1.1. http://ad.amgdgt.com/ads/ [ID cookie]
1.2. http://ad.doubleclick.net/adi/N3285.casalemedia/B2343920.400 [sz parameter]
1.4. http://ad.doubleclick.net/adi/N6543.131803.TURN.COM/B5513576.10 [sz parameter]
1.5. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_eo parameter]
1.7. http://ads2.adbrite.com/v0/ad [zs parameter]
1.8. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [FFChanCap cookie]
1.9. http://imp.fetchback.com/serve/fb/imp [name of an arbitrarily supplied request parameter]
1.10. http://map.media6degrees.com/orbserv/hbjs [rdrlst cookie]
1.11. http://map.media6degrees.com/orbserv/hbpix [User-Agent HTTP header]
1.12. http://metrics.philly.com/b/ss/phillycom/1/H.17/s67586282941047 [REST URL parameter 3]
1.13. http://q1.checkm8.com/adam/detected [JE parameter]
1.14. http://q1.checkm8.com/adam/detected [WIDTH parameter]
1.15. http://q1.checkm8.com/adam/detected [cat parameter]
1.16. http://q1.checkm8.com/adam/detected [req parameter]
1.17. http://tag.contextweb.com/TagPublish/getad.aspx [tl parameter]
1.18. http://tag.contextweb.com/TagPublish/getad.aspx [tl parameter]
1.19. http://tag.contextweb.com/TagPublish/getad.aspx [tz parameter]
1.20. http://tag.contextweb.com/TagPublish/getad.aspx [tz parameter]
1.21. http://tag.contextweb.com/TagPublish/getjs.aspx [REST URL parameter 1]
1.22. http://www.facebook.com/plugins/facepile.php [datr cookie]
1.23. http://www.facebook.com/plugins/likebox.php [datr cookie]
1.24. http://www.facebook.com/plugins/recommendations.php [datr cookie]
1.25. http://www.geek.com/wp-content/themes/geek6/favicon.ico [REST URL parameter 2]
1.26. http://www.geek.com/wp-content/themes/geek6/styles/redesign.css [REST URL parameter 3]
2.1. http://a.tribalfusion.com/j.ad [p parameter]
2.2. http://ar.voicefive.com/bmx3/broker.pli [pid parameter]
2.3. http://data.cmcore.com/imp [ci parameter]
2.4. http://map.media6degrees.com/orbserv/hbjs [vstcnt cookie]
2.5. http://metrics.philly.com/b/ss/phillycom/1/H.17/s67586282941047 [REST URL parameter 1]
2.7. http://www.google.com/uds/GnewsSearch [sig parameter]
3.1. http://ad.doubleclick.net/N6496/adj/gather.com/ [REST URL parameter 1]
3.2. http://ad.doubleclick.net/N6496/adj/gather.com/ [REST URL parameter 2]
3.3. http://ad.doubleclick.net/ad/N3671.277003.NETSHELTER/B5398653.20 [REST URL parameter 1]
3.4. http://ad.doubleclick.net/ad/N4478.netshelter.netOX2611/B5176383.13 [REST URL parameter 1]
3.5. http://ad.doubleclick.net/ad/N5371.131643.MEEBO.COM/B5369958.2 [REST URL parameter 1]
3.6. http://ad.doubleclick.net/ad/huffpost.boomerangpixel/bingmodule [REST URL parameter 1]
3.7. http://ad.doubleclick.net/ad/q1.philly/news [REST URL parameter 1]
3.8. http://ad.doubleclick.net/adi/N1558.CasaleMedia/B4461671.2 [REST URL parameter 1]
3.9. http://ad.doubleclick.net/adi/N3285.casalemedia/B2343920.400 [REST URL parameter 1]
3.10. http://ad.doubleclick.net/adi/N4441.contextweb.com/B5238188.3 [REST URL parameter 1]
3.11. http://ad.doubleclick.net/adi/N6344.126328.SPECIFICMEDIA/B5358490.6 [REST URL parameter 1]
3.12. http://ad.doubleclick.net/adi/N6543.131803.TURN.COM/B5513576.10 [REST URL parameter 1]
3.13. http://ad.doubleclick.net/adi/huffpost.politics/news [REST URL parameter 1]
3.14. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [REST URL parameter 1]
3.15. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [REST URL parameter 1]
3.16. http://ad.doubleclick.net/adj/N3175.128132.INTERCLICK/B4640114.13 [REST URL parameter 1]
3.17. http://ad.doubleclick.net/adj/N3175.272756.AOL-ADVERTISING2/B4640114.5 [REST URL parameter 1]
3.18. http://ad.doubleclick.net/adj/N5776.126265.CASALEMEDIA/B5120103.7 [REST URL parameter 1]
3.19. http://ad.doubleclick.net/adj/contentnext.ilm/paid [REST URL parameter 1]
3.20. http://ad.doubleclick.net/adj/huffpost.politics/longpost [REST URL parameter 1]
3.21. http://ad.doubleclick.net/adj/huffpost.politics/news [REST URL parameter 1]
3.22. http://ad.doubleclick.net/adj/huffpost.politics/news/curtain [REST URL parameter 1]
3.23. http://ad.doubleclick.net/adj/ns.androidcentral/general/archive [REST URL parameter 1]
3.24. http://ad.doubleclick.net/adj/ph.admin/adsense [REST URL parameter 1]
3.25. http://ad.doubleclick.net/adj/ph.admin/register [REST URL parameter 1]
3.26. http://ad.doubleclick.net/adj/ph.mobile/adsense [REST URL parameter 1]
3.27. http://ad.doubleclick.net/adj/ph.news/adsense [REST URL parameter 1]
3.28. http://ad.doubleclick.net/adj/ph.news/nation_world [REST URL parameter 1]
3.29. http://ad.doubleclick.net/adj/q1.philly/news [REST URL parameter 1]
3.30. http://ad.doubleclick.net/adj/zdgeek.dart/geek-cetera [REST URL parameter 1]
3.31. http://ad.doubleclick.net/pfadx/philly_cim/ [dcove parameter]
3.33. http://ad.doubleclick.net/pfadx/philly_cim/ [secure parameter]
3.34. http://amch.questionmarket.com/adscgen/sta.php [code parameter]
3.35. http://amch.questionmarket.com/adscgen/sta.php [site parameter]
3.36. http://bidder.mathtag.com/iframe/notify [exch parameter]
3.37. http://bidder.mathtag.com/notify [exch parameter]
3.38. http://bs.serving-sys.com/BurstingPipe/adServer.bs [flv parameter]
3.39. http://bs.serving-sys.com/BurstingPipe/adServer.bs [res parameter]
3.40. http://bs.serving-sys.com/BurstingPipe/adServer.bs [wmpv parameter]
3.41. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js [$ parameter]
3.42. http://c7.zedo.com/utils/ecSet.js [v parameter]
3.43. http://d.xp1.ru4.com/activity [redirect parameter]
3.44. http://politics.gather.com/js/commenting.js [REST URL parameter 2]
3.45. http://politics.gather.com/js/siteReport.js.jspf [REST URL parameter 2]
3.46. http://politics.gather.com/viewArticle.action [REST URL parameter 1]
3.47. http://tacoda.at.atwola.com/rtx/r.js [N cookie]
3.48. http://tacoda.at.atwola.com/rtx/r.js [si parameter]
4. Cross-site scripting (reflected)
4.1. http://a.collective-media.net/ad/q1.philly/news [REST URL parameter 1]
4.2. http://a.collective-media.net/adj/idgt.slashgear/article_above [REST URL parameter 2]
4.3. http://a.collective-media.net/adj/idgt.slashgear/article_above [REST URL parameter 3]
4.5. http://a.collective-media.net/adj/idgt.slashgear/article_above [sec parameter]
4.6. http://a.collective-media.net/adj/ns.androidcentral/general [REST URL parameter 2]
4.7. http://a.collective-media.net/adj/ns.androidcentral/general [REST URL parameter 3]
4.9. http://a.collective-media.net/adj/ns.androidcentral/general [ppos parameter]
4.10. http://a.collective-media.net/adj/ns.androidcentral/general/archive [REST URL parameter 2]
4.11. http://a.collective-media.net/adj/ns.androidcentral/general/archive [REST URL parameter 3]
4.12. http://a.collective-media.net/adj/ns.androidcentral/general/archive [REST URL parameter 4]
4.14. http://a.collective-media.net/adj/ns.androidcentral/general/archive [ppos parameter]
4.15. http://a.collective-media.net/adj/ns.knowyourmobile/general [REST URL parameter 2]
4.16. http://a.collective-media.net/adj/ns.knowyourmobile/general [REST URL parameter 3]
4.18. http://a.collective-media.net/adj/ns.knowyourmobile/general [ppos parameter]
4.19. http://a.collective-media.net/adj/ns.slashgear/general [REST URL parameter 2]
4.20. http://a.collective-media.net/adj/ns.slashgear/general [REST URL parameter 3]
4.22. http://a.collective-media.net/adj/ns.slashgear/general [ppos parameter]
4.23. http://a.collective-media.net/adj/q1.philly/news [REST URL parameter 2]
4.24. http://a.collective-media.net/adj/q1.philly/news [REST URL parameter 3]
4.26. http://a.collective-media.net/adj/q1.philly/news [sz parameter]
4.27. http://a.collective-media.net/cmadj/idgt.slashgear/article_above [REST URL parameter 1]
4.28. http://a.collective-media.net/cmadj/idgt.slashgear/article_above [REST URL parameter 2]
4.29. http://a.collective-media.net/cmadj/idgt.slashgear/article_above [REST URL parameter 3]
4.30. http://a.collective-media.net/cmadj/idgt.slashgear/article_above [sec parameter]
4.31. http://a.collective-media.net/cmadj/ns.androidcentral/general [REST URL parameter 1]
4.32. http://a.collective-media.net/cmadj/ns.androidcentral/general [REST URL parameter 2]
4.33. http://a.collective-media.net/cmadj/ns.androidcentral/general [REST URL parameter 3]
4.34. http://a.collective-media.net/cmadj/ns.androidcentral/general [ppos parameter]
4.35. http://a.collective-media.net/cmadj/ns.androidcentral/general/archive [REST URL parameter 1]
4.36. http://a.collective-media.net/cmadj/ns.androidcentral/general/archive [REST URL parameter 2]
4.37. http://a.collective-media.net/cmadj/ns.androidcentral/general/archive [REST URL parameter 3]
4.38. http://a.collective-media.net/cmadj/ns.androidcentral/general/archive [REST URL parameter 4]
4.39. http://a.collective-media.net/cmadj/ns.androidcentral/general/archive [ppos parameter]
4.40. http://a.collective-media.net/cmadj/ns.knowyourmobile/general [REST URL parameter 1]
4.41. http://a.collective-media.net/cmadj/ns.knowyourmobile/general [REST URL parameter 2]
4.42. http://a.collective-media.net/cmadj/ns.knowyourmobile/general [REST URL parameter 3]
4.43. http://a.collective-media.net/cmadj/ns.knowyourmobile/general [ppos parameter]
4.44. http://a.collective-media.net/cmadj/ns.slashgear/general [REST URL parameter 1]
4.45. http://a.collective-media.net/cmadj/ns.slashgear/general [REST URL parameter 2]
4.46. http://a.collective-media.net/cmadj/ns.slashgear/general [REST URL parameter 3]
4.47. http://a.collective-media.net/cmadj/ns.slashgear/general [ppos parameter]
4.48. http://a.collective-media.net/cmadj/q1.philly/news [REST URL parameter 1]
4.49. http://a.collective-media.net/cmadj/q1.philly/news [REST URL parameter 2]
4.50. http://a.collective-media.net/cmadj/q1.philly/news [REST URL parameter 3]
4.51. http://a.collective-media.net/cmadj/q1.philly/news [sz parameter]
4.52. http://ad.bnmla.com/serve [cid parameter]
4.53. http://ad.bnmla.com/serve [click parameter]
4.54. http://ad.bnmla.com/serve [click parameter]
4.55. http://ad.bnmla.com/serve [pid parameter]
4.56. http://ad.bnmla.com/serve [zid parameter]
4.57. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [adurl parameter]
4.58. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [ai parameter]
4.59. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [client parameter]
4.60. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [client parameter]
4.61. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [num parameter]
4.62. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [sig parameter]
4.63. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19 [sz parameter]
4.64. http://ad.doubleclick.net/adi/N5371.media6/B5451956.2 [sz parameter]
4.65. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_a parameter]
4.66. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_d parameter]
4.67. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_eo parameter]
4.68. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_et parameter]
4.69. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_o parameter]
4.70. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_pm parameter]
4.71. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_pn parameter]
4.72. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [_s parameter]
4.73. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [redirect parameter]
4.74. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech [sz parameter]
4.75. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_a parameter]
4.76. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_d parameter]
4.77. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_eo parameter]
4.78. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_et parameter]
4.79. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_o parameter]
4.80. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_pm parameter]
4.81. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_pn parameter]
4.82. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [_s parameter]
4.83. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [redirect parameter]
4.84. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest [sz parameter]
4.85. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [_ct parameter]
4.86. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [_ct parameter]
4.87. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [action parameter]
4.88. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [action parameter]
4.89. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [adid parameter]
4.90. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [adid parameter]
4.91. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [publisherid parameter]
4.92. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [publisherid parameter]
4.93. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [sz parameter]
4.94. http://ad.doubleclick.net/adj/N4568.ADCONION/B5119479.6 [sz parameter]
4.95. http://ad.media6degrees.com/adserv/cs [name of an arbitrarily supplied request parameter]
4.96. http://ad.media6degrees.com/adserv/cs [tId parameter]
4.97. http://ad.media6degrees.com/adserv/csst [adType parameter]
4.98. http://ad.media6degrees.com/adserv/csst [adType parameter]
4.99. http://ad.media6degrees.com/adserv/csst [adurl parameter]
4.100. http://ad.media6degrees.com/adserv/csst [adurl parameter]
4.101. http://ad.media6degrees.com/adserv/csst [ai parameter]
4.102. http://ad.media6degrees.com/adserv/csst [ai parameter]
4.103. http://ad.media6degrees.com/adserv/csst [client parameter]
4.104. http://ad.media6degrees.com/adserv/csst [client parameter]
4.105. http://ad.media6degrees.com/adserv/csst [num parameter]
4.106. http://ad.media6degrees.com/adserv/csst [num parameter]
4.107. http://ad.media6degrees.com/adserv/csst [sig parameter]
4.108. http://ad.media6degrees.com/adserv/csst [sig parameter]
4.109. http://ad.turn.com/server/pixel.htm [fpid parameter]
4.110. http://ad.yieldmanager.com/st [name of an arbitrarily supplied request parameter]
4.111. http://ad.yieldmanager.com/st [name of an arbitrarily supplied request parameter]
4.112. http://admeld-match.dotomi.com/admeld/match [admeld_adprovider_id parameter]
4.113. http://admeld-match.dotomi.com/admeld/match [admeld_callback parameter]
4.114. http://admeld.lucidmedia.com/clicksense/admeld/match [admeld_adprovider_id parameter]
4.115. http://admeld.lucidmedia.com/clicksense/admeld/match [admeld_callback parameter]
4.116. http://ads.adbrite.com/adserver/vdi/684339 [REST URL parameter 3]
4.117. http://ads.adbrite.com/adserver/vdi/742697 [REST URL parameter 3]
4.118. http://ads.adbrite.com/adserver/vdi/762701 [REST URL parameter 3]
4.119. http://ads.adsonar.com/adserving/getAds.jsp [pid parameter]
4.120. http://ads.adsonar.com/adserving/getAds.jsp [placementId parameter]
4.121. http://ads.adsonar.com/adserving/getAds.jsp [ps parameter]
4.122. http://ads.specificmedia.com/serve/v=5 [name of an arbitrarily supplied request parameter]
4.123. http://ads.trove.com/RevenuePlatform/ad/pong [&callback parameter]
4.124. http://ads.trove.com/RevenuePlatform/ad/pong [ads%5Brev_ad1%5D%5Bfinder%5D parameter]
4.125. http://ads.trove.com/RevenuePlatform/ad/pong [ads%5Brev_ad2%5D%5Bfinder%5D parameter]
4.126. http://ads.trove.com/RevenuePlatform/ad/pong [url parameter]
4.127. http://ads.tw.adsonar.com/adserving/getAds.jsp [pid parameter]
4.128. http://ads.tw.adsonar.com/adserving/getAds.jsp [placementId parameter]
4.129. http://ads.tw.adsonar.com/adserving/getAds.jsp [ps parameter]
