Spam through X-Cart
 

Lately we are experiencing a lot of spam coming from Russia through our contact form on the WEB site. It is just few lines with links and also like somebody is selling condo there.

Here, I disabled links:

Name: Mariagus
Email: fbntnmqce@smajok.ru
Subject: online gambling casino
online casino
<a href="htt*://o*casino24.com/">casino games</a>
<a href="htt*://o*casino24.com/">online casino slots</a>
cassino

Since it is coming in every day I don't think somebody is going to site and sending messages. I am afraid that somebody broke into site and is tied directly through server.

Re: Spam through X-Cart
 

I believe there is a way to enable the free built-in reCaptcha protection for the contact form.
Try to enable it and check if the SPAM stops.
If this helps, you may also consider a better version of the function: https://market.x-cart.com/addons/google-recaptcha.html

Also, what e-mail client do you use? It makes sense to check the e-mail headers and make sure that it is your server that sends the messages. You can find instructions for GMail here: https://support.google.com/mail/answer/29436?hl=en

Re: Spam through X-Cart
 

Thanks for answer. Will check header on next spam e-mail.
As for Captcha I went to enable it but it asks for changes to be done to pages and server that we don't know how to implement so won't do it for now.

Re: Spam through X-Cart
 

Just received one and it looks like it was originated from our site cardacc.com

Content-Type: ⁨multipart/alternative; boundary="b1_408a5a6306323648dd94734e2285f4ac"⁩
Mime-Version: ⁨1.0⁩
X-Get-Message-Sender-Via: ⁨viking.ica.net: authenticated_id: cardacc/only user confirmed/virtual account not confirmed⁩
Dkim-Signature: ⁨v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=almexltd.com; s=default; h=Content-Type:MIME-Version:Reply-To:Message-ID: From:Date:Subject:To:Sender:Cc:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=lgYs4uzRsUv1qb7I0uVLNpl97PJBQyHFaaSMe34uR68=; b=MWPR0vO2o3i47iOzy2MQslBbc7 vi/zwbSP2wglJ4oOsDyOe3ZSNLctY6oDqEtRE8MuDqidD0SaBWvj6 zkTVp3UzHE4vk2XESahj/Bub IkKIiE8/VvQlIbYRFmRaIKhWRNtbw22Ar7xGnotp59qT5vL2TLgBJQa871 YnmBfH4oN6cq8mB1Zh+ QTmVaCut/lXRHX9pv0E2X6XV0SDXgfki7HK988gZsS7ZfTq4t/MuqaL83NW9CNvGCVIpI5h3601qk 8bBEzhCoADm3xam0L5iFy0EapwpDJbwKitAOcCzmJn6m5mBxMU dncZ/q5XyorTYKp0eKU/h4raFpx qRVQrGcw==;⁩
X-Mailer: ⁨PHPMailer 5.2.22 (https://github.com/PHPMailer/PHPMailer)⁩
X-Source-Dir: ⁨cardacc.com:/public_html⁩
X-Antiabuse: ⁨This header was added to track abuse, please include it with any abuse report⁩
X-Antiabuse: ⁨Primary Hostname - viking.ica.net⁩
X-Antiabuse: ⁨Original Domain - almexltd.com⁩
X-Antiabuse: ⁨Originator/Caller UID/GID - [1034 494] / [47 12]⁩
X-Antiabuse: ⁨Sender Address Domain - almexltd.com⁩
X-Source: ⁨⁩
X-Authenticated-Sender: ⁨viking.ica.net: cardacc⁩
X-Php-Script: ⁨www.cardacc.com/cart.php for 178.159.37.18⁩
X-Php-Originating-Script: ⁨1034:class.phpmailer.php⁩
Received: ⁨from viking.ica.net ([209.151.129.171]) by mail7.ica.net (IceWarp 10.4.5) with ESMTP (SSL) id 201803142239423984 for <sales@almexltd.com>; Wed, 14 Mar 2018 22:39:42 -0400⁩
Received: ⁨from cardacc by viking.ica.net with local (Exim 4.89_1) (envelope-from <sales@almexltd.com>) id 1ewIny-0007Xh-2F for sales@almexltd.com; Wed, 14 Mar 2018 22:39:46 -0400⁩
⁨<408a5a6306323648dd94734e2285f4ac@www.cardacc.c om>⁩
X-Source-Args: ⁨/usr/sbin/httpd -k start ⁩

Re: Spam through X-Cart
 

We are having the same issue. There are TONS of these emails. I'd be happy to just turn off the Contact Us page to be honest but in version 4.xxx I don't think I can.

Re: Spam through X-Cart
 

That is exactly what we had to do, turned off contact page and that is a shame

Re: Spam through X-Cart
 

Hi groovedis. You're in a X-Cart 5 post.

Please see this X-Cart 4 post https://forum.x-cart.com/showthread.php?t=74978

Re: Spam through X-Cart
 

Yes, the e-mail seems to be sent by your server.
Enabling reCaptcha on the contact form should help.


What changes do you mean?

Please check this article:
https://kb.x-cart.com/look_and_feel/enabling_the_contact_us_form.html

You just need to sign up on the reCaptcha site any copy your reCAPTCHA Public key and Private key from there over to your X-Cart settings.

Re: Spam through X-Cart
 

It is not as simple as you say:

https://www.dropbox.com/s/20llqyrr479lg8f/Screen%20Shot%202018-03-27%20at%209.33.57%20AM.png?dl=0, it still needs few more entries

Re: Spam through X-Cart
 

Enabling reCAPTCHA on an XC5 Contact Page is very easy to do. The references provided by @qualiteam are quite clear.

The google account setup / data that's required etc isn't an XC issue, that's something that's within your own area of control / administration. We have reCAPTCHA enabled on the Contact Us page on both live and all of our dev stores and it works very well on all of them. They are all independent Google data sets FWIW.

In addition, if you have sufficient access on your own server, tech knowledge etc, there are many actions that you can easily invoke to minimise spam, including the one you mentioned initially i.e. mimicking your own server / domain as the spam sender. If you don't, your hosting provide should / will. Again this is something that's within your own area of control / administration not XC.