1.2. http://ad.doubleclick.net/adi/N3175.153731.YAHOOINC.NETWORK-PR/B4640114.11 [sz parameter]
1.3. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [campID parameter]
1.4. http://ad.doubleclick.net/adi/N4682.287481.RADIUMONE.COM/B5267998.2 [sz parameter]
1.8. http://ad.doubleclick.net/adj/N4270.Media6Degrees.com/B5279322.4 [sz parameter]
1.10. http://ad.doubleclick.net/adj/N6715.274177.WEBMD.COM/B5443050.15 [sz parameter]
1.12. http://cspix.media6degrees.com/orbserv/hbpix [acs cookie]
1.13. http://cspix.media6degrees.com/orbserv/hbpix [clid cookie]
1.14. http://m.trb.com/b/ss/tribglobal/1/H.22.1/s59644513663370 [REST URL parameter 4]
1.15. http://map.media6degrees.com/orbserv/hbpix [rdrlst cookie]
1.16. http://p.addthis.com/pixel [key parameter]
1.17. http://player.ooyala.com/player.js [autoplay parameter]
1.18. http://www.mayoclinic.com/health/pink-eye/DS00258 [REST URL parameter 3]
1.20. http://www.starpulse.com/sp_comments/paginate_comments.php [object_type parameter]
2.1. http://cdn.starpulse.com/feed/include/feature.inc.12-03-2010.php [featurecat parameter]
2.2. http://cdn.starpulse.com/feed/include/feature.inc.12-03-2010.php [featuretype parameter]
2.3. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [mName parameter]
3.1. http://ar.voicefive.com/bmx3/broker.pli [pid parameter]
3.2. http://cspix.media6degrees.com/orbserv/hbpix [rdrlst cookie]
3.3. http://data.cmcore.com/imp [ci parameter]
4.1. http://ad.doubleclick.net/ad/N5019.252469.POPSUGAR.COM/B5379556.47 [REST URL parameter 1]
4.2. http://ad.doubleclick.net/ad/N6374.137661.GLAM/B5287030.24 [REST URL parameter 1]
4.3. http://ad.doubleclick.net/ad/sugar.pop/track [REST URL parameter 1]
4.4. http://ad.doubleclick.net/adi/N2581.rocketfuel/B5063370.11 [REST URL parameter 1]
4.6. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [REST URL parameter 1]
4.7. http://ad.doubleclick.net/adi/N4682.154173.9484049199421/B5387915.3 [REST URL parameter 1]
4.8. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [REST URL parameter 1]
4.9. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [REST URL parameter 1]
4.10. http://ad.doubleclick.net/adi/N5685.127408.8193638746421/B5509356.2 [REST URL parameter 1]
4.11. http://ad.doubleclick.net/adi/N6374.137661.GLAM/B5287030.20 [REST URL parameter 1]
4.12. http://ad.doubleclick.net/adi/sugar.tres/gallery [REST URL parameter 1]
4.13. http://ad.doubleclick.net/adj/N2434.access/B5401633 [REST URL parameter 1]
4.14. http://ad.doubleclick.net/adj/N3175.272756.AOL-ADVERTISING2/B4640114.2 [REST URL parameter 1]
4.15. http://ad.doubleclick.net/adj/N3175.272756.AOL-ADVERTISING2/B4640114.5 [REST URL parameter 1]
4.16. http://ad.doubleclick.net/adj/N4270.Media6Degrees.com/B5279322.3 [REST URL parameter 1]
4.17. http://ad.doubleclick.net/adj/N4518.z2i/B5479389.3 [REST URL parameter 1]
4.18. http://ad.doubleclick.net/adj/N4518.z2i/B5479389.4 [REST URL parameter 1]
4.19. http://ad.doubleclick.net/adj/N4518.z2i/B5479389.7 [REST URL parameter 1]
4.20. http://ad.doubleclick.net/adj/N5687.135388.BIZO/B5483330 [REST URL parameter 1]
4.21. http://ad.doubleclick.net/adj/bnet.C0609/P0249 [REST URL parameter 1]
4.22. http://ad.doubleclick.net/adj/cm.starpulse/srb_jbl_042911 [REST URL parameter 1]
4.23. http://ad.doubleclick.net/adj/edh.mayoclinic/eyevision/general [REST URL parameter 1]
4.24. http://ad.doubleclick.net/adj/sugar.tres/gallery [REST URL parameter 1]
4.25. http://ad.doubleclick.net/adj/sugar.tres/ros [REST URL parameter 1]
4.26. http://ad.doubleclick.net/adj/trb.zap2it/ntl/community [REST URL parameter 1]
4.27. http://ad.doubleclick.net/adj/trb.zap2it/ntl/hp [REST URL parameter 1]
4.28. http://ad.doubleclick.net/adj/trb.zap2it/ntl/video [REST URL parameter 1]
4.29. http://ad.doubleclick.net/dot.gif [REST URL parameter 1]
4.31. http://ad.doubleclick.net/pfadx/starpulse_cim/ [secure parameter]
4.33. http://ad.doubleclick.net/pfadx/zap2it_cim/ [secure parameter]
4.34. http://amch.questionmarket.com/adsc/d872313/2/873601/adscout.php [ES cookie]
4.35. http://bidder.mathtag.com/iframe/notify [exch parameter]
4.36. http://bs.serving-sys.com/BurstingPipe/adServer.bs [flv parameter]
4.37. http://bs.serving-sys.com/BurstingPipe/adServer.bs [res parameter]
4.38. http://bs.serving-sys.com/BurstingPipe/adServer.bs [wmpv parameter]
4.39. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [$ parameter]
4.40. http://c7.zedo.com/utils/ecSet.js [v parameter]
4.42. http://www22.glam.com/cTagsImgCmd.act [gname parameter]
5. Cross-site scripting (reflected)
5.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter]
5.2. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [id parameter]
5.4. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter]
5.5. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [t parameter]
5.6. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter]
5.7. http://480-adver-view.c3metrics.com/v.js [cid parameter]
5.8. http://480-adver-view.c3metrics.com/v.js [id parameter]
5.9. http://480-adver-view.c3metrics.com/v.js [t parameter]
5.10. http://a.collective-media.net/adj/bzo.217/L3_5490311 [REST URL parameter 2]
