sam99 Posted November 26, 2019 Share Posted November 26, 2019 I'm getting spammers constantly attacking my site by either registering or just scanning my site. As soon as I block one using HTACCESS another joins. I'm unable to use captcha as it does not seem to be supported by Kurouto. I've switched off emailing so as to stop these bots using my email client to spam others Also I'm constantly being scanned by spammer bots, as shown by users online which have not registered, I realise some of these I are legitimate bots but most are not, of which the spamming IP address below is black listed on https://www.abuseipdb.com/ , see below, (BTW I've altered the web address so as to not attract more spammers) Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=702019ff6c4550a4595b9d3e115e994a&_a=product&product_id=419 » Today, 08:42 Today, 08:42 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=702019ff6c4550a4595b9d3e115e994a&_a=product&product_id=419 » Today, 08:42 Today, 08:42 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=57aa8bab1b05eca0a55a25c698108f38&_a=product&product_id=419 » Today, 08:41 Today, 08:41 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=57aa8bab1b05eca0a55a25c698108f38&_a=product&product_id=419 » Today, 08:41 Today, 08:41 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=570ec082a4cddcb76d5037a461bf7632&_a=product&product_id=419 » Today, 08:40 Today, 08:40 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=570ec082a4cddcb76d5037a461bf7632&_a=product&product_id=419 » Today, 08:39 Today, 08:39 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=53185c8931f3f8e871354485bdd87a88&_a=product&product_id=419 » Today, 08:38 Today, 08:38 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=53185c8931f3f8e871354485bdd87a88&_a=product&product_id=419 » Today, 08:38 Today, 08:38 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=4642c78ec97f074d83aeb0654e1150df&_a=product&product_id=419 » Today, 08:38 Today, 08:38 0.00 Guest [66.249.66.159] https://www.internetshop/index.php?act=viewProd&productId=30&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=4754c76ea4c019581426ea753f258ced&_a=product&product_id=30 » Today, 08:37 Today, 08:37 0.02 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=4642c78ec97f074d83aeb0654e1150df&_a=product&product_id=419 » Today, 08:37 Today, 08:37 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=137c5c17675bcf2374f8bc12e880e273&_a=product&product_id=419 » Today, 08:37 Today, 08:37 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=137c5c17675bcf2374f8bc12e880e273&_a=product&product_id=419 » Today, 08:36 Today, 08:36 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=044a4f5d9636dcb1e71f8d7e71cbdd0a&_a=product&product_id=419 » Today, 08:36 Today, 08:36 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=044a4f5d9636dcb1e71f8d7e71cbdd0a&_a=product&product_id=419 » Today, 08:35 Today, 08:35 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=d7838b20e9f5ed5ded245655cd5b78ce&_a=product&product_id=418 » Today, 08:34 Today, 08:34 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=d7838b20e9f5ed5ded245655cd5b78ce&_a=product&product_id=418 » Today, 08:34 Today, 08:34 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=b883f47e944c31dd8140c10b12633a95&_a=product&product_id=418 » Today, 08:33 Today, 08:33 0.00 Guest [192.99.7.182] http://internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=b883f47e944c31dd8140c10b12633a95&_a=product&product_id=418 » Today, 08:32 Today, 08:32 0.00 Guest [192.99.7.182] https://www.internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=57aa8bab1b05eca0a55a25c698108f38&_a=product&product_id=418 » Today, 08:32 Today, 08:32 0.00 My question is how do these bots use Cubecart to spam my customers, and whats the point of being scanned as shown in the users online list above Many thanks for your advice Sam Link to comment Share on other sites More sharing options...
vidmarc Posted November 26, 2019 Share Posted November 26, 2019 Do you have reCAPTCHA enabled? Link to comment Share on other sites More sharing options...
sam99 Posted November 26, 2019 Author Share Posted November 26, 2019 I'm using Kuroutu skin which I don't think supports captcha. Link to comment Share on other sites More sharing options...
vidmarc Posted November 26, 2019 Share Posted November 26, 2019 Go to: Store Settings -> Features tab Link to comment Share on other sites More sharing options...
sam99 Posted November 26, 2019 Author Share Posted November 26, 2019 Capture does not work with this skin. Link to comment Share on other sites More sharing options...
vidmarc Posted November 26, 2019 Share Posted November 26, 2019 I'd suggest a skin that supports reCAPTCHA . Link to comment Share on other sites More sharing options...
bsmither Posted November 26, 2019 Share Posted November 26, 2019 Those entries in the log suggest the visitor is using both CubeCart 3/4 (act=viewProd) and also CubeCart 5 (_a=product) -style querystrings. I also see the cookie in the querystring, changing each time, but requesting to see the same product. To spam others (not your customers, as that would imply the email addresses of your existing customers are known) via your store, the store would need to have a "Tell a Friend" feature enabled. If you don't need this, we can give instruction on how to disable it. Link to comment Share on other sites More sharing options...
sam99 Posted November 26, 2019 Author Share Posted November 26, 2019 Kuroutu is the only skin that works for me. I don't think I have the tell a friend feature, I cant see it when looking at products logged in or out as a customer Link to comment Share on other sites More sharing options...
bsmither Posted November 26, 2019 Share Posted November 26, 2019 "I've switched off emailing so as to stop these bots using my email client to spam others." We need to learn more on how you believe your store is spamming your customers (and/or others). Link to comment Share on other sites More sharing options...
sam99 Posted November 27, 2019 Author Share Posted November 27, 2019 I really just want to know the anatomy of a spammer & a spam bot with Cubecart? What is the point of the query strings I gave in the earlier post, how does this help a spammer, I realise legitimate bots (web crawlers) such as Google & MS scan web pages to update their interweb databases but why do spammers do it. BTW there is no way in stopping this web crawler process (apart from htaccess ) as these bots do not log on. Anyone running a Cubecart shop should check their 'Statistics/users Online page' to see what I mean, I'll bet most popular Cubecart shops will have these web crawling scans. Secondly when a bot joins the web shop, how does it spam the Cubecart customers, does it use the Mailing list or can it access every customer in the database Many thanks for your help & please forgive my lack of internet technical knowledge Link to comment Share on other sites More sharing options...
keat Posted November 27, 2019 Share Posted November 27, 2019 Sam I use Karouto on one of my sites, which has been modified to utilise re-capture. I'd be happy to share this with you if it helps, although i do have a few custom mods on the site so there may be code in the skin which is of no use to you. Worth a try for free. PM me your email address. Link to comment Share on other sites More sharing options...
sam99 Posted November 27, 2019 Author Share Posted November 27, 2019 Many thanks for the offer but every time I play around with the code other problems occur!!! Is it possible to completely disable the newsletter subscriptions, Ive already stared out the {*mail_list*} in the main.php but this does not stop subscribe to newsletter when signing on or in the 'Your Account' page Link to comment Share on other sites More sharing options...
keat Posted November 27, 2019 Share Posted November 27, 2019 As far as the kurouto skin goes, copy my korouto folder in to your skins folder. Enable it in the admin side, if it works, great, if it doesn't then switch back to yours. A 30 second job. Link to comment Share on other sites More sharing options...
sam99 Posted November 27, 2019 Author Share Posted November 27, 2019 BTW it looks as though I'm having the same problems as this post: Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.