Spam Form Protector Add-On

Link: https://support.brilliantdirectories.com/support/solutions/articles/12000046616-spam-form-protector-add-on

This is a Free Add-On and Enabled on All Websites

Overview


Brilliant Directories websites already include anti-spam measures like reCaptcha and honeypots, but spam is relentless. Bots always seem to find a way through a website’s defenses.


Enhance the site’s form security with Spam Form Protector by defining a set of keywords that are considered spam. The system will then block any submissions that contain those keywords.


Features & Benefits

  • List the specific keywords/phrases that the admin considers spam.
  • No limit for how many keywords the admin can blacklist.
  • Below is a list of recommended keywords to blacklist.
  • Form submissions containing spam keywords will be blocked.
  • Focus time on the business instead of dealing with spam.


Enabling the Add-On


Enter Blocked Keywords:


Navigate to Settings >> General Settings, click on the "Integrations". First in the Integrations is the Blocked Spam Keywords list, the admin can add additional keywords that will be blocked or leave this list as is:





Important: Below is the comma separated list of curated keywords and phrases that we have found to be commonly included in spam form submissions. 


$$$, /click, .click, 24/7, .html, .ru, [/url, [img, [url, aceteminophen, act now, adderall, additional income, adidas, adipex, adultdating, advicer, air%20jordan, air jordan, air-jordan, airjordan, air%20max, air max, air-max, airmax, ambien, animated video, baccarrat, bad credit, bdsm, bitcoin, bit.ly, blackjack, bllogspot, beautiful girls, bonus offer, boost traffic, boost revenue, boost your traffic, boost your revenue, boyfriend, carisoprodol, casino, cephalaxin, cialis, citalopram, click below, click here, click the link, click on the link, clomid, coolhu, crypto, cyclen, cyclobenzaprine, cymbalta, dating, deposit now, discreetordering, domain=, doxycycline, drive.google, emailsz, ephedra, essay, fastmail, few clicks, fioricet, freenet, free registration, free shipping, gamble, gambling, gdf, gds, girlfriend, goo.gl, goodoffers, hair loss, hair-loss, hairloss, holdem, hqtube, hot girl, hot woman, hot women, hydrocodone, incest, increase traffic, increase revenue, increase your traffic, increase your revenue, Instant approval, interesting offering, iphone, just click, jrcreations, laminine, lawyer-emails, levitra, lexapro, lipitor, loans, lorazepam, lunestra, macinstruct, mailfence, marketing video, meridia, msgsafe, naked, new%20balance, new balance, new-balance, newbalance, nike, ninja video, now!, nude, offilive, omega, opt out, opt-out, ottawavalleyag, ownsthis, oxycodone, oxycontin, paxil, percocet, perweek, pharmacies, pharmacy, phentermine, prescription, poker, porn, poze, propecia, protonmail, remove here, roulette, slot machine, scryptmail, slotmachine, slot-machine, soma, sperm, thorcarlson, TikTok, Tik Tok, tinyurl, trading platform, trading system, tramadol, tumblr, tutanota, ultram, unsubscribe/remove, unsubscribe here, url=, valium, valtrex, viagra, vicodin, vicoprofen, video marketing, video stream, vioxx, website traffic, weight loss, weightloss, weight-loss, wholesale, xanax, xenical, yopmail, yourmail, you won, zoho, zolus, cliptik, geroev, shayzam, khtyler, nando1, providier, datasoma, lagify, zdfpost, earn$, get$, invest$, from$, make$, earn $, get $, invest $, from $, make $, earnmoney, getmoney, investmoney, makemoney, earn money, get money, invest money, make money, no-reply, noreply, ¬, µ, Б, в, Г, д, Ђ, Ё, ж, З, и, й, Л, њ, П, Ф, Ц, Ч, џ, Ш, Щ, Ъ, ы, Э, Ю, Я, Ѓ, С, 主, 云, 享, 克, 內, 分, 北, 及, 台, 器, 報, 學, 室, 專, 小, 市, 情, 戲, 技, 揚, 擬, 擴, 教, 有, 格, 機, 歌, 無, 營, 禾, 空, 線, 華, 萬, 落, 虛, 蜂, 蜜, 術, 計, 設, 遊, 部, 間, 限, 音, 風, 麥, 專, 業, 光, 碟, 教, 學, 網, 站, 娛, 樂, 城, 介, 紹, 國, 中, 基, 測, 歷, 屆, 試, 題, 命, 心, 滿, 送, 歐, 客, 佬, 精, 品, 咖, 咖, 啡, 太, 達, 數, 位, 媒, 體rn