5.11. http://a.collective-media.net/adj/bzo.217/L3_5490311 [REST URL parameter 3]
5.13. http://a.collective-media.net/adj/bzo.217/L3_5490311 [sz parameter]
5.14. http://a.collective-media.net/adj/cm.pub_webmd/ [REST URL parameter 2]
5.16. http://a.collective-media.net/adj/cm.pub_webmd/ [sz parameter]
5.17. http://a.collective-media.net/adj/cm.starpulse/srb_jbl_042911 [REST URL parameter 2]
5.18. http://a.collective-media.net/adj/cm.starpulse/srb_jbl_042911 [REST URL parameter 3]
5.20. http://a.collective-media.net/adj/cm.starpulse/srb_jbl_042911 [srb parameter]
5.21. http://a.collective-media.net/adj/edh.mayoclinic/eyevision/general [REST URL parameter 2]
5.22. http://a.collective-media.net/adj/edh.mayoclinic/eyevision/general [REST URL parameter 3]
5.23. http://a.collective-media.net/adj/edh.mayoclinic/eyevision/general [REST URL parameter 4]
5.24. http://a.collective-media.net/adj/edh.mayoclinic/eyevision/general [cmn parameter]
5.26. http://a.collective-media.net/cmadj/bzo.217/L3_5490311 [REST URL parameter 1]
5.27. http://a.collective-media.net/cmadj/bzo.217/L3_5490311 [REST URL parameter 2]
5.28. http://a.collective-media.net/cmadj/bzo.217/L3_5490311 [REST URL parameter 3]
5.29. http://a.collective-media.net/cmadj/bzo.217/L3_5490311 [sz parameter]
5.30. http://a.collective-media.net/cmadj/edh.mayoclinic/eyevision/general [REST URL parameter 1]
5.31. http://a.collective-media.net/cmadj/edh.mayoclinic/eyevision/general [REST URL parameter 2]
5.32. http://a.collective-media.net/cmadj/edh.mayoclinic/eyevision/general [REST URL parameter 3]
5.33. http://a.collective-media.net/cmadj/edh.mayoclinic/eyevision/general [REST URL parameter 4]
5.34. http://a.collective-media.net/cmadj/edh.mayoclinic/eyevision/general [cmn parameter]
5.35. http://a.rfihub.com/sed [pa parameter]
5.36. http://ad.burstdirectads.com/st [name of an arbitrarily supplied request parameter]
5.37. http://ad.burstdirectads.com/st [name of an arbitrarily supplied request parameter]
5.39. http://ad.doubleclick.net/adi/N2581.rocketfuel/B5063370.11 [sz parameter]
5.40. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.34 [adurl parameter]
5.41. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.34 [ai parameter]
5.42. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.34 [client parameter]
5.43. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.34 [num parameter]
5.44. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.34 [sig parameter]
5.45. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.34 [sz parameter]
5.46. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [campID parameter]
5.47. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [crID parameter]
5.48. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [partnerID parameter]
5.49. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [pub parameter]
5.50. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [pubICode parameter]
5.51. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [sz parameter]
5.52. http://ad.doubleclick.net/adi/N3941.InviteMedia/B5414127.861 [url parameter]
5.54. http://ad.doubleclick.net/adi/N4682.154173.9484049199421/B5387915.2 [sz parameter]
5.56. http://ad.doubleclick.net/adi/N4682.154173.9484049199421/B5387915.3 [sz parameter]
5.57. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [adurl parameter]
5.58. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [ai parameter]
5.59. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [client parameter]
5.60. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [num parameter]
5.61. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [sig parameter]
5.62. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5270832.35 [sz parameter]
5.63. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [adurl parameter]
5.64. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [ai parameter]
5.65. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [client parameter]
5.66. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [num parameter]
5.67. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [sig parameter]
5.68. http://ad.doubleclick.net/adi/N5552.3159.GOOGLECN.COM/B5285699.7 [sz parameter]
5.69. http://ad.doubleclick.net/adj/N2434.access/B5401633 [sz parameter]
5.71. http://ad.doubleclick.net/adj/cardinals.mlb/news [pageid parameter]
5.72. http://ad.doubleclick.net/adj/cm.starpulse/srb_jbl_042911 [net parameter]
5.73. http://ad.doubleclick.net/adj/rmm.starpulse2/safescholarsus11_us_300x250vid [adurl parameter]
5.74. http://ad.doubleclick.net/adj/rmm.starpulse2/safescholarsus11_us_300x250vid [ai parameter]
5.75. http://ad.doubleclick.net/adj/rmm.starpulse2/safescholarsus11_us_300x250vid [client parameter]
5.76. http://ad.doubleclick.net/adj/rmm.starpulse2/safescholarsus11_us_300x250vid [num parameter]
5.77. http://ad.doubleclick.net/adj/rmm.starpulse2/safescholarsus11_us_300x250vid [sig parameter]
5.78. http://ad.doubleclick.net/adj/rmm.starpulse2/safescholarsus11_us_300x250vid [sz parameter]
5.80. http://ad.doubleclick.net/adj/trb.zap2it/ntl/community [pos parameter]
