X-Powered-By: PHP/5.4.45-0+deb7u6
Server: nginx
Connection: keep-alive
Pragma: no-cache
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Transfer-Encoding: chunked
Set-Cookie: voltoff_SALE_UID=638739374; expires=Tue, 10-Apr-2018 22:57:26 GMT; path=/; domain=voltoff.ru
Date: Sat, 15 Apr 2017 22:57:26 GMT
HTTP/1.1 200 OK
Keep-Alive: timeout=15
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: text/html; charset=UTF-8
X-Powered-CMS: Bitrix Site Manager (8837baf3fbb0f07bc88cb40c260b4f74)
Content-Security-Policy-Report-Only: default-src 'self' *.voltoff.ru *.yandex.ru *.yandex.net *.googleusercontent.com *.googleapis.com *.gstatic.com yandex.ru; connect-src 'self' yandex.ru *.yandex.ru *.yandex.net *.googleusercontent.com *.google-analytics.com; script-src 'self' yandex.ru *.yandex.ru yandex.st *.ytimg.com *.top100.ru *.lenmit.com *.mail.ru *.doubleclick.net *.yandex.net yastatic.net *.google-analytics.com *.googleapis.com *.google.com *.googleusercontent.com *.googletagmanager.com *.googleadservices.com *.criteo.com *.moxielinks.com code.jquery.com *.dumedia.ru *.admitad.com data: 'unsafe-inline' 'unsafe-eval'; style-src 'self' *.voltoff.ru yandex.ru *.yandex.ru *.yandex.net *.ytimg.com *.googleusercontent.com *.googleapis.com *.opera-mini.net 'unsafe-inline'; img-src 'self' *.voltoff.ru yandex.ru *.yandex.ru yandex.st *.yandex.net *.maps.yandex.net yastatic.net *.mail.ru *.google.ru *.google.by *.google.kz *.google.lv *.google.cz *.google.de *.google.com *.google.com *.google-analytics.com *.googleapis.com *.yadro.ru *.rambler.ru *.googleusercontent.com *.gstatic.com *.doubleclick.net *.mixmarket.biz data: ; frame-src 'self' *.voltoff.ru yandex.ru *.yandex.ru *.youtube.com yastatic.net *.yandex.net *.googleusercontent.com *.google.com *.google.ru *.google.by *.google.de *.google.cz *.doubleclick.net; report-uri /ajax/csp_report.php
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=7ufucn534pa38b44b2752mess6; path=/; domain=voltoff.ru; HttpOnly
X-Frame-Options: SAMEORIGIN