Cookie-Stuffing Targeting
Cookie-Stuffing Targeting Major Affiliate Merchants - Ben Edelman

This page reports cookie-stuffing by and, targeting

As of November 6, the page was #9 in Google results for "spafinder coupon" (without quotes). After redirecting me to , the latter URL included the following lengthy JavaScript code, which opened a LinkShare tracking link in a new window:

<!-- Begin
//Pop-under window -
var popunderSpaFinder=""
var winfeatures="width=780,height=580,scrollbars=1,resizable=1,toolbar=1,location=1,menubar=1,status=1,directories=0"

var once_per_session=1

function get_cookie(Name) {
var search = Name + "="
var returnvalue = "";
if (document.cookie.length > 0) {
offset = document.cookie.indexOf(search)
if (offset != -1) { // if cookie exists
offset += search.length
// set index of beginning of value
end = document.cookie.indexOf(";", offset);
// set index of end of cookie value
if (end == -1)
end = document.cookie.length;
returnvalue=unescape(document.cookie.substring(offset, end))
return returnvalue;

function loadornot(){
if (get_cookie('popunderSpaFinder')==''){

function loadpopunderSpaFinder(){,"",winfeatures)

if (once_per_session==0)
// End -->

I captured the resulting on-screen display in a video (WindowsMedia format, view in Full Screen mode). I also preserved a full packet log of these findings.

In my testing, this is but one of many affiilate web sites targeting this and other merchants. For example, the current number two Google result for "spafinder coupon" is , which uses cookie stuffing precisely along the lines of that shown as to consumernow's targeting of Toshiba, Netzero, JCWhitney, and DentalPlans.