5.81. http://ad.doubleclick.net/adj/trb.zap2it/ntl/community [rs parameter]
5.82. http://ad.doubleclick.net/adj/trb.zap2it/ntl/hp [;ptype parameter]
5.84. http://ad.doubleclick.net/adj/trb.zap2it/ntl/people [dcopt parameter]
5.85. http://ad.doubleclick.net/adj/trb.zap2it/ntl/people [pos parameter]
5.86. http://ad.doubleclick.net/adj/trb.zap2it/ntl/people [sz parameter]
5.87. http://ad.doubleclick.net/adj/trb.zap2it/ntl/video [rs parameter]
5.88. http://ad.media6degrees.com/adserv/cs [name of an arbitrarily supplied request parameter]
5.89. http://ad.media6degrees.com/adserv/cs [tId parameter]
5.90. http://ad.technoratimedia.com/st [name of an arbitrarily supplied request parameter]
5.91. http://ad.turn.com/server/bid/fan.bid [requestId parameter]
5.92. http://ad.turn.com/server/pixel.htm [fpid parameter]
5.93. http://ad.turn.com/server/pixel.htm [sp parameter]
5.94. http://ad.yieldmanager.com/getbid [callback parameter]
5.95. http://ad.yieldmanager.com/getbid [u parameter]
5.96. http://ads.adbrite.com/adserver/vdi/753292 [REST URL parameter 3]
5.97. http://ads.pointroll.com/PortalServe/ [flash parameter]
5.98. http://ads.pointroll.com/PortalServe/ [redir parameter]
5.99. http://ads.pointroll.com/PortalServe/ [time parameter]
5.100. http://ads.specificmedia.com/serve/v=5 [m parameter]
5.101. http://ads.specificmedia.com/serve/v=5 [name of an arbitrarily supplied request parameter]
5.102. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [auto_ctl_invite parameter]
5.103. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [code parameter]
5.104. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [lang parameter]
5.105. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [loc parameter]
5.107. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [noiframe parameter]
5.108. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [p parameter]
5.109. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [protocol parameter]
5.110. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [site parameter]
5.111. http://api.bizographics.com/v1/profile.redirect [api_key parameter]
5.112. http://api.bizographics.com/v1/profile.redirect [callback_url parameter]
5.113. http://api.zap2it.com/tvlistings/webservices/celebsontv [callback parameter]
5.114. http://api.zap2it.com/tvlistings/webservices/checkin [callback parameter]
5.115. http://api.zap2it.com/tvlistings/webservices/checkin [md parameter]
5.116. http://api.zap2it.com/tvlistings/webservices/peopleFinder [callback parameter]
5.117. http://api.zap2it.com/tvlistings/webservices/peopleFinder [name parameter]
5.118. http://api.zap2it.com/tvlistings/zbPrimeTimeGrid.jsp [aid parameter]
5.120. http://api.zap2it.com/tvlistings/zbPrimeTimeGrid.jsp [sList parameter]
5.121. http://api.zap2it.com/tvlistings/zbPrimeTimeGrid.jsp [v parameter]
5.122. http://ar.voicefive.com/b/rc.pli [func parameter]
5.123. http://b.scorecardresearch.com/beacon.js [c1 parameter]
5.124. http://b.scorecardresearch.com/beacon.js [c10 parameter]
5.125. http://b.scorecardresearch.com/beacon.js [c15 parameter]
5.126. http://b.scorecardresearch.com/beacon.js [c2 parameter]
5.127. http://b.scorecardresearch.com/beacon.js [c3 parameter]
5.128. http://b.scorecardresearch.com/beacon.js [c4 parameter]
5.129. http://b.scorecardresearch.com/beacon.js [c5 parameter]
5.130. http://b.scorecardresearch.com/beacon.js [c6 parameter]
5.131. http://b3.mookie1.com/2/RubiconB3/ATTWL/11Q1/T1/728/1458638753@x90 [REST URL parameter 2]
5.132. http://b3.mookie1.com/2/RubiconB3/ATTWL/11Q1/T1/728/1458638753@x90 [REST URL parameter 3]
5.133. http://b3.mookie1.com/2/RubiconB3/ATTWL/11Q1/T1/728/1458638753@x90 [REST URL parameter 4]
5.134. http://b3.mookie1.com/2/RubiconB3/ATTWL/11Q1/T1/728/1458638753@x90 [REST URL parameter 5]
5.135. http://b3.mookie1.com/2/RubiconB3/ATTWL/11Q1/T1/728/1458638753@x90 [REST URL parameter 6]
5.136. http://b3.mookie1.com/2/RubiconB3/ATTWL/11Q1/T1/728/1458638753@x90 [REST URL parameter 7]
5.145. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [$ parameter]
5.146. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [$ parameter]
5.147. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [q parameter]
5.148. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [q parameter]
5.149. http://cdn.starpulse.com/feed/include/feature.inc.12-03-2010.php [REST URL parameter 1]
5.150. http://cdn.starpulse.com/feed/include/feature.inc.12-03-2010.php [REST URL parameter 2]
5.151. http://cdn.starpulse.com/feed/include/feature.inc.12-03-2010.php [REST URL parameter 3]
5.152. http://choices.truste.com/ca [c parameter]
5.153. http://choices.truste.com/ca [h parameter]
5.154. http://choices.truste.com/ca [h parameter]
5.155. http://choices.truste.com/ca [plc parameter]
5.156. http://choices.truste.com/ca [w parameter]
5.157. http://choices.truste.com/ca [w parameter]
5.158. http://choices.truste.com/ca [zi parameter]
5.159. http://ct.buzzfeed.com/wd/UserWidget [amp;or parameter]
5.160. http://ct.buzzfeed.com/wd/UserWidget [u parameter]
5.161. http://delb.opt.fimserve.com/adopt/ [sz parameter]
5.162. http://demr.opt.fimserve.com/adopt/ [sz parameter]
