See these WebmasterWorld threads on preventing hotlinking of images and videos for some ideas:

[webmasterworld.com...]
[webmasterworld.com...]

what i mean to say is
I am site aaa.com and the other site is bbb.com (injector) and also take a end user (injector) browsing the aaa.com site with firefox or ie.

Now i have a script that does a Output after clicking the submit button (it is not video or something but it is a download link of freewares)
Now i don't want it to be used directly..

Example attack...

1)
End user manually supply particular url=[value] trough normal address bar of the browser by typing (remember the value doesn't have a particular ending extension e.g exa,txt,php,wmv,zip etc)

http://aaa.com/url=http://example.com/ddd/

http://aaa.com/url=http%3A//example.com/ddd/

now my problem is I want to stop that manual injection of variable value through address bar

2) A attacker could build a script that can take advantage of the above scenario.. example...

BBB.com decide to directly get the download link without going manually to the site (fetching)
so what he does is

$url = 'http://aaa.com/url=' . $randomvalue;
$downloadlink = file_get_contents($url);
//Some preg_match entries for extraction the download link of button download...
print $downloadlink;

Please help me avoid this situation i am already facing it a alot...

I don't know the proper name for this situation so i can't even search it over the net...

[edited by: coopster at 1:30 pm (utc) on Feb. 3, 2009]
[edit reason] removed link to non-authoritative site [/edit]

OK... Second try, you're referring to an anti-leech script. These are usually based on an MD5 hash of the visitor ip using md5($_SERVER['REMOTE_ADDR']);

Use the search function on top of this page or Google
site:webmasterworld.com anti leech