/nmsgg/0x4AAAAAAADnPIDROrmt1Wwj/light/normal | 104.17.2.184 | | 19 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/nmsgg/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP104.17.2.184:0
File typeHTML document, ASCII text, with very long lines (41702) Hashd13d1155b7c029e55fb9d174fee18753 d76c21e3aec4f96542827d7e9c49ed2ef31b6b70 0349aaea395f841015de4d7dc5f8234a51b44510fb5daa322a128d0f886955ac
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/nmsgg/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:40 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 875d6ae8aacb1d22-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.sa/customer_profiles/jCsuO9lERjDjLSQ1vOQLJz9mTBZYzv9eFRkyNEnz.jpg | 172.64.145.121 | 200 OK | 97 kB |
URL GET HTTP/3cdn.salla.sa/customer_profiles/jCsuO9lERjDjLSQ1vOQLJz9mTBZYzv9eFRkyNEnz.jpg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1024x768, Scaling: [none]x[none], YUV color, decoders should clamp Hash5bb06c11443d8184159b9b1ddccfc9d2 3c7aee37937cf486a97733c60c9e2adc2956c1e8 0f3a2726e558d600d16dd32b95dacaf8c85ac364be4a97588efe5c5d9e1a6606
GET /customer_profiles/jCsuO9lERjDjLSQ1vOQLJz9mTBZYzv9eFRkyNEnz.jpg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: image/webp
content-length: 97196
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=561276
content-disposition: inline; filename="jCsuO9lERjDjLSQ1vOQLJz9mTBZYzv9eFRkyNEnz.webp"
etag: "8969288f4245120e7c3870287cce0ff3"
last-modified: Sat, 18 Nov 2023 12:27:24 GMT
vary: Accept
x-amz-id-2: w5/HFhohJE0xTMr1+k3pO1aao30D7djt2h5AMUVqvohcvsT8Nj7B+w8jmYFjCNF1EXlPWkINBOxoCWt7laOgvg==
x-amz-request-id: 9R9DW7W6EH8NFEYW
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b127dae930d-CPH
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.sa/customer_profiles/7aXSd7MxISn21AAc0EyEvFwsm5hB5HBLB4oqAOq3.jpg | 172.64.145.121 | 200 OK | 30 kB |
URL GET HTTP/3cdn.salla.sa/customer_profiles/7aXSd7MxISn21AAc0EyEvFwsm5hB5HBLB4oqAOq3.jpg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1283x1444, Scaling: [none]x[none], YUV color, decoders should clamp Hash8e9acd6732f21f15bcc4ccc1a1191527 cdbfaeaa4a77749fbc739fa9772778388fbf4923 375fbb6efbc607f51cd356be211abb2c7765dc47904d333161ce802c295bdacd
GET /customer_profiles/7aXSd7MxISn21AAc0EyEvFwsm5hB5HBLB4oqAOq3.jpg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: image/webp
content-length: 29508
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=78385
content-disposition: inline; filename="7aXSd7MxISn21AAc0EyEvFwsm5hB5HBLB4oqAOq3.webp"
etag: "e8b2f015029c1d57fdbc85e08ff96244"
last-modified: Tue, 05 Mar 2024 13:07:09 GMT
vary: Accept
x-amz-id-2: vseeJti+ndyh0cjGpYDBmM7NL7INw+warfdTp7asrE1++sXqSYl/qZJCG3JYmoU+hB/0V2HZ3gw=
x-amz-request-id: MRXFRDBZVB7SA7M0
x-amz-server-side-encryption: AES256
x-amz-version-id: null
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b127daf930d-CPH
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.sa/customer_profiles/ZeKnF3XVpdgiAT2n92yBHWip28Wo6rqGOL8EsZzd.jpg | 172.64.145.121 | 200 OK | 26 kB |
URL GET HTTP/3cdn.salla.sa/customer_profiles/ZeKnF3XVpdgiAT2n92yBHWip28Wo6rqGOL8EsZzd.jpg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 734x1024, Scaling: [none]x[none], YUV color, decoders should clamp Hash45cde3b3250e6c460ad375769ffa7642 01662394b88899566c00df18df78404deb3e7e34 e911a32f458cd4624cd65c47df10e79d62baac92bfdf88f57e33a4678aeccb16
GET /customer_profiles/ZeKnF3XVpdgiAT2n92yBHWip28Wo6rqGOL8EsZzd.jpg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: image/webp
content-length: 26416
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=43432
content-disposition: inline; filename="ZeKnF3XVpdgiAT2n92yBHWip28Wo6rqGOL8EsZzd.webp"
etag: "d34e2f7f56a390dedf55dbe0c2711041"
last-modified: Fri, 02 Sep 2022 10:29:51 GMT
vary: Accept
x-amz-id-2: pPk6PWWPbFKxiM6O1zc4VaM0TJqPY44YmUTMLyZTuWlNPwHRmYh3vTCYiNkthEHU1+zekzfBvR4=
x-amz-request-id: 27Y7CR24WCWEHB9W
x-amz-version-id: null
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b127db1930d-CPH
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-9a02f6fd.system.js | 172.64.145.88 | 200 OK | 51 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-9a02f6fd.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (62998) Hash91123e33f6a7ae0fe13533547bebad9e 00ca98a0c45a78108568aca2f98e37b72205e100 4f34079b33b82d3f20b4d46d4be3abb6b5902ae10f29c96ffedae25085165e48
GET /js/twilight/2.13.38/p-9a02f6fd.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=180966
content-md5: YGGz+jiJxqVxo1SehEwQew==
etag: W/"6061B3FA3889C6A571A3549E844C107B"
last-modified: Mon, 15 Apr 2024 10:52:36 GMT
x-oss-hash-crc64ecma: 11323736436217803420
x-oss-object-type: Normal
x-oss-request-id: 661D0A0A0A184B313413B54B
x-oss-server-time: 15
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188003
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b106ac592d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-64707107.system.js | 172.64.145.88 | 200 OK | 26 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-64707107.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (21075) Hash0d96bc36b44386efffd79f6dc18d5d93 389d2439e000bacca39555844e1a56cb3a4ca63b 4954018217ff97ab887cdf9f8304a1b689b7a645e8d93df03c2080a5aecf3599
GET /js/twilight/2.13.38/p-64707107.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=21156
content-md5: JxPPsq+F6t6vlj9QAIK1cA==
etag: W/"2713CFB2AF85EADEAF963F500082B570"
last-modified: Mon, 15 Apr 2024 10:52:33 GMT
x-oss-hash-crc64ecma: 10966849062414754093
x-oss-object-type: Normal
x-oss-request-id: 661D0A0A8DA3F639304CD71F
x-oss-server-time: 27
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188231
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b0f78f792d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-7ff9dda0.system.entry.js | 172.64.145.88 | 200 OK | 112 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-7ff9dda0.system.entry.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (10014) Size112 kB (112165 bytes) Hash458557fa845890ef0c7b82ad9df4dbf1 385168392cdc5f97432a1ce606739d3b75d22265 185f26b4fdb9932a7d002e08dba2cf64abed7ef0b0ca90ebe40612d4d2d01455
GET /js/twilight/2.13.38/p-7ff9dda0.system.entry.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=10147
content-md5: ECbQYdRbZfjFJJFrkHi78w==
etag: W/"1026D061D45B65F8C524916B9078BBF3"
last-modified: Mon, 15 Apr 2024 10:52:34 GMT
x-oss-hash-crc64ecma: 14103877803952633017
x-oss-object-type: Normal
x-oss-request-id: 661D0A0DE477A23239916823
x-oss-server-time: 16