5.163. http://ds.addthis.com/red/psi/sites/www.medicinenet.com/p.json [callback parameter]
5.164. http://ds.addthis.com/red/psi/sites/www.shefinds.com/p.json [callback parameter]
5.165. http://event.adxpose.com/event.flow [uid parameter]
5.166. http://fim.adnxs.com/fpt [callback parameter]
5.191. http://googleads.g.doubleclick.net/pagead/ads [url parameter]
5.192. http://home.onsugar.com/Help-7550950 [REST URL parameter 1]
5.193. http://home.onsugar.com/Help-7550950 [REST URL parameter 1]
5.194. http://home.onsugar.com/Live-OnSugar-7671020 [REST URL parameter 1]
5.195. http://home.onsugar.com/Live-OnSugar-7671020 [REST URL parameter 1]
5.196. http://home.onsugar.com/Our-Blog-7550881 [REST URL parameter 1]
5.197. http://home.onsugar.com/Our-Blog-7550881 [REST URL parameter 1]
5.198. http://home.onsugar.com/api [REST URL parameter 1]
5.199. http://home.onsugar.com/api [REST URL parameter 1]
5.200. http://ib.adnxs.com/ab [ccd parameter]
5.201. http://ib.adnxs.com/ab [custom_macro parameter]
5.202. http://ib.adnxs.com/ptj [redir parameter]
5.203. http://img.mediaplex.com/content/0/14941/119091/DallasCancer-OPEN_728x90.js [mpck parameter]
5.204. http://img.mediaplex.com/content/0/14941/119091/DallasCancer-OPEN_728x90.js [mpck parameter]
5.205. http://img.mediaplex.com/content/0/14941/119091/DallasCancer-OPEN_728x90.js [mpvc parameter]
5.206. http://img.mediaplex.com/content/0/14941/119091/DallasCancer-OPEN_728x90.js [mpvc parameter]
5.207. http://js.revsci.net/gateway/gw.js [csid parameter]
5.208. http://k.collective-media.net/cmadj/cm.pub_webmd/ [REST URL parameter 2]
5.209. http://k.collective-media.net/cmadj/cm.starpulse/srb_jbl_042911 [REST URL parameter 2]
5.210. http://kona5.kontera.com/KonaGet.js [l parameter]
5.211. http://kona5.kontera.com/KonaGet.js [rId parameter]
5.212. http://mpd.mxptint.net/1/S54.API/G1/T83/js [mid parameter]
5.213. http://pglb.buzzfed.com/152897/5431115cf30fb8db156a83665a16d6bf [callback parameter]
5.214. http://pglb.buzzfed.com/36074/2562cc529bca26e674ad88fb4414a137 [callback parameter]
5.215. http://pglb.buzzfed.com/36074/eccf772705f3b3dc37349256b06e34d7 [callback parameter]
5.217. http://rtb.media6degrees.com/adserv/FanBidHandler [callback parameter]
5.218. http://rtb50.doubleverify.com/rtb.ashx/verifyc [callback parameter]
5.219. http://s27.sitemeter.com/js/counter.asp [site parameter]
5.220. http://s27.sitemeter.com/js/counter.js [site parameter]
5.221. http://showadsak.pubmatic.com/AdServer/AdServerServlet [frameName parameter]
5.222. http://showadsak.pubmatic.com/AdServer/AdServerServlet [pageURL parameter]
5.223. http://showadsak.pubmatic.com/AdServer/AdServerServlet [pageURL parameter]
5.224. http://showadsak.pubmatic.com/AdServer/AdServerServlet [ranreq parameter]
5.225. http://starpulse.us.intellitxt.com/al.asp [jscallback parameter]
5.226. http://starpulse.us.intellitxt.com/iframescript.jsp [src parameter]
5.228. http://starpulse.us.intellitxt.com/v4/advert [jscallback parameter]
5.229. http://starpulse.us.intellitxt.com/v4/context [jscallback parameter]
5.230. http://starpulse.us.intellitxt.com/v4/init [jscallback parameter]
5.232. http://stlouis.cardinals.mlb.com/news/article.jsp [c_id parameter]
5.233. http://stlouis.cardinals.mlb.com/news/article.jsp [content_id parameter]
5.235. http://stlouis.cardinals.mlb.com/news/article.jsp [notebook_id parameter]
5.236. http://stlouis.cardinals.mlb.com/news/article.jsp [vkey parameter]
5.237. http://stlouis.cardinals.mlb.com/news/article.jsp [ymd parameter]
5.238. http://stlouis.cardinals.mlb.com/style/nav_2011.jsp [section parameter]
5.239. http://tag.admeld.com/ad/json/100/glammedia/160x600/8156650 [REST URL parameter 6]
5.240. http://tag.admeld.com/ad/json/100/glammedia/160x600/8156650 [callback parameter]
5.241. http://tag.admeld.com/ad/json/100/glammedia/160x600/8156650 [container parameter]
5.242. http://tag.admeld.com/ad/json/100/glammedia/300x250/8156650 [REST URL parameter 6]
5.243. http://tag.admeld.com/ad/json/100/glammedia/300x250/8156650 [callback parameter]
5.244. http://tag.admeld.com/ad/json/100/glammedia/300x250/8156650 [container parameter]
5.245. http://theblogfrog.com/widgets/CommunityWidget.aspx [BlogID parameter]
5.246. http://theblogfrog.com/widgets/CommunityWidget.aspx [basecommurl parameter]
5.247. http://theblogfrog.com/widgets/CommunityWidget.aspx [forumn parameter]
5.248. http://theblogfrog.com/widgets/CommunityWidget.aspx [widget_intro parameter]
5.249. http://theblogfrog.com/widgets/CommunityWidget.aspx [widget_title parameter]
5.250. http://theblogfrog.com/widgets/VisitorWidget.aspx [BlogID parameter]
5.251. http://view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter]
5.252. http://view.c3metrics.com/c3VTabstrct-6-2.php [id parameter]
5.254. http://view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter]
5.255. http://view.c3metrics.com/c3VTabstrct-6-2.php [t parameter]
5.256. http://view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter]
5.257. http://view.c3metrics.com/v.js [cid parameter]
5.258. http://view.c3metrics.com/v.js [id parameter]