4.130. http://adsfac.us/ag.asp [cc parameter]
4.131. http://api.bizographics.com/v1/profile.redirect [api_key parameter]
4.132. http://api.bizographics.com/v1/profile.redirect [callback_url parameter]
4.133. http://ar.voicefive.com/b/rc.pli [func parameter]
4.134. http://b.scorecardresearch.com/beacon.js [c1 parameter]
4.135. http://b.scorecardresearch.com/beacon.js [c10 parameter]
4.136. http://b.scorecardresearch.com/beacon.js [c15 parameter]
4.137. http://b.scorecardresearch.com/beacon.js [c2 parameter]
4.138. http://b.scorecardresearch.com/beacon.js [c3 parameter]
4.139. http://b.scorecardresearch.com/beacon.js [c4 parameter]
4.140. http://b.scorecardresearch.com/beacon.js [c5 parameter]
4.141. http://b.scorecardresearch.com/beacon.js [c6 parameter]
4.142. http://bid.openx.net/json [c parameter]
4.143. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [$ parameter]
4.144. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [$ parameter]
4.145. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [q parameter]
4.146. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [q parameter]
4.147. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js [$ parameter]
4.148. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js [$ parameter]
4.149. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js [q parameter]
4.150. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js [q parameter]
4.151. http://cdn.shoutlet.com/service/shoutletshare/worker [loc parameter]
4.152. http://cdn4.eyewonder.com/cm/js/10295-119241-10420-6 [mpt parameter]
4.153. http://cdn4.eyewonder.com/cm/js/10295-119241-10420-6 [mpvc parameter]
4.156. http://choices.truste.com/ca [c parameter]
4.157. http://choices.truste.com/ca [h parameter]
4.158. http://choices.truste.com/ca [plc parameter]
4.159. http://choices.truste.com/ca [w parameter]
4.160. http://choices.truste.com/ca [zi parameter]
4.161. http://d.tradex.openx.com/afr.php [cb parameter]
4.162. http://d.tradex.openx.com/afr.php [loc parameter]
4.163. http://d.tradex.openx.com/afr.php [name of an arbitrarily supplied request parameter]
4.164. http://d.tradex.openx.com/afr.php [zoneid parameter]
4.167. http://digg.com/tools/services [REST URL parameter 1]
4.168. http://digg.com/tools/services [REST URL parameter 2]
4.169. http://digg.com/tools/services [callback parameter]
4.170. http://digg.com/tools/services [name of an arbitrarily supplied request parameter]
4.171. http://ds.addthis.com/red/psi/sites/store.androidcentral.com/p.json [callback parameter]
4.172. http://echoapi.washingtonpost.com/v1/count [q parameter]
4.173. http://echoapi.washingtonpost.com/v1/search [q parameter]
4.174. http://event.adxpose.com/event.flow [uid parameter]
4.191. http://geek.us.intellitxt.com/al.asp [jscallback parameter]
4.192. http://geek.us.intellitxt.com/iframescript.jsp [src parameter]
4.194. http://geek.us.intellitxt.com/v4/init [jscallback parameter]
4.195. http://geek.us.intellitxt.com/v4/init [name of an arbitrarily supplied request parameter]
4.196. http://ib.adnxs.com/ab [click parameter]
4.197. http://ib.adnxs.com/ab [cnd parameter]
4.198. http://ib.adnxs.com/ab [custom_macro parameter]
4.199. http://ib.adnxs.com/ab [pixel parameter]
4.200. http://ib.adnxs.com/if [cnd parameter]
4.201. http://id.expressnightout.com/identity/public/visitor.json [jsonp_callback parameter]
4.202. http://id.slate.com/identity/public/visitor.json [jsonp_callback parameter]
4.203. http://id.theroot.com/identity/public/visitor.json [jsonp_callback parameter]
4.204. http://id.trove.com/identity/public/visitor.json [jsonp_callback parameter]
4.205. http://id.washingtonpost.com/identity/public/visitor/create [jsonp_callback parameter]
4.209. http://image3.pubmatic.com/AdServer/UPug [pageURL parameter]
4.210. http://image3.pubmatic.com/AdServer/UPug [ran parameter]
4.215. http://imp.fetchback.com/serve/fb/adtag.js [clicktrack parameter]
4.217. http://imp.fetchback.com/serve/fb/adtag.js [type parameter]
4.218. http://js.revsci.net/gateway/gw.js [csid parameter]
4.219. http://knowyourmobile.uk.intellitxt.com/al.asp [jscallback parameter]
4.221. http://knowyourmobile.uk.intellitxt.com/v4/init [jscallback parameter]
4.223. http://media3.washingtonpost.com/wpost/js/combo [context parameter]
4.224. http://mm.chitika.net/minimall [callback parameter]
4.225. http://pglb.buzzfed.com/10032/5aa834d4bb2efeab1df676685da0518c [callback parameter]
4.226. http://r.turn.com/server/pixel.htm [fpid parameter]
4.227. http://r.turn.com/server/pixel.htm [sp parameter]
4.228. http://s26.sitemeter.com/js/counter.asp [site parameter]
4.229. http://s26.sitemeter.com/js/counter.js [site parameter]
4.231. http://samsungsmarttvs.netshelter.net/fixed_placement.js.php [publisher parameter]
4.233. http://samsungsmarttvs.netshelter.net/video_fixed_placement.js.php [publisher parameter]
4.242. http://seg.sharethis.com/partners.php [partner parameter]
4.243. http://slashphone.us.intellitxt.com/al.asp [jscallback parameter]
4.245. http://slashphone.us.intellitxt.com/v4/init [jscallback parameter]
4.248. http://store.androidcentral.com/cart.htm [REST URL parameter 1]
4.249. http://store.androidcentral.com/content/customercare/index.htm [REST URL parameter 2]
4.250. http://store.androidcentral.com/content/customercare/index.htm [REST URL parameter 3]
4.251. http://store.androidcentral.com/content/customercare/page-shipping.htm [REST URL parameter 2]
4.252. http://store.androidcentral.com/content/customercare/page-shipping.htm [REST URL parameter 3]
4.253. http://store.androidcentral.com/external_marketing/js_a_v1.php [width parameter]
4.255. http://tag.admeld.com/ad/json [callback parameter]
4.256. http://tag.admeld.com/ad/json [container parameter]
4.257. http://tag.admeld.com/ad/json [placement parameter]
4.258. http://tag.admeld.com/ad/json [site_id parameter]
4.259. http://tag.contextweb.com/TagPublish/getjs.aspx [action parameter]
4.260. http://tag.contextweb.com/TagPublish/getjs.aspx [cwadformat parameter]
4.261. http://tag.contextweb.com/TagPublish/getjs.aspx [cwheight parameter]
4.262. http://tag.contextweb.com/TagPublish/getjs.aspx [cwpid parameter]
4.263. http://tag.contextweb.com/TagPublish/getjs.aspx [cwpnet parameter]
4.264. http://tag.contextweb.com/TagPublish/getjs.aspx [cwrun parameter]
4.265. http://tag.contextweb.com/TagPublish/getjs.aspx [cwtagid parameter]
4.266. http://tag.contextweb.com/TagPublish/getjs.aspx [cwwidth parameter]
4.267. http://tap.rubiconproject.com/partner/agent/rubicon/insight.js [&ak parameter]
4.268. http://tap.rubiconproject.com/partner/agent/rubicon/insight.js [as parameter]
4.269. http://tap.rubiconproject.com/partner/agent/rubicon/insight.js [cb parameter]
4.274. http://weathergang.washingtonpost.com/rest/conditions/20001j [jsonp parameter]
4.275. http://widgets.vodpod.com/javascripts/recent_videos.js [id parameter]
4.276. http://widgets.vodpod.com/javascripts/recent_videos.js [options[div_id] parameter]
4.277. http://widgets.vodpod.com/javascripts/recent_videos.js [options[div_id] parameter]
4.278. http://www.gather.com/6360d%3Cimg+src=a+onerror=alert(1)%3E1b6979d15ce [REST URL parameter 1]
4.279. http://www.gather.com/6360d%3Cimg+src=a+onerror=alert(1)%3E1b6979d15ce [REST URL parameter 1]
4.280. http://www.gather.com/6360d%3Cimg+src=a+onerror=alert(1)%3E1b6979d15ce [REST URL parameter 1]
4.281. http://www.gather.com/URI+SYNTAX+EXCEPTION [REST URL parameter 1]
4.282. http://www.gather.com/URI+SYNTAX+EXCEPTION [REST URL parameter 1]
4.283. http://www.gather.com/a [REST URL parameter 1]
4.284. http://www.gather.com/a [REST URL parameter 1]
4.285. http://www.gather.com/favicon.ico [REST URL parameter 1]
4.286. http://www.gather.com/favicon.ico [REST URL parameter 1]
4.287. http://www.gather.com/global_andre.css [REST URL parameter 1]
4.288. http://www.gather.com/global_andre.css [REST URL parameter 1]
4.289. http://www.gather.com/login.action [REST URL parameter 1]
4.290. http://www.gather.com/login.action [REST URL parameter 1]
4.291. http://www.gather.com/login.action [beamBack parameter]
4.292. http://www.gather.com/login.action [beamBack parameter]
4.296. http://www.geek.com/images/phpThumb.php [REST URL parameter 2]
4.297. http://www.geek.com/images/phpThumb.php [name of an arbitrarily supplied request parameter]
4.298. http://www.geek.com/images/phpThumb.php [src parameter]
4.304. http://www.geek.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 1]
4.305. http://www.geek.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 2]
4.306. http://www.geek.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 3]
4.307. http://www.geek.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 4]
4.308. http://www.geek.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 1]
4.309. http://www.geek.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 2]
4.310. http://www.geek.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 3]
4.311. http://www.geek.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 4]
4.312. http://www.geek.com/wp-content/themes/geek6/favicon.ico [REST URL parameter 1]
4.313. http://www.geek.com/wp-content/themes/geek6/favicon.ico [REST URL parameter 2]
4.314. http://www.geek.com/wp-content/themes/geek6/favicon.ico [REST URL parameter 3]
4.315. http://www.geek.com/wp-content/themes/geek6/favicon.ico [REST URL parameter 4]
4.316. http://www.geek.com/wp-content/themes/geek6/style.css [REST URL parameter 1]
4.317. http://www.geek.com/wp-content/themes/geek6/style.css [REST URL parameter 2]
4.318. http://www.geek.com/wp-content/themes/geek6/style.css [REST URL parameter 3]
4.319. http://www.geek.com/wp-content/themes/geek6/style.css [REST URL parameter 4]
4.320. http://www.geek.com/wp-content/themes/geek6/styles/redesign.css [REST URL parameter 1]
4.321. http://www.geek.com/wp-content/themes/geek6/styles/redesign.css [REST URL parameter 2]
4.322. http://www.geek.com/wp-content/themes/geek6/styles/redesign.css [REST URL parameter 3]
4.323. http://www.geek.com/wp-content/themes/geek6/styles/redesign.css [REST URL parameter 4]
4.324. http://www.geek.com/wp-content/themes/geek6/styles/redesign.css [REST URL parameter 5]
4.325. http://www.geek.com/wp-includes/js/jquery/jquery.js [REST URL parameter 1]
4.326. http://www.geek.com/wp-includes/js/jquery/jquery.js [REST URL parameter 2]
4.327. http://www.geek.com/wp-includes/js/jquery/jquery.js [REST URL parameter 3]
4.328. http://www.geek.com/wp-includes/js/jquery/jquery.js [REST URL parameter 4]
4.329. http://www.geek.com/wp-includes/js/l10n.js [REST URL parameter 1]
4.330. http://www.geek.com/wp-includes/js/l10n.js [REST URL parameter 2]
4.331. http://www.geek.com/wp-includes/js/l10n.js [REST URL parameter 3]
4.334. http://www.huffingtonpost.com/ads/check_flights.php [spot parameter]
4.335. http://www.huffingtonpost.com/badge/badges_json_v2.php [cb parameter]
4.336. http://www.huffingtonpost.com/badge/badges_json_v2.php [gn parameter]
4.337. http://www.huffingtonpost.com/badge/badges_json_v2.php [sn parameter]
4.338. http://www.huffingtonpost.com/permalink-tracker.html [vertical parameter]
4.347. http://www.washingtonpost.com//vendor/survey-gizmo.jsp [pollID parameter]
4.348. http://www.washingtonpost.com//vendor/survey-gizmo.jsp [pollURL parameter]
4.358. http://a.collective-media.net/cmadj/idgt.slashgear/article_above [cli cookie]
4.359. http://a.collective-media.net/cmadj/ns.androidcentral/general [cli cookie]
4.360. http://a.collective-media.net/cmadj/ns.androidcentral/general/archive [cli cookie]
4.361. http://a.collective-media.net/cmadj/ns.knowyourmobile/general [cli cookie]
4.362. http://a.collective-media.net/cmadj/ns.slashgear/general [cli cookie]
4.363. http://a.collective-media.net/cmadj/q1.philly/news [cli cookie]
4.364. http://ar.voicefive.com/bmx3/broker.pli [BMX_3PC cookie]
4.365. http://ar.voicefive.com/bmx3/broker.pli [BMX_G cookie]
4.366. http://ar.voicefive.com/bmx3/broker.pli [UID cookie]
4.367. http://ar.voicefive.com/bmx3/broker.pli [ar_p81479006 cookie]
4.368. http://ar.voicefive.com/bmx3/broker.pli [ar_p82806590 cookie]
4.369. http://ar.voicefive.com/bmx3/broker.pli [ar_p84552060 cookie]
4.370. http://ar.voicefive.com/bmx3/broker.pli [ar_p90175839 cookie]
4.371. http://ar.voicefive.com/bmx3/broker.pli [ar_p90452457 cookie]
4.372. http://ar.voicefive.com/bmx3/broker.pli [ar_p91136705 cookie]
4.373. http://ar.voicefive.com/bmx3/broker.pli [ar_p91300630 cookie]
4.374. http://ar.voicefive.com/bmx3/broker.pli [ar_p92429851 cookie]
4.375. http://ar.voicefive.com/bmx3/broker.pli [ar_p97174789 cookie]
4.376. http://ar.voicefive.com/bmx3/broker.pli [ar_s_p81479006 cookie]
4.377. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [ZEDOIDA cookie]
4.378. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js [ZEDOIDA cookie]
4.379. http://optimized-by.rubiconproject.com/a/8430/13646/27091-15.js [ruid cookie]
4.380. http://optimized-by.rubiconproject.com/a/dk.js [ruid cookie]
4.381. http://seg.sharethis.com/getSegment.php [__stid cookie]
4.382. http://seg.sharethis.com/partners.php [__stid cookie]
4.383. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None [meld_sess cookie]
4.384. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None [meld_sess cookie]
4.385. http://tag.admeld.com/ad/iframe/593/tpm/300x250/below_fold [meld_sess cookie]
4.386. http://tag.admeld.com/ad/iframe/593/tpm/300x250/below_fold [meld_sess cookie]
4.387. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/above_fold [meld_sess cookie]
4.388. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/above_fold [meld_sess cookie]
4.389. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/default_criteo [meld_sess cookie]
4.390. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/default_criteo [meld_sess cookie]
4.391. http://tag.admeld.com/ad/iframe/607/salonmedia/300x250/default_criteo [meld_sess cookie]
4.392. http://tag.admeld.com/ad/iframe/607/salonmedia/300x250/default_criteo [meld_sess cookie]
4.393. http://tag.admeld.com/ad/iframe/610/unified/728x90/pmh_657143_29771683 [meld_sess cookie]
4.394. http://tag.admeld.com/ad/iframe/610/unified/728x90/pmh_657143_29771683 [meld_sess cookie]
4.395. http://tag.admeld.com/ad/json [meld_sess cookie]
4.396. http://tag.contextweb.com/TagPublish/getad.aspx [V cookie]
4.397. http://tag.contextweb.com/TagPublish/getad.aspx [cwbh1 cookie]
4.398. http://tag.contextweb.com/TagPublish/getad.aspx [cwbh1 cookie]
5.1. http://a.collective-media.net/crossdomain.xml
5.2. http://a.tribalfusion.com/crossdomain.xml
5.3. http://a1.interclick.com/crossdomain.xml
5.4. http://ad.afy11.net/crossdomain.xml
5.5. http://ad.amgdgt.com/crossdomain.xml
5.6. http://ad.doubleclick.net/crossdomain.xml
5.7. http://ad.media6degrees.com/crossdomain.xml
5.8. http://ad.turn.com/crossdomain.xml
5.9. http://ad.uk.doubleclick.net/crossdomain.xml
5.10. http://ad1.netshelter.net/crossdomain.xml
5.11. http://ad2.netshelter.net/crossdomain.xml
5.12. http://ad4.netshelter.net/crossdomain.xml
5.13. http://ads.pointroll.com/crossdomain.xml
5.14. http://ads.specificmedia.com/crossdomain.xml
5.15. http://adsfac.us/crossdomain.xml
5.16. http://adv.netshelter.net/crossdomain.xml
5.17. http://adx.adnxs.com/crossdomain.xml
5.18. http://afe.specificclick.net/crossdomain.xml
5.19. http://altfarm.mediaplex.com/crossdomain.xml
5.20. http://amch.questionmarket.com/crossdomain.xml
5.21. http://aperture.displaymarketplace.com/crossdomain.xml
5.22. http://api.search.live.net/crossdomain.xml