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b126e2792d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hajarwater.sa/cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js | 104.21.78.86 | 200 OK | 113 kB |
URL GET HTTP/3hajarwater.sa/cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
File typeJavaScript source, ASCII text, with very long lines (7813), with no line terminators Size113 kB (113087 bytes) Hashe745143bbdfee2043f87ee5f52c9ad52 a9a43cdd50bb975cf891b7bcaa772d4581e2a3cd d0d98718232fdd851ef207d2bd9eaaebe40814add7dced5271d955ed82729f00
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/54ea73d52131/main.js HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=Sn5VPDHGDHXmrcG4Px09N2MLKDiu.1M0en.AUjerz1c-1713367426-1.0.1.1-hwzYBefmdMXxz0YPyOWmV6r8CLwvu9Gr1rqbIo89WMoZ1G1KlO6omvC0NLW_2jV0Gg0l_NAp0EtxCBZo.W1GrA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
strict-transport-security: max-age=15552000; preload
server: cloudflare
cf-ray: 875d6b108f3c92fe-CPH
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/images/flags.png | 172.64.145.88 | 200 OK | 24 kB |
URL GET HTTP/3cdn.salla.network/images/flags.png IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typePNG image data, 5652 x 15, 8-bit colormap, non-interlaced Hash972925f59d31d286a9fa3344e9abb41e ffe927f23d13dc8a19c31c71681af09746f9f249 a417a3ba4e54f2d7dee2a3460e53c709225610b3d0380c8d34bfeb428fdb9f77
GET /images/flags.png HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: image/webp
content-length: 24403
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=70857
content-disposition: inline; filename="flags.webp"
content-md5: QWJQ9g14Wi4C8X4FTS5ORA==
etag: "416250F60D785A2E02F17E054D2E4E44"
last-modified: Sun, 26 Feb 2023 15:21:01 GMT
vary: Accept
x-oss-hash-crc64ecma: 3720420707071309260
x-oss-object-type: Normal
x-oss-request-id: 659741CB0BF1753932991EA6
x-oss-server-time: 68
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 8919097
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
server: cloudflare
cf-ray: 875d6b158c7492d6-CPH
alt-svc: h3=":443"; ma=86400
|
|
| api.salla.dev/store/v1/products/2093084701/details | 172.64.154.158 | 200 OK | 0 B |
URL GET HTTP/2api.salla.dev/store/v1/products/2093084701/details IP172.64.154.158:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.dev Fingerprint51:C7:BE:CA:34:2A:59:04:D7:35:60:D2:41:49:16:2C:62:66:53:B9 ValiditySat, 16 Mar 2024 00:43:11 GMT - Fri, 14 Jun 2024 00:43:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /store/v1/products/2093084701/details HTTP/1.1
Host: api.salla.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cache-control,currency,s-app-os,s-app-version,s-source,s-user-id,store-identifier,x-requested-with
Referer: https://hajarwater.sa/
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 15:23:47 GMT
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
server: cloudflare
cf-ray: 875d6b15fa8592c1-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/landing?gcd=13l3l3l2l1&dma_cps=sypham&dma=1&npa=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE>m=45He44f0n81NCGHPJSv9105387248za200&auid=2049083373.1713367427 | 142.251.209.132 | 200 OK | 42 B |
URL POST HTTP/2www.google.com/pagead/landing?gcd=13l3l3l2l1&dma_cps=sypham&dma=1&npa=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE>m=45He44f0n81NCGHPJSv9105387248za200&auid=2049083373.1713367427 IP142.251.209.132:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gcd=13l3l3l2l1&dma_cps=sypham&dma=1&npa=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE>m=45He44f0n81NCGHPJSv9105387248za200&auid=2049083373.1713367427 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:23:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.salla.network/js/twilight/2.13.38/p-f3d5458e.system.entry.js | 172.64.145.88 | 200 OK | 3.5 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-f3d5458e.system.entry.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3205) Hash8a08b2b928f6a8775a228c9e5db48f7f 604068a0b0b1105e832fcde625e743d837534c12 4ce6200c22a7fb4b3cfb4fec76452f227b952f4ac921b816bad86f48afa2b871
GET /js/twilight/2.13.38/p-f3d5458e.system.entry.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=3292
content-md5: PFvmZgOl/+izB0aVdIulWw==
etag: W/"3C5BE66603A5FFE8B3074695748BA55B"
last-modified: Mon, 15 Apr 2024 10:52:41 GMT
x-oss-hash-crc64ecma: 4348165020538272073
x-oss-object-type: Normal
x-oss-request-id: 661D0A0F502B6E34352A1BF0
x-oss-server-time: 32
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188001
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b172f9692d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hajarwater.sa/ar/languages/assets/17059063092.js | 104.21.78.86 | 200 OK | 28 kB |
URL GET HTTP/3hajarwater.sa/ar/languages/assets/17059063092.js IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
File typeUnicode text, UTF-8 text, with very long lines (50781), with no line terminators Hash6d6ba2e93493e2d6aa9f3606381ae6f8 8969df3977a16fd28c416cd714aa542a32f0aff3 842a8e82ac1e583b52e5b36a9e66f9627a0531d030225d866e8886317e44c133
GET /ar/languages/assets/17059063092.js HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=Sn5VPDHGDHXmrcG4Px09N2MLKDiu.1M0en.AUjerz1c-1713367426-1.0.1.1-hwzYBefmdMXxz0YPyOWmV6r8CLwvu9Gr1rqbIo89WMoZ1G1KlO6omvC0NLW_2jV0Gg0l_NAp0EtxCBZo.W1GrA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: application/javascript
cf-bgj: minify
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors https://s.salla.sa https://mahally.com/ salla.partners
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
expires: Thu, 17 Apr 2025 15:23:47 GMT
pragma: no-cache
referrer-policy: origin-when-cross-origin
s-is-local: false
s-ray: 50
s-session-type: guest
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-envoy-upstream-service-time: 105
x-frame-options: allow-from https://s.salla.sa
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
last-modified: Thu, 14 Mar 2024 03:53:59 GMT
cf-cache-status: HIT
age: 17919
strict-transport-security: max-age=15552000; preload
server: cloudflare
cf-ray: 875d6b122a1d92fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw | 142.251.209.132 | 302 Found | 42 B |
URL GET HTTP/2www.google.com/pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw IP142.251.209.132:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:23:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/modules/core.BRQnzO8v.js | 172.67.39.148 | 200 OK | 26 kB |