Block Spoof Characters


ɑ,Α,α,а,Ꭺ,ß,ʙ,Β,β,В,Ь,Ᏼ,ᛒ,ϲ,Ϲ,С,с,Ꮯ,В,Ь,Ᏼ,ᛒ,ϲ,Ϲ,С,с,Ꮯ,ԁ,ժ,Ꭰ,Ε,Е,е,Ꭼ,Ϝ,ɡ,ɢ,Ԍ,ն,Ꮐ,ʜ,Η,Н,һ,Ꮋ,ɩ,Ι,І,і,ا,Ꭵ,ᛁ,ϳ,Ј,ј,յ,Ꭻ,Κ,κ,К,Ꮶ,ᛕ,ʟ,ι,ا,Ꮮ,Μ,Ϻ,М,Ꮇ,ᛖ,ɴ,Ν,Ο,ο,О,о,Օ,Ρ,ρ,Р,р,Ꮲ,Ⴍ,Ⴓ,ʀ,Ի,Ꮢ,ᚱ,Ѕ,ѕ,Տ,Ⴝ,Ꮪ,Τ,τ,Т,Ꭲ,μ,υ,Ա,Ս,ν,Ѵ,ѵ,Ꮩ,ѡ,Ꮃ,Χ,χ,Х,х,ʏ,Υ,γ,у,Ү,Ζ,Ꮓ,Z,z


Spammers will often submit messages using characters that look like English letters but are not (also called "homoglyphs"). It is recommended to block these characters on sites that use English exclusively.


NOTE: The admin can get very specific as to what to block by using double quotes ( " ). 


e.g.: Block the word "sex" without the system blocking locations like Sexton, Iowa or Middlesex County, UK.



Block Disposable Email Addresses


Spammers will often submit messages or sign up using disposable email addresses. It is recommended to block these on sites experiencing higher levels of unwanted sign-ups. 


Below is the default list of emails that we have found to be commonly used for spam form submissions:


0-mail.com, 027168.com, 0815.ru, 0815.ry, 0815.su, 0845.ru, 0box.eu, 0clickemail.com, 0n0ff.net, 0nelce.com, 0v.ro, 0w.ro, 0wnd.net, 0wnd.org, 0x207.info, 1-8.biz, 1-tm.com, 10-minute-mail.com, 1000rebates.stream, 100likers.com, 105kg.ru, 10dk.email, 10mail.com, 10mail.org, 10mail.tk, 10minmail.de, 10minut.com.pl, 10minut.xyz, 10minutemail.be, 10minutemail.cf, 10minutemail.co.uk, 10minutemail.co.za, 10minutemail.com, 10minutemail.de, 10minutemail.ga, 10minutemail.gq, 10minutemail.ml, 10minutemail.net, 10minutemail.nl, 10minutemail.pro, 10minutemail.us, 10minutemailbox.com, 10minutemails.in, 10minutenemail.de, 10minutenmail.xyz, 10minutesmail.com, 10minutesmail.fr, 10minutmail.pl, 10x9.com, 11163.com, 123-m.com, 12hosting.net, 12houremail.com, 12minutemail.com, 12minutemail.net, 12storage.com, 140unichars.com, 147.cl, 14n.co.uk, 15qm.com, 1blackmoon.com, 1ce.us, 1chuan.com, 1clck2.com, 1fsdfdsfsdf.tk, 1mail.ml, 1pad.de, 1s.fr, 1secmail.com, 1secmail.net, 1secmail.org, 1st-forms.com, 1to1mail.org, 1usemail.com, 1webmail.info, 1zhuan.com, 2012-2016.ru, 20email.eu, 20email.it, 20mail.eu, 20mail.in, 20mail.it, 20minutemail.com, 20minutemail.it, 20mm.eu, 2120001.net, 21cn.com, 247web.net, 24hinbox.com, 24hourmail.com, 24hourmail.net, 2anom.com, 2chmail.net, 2ether.net, 2fdgdfgdfgdf.tk, 2odem.com, 2prong.com, 2wc.info, 300book.info, 30mail.ir, 30minutemail.com, 30wave.com, 3202.com, 36ru.com, 3d-painting.com, 3l6.com, 3mail.ga, 3trtretgfrfe.tk, 4-n.us, 4057.com, 418.dk, 42o.org, 4gfdsgfdgfd.tk, 4k5.net, 4mail.cf, 4mail.ga, 4nextmail.com, 4nmv.ru, 4tb.host, 4warding.com, 4warding.net, 4warding.org, 50set.ru, 55hosting.net, 5ghgfhfghfgh.tk, 5gramos.com, 5july.org, 5mail.cf, 5mail.ga, 5minutemail.net, 5oz.ru, 5tb.in, 5x25.com, 5ymail.com, 60minutemail.com, 672643.net, 675hosting.com, 675hosting.net, 675hosting.org, 6hjgjhgkilkj.tk, 6ip.us, 6mail.cf, 6mail.ga, 6mail.ml, 6paq.com, 6somok.ru, 6url.com, 75hosting.com, 75hosting.net, 75hosting.org, 7days-printing.com, 7mail.ga, 7mail.ml, 7tags.com, 80665.com, 8127ep.com, 8mail.cf, 8mail.ga, 8mail.ml, 99.com, 99cows.com, 99experts.com, 9mail.cf, 9me.site, 9mot.ru, 9ox.net, 9q.ro, a-bc.net, a45.in, a7996.com, aa5zy64.com, abacuswe.us, abakiss.com, abcmail.email, abilitywe.us, abovewe.us, absolutewe.us, abundantwe.us, abusemail.de, abuser.eu, abyssmail.com, ac20mail.in, academiccommunity.com, academywe.us, acceleratewe.us, accentwe.us, acceptwe.us,



NOTES: This will only apply to email field types in forms. This list will only block exact matches for email domains.


We advise against blocking commonly used email domains, such as gmail.com, outlook.com, yahoo.com, hotmail.com, aol.com, hotmail.co.uk, etc. 


Blocking Particular Email Addresses


Should a particular email address persistently spam the website, it should NOT be included in the disposable email addresses. Instead use the "Enter Blocked Keywords" section, using the blocked keywords list that email address will be treated as a spam trigger


For instance: entering "[email protected]" would ensure this specific email address is blocked without impacting other addresses within the same domain.




Restore Recommended Block List


Restoring the block list will allow the admin to update the list so it includes all of the latest blocked spam keywords. Any updates to this list will be published along with our other Weekly Software Updates.




Front-End Use

When logging in as the admin of the website, the forms will show the exact reason the form is not submitting. This error message, outlining the reason why the form cannot be submitted will not appear for the end user. The members or users will see a shorter version of the error:


Admin 
User or Member



The Spam Form Protector will work on the following forms:


  • Sign Up - Paid Member
  • Sign Up - Free Member
  • Website - Newsletter Footer
  • Website - Newsletter Sidebar
  • Website - Lead Form - Get Matched
  • Website - Contact Us
  • Listing - Write Review


From now on, if a member or user enters any of the keywords that have been added to the block list, the system won't let the user submit the form. 


The admin can easily see all of the details for any forms that were denied due to SPAM Form Protector in the Activity Tracker:





Additional Functionality


All sites comes with two Advanced Settings that can further enhance the functionality of this add-on.


1. SPAM Protection - Member Signup Form Submission Time


With this setting, the admin can specify the minimum number of seconds it should take to submit member signup forms once the page loads. All submissions that take less time will be blocked as SPAM. Set to 0 (default) to disable this functionality. Choose any other number to set the number of seconds.


System Variable: submit_time_security




2. SPAM Checker - Skip These Form Fields


With this setting, the admin can enter a comma-separated list of the field variable names that the built-in SPAM Checker should not check for SPAM.


System Variable: ignore_spam_fields