5.23. http://ar.voicefive.com/crossdomain.xml
5.24. http://as.casalemedia.com/crossdomain.xml
5.25. http://audit.303br.net/crossdomain.xml
5.26. http://b.scorecardresearch.com/crossdomain.xml
5.27. http://b.voicefive.com/crossdomain.xml
5.28. http://bcp.crwdcntrl.net/crossdomain.xml
5.29. http://beacon.videoegg.com/crossdomain.xml
5.30. http://bh.contextweb.com/crossdomain.xml
5.31. http://bs.serving-sys.com/crossdomain.xml
5.32. http://c.betrad.com/crossdomain.xml
5.33. http://c7.zedo.com/crossdomain.xml
5.34. http://cache.specificmedia.com/crossdomain.xml
5.35. http://cas.criteo.com/crossdomain.xml
5.36. http://cdn.eyewonder.com/crossdomain.xml
5.37. http://cdn.turn.com/crossdomain.xml
5.38. http://cdn4.eyewonder.com/crossdomain.xml
5.39. http://cms.quantserve.com/crossdomain.xml
5.40. http://core.videoegg.com/crossdomain.xml
5.41. http://d.tradex.openx.com/crossdomain.xml
5.42. http://d.xp1.ru4.com/crossdomain.xml
5.43. http://dar.youknowbest.com/crossdomain.xml
5.44. http://data.cmcore.com/crossdomain.xml
5.45. http://delivery.uat.247realmedia.com/crossdomain.xml
5.46. http://dg.specificclick.net/crossdomain.xml
5.47. http://dis.ny.us.criteo.com/crossdomain.xml
5.48. http://ds.serving-sys.com/crossdomain.xml
5.49. http://event.adxpose.com/crossdomain.xml
5.50. http://flash.qoof.com/crossdomain.xml
5.51. http://fw.adsafeprotected.com/crossdomain.xml
5.52. http://g-pixel.invitemedia.com/crossdomain.xml
5.53. http://hs.interpolls.com/crossdomain.xml
5.54. http://i.w55c.net/crossdomain.xml
5.55. http://ib.adnxs.com/crossdomain.xml
5.56. http://idcs.interclick.com/crossdomain.xml
5.57. http://idpix.media6degrees.com/crossdomain.xml
5.58. http://img.mediaplex.com/crossdomain.xml
5.59. http://imp.fetchback.com/crossdomain.xml
5.60. http://js.revsci.net/crossdomain.xml
5.61. http://l.betrad.com/crossdomain.xml
5.62. http://load.exelator.com/crossdomain.xml
5.63. http://loadm.exelator.com/crossdomain.xml
5.64. http://log30.doubleverify.com/crossdomain.xml
5.65. http://m.adnxs.com/crossdomain.xml
5.66. http://map.media6degrees.com/crossdomain.xml
5.67. http://media.fastclick.net/crossdomain.xml
5.68. http://metrics.philly.com/crossdomain.xml
5.69. http://metrics.washingtonpost.com/crossdomain.xml
5.70. http://mpd.mxptint.net/crossdomain.xml
5.71. http://o.sa.aol.com/crossdomain.xml
5.72. http://ping.crowdscience.com/crossdomain.xml
5.73. http://pix04.revsci.net/crossdomain.xml
5.74. http://pixel.invitemedia.com/crossdomain.xml
5.75. http://pixel.quantserve.com/crossdomain.xml
5.76. http://puma.vizu.com/crossdomain.xml
5.77. http://q1.checkm8.com/crossdomain.xml
5.78. http://r.turn.com/crossdomain.xml
5.79. http://s.meebocdn.net/crossdomain.xml
5.80. http://s0.2mdn.net/crossdomain.xml
5.81. http://s3.vpimg.net/crossdomain.xml
5.82. http://search.twitter.com/crossdomain.xml
5.83. http://secure-us.imrworldwide.com/crossdomain.xml
5.84. http://segment-pixel.invitemedia.com/crossdomain.xml
5.85. http://segments.adap.tv/crossdomain.xml
5.86. http://speed.pointroll.com/crossdomain.xml
5.87. http://stats.vodpod.com/crossdomain.xml
5.88. http://t.mookie1.com/crossdomain.xml
5.89. http://tags.bluekai.com/crossdomain.xml
5.90. http://track.qoof.com/crossdomain.xml
5.91. http://ttwbs.channelintelligence.com/crossdomain.xml
5.92. http://turn.nexac.com/crossdomain.xml
5.93. http://um.simpli.fi/crossdomain.xml
5.94. http://va.px.invitemedia.com/crossdomain.xml
5.95. http://www.huffingtonpost.com/crossdomain.xml
5.96. http://adadvisor.net/crossdomain.xml
5.97. http://ads.adbrite.com/crossdomain.xml
5.98. http://ads.adsonar.com/crossdomain.xml
5.99. http://ads.tw.adsonar.com/crossdomain.xml
5.100. http://ads2.adbrite.com/crossdomain.xml
5.101. http://adx.g.doubleclick.net/crossdomain.xml
5.102. http://api.tweetmeme.com/crossdomain.xml
5.103. http://bn.xp1.ru4.com/crossdomain.xml
5.104. http://bstats.adbrite.com/crossdomain.xml
5.105. http://cdn.shoutlet.com/crossdomain.xml
5.106. http://cim.meebo.com/crossdomain.xml
5.107. http://cookex.amp.yahoo.com/crossdomain.xml
5.108. http://disqus.com/crossdomain.xml
5.109. http://edge.sharethis.com/crossdomain.xml
5.110. http://feeds.bbci.co.uk/crossdomain.xml
5.111. http://googleads.g.doubleclick.net/crossdomain.xml
5.112. http://media.philly.com/crossdomain.xml
5.113. http://media.washingtonpost.com/crossdomain.xml
5.114. http://media3.washingtonpost.com/crossdomain.xml
5.115. http://media7.washingtonpost.com/crossdomain.xml
5.116. http://mm.chitika.net/crossdomain.xml
5.117. http://newsrss.bbc.co.uk/crossdomain.xml
5.118. http://optimized-by.rubiconproject.com/crossdomain.xml
5.119. http://pagead2.googlesyndication.com/crossdomain.xml
5.120. http://politics.gather.com/crossdomain.xml
5.121. http://pubads.g.doubleclick.net/crossdomain.xml
5.122. http://rd.meebo.com/crossdomain.xml
5.123. http://redux.com/crossdomain.xml
5.124. http://s26.sitemeter.com/crossdomain.xml
5.125. http://static.ak.fbcdn.net/crossdomain.xml
5.126. http://syndication.mmismm.com/crossdomain.xml
5.127. http://this.content.served.by.adshuffle.com/crossdomain.xml
5.128. http://tracking.adjug.com/crossdomain.xml
5.129. http://w.sharethis.com/crossdomain.xml
5.130. http://www.facebook.com/crossdomain.xml
5.131. http://www.gather.com/crossdomain.xml
5.132. http://www.meebo.com/crossdomain.xml
5.133. http://www.philly.com/crossdomain.xml
5.134. http://www.washingtonpost.com/crossdomain.xml
5.135. http://www.youtube.com/crossdomain.xml
5.136. http://api.twitter.com/crossdomain.xml
5.137. http://stats.wordpress.com/crossdomain.xml
5.138. http://talkingpointsmemo.com/crossdomain.xml
5.139. http://ultraedit.app7.hubspot.com/crossdomain.xml
6. Silverlight cross-domain policy
6.1. http://ad.doubleclick.net/clientaccesspolicy.xml
6.2. http://ad.uk.doubleclick.net/clientaccesspolicy.xml
6.3. http://ads.pointroll.com/clientaccesspolicy.xml
6.4. http://api.search.live.net/clientaccesspolicy.xml
6.5. http://b.scorecardresearch.com/clientaccesspolicy.xml
6.6. http://b.voicefive.com/clientaccesspolicy.xml
6.7. http://cdn.eyewonder.com/clientaccesspolicy.xml
6.8. http://metrics.philly.com/clientaccesspolicy.xml
6.9. http://metrics.washingtonpost.com/clientaccesspolicy.xml
6.10. http://o.sa.aol.com/clientaccesspolicy.xml
6.11. http://s0.2mdn.net/clientaccesspolicy.xml
6.12. http://secure-us.imrworldwide.com/clientaccesspolicy.xml
6.13. http://speed.pointroll.com/clientaccesspolicy.xml
6.14. http://stats.wordpress.com/clientaccesspolicy.xml
6.15. http://ts1.mm.bing.net/clientaccesspolicy.xml
6.16. http://ts2.mm.bing.net/clientaccesspolicy.xml
7. Cleartext submission of password
7.1. http://www.gather.com/login.action
7.2. http://www.geek.com/articles/geek-pick/google-music-to-launch-in-beta-at-io-2011-20110510/
7.3. http://www.philly.com/philly/news/nation_world/121548659.html
7.5. http://www.tlsubmit.com/affiliate_signup.html
7.6. http://www.tlsubmit.com/checkout/member.php
7.7. http://www.tlsubmit.com/checkout/signup.php
8.1. http://174.129.88.248/partner.gif [REST URL parameter 1]
8.2. http://forum.androidcentral.com/external.php [type parameter]
8.3. http://id.washingtonpost.com/identity/public/visitor/create [format parameter]
8.4. http://load.exelator.com/load/ [REST URL parameter 1]
8.5. http://loadm.exelator.com/load/ [REST URL parameter 1]
8.6. http://pixel.quantserve.com/api/segments.json [REST URL parameter 1]
8.7. http://pixel.quantserve.com/api/segments.json [REST URL parameter 2]
8.8. http://pixel.quantserve.com/seg/r [REST URL parameter 1]
8.9. http://platform.twitter.com/anywhere.js [REST URL parameter 1]
8.10. http://platform.twitter.com/widgets/tweet_button.html [REST URL parameter 1]
8.11. http://platform.twitter.com/widgets/tweet_button.html [REST URL parameter 2]
8.12. http://platform0.twitter.com/widgets/tweet_button.html [REST URL parameter 1]
8.13. http://platform0.twitter.com/widgets/tweet_button.html [REST URL parameter 2]
8.14. http://s.meebocdn.net/cim/script/cim_v92_cim_11_8_0.en.js [REST URL parameter 1]
8.15. http://s.meebocdn.net/cim/script/cim_v92_cim_11_8_0.en.js [REST URL parameter 2]
8.16. http://s.meebocdn.net/cim/script/cim_v92_cim_11_8_0.en.js [REST URL parameter 3]
8.17. http://s.meebocdn.net/cim/script/sandbox_v92_cim_11_8_0.en.js [REST URL parameter 1]
8.18. http://s.meebocdn.net/cim/script/sandbox_v92_cim_11_8_0.en.js [REST URL parameter 2]
8.19. http://s.meebocdn.net/cim/script/sandbox_v92_cim_11_8_0.en.js [REST URL parameter 3]
8.20. http://s3.vpimg.net/vodpod.com.videos.thumbnail/8045516.large.jpg [REST URL parameter 1]
8.21. http://s3.vpimg.net/vodpod.com.videos.thumbnail/8045516.large.jpg [REST URL parameter 2]
8.22. http://w55c.net/ct/cms-2-frame.html [REST URL parameter 1]
8.23. http://w55c.net/ct/cms-2-frame.html [REST URL parameter 2]
8.24. http://www.washingtonpost.com//vendor/survey-gizmo.jsp [REST URL parameter 1]
9. SSL cookie without secure flag set
9.1. https://secure.smartphoneexperts.com/content/customercare/page-status.htm
9.2. https://support.ccbill.com/
10.1. http://api.echoenabled.com/v1/users/whoami
10.2. http://l.sharethis.com/pview
10.3. http://www.facebook.com/extern/login_status.php
11.1. http://ad.trafficmp.com/a/bpix [r parameter]
11.2. http://b.scorecardresearch.com/r [d.c parameter]
11.3. http://bh.contextweb.com/bh/rtset [rurl parameter]
11.4. http://bs.serving-sys.com/BurstingPipe/adServer.bs [ru parameter]
11.5. http://cmap.am.ace.advertising.com/amcm.ashx [admeld_callback parameter]
11.6. http://d.xp1.ru4.com/activity [redirect parameter]
11.9. http://i.w55c.net/ping_match.gif [rurl parameter]
11.10. http://sync.mathtag.com/sync/img [redir parameter]
11.11. http://tag.admeld.com/id [redirect parameter]
11.12. http://tags.bluekai.com/site/3561 [redir parameter]
11.13. http://xcdn.xgraph.net/17572/ae/xg.gif [n parameter]
12. Cookie scoped to parent domain
12.1. http://api.twitter.com/1/statuses/user_timeline.json
12.2. http://contentnext.disqus.com/thread.js
12.3. http://id.trove.com/identity/public/visitor.json
12.4. http://letters.salon.com/politics/war_room/2011/05/09/santorum_loser/view/
12.5. http://politics.gather.com/viewArticle.action
12.6. http://slashgeardotcom.disqus.com/thread.js
12.7. http://t.mookie1.com/t/v1/imp
12.8. http://ttwbs.channelintelligence.com/
12.9. http://www.gather.com/6360d%3Cimg%20src%3da%20onerror%3dalert(1)%3E1b6979d15ce
12.10. http://www.tlsubmit.com/checkout/signup.php
12.11. http://a.tribalfusion.com/displayAd.js
12.12. http://a.tribalfusion.com/j.ad
12.13. http://action.mathtag.com/mm/rtb/COFC/1008A2/imp
12.14. http://action.mathtag.com/mm/rtb/TREE/1101A0/imp
12.16. http://ad.amgdgt.com/ads/
12.17. http://ad.bnmla.com/serve
12.18. http://ad.media6degrees.com/adserv/cs
12.19. http://ad.media6degrees.com/adserv/csst
12.20. http://ad.trafficmp.com/a/bpix
12.21. http://ad.trafficmp.com/a/bpix
12.22. http://ad.trafficmp.com/a/js
12.23. http://ad.turn.com/server/ads.js
12.24. http://ad.turn.com/server/pixel.htm
12.25. http://admeld.lucidmedia.com/clicksense/admeld/match
12.26. http://ads.adbrite.com/adserver/behavioral-data/8203
12.27. http://ads.adbrite.com/adserver/vdi/684339
12.28. http://ads.adbrite.com/adserver/vdi/742697
12.29. http://ads.adbrite.com/adserver/vdi/762701
12.30. http://ads.adbrite.com/adserver/vdi/762701
12.31. http://ads.pointroll.com/PortalServe/
12.32. http://ads.revsci.net/adserver/ako
12.33. http://ads.revsci.net/adserver/ako
12.34. http://ads.revsci.net/adserver/ako
12.35. http://ads.revsci.net/adserver/ako
12.36. http://ads.revsci.net/adserver/ako
12.37. http://ads.revsci.net/adserver/ako
12.38. http://ads.revsci.net/adserver/ako
12.39. http://ads.revsci.net/adserver/ako
12.40. http://ads.shorttail.net/cgi-bin/ads/ad20135bg.cgi/v=2.3S/sz=1x1A/90673/NF/RETURN-CODE/JS/
12.41. http://ads.specificmedia.com/serve/v=5
12.42. http://ads2.adbrite.com/v0/ad
12.43. http://adx.adnxs.com/mapuid
12.44. http://afe.specificclick.net/
12.45. http://ak1.abmr.net/is/tag.admeld.com
12.46. http://ak1.abmr.net/is/tag.contextweb.com
12.47. http://altfarm.mediaplex.com/ad/bn/17550-128038-2754-3
12.48. http://altfarm.mediaplex.com/ad/fm/13305-124472-22136-1
12.49. http://amch.questionmarket.com/adsc/d887938/36/500004878102/adscout.php
12.50. http://api.bizographics.com/v1/profile.redirect
12.51. http://api.viglink.com/api/ping
12.52. http://ar.voicefive.com/b/wc_beacon.pli
12.53. http://ar.voicefive.com/bmx3/broker.pli
12.54. http://ar.voicefive.com/bmx3/broker.pli
12.55. http://as.casalemedia.com/j
12.56. http://as.casalemedia.com/j
12.57. http://as.casalemedia.com/s
12.58. http://b.scorecardresearch.com/b
12.59. http://b.scorecardresearch.com/p
12.60. http://b.scorecardresearch.com/r
12.61. http://b.voicefive.com/b
12.62. http://bcp.crwdcntrl.net/4/c=368|rand=317175907|genp=na
12.63. http://bcp.crwdcntrl.net/4/c=402%7Crand=271498847%7Cpv=y%7Casync=y%7Crt=ifr
12.64. http://bcp.crwdcntrl.net/4/c=402|rand=214441500|pv=y|async=y|rt=ifr
12.65. http://bcp.crwdcntrl.net/4/c=402|rand=286689202|pv=y|async=y|rt=ifr
12.66. http://bcp.crwdcntrl.net/4/c=402|rand=300411654|pv=y|async=y|rt=ifr
12.67. http://bcp.crwdcntrl.net/4/c=402|rand=344848627|pv=y|async=y|rt=ifr
12.68. http://bcp.crwdcntrl.net/4/c=402|rand=690730866|pv=y|async=y|rt=ifr
12.69. http://bcp.crwdcntrl.net/4/c=402|rand=827443052|pv=y|async=y|rt=ifr
12.70. http://bcp.crwdcntrl.net/4/c=402|rand=908408442|pv=y|async=y|rt=ifr
12.71. http://bh.contextweb.com/bh/rtset
12.72. http://bid.openx.net/json
12.73. http://bs.serving-sys.com/BurstingPipe/adServer.bs
12.74. http://bstats.adbrite.com/adserver/behavioral-data/0
12.75. http://bstats.adbrite.com/click/bstats.gif
12.76. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
12.77. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js
12.78. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js
12.79. http://c7.zedo.com/utils/ecSet.js
12.80. http://cas.criteo.com/delivery/admeld_map
12.81. http://cas.criteo.com/delivery/ajs.php
12.82. http://cdn4.eyewonder.com/cm/js/10295-119241-10420-6
12.83. http://cms.ad.yieldmanager.net/v1/cms
12.84. http://cms.quantserve.com/dpixel
12.85. http://cw-m.d.chango.com/m/cw
12.86. http://d.audienceiq.com/r/dm/mkt/44/mpid//mpuid/3658195966029417970
12.87. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/2931142961646634775/mchpid/4/url/
12.88. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/3658195966029417970
12.89. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/3658195966029417970/mchpid/4/url/
12.90. http://d.mediabrandsww.com/r/dm/mkt/3/mpid//mpuid/3658195966029417970
12.91. http://d.p-td.com/r/dm/mkt/4/mpid//mpuid/3658195966029417970
12.93. http://data.adsrvr.org/map/cookie/contextweb
12.94. http://dis.ny.us.criteo.com/dis/dis.aspx
12.95. http://forum.androidcentral.com/external.php
12.96. http://g-pixel.invitemedia.com/gmatcher
12.97. http://gather.us.intellitxt.com/intellitxt/front.asp
12.98. http://geek.us.intellitxt.com/intellitxt/front.asp
12.99. http://i.simpli.fi/dpx.js
12.100. http://i.w55c.net/ping_match.gif
12.101. http://ib.adnxs.com/ab
12.102. http://ib.adnxs.com/getuid
12.103. http://ib.adnxs.com/if
12.104. http://ib.adnxs.com/mapuid
12.105. http://ib.adnxs.com/pxj
12.106. http://ib.adnxs.com/seg
12.107. http://id.washingtonpost.com/identity/public/visitor/ip_address.json
12.108. http://idcs.interclick.com/Segment.aspx
12.109. http://idpix.media6degrees.com/orbserv/hbpix
12.110. http://image2.pubmatic.com/AdServer/Pug
12.111. http://imp.fetchback.com/serve/fb/adtag.js
