Content-Type: text/html; charset=utf-8
Set-Cookie: ASP.NET_SessionId=ocw2n35zjevlwz5thzlkm02v; path=/; HttpOnly
HTTP/1.1 200 OK
Server: Microsoft-IIS/8.5
Set-Cookie: _weslaid=7IqVDJxIav7m9pjgSzek2MQIxet5LdoIJrW04wJ7FnI0D7sAODjOtE9UDn0wHpbSudDz0nqbv5hFelbZaivMdYeNMIMUVEjLHFNNYA8vbwVtHjnG09yqx3Uec00tCoridJPQRv3ah2QNgtmjbgPZWg2; expires=Tue, 07-Nov-2017 04:20:20 GMT; path=/; HttpOnly
Cache-Control: private
X-Content-Type-Options: nosniff
Content-Length: 34842
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com ajax.aspnetcdn.com www.google.com www.google-analytics.com maps.google.com maps-api-ssl.google.com *.gstatic.com cdn.scripts.tools;style-src 'self' 'unsafe-inline' *.googleapis.com ajax.aspnetcdn.com www.google.com www.google-analytics.com maps.google.com *.gstatic.com;img-src 'self' *.googleapis.com ajax.aspnetcdn.com www.google.com www.google-analytics.com maps.google.com maps-api-ssl.google.com *.gstatic.com http://lorempixel.com data: blob:;media-src 'self' cdn.wannaspeak.com;frame-src 'self' data: blob: *.youtube.com youtu.be *.youtu.be *.vimeo.com;font-src 'self' *.googleapis.com ajax.aspnetcdn.com www.google.com www.google-analytics.com maps.google.com *.gstatic.com;connect-src 'self';form-action 'self' https://accounts.google.com https://www.google.com https://payment-webinit.simu.mercanet.bnpparibas.net/paymentInit https://payment-webinit.mercanet.bnpparibas.net/paymentInit
X-Frame-Options: SameOrigin
Date: Tue, 07 Nov 2017 03:20:19 GMT
X-XSS-Protection: 1; mode=block