URL GET HTTP/2static.addtoany.com/menu/modules/core.BRQnzO8v.js IP172.67.39.148:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805
GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EwVoLJx7MHtGzuQiig1EenjjtwMnbA5D2w8uys2CcqMASvi26lrgYeO7nvU5a%2Bc%2FxkCQQ7Fw3WnBYdyS7j9ahnjqIiKoCasI6otbgCeJeYsZe58Wm2cJM%2BigIgrkE2K0LOBE5kF%2Fw7fAimK%2BkJRbbaCa"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 17918
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875d6b170f209294-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/cdn-cgi/rum? | 104.21.78.86 | 204 No Content | 6.7 kB |
URL POST HTTP/3hajarwater.sa/cdn-cgi/rum? IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
Hashc25b7b697c371ee1d0111ae923a8a6ed 4fba3fb68b9fdae0918b964b25819c02feef277b a0324fd4876dd548c0ecd71787d83f418459eb71f9c88a62621834b8552b54c1
POST /cdn-cgi/rum? HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&__cf_chl_tk=HUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855
Content-Type: application/json
Content-Length: 396
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=VFx_FYlZUTy7qQaNYTdUu6Vbs.H4dWsZDusKdW327vw-1713367419-1.0.1.1-CCxBzWBkSx6mH8wSfgxMTgXUR9986A397_Jp89yrGBTmyrgeRxer7JyV0m5lzzTP754T96OdAsFj31rmfOKfLA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
server: cloudflare
cf-ray: 875d6b09c9ff92fe-CPH
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| www.googletagmanager.com/gtag/destination?id=AW-10898475421&l=dataLayer&cx=c | 142.250.147.97 | 200 OK | 330 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=AW-10898475421&l=dataLayer&cx=c IP142.250.147.97:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7746) Size330 kB (329948 bytes) Hashe9806e4ea471afe81d817d7927d65bee 700cb9fb33c770acd8abb22cb2e2194ca7838b9e b78b4e22a7b17518d2adc5edb695ab8449a7ffd9a426b0c99571388a8c7d10a0
GET /gtag/destination?id=AW-10898475421&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 15:23:47 GMT
expires: Wed, 17 Apr 2024 15:23:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 109369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.addtoany.com/menu/page.js | 172.67.39.148 | 200 OK | 3.0 kB |
URL GET HTTP/2static.addtoany.com/menu/page.js IP172.67.39.148:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeJavaScript source, ASCII text, with very long lines (3132), with no line terminators Hash40486591ae8ea6d1423aeb13f1fd509b f847af56588642de93c6fe0d2ce182303f312455 16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K9SlRo17%2FEYYEY7TY5VUBa2G0luclF%2Fi9mKP9JIoxaGyg9HDTkx2QKGyXUgtsqVrmCpVypdr9QFZX1ju19YZtHnDUhdiuj6G3zHqk6iKvpR1qlQKK8BqoVYJrA9%2B5qfHIQrYZfty"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 599
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875d6b15cde592ce-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/ar/cart/latest?source= | 104.21.78.86 | 200 OK | 271 B |
URL GET HTTP/3hajarwater.sa/ar/cart/latest?source= IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (305), with no line terminators Hashe33ff43944ea91ab49cd34b1566701ff f225e1cf10b615ea2addb4167d1797e5042e2ffc 462fd5708bde57444119c985241b648f8f2311fa35b0aa51b06b797a32e1f4ee
GET /ar/cart/latest?source= HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: ar
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
X-Requested-With: XMLHttpRequest
S-SOURCE: twilight
S-APP-VERSION: v2.0.0
S-APP-OS: browser
cache-control: no-cache
Store-Identifier: 984717185
currency: SAR
s-user-id: h29AgnGnCakjsilCLYwtk0JMTLBKgNDAqMN8GslV
X-XSRF-TOKEN: eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0=
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=X4Xfi7xUzBp63OzCtiXmgsBwUJwLwsr311buLN25jfU-1713367426-1.0.1.1-Ws6mqpAf.VtCpnYv2du.QluXN53SZUJTd8MYex4cCe6Uu6TkD8_EHByJHPqV3XoHW7BXnU.mHtwvGuR2_QTklw; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5; __ssid=1865a4c0ec8f06d39aebc3ec3c3bebd; _gcl_aw=GCL.1713367427.EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE; _gcl_au=1.1.2049083373.1713367427; _scid=11467dcc-bf63-44cd-bdd5-26926028665a; _scid_r=11467dcc-bf63-44cd-bdd5-26926028665a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: application/json
vary: Accept-Encoding,Origin
cache-control: max-age=0, must-revalidate, no-cache, no-store, private
s-session-type: guest
s-ray: 50
s-is-local: false
content-security-policy: frame-ancestors https://s.salla.sa https://mahally.com/ salla.partners
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: allow-from https://s.salla.sa
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
cross-origin-embedder-policy: unsafe-none
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
pragma: no-cache
expires: Sun, 02 Jan 1990 00:00:00 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IjlKb1lPYmRjNENZRDN6NUZDQ1VmNmc9PSIsInZhbHVlIjoidHRod1FQK1pLK3VJa29uQVhsSGs2MXJzWDcyVG5WeGhUQ1pmcTBINXhNbnJXZWJmNWp1bTBhNVlGbUtuNzl4bWtZZ294UjFoYTVJK2NxOGZaWTQwdC9TMG5vb25BNDdlL08ySHFCREp3UklncXNqdkdUbG50N2lZL3BIN2Q2U3ciLCJtYWMiOiJkYmE0OWI5NmQ5M2U0NGY5ZTk5MDlkYjAxN2JhMjEyOGVkNWJjZTNmN2I1YjdiNGEyNDk4OGEwM2YyZDUzMGYwIiwidGFnIjoiIn0%3D; expires=Thu, 25 Apr 2024 00:03:47 GMT; Max-Age=636000; path=/; secure
__said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; expires=Thu, 25 Apr 2024 00:03:47 GMT; Max-Age=636000; path=/; secure; httponly
x-envoy-upstream-service-time: 90
cf-cache-status: DYNAMIC
strict-transport-security: max-age=15552000; preload
server: cloudflare
cf-ray: 875d6b14de6392fe-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/sm.25.html | 172.67.39.148 | 200 OK | 716 B |
URL GET HTTP/2static.addtoany.com/menu/sm.25.html IP172.67.39.148:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeHTML document, ASCII text, with very long lines (744), with no line terminators Hashc3c97893ca5c74e7504aa4ec474ea41b cdccb12d7e73682e0e807107243ede7d5e14c962 b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zug0GuV8TT18l%2FvMZH%2FJnDeJHp7wf%2B1Y662Hj9%2BLzz2bUcCdNCoPp%2Fh0DEFIQdCRWhP4K%2BoKw%2FRmNo3FmNPd%2Fwhjcq0lNYxvJsnDWqwQO4JO8fVs77yEaENmOQytJ1Ua8d%2FapSMn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 26766
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875d6b167f6392ce-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.salla.network/js/twilight/2.13.38/p-29e5d2bf.system.js | 172.64.145.88 | 200 OK | 3.9 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-29e5d2bf.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3961), with no line terminators Hash59788f1a5e1b0058e338bfeebdbb8e4d 7cd74c1d3d7ca05276bafa7e5f476f96695ecb02 350f7a9a15e76295651286c0e4c267bb0e1890c511b0e40ce53d4a8c04cc6245
