TimeTrax is NOT Spyware!!!

sgiddens

Active SatelliteGuys Member
Original poster
Jan 17, 2005
20
0
Okay I finally get to say it.

When I run TT and monitor who is accessing my computer I am seeing a constant connection to a server 216.254.154.152 via TCP port 443, a secure socket layer (encrypted SSL) connection from my computer back to this web address. TT is gathering data from you!

If you do not believe me go to http://www.sysinternals.com/NetworkingUtilities.html and down load TCPView and run it while TT is running.

I am dead serious about this, I am a systems administrator managing several web sites and internet servers for a very large company and I know this type of connection is only for the purposes of sending any data they choose that you yourself can gather on your computer to their servers to be stored in a huge database that can be used for anything they choose to use it for. Only the programmers and administrators know about this stuff, sales and support people are clueless, they do not have the technical knowledge to confirm or deny it. They only know what they are told and can not comment on anything outside of a procedure or their specific job responsibilities.

I can see using encryption to keep our information secure from other users like yourself but what is the data used for? I call this spyware because I don't know what they are doing and they will not say so I choose not to allow it for one main reason, it is now data being sent back to XM Radio's web site.

Try this:

Go to https://216.254.154.152 (the IP address TT WAS using to connect to their server) that NOW will connect your computer directly to XM radio's web site. So whatever TT was gathering is now being sent to XM. Wonderful huh? why would TTT help or be forced to send this data to XM? Speculate all you want but the facts are that a network connection is successfully being made (to XM) and data is being transferred and stored. When TT is closed down additional network connections are made then close shortly after the application does.

I write database applications and the reason I would do this is I have an MSSQL database running and storing everything you do while the application is running and everything that you can access on your computer they can access because basically you are running the application and giving it to them. The rise in activity at the close is to transfer any locally stored data one last time if it was between an timed interval and as a general log function to record the time and date. When the connection is unavailable the application typically has a time-out function and is slow to come up or shut down because it is trying, but not too long as to not make you aware. It can tolerate short outages because it stores data in memory or cached in a temporary "flat" file until the connection is resumed. This paragraph is speculation based on my professional experience of twenty years doing just this type of work.

The way to stop this is to block all access to IP address 216.254.154.152 and the URL www.timetraxtech.com on both ports 80 (http) and 443 (https) on your home network or just on the computer running TT. To be safe you could also block the IP 216.251.231.128 and the URL www.xmradio.com but so far this is not required and would stop you from using TT's online services at XM. What will happen is TT will come up slow with the "Waiting for channel Load" taking a little longer than usual. That message actually means "Waiting to connect to the TimeTrax Database Server". These same long delays in the past was from them not having the server up in time for the new version of TT they released. Be aware this delay may become severe again now that you can not connect to their database server. It is your call if you want to use TT with the delay or not, the "connect to the database feature" appears to be hard-coded into the Visual Basic 6.0 application and there is no way to remove it cleanly.

This is unacceptable to us and TT has been getting away with it for years and now that they are gone and do not hold the strings of this web site I can tell you all. You have not been told the whole story on here and anyone with this kind of experience like this web site has no doubt knew about it and did not tell you and actually suppressed it for reasons yet unknown. This will not be a sticky here so save it now and pass it around.

More disclosure information on TT to come...
 
Last edited:
glad to know

i am glad to know this. I'll have to block the above mentioned site. I wondered why it took so much longer for timetrax to start before i had always-on broadband.
If you have dial-up, i guess there wouldnt be any worries, just start timetrax and THEN turn on the internet.
I never tried to record from the onnline stuff..just from my xm radio
 
Could you guys post instructions on how to do these blocks step by step? It would help we who are semi-illiterate on computer networks and such.

Also, even though it takes longer to load chanels, TimeTrax will still run, correct?

Thanks,
shawn
 
philhu said:
I thought this was knows that timetrax goes to their servers constantly.

No? Thats what I had read!!!!

Yes, that was stated by the TimeTrax people quite some time ago when Recast was first released and people realized that the software was calling home. No specifics were provided other than the software checks for validation and there were to be un-named future features (such as show scheduling) which would utilize it.
 
use a program control firewall (Zone Alarm) and block the program's access.
 
It doesn't seem to be doing much

Timetrax is not reporting what songs you record, or even if you're recording at all.

I've analyzed the traffic - it sends request every time you change channels. Aside from telling them what timetrax license, receiver, and channel, it doesn't seem to be passing any other data:

GET /rcvalidate.asp?Key=<your-timetrax-key>&Machine=<your-radio-id>&Version=1.8.0&FirstRegister=N&SoftwareMode=XM&CurChannel=22 HTTP/1.1
Accept: image/gif,image/x-xbitmap,image/jpeg,image/pjpeg,*/*
User-Agent: Microsoft URL Control - 6.01.9782
Host: register.timetraxtech.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: ASPSESSIONIDQQABDRBD=CFFKNDACPJMNOIOBCMIFHOHP

Further Update (as of 7/17/06):

I missed a detail - Timetrax recast 1.8 also reports in every 30 minutes, but I don't see any data other than what I noted above.

I don't think this rates as spyware. It's a bit of an obnoxious software registration technique, but calling this "spyware" is abuse of the term. Save that for the programs that are trying to swipe your credit card numbers.
 
Last edited:

timetrax alternatives?

An Open Letter to TimeTrax and Its Customers

Users Who Are Viewing This Thread (Total: 0, Members: 0, Guests: 0)

Who Read This Thread (Total Members: 1)

Latest posts