Transfer-Encoding: chunked
Date: Mon, 22 May 2017 18:10:58 GMT
Pragma: no-cache
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Content-Security-Policy: report-uri http://rail-club.ru/csp/collector.php; default-src 'self'; style-src 'self' 'unsafe-inline' http://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://mc.yandex.ru https://mc.yandex.ru https://sba.yandex.net https://yastatic.net/ cdnjs.cloudflare.com http://*.googlesyndication.com https://*.googlesyndication.com http://*.google-analytics.com https://*.google-analytics.com https://ajax.googleapis.com http://ff.kis.scr.kaspersky-labs.com; connect-src 'self' http://*.google-analytics.com https://*.google-analytics.com http://mc.yandex.ru https://mc.yandex.ru sovetnik.market.yandex.ru https://sba.yandex.net yastatic.net; frame-src 'self' https://googleads.g.doubleclick.net http://googleads.g.doubleclick.net awaps.yandex.ru www.youtube.com player.vimeo.com mc.yandex.ru; img-src 'self' *; font-src 'self' 'unsafe-inline' http://fonts.gstatic.com https://fonts.googleapis.com; object-src 'self' http://*.googlesyndication.com https://*.googlesyndication.com
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Server: nginx
HTTP/1.1 200 OK
Set-Cookie: d38c4d0089bfa40b408c93231ae06452=04t52213j6nfnib04cltl5vk73; path=/; HttpOnly
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: http://verkamp.ru
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Connection: keep-alive
Last-Modified: Mon, 22 May 2017 18:10:58 GMT
X-Powered-By: PHP/5.6.30