GET /js/twilight/2.13.38/p-29e5d2bf.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=3966
content-md5: dG0eMsJmi3QiPiBIz8+WMQ==
etag: W/"746D1E32C2668B74223E2048CFCF9631"
last-modified: Mon, 15 Apr 2024 10:52:30 GMT
x-oss-hash-crc64ecma: 10614086266342607030
x-oss-object-type: Normal
x-oss-request-id: 661D0A0BB3DB4D313031579C
x-oss-server-time: 9
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188229
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b14095992d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NCGHPJS | 142.250.147.97 | 200 OK | 226 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NCGHPJS IP142.250.147.97:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2421) Size226 kB (225458 bytes) Hash639c2790452734b3305f52eb01065cd4 3ee8296a98a18569b43a589097c451ee491a65cf 5dcce2de56ef2c72a4fc45e48084c4b8361527884e8ec53469cf99498ed1bf0b
GET /gtm.js?id=GTM-NCGHPJS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 15:23:46 GMT
expires: Wed, 17 Apr 2024 15:23:46 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81297
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-D75BZ4Y7GQ&l=dataLayer&cx=c | 142.250.147.97 | 200 OK | 330 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-D75BZ4Y7GQ&l=dataLayer&cx=c IP142.250.147.97:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7746) Size330 kB (329946 bytes) Hasha9c6b39aeb7fa8940ea9b0da8281047b 09fcadd701d86a8303299001928e2dfc7ec1f938 70ae62a7588bdbf62109e5bdca20000ea5a54949959c7ea3bc140e12ae3e3e81
GET /gtag/js?id=G-D75BZ4Y7GQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 15:23:47 GMT
expires: Wed, 17 Apr 2024 15:23:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 109359
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.assets.salla.network/themes/1247874246/1.139.0/product-card.js | 172.64.145.88 | 200 OK | 15 kB |
URL GET HTTP/3cdn.assets.salla.network/themes/1247874246/1.139.0/product-card.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/1247874246/1.139.0/product-card.js HTTP/1.1
Host: cdn.assets.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
content-md5: JHDApe9Y3/+6L0ZQn+pD4A==
etag: W/"2470C0A5EF58DFFFBA2F46509FEA43E0"
last-modified: Wed, 14 Feb 2024 09:23:14 GMT
x-oss-hash-crc64ecma: 167400469071572026
x-oss-object-type: Normal
x-oss-request-id: 65FE93208DA3F636388A5E02
x-oss-server-time: 46
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 200803
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 875d6b0d2c8092d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-c4a73e1a.system.js | 172.64.145.88 | 200 OK | 749 B |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-c4a73e1a.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (772), with no line terminators Hashcb6971209d522d4f35644f772ca0fa38 13593e3d65c2e64e39c4ce45351fffe1f37fa5dd 5d2c6cd091b7ff29792209ccf55f1b2805fc44079877d6fde73e015526a774e0
GET /js/twilight/2.13.38/p-c4a73e1a.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=798
content-md5: Siiomn4i7LrXr3tVl7gDxQ==
etag: W/"4A28A89A7E22ECBAD7AF7B5597B803C5"
last-modified: Mon, 15 Apr 2024 10:52:38 GMT
x-oss-hash-crc64ecma: 8091737086324004248
x-oss-object-type: Normal
x-oss-request-id: 661D0A0B8FF6FF3538DA774F
x-oss-server-time: 9
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b14095092d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.sift.com/s.js | 34.96.67.224 | 200 OK | 63 kB |
IP34.96.67.224:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerDigiCert Inc Subject*.sift.com FingerprintD5:90:B8:79:2D:A5:27:A0:32:84:1D:B2:22:B7:01:48:C3:D8:DE:40 ValidityMon, 05 Feb 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1029) Hash8dd54d8d08b99308e1aeb26235297660 8345af1f2c83d282914592ed4b6e27240a0bdd3e 10ec464febb7b92ed105d94da994f32989ff1d0795c0013460b5e2a7769934f2
GET /s.js HTTP/1.1
Host: cdn.sift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPpbROnpZKIyPOAuBXxDjvfmFtzCRSFT4-l_ZSOvKVTPNVCXhyyN03K7_IgO7aD-H_QyVHU
x-goog-generation: 1710750183024543
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20557
content-encoding: gzip
x-goog-hash: crc32c=asYZeQ==, md5=SJxRz6qrueRs3NmAX5y15w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 20557
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Wed, 17 Apr 2024 01:20:15 GMT
expires: Thu, 17 Apr 2025 01:20:15 GMT
cache-control: no-transform
age: 50611
last-modified: Mon, 18 Mar 2024 08:23:03 GMT
etag: "489c51cfaaabb9e46cdcd9805f9cb5e7"
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hajarwater.sa/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js | 104.21.78.86 | 200 OK | 12 kB |
URL GET HTTP/3hajarwater.sa/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
File typeJavaScript source, ASCII text, with very long lines (12331) Hash88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=VFx_FYlZUTy7qQaNYTdUu6Vbs.H4dWsZDusKdW327vw-1713367419-1.0.1.1-CCxBzWBkSx6mH8wSfgxMTgXUR9986A397_Jp89yrGBTmyrgeRxer7JyV0m5lzzTP754T96OdAsFj31rmfOKfLA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 08:31:34 GMT
etag: W/"661ce5e6-302c"
vary: Accept-Encoding
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0a6b3992fe-CPH
x-frame-options: DENY
expires: Fri, 19 Apr 2024 15:23:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| karzoun.app/assets/uploads/karzoun/Widget.js | 104.21.71.188 | 200 OK | 13 kB |
URL GET HTTP/2karzoun.app/assets/uploads/karzoun/Widget.js IP104.21.71.188:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjectkarzoun.app FingerprintD8:2C:A3:89:7A:28:66:12:11:28:6F:13:D6:2D:31:1B:63:2B:96:41 ValiditySun, 07 Apr 2024 05:22:24 GMT - Sat, 06 Jul 2024 05:22:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/uploads/karzoun/Widget.js HTTP/1.1
Host: karzoun.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: application/javascript
last-modified: Sun, 11 Feb 2024 16:19:49 GMT
vary: Accept-Encoding
etag: W/"65c8f3a5-341a"
expires: Wed, 17 Apr 2024 15:27:35 GMT
cache-control: max-age=14400
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 726
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vd1DLdIhjudQ43qJvtQX6h27dmRoHMNVMuNuXyhkEetisdVvxbkk2WjLisZj6KZBNLlgpUbNEYOY3ZmVAahz4LAyLdCTaJoWDAjlOYBROdPjgGkBZz5%2Bgar51bGZ7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875d6b10ba9dabdb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.assets.salla.network/themes/1247874246/1.139.0/product.js | 172.64.145.88 | 200 OK | 52 kB |
URL GET HTTP/3cdn.assets.salla.network/themes/1247874246/1.139.0/product.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/1247874246/1.139.0/product.js HTTP/1.1
