HeartBleed Vulnerable Websites

Yesterday, the internet was buzzing with articles about the Heart Bleed Bug which is a serious vulnerability in OpenSSL that allows stealing data (passwords, credit cards, etc) that should be secured over SSL. Some sources say that as many as 2 out of 3 servers in the world use OpenSSL which means that a lot of websites have been affected. Large websites like Yahoo, Flickr, Imgur, and Lastpass have already confirmed that they have been affected and they have also updated their servers to fix the security bug. But, what websites are still vulnerable to the heart bleed bug?

I would assume that a lot of small sites have still not fixed their OpenSSL security troubles but what about large websites that get a lot of traffic. I glanced over at the Internet Retailer 500 and pretty quickly identified a few popular websites that still have this major security bug:

lowes.com
www.dillards.com
vanns.com
uniquesquared.com
textbooks.com
gifttree.com

As you can see these are getting fixed fast but I would expect all the popular websites to be already patched. You can check out any domain with this online HeartBleed test tool. I wonder how long it will take to get the rest of these websites fixed.