Follow us on Twitter X-Cart on Facebook Wiki
Shopping cart software Solutions for online shops and malls

Spam through X-Cart

 
Reply
   X-Cart forums > X-Cart 5 > General questions (X-Cart 5)
 
Thread Tools Search this Thread
  #1  
Old 03-14-2018, 05:45 AM
 
Zack P. Zack P. is offline
 

Advanced Member
  
Join Date: Oct 2016
Posts: 94
 

Default Spam through X-Cart

Lately we are experiencing a lot of spam coming from Russia through our contact form on the WEB site. It is just few lines with links and also like somebody is selling condo there.

Here, I disabled links:

Name: Mariagus
Email: fbntnmqce@smajok.ru
Subject: online gambling casino
online casino
<a href="htt*://o*casino24.com/">casino games</a>
<a href="htt*://o*casino24.com/">online casino slots</a>
cassino

Since it is coming in every day I don't think somebody is going to site and sending messages. I am afraid that somebody broke into site and is tied directly through server.
__________________
5.3.2.2 Business License

Last edited by qualiteam : 03-14-2018 at 07:37 AM.
Reply With Quote
  #2  
Old 03-14-2018, 07:43 AM
  qualiteam's Avatar 
qualiteam qualiteam is offline
 

X-Guru
  
Join Date: Dec 2010
Posts: 6,373
 

Default Re: Spam through X-Cart

I believe there is a way to enable the free built-in reCaptcha protection for the contact form.
Try to enable it and check if the SPAM stops.
If this helps, you may also consider a better version of the function: https://market.x-cart.com/addons/google-recaptcha.html

Also, what e-mail client do you use? It makes sense to check the e-mail headers and make sure that it is your server that sends the messages. You can find instructions for GMail here: https://support.google.com/mail/answer/29436?hl=en
__________________
Alex Solovev,
Qualiteam

---

User manual Video tutorials X-Cart FAQ

You are welcome to press "Thanks" button
if you find this post useful

Click here to learn how to apply patches

X-Cart Extensions
Reply With Quote
  #3  
Old 03-14-2018, 09:19 AM
 
Zack P. Zack P. is offline
 

Advanced Member
  
Join Date: Oct 2016
Posts: 94
 

Default Re: Spam through X-Cart

Thanks for answer. Will check header on next spam e-mail.
As for Captcha I went to enable it but it asks for changes to be done to pages and server that we don't know how to implement so won't do it for now.
__________________
5.3.2.2 Business License
Reply With Quote
  #4  
Old 03-14-2018, 06:44 PM
 
Zack P. Zack P. is offline
 

Advanced Member
  
Join Date: Oct 2016
Posts: 94
 

Default Re: Spam through X-Cart

Just received one and it looks like it was originated from our site cardacc.com

Content-Type: ⁨multipart/alternative; boundary="b1_408a5a6306323648dd94734e2285f4ac"⁩
Mime-Version: ⁨1.0⁩
X-Get-Message-Sender-Via: ⁨viking.ica.net: authenticated_id: cardacc/only user confirmed/virtual account not confirmed⁩
Dkim-Signature: ⁨v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=almexltd.com; s=default; h=Content-Type:MIME-Version:Reply-To:Message-ID: Fromate:Subject:To:Sender:Cc:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=lgYs4uzRsUv1qb7I0uVLNpl97PJBQyHFaaSMe34uR68 b=MWPR0vO2o3i47iOzy2MQslBbc7 vi/zwbSP2wglJ4oOsDyOe3ZSNLctY6oDqEtRE8MuDqidD0SaBWvj6 zkTVp3UzHE4vk2XESahj/Bub IkKIiE8/VvQlIbYRFmRaIKhWRNtbw22Ar7xGnotp59qT5vL2TLgBJQa871 YnmBfH4oN6cq8mB1Zh+ QTmVaCut/lXRHX9pv0E2X6XV0SDXgfki7HK988gZsS7ZfTq4t/MuqaL83NW9CNvGCVIpI5h3601qk 8bBEzhCoADm3xam0L5iFy0EapwpDJbwKitAOcCzmJn6m5mBxMU dncZ/q5XyorTYKp0eKU/h4raFpx qRVQrGcw=
X-Mailer: ⁨PHPMailer 5.2.22 (https://github.com/PHPMailer/PHPMailer)⁩
X-Source-Dir: ⁨cardacc.com:/public_html⁩
X-Antiabuse: ⁨This header was added to track abuse, please include it with any abuse report⁩
X-Antiabuse: ⁨Primary Hostname - viking.ica.net⁩
X-Antiabuse: ⁨Original Domain - almexltd.com⁩
X-Antiabuse: ⁨Originator/Caller UID/GID - [1034 494] / [47 12]⁩
X-Antiabuse: ⁨Sender Address Domain - almexltd.com⁩
X-Source: ⁨⁩
X-Authenticated-Sender: ⁨viking.ica.net: cardacc⁩
X-Php-Script: ⁨www.cardacc.com/cart.php for 178.159.37.18⁩
X-Php-Originating-Script: ⁨1034:class.phpmailer.php⁩
Received: ⁨from viking.ica.net ([209.151.129.171]) by mail7.ica.net (IceWarp 10.4.5) with ESMTP (SSL) id 201803142239423984 for <sales@almexltd.com>; Wed, 14 Mar 2018 22:39:42 -0400⁩
Received: ⁨from cardacc by viking.ica.net with local (Exim 4.89_1) (envelope-from <sales@almexltd.com>) id 1ewIny-0007Xh-2F for sales@almexltd.com; Wed, 14 Mar 2018 22:39:46 -0400⁩
⁨<408a5a6306323648dd94734e2285f4ac@www.cardacc.c om>⁩
X-Source-Args: ⁨/usr/sbin/httpd -k start ⁩
__________________
5.3.2.2 Business License
Reply With Quote
  #5  
Old 03-16-2018, 02:04 PM
 