Host: cdn.assets.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=52550
content-md5: DyuJXLBHJQebJOXfDzrLWg==
etag: W/"0F2B895CB04725079B24E5DF0F3ACB5A"
last-modified: Wed, 14 Feb 2024 09:23:14 GMT
x-oss-hash-crc64ecma: 2456986315881817899
x-oss-object-type: Normal
x-oss-request-id: 65F1EF508DA3F6383975450F
x-oss-server-time: 47
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 875d6b0d1c6c92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/twilight.js | 172.64.145.88 | 200 OK | 118 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/twilight.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Size118 kB (117969 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/twilight/2.13.38/twilight.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=119608
content-md5: NkZH4sj+gA7CiNv7UDIEfA==
etag: W/"364647E2C8FE800EC288DBFB5032047C"
last-modified: Mon, 15 Apr 2024 10:52:42 GMT
x-oss-hash-crc64ecma: 9332007965415789814
x-oss-object-type: Normal
x-oss-request-id: 661D0A0A601F62363708404C
x-oss-server-time: 55
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188004
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b0d1c7c92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-70434381.system.js | 172.64.145.88 | 200 OK | 1.2 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-70434381.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1189), with no line terminators Hash51d37dc3d41b00f69df784d2ab59cc95 29d9feb165415191d71b622581119d0f3119c592 a02289fc5a80ff002bf46d0ab672e024cf9a6f7d3b09b7e9d61ec21a30b98c06
GET /js/twilight/2.13.38/p-70434381.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=1215
content-md5: ZTaxHsnkdKYT/h3LL4RLMA==
etag: W/"6536B11EC9E474A613FE1DCB2F844B30"
last-modified: Mon, 15 Apr 2024 10:52:33 GMT
x-oss-hash-crc64ecma: 2126950348080336472
x-oss-object-type: Normal
x-oss-request-id: 661D0A0B473B933830EB2A0C
x-oss-server-time: 15
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b13d8aa92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-9beb6b7b.system.js | 172.64.145.88 | 200 OK | 597 B |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-9beb6b7b.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (615), with no line terminators Hash6c818242417b21c3448c00be7a37bc67 442bbd7510993e720e881fdfc4bd72486c73d86c 618683c2336534010c1e151e23c5b3aa62bc31e9792c0c1e8f7aba0a6141dbb6
GET /js/twilight/2.13.38/p-9beb6b7b.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=646
content-md5: zRnP3B8zWmCEFbbFBuemTA==
etag: W/"CD19CFDC1F335A608415B6C506E7A64C"
last-modified: Mon, 15 Apr 2024 10:52:36 GMT
x-oss-hash-crc64ecma: 9235317389354271169
x-oss-object-type: Normal
x-oss-request-id: 661D0A0AB3DB4D313200579C
x-oss-server-time: 2
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188003
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b106ac992d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hajarwater.sa/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 104.21.78.86 | 200 OK | 1.2 kB |
URL GET HTTP/3hajarwater.sa/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP104.21.78.86:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjecthajarwater.sa Fingerprint1B:77:C8:65:98:21:49:F4:C6:4B:DE:AE:3D:0D:D1:B1:51:E3:04:D3 ValidityTue, 26 Mar 2024 04:31:34 GMT - Mon, 24 Jun 2024 04:31:33 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: hajarwater.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=e3f27f3604ccc19; cf_clearance=VFx_FYlZUTy7qQaNYTdUu6Vbs.H4dWsZDusKdW327vw-1713367419-1.0.1.1-CCxBzWBkSx6mH8wSfgxMTgXUR9986A397_Jp89yrGBTmyrgeRxer7JyV0m5lzzTP754T96OdAsFj31rmfOKfLA; XSRF-TOKEN=eyJpdiI6Ik5CNmlkN3B2VjlBNmRmZ0hRNmhPYUE9PSIsInZhbHVlIjoiY2JwQlhGS041YXF2dmhRMjJrQllOUVFtMWRBQmVrd00wRlQ2TU80dnJWcjN6V3EwU1JzcHFUOWd4THdza3pyWnNBWDQwYVZ6V1ZnaXMvdzZnZlhrNHNid1kxT1hBeFQ4S01iM2U5SUhoUmVXRVdBQjhVZkJybVA3dndVRlROSXoiLCJtYWMiOiIxNzg2NTI5YmQwNjEzZTFiYjBkZGFhYjU0YTM3N2Q4YTBlZDRiYTBkZmE0NzA5OWY3NGU3NDZkNWE1NzNmNDU2IiwidGFnIjoiIn0%3D; __said=305q8SrcksNXbvLB0WgYQ1MDCxqXTLUAYWB8sTxH; __cflb=0H28ummakHfPRjxk2XCNRi63AZbK2NeNRw1f7vy9qm5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 08:31:34 GMT
etag: W/"661ce5e6-4d7"
vary: Accept-Encoding
strict-transport-security: max-age=15552000; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0a5b3692fe-CPH
x-frame-options: DENY
expires: Fri, 19 Apr 2024 15:23:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| cdn.salla.network/fonts/lib/dinnext/DINNextLTArabic-Regular.woff2 | 172.64.145.88 | 200 OK | 46 kB |
URL GET HTTP/3cdn.salla.network/fonts/lib/dinnext/DINNextLTArabic-Regular.woff2 IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46332, version 1.0 Hash772caf9156eec37b85dfa51b5deeb7ec b6503e97b3129a5d3c631015d403aa6b9f8008f7 0735844ff930989a11a95e789ea0c0b1ac1f78bc67a7ee533269924520e920b9
GET /fonts/lib/dinnext/DINNextLTArabic-Regular.woff2 HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Referer: https://cdn.salla.network/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: font/woff2
content-length: 46332
x-oss-request-id: 66074CBFB3DB4D31331902DA
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT
access-control-max-age: 0
etag: "772CAF9156EEC37B85DFA51B5DEEB7EC"
last-modified: Sun, 26 Feb 2023 15:20:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6335454659893265736
x-oss-storage-class: Standard
content-md5: dyyvkVbuw3uF36UbXe637A==
x-oss-server-time: 2
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b0d1ccb92a0-CPH
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/pagead/1p-conversion/10898475421/?random=1713367427550&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&oid=2c4d9698c66102e853cc8541dc6387a928459c16&value=199¤cy_code=SAR&bttype=purchase&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 | 142.251.209.132 | 200 OK | 4.4 kB |
URL GET HTTP/2www.google.com/pagead/1p-conversion/10898475421/?random=1713367427550&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&oid=2c4d9698c66102e853cc8541dc6387a928459c16&value=199¤cy_code=SAR&bttype=purchase&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP142.251.209.132:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (4480), with no line terminators Hash2d4345f5700f350d3566932cdbbc5da4 e2eab15fc6cd7bf1d01f355274c5a2d1b2013b9c 8b7efceeffcf9506cf14757779376f3fac114cac0b37d98ff4afe6be3617b3f4
