Set-Cookie: PHPSESSID=ues5fsrua4ld3sc1hlbge3er75; path=/
Transfer-Encoding: chunked
Content-Security-Policy: default-src 'self' gsa://onpageload api-maps.yandex.ru mc.yandex.ru www.youtube.com cloud.roistat.com *.criteo.com *.criteo.net *.googleusercontent.com *.googleapis.com *.gstatic.com *.kaspersky-labs.com; connect-src 'self' *.leadhit.ru *.leadhit.io *.onesignal.com onesignal.com mc.yandex.ru *.google-analytics.com *.googleusercontent.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.rawgit.com *.googletagmanager.com *.leadhit.ru *.leadhit.io connect.facebook.net cdn.onesignal.com onesignal.com *.criteo.net *.criteo.com *.doubleclick.net code.jquery.com *.roistat.com mc.yandex.ru yandex.st api-maps.yandex.ru *.doubleclick.net *.api.twitter.com *.facebook.com www.google.ru www.google.com *.google-analytics.com *.googleapis.com *.googleadservices.com maps.google.com *.googleusercontent.com www.ajaxcdn.org; style-src 'self' 'unsafe-inline' *.onesignal.com *.googleapis.com *.kaspersky-labs.com *.roistat.com; img-src 'self' data: *.leadhit.ru *.leadhit.io http://bonkids.ru http://www.reima.fi *.aidata.io www.google.ee www.google.by www.reima.com www.moneta.ru *.facebook.com *.criteo.net *.criteo.com *.wp.com www.gravatar.com www.reima.fi *.roistat.com *.doubleclick.net www.kids-price.ru yandex.ru *.yandex.ru *.yandex.net yastatic.net *.google-analytics.com *.googleadservices.com *.googleapis.com *.yadro.ru *.googleusercontent.com *.gstatic.com www.google.ru www.google.com *.ytimg.com *.roistat.com *.yadro.ru *.yandex.ru *.yandex.net *.ytimg.com; child-src 'self' https://www.facebook.com gsa://onpageload *.criteo.net *.criteo.com *.roistat.com mc.yandex.ru api-maps.yandex.ru awaps.yandex.ru money.yandex.ru *.youtube.com yastatic.net *.googleusercontent.com; font-src 'self' *.leadhit.io; media-src 'self'; object-src 'self'; report-uri https://bonkids.ru/csp/report.php
Date: Tue, 20 Jun 2017 09:48:13 GMT
Connection: keep-alive
HTTP/1.1 200 OK
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Server: nginx
Set-Cookie: cookie_visit=hYB%2BpWWig52GX22fz6C9pw%3D%3D; expires=Thu, 21-Jun-2018 09:48:13 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: cookie_visit=gnadrpiInYWDp6qoyYU%3D; expires=Thu, 21-Jun-2018 09:48:13 GMT
X-XSS-Protection: 1; mode=block
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000
X-Powered-By: PHP/5.4.45