Jump to content

A php SPY program from software writers??


another-freak

Recommended Posts

Hey people!

I have got this strange php script (part of it) which seemed to report back
to the originator of the program with its license key!
Am I wrong?



$isSent = getSqlField("SELECT * FROM probid_gen_setts","addr_val");
if ($isSent != 1) {
$refsite=getenv("HTTP_REFERER");
$lkey = getSqlNumber("SELECT * FROM probid_gen_setts","lkey");
mail ("admin@abc.com","New Installation - ".date("M. j, Y",time()),
"A new installation was reported on:

License Key: $lkey
Admin Email Address: $setts[adminemail]
Server IP: $_SERVER[SERVER_ADDR]
Site URL: $_SERVER[SERVER_NAME]
Request URI: $_SERVER[REQUEST_URI]","From: noreply@abc.com <noreply@abc.com>");

$updAddr = mysql_query("UPDATE probid_gen_setts SET addr_val=1");
}
Link to comment
Share on other sites

Hello brothers!

I have not tried altering the program as it was installed by the software writer;
just worried about infringing their "copyright".

I accidentally discovered this little script and now I wonder how many of those *.php
files are embeded with this little spy program. So, naturally my question will be
how to search them out since there are hundreds of files the folders.
Any client program that can do the job?

Next I am wondering is this script illegal? I am a license holder.
Is my privacy infringed in this case?

Thanks.
Link to comment
Share on other sites

there is no way we can even begin to tell anything about this script unless we see code (please don't go posting hundreds of files). 

i suppose you could write a script that searches for things like everywhere a global is used, things like the mail function is used, url addresses, etc.. but when it comes right down to it, your going to have to look at it and determine for yourself whether it's a "spy" thing. 
Link to comment
Share on other sites

If you are concerned about the information that is being returned to the seller of the product, why don't you contact them to find out what they do with the information collected.

Reading the code, the information is sent back once the first time the script is run after a new installation. My guess is that the information is being used to track installations of the product and to make sure noone is selling copies which all use the same license code.

Did you find the code before or after you ran the script?

Ken
Link to comment
Share on other sites

Doesn't look like a "spy" program but, more like a way to keep track of installations. If it's licensed software, then I imagine they would like to know who is installing it. I do think it is quite dumb to do, if that code is not in an encrypted file somewhere. The fact it can be removed.....
Link to comment
Share on other sites

The best tracker I saw was one that required a class from a third party site
So you did not have the code in there, there was a weird protected, that it could be used, but the code could not be shown from it

For all we know, inside that class could be a function TrackThis
Link to comment
Share on other sites

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.