GET /pagead/1p-conversion/10898475421/?random=1713367427550&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&oid=2c4d9698c66102e853cc8541dc6387a928459c16&value=199¤cy_code=SAR&bttype=purchase&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:23:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 2302
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.salla.network/js/twilight/2.13.38/p-9e0b1704.system.js | 172.64.145.88 | 200 OK | 5.9 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-9e0b1704.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (6160), with no line terminators Hash4c747e5863c3d85b224cac894affafa7 d83e69c0294afd5a9a5d8451f0952def597544e1 5615b21385cd66272313911a8307929ca8268a23df07914ef48b965ddfbee980
GET /js/twilight/2.13.38/p-9e0b1704.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=5929
content-md5: T6Rdsvz7ELjV0xTBGoHl4g==
etag: W/"4FA45DB2FCFB10B8D5D314C11A81E5E2"
last-modified: Mon, 15 Apr 2024 10:52:36 GMT
x-oss-hash-crc64ecma: 4043011606689450029
x-oss-object-type: Normal
x-oss-request-id: 661D0A0B0A184B3331C1B54B
x-oss-server-time: 10
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b12ff1c92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/locale/ar.js | 172.67.39.148 | 200 OK | 2.3 kB |
URL GET HTTP/3static.addtoany.com/menu/locale/ar.js IP172.67.39.148:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (2341), with no line terminators Hashe6ce779b62400e580be468ef2cb05375 7e6a4b49f3f600b38c63b1d1f27d5d86570afd94 1db94ccb89cbeb1c66a6aaed20695ffd530576503932d11cc19095382b6b20d3
GET /menu/locale/ar.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
cf-polished: origSize=2478
etag: W/"6a449afdda664ab580cda73ee4b0cb97"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6uErysSrtPKW518dqylzFLiSSIjx3lSnFYm6y0TjszHu22dwp8oMKPa%2B0J7DNHv%2FVj4zU%2BipafoEMk%2BjxbBfJRH%2BmF5MDRioaoC7tsXMcAUYBVAC8Rx%2Fx%2FQ8AoiCZuKexEVSxacLsses01JcUopa%2B%2B9v"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 24279
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875d6b17e92692d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/fonts/lib/sallaicons/sallaicons.ttf?7efpwz | 172.64.145.88 | 200 OK | 272 kB |
URL GET HTTP/3cdn.salla.network/fonts/lib/sallaicons/sallaicons.ttf?7efpwz IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, sallaicons Size272 kB (272280 bytes) Hash0f2acce40c4bdc22dfc7280e67145487 9f42813562105928acbe8c334f6b62840fa6b883 c774d9352c8bb822bf44ff17d4d1f705fc28616f477c7d614697f1e72b603f2d
GET /fonts/lib/sallaicons/sallaicons.ttf?7efpwz HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hajarwater.sa
DNT: 1
Connection: keep-alive
Referer: https://cdn.salla.network/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: font/ttf
x-oss-request-id: 65F284ECCA02BA383661631F
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT
access-control-max-age: 0
etag: W/"0F2ACCE40C4BDC22DFC7280E67145487"
last-modified: Wed, 15 Mar 2023 12:36:35 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4441634929988533513
x-oss-storage-class: Standard
content-md5: DyrM5AxL3CLfxygOZxRUhw==
x-oss-server-time: 2
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b0d1ccc92a0-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/images/appstore.png?v=2.0.3 | 172.64.145.88 | 200 OK | 1.3 kB |
URL GET HTTP/2cdn.salla.network/images/appstore.png?v=2.0.3 IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeRIFF (little-endian) data, Web/P image Hashfb158d49cfde2f7160bcd980e84e6000 3b72ef83e361aa6c344d4ebe6f5f4b01de154830 49352a9c3c1efaeb2f8df16b9c2ce881d4547969d381eda63846eaf9539eb211
GET /images/appstore.png?v=2.0.3 HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: image/webp
content-length: 1332
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1598
content-disposition: inline; filename="appstore.webp"
content-md5: iyp9AdRTemCG+bWtlLaRfA==
etag: "8B2A7D01D4537A6086F9B5AD94B6917C"
last-modified: Sun, 26 Feb 2023 15:21:01 GMT
vary: Accept
x-oss-hash-crc64ecma: 17641185367821270181
x-oss-object-type: Normal
x-oss-request-id: 65E89687E477A23639A63380
x-oss-server-time: 17
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 3473648
expires: Thu, 17 Apr 2025 15:23:45 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
server: cloudflare
cf-ray: 875d6b0b0c2f1d02-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.salla.network/js/twilight/2.13.38/p-0fd2114f.system.entry.js | 172.64.145.88 | 200 OK | 23 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-0fd2114f.system.entry.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/twilight/2.13.38/p-0fd2114f.system.entry.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=22759
content-md5: VzSmBQXnUsoIVt1BJZ7AjQ==
etag: W/"5734A60505E752CA0856DD41259EC08D"
last-modified: Mon, 15 Apr 2024 10:52:28 GMT
x-oss-hash-crc64ecma: 18023432370802921633
x-oss-object-type: Normal
x-oss-request-id: 661D0A0D0BF17537327CBB08
x-oss-server-time: 7
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b126e2592d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-e0f59673.system.entry.js | 172.64.145.88 | 200 OK | 721 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-e0f59673.system.entry.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Size721 kB (721133 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/twilight/2.13.38/p-e0f59673.system.entry.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=721498
content-md5: usYtmIVX24WPcwvyhkG69w==
etag: W/"BAC62D988557DB858F730BF28641BAF7"
last-modified: Mon, 15 Apr 2024 10:52:39 GMT
x-oss-hash-crc64ecma: 1449434052013177885
x-oss-object-type: Normal
x-oss-request-id: 661D0A0B9D2BAF3835C9910A
x-oss-server-time: 22
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b126e2a92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-61858adc.system.js | 172.64.145.88 | 200 OK | 587 B |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-61858adc.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (610), with no line terminators Hash37f8fdad44c8e77791092c96ba4c3adf 088171f725cfa9be75432f7b8fb09dcf545db532 0f3c4604da420411fb58764546686dace0eed6d6cea8038ab8dbbf172e5b7ccc
GET /js/twilight/2.13.38/p-61858adc.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=636
content-md5: F2UDVGlawT1QYUN8TYn1sw==
etag: W/"17650354695AC13D5061437C4D89F5B3"
last-modified: Mon, 15 Apr 2024 10:52:32 GMT
x-oss-hash-crc64ecma: 16019268180728832470
x-oss-object-type: Normal
x-oss-request-id: 661D0A0B0BF17538372EBA08
x-oss-server-time: 2
