| ||||||||||
Shopping cart software Solutions for online shops and malls | ||||||||||
|
X-Cart Home | FAQ | Forum rules | Calendar | User manuals | Login |
Spam through X-Cart | |||
|
|
Thread Tools | Search this Thread |
#1
|
|||||||
|
|||||||
Spam through X-Cart
Lately we are experiencing a lot of spam coming from Russia through our contact form on the WEB site. It is just few lines with links and also like somebody is selling condo there.
Here, I disabled links: Name: Mariagus Email: fbntnmqce@smajok.ru Subject: online gambling casino online casino <a href="htt*://o*casino24.com/">casino games</a> <a href="htt*://o*casino24.com/">online casino slots</a> cassino Since it is coming in every day I don't think somebody is going to site and sending messages. I am afraid that somebody broke into site and is tied directly through server.
__________________
5.3.2.2 Business License Last edited by qualiteam : 03-14-2018 at 07:37 AM. |
|||||||
#2
|
|||||||||
|
|||||||||
Re: Spam through X-Cart
I believe there is a way to enable the free built-in reCaptcha protection for the contact form.
Try to enable it and check if the SPAM stops. If this helps, you may also consider a better version of the function: https://market.x-cart.com/addons/google-recaptcha.html Also, what e-mail client do you use? It makes sense to check the e-mail headers and make sure that it is your server that sends the messages. You can find instructions for GMail here: https://support.google.com/mail/answer/29436?hl=en
__________________
Alex Solovev, Qualiteam --- User manual Video tutorials X-Cart FAQ You are welcome to press "Thanks" button if you find this post useful Click here to learn how to apply patches X-Cart Extensions |
|||||||||
#3
|
|||||||
|
|||||||
Re: Spam through X-Cart
Thanks for answer. Will check header on next spam e-mail.
As for Captcha I went to enable it but it asks for changes to be done to pages and server that we don't know how to implement so won't do it for now.
__________________
5.3.2.2 Business License |
|||||||
#4
|
|||||||
|
|||||||
Re: Spam through X-Cart
Just received one and it looks like it was originated from our site cardacc.com
Content-Type: multipart/alternative; boundary="b1_408a5a6306323648dd94734e2285f4ac" Mime-Version: 1.0 X-Get-Message-Sender-Via: viking.ica.net: authenticated_id: cardacc/only user confirmed/virtual account not confirmed Dkim-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=almexltd.com; s=default; h=Content-Type:MIME-Version:Reply-To:Message-ID: Fromate:Subject:To:Sender:Cc:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=lgYs4uzRsUv1qb7I0uVLNpl97PJBQyHFaaSMe34uR68 b=MWPR0vO2o3i47iOzy2MQslBbc7 vi/zwbSP2wglJ4oOsDyOe3ZSNLctY6oDqEtRE8MuDqidD0SaBWvj6 zkTVp3UzHE4vk2XESahj/Bub IkKIiE8/VvQlIbYRFmRaIKhWRNtbw22Ar7xGnotp59qT5vL2TLgBJQa871 YnmBfH4oN6cq8mB1Zh+ QTmVaCut/lXRHX9pv0E2X6XV0SDXgfki7HK988gZsS7ZfTq4t/MuqaL83NW9CNvGCVIpI5h3601qk 8bBEzhCoADm3xam0L5iFy0EapwpDJbwKitAOcCzmJn6m5mBxMU dncZ/q5XyorTYKp0eKU/h4raFpx qRVQrGcw= X-Mailer: PHPMailer 5.2.22 (https://github.com/PHPMailer/PHPMailer) X-Source-Dir: cardacc.com:/public_html X-Antiabuse: This header was added to track abuse, please include it with any abuse report X-Antiabuse: Primary Hostname - viking.ica.net X-Antiabuse: Original Domain - almexltd.com X-Antiabuse: Originator/Caller UID/GID - [1034 494] / [47 12] X-Antiabuse: Sender Address Domain - almexltd.com X-Source: X-Authenticated-Sender: viking.ica.net: cardacc X-Php-Script: www.cardacc.com/cart.php for 178.159.37.18 X-Php-Originating-Script: 1034:class.phpmailer.php Received: from viking.ica.net ([209.151.129.171]) by mail7.ica.net (IceWarp 10.4.5) with ESMTP (SSL) id 201803142239423984 for <sales@almexltd.com>; Wed, 14 Mar 2018 22:39:42 -0400 Received: from cardacc by viking.ica.net with local (Exim 4.89_1) (envelope-from <sales@almexltd.com>) id 1ewIny-0007Xh-2F for sales@almexltd.com; Wed, 14 Mar 2018 22:39:46 -0400 <408a5a6306323648dd94734e2285f4ac@www.cardacc.c om> X-Source-Args: /usr/sbin/httpd -k start
__________________
5.3.2.2 Business License |
|||||||
#5
|
|||||||
|
|||||||
Re: Spam through X-Cart
We are having the same issue. There are TONS of these emails. I'd be happy to just turn off the Contact Us page to be honest but in version 4.xxx I don't think I can.
__________________
X-Cart version 4.0.13 (unix) |
|||||||
#6
|
|||||||
|
|||||||
Re: Spam through X-Cart
That is exactly what we had to do, turned off contact page and that is a shame
__________________
5.3.2.2 Business License |
|||||||
#7
|
|||||||
|
|||||||
Re: Spam through X-Cart
Quote:
Hi groovedis. You're in a X-Cart 5 post. Please see this X-Cart 4 post https://forum.x-cart.com/showthread.php?t=74978
__________________
X-Cart GoldPlus v4.7.12 | reBOOT (reDUX) Template v4.7.12.9 | Always The Best |
|||||||
#8
|
|||||||||
|
|||||||||
Re: Spam through X-Cart
Yes, the e-mail seems to be sent by your server.
Enabling reCaptcha on the contact form should help. Quote:
What changes do you mean? Please check this article: https://kb.x-cart.com/look_and_feel/enabling_the_contact_us_form.html You just need to sign up on the reCaptcha site any copy your reCAPTCHA Public key and Private key from there over to your X-Cart settings.
__________________
Alex Solovev, Qualiteam --- User manual Video tutorials X-Cart FAQ You are welcome to press "Thanks" button if you find this post useful Click here to learn how to apply patches X-Cart Extensions |
|||||||||
#9
|
|||||||
|
|||||||
Re: Spam through X-Cart
It is not as simple as you say:
https://www.dropbox.com/s/20llqyrr479lg8f/Screen%20Shot%202018-03-27%20at%209.33.57%20AM.png?dl=0, it still needs few more entries
__________________
5.3.2.2 Business License |
|||||||
#10
|
|||||||
|
|||||||
Re: Spam through X-Cart
Quote:
The google account setup / data that's required etc isn't an XC issue, that's something that's within your own area of control / administration. We have reCAPTCHA enabled on the Contact Us page on both live and all of our dev stores and it works very well on all of them. They are all independent Google data sets FWIW. In addition, if you have sufficient access on your own server, tech knowledge etc, there are many actions that you can easily invoke to minimise spam, including the one you mentioned initially i.e. mimicking your own server / domain as the spam sender. If you don't, your hosting provide should / will. Again this is something that's within your own area of control / administration not XC.
__________________
Dev Store & Live Store XC Business 5.4.1.35 Server; Ubuntu 22.04.2 LTS (HWE 6.2.0.26.26 Kernel)) / Plesk Obsidian Nginx 1.20.4 / Apache 2.4.52 (Ubuntu Backported) / MariaDB 10.11.4 / PHP 7.4.33 |
|||||||
|
|||
X-Cart forums © 2001-2020
|