Connection: keep-alive
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' chromeinvoke: chromeinvokeimmediate: chromenull: data: mx: localhost *.mail.ru *.appsmail.ru *.imgsmail.ru *.mradx.net *.gemius.pl *.weborama.fr *.adriver.ru *.serving-sys.com *.live.com *.youtube.com *.youtube.ru *.youtu.be *.rutube.ru *.vimeo.com *.smotri.com *.dailymotion.com *.rambler.ru *.ivi.ru *.videomore.ru *.google-analytics.com *.googlesyndication.com *.googleapis.com *.gstatic.com *.google.com *.doubleclick.net *.ya.ru ya.ru yandex.ru *.yandex.ru *.odnoklassniki.ru *.ok.ru ok.ru *.scorecardresearch.com vk.com connect.facebook.net *.moatads.com; img-src * data:; connect-src 'self' ws: wss: chromenull: localhost *.mail.ru *.imgsmail.ru an.yandex.ru mc.yandex.ru www.google-analytics.com ssl.google-analytics.com;frame-src 'self' chromenull: data: blob: localhost *.mail.ru *.imgsmail.ru *.mradx.net st.yandexadexchange.net yandexadexchange.net an.yandex.ru mc.yandex.ru awaps.yandex.ru www.google-analytics.com googleads.g.doubleclick.net ssl.google-analytics.com  *.facebook.com vk.com *.vk.com connect.ok.ru; report-uri https://csp.otvet.mail.ru
Content-Security-Policy-Report-Only: style-src 'unsafe-inline' 'unsafe-eval' *.mail.ru *.imgsmail.ru *.mradx.net; font-src data: *.mail.ru *.imgsmail.ru *.mradx.net; report-uri https://csp-report-only.otvet.mail.ru
Content-Type: text/html; charset=UTF-8
Date: Thu, 05 Oct 2017 16:06:37 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: nginx
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block; report=https://xss-report.otvet.mail.ru