Jump to content

Web site targeted by spammers


sam99

Recommended Posts

I'm getting spammers constantly attacking my site by either registering or just scanning my site. As soon as I block one using HTACCESS another joins. I'm unable to use captcha as it does not seem to be supported by Kurouto. I've switched off emailing so as to stop these bots using my email client to  spam others

Also I'm constantly being scanned by spammer bots, as shown by users online which have not registered, I realise some of these I are legitimate bots but most are not, of which the spamming IP address below is black listed on https://www.abuseipdb.com/ , see below, (BTW I've altered the web address so as to not attract more spammers)

Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=702019ff6c4550a4595b9d3e115e994a&_a=product&product_id=419 » Today, 08:42 Today, 08:42 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=702019ff6c4550a4595b9d3e115e994a&_a=product&product_id=419 » Today, 08:42 Today, 08:42 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=57aa8bab1b05eca0a55a25c698108f38&_a=product&product_id=419 » Today, 08:41 Today, 08:41 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=57aa8bab1b05eca0a55a25c698108f38&_a=product&product_id=419 » Today, 08:41 Today, 08:41 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=570ec082a4cddcb76d5037a461bf7632&_a=product&product_id=419 » Today, 08:40 Today, 08:40 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=570ec082a4cddcb76d5037a461bf7632&_a=product&product_id=419 » Today, 08:39 Today, 08:39 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=53185c8931f3f8e871354485bdd87a88&_a=product&product_id=419 » Today, 08:38 Today, 08:38 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=53185c8931f3f8e871354485bdd87a88&_a=product&product_id=419 » Today, 08:38 Today, 08:38 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=4642c78ec97f074d83aeb0654e1150df&_a=product&product_id=419 » Today, 08:38 Today, 08:38 0.00
 Guest  
[66.249.66.159]  https://www.internetshop/index.php?act=viewProd&productId=30&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=4754c76ea4c019581426ea753f258ced&_a=product&product_id=30 » Today, 08:37 Today, 08:37 0.02
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=4642c78ec97f074d83aeb0654e1150df&_a=product&product_id=419 » Today, 08:37 Today, 08:37 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=137c5c17675bcf2374f8bc12e880e273&_a=product&product_id=419 » Today, 08:37 Today, 08:37 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=137c5c17675bcf2374f8bc12e880e273&_a=product&product_id=419 » Today, 08:36 Today, 08:36 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=044a4f5d9636dcb1e71f8d7e71cbdd0a&_a=product&product_id=419 » Today, 08:36 Today, 08:36 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=419&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=044a4f5d9636dcb1e71f8d7e71cbdd0a&_a=product&product_id=419 » Today, 08:35 Today, 08:35 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=d7838b20e9f5ed5ded245655cd5b78ce&_a=product&product_id=418 » Today, 08:34 Today, 08:34 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=d7838b20e9f5ed5ded245655cd5b78ce&_a=product&product_id=418 » Today, 08:34 Today, 08:34 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=b883f47e944c31dd8140c10b12633a95&_a=product&product_id=418 » Today, 08:33 Today, 08:33 0.00
 Guest  
[192.99.7.182]  http://internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=b883f47e944c31dd8140c10b12633a95&_a=product&product_id=418 » Today, 08:32 Today, 08:32 0.00
 Guest  
[192.99.7.182]  https://www.internetshop/index.php?act=viewProd&productId=418&ccSID08d9c7843f5fd94eef9876bc9b24ddb5=57aa8bab1b05eca0a55a25c698108f38&_a=product&product_id=418 » Today, 08:32 Today, 08:32 0.00

 

 

My question is how do these bots use Cubecart  to spam my customers, and whats the point of being scanned as shown in the users online list above

Many thanks for your advice Sam

 

 

 

Link to comment
Share on other sites

Those entries in the log suggest the visitor is using both CubeCart 3/4 (act=viewProd) and also CubeCart 5 (_a=product) -style querystrings. I also see the cookie in the querystring, changing each time, but requesting to see the same product.

To spam others (not your customers, as that would imply the email addresses of your existing customers are known) via your store, the store would need to have a "Tell a Friend" feature enabled. If you don't need this, we can give instruction on how to disable it.

Link to comment
Share on other sites

I really just want to know the anatomy of a spammer & a spam bot with Cubecart?

What is the point of the query strings I gave in the earlier post, how does this help a spammer, I realise legitimate bots (web crawlers) such as Google & MS scan web pages to update their interweb databases but why do spammers do it. BTW there is no way in stopping this web crawler process (apart from htaccess ) as these bots do not log on. Anyone running a Cubecart shop should check their 'Statistics/users Online page' to see what I mean, I'll bet most popular Cubecart shops will have these web crawling scans.

Secondly when a bot joins the web shop, how does it spam the Cubecart customers, does it use the Mailing list or can it access every customer in the database

Many thanks for your help & please forgive my lack of internet technical knowledge

Link to comment
Share on other sites

Sam

 

I use Karouto on one of my sites, which has been modified to utilise re-capture.

I'd be happy to share this with you if it helps, although i do have a few custom mods on the site so there may be code in the skin which is of no use to you.

Worth a try for free.

 

PM me your email address.

Link to comment
Share on other sites

Many thanks for the offer but every time I play around with the code other problems occur!!!

Is it possible to completely disable the newsletter subscriptions, Ive already stared out the {*mail_list*} in the main.php but this does not stop subscribe to newsletter when signing on or in the 'Your Account' page

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...