5.259. http://view.c3metrics.com/v.js [t parameter]
5.260. http://redacted/m2/webmdcom/mbox/standard [mbox parameter]
5.261. http://widget.linkwithin.com/get_custom_js [callback parameter]
5.262. http://www.flickr.com/apps/badge/badge_iframe.gne [zg_bg_color parameter]
5.263. http://www.flickr.com/apps/badge/badge_iframe.gne [zg_person_id parameter]
5.264. http://www.indiantelevision.com/aac/y2k11/aac500.php [REST URL parameter 1]
5.265. http://www.indiantelevision.com/aac/y2k11/aac500.php [REST URL parameter 1]
5.266. http://www.indiantelevision.com/aac/y2k11/aac500.php [REST URL parameter 2]
5.267. http://www.indiantelevision.com/aac/y2k11/aac500.php [REST URL parameter 2]
5.268. http://www.indiantelevision.com/aac/y2k11/aac500.php [REST URL parameter 3]
5.269. http://www.indiantelevision.com/aac/y2k11/aac500.php [REST URL parameter 3]
5.270. http://www.indiantelevision.com/css/insidepage.css [REST URL parameter 1]
5.271. http://www.indiantelevision.com/css/insidepage.css [REST URL parameter 1]
5.272. http://www.indiantelevision.com/css/insidepage.css [REST URL parameter 2]
5.273. http://www.indiantelevision.com/css/insidepage.css [REST URL parameter 2]
5.274. http://www.indiantelevision.com/favicon271208.ico [REST URL parameter 1]
5.275. http://www.indiantelevision.com/favicon271208.ico [REST URL parameter 1]
5.276. http://www.indiantelevision.com/phpadsnew/adx.js [REST URL parameter 1]
5.277. http://www.indiantelevision.com/phpadsnew/adx.js [REST URL parameter 1]
5.278. http://www.indiantelevision.com/templates/itv/aac_center_first.htm [REST URL parameter 1]
5.279. http://www.indiantelevision.com/templates/itv/aac_center_first.htm [REST URL parameter 1]
5.280. http://www.indiantelevision.com/templates/itv/aac_center_first.htm [REST URL parameter 2]
5.281. http://www.indiantelevision.com/templates/itv/aac_center_first.htm [REST URL parameter 2]
5.282. http://www.indiantelevision.com/templates/itv/aac_center_first.htm [REST URL parameter 3]
5.283. http://www.indiantelevision.com/templates/itv/aac_center_first.htm [REST URL parameter 3]
5.284. http://www.mayoclinic.com/health/pink-eye/DS00258 [REST URL parameter 1]
5.285. http://www.mayoclinic.com/images/nav/shields.ico [REST URL parameter 1]
5.286. http://www.mayoclinic.com/images/nav/shields.ico [REST URL parameter 2]
5.287. http://www.mayoclinic.com/images/nav/shields.ico [REST URL parameter 3]
5.288. http://www.medicinenet.com/pointroll/prs.htm [REST URL parameter 1]
5.289. http://www.onsugar.com/h [REST URL parameter 1]
5.290. http://www.onsugar.com/h [REST URL parameter 1]
5.291. http://www.onsugar.com/help [REST URL parameter 1]
5.292. http://www.onsugar.com/help [REST URL parameter 1]
5.293. http://www.onsugar.com/modules/facebook_connect/xd_receiver.php [REST URL parameter 3]
5.294. http://www.onsugar.com/modules/facebook_connect/xd_receiver.php [REST URL parameter 3]
5.295. http://www.onsugar.com/static/ck.php [REST URL parameter 2]
5.296. http://www.onsugar.com/static/ck.php [REST URL parameter 2]
5.302. http://www.starpulse.com/Adserver/Common-300-Mid.html [page_channel parameter]
5.303. http://www.starpulse.com/Contests/Blue_Valentine_DVD_amp [REST URL parameter 2]
5.304. http://www.starpulse.com/Contests/Blue_Valentine_DVD_amp [_Soundtrack/5580/ parameter]
5.306. http://www.starpulse.com/Contests/Fast_Five_Prize_Pack/5627/ [REST URL parameter 2]
5.307. http://www.starpulse.com/Contests/Fast_Five_Prize_Pack/5627/ [REST URL parameter 3]
5.309. http://www.starpulse.com/Contests/Skateland_Prize_Pack/5663/ [REST URL parameter 2]
5.310. http://www.starpulse.com/Contests/Skateland_Prize_Pack/5663/ [REST URL parameter 3]
5.312. http://www.starpulse.com/Contests/Something_Borrowed_Prize_Pack/5622/ [REST URL parameter 2]
5.313. http://www.starpulse.com/Contests/Something_Borrowed_Prize_Pack/5622/ [REST URL parameter 3]
5.315. http://www.starpulse.com/Contests/Soul_Surfer_Prize_Pack/5561/ [REST URL parameter 2]
5.316. http://www.starpulse.com/Contests/Soul_Surfer_Prize_Pack/5561/ [REST URL parameter 3]
5.318. http://www.starpulse.com/index.html [name of an arbitrarily supplied request parameter]
5.319. http://www.starpulse.com/news/ [name of an arbitrarily supplied request parameter]
5.320. http://www.starpulse.com/news/ [name of an arbitrarily supplied request parameter]
5.346. http://www.tressugar.com/Cannes-Film-Festival-History-16415520 [REST URL parameter 1]
5.347. http://www.tressugar.com/Cannes-Film-Festival-History-16415520 [REST URL parameter 1]
5.348. http://www.webmd.com/modules/sponsor-box [AdID parameter]
5.349. http://www.webmd.com/modules/sponsor-box [FlightID parameter]
5.350. http://www.webmd.com/modules/sponsor-box [Redirect parameter]
5.351. http://www.webmd.com/modules/sponsor-box [TargetID parameter]
5.352. http://www.webmd.com/modules/sponsor-box [Values parameter]
5.353. http://www.webmd.com/modules/sponsor-box [id parameter]
5.354. http://www.webmd.com/modules/sponsor-box [name of an arbitrarily supplied request parameter]
5.355. http://www.webmd.com/modules/sponsor-box [pos parameter]