12.112. http://imp.fetchback.com/serve/fb/imp
12.114. http://knowyourmobile.uk.intellitxt.com/al.asp
12.115. http://knowyourmobile.uk.intellitxt.com/intellitxt/front.asp
12.116. http://knowyourmobile.uk.intellitxt.com/v4/init
12.117. http://l.sharethis.com/pview
12.118. http://leadback.advertising.com/adcedge/lb
12.119. http://load.exelator.com/load/
12.120. http://loadm.exelator.com/load/
12.121. http://m.adnxs.com/msftcookiehandler
12.122. http://map.media6degrees.com/orbserv/hbjs
12.123. http://map.media6degrees.com/orbserv/hbpix
12.124. http://media.fastclick.net/w/tre
12.125. http://metrics.philly.com/b/ss/phillycom/1/H.17/s66140788192520
12.126. http://metrics.philly.com/b/ss/phillycom/1/H.17/s67586282941047
12.127. http://optimized-by.rubiconproject.com/a/8430/13646/27091-15.img
12.128. http://optimized-by.rubiconproject.com/a/8430/13646/27091-15.js
12.129. http://optimized-by.rubiconproject.com/a/8430/13646/27091-2.img
12.130. http://optimized-by.rubiconproject.com/a/8430/13646/27091-2.js
12.131. http://optimized-by.rubiconproject.com/a/dk.js
12.132. http://osmdcs.interclick.com/pixelChecked.aspx
12.133. http://p.brilig.com/contact/bct
12.134. http://pc2.yumenetworks.com/dynamic_btx/115_89795
12.135. http://ping.crowdscience.com/ping.js
12.136. http://pix04.revsci.net/J05531/b3/0/3/0902121/684510010.js
12.137. http://pix04.revsci.net/J09847/b3/0/3/0902121/181431347.js
12.138. http://pix04.revsci.net/J09847/b3/0/3/0902121/629948657.js
12.139. http://pix04.revsci.net/J09847/b3/0/3/0902121/64913653.js
12.140. http://pix04.revsci.net/J09847/b3/0/3/0902121/700534142.js
12.141. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
12.142. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
12.143. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
12.144. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
12.145. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
12.146. http://pixel.intellitxt.com/pixel.jsp
12.147. http://pixel.quantserve.com/api/segments.json
12.148. http://pixel.quantserve.com/pixel
12.149. http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif
12.150. http://pixel.quantserve.com/pixel/p-61YFdB4e9hBRs.gif
12.151. http://pixel.rubiconproject.com/tap.php
12.152. http://pixel.rubiconproject.com/tap.php
12.153. http://pts.eyewonder.com/ewr
12.154. http://r.openx.net/set
12.155. http://r.turn.com/r/bd
12.156. http://r.turn.com/r/du/id/L21rdC8xL21jaHBpZC80/rnd/999
12.157. http://r.turn.com/r/du/id/L21rdC8xL21jaHBpZC85/rnd/8Ac90
12.158. http://r.turn.com/server/pixel.htm
12.164. http://segment-pixel.invitemedia.com/pixel
12.165. http://segments.adap.tv/data/
12.166. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6544154
12.167. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6544431
12.168. http://slashphone.us.intellitxt.com/intellitxt/front.asp
12.169. http://slashphone.us.intellitxt.com/v4/init
12.170. http://sync.mathtag.com/sync/img
12.171. http://syndication.mmismm.com/tntwo.php
12.172. http://t.invitemedia.com/track_imp
12.173. http://tacoda.at.atwola.com/rtx/r.js
12.174. http://tag.contextweb.com/TagPublish/getad.aspx
12.175. http://tag.contextweb.com/TagPublish/getad.aspx
12.176. http://tag.contextweb.com/TagPublish/getjs.aspx
12.177. http://tags.bluekai.com/site/2554
12.178. http://tags.bluekai.com/site/3200
12.179. http://tags.bluekai.com/site/3358
12.180. http://tags.bluekai.com/site/353
12.181. http://tags.bluekai.com/site/3561
12.182. http://tap.rubiconproject.com/partner/agent/rubicon/insight.js
12.185. http://tracking.adjug.com/AdJugTracking/Tracker.aspx
12.186. http://tracking.skyword.com/tracker.gif
12.187. http://trgc.opt.fimserve.com/fp.gif
12.188. http://trgca.opt.fimserve.com/fp.gif
12.189. http://va.px.invitemedia.com/adnxs_imp
12.190. http://va.px.invitemedia.com/goog_imp
12.191. http://www.facebook.com/brandlift.php
12.192. http://www.gather.com/6360d%3Cimg+src=a+onerror=alert(1)%3E1b6979d15ce
12.193. http://www.knowyourmobile.com/auth/status.php
12.194. http://www.youtube.com/embed/Iev7TKsXoHo
13. Cookie without HttpOnly flag set
13.1. http://ads.adxpose.com/ads/ads.js
13.2. http://adv.netshelter.net/advlogging/impression.php
13.3. http://api.adsme.com/api/js/rss/adsme.js
13.4. http://api.joliprint.com/api/img/paidcontent.org/adsme_btn_default.png
13.5. http://api.joliprint.com/res/joliprint/img/buttons/default/joliprint_btn_blank.gif
13.6. http://chat.livechatinc.net/licence/1051282/script.cgi
13.7. http://contentnext.disqus.com/thread.js
13.8. http://dg.specificclick.net/
13.9. http://event.adxpose.com/event.flow
13.10. http://fw.adsafeprotected.com/rjss/bs.serving-sys.com/9349/83990/BurstingPipe/adServer.bs
13.11. http://id.expressnightout.com/identity/public/visitor.json
13.12. http://id.slate.com/identity/public/visitor.json
13.13. http://id.theroot.com/identity/public/visitor.json
13.14. http://id.trove.com/identity/public/visitor.json
13.15. http://letters.salon.com/politics/war_room/2011/05/09/santorum_loser/view/
13.16. http://map.media6degrees.com/orbserv/hbjs
13.17. http://moconews.net/article/419-nfc-in-focus-at-google-io-as-foursquare-hashable-join-party/
13.18. http://politics.gather.com/viewArticle.action
13.19. http://probitaspartners.com/
13.20. http://s.clickability.com/s
13.21. http://slashgeardotcom.disqus.com/thread.js
13.22. http://t.mookie1.com/t/v1/imp
13.23. http://tracking.skyword.com/tracker.gif
13.24. http://ttwbs.channelintelligence.com/
13.25. http://www.amconmag.com/favicon.ico
13.26. http://www.androidcentral.com/android-central-google-io-2011
13.27. http://www.gather.com/6360d%3Cimg%20src%3da%20onerror%3dalert(1)%3E1b6979d15ce
13.28. http://www.ricksantorum.com/
13.29. http://www.smartphoneexperts.com/
13.30. http://www.symbiosting.com/LogicBuy/geek/content-syndicate.php
13.31. http://www.tlsubmit.com/checkout/signup.php
13.32. http://a.tribalfusion.com/displayAd.js
13.33. http://a.tribalfusion.com/j.ad
13.34. http://a1.interclick.com/getInPageJSProcess.aspx
13.35. http://a1.interclick.com/getInPageJSProcess.aspx
13.36. http://action.mathtag.com/mm/rtb/COFC/1008A2/imp
13.37. http://action.mathtag.com/mm/rtb/TREE/1101A0/imp
13.39. http://ad.amgdgt.com/ads/
13.40. http://ad.bnmla.com/serve
13.41. http://ad.media6degrees.com/adserv/cs
13.42. http://ad.media6degrees.com/adserv/csst
13.43. http://ad.trafficmp.com/a/bpix
13.44. http://ad.trafficmp.com/a/bpix
13.45. http://ad.trafficmp.com/a/js
13.46. http://ad.turn.com/server/ads.js
13.47. http://ad.turn.com/server/pixel.htm
13.48. http://ad.yieldmanager.com/imp
13.49. http://ad.yieldmanager.com/pixel
13.50. http://ad.yieldmanager.com/pixel
13.51. http://admeld.lucidmedia.com/clicksense/admeld/match
13.52. http://ads.adbrite.com/adserver/behavioral-data/8203
13.53. http://ads.adbrite.com/adserver/vdi/684339
13.54. http://ads.adbrite.com/adserver/vdi/742697
13.55. http://ads.adbrite.com/adserver/vdi/762701
13.56. http://ads.adbrite.com/adserver/vdi/762701
13.57. http://ads.pointroll.com/PortalServe/
13.58. http://ads.revsci.net/adserver/ako
13.59. http://ads.revsci.net/adserver/ako
13.60. http://ads.revsci.net/adserver/ako
13.61. http://ads.revsci.net/adserver/ako
13.62. http://ads.revsci.net/adserver/ako
13.63. http://ads.revsci.net/adserver/ako
13.64. http://ads.revsci.net/adserver/ako
13.65. http://ads.revsci.net/adserver/ako
13.66. http://ads.shorttail.net/cgi-bin/ads/ad20135bg.cgi/v=2.3S/sz=1x1A/90673/NF/RETURN-CODE/JS/
13.67. http://ads.specificmedia.com/serve/v=5
13.68. http://ads2.adbrite.com/v0/ad
13.69. http://adsfac.us/ag.asp
13.70. http://adsfac.us/ag.asp
13.71. http://adsfac.us/ag.asp
13.72. http://adv.netshelter.net/context_keywords/k_log.php
13.73. http://afe.specificclick.net/
13.74. http://ak1.abmr.net/is/tag.admeld.com
13.75. http://ak1.abmr.net/is/tag.contextweb.com
13.76. http://altfarm.mediaplex.com/ad/bn/17550-128038-2754-3
13.77. http://altfarm.mediaplex.com/ad/fm/13305-124472-22136-1
13.78. http://amch.questionmarket.com/adsc/d887938/36/500004878102/adscout.php
13.79. http://api.bizographics.com/v1/profile.redirect
13.80. http://api.twitter.com/1/statuses/user_timeline.json
13.81. http://api.viglink.com/api/ping
13.82. http://application.knowyourmobile.com/images/blue-background-15.png
13.83. http://application.knowyourmobile.com/images/dennis_color_logo_70.gif
13.84. http://application.knowyourmobile.com/images/knowyourmobile.ico
13.85. http://application.knowyourmobile.com/images/newkymheaderbackdrop_248.gif
13.86. http://application.knowyourmobile.com/images/tag-bg.gif
13.87. http://application.knowyourmobile.com/phones4u/images/300x400xhead.jpg
13.88. http://application.knowyourmobile.com/phones4u/images/blackberry300banner.jpg
13.89. http://application.knowyourmobile.com/phones4u/images/nav_menu.png
13.90. http://application.knowyourmobile.com/phones4u/mobilev3.css
13.91. http://ar.voicefive.com/b/wc_beacon.pli
13.92. http://ar.voicefive.com/bmx3/broker.pli
13.93. http://ar.voicefive.com/bmx3/broker.pli
13.94. http://as.casalemedia.com/j
13.95. http://as.casalemedia.com/j
13.96. http://as.casalemedia.com/s
13.97. http://b.scorecardresearch.com/b
13.98. http://b.scorecardresearch.com/p
13.99. http://b.scorecardresearch.com/r
13.100. http://b.voicefive.com/b
13.101. http://bcp.crwdcntrl.net/4/c=368|rand=317175907|genp=na
13.102. http://bcp.crwdcntrl.net/4/c=402%7Crand=271498847%7Cpv=y%7Casync=y%7Crt=ifr
13.103. http://bcp.crwdcntrl.net/4/c=402|rand=214441500|pv=y|async=y|rt=ifr
13.104. http://bcp.crwdcntrl.net/4/c=402|rand=286689202|pv=y|async=y|rt=ifr
13.105. http://bcp.crwdcntrl.net/4/c=402|rand=300411654|pv=y|async=y|rt=ifr
13.106. http://bcp.crwdcntrl.net/4/c=402|rand=344848627|pv=y|async=y|rt=ifr
13.107. http://bcp.crwdcntrl.net/4/c=402|rand=690730866|pv=y|async=y|rt=ifr
13.108. http://bcp.crwdcntrl.net/4/c=402|rand=827443052|pv=y|async=y|rt=ifr
13.109. http://bcp.crwdcntrl.net/4/c=402|rand=908408442|pv=y|async=y|rt=ifr
13.110. http://bh.contextweb.com/bh/rtset
13.111. http://bid.openx.net/json
13.112. http://bs.serving-sys.com/BurstingPipe/adServer.bs
13.113. http://bs.serving-sys.com/BurstingPipe/adServer.bs
13.114. http://bstats.adbrite.com/adserver/behavioral-data/0
13.115. http://bstats.adbrite.com/click/bstats.gif
13.116. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
13.117. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js
13.118. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js
13.119. http://c7.zedo.com/utils/ecSet.js
13.120. http://cas.criteo.com/delivery/admeld_map
13.121. http://cas.criteo.com/delivery/ajs.php
13.122. http://cdn4.eyewonder.com/cm/js/10295-119241-10420-6
13.123. http://cms.ad.yieldmanager.net/v1/cms
13.124. http://cms.quantserve.com/dpixel
13.125. http://contextweb-match.dotomi.com/
13.126. http://cw-m.d.chango.com/m/cw
13.127. http://d.audienceiq.com/r/dm/mkt/44/mpid//mpuid/3658195966029417970
13.128. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/2931142961646634775/mchpid/4/url/
13.129. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/3658195966029417970
13.130. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/3658195966029417970/mchpid/4/url/
13.131. http://d.mediabrandsww.com/r/dm/mkt/3/mpid//mpuid/3658195966029417970
13.132. http://d.p-td.com/r/dm/mkt/4/mpid//mpuid/3658195966029417970
13.133. http://d.tradex.openx.com/afr.php
13.134. http://d.tradex.openx.com/lg.php
13.136. http://data.adsrvr.org/map/cookie/contextweb
13.137. http://data.cmcore.com/imp
13.138. http://digg.com/tools/services
13.139. http://dis.ny.us.criteo.com/dis/dis.aspx
13.141. http://forum.androidcentral.com/external.php
13.142. http://g-pixel.invitemedia.com/gmatcher
13.143. http://gather.us.intellitxt.com/intellitxt/front.asp
13.144. http://geek.us.intellitxt.com/intellitxt/front.asp
13.145. http://i.simpli.fi/dpx.js
13.146. http://i.w55c.net/ping_match.gif
13.147. http://id.washingtonpost.com/identity/public/visitor/ip_address.json
13.148. http://idcs.interclick.com/Segment.aspx
13.149. http://idpix.media6degrees.com/orbserv/hbpix
13.150. http://image2.pubmatic.com/AdServer/Pug
13.151. http://imp.fetchback.com/serve/fb/adtag.js
13.152. http://imp.fetchback.com/serve/fb/imp
13.154. http://knowyourmobile.uk.intellitxt.com/al.asp
13.155. http://knowyourmobile.uk.intellitxt.com/intellitxt/front.asp
13.156. http://knowyourmobile.uk.intellitxt.com/v4/init
13.157. http://l.betrad.com/ct/0_0_0_0_0_456/us/0/1/0/0/0/0/1/242/273/0/pixel.gif
13.158. http://l.betrad.com/ct/0_0_0_0_0_632/us/0/1/0/0/0/0/16/242/111/0/pixel.gif
13.159. http://l.betrad.com/pub/p.gif
13.160. http://l.sharethis.com/pview
13.161. http://leadback.advertising.com/adcedge/lb
13.162. http://load.exelator.com/load/
13.163. http://loadm.exelator.com/load/
13.164. http://map.media6degrees.com/orbserv/hbpix
13.165. http://media.fastclick.net/w/tre
13.166. http://metrics.philly.com/b/ss/phillycom/1/H.17/s66140788192520
13.167. http://metrics.philly.com/b/ss/phillycom/1/H.17/s67586282941047
13.168. http://moconews.net/embeds/sub_menu/
13.169. http://optimized-by.rubiconproject.com/a/8430/13646/27091-15.img
13.170. http://optimized-by.rubiconproject.com/a/8430/13646/27091-15.js
13.171. http://optimized-by.rubiconproject.com/a/8430/13646/27091-2.img
13.172. http://optimized-by.rubiconproject.com/a/8430/13646/27091-2.js
13.173. http://optimized-by.rubiconproject.com/a/dk.js
13.174. http://osmdcs.interclick.com/pixelChecked.aspx
13.175. http://p.brilig.com/contact/bct
13.176. http://paidcontent.org/embeds/member_variables/
13.177. http://pc2.yumenetworks.com/dynamic_btx/115_89795
13.178. http://ping.crowdscience.com/ping.js
13.179. http://pix04.revsci.net/J05531/b3/0/3/0902121/684510010.js
13.180. http://pix04.revsci.net/J09847/b3/0/3/0902121/181431347.js
13.181. http://pix04.revsci.net/J09847/b3/0/3/0902121/629948657.js
13.182. http://pix04.revsci.net/J09847/b3/0/3/0902121/64913653.js
13.183. http://pix04.revsci.net/J09847/b3/0/3/0902121/700534142.js
13.184. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
13.185. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
13.186. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
13.187. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
13.188. http://pix04.revsci.net/J10982/b3/0/3/noscript.gif
13.189. http://pixel.intellitxt.com/pixel.jsp
13.190. http://pixel.quantserve.com/api/segments.json
13.191. http://pixel.quantserve.com/pixel
13.192. http://pixel.quantserve.com/pixel/p-01-0VIaSjnOLg.gif
13.193. http://pixel.quantserve.com/pixel/p-61YFdB4e9hBRs.gif
13.194. http://pixel.rubiconproject.com/tap.php
13.195. http://pixel.rubiconproject.com/tap.php
13.196. http://pts.eyewonder.com/ewr
13.197. http://q1.checkm8.com/adam/detect
13.198. http://q1.checkm8.com/adam/detected
13.199. http://r.openx.net/set
13.200. http://r.turn.com/r/bd
13.201. http://r.turn.com/r/du/id/L21rdC8xL21jaHBpZC80/rnd/999
13.202. http://r.turn.com/r/du/id/L21rdC8xL21jaHBpZC85/rnd/8Ac90
13.203. http://r.turn.com/server/pixel.htm
13.209. http://ricksantorum.com/explore/
13.210. http://roia.biz/im/v/2sgjvq1BAAGUxkMAAAsDQgAArjg-A/p
13.211. http://roia.biz/im/v/nW08vq1BAAGUxkMAAAsDQgAArj4-A/p
13.212. http://s26.sitemeter.com/js/counter.asp
13.213. http://samsungsmarttvs.netshelter.net/fixed_placement.js.php
13.214. http://samsungsmarttvs.netshelter.net/video_fixed_placement.js.php
13.215. https://secure.smartphoneexperts.com/
13.216. https://secure.smartphoneexperts.com/content/customercare/page-status.htm
13.217. http://segment-pixel.invitemedia.com/pixel
