keat Posted March 23, 2010 Share Posted March 23, 2010 Guys. I received an email bounce notifcation today that my store couldn't deliver a sale notification to a customer. Of course, it's a fake email address, so it would bounce.. But Looking in the database, there is no sale, and no new customer registration either. The sale is also supposedly from my own domain, and dated Jan 1st 1970. Am I being hacked or phised etc A message that you sent contained no recipient addresses, and therefore no delivery could be attempted. ------ This is a copy of your message, including all the headers. ------ To: Subject: Order No: DBO-100323-101526-4454 X-PHP-Script: www.drillbitsonline.co.uk/confirmed.php for 92.233.37.15 MIME-Version: 1.0 From: Drill Bits Online from KingPoint <[email protected]> X-Mailer: CubeCart Mailer Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 7bit Message-ID: <[email protected]> Date: Tue, 23 Mar 2010 10:24:17 +0000 Dear , Thank you for your order no: DBO-100323-101526-4454 placed on Jan 01 1970, 00:00 AM The transaction was successful and we will ship your goods at the first possible opportunity (if applicable). ~~~~~~~~~~~~~~~~~~~~~~~~~~ Company: Name: Subtotal: Coupon Discount: Postage & Packaging: Tax: Grand Total: ~~~~~~~~~~~~~~~~~~~~~~~~~~ Invoice Address: Shipping Address: Payment Method: Shipping Method: ~~~~~~~~~~~~~~~~~~~~~~~~~~ Order Inventory: Quote Link to comment Share on other sites More sharing options...
keat Posted March 23, 2010 Author Share Posted March 23, 2010 Under closer examination.. the I.P address 92.233.37.15 is the same one as a genuine customer order made 5 minutes earlier. Maybe it's his PC that is being phised ??? any advice would be welcomed. Quote Link to comment Share on other sites More sharing options...
bsmither Posted March 23, 2010 Share Posted March 23, 2010 My guess: Your customer hit the Back button which eventually re-ran across the confirmed script. Sometimes (or so I believe) a browser will show pages from its history cache, sometimes it will fetch a fresh copy. In fetching a fresh copy, certain tasks are re-executed, and one such task is notifying the customer of a successful order. The reason the fields were all blank is because one of the above mentioned tasks is to empty the shopping cart. Quote Link to comment Share on other sites More sharing options...
keat Posted March 24, 2010 Author Share Posted March 24, 2010 My guess: Your customer hit the Back button which eventually re-ran across the confirmed script. Sometimes (or so I believe) a browser will show pages from its history cache, sometimes it will fetch a fresh copy. In fetching a fresh copy, certain tasks are re-executed, and one such task is notifying the customer of a successful order. The reason the fields were all blank is because one of the above mentioned tasks is to empty the shopping cart. Phew Thanks for the explanation Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.