5.356. http://www.zap2it.com/templates/collection/main-tab03.jsp [REST URL parameter 1]
5.357. http://www.zap2it.com/templates/collection/main-tab03.jsp [REST URL parameter 2]
5.358. http://www.zap2it.com/templates/misc/photo-jsinclude.jsp [REST URL parameter 1]
5.359. http://www.zap2it.com/templates/misc/photo-jsinclude.jsp [REST URL parameter 2]
5.360. http://www.zap2it.com/videobeta/watch/ [REST URL parameter 2]
5.361. http://www.zap2it.com/videobeta/watch/ [cat parameter]
5.362. http://www.zap2it.com/videobeta/watch/ [watch parameter]
5.363. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [adSize parameter]
5.364. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [zone parameter]
5.365. http://www24a.glam.com/appdir/getscript.jsp [view parameter]
5.366. http://www35.glam.com/gad/glamadapt_jsrv.act [;flg parameter]
5.367. http://www35.glam.com/gad/glamadapt_jsrv.act [ga_adsrv parameter]
5.368. http://www35.glam.com/gad/glamadapt_jsrv.act [ga_adsrv parameter]
5.373. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [C3UID cookie]
5.374. http://a.collective-media.net/cmadj/bzo.217/L3_5490311 [cli cookie]
5.375. http://a.collective-media.net/cmadj/edh.mayoclinic/eyevision/general [cli cookie]
5.376. http://a.rfihub.com/sed [a cookie]
5.377. http://a.rfihub.com/sed [a1 cookie]
5.378. http://ar.voicefive.com/bmx3/broker.pli [BMX_3PC cookie]
5.379. http://ar.voicefive.com/bmx3/broker.pli [BMX_G cookie]
5.380. http://ar.voicefive.com/bmx3/broker.pli [UID cookie]
5.381. http://ar.voicefive.com/bmx3/broker.pli [ar_p81479006 cookie]
5.382. http://ar.voicefive.com/bmx3/broker.pli [ar_p82806590 cookie]
5.383. http://ar.voicefive.com/bmx3/broker.pli [ar_p84552060 cookie]
5.384. http://ar.voicefive.com/bmx3/broker.pli [ar_p85001580 cookie]
5.385. http://ar.voicefive.com/bmx3/broker.pli [ar_p90175839 cookie]
5.386. http://ar.voicefive.com/bmx3/broker.pli [ar_p90452457 cookie]
5.387. http://ar.voicefive.com/bmx3/broker.pli [ar_p91136705 cookie]
5.388. http://ar.voicefive.com/bmx3/broker.pli [ar_p91300630 cookie]
5.389. http://ar.voicefive.com/bmx3/broker.pli [ar_p92429851 cookie]
5.390. http://ar.voicefive.com/bmx3/broker.pli [ar_p97174789 cookie]
5.391. http://ar.voicefive.com/bmx3/broker.pli [ar_s_p81479006 cookie]
5.392. http://c7.zedo.com/bar/v16-406/c5/jsc/fm.js [ZEDOIDA cookie]
5.393. http://k.collective-media.net/cmadj/cm.pub_webmd/ [cli cookie]
5.394. http://k.collective-media.net/cmadj/cm.starpulse/srb_jbl_042911 [cli cookie]
5.395. http://k.collective-media.net/cmadj/cm.starpulse/srb_jbl_042911 [cli cookie]
5.396. http://seg.sharethis.com/getSegment.php [__stid cookie]
5.397. http://tag.admeld.com/ad/json/100/glammedia/160x600/8156650 [meld_sess cookie]
5.398. http://tag.admeld.com/ad/json/100/glammedia/300x250/8156650 [meld_sess cookie]
5.399. http://view.c3metrics.com/c3VTabstrct-6-2.php [C3UID cookie]
5.400. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [ctags cookie]
5.401. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [glam_sid cookie]
5.402. http://www35.glam.com/gad/glamadapt_jsrv.act [glam_sid cookie]
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N3175.153731 |
| GET /adi/N3175.153731 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:27:56 GMT Content-Length: 949 <html><head><title ...[SNIP]... sogEAAAA=,,http%3A%2F |
| GET /adi/N3175.153731 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:27:57 GMT Content-Length: 936 <html><head><title ...[SNIP]... sogEAAAA=,,http%3A%2F |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N3175.153731 |
| GET /adi/N3175.153731 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:27:28 GMT Content-Length: 936 <html><head><title ...[SNIP]... sogEAAAA=,,http%3A%2F |
| GET /adi/N3175.153731 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:27:29 GMT Content-Length: 949 <html><head><title ...[SNIP]... sogEAAAA=,,http%3A%2F |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N3941.InviteMedia |
| GET /adi/N3941.InviteMedia Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:27:28 GMT Content-Length: 9944 <html><head><title ...[SNIP]... <!-- Code auto-generated on Wed May 04 13:42:09 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 9; var FWH = ' width="300" height="250" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var movie ...[SNIP]... |
| GET /adi/N3941.InviteMedia Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:27:29 GMT Content-Length: 10034 <html><head><title ...[SNIP]... <!-- Code auto-generated on Wed May 04 13:34:26 EDT 2011 --> <script src="http://s0.2mdn.net <SCRIPT LANGUAGE="JavaScript"> <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 9; var FWH = ' width="300" height="250" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.subst ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N4682.287481 |