13.218. http://segments.adap.tv/data/
13.219. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6544154
13.220. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6544431
13.221. http://slashphone.us.intellitxt.com/intellitxt/front.asp
13.222. http://slashphone.us.intellitxt.com/v4/init
13.223. http://store.androidcentral.com/
13.224. https://support.ccbill.com/
13.225. http://sync.mathtag.com/sync/img
13.226. http://syndication.mmismm.com/tntwo.php
13.227. http://t.invitemedia.com/track_imp
13.228. http://tacoda.at.atwola.com/rtx/r.js
13.229. http://tag.admeld.com/ad/iframe/610/unified/728x90/pmh_657143_29771683
13.230. http://tag.contextweb.com/TagPublish/getad.aspx
13.231. http://tag.contextweb.com/TagPublish/getad.aspx
13.232. http://tag.contextweb.com/TagPublish/getjs.aspx
13.233. http://tags.bluekai.com/site/2554
13.234. http://tags.bluekai.com/site/3200
13.235. http://tags.bluekai.com/site/3358
13.236. http://tags.bluekai.com/site/353
13.237. http://tags.bluekai.com/site/3561
13.238. http://tap.rubiconproject.com/partner/agent/rubicon/insight.js
13.242. http://tracking.adjug.com/AdJugTracking/Tracker.aspx
13.243. http://trgc.opt.fimserve.com/fp.gif
13.244. http://trgca.opt.fimserve.com/fp.gif
13.245. http://ultraedit.app7.hubspot.com/salog.js.aspx
13.246. http://va.px.invitemedia.com/adnxs_imp
13.247. http://va.px.invitemedia.com/goog_imp
13.248. http://weathergang.washingtonpost.com/rest/conditions/20001j
13.249. http://www.facebook.com/brandlift.php
13.250. http://www.gather.com/6360d%3Cimg+src=a+onerror=alert(1)%3E1b6979d15ce
13.251. http://www.knowyourmobile.com/auth/status.php
13.252. http://www.perfumania.com/wcsstore/PerfumaniaSAS/upload/images/products/PRFM-193531.jpg
13.253. http://www.ultraedit.com/updates/ultracompare/ucupdate.html
13.254. http://www.ultraedit.com/updates/ultracompare/ucupdates2
13.255. http://www.youtube.com/embed/Iev7TKsXoHo
14. Password field with autocomplete enabled
14.1. http://www.gather.com/login.action
14.2. http://www.geek.com/articles/geek-pick/google-music-to-launch-in-beta-at-io-2011-20110510/
14.3. http://www.philly.com/philly/news/nation_world/121548659.html
14.5. http://www.tlsubmit.com/affiliate_signup.html
14.6. http://www.tlsubmit.com/checkout/member.php
15.1. http://platform.linkedin.com/js/nonSecureAnonymousFramework
15.2. http://www.surveygizmo.com/s3/polljs/539472-DPU5JRD6BN7QFZ9AI8X6B82W22I59H/
16. Referer-dependent response
16.1. http://ad.doubleclick.net/N6496/adj/gather.com/
16.2. http://ads.adbrite.com/adserver/behavioral-data/8203
16.3. http://ads.adbrite.com/adserver/vdi/742697
16.4. http://ads.adbrite.com/adserver/vdi/762701
16.5. http://bstats.adbrite.com/click/bstats.gif
16.6. http://cdn.shoutlet.com/service/shoutletshare/worker
16.7. http://d.tradex.openx.com/afr.php
16.8. http://fw.adsafeprotected.com/rjss/bs.serving-sys.com/9349/83990/BurstingPipe/adServer.bs
16.9. http://philly.badgeville.com/api/cGhpbGx5QGJhZGdldmlsbGUuY29t/widgets/comments
16.10. http://www.facebook.com/plugins/activity.php
16.11. http://www.facebook.com/plugins/like.php
16.12. http://www.facebook.com/plugins/likebox.php
16.13. http://www.youtube.com/embed/Iev7TKsXoHo
17.1. http://ricksantorum.com/explore/
17.2. http://store.androidcentral.com/cart.htm
17.3. http://www.ricksantorum.com/
17.4. http://www.ricksantorum.com/
18. Cross-domain Referer leakage
18.1. http://ad.amgdgt.com/ads/
18.2. http://ad.amgdgt.com/ads/
18.3. http://ad.amgdgt.com/ads/
18.4. http://ad.bnmla.com/serve
18.5. http://ad.bnmla.com/serve
18.6. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.7. http://ad.doubleclick.net/adi/N1558.CasaleMedia/B4461671.2
18.8. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.9. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.10. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.11. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.12. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.13. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.14. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.15. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.16. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.17. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
18.18. http://ad.doubleclick.net/adi/N3285.casalemedia/B2343920.400
18.19. http://ad.doubleclick.net/adi/N4441.contextweb.com/B5238188.3
18.20. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19
18.21. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.20
18.22. http://ad.doubleclick.net/adi/N5371.media6/B5451956.2
18.23. http://ad.doubleclick.net/adi/N6344.126328.SPECIFICMEDIA/B5358490.6
18.24. http://ad.doubleclick.net/adi/N6543.131803.TURN.COM/B5513576.10
18.25. http://ad.doubleclick.net/adi/huffpost.politics/news
18.26. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech
18.27. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest
18.28. http://ad.doubleclick.net/adj/N3175.128132.INTERCLICK/B4640114.13
18.29. http://ad.doubleclick.net/adj/N3175.128132.INTERCLICK/B4640114.13
18.30. http://ad.doubleclick.net/adj/N3175.272756.AOL-ADVERTISING2/B4640114.5
18.31. http://ad.doubleclick.net/adj/N5776.126265.CASALEMEDIA/B5120103.7
18.32. http://ad.doubleclick.net/adj/huffpost.politics/longpost
18.33. http://ad.doubleclick.net/adj/huffpost.politics/news/curtain
18.34. http://ad.doubleclick.net/adj/ns.knowyourmobile/general
18.35. http://ad.doubleclick.net/adj/ns.knowyourmobile/general
18.36. http://ad.doubleclick.net/adj/ns.slashgear/general
18.37. http://ad.doubleclick.net/adj/ns.slashgear/general
18.38. http://ad.doubleclick.net/adj/ph.admin/adsense
18.39. http://ad.doubleclick.net/adj/ph.admin/adsense
18.40. http://ad.doubleclick.net/adj/ph.mobile/mobile
18.41. http://ad.doubleclick.net/adj/ph.mobile/mobile
18.42. http://ad.doubleclick.net/adj/ph.news/nation_world
18.43. http://ad.doubleclick.net/adj/ph.news/nation_world
18.44. http://ad.doubleclick.net/adj/ph.news/nation_world
18.45. http://ad.doubleclick.net/adj/ph.news/nation_world
18.46. http://ad.doubleclick.net/adj/ph.news/nation_world
18.47. http://ad.doubleclick.net/adj/ph.news/nation_world
18.48. http://ad.doubleclick.net/adj/q1.philly/news
18.49. http://ad.doubleclick.net/adj/wpni.opinions/blog/right_turn
18.50. http://ad.doubleclick.net/adj/zdgeek.dart/geek-cetera
18.51. http://ad.media6degrees.com/adserv/cs
18.52. http://ad.media6degrees.com/adserv/cs
18.53. http://ad.media6degrees.com/adserv/cs
18.54. http://ad.media6degrees.com/adserv/csst
18.55. http://ad.turn.com/server/ads.js
18.56. http://ad.turn.com/server/ads.js
18.57. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
18.58. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
18.59. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
18.60. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
18.61. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
18.62. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
18.63. http://adadvisor.net/adscores/g.js
18.64. http://admeld-match.dotomi.com/admeld/match
18.65. http://admeld.lucidmedia.com/clicksense/admeld/match
18.66. http://ads.pointroll.com/PortalServe/
18.67. http://ads.pointroll.com/PortalServe/
18.68. http://ads.pointroll.com/PortalServe/
18.69. http://ads.specificmedia.com/serve/v=5
18.70. http://ads.tw.adsonar.com/adserving/getAds.jsp
18.71. http://as.casalemedia.com/j
18.72. http://as.casalemedia.com/j
18.73. http://bcp.crwdcntrl.net/px
18.74. http://bcp.crwdcntrl.net/px
18.75. http://bcp.crwdcntrl.net/px
18.76. http://bcp.crwdcntrl.net/px
18.77. http://bcp.crwdcntrl.net/px
18.78. http://bcp.crwdcntrl.net/px
18.79. http://bcp.crwdcntrl.net/px
18.80. http://bh.contextweb.com/bh/drts
18.81. http://bidder.mathtag.com/iframe/notify
18.82. http://bn.xp1.ru4.com/nf
18.83. http://bn.xp1.ru4.com/nf
18.84. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
18.85. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
18.86. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
18.87. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js
18.88. http://choices.truste.com/ca
18.89. http://cim.meebo.com/cim
18.90. http://cm.g.doubleclick.net/pixel
18.91. http://cm.g.doubleclick.net/pixel
18.92. http://cm.g.doubleclick.net/pixel
18.93. http://cm.g.doubleclick.net/pixel
18.94. http://cm.g.doubleclick.net/pixel
18.95. http://cm.g.doubleclick.net/pixel
18.96. http://cm.g.doubleclick.net/pixel
18.97. http://cm.g.doubleclick.net/pixel
18.98. http://cms.ad.yieldmanager.net/v1/cms
18.99. http://cms.ad.yieldmanager.net/v1/cms
18.100. http://d.tradex.openx.com/afr.php
18.101. http://dg.specificclick.net/
18.102. http://googleads.g.doubleclick.net/pagead/ads
18.103. http://googleads.g.doubleclick.net/pagead/ads
18.104. http://googleads.g.doubleclick.net/pagead/ads
18.105. http://googleads.g.doubleclick.net/pagead/ads
18.106. http://googleads.g.doubleclick.net/pagead/ads
18.107. http://googleads.g.doubleclick.net/pagead/ads
18.108. http://googleads.g.doubleclick.net/pagead/ads
18.109. http://googleads.g.doubleclick.net/pagead/ads
18.110. http://googleads.g.doubleclick.net/pagead/ads
18.111. http://googleads.g.doubleclick.net/pagead/ads
18.112. http://googleads.g.doubleclick.net/pagead/ads
18.113. http://googleads.g.doubleclick.net/pagead/ads
18.114. http://googleads.g.doubleclick.net/pagead/ads
18.115. http://googleads.g.doubleclick.net/pagead/ads
18.116. http://googleads.g.doubleclick.net/pagead/ads
18.117. http://googleads.g.doubleclick.net/pagead/ads
18.118. http://ib.adnxs.com/ab
18.119. http://ib.adnxs.com/ab
18.120. http://ib.adnxs.com/ab
18.121. http://ib.adnxs.com/ab
18.122. http://ib.adnxs.com/ab
18.123. http://ib.adnxs.com/ab
18.124. http://ib.adnxs.com/ab
18.125. http://ib.adnxs.com/ab
18.126. http://ib.adnxs.com/ab
18.127. http://ib.adnxs.com/if
18.128. http://ib.adnxs.com/if
18.129. http://ib.adnxs.com/seg
18.130. http://ib.adnxs.com/seg
18.131. http://ib.adnxs.com/seg
18.132. http://imp.fetchback.com/serve/fb/imp
18.133. http://imp.fetchback.com/serve/fb/imp
18.135. http://media3.washingtonpost.com/wpost/js/combo
18.136. http://media3.washingtonpost.com/wpost/js/combo
18.137. http://mediacdn.disqus.com/1304984847/build/system/disqus.js
18.138. http://p.brilig.com/contact/bct
18.139. http://p.brilig.com/contact/bct
18.140. http://p.brilig.com/contact/bct
18.141. http://p.brilig.com/contact/bct
18.142. http://p.brilig.com/contact/bct
18.143. http://p.brilig.com/contact/bct
18.144. http://p.brilig.com/contact/bct
18.145. http://p.brilig.com/contact/bct
18.146. http://p.brilig.com/contact/bct
18.147. http://politics.gather.com/viewArticle.action
18.148. http://s.huffpost.com/assets/js.php
18.149. http://s.huffpost.com/assets/js.php
18.150. http://s.huffpost.com/assets/js.php
18.151. http://s.huffpost.com/assets/js.php
18.152. https://secure.smartphoneexperts.com/
18.153. https://secure.smartphoneexperts.com/content/customercare/page-status.htm
18.154. http://slashgeardotcom.disqus.com/recent_comments_widget.js
18.155. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None
18.156. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None
18.157. http://tag.admeld.com/ad/iframe/593/tpm/300x250/below_fold
18.158. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/default_criteo
18.159. http://tag.admeld.com/ad/iframe/607/salonmedia/300x250/default_criteo
18.160. http://tag.admeld.com/ad/iframe/610/unified/728x90/pmh_657143_29771683
18.161. http://tag.admeld.com/id
18.162. http://tag.contextweb.com/TagPublish/getad.aspx
18.163. http://tags.bluekai.com/site/2554
18.164. http://tags.bluekai.com/site/2554
18.165. http://tags.bluekai.com/site/2554
18.166. http://tags.bluekai.com/site/2554
18.167. http://tracker.bidder7.mookie1.com/tr-apx
18.168. http://widgets.vodpod.com/javascripts/recent_videos.js
18.169. http://www.facebook.com/plugins/activity.php
18.170. http://www.facebook.com/plugins/facepile.php
18.171. http://www.facebook.com/plugins/like.php
18.172. http://www.facebook.com/plugins/like.php
18.173. http://www.facebook.com/plugins/likebox.php
18.174. http://www.facebook.com/plugins/likebox.php
18.175. http://www.facebook.com/plugins/likebox.php
18.176. http://www.facebook.com/plugins/likebox.php
18.177. http://www.facebook.com/plugins/likebox.php
18.178. http://www.facebook.com/plugins/likebox.php
18.179. http://www.facebook.com/plugins/likebox.php
18.180. http://www.facebook.com/plugins/recommendations.php
18.181. http://www.facebook.com/plugins/recommendations.php
18.182. http://www.facebook.com/plugins/send.php
18.183. http://www.gather.com/login.action
18.184. http://www.google.com/search
18.185. http://www.google.com/trends/hottrends
18.186. http://www.google.com/trends/hottrends
18.187. http://www.huffingtonpost.com/permalink-tracker.html
18.188. http://www.huffingtonpost.com/threeup.php
18.189. http://www.philly.com/s
18.190. http://www.philly.com/s
18.191. http://www.tlsubmit.com/checkout/signup.php
19. Cross-domain script include
19.1. http://ad.amgdgt.com/ads/
19.2. http://ad.amgdgt.com/ads/
19.3. http://ad.amgdgt.com/ads/
19.4. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
19.5. http://ad.doubleclick.net/adi/N1558.CasaleMedia/B4461671.2
19.6. http://ad.doubleclick.net/adi/N3285.casalemedia/B2343920.400
19.7. http://ad.doubleclick.net/adi/N6344.126328.SPECIFICMEDIA/B5358490.6
19.8. http://ad.doubleclick.net/adi/N6543.131803.TURN.COM/B5513576.10
19.9. http://ad.doubleclick.net/adi/huffpost.politics/news
19.10. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech
19.11. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest
19.12. http://ad.media6degrees.com/adserv/cs
19.13. http://ad.media6degrees.com/adserv/csst
19.14. http://ad.turn.com/server/ads.js
19.15. http://ad.turn.com/server/ads.js
19.16. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
19.17. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
19.18. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
19.19. http://ads.specificmedia.com/serve/v=5
19.20. http://bcp.crwdcntrl.net/px
19.21. http://bcp.crwdcntrl.net/px
19.22. http://bcp.crwdcntrl.net/px
19.23. http://bcp.crwdcntrl.net/px
19.24. http://bcp.crwdcntrl.net/px
19.25. http://bcp.crwdcntrl.net/px
19.26. http://bcp.crwdcntrl.net/px
19.27. http://bn.xp1.ru4.com/nf
19.28. http://bn.xp1.ru4.com/nf
19.29. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
19.30. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
19.31. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
19.32. http://c7.zedo.com/bar/v16-406/c5/jsc/fmr.js
19.33. http://cdn.optmd.com/V2/80181/197812/index.html
19.34. http://cdn.optmd.com/V2/84667/210582/index.html
19.35. http://cdn.slashgear.com/fbrecom.html
19.36. http://cim.meebo.com/cim
19.37. http://d.tradex.openx.com/afr.php
19.38. http://googleads.g.doubleclick.net/pagead/ads
19.39. http://googleads.g.doubleclick.net/pagead/ads
19.40. http://googleads.g.doubleclick.net/pagead/ads
19.41. http://googleads.g.doubleclick.net/pagead/ads
19.44. http://imp.fetchback.com/serve/fb/imp
19.45. http://imp.fetchback.com/serve/fb/imp
19.47. http://letters.salon.com/politics/war_room/2011/05/09/santorum_loser/view/
19.49. http://media.washingtonpost.com/wp-srv/ad/tiffany_manager.js
19.50. http://moconews.net/article/419-nfc-in-focus-at-google-io-as-foursquare-hashable-join-party/
19.51. http://politics.gather.com/viewArticle.action
19.52. http://probitaspartners.com/alternative_investments_publications/
19.55. http://ricksantorum.com/explore/
