Server | cloudflare-nginx |
Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Pingback | https://www.winhelp.info/xmlrpc.php |
Vary | Accept-Encoding,User-Agent |
X-UA-Compatible | IE=Edge,chrome=1 |
X-FRAME-OPTIONS | SAMEORIGIN |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Content-Security-Policy | default-src 'self' https:; connect-src 'self' *.services.disqus.com https:; font-src 'self' https: data: https://fonts.gstatic.com; frame-src 'self' https: googleads.g.doubleclick.net publisherplugin.google.com disqus.com cdn.taboola.com trc.taboola.com; img-src 'self' https: data: *.gstatic.com www.googleapis.com www.google-analytics.com stats.g.doubleclick.net gravatar.com referrer.discus.com *.discuscdn.com; object-src https: *.gstatic.com pagead2.googlesyndication.com; script-src 'self' https: clients1.google.com www.googleapis.com www.google-analytics.com *.gstatic.com pagead2.googlesyndication.com winhelpus.disqus.com *.disqus.com a.disquscdn.com ajax.cloudflare.com cdn.taboola.com trc.taboola.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: *.addthis.com fonts.googleapis.com *.discuscdn.com 'unsafe-inline' |
X-Permitted-Cross-Domain-Policies | master-only |
Cache-Control | max-age=172800, public, must-revalidate |
X-Geo | varn34.rbx5 |
X-Geo-Port | 2011 |
X-Cacheable | Cacheable |
CF-RAY | 241a20d599a31882-EWR |
Content-Encoding | gzip |