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b13d8a692d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.no/pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw&ipr=y | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw&ipr=y IP142.250.74.163:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/10898475421/?random=407002368&cv=11&fst=1713367427550&bg=ffffff&guid=ON&async=1>m=45be44f0v870793280z8811065323za201&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&ref=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE%26__cf_chl_tk%3DHUFYvMg3QkApk0qx59hcOqJNiDHXhnI0HD.uMDOBdTY-1713367419-0.0.1.1-1855&label=undefined&hn=www.google.com&frm=0&tiba=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1%D8%A7%D8%AA%D9%8A%D9%86%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7%D8%AC%D8%B1%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20!%20-%20%D9%85%D8%AA%D8%AC%D8%B1%20%D9%85%D9%8A%D8%A7%D9%87%20%D9%87%D8%A7&value=199¤cy_code=SAR&npa=1&gclaw=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&pscdl=noapi&auid=2049083373.1713367427&fdr=SA&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&eoid=ClgKEQjw5v2wBhDZsPyojce1-eYBEkMAdwxEkYpLWVhC5HPOwV1ytU643UPcweEPxI46SFdB-HhbXPP6qmZnRzZAaReowDwnofWz1EvC7TQcbxZSysRqLLwG8P8HAQ&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&eitems=ChEI8Ob9sAYQ2YOUjrn2iOirARIdAKr2w1_jZSzWcUHLvygWPdBjXwSstY5yLsuGaXQ&pscrd=IhMIxs6dh8fJhQMVCImDBx2mUgsZMioIAxoRCAQQqM_U-E0ogICZyfjHhQMaEQgFEKjP1PhNKICAmcn4x4UDKAAyYwgEElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAcSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMICBJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgJElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgHWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjJjCAoSWwo3RUFJYUlRb2JDaE1JdkxIUDdZTEloUU1WeXprR0FCMnVCQUNDRUFBWUFTQUFFZ0pzNmZEX0J3RRgASAdYAGCSzp_mgsiFA2oJCAIQ2AEYJCAHcPiZixK4AQEyAggCMmMIAhJbCjdFQUlhSVFvYkNoTUl2TEhQN1lMSWhRTVZ5emtHQUIydUJBQ0NFQUFZQVNBQUVnSnM2ZkRfQndFGABIB1gAYJLOn-aCyIUDagkIAhDYARgkIAdw-JmLErgBATICCAIyYwgLElsKN0VBSWFJUW9iQ2hNSXZMSFA3WUxJaFFNVnl6a0dBQjJ1QkFDQ0VBQVlBU0FBRWdKczZmRF9Cd0UYAEgEWABgks6f5oLIhQNqCQgCENgBGCQgB3D4mYsSuAEBMgIIAjoWaHR0cHM6Ly9oYWphcndhdGVyLnNhLw&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:23:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| sc-static.net/scevent.min.js | 54.230.82.240 | 200 OK | 46 kB |
URL GET HTTP/2sc-static.net/scevent.min.js IP54.230.82.240:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerAmazon Subjectsc-static.net FingerprintE4:8A:DF:2D:95:33:E5:93:D4:43:8A:14:06:EA:EA:E8:AD:29:20:0F ValidityThu, 21 Dec 2023 00:00:00 GMT - Sat, 18 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (27992) Hash264bae03f1d598bca141e0840046b194 721f3a0714d44e5cb641fc99ad12b955130a88e3 f563aec552103867adcb967e41b1699c9d15e1aa257c7a210f70f5cd71e6a0ef
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 19297
server: CloudFront
date: Wed, 17 Apr 2024 15:23:47 GMT
access-control-allow-headers: Content-Type
access-control-allow-origin: *
content-encoding: gzip
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=38b33afdb36f494aa03f175381ce5c1b;max-age=86400;expires=Thu, 18 Apr 2024 15:23:47 GMT;Path=/scevent.min.js;Secure;SameSite=None
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OAfq_J5paFEoBp7GaNSyWrr2Ju7ghnlmhawK4TVKfgOxO2mx7UmuiA==
X-Firefox-Spdy: h2
|
|
| cdn.salla.sa/bqEja/q1m8UTCfJDEmMEVpkK48G35wKmtpy0zBnbBesa6c.jpeg | 172.64.145.121 | 200 OK | 13 kB |
URL GET HTTP/3cdn.salla.sa/bqEja/q1m8UTCfJDEmMEVpkK48G35wKmtpy0zBnbBesa6c.jpeg IP172.64.145.121:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.sa Fingerprint04:17:BA:18:A2:D7:C1:7B:BE:E4:86:1A:C6:9E:D7:DC:1A:AA:FC:49 ValidityThu, 11 Apr 2024 23:12:41 GMT - Wed, 10 Jul 2024 23:12:40 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 512x449, Scaling: [none]x[none], YUV color, decoders should clamp Hash8512f169970b801f37ef1adfc9a0e863 6fb7a3fa9cb144fd520c8ef6dff1e6d54cf4619c 2f1dab166ccb0d991c8fbc3f5e7339b313be51f51555ade1677528746f0fe923
GET /bqEja/q1m8UTCfJDEmMEVpkK48G35wKmtpy0zBnbBesa6c.jpeg HTTP/1.1
Host: cdn.salla.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: image/webp
content-length: 12646
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=23700
content-disposition: inline; filename="q1m8UTCfJDEmMEVpkK48G35wKmtpy0zBnbBesa6c.webp"
etag: "af0a883d22efa8b5c235924a9cd0777b"
last-modified: Sun, 15 Nov 2020 07:40:59 GMT
vary: Accept
x-amz-id-2: xhed3ssk4kp6vryMXZh9xJMXGAdj3ZMHrgKG7FVGMX9S3+30dbLGiagC7lH3rLoMFO13eRWkjzN9OGUbz8bUcw==
x-amz-request-id: FJJKMQ6ZDADPTQ2K
x-amz-version-id: XeXPayz1vl3CkRjcw5Zs__zaFT__pmly
cf-cache-status: HIT
age: 17918
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 875d6b0ecee6930d-CPH
alt-svc: h3=":443"; ma=86400
|
|
| lavana.sa/assets/360-tool/script.js?ver=1.0.5 | 0.0.0.0 | | 0 B |
URL GET lavana.sa/assets/360-tool/script.js?ver=1.0.5 IP0.0.0.0:0
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/360-tool/script.js?ver=1.0.5 HTTP/1.1
Host: lavana.sa
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TGFC6FV | 142.250.147.97 | 200 OK | 380 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TGFC6FV IP142.250.147.97:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (50286) Size380 kB (380208 bytes) Hashfeb07843b6ff51afd82e374ccb24d0e4 455a6b131846cd412de1c2cfcc4bf354fa8b9856 c6082e0e160d25ec59f07d78497b4571cd2f2d5286582c5845522a0b3f82c0ee
GET /gtm.js?id=GTM-TGFC6FV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 15:23:46 GMT
expires: Wed, 17 Apr 2024 15:23:46 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 112828
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hexagon-analytics.com/images/867290.gif?bk=42e2369b33&tm=53&r=933662707&v=107&cs=UTF-8&h=hajarwater.sa&l=en-US&S=a6cb29b6617c1aeb011f0aa251baf288&uu=1865a4c0ec8f06d39aebc3ec3c3bebd&t=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1&u=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&rf=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=2&mh=63196a00446a1e285d1992cfe444aa55&np=5&ph=332b72bdb211e34e6e3c24f88d7c393b&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=1&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=48&je=false&ss=true&ls=true&in=true&db=false&tl=false&tr=false&ts=false&tb=false&ab=false&cf=94a1dd380ead41f74cf9e46747726693&z=z | 34.102.232.42 | 200 OK | 43 B |