19.56. http://store.androidcentral.com/belkin-headphone-splitter-y-adapter/11A75A6767.htm
19.57. http://store.androidcentral.com/cart.htm
19.58. http://store.androidcentral.com/jabra-bt2080-bluetooth-headset/9A32A5717.htm
19.59. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None
19.60. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None
19.61. http://tag.admeld.com/ad/iframe/593/tpm/300x250/below_fold
19.62. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/default_criteo
19.63. http://tag.admeld.com/ad/iframe/607/salonmedia/300x250/default_criteo
19.64. http://tag.admeld.com/ad/iframe/610/unified/728x90/pmh_657143_29771683
19.65. http://talkingpointsmemo.com/archives/2010/02/remember_rick_santorum.php
19.66. http://www.amconmag.com/blog/2011/05/09/the-rick-santorum-scam/
19.67. http://www.amconmag.com/blog/wp-content/themes/quadruple-blue-10/images/bg-dotted.gif
19.68. http://www.amconmag.com/index.html
19.69. http://www.androidcentral.com/android-central-google-io-2011
19.70. http://www.facebook.com/plugins/activity.php
19.71. http://www.facebook.com/plugins/facepile.php
19.72. http://www.facebook.com/plugins/like.php
19.73. http://www.facebook.com/plugins/likebox.php
19.74. http://www.facebook.com/plugins/recommendations.php
19.75. http://www.facebook.com/plugins/send.php
19.76. http://www.gather.com/6360d%3Cimg+src=a+onerror=alert(1)%3E1b6979d15ce
19.77. http://www.gather.com/URI+SYNTAX+EXCEPTION
19.78. http://www.gather.com/a
19.79. http://www.gather.com/login.action
19.80. http://www.geek.com/articles/geek-pick/google-music-to-launch-in-beta-at-io-2011-20110510/
19.82. http://www.huffingtonpost.com/permalink-tracker.html
19.83. http://www.knowyourmobile.com/features/881740/google_io_what_to_expect.html
19.84. http://www.philly.com/philly/news/nation_world/121548659.html
19.85. http://www.philly.com/s
19.86. http://www.ricksantorum.com/
19.87. http://www.slashgear.com/ads/rpufallover.html
19.88. http://www.slashgear.com/samsung-galaxy-tab-10-1-hands-on-at-google-io-2011-09151027/
19.89. http://www.tlsubmit.com/
19.90. http://www.tlsubmit.com/checkout/templates/css/images/body-bg.jpg
19.91. http://www.tlsubmit.com/news/
19.92. http://www.tlsubmit.com/tour/
19.93. http://www.tlsubmit.com/tour/incredible-support/
19.94. http://www.tlsubmit.com/tour/outstanding-serps/
19.96. http://www.youtube.com/embed/Iev7TKsXoHo
21.2. http://admeld-match.dotomi.com/
21.3. http://ads.pubmatic.com/
21.4. http://ads.specificmedia.com/
21.5. http://adv.netshelter.net/
21.6. http://api.joliprint.com/
21.7. http://bcp.crwdcntrl.net/
21.8. http://beacon.videoegg.com/
21.9. http://bh.contextweb.com/
21.11. http://cache.specificmedia.com/
21.12. http://cheetah.vizu.com/
21.13. http://d.tradex.openx.com/
21.15. http://dg.specificclick.net/
21.17. http://entry-stats.huffpost.com/
21.18. http://id.expressnightout.com/
21.22. http://id.washingtonpost.com/
21.23. http://image2.pubmatic.com/
21.24. http://image3.pubmatic.com/
21.25. http://imp.fetchback.com/
21.27. http://letters.salon.com/
21.28. http://metrics.philly.com/
21.32. http://optimized-by.rubiconproject.com/
21.33. http://paidcontent.org/
21.34. http://ping.crowdscience.com/
21.35. http://pixel.rubiconproject.com/
21.36. http://politics.gather.com/
21.37. http://probitaspartners.com/
21.38. http://ptrack.pubmatic.com/
21.42. http://samsungsmarttvs.netshelter.net/
21.43. http://secure-us.imrworldwide.com/
21.45. http://tacoda.at.atwola.com/
21.46. http://tags.bluekai.com/
21.47. http://talkingpointsmemo.com/
21.48. http://tap.rubiconproject.com/
21.49. http://tracker.bidder7.mookie1.com/
21.50. http://www.amconmag.com/
21.52. http://www.spreadingsantorum.com/
21.53. http://www.ultraedit.com/
22.1. http://ads.adbrite.com/adserver/behavioral-data/8203
22.2. http://ads.adbrite.com/adserver/behavioral-data/8203
22.3. http://ads.adbrite.com/adserver/behavioral-data/8203
22.4. http://ads.adbrite.com/adserver/behavioral-data/8203
22.5. http://ads.adbrite.com/adserver/behavioral-data/8203
22.6. http://ads.adbrite.com/adserver/vdi/742697
22.7. http://ads.adbrite.com/adserver/vdi/762701
22.8. http://ads.adbrite.com/adserver/vdi/762701
22.9. http://ads.adbrite.com/adserver/vdi/762701
22.10. http://ads.adbrite.com/adserver/vdi/762701
22.11. http://ads.adbrite.com/adserver/vdi/762701
22.12. http://ads.adbrite.com/adserver/vdi/762701
22.13. http://ads.adbrite.com/adserver/vdi/762701
22.14. http://ads2.adbrite.com/v0/ad
22.15. http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.1/controls.js
22.16. http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.1/dragdrop.js
22.17. http://bstats.adbrite.com/click/bstats.gif
22.18. http://bstats.adbrite.com/click/bstats.gif
22.19. http://cdn.slashgear.com/static/js/appcontainer.js
22.20. http://letters.salon.com/politics/war_room/2011/05/09/santorum_loser/view/
22.21. http://media3.washingtonpost.com/wpost/javascript/bootstrap/bootstrap.facebook.sdk.js
22.22. http://media3.washingtonpost.com/wpost/js/combo
22.23. http://media3.washingtonpost.com/wpost/js/combo
22.24. http://mediacdn.disqus.com/1304984847/build/system/disqus.js
22.25. http://philly.badgeville.com/api/cGhpbGx5QGJhZGdldmlsbGUuY29t/widgets/comments
22.26. http://probitaspartners.com/about_us/
22.27. http://s.huffpost.com/assets/js.php
22.28. http://s.meebocdn.net/cim/script/cim_v92_cim_11_8_0.en.js
22.29. https://secure.smartphoneexperts.com/javascripts/spe-v3.js
22.30. http://store.androidcentral.com/content/customercare/index.htm
22.31. http://store.androidcentral.com/javascripts/spe-v3.js
22.32. https://support.ccbill.com/
22.33. http://talkingpointsmemo.com/jqm.css
22.34. http://talkingpointsmemo.com/jqm.js
22.35. http://talkingpointsmemo.com/prettydigg/diggbutton.js
22.36. http://w.sharethis.com/button/buttons.js
22.37. http://www.amconmag.com/index.html
22.38. http://www.androidcentral.com/android-central-google-io-2011
22.39. http://www.gather.com/js/niftycube.js
22.41. http://www.knowyourmobile.com/js/controls.js
22.42. http://www.knowyourmobile.com/js/dragdrop.js
22.43. http://www.knowyourmobile.com/js/flowplayer/flashembed.min.js
22.44. http://www.philly.com/includes/s_code.js
22.45. http://www.philly.com/philly/mobile/
22.46. http://www.philly.com/philly/news/nation_world/121548659.html
22.47. http://www.smartphoneexperts.com/
22.48. http://www.spreadingsantorum.com/archives/2004/01/index.html
22.49. http://www.spreadingsantorum.com/archives/2004/03/index.html
22.50. http://www.spreadingsantorum.com/archives/cat_contacting_santorum.html
22.51. http://www.spreadingsantorum.com/archives/cat_santorum_letters.html
22.52. http://www.spreadingsantorum.com/archives/cat_santorum_on_the_web.html
22.53. http://www.spreadingsantorum.com/index2.html
22.55. http://www.washingtonpost.com/r/sites/twpweb/css/2.0.0/modules.css
22.56. http://www.washingtonpost.com/rw/sites/twpweb/js/echo2/v2/core/auth.js
23. Private IP addresses disclosed
23.1. http://connect.facebook.net/en_US/all.js
23.2. http://digg.com/tools/services
23.3. http://q1.checkm8.com/adam/detect
23.4. http://q1.checkm8.com/adam/detect
23.5. http://q1.checkm8.com/adam/detected
23.6. http://q1.checkm8.com/adam/detected
23.7. http://q1.checkm8.com/dispatcher_scripts/browserDataDetect.js
23.8. http://q1digital.checkm8.com/adam/cm8adam_1_call.js
23.9. http://ricksantorum.com/explore/img/learnmore.png
23.10. http://ricksantorum.com/explore/img/santorum_bg3.jpg
23.11. http://ricksantorum.com/explore/img/santorum_connect.png
23.12. http://ricksantorum.com/explore/img/santorum_disclosure.png
23.13. http://ricksantorum.com/explore/img/santorum_donate.png
23.14. http://ricksantorum.com/explore/img/santorum_facebook.png
23.15. http://ricksantorum.com/explore/img/santorum_flickr.png
23.16. http://ricksantorum.com/explore/img/santorum_footer_bg.jpg
23.17. http://ricksantorum.com/explore/img/santorum_twitter.png
23.18. http://ricksantorum.com/explore/img/santorum_youtube.png
23.19. http://ricksantorum.com/favicon.ico
23.20. http://static.ak.fbcdn.net/connect/xd_proxy.php
23.21. http://static.ak.fbcdn.net/connect/xd_proxy.php
23.22. http://static.ak.fbcdn.net/rsrc.php/v1/yI/r/S4RgCezpKLl.js
23.23. http://static.ak.fbcdn.net/rsrc.php/v1/yV/r/ecpCmrvFebs.js
23.24. http://static.ak.fbcdn.net/rsrc.php/v1/yz/r/eeURc8RydBq.css
23.25. http://static.ak.fbcdn.net/rsrc.php/v1/zL/r/FGFbc80dUKj.png
23.26. http://static.ak.fbcdn.net/rsrc.php/v1/zk/r/QSupuIwbSa4.png
23.27. http://www.facebook.com/brandlift.php
23.28. http://www.facebook.com/extern/login_status.php
23.29. http://www.facebook.com/extern/login_status.php
23.30. http://www.facebook.com/extern/login_status.php
23.31. http://www.facebook.com/extern/login_status.php
23.32. http://www.facebook.com/extern/login_status.php
23.33. http://www.facebook.com/extern/login_status.php
23.34. http://www.facebook.com/extern/login_status.php
23.35. http://www.facebook.com/extern/login_status.php
23.36. http://www.facebook.com/extern/login_status.php
23.37. http://www.facebook.com/extern/login_status.php
23.38. http://www.facebook.com/extern/login_status.php
23.39. http://www.facebook.com/extern/login_status.php
23.40. http://www.facebook.com/extern/login_status.php
23.41. http://www.facebook.com/extern/login_status.php
23.42. http://www.facebook.com/extern/login_status.php
23.43. http://www.facebook.com/extern/login_status.php
23.44. http://www.facebook.com/extern/login_status.php
23.45. http://www.facebook.com/extern/login_status.php
23.46. http://www.facebook.com/plugins/activity.php
23.47. http://www.facebook.com/plugins/facepile.php
23.48. http://www.facebook.com/plugins/like.php
23.49. http://www.facebook.com/plugins/like.php
23.50. http://www.facebook.com/plugins/like.php
23.51. http://www.facebook.com/plugins/like.php
23.52. http://www.facebook.com/plugins/like.php
23.53. http://www.facebook.com/plugins/like.php
23.54. http://www.facebook.com/plugins/like.php
23.55. http://www.facebook.com/plugins/like.php
23.56. http://www.facebook.com/plugins/like.php
23.57. http://www.facebook.com/plugins/like.php
23.58. http://www.facebook.com/plugins/like.php
23.59. http://www.facebook.com/plugins/like.php
23.60. http://www.facebook.com/plugins/like.php
23.61. http://www.facebook.com/plugins/like.php
23.62. http://www.facebook.com/plugins/like.php
23.63. http://www.facebook.com/plugins/like.php
23.64. http://www.facebook.com/plugins/like.php
23.65. http://www.facebook.com/plugins/like.php
23.66. http://www.facebook.com/plugins/like.php
23.67. http://www.facebook.com/plugins/like.php
23.68. http://www.facebook.com/plugins/like.php
23.69. http://www.facebook.com/plugins/like.php
23.70. http://www.facebook.com/plugins/like.php
23.71. http://www.facebook.com/plugins/like.php
23.72. http://www.facebook.com/plugins/like.php
23.73. http://www.facebook.com/plugins/like.php
23.74. http://www.facebook.com/plugins/like.php
23.75. http://www.facebook.com/plugins/like.php
23.76. http://www.facebook.com/plugins/like.php
23.77. http://www.facebook.com/plugins/likebox.php
23.78. http://www.facebook.com/plugins/likebox.php
23.79. http://www.facebook.com/plugins/likebox.php
23.80. http://www.facebook.com/plugins/likebox.php
23.81. http://www.facebook.com/plugins/likebox.php
23.82. http://www.facebook.com/plugins/likebox.php
23.83. http://www.facebook.com/plugins/likebox.php
23.84. http://www.facebook.com/plugins/recommendations.php
23.85. http://www.facebook.com/plugins/recommendations.php
23.86. http://www.facebook.com/plugins/send.php
23.87. http://www.google.com/sdch/vD843DpA.dct
23.88. http://www.surveygizmo.com/s3/polljs/539472-DPU5JRD6BN7QFZ9AI8X6B82W22I59H/
24. Credit card numbers disclosed
25.1. http://a.tribalfusion.com/displayAd.js
25.2. http://action.mathtag.com/mm/rtb/COFC/1008A2/imp
25.4. http://ad.amgdgt.com/ads/
25.5. http://ad.doubleclick.net/adj/ph.news/nation_world
25.6. http://ad.media6degrees.com/adserv/cs
25.7. http://ad.turn.com/server/ads.js
25.8. http://ad.uk.doubleclick.net/adj/knowyourmobile/features/
25.9. http://admeld-match.dotomi.com/admeld/match
25.10. http://ads.pointroll.com/PortalServe/
25.11. http://ads.specificmedia.com/serve/v=5
25.12. http://adsfac.us/ag.asp
25.13. http://adx.g.doubleclick.net/pagead/adview
25.14. http://altfarm.mediaplex.com/ad/fm/13305-124472-22136-1
25.15. http://amch.questionmarket.com/adscgen/sta.php
25.16. http://api.bizographics.com/v1/profile.redirect
25.17. http://api.joliprint.com/res/joliprint/img/buttons/default/joliprint_btn_blank.gif
25.18. http://api.search.live.net/json.aspx
25.19. http://api.twitter.com/1/statuses/user_timeline.json
25.20. http://apnxscm.ac3.msn.com:81/CACMSH.ashx
25.21. http://as.casalemedia.com/s
25.22. http://b.scorecardresearch.com/beacon.js
25.23. http://b.voicefive.com/b
25.24. http://bcp.crwdcntrl.net/4/c=402%7Crand=271498847%7Cpv=y%7Casync=y%7Crt=ifr
25.25. http://bidder.mathtag.com/notify
25.26. http://bn.xp1.ru4.com/nf
25.27. http://bs.serving-sys.com/BurstingPipe/adServer.bs
25.28. http://c.betrad.com/a/n/273/456.js
25.29. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js
25.30. http://cache.specificmedia.com/creative/blank.gif
25.31. http://cas.criteo.com/delivery/ajs.php
25.32. http://cdn.optmd.com/V2/84667/210582/index.html
25.33. http://cdn.shoutlet.com/service/shoutletshare/widget
25.34. http://cdn.slashgear.com/wp-content/themes/sgv4/style.css
25.35. http://cdn.turn.com/server/ddc.htm
25.36. http://cdn4.eyewonder.com/cm/js/10295-119241-10420-6
25.37. http://cheetah.vizu.com/c.gif
25.38. http://cim.meebo.com/cim
25.39. http://cm.g.doubleclick.net/pixel
25.40. http://cms.quantserve.com/dpixel
25.41. http://d.tradex.openx.com/afr.php
25.42. http://d.xp1.ru4.com/activity
25.43. http://dar.youknowbest.com/
25.44. http://data.adsrvr.org/map/cookie/contextweb
25.45. http://data.cmcore.com/imp
25.46. http://delivery.uat.247realmedia.com/RealMedia/ads/adstream_sx.ads/zama/728x90
25.47. http://digg.com/tools/services
25.48. http://dis.ny.us.criteo.com/dis/dis.aspx
25.49. http://ds.serving-sys.com/BurstingCachedScripts//SBTemplates_2_3_0/StdBannerEx.js
25.50. http://ev.ib-ibi.com/pibiview.js
25.51. http://feeds.bbci.co.uk/news/rss.xml
25.52. http://g-pixel.invitemedia.com/gmatcher
25.53. http://googleads.g.doubleclick.net/pagead/ads
25.54. http://hs.interpolls.com/inter_2_261.js
25.55. http://idpix.media6degrees.com/orbserv/hbpix
25.56. http://img.mediaplex.com/content/0/13305/124472/Evb_OpportMortgage_Grow_728x90.html
25.57. http://imp.fetchback.com/serve/fb/adtag.js
25.58. http://l.addthiscdn.com/live/t00/250lo.gif
25.59. http://letters.salon.com/politics/war_room/2011/05/09/santorum_loser/view/
25.60. http://load.exelator.com/load/
25.61. http://loadm.exelator.com/load/
25.62. http://map.media6degrees.com/orbserv/hbjs
25.63. http://media.philly.com/designimages/favicon.ico
25.64. http://media.washingtonpost.com/wp-srv/ad/blog_147x41.js
25.65. http://media3.washingtonpost.com/wpost/css/combo
25.67. http://metrics.philly.com/b/ss/phillycom/1/H.17/s67586282941047
25.68. http://metrics.washingtonpost.com/b/ss/wpniwashpostcom/1/H.10-Pdvu-2/s62069979894440
25.69. http://mm.chitika.net/minimall
25.70. http://mpd.mxptint.net/1/S83.API/G1/T179/js
25.71. http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml
25.72. http://o.sa.aol.com/b/ss/aolhuffpo,aolsvc/1/H.21/s66497040821705
25.73. http://pagead2.googlesyndication.com/pagead/imgad
25.74. http://philly.badgeville.com/api/cGhpbGx5QGJhZGdldmlsbGUuY29t/widgets/comments
25.75. http://pixel.invitemedia.com/data_sync