| GET /adi/N4682.287481 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://fw.adsafeprotected User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:44:36 GMT Content-Length: 5152 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><!-- Template Id = 13,901 Template Name = Banner Creative (Fla ...[SNIP]... <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 6; var FWH = ' width="300" height="250" '; var url = escape("http://ad var wmode = "opaque"; var bg = "same as SWF"; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 600; var winH = 400; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); sm[1] = ""; sm[2] = ""; sm[3] = ""; sm[4] = ""; sm[5] = ""; var ct=new Array(); ct[0]="http://rs.gwallet ct[1] = ""; ct[2] = ""; ct[3] = ""; ct[4] = ""; ct[5] = ""; ct[6] = ""; ct[7] = ""; ct[8] = ""; ct[9] = ""; ct[10] = ""; var fv='"clickTag='+url+' for(i=1;i<sm.length;i++) for(i=1;i<ct.length;i++) fv+='"'; var bgo=(bg=="same as SWF")?"":'<param name="bgcolor" value="#'+bg+'">'; var bge=(bg=="same as SWF")?"":' bgcolor="#'+bg+'"'; function FSWin(){if((openWindow== ...[SNIP]... |
| GET /adi/N4682.287481 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://fw.adsafeprotected User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Date: Wed, 11 May 2011 15:44:37 GMT Content-Length: 5120 <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><!-- Template Id = 13,901 Template Name = Banner Creative (Fla ...[SNIP]... <!-- function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 6; var FWH = ' width="300" height="250" '; var url = escape("http://ad var wmode = "opaque"; var bg = "same as SWF"; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 600; var winH = 400; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); sm[1] = ""; sm[2] = ""; sm[3] = ""; sm[4] = ""; sm[5] = ""; var ct=new Array(); ct[0]="http://rs.gwallet ct[1] = ""; ct[2] = ""; ct[3] = ""; ct[4] = ""; ct[5] = ""; ct[6] = ""; ct[7] = ""; ct[8] = ""; ct[9] = ""; ct[10] = ""; var fv='"clickTag='+url+' for(i=1;i<sm.length;i++) for(i=1;i<ct.length;i++) fv+='"'; var bgo=(bg=="same as SWF")?"":'<param name="bgcolor" value="#'+bg+'">'; var bge=(bg=="same as SWF")?"":' bgcolor="#'+bg+'"'; function FSWin(){if((openWindow== ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N3175.272756.AOL |
| GET /adj/N3175.272756.AOL Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://as.webmd.com/html User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:30:23 GMT Content-Length: 570 document.write('<a target="_blank" href="http://ad |
| GET /adj/N3175.272756.AOL Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://as.webmd.com/html User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:30:24 GMT Content-Length: 557 document.write('<a target="_blank" href="http://ad |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N3175.272756.AOL |
| GET /adj/N3175.272756.AOL Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://news.lalate.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:09:40 GMT Content-Length: 568 document.write('<a target="_blank" href="http://ad |
| GET /adj/N3175.272756.AOL Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://news.lalate.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:09:41 GMT Content-Length: 555 document.write('<a target="_blank" href="http://ad |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N4270.Media6Degrees |
| GET /adj/N4270.Media6Degrees Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.media6degrees User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:48:31 GMT Content-Length: 1182 document.write('<a target="_blank" href="http://ad |
| GET /adj/N4270.Media6Degrees Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.media6degrees User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:48:32 GMT Content-Length: 1171 document.write('<a target="_blank" href="http://ad |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N4270.Media6Degrees |
| GET /adj/N4270.Media6Degrees Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.media6degrees User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:47:07 GMT Content-Length: 8686 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Fri Apr 29 14:34:49 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... h"];if(x && x.description){var pVF=x.description;var y=pVF.indexOf("Flash ")+6;pVM=pVF.substring(y else if (window.ActiveXObject && window.execScript){ window.execScript('on error resume next\npVM=2\ndo\npVM=pVM ...[SNIP]... |
| GET /adj/N4270.Media6Degrees Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.media6degrees User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 15:47:08 GMT Content-Length: 1180 document.write('<a target="_blank" href="http://ad ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N6715.274177.WEBMD |
| GET /adj/N6715.274177.WEBMD Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://as.webmd.com/html User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 16:06:07 GMT Content-Length: 5277 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Fri Apr 29 17:39:58 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 10; var FWH = ' width="160" height="600" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad var ctp=new Array(); var ctv=new Array(); ctp[0] = "clickTAG"; ctv[0] = ""; var fv='"moviePath=' for(i=1;i<sm.length;i++) for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) { var ctParam = ctp[ctIndex]; var ctVal = ctv[ctIndex]; if(ctVal != null && typeof(ctVal) == 'string') { if(ctVal == "") { ctVal = defaultCtVal; } else { ctVal = escape("http://ad } if(ctParam.toLowerCase() == "clicktag") { fscUrl = ctVal; fscUrlClickTagFound = true; } else if(!fscUrlClickTagFound) { fscUrl = ctVal; } fv += "&" + ctParam + "=" + ctVal; } } fv+='"' ...[SNIP]... |