groovedis groovedis is offline
 

Advanced Member
  
Join Date: Apr 2005
Posts: 52
 

Default Re: Spam through X-Cart

We are having the same issue. There are TONS of these emails. I'd be happy to just turn off the Contact Us page to be honest but in version 4.xxx I don't think I can.
__________________
X-Cart version 4.0.13 (unix)
Reply With Quote
  #6  
Old 03-16-2018, 04:04 PM
 
Zack P. Zack P. is offline
 

Advanced Member
  
Join Date: Oct 2016
Posts: 94
 

Default Re: Spam through X-Cart

That is exactly what we had to do, turned off contact page and that is a shame
__________________
5.3.2.2 Business License
Reply With Quote
  #7  
Old 03-17-2018, 06:18 AM
 
elmirage001 elmirage001 is offline
 

X-Wizard
  
Join Date: Apr 2007
Posts: 1,908
 

Default Re: Spam through X-Cart

Quote:
Originally Posted by groovedis
We are having the same issue. There are TONS of these emails. I'd be happy to just turn off the Contact Us page to be honest but in version 4.xxx I don't think I can.

Hi groovedis. You're in a X-Cart 5 post.

Please see this X-Cart 4 post https://forum.x-cart.com/showthread.php?t=74978
__________________
X-Cart GoldPlus v4.7.12 | reBOOT (reDUX) Template | Live
X-Cart GoldPlus v4.7.12 | reBOOT (reDUX) Template | Dev
  • XCARTMODS.CO.UK | reBOOT (reDUX) |
  • Performive Hosting | Linux | PHP v7.4.15 | MySQL v5.7.33 |
Reply With Quote
  #8  
Old 03-27-2018, 01:41 AM
  qualiteam's Avatar 
qualiteam qualiteam is offline
 

X-Guru
  
Join Date: Dec 2010
Posts: 6,373
 

Default Re: Spam through X-Cart

Yes, the e-mail seems to be sent by your server.
Enabling reCaptcha on the contact form should help.

Quote:
Originally Posted by Zack P.
As for Captcha I went to enable it but it asks for changes to be done to pages and server that we don't know how to implement so won't do it for now.

What changes do you mean?

Please check this article:
https://kb.x-cart.com/look_and_feel/enabling_the_contact_us_form.html

You just need to sign up on the reCaptcha site any copy your reCAPTCHA Public key and Private key from there over to your X-Cart settings.
__________________
Alex Solovev,
Qualiteam

---

User manual Video tutorials X-Cart FAQ

You are welcome to press "Thanks" button
if you find this post useful

Click here to learn how to apply patches

X-Cart Extensions
Reply With Quote
  #9  
Old 03-27-2018, 05:45 AM
 
Zack P. Zack P. is offline
 

Advanced Member
  
Join Date: Oct 2016
Posts: 94
 

Default Re: Spam through X-Cart

It is not as simple as you say:

https://www.dropbox.com/s/20llqyrr479lg8f/Screen%20Shot%202018-03-27%20at%209.33.57%20AM.png?dl=0, it still needs few more entries
__________________
5.3.2.2 Business License
Reply With Quote
  #10  
Old 03-27-2018, 10:50 PM
 
Triple A Racing Triple A Racing is offline
 

X-Wizard
  
Join Date: Jul 2008
Location: Manchester UK
Posts: 1,013
 

Default Re: Spam through X-Cart

Quote:
Originally Posted by Zack P.
It is not as simple as you say:
https://www.dropbox.com/s/20llqyrr479lg8f/Screen%20Shot%202018-03-27%20at%209.33.57%20AM.png?dl=0, it still needs few more entries
Enabling reCAPTCHA on an XC5 Contact Page is very easy to do. The references provided by @qualiteam are quite clear.

The google account setup / data that's required etc isn't an XC issue, that's something that's within your own area of control / administration. We have reCAPTCHA enabled on the Contact Us page on both live and all of our dev stores and it works very well on all of them. They are all independent Google data sets FWIW.

In addition, if you have sufficient access on your own server, tech knowledge etc, there are many actions that you can easily invoke to minimise spam, including the one you mentioned initially i.e. mimicking your own server / domain as the spam sender. If you don't, your hosting provide should / will. Again this is something that's within your own area of control / administration not XC.
__________________
Dev Store & Live Store XC Business 5.4.1.35
Server; Ubuntu 20.04.4 LTS (HWE 5.13.0.41.46 Kernel)) / Plesk Obsidian
Nginx 1.20.2 / Apache 2.4.41 (Ubuntu Backported) / MariaDB 10.5.16 / PHP 7.4.29
Reply With Quote
Reply
   X-Cart forums > X-Cart 5 > General questions (X-Cart 5)


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -8. The time now is 05:07 AM.

   

 
X-Cart forums © 2001-2020