25.76. http://pixel.quantserve.com/pixel
25.77. http://politics.gather.com/viewArticle.action
25.78. http://pubads.g.doubleclick.net/gampad/ads
25.79. http://puma.vizu.com/vendors/pointroll/adcatalyst_tag.js
25.80. http://q1.checkm8.com/adam/detect
25.81. http://r.turn.com/server/pixel.htm
25.82. http://redux.com/related.js
25.83. http://ricksantorum.com/explore/
25.84. http://s.clickability.com/s
25.85. http://s0.2mdn.net/dot.gif
25.87. http://safebrowsing.clients.google.com/safebrowsing/gethash
25.88. http://search.twitter.com/search.json
25.89. https://secure.smartphoneexperts.com/content/customercare/page-status.htm
25.90. http://segment-pixel.invitemedia.com/pixel
25.92. http://static.ak.fbcdn.net/connect/xd_proxy.php
25.93. http://static.pulse360.com/blob/3c/66d319f2_guru_pennyacutionsimage.gif
25.94. http://stats.vodpod.com/stats/widget/651730/blank.gif
25.95. http://store.androidcentral.com/external_marketing/js_a_v1.php
25.96. http://sync.mathtag.com/sync/img
25.97. http://tag.admeld.com/ad/json
25.98. http://tag.contextweb.com/TagPublish/getad.aspx
25.99. http://talkingpointsmemo.com/archives/2010/02/remember_rick_santorum.php
25.101. http://toolbarqueries.clients.google.com/tbproxy/af/query
25.102. http://tracking.adjug.com/AdJugTracking/Tracker.aspx
25.103. http://turn.nexac.com/r/pu
25.104. http://um.simpli.fi/pm_match
25.105. http://va.px.invitemedia.com/adnxs_imp
25.106. http://www.androidcentral.com/android-central-google-io-2011
25.107. http://www.facebook.com/plugins/like.php
25.108. http://www.gather.com/css/core_layout.css
25.109. http://www.geek.com/articles/geek-pick/google-music-to-launch-in-beta-at-io-2011-20110510/
25.110. http://www.google-analytics.com/__utm.gif
25.111. http://www.google.com/trends/hottrends
25.112. http://www.googleadservices.com/pagead/conversion/1030881291/
25.114. http://www.knowyourmobile.com/features/881740/google_io_what_to_expect.html
25.115. http://www.linkedin.com/analytics/
25.116. http://www.meebo.com/cim/sandbox.php
25.117. http://www.philly.com/philly/news/nation_world/121548659.html
25.118. http://www.ricksantorum.com/
25.119. http://www.slashgear.com/samsung-galaxy-tab-10-1-hands-on-at-google-io-2011-09151027/
25.120. http://www.smartphoneexperts.com/
25.121. http://www.tlsubmit.com/
25.122. http://www.ultraedit.com/updates/ultracompare/ucupdate.html
25.124. http://www.youtube.com/embed/Iev7TKsXoHo
26.1. https://secure.smartphoneexperts.com/javascripts/highslide412/graphics/zoomout.cur
26.2. https://support.ccbill.com/
27. HTML does not specify charset
27.1. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
27.2. http://ad.doubleclick.net/adi/N1558.CasaleMedia/B4461671.2
27.3. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.7
27.4. http://ad.doubleclick.net/adi/N3285.casalemedia/B2343920.400
27.5. http://ad.doubleclick.net/adi/N4441.contextweb.com/B5238188.3
27.6. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.19
27.7. http://ad.doubleclick.net/adi/N5295.134426.GOOGLEDISPLAYNETWOR/B5081081.20
27.8. http://ad.doubleclick.net/adi/N5371.media6/B5451956.2
27.9. http://ad.doubleclick.net/adi/N6344.126328.SPECIFICMEDIA/B5358490.6
27.10. http://ad.doubleclick.net/adi/N6543.131803.TURN.COM/B5513576.10
27.11. http://ad.doubleclick.net/adi/huffpost.politics/news
27.12. http://ad.doubleclick.net/adi/x1.rtb/casio/cttech
27.13. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/doubledma/ron/ctest
27.14. http://ad.doubleclick.net/pfadx/philly_cim/
27.15. http://ad.yieldmanager.com/iframe3
27.16. http://ads.pointroll.com/PortalServe/
27.17. http://ads.shorttail.net/cgi-bin/ads/ad20135bg.cgi/v=2.3S/sz=1x1A/90673/NF/RETURN-CODE/JS/
27.18. http://ads.specificmedia.com/serve/v=5
27.19. http://adsfac.us/ag.asp
27.20. http://afe.specificclick.net/
27.21. http://amch.questionmarket.com/adscgen/sta.php
27.22. http://bidder.mathtag.com/iframe/notify
27.23. http://bn.xp1.ru4.com/nf
27.24. http://bs.serving-sys.com/BurstingPipe/adServer.bs
27.25. http://cdn.slashgear.com/fbrecom.html
27.26. http://content.pulse360.com/7258D0CE-DD27-11DF-A9B2-6F2BEDADD848
27.27. http://delivery.uat.247realmedia.com/RealMedia/ads/adstream_sx.ads/zama/728x90
27.28. http://fast.ziffdavis.demdex.net/DSD-gz/ziffdavis-dest.html
27.29. http://geek.us.intellitxt.com/iframescript.jsp
27.30. http://image3.pubmatic.com/AdServer/UPug
27.31. http://load.exelator.com/load/
27.33. http://mediacdn.disqus.com/1304984847/build/system/def.html
27.34. http://mediacdn.disqus.com/1304984847/build/system/reply.html
27.35. http://mediacdn.disqus.com/1304984847/build/system/upload.html
27.36. http://p.brilig.com/contact/bct
27.37. http://ping.chartbeat.net/ping
27.38. http://pixel.intellitxt.com/pixel.jsp
27.39. http://pixel.invitemedia.com/data_sync
27.40. http://q1.checkm8.com/adam/detect
27.41. https://secure.smartphoneexperts.com/
27.42. https://secure.smartphoneexperts.com/content/customercare/page-status.htm
27.44. http://store.androidcentral.com/
27.45. http://store.androidcentral.com/belkin-headphone-splitter-y-adapter/11A75A6767.htm
27.46. http://store.androidcentral.com/cart.htm
27.47. http://store.androidcentral.com/content/customercare/index.htm
27.48. http://store.androidcentral.com/content/customercare/page-shipping.htm
27.49. http://store.androidcentral.com/favicon.ico
27.50. http://store.androidcentral.com/jabra-bt2080-bluetooth-headset/9A32A5717.htm
27.51. http://store.androidcentral.com/motorola-droid-x-batteries.htm
27.52. http://store.androidcentral.com/motorola-droid-x-bluetooth.htm
27.53. http://store.androidcentral.com/motorola-droid-x-headsets.htm
27.54. http://tag.admeld.com/ad/iframe/593/tpm/300x250/None
27.55. http://tag.admeld.com/ad/iframe/593/tpm/300x250/below_fold
27.56. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/above_fold
27.57. http://tag.admeld.com/ad/iframe/607/salonmedia/160x600/default_criteo
27.58. http://tag.admeld.com/ad/iframe/607/salonmedia/300x250/default_criteo
27.59. http://tag.admeld.com/ad/iframe/610/unified/728x90/pmh_657143_29771683
27.60. http://tags.bluekai.com/site/2554
27.61. http://uac.advertising.com/wrapper/aceUACping.htm
27.62. http://w55c.net/ct/cms-2-frame.html
27.63. http://www.slashgear.com/ads/rpufallover.html
27.64. http://www.spreadingsantorum.com/
27.65. http://www.spreadingsantorum.com/santorum_us1.html
27.66. http://www.spreadingsantorum.com/santorumsqueeze.html
27.67. http://www.tlsubmit.com/affiliate_signup.html
28. Content type incorrectly stated
28.1. http://a1.interclick.com/getInPageJS.aspx
28.2. http://a1.interclick.com/getInPageJSProcess.aspx
28.3. http://ad.bnmla.com/serve
28.4. http://ad.doubleclick.net/pfadx/philly_cim/
28.5. http://admeld.lucidmedia.com/clicksense/admeld/match
28.6. http://ads.pointroll.com/PortalServe/
28.7. http://ads.shorttail.net/cgi-bin/ads/ad20135bg.cgi/v=2.3S/sz=1x1A/90673/NF/RETURN-CODE/JS/
28.8. http://ads.trove.com/RevenuePlatform/ad/pong
28.10. http://afe.specificclick.net/
28.11. http://amch.questionmarket.com/adscgen/sta.php
28.12. http://api.js-kit.com/v1/bus/washpost.com/channel/130503326439488483
28.13. http://ar.voicefive.com/b/rc.pli
28.14. http://beacon.videoegg.com/admeldtest
28.15. http://beacon.videoegg.com/btf
28.16. http://beacon.videoegg.com/initjs
28.17. http://beacon.videoegg.com/invpos
28.18. http://bs.serving-sys.com/BurstingPipe/adServer.bs
28.19. http://chat.livechatinc.net/licence/1051282/script.cgi
28.20. http://content.pulse360.com/7258D0CE-DD27-11DF-A9B2-6F2BEDADD848
28.21. http://digg.com/tools/services
28.22. http://event.adxpose.com/event.flow
28.23. http://flash.qoof.com/widget.js.aspx
28.24. http://forum.androidcentral.com/external.php
28.25. http://hs.interpolls.com/cache/tmobile/affordability/300/inter_85.poll
28.26. http://hs.interpolls.com/cache/tmobile/affordability/300/inter_86.poll
28.27. http://hs.interpolls.com/imprimage.poll
28.28. http://hs.interpolls.com/ts1.poll
28.29. http://id.expressnightout.com/identity/public/visitor.json
28.30. http://id.slate.com/identity/public/visitor.json
28.31. http://id.theroot.com/identity/public/visitor.json
28.32. http://id.trove.com/identity/public/visitor.json
28.33. http://id.washingtonpost.com/identity/public/visitor/create
28.34. http://id.washingtonpost.com/identity/public/visitor/instance_datum.json
28.35. http://id.washingtonpost.com/identity/public/visitor/ip_address.json
28.36. http://image3.pubmatic.com/AdServer/UPug
28.37. http://imp.fetchback.com/serve/fb/adtag.js
28.38. http://letters.salon.com/favicon.ico
28.39. http://map.media6degrees.com/orbserv/hbjs
28.40. http://media.washingtonpost.com/wp-srv/ad/blog_147x41.js
28.41. http://media.washingtonpost.com/wp-srv/css/globalNav.css
28.42. http://mediacdn.disqus.com/1304984847/fonts/disqus-webfont.woff
28.43. http://optimized-by.rubiconproject.com/a/8430/13646/27091-15.img
28.44. http://optimized-by.rubiconproject.com/a/8430/13646/27091-2.img
28.45. http://paidcontent.org/images/site/favicon_mn.ico
28.46. http://pglb.buzzfed.com/10032/5aa834d4bb2efeab1df676685da0518c
28.47. http://ping.crowdscience.com/ping.js
28.48. http://pixel.intellitxt.com/pixel.jsp
28.49. http://politics.gather.com/js/siteReport.js.jspf
28.50. http://q1.checkm8.com/adam/detect
28.51. http://rt.disqus.com/forums/realtime-cached.js
28.52. http://s0.2mdn.net/1560758/Contests_728x90.gif
28.53. http://samsungsmarttvs.netshelter.net/fixed_placement.js.php
28.54. http://samsungsmarttvs.netshelter.net/video_fixed_placement.js.php
28.55. http://static.pulse360.com/blob/3c/66d319f2_guru_pennyacutionsimage.gif
28.56. http://ultraedit.app7.hubspot.com/salog.js.aspx
28.57. http://www.facebook.com/extern/login_status.php
28.58. http://www.geek.com/wp-content/themes/geek6/scripts/ajax_actions.js.php
28.59. http://www.geek.com/wp-content/themes/geek6/scripts/commonjs.php
28.60. http://www.geek.com/wp-content/themes/geek6/scripts/search.js.php
28.61. http://www.huffingtonpost.com/ads/check_flights.php
28.62. http://www.huffingtonpost.com/badge/badges_json_v2.php
28.63. http://www.knowyourmobile.com/img/bullet_red.gif
28.64. http://www.knowyourmobile.com/img/icon_delicious.gif
28.65. http://www.knowyourmobile.com/img/icon_digg.gif
28.66. http://www.knowyourmobile.com/img/icon_facebook.gif
28.67. http://www.knowyourmobile.com/img/icon_furl.gif
28.68. http://www.knowyourmobile.com/img/icon_stumbleupon.gif
28.69. http://www.knowyourmobile.com/img/navBackg.gif
28.70. http://www.knowyourmobile.com/img/rsslogo.gif
28.71. http://www.spreadingsantorum.com/index.rdf
28.72. http://www.surveygizmo.com/s3/polljs/539472-DPU5JRD6BN7QFZ9AI8X6B82W22I59H/
28.73. http://www.symbiosting.com/LogicBuy/geek/content-syndicate.php
28.74. http://www.ultraedit.com/favicon.ico
28.75. http://www.ultraedit.com/updates/ultracompare/ucupdates2
29. Content type is not specified
29.1. http://ad.trafficmp.com/a/js
29.2. http://ad.yieldmanager.com/st
29.3. http://pcm1.map.pulsemgr.com/uds/pc
29.4. http://pcm2.map.pulsemgr.com/uds/pc
29.5. http://tag.contextweb.com/TagPublish/getad.aspx
29.6. http://tracking.skyword.com/tracker.js
29.7. http://www.meebo.com/cmd/tc
30.1. https://secure.smartphoneexperts.com/
30.2. https://support.ccbill.com/
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.amgdgt.com |
| Path: | /ads/ |
| GET /ads/?t=i&f=j&p=5112&pl Host: ad.amgdgt.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ID=AAAAAQAU6fB5bLIqJ |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: ID=AAAAAQAUYGo0nk8a7 Set-Cookie: UA=AAAAAQAUVnGtjbSHR Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-cache, no-store P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Content-Type: text/javascript;charset Content-Length: 5467 Date: Tue, 10 May 2011 13:42:40 GMT _289670_amg_acamp_id _289670_amg_pcamp_id _289670_amg_location_id _289670_amg_creative_id _289670_amg_loaded=true; var _amg_289670_content=' ...[SNIP]... <script language="JavaScript" type="text/javascript" src="http://view.atdmt ...[SNIP]... |
| GET /ads/?t=i&f=j&p=5112&pl Host: ad.amgdgt.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ID=AAAAAQAU6fB5bLIqJ |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: ID=AAAAAQAUFnAZLJAYn Set-Cookie: UA=AAAAAQAUjCULET8mb Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-cache, no-store P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Content-Type: text/javascript;charset Content-Length: 5477 Date: Tue, 10 May 2011 13:42:41 GMT _289670_amg_acamp_id _289670_amg_pcamp_id _289670_amg_location_id _289670_amg_creative_id _289670_amg_loaded=true; var _amg_289670_content=' ...[SNIP]... <script language="JavaScript" type="text/javascript" src="http://view.atdmt ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N3285.casalemedia |
| GET /adi/N3285.casalemedia Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://letters.salon.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 13:17:56 GMT Content-Length: 3966 <html><head><title ...[SNIP]... <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 6; var FWH = ' width="728" height="90" '; var url = escape("http://ad var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 728; var winH = 90; var winL = 0; var winT = 0; if(typeof(encodeURIC var fv='"clickTag='+url+' var bgo=(bg=="")?"":'<param name="bgcolor" value="#'+bg+'">'; var bge=(bg=="")?"":' bgcolor="#'+bg+'"'; function FSWin(){if((openWindow== ua=navigator.userAgent; if(minV<=pVM&&(openWindow var adcode='<object classid="clsid:d27cdb6e '<param name="movie" value="'+swf+'"><param name="flashvars" value='+fv+'><param name="quality" value="high"><param name="wmode" value="'+wmode+'"><param name="base" value="'+swf.substring(0 '<embed src="'+swf+'" flashvars='+fv+bge+FWH+' type="application/x if(( ...[SNIP]... |
| GET /adi/N3285.casalemedia Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://letters.salon.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 13:17:57 GMT Content-Length: 4017 <html><head><title ...[SNIP]... <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 6; var FWH = ' width="728" height="90" '; var url = escape("http://ad var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 728; var winH = 90; var winL = 0; var winT = 0; if(typeof(encodeURIC var fv='"clickTag='+url+' var bgo=(bg=="")?"":'<param name="bgcolor" value="#'+bg+'">'; var bge=(bg=="")?"":' bgcolor="#'+bg+'"'; function FSWin(){if((openWindow== ua=navigator.userAgent; if(minV<=pVM&&(openWindow var adcode='<object classid="clsid:d27cdb6e '<param name="movie" value="'+swf+'"><param name="flashvars" value='+fv+'><param name="quality" value="high"><param name="wmode" value="'+wmode+'"><param name="base" value="'+swf.substring(0 '<embed src="'+swf+'" flashvars='+fv+bge+FWH+' type="application/x ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N5295.134426 |
| GET /adi/N5295.134426 Host: ad.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip, deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.geek.com Cookie: id=c60bd0733000097||t |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 14:21:20 GMT Content-Length: 37981 <SCRIPT language="JavaScript"> if(typeof(dartCallba var dartCallbackObjects = new Array(); if(typeof(dartCreati var dartCreativeDisplayM if(typeof(dartMotifAds) == "undefined") var dartMotifAds = new Array(); if(!self.dartLoadedG self.dartLoadedGloba } if(self.dartLoadedGl self.dartLoadedGloba } function RichMediaCore_59_07() { this.CREATIVE_TYPE this.CREATIVE_TYPE this.CREATIVE_TYPE_INPAGE = "InpageFlash"; this.CREATIVE_TYPE_INPAGE this.CREATIVE_TYPE this.CREATIVE_TYPE_INPAGE this.ASSET_TYPE_FLOATING = "Floating"; this.ASSET_TYPE_INPAGE = "Inpage"; this.ASSET_TYPE_EXPANDING = "Expanding"; this.ASSET_TYPE_REMINDER = "Reminder"; this.ASSET_TYPE_OVERLAY = "Overlay"; this.STANDARD_EVENT this.STANDARD_EVENT this.STANDARD_EVENT this.STANDARD_EVENT_FULL this.STANDARD_EVENT_FULL this.STANDARD_EVENT_FULL this.STANDARD_EVENT this.STANDARD_EVENT this.STANDARD_EVENT this.STANDARD_EVENT_VIDEO this.STANDARD_EVENT_VIDEO this.STANDARD_EVENT_VIDEO this.STANDARD_EVENT_VIDEO this.STANDARD_EVENT_VIDEO this.STANDARD_EVENT_VIDEO ...[SNIP]... |