| GET /adj/N6715.274177.WEBMD Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://as.webmd.com/html User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 16:06:08 GMT Content-Length: 5241 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Fri Apr 29 18:45:00 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 10; var FWH = ' width="160" height="600" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad var ctp=new Array(); var ctv=new Array(); ctp[0] = "clickTAG"; ctv[0] = ""; var fv='"moviePath=' for(i=1;i<sm.length;i++) for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) { var ctParam = ctp[ctIndex]; var ctVal = ctv[ctIndex]; if(ctVal != null && typeof(ctVal) == 'string') { if(ctVal == "") { ctVal = defaultCtVal; } else { ctVal = escape("http://ad } if(ctParam.toLowerCase() == "clicktag") { fscUrl = ctVal; fscUrlClickTagFound = true; } else if(!fscUrlClickTagFound) { fscUrl = ctVal; } fv += "&" + ctParam + "=" + ctVal; } } fv+='"'; var bgo=(bg=="")?"":' ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N6715.274177.WEBMD |
| GET /adj/N6715.274177.WEBMD Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://as.webmd.com/html User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 16:04:54 GMT Content-Length: 5271 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Fri Apr 29 17:39:59 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 10; var FWH = ' width="160" height="600" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad var ctp=new Array(); var ctv=new Array(); ctp[0] = "clickTAG"; ctv[0] = ""; var fv='"moviePath=' for(i=1;i<sm.length;i++) for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) { var ctParam = ctp[ctIndex]; var ctVal = ctv[ctIndex]; if(ctVal != null && typeof(ctVal) == 'string') { if(ctVal == "") { ctVal = defaultCtVal; } else { ctVal = escape("http://ad } if(ctParam.toLowerCase() == "clicktag") { fscUrl = ctVal; fscUrlClickTagFound = true; } else if(!fscUrlClickTagFound) { fscUrl = ctVal; } fv += "&" + ctParam + "=" + ctVal; } } fv+='"'; v ...[SNIP]... |
| GET /adj/N6715.274177.WEBMD Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://as.webmd.com/html User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Wed, 11 May 2011 16:04:55 GMT Content-Length: 5247 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Fri Apr 29 19:10:04 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net function DCFlash(id,pVM){ var swf = "http://s0.2mdn.net var gif = "http://s0.2mdn.net var minV = 10; var FWH = ' width="160" height="600" '; var url = escape("http://ad var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowscriptaccess = "never"; var openWindow = "false"; var winW = 0; var winH = 0; var winL = 0; var winT = 0; var moviePath=swf.substring(0 var sm=new Array(); var defaultCtVal = escape("http://ad var ctp=new Array(); var ctv=new Array(); ctp[0] = "clickTAG"; ctv[0] = ""; var fv='"moviePath=' for(i=1;i<sm.length;i++) for(var ctIndex = 0; ctIndex < ctp.length; ctIndex++) { var ctParam = ctp[ctIndex]; var ctVal = ctv[ctIndex]; if(ctVal != null && typeof(ctVal) == 'string') { if(ctVal == "") { ctVal = defaultCtVal; } else { ctVal = escape("http://ad } if(ctParam.toLowerCase() == "clicktag") { fscUrl = ctVal; fscUrlClickTagFound = true; } else if(!fscUrlClickTagFound) { fscUrl = ctVal; } fv += "&" + ctParam + "=" + ctVal; } } fv+='"'; var bgo=(bg=="")? ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/trb.zap2it/ntl |
| GET /adj/trb.zap2it/ntl Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://people.zap2it.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript; charset=UTF-8 Date: Wed, 11 May 2011 15:57:09 GMT Content-Length: 4688 var divid='dclkAdsDivID_22382 document.write('<div id=' + divid + '></div>'); var adsenseHtml_22382 = "<html><head></head><body leftMargin=\"0\" topMargin=\"0\" marginwidth=\"0\" marginheight=\"0\"> ...[SNIP]... <script>vu(\"http://adx.g ...[SNIP]... |
| GET /adj/trb.zap2it/ntl Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://people.zap2it.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
| HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript; charset=UTF-8 Date: Wed, 11 May 2011 15:57:10 GMT Content-Length: 4661 var divid='dclkAdsDivID_2530' document.write('<div id=' + divid + '></div>'); var adsenseHtml_2530 = "<html><head></head><body leftMargin=\"0\" topMargin=\"0\" marginwidth=\"0\" marginheight=\"0\"><s ...[SNIP]... <script>vu(\"http://adx.g ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://cspix.media6d |
| Path: | /orbserv/hbpix |
| GET /orbserv/hbpix?pixId=1598 Host: cspix.media6degrees.com Proxy-Connection: keep-alive Referer: http://s7.addthis.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipinfo=2lkkjj40zijsv |