URL GET HTTP/2hexagon-analytics.com/images/867290.gif?bk=42e2369b33&tm=53&r=933662707&v=107&cs=UTF-8&h=hajarwater.sa&l=en-US&S=a6cb29b6617c1aeb011f0aa251baf288&uu=1865a4c0ec8f06d39aebc3ec3c3bebd&t=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1&u=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&rf=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=2&mh=63196a00446a1e285d1992cfe444aa55&np=5&ph=332b72bdb211e34e6e3c24f88d7c393b&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=1&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=48&je=false&ss=true&ls=true&in=true&db=false&tl=false&tr=false&ts=false&tb=false&ab=false&cf=94a1dd380ead41f74cf9e46747726693&z=z IP34.102.232.42:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerDigiCert Inc Subject*.hexagon-analytics.com Fingerprint8F:7B:FF:B2:B1:66:EE:33:99:9A:39:DA:3D:65:EE:E3:16:5B:70:60 ValidityMon, 27 Nov 2023 00:00:00 GMT - Sun, 03 Nov 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /images/867290.gif?bk=42e2369b33&tm=53&r=933662707&v=107&cs=UTF-8&h=hajarwater.sa&l=en-US&S=a6cb29b6617c1aeb011f0aa251baf288&uu=1865a4c0ec8f06d39aebc3ec3c3bebd&t=%D8%A7%D8%AD%D8%B5%D9%84%20%D8%B9%D9%84%D9%89%205%20%D9%83%D8%B1&u=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE&rf=https%3A%2F%2Fhajarwater.sa%2Far%2FBuy10boxesGet5free%2Fp2093084701%3Fgad_source%3D1%26gclid%3DEAIaIQobChMIvLHP7YLIhQMVyzkGAB&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&nm=2&mh=63196a00446a1e285d1992cfe444aa55&np=5&ph=332b72bdb211e34e6e3c24f88d7c393b&sh=1024&sw=1280&cd=24&p=Linux%20x86_64&to=0&d=0&ce=true&dt=1&tp=0&ol=true&pr=Gecko&ps=20100101&vd=&vs=&hc=48&je=false&ss=true&ls=true&in=true&db=false&tl=false&tr=false&ts=false&tb=false&ab=false&cf=94a1dd380ead41f74cf9e46747726693&z=z HTTP/1.1
Host: hexagon-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: image/gif
x-content-type-options: nosniff
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.salla.network/js/swiper@8.js | 172.64.145.88 | 200 OK | 143 kB |
URL GET HTTP/3cdn.salla.network/js/swiper@8.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size143 kB (143404 bytes) Hash2926c6806c78b309d9ab2439d956f473 d8c27ad7db81db83017bfea9175850ed049e7caa ab4f673bef8772cd91e013ccf8afcdd7ed302bb5d9a8c9ad644da61707a23f89
GET /js/swiper@8.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=143706
content-md5: JP2PeWYJ15/Le25a51RDOw==
etag: W/"24FD8F796609D79FCB7B6E5AE754433B"
last-modified: Wed, 07 Jun 2023 07:36:34 GMT
x-oss-hash-crc64ecma: 6345871509132549509
x-oss-object-type: Normal
x-oss-request-id: 6552F22B502B6E3431B3FFB0
x-oss-server-time: 78
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 12571575
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b152b7c92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-8f7b9e36.system.js | 172.64.145.88 | 200 OK | 19 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-8f7b9e36.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/twilight/2.13.38/p-8f7b9e36.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:47 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=19266
content-md5: 2VMk5mRWk9nHus8SsEoKZg==
etag: W/"D95324E6645693D9C7BACF12B04A0A66"
last-modified: Mon, 15 Apr 2024 10:52:35 GMT
x-oss-hash-crc64ecma: 6535007600880589732
x-oss-object-type: Normal
x-oss-request-id: 661D0A0B8DA3F639379ED71F
x-oss-server-time: 15
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b14094292d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/fonts/default.css?v=2.0.3 | 172.64.145.88 | 200 OK | 1.3 kB |
URL GET HTTP/2cdn.salla.network/fonts/default.css?v=2.0.3 IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeASCII text, with very long lines (1316), with no line terminators Hasha917ece473accee1c908989aa9b72229 0c12da5e8d8c0cf7adef83d8de22f3cce8d411b1 4ce09cb46e1ce7b118380ef3e1139f8f63740af64b2c2c829a5802bf9a31e498
GET /fonts/default.css?v=2.0.3 HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 15:23:45 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1305
content-md5: FL5xtXutSOtQbQaLQj6UMQ==
last-modified: Sun, 26 Feb 2023 15:20:56 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 6965165588111879542
x-oss-object-type: Normal
x-oss-request-id: 65683AC48FF6FF30393198AD
x-oss-server-time: 60
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 3469898
expires: Thu, 17 Apr 2025 15:23:45 GMT
cache-control: public, max-age=31536000
server: cloudflare
cf-ray: 875d6b0b1c571d02-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.salla.network/js/twilight/2.13.38/p-a0dabf35.system.js | 172.64.145.88 | 200 OK | 25 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-a0dabf35.system.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/twilight/2.13.38/p-a0dabf35.system.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=24821
content-md5: BWB4ukrTtpIIyV4uDdy8SA==
etag: W/"056078BA4AD3B69208C95E2E0DDCBC48"
last-modified: Mon, 15 Apr 2024 10:52:36 GMT
x-oss-hash-crc64ecma: 16999910235837102607
x-oss-object-type: Normal
x-oss-request-id: 661D0A0A8FF6FF3833A7774F
x-oss-server-time: 10
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188230
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b106abf92d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.salla.network/js/twilight/2.13.38/p-e64a8b4d.system.entry.js | 172.64.145.88 | 200 OK | 3.7 kB |
URL GET HTTP/3cdn.salla.network/js/twilight/2.13.38/p-e64a8b4d.system.entry.js IP172.64.145.88:443
Requested byhttps://hajarwater.sa/ar/Buy10boxesGet5free/p2093084701?gad_source=1&gclid=EAIaIQobChMIvLHP7YLIhQMVyzkGAB2uBACCEAAYASAAEgJs6fD_BwE CertificateIssuerLet's Encrypt Subjectsalla.network Fingerprint9F:D4:F2:0B:F6:EC:17:9E:45:27:98:98:62:5A:6D:76:F8:25:8C:74 ValiditySat, 13 Apr 2024 23:15:43 GMT - Fri, 12 Jul 2024 23:15:42 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3812), with no line terminators Hashc4c0016a001fafe7cb59f599b31295a1 01e214b26a68617d4eda8684bb96b8181256af94 1260acd5e5b68827abb0a7c8beb797c4b03b19870424c2a08bdc6e47c7731f79
GET /js/twilight/2.13.38/p-e64a8b4d.system.entry.js HTTP/1.1
Host: cdn.salla.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hajarwater.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 15:23:46 GMT
content-type: text/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=3767
content-md5: G4PcjyeiSdHqbjkxrWgFPA==
etag: W/"1B83DC8F27A249D1EA6E3931AD68053C"
last-modified: Mon, 15 Apr 2024 10:52:40 GMT
x-oss-hash-crc64ecma: 14627528929426762286
x-oss-object-type: Normal
x-oss-request-id: 661D0A0C0BF175383498BA08
x-oss-server-time: 19
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 188002
expires: Thu, 17 Apr 2025 15:23:46 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 875d6b125e1592d6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|