| GET /adi/N5295.134426 Host: ad.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip, deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.geek.com Cookie: id=c60bd0733000097||t |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 14:21:21 GMT Content-Length: 7028 <!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. --> <!-- Code auto-generated on Thu Mar 17 11:27:33 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 8; var FWH = ' width="728" height="90" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N6543.131803.TURN |
| GET /adi/N6543.131803.TURN Host: ad.doubleclick.net Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 13:59:29 GMT Content-Length: 6123 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><!-- Copyright 2008 DoubleClick, a division of Google Inc. All ...[SNIP]... <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 8; var FWH = ' width="728" height="90" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad var ctp=new Array(); var ctv=new Array(); ctp[0] = "clickTag"; ctv[0] = ""; ctp[1] = "clickTag1"; ctv[1] = ""; ctp[2] = "clickTAG"; ctv[2] = ""; var fv='"moviePath=' for(i=1;i<sm.length;i++) for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) { var ctParam = ctp[ctIndex]; var ctVal = ctv[ctIndex]; if(ctVal != null && typeof(ctVal) == 'string') { if(ctVal == "") { ctVal = defaultCtVal; } else { ctVal = escape("http://ad } if(ctParam.toLowerCa ...[SNIP]... |
| GET /adi/N6543.131803.TURN Host: ad.doubleclick.net Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 13:59:30 GMT Content-Length: 6099 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><!-- Copyright 2008 DoubleClick, a division of Google Inc. All ...[SNIP]... <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 8; var FWH = ' width="728" height="90" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad var ctp=new Array(); var ctv=new Array(); ctp[0] = "clickTag"; ctv[0] = ""; ctp[1] = "clickTag1"; ctv[1] = ""; ctp[2] = "clickTAG"; ctv[2] = ""; var fv='"moviePath=' for(i=1;i<sm.length;i++) for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) { var ctParam = ctp[ctIndex]; var ctVal = ctv[ctIndex]; if(ctVal != null && typeof(ctVal) == 'string') { if(ctVal == "") { ctVal = defaultCtVal; } else { ctVal = escape("http://ad } if(ctParam.toLowerCase() == "clickta ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/x1.rtb/casio/cttech |
| GET /adi/x1.rtb/casio/cttech Host: ad.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip, deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://bn.xp1.ru4.com/nf? Cookie: id=c60bd0733000097||t |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 14:18:24 GMT Content-Length: 4592 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!-- This code was autogenerated @ Tue Apr 26 17:21:31 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- var clickThroughOverlayA var dcallowscriptaccess = 'never'; var plugin = false; var advurl = 'http://di.casio.com var alttext = ''; var dcgif = 'http://s0.2mdn.net var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bn.xp1.ru4.com var target = '_blank'; var dcbgcolor = ''; var dcswf = 'http://s0.2mdn.net var dcminversion = '8'; var dccreativeheight = '90'; var clickTag = encodeURIComponent('http: function checkFlash(v){ var y, x, s="Shockwave", f="Flash", o="object", u="undefined", np=navigator.plugins, nm=navigator.mimeTypes, nmd="application/x v = Math.max(Math.floor(v) || 0, 6); // check if v is a number and use Flash Player 6 as the minimum player version if(typeof np!=u&&typeof np[s+" "+f]==o&&(x=np[s+" "+f].description)&&! if(v<=x.match(/Sho ...[SNIP]... |
| GET /adi/x1.rtb/casio/cttech Host: ad.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip, deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://bn.xp1.ru4.com/nf? Cookie: id=c60bd0733000097||t |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 14:18:25 GMT Content-Length: 4497 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!-- This code was autogenerated @ Wed May 04 17:51:39 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- var clickThroughOverlayA var dcallowscriptaccess = 'never'; var plugin = false; var advurl = 'http://di.casio.com/tryx var alttext = ''; var dcgif = 'http://s0.2mdn.net var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bn.xp1.ru4.com var target = '_blank'; var dcbgcolor = ''; var dcswf = 'http://s0.2mdn.net var dcminversion = '9'; var dccreativeheight = '90'; var clickTag = encodeURIComponent('http: function checkFlash(v){ var y, x, s="Shockwave", f="Flash", o="object", u="undefined", np=navigator.plugins, nm=navigator.mimeTypes, nmd="application/x v = Math.max(Math.floor(v) || 0, 6); // check if v is a number and use Flash Player 6 as the minimum player version if(typeof np!=u&&typeof np[s+" "+f]==o&&(x=np[s+" "+f].description)&&! if(v<=x.match(/Shockwave Flash (\d+)/)[1])return true;} else if(typeof windo ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/x1.rtb/casio/cttech |
| GET /adi/x1.rtb/casio/cttech Host: ad.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip, deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://bn.xp1.ru4.com/nf? Cookie: id=c60bd0733000097||t |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 14:24:20 GMT Content-Length: 4501 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!-- This code was autogenerated @ Tue Apr 26 17:20:08 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- var clickThroughOverlayA var dcallowscriptaccess = 'never'; var plugin = false; var advurl = 'http://di.casio.com var alttext = ''; var dcgif = 'http://s0.2mdn.net var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bn.xp1.ru4.com var target = '_blank'; var dcbgcolor = ''; var dcswf = 'http://s0.2mdn.net var dcminversion = '8'; var dccreativeheight = '90'; var clickTag = encodeURIComponent('http: function checkFlash(v){ var y, x, s="Shockwave", f="Flash", o="object", u="undefined", np=navigator.plugins, nm=navigator.mimeTypes, nmd="application/x v = Math.max(Math.floor(v) || 0, 6); // check if v is a number and use Flash Player 6 as the minimum player version if(typeof np!=u&&typeof np[s+" "+f]==o&&(x=np[s+" "+f].description)&&! if(v<=x.match(/Shockwave Flash (\d+)/)[1])return true;} else ...[SNIP]... |
| GET /adi/x1.rtb/casio/cttech Host: ad.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) Gecko/20100101 Firefox/4.0.1 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip, deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://bn.xp1.ru4.com/nf? Cookie: id=c60bd0733000097||t |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Tue, 10 May 2011 14:24:21 GMT Content-Length: 4389 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!-- This code was autogenerated @ Wed May 04 17:51:39 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- var clickThroughOverlayA var dcallowscriptaccess = 'never'; var plugin = false; var advurl = 'http://di.casio.com/tryx var alttext = ''; var dcgif = 'http://s0.2mdn.net var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bn.xp1.ru4.com var target = '_blank'; var dcbgcolor = ''; var dcswf = 'http://s0.2mdn.net var dcminversion = '9'; var dccreativeheight = '90'; var clickTag = encodeURIComponent('http: function checkFlash(v){ var y, x, s="Shockwave", f="Flash", o="object", u="undefined", np=navigator.plugins, nm=navigator.mimeTypes, nmd="application/x v = Math.max(Math.floor(v) || 0, 6); // check if v is a number and use Flash Player 6 as the minimum player version if(typeof np!=u&&typeof np[s+" "+f]==o&&(x=np[s+" "+f].description)&&! if(v<=x.match(/Shockwave Flash (\d+)/)[1])return true;} else if(typeof window.ActiveXObject!=u){ for(y=16;y>=v;y--){ try{x=new A ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ads2.adbrite.com |
| Path: | /v0/ad |
| GET /v0/ad?sid=1548716&zs Host: ads2.adbrite.com Proxy-Connection: keep-alive Referer: http://letters.salon.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Apache="168362049x0.049 |
| HTTP/1.1 500 Internal Server Error Cache-Control: no-cache, no-store, must-revalidate Expires: Mon, 26 Jul 1997 05:00:00 GMT P3P: policyref="http://files Connection: close Server: XPEHb/1.0 Accept-Ranges: none Date: Tue, 10 May 2011 13:19:37 GMT Content-Length: 0 |
| GET /v0/ad?sid=1548716&zs Host: ads2.adbrite.com Proxy-Connection: keep-alive Referer: http://letters.salon.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Apache="168362049x0.049 |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate Expires: Mon, 26 Jul 1997 05:00:00 GMT P3P: policyref="http://files Content-Type: application/x-javascript Set-Cookie: geo="1%3ADchBDoIwEIX Set-Cookie: b="%3A%3Ax6zw%2Cxews Set-Cookie: rb2=ChQKBjY4Mjg2NRj0 Set-Cookie: ut="1%3AXZFLloMgEEX3 Set-Cookie: vsd=0@1@4dc93b69@letters Set-Cookie: fq="86xtm%2C1uo0%7Clkzecp Connection: close Server: XPEHb/1.0 Accept-Ranges: none Date: Tue, 10 May 2011 13:19:37 GMT Content-Length: 2399 var ADBRITE_setIFrameContent; if (!ADBRITE_setIFrameC ADBRITE_setIFrameContent = []; } function AdBriteRender_292a35e5 var frame = frames.AdBriteFrame_292a ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://c7.zedo.com |
| Path: | /bar/v16-406/c5/jsc/fm.js |
| GET /bar/v16-406/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://politics.gather User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZEDOIDX=29; ZEDOIDA=5ajh4goBADQA |
| HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFSkp=305,4479,15,1: Set-Cookie: FFcat=305,4479,15;expires Set-Cookie: FFad=0;expires=Wed, 11 May 2011 05:00:00 GMT;domain=.zedo.com;path Set-Cookie: FFChanCap=1590B305,4479 ETag: "90e70110-8181-4a1e2 Vary: Accept-Encoding X-Varnish: 545954342 545954007 P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=467 Expires: Tue, 10 May 2011 13:32:03 GMT Date: Tue, 10 May 2011 13:24:16 GMT Connection: close Content-Length: 6751 // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var p9=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=1128;var zzPat='';var zz ...[SNIP]... ; zzWindow.document.close() } } if(zzIE) { if(zzShowPop == 0) { setTimeout('zzRetryPop()' } } } function zzRetryPop() { if(!zzShowPop) { window.showModelessDialog ...[SNIP]... |
| GET /bar/v16-406/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://politics.gather User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZEDOIDX=29; ZEDOIDA=5ajh4goBADQA |
| HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFSkp=305,4479,15,1: Set-Cookie: FFcat=305,4479,15;expires Set-Cookie: FFad=0;expires=Wed, 11 May 2011 05:00:00 GMT;domain=.zedo.com;path ETag: "90e70110-8181-4a1e2 Vary: Accept-Encoding X-Varnish: 545954342 545954007 P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=175 Expires: Tue, 10 May 2011 13:27:12 GMT Date: Tue, 10 May 2011 13:24:17 GMT Connection: close Content-Length: 904 // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var p9=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=1128;var zzPat='';var zz ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://imp.fetchback.com |
| Path: | /serve/fb/imp |
| GET /serve/fb/imp?tid=59178 Host: imp.fetchback.com Proxy-Connection: keep-alive Referer: http://ib.adnxs.com/if User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uat=1_1304506950; cmp=1_1304903354_13521:0 |
| HTTP/1.1 200 OK Date: Tue, 10 May 2011 13:55:26 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: cre=1_1305035726_30829 Set-Cookie: uid=1_1305035726 Set-Cookie: kwd=1_1305035726_12936 Set-Cookie: scg=1_1305035726; Domain=.fetchback.com; Expires=Sun, 08-May-2016 13:55:26 GMT; Path=/ Set-Cookie: ppd=1_1305035726; Domain=.fetchback.com; Expires=Sun, 08-May-2016 13:55:26 GMT; Path=/ Cache-Control: max-age=0, no-store, must-revalidate, no-cache Expires: Tue, 10 May 2011 13:55:26 GMT Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 6488 <style type="text/css">body {margin: 0px; padding: 0px;}</style> <a href="http://imp <img style="float:right <image id="hovergif" src="../images/blank.gif" hoverStart="0" hoverTracking="false" width="1" height="1" border="0" alt="" style="position:absolute <script language="javascript" type="text/javascript"> function hoverTrack() { // note: time is in milliseconds document.getElementById( document.getElementById( return; } function hoverTrackDone() { if(document.getEleme // if user has hovered for more than X milliseconds var diff = Math.abs((new Date()).getTime() - document.getElementById( if(diff >= 250) { document.getElementById( document.getElementById( // remove the events listeners; we do not need them anymore if(document.removeEv document.removeEvent document.removeEvent } else if(document.detachEvent) { document.detachEvent( document.detachEvent( } } } return; } // attach events if(document.addEvent document.addEventListener d ...[SNIP]... |
| GET /serve/fb/imp?tid=59178 Host: imp.fetchback.com Proxy-Connection: keep-alive Referer: http://ib.adnxs.com/if User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uat=1_1304506950; cmp=1_1304903354_13521:0 |
| HTTP/1.1 200 OK Date: Tue, 10 May 2011 13:55:27 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: cre=1_1305035727_30826 Set-Cookie: uid=1_1305035727 Set-Cookie: kwd=1_1305035727_12936 Set-Cookie: scg=1_1305035727; Domain=.fetchback.com; Expires=Sun, 08-May-2016 13:55:27 GMT; Path=/ Set-Cookie: ppd=1_1305035727; Domain=.fetchback.com; Expires=Sun, 08-May-2016 13:55:27 GMT; Path=/ Cache-Control: max-age=0, no-store, must-revalidate, no-cache Expires: Tue, 10 May 2011 13:55:27 GMT Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 6502 <style type="text/css">body {margin: 0px; padding: 0px;}</style> <a href="http://imp <img style="float:right <image id="hovergif" src="../images/blank.gif" hoverStart="0" hoverTracking="false" width="1" height="1" border="0" alt="" style="position:absolute <script language="javascript" type="text/javascript"> function hoverTrack() { // note: time is in milliseconds document.getElementById( document.getElementById( return; } function hoverTrackDone() { if(document.getEleme // if user has hovered for more than X milliseconds var diff = Math.abs((new Date()).getTime() - document.getElementById( if(diff >= 250) { document.getElementById( document.getElementById( // remove the events listeners; we do not need them anymore if(document.removeEv document.removeEvent document.removeEvent } else if(document.detachEvent) { document.detachEvent( document.detachEvent( } } } return; } // attach events if(document.addEvent document.addEventListener d ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://map.media6degrees |
| Path: | /orbserv/hbjs |
| GET /orbserv/hbjs?pixId=5129 Host: map.media6degrees.com Proxy-Connection: keep-alive Referer: http://ad.media6degrees User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: JSESSIONID=AC4E503D4 |