What has broken my cart? .htaccess or maybe configure.php?

[daneh]

I just found out my cart doesn't work anymore. Luckily a customer is on a private board I belong to and posted a question to me, and I gave him my personal email address.

He contacted me to tell me the contact form gave errors, and he could not get past the add to cart step.

The cart has been working flawlessly (THANKS GUYS AND GALS!) for well over a year, and I no longer make any changes that would screw things up. maybe add an EZ page here and there, and update the .htaccess file to deny bad guys, but that is it.

I did make a change to my includes/configure.php to include the www. to the webserver path after reading a post on it.

I did some testing and found that if I remove the .htaccess, the contact form works, and I can get past the add to cart screen.

Does anyone have an idea if the problem may be the .htaccess or maybe the change to the configure file? Maybe it is a conflict between them....

I am going to try using the emergency .htaccess file I have, but it is a barebones file with no ip banning in it, but figured I would toss this out there for advice.

[mprough]

post your htaccess


Likely a canonical or similar redirect

~Melanie

[daneh]

Code:

# This htaccess belongs in the root of zen cart for mistkits
# rewrites www. address to http:// Be sure web address is correct for the site!!!
Options +FollowSymLinks
RewriteEngine on
RewriteCond %{HTTP_HOST} ^www.mistkits.(.*)
RewriteRule ^(.*)$ http://mistkits.com/$1 [R=301,L]

  
RewriteEngine On 
RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Bot\ mailto:craftbot###################### [OR] 
RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Custo [OR] 
RewriteCond %{HTTP_USER_AGENT} ^DISCo [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [OR] 
RewriteCond %{HTTP_USER_AGENT} ^eCatch [OR] 
RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [OR] 
RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR] 
RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [OR] 
RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR] 
RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR] 
RewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR] 
RewriteCond %{HTTP_USER_AGENT} ^GetRight [OR] 
RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR] 
RewriteCond %{HTTP_USER_AGENT} ^GrabNet [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Grafula [OR] 
RewriteCond %{HTTP_USER_AGENT} ^HMView [OR] 
RewriteCond %{HTTP_USER_AGENT} ^HTTrack [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [OR] 
RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} ^InterGET [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [OR] 
RewriteCond %{HTTP_USER_AGENT} ^JetCar [OR] 
RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [OR] 
RewriteCond %{HTTP_USER_AGENT} ^larbin [OR] 
RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [OR] 
RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Navroad [OR] 
RewriteCond %{HTTP_USER_AGENT} ^NearSite [OR] 
RewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR] 
RewriteCond %{HTTP_USER_AGENT} ^NetSpider [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [OR] 
RewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Octopus [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [OR] 
RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [OR] 
RewriteCond %{HTTP_USER_AGENT} ^pavuk [OR] 
RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR] 
RewriteCond %{HTTP_USER_AGENT} ^RealDownload [OR] 
RewriteCond %{HTTP_USER_AGENT} ^ReGet [OR] 
RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR] 
RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [OR] 
RewriteCond %{HTTP_USER_AGENT} ^SuperBot [OR] 
RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Surfbot [OR] 
RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [OR] 
RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebCopier [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WebZIP [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Wget [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Widow [OR] 
RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [OR] 
RewriteCond %{HTTP_USER_AGENT} ^Zeus 
RewriteRule ^.* - [F,L]

RewriteBase /
RewriteCond %{REMOTE_ADDR} ^212\.22\.59\.251$ [OR]
RewriteCond %{HTTP_USER_AGENT} Bitacle
RewriteRule .? - [F]

# To redirect a spammer to another site- Copy/paste first line and replace ip
RewriteEngine On
# RewriteCond %{REMOTE_ADDR} ^65\.175\.250\.233$ [OR]
RewriteCond %{REMOTE_ADDR} ^94\.102\.49\.85$
RewriteRule .* http://www.CENSORED.org [R,L]

<Files s*.txt>
   Order Deny,Allow
   Deny from all
  </Files>
<Files *>
order deny,allow

# The following is various ip's that have been blocked:
deny from 65.55.104.12 69.46.98.116 81.198.215.176 85.25.143.249 195.225.168.176 203.146.140.58 80.63.48.156 62.141.54.68 209.164.48.180 87.237.169.24 216.170.56.10 202.85.157.120 98.130.2.12 86.109.98.29 194.24.253.30 83.19.243.146 194.79.16.80 213.186.34.130 88.191.48.74 216.246.91.51 85.89.44.250 69.64.84.210 195.90.26.14 83.18.135.166 75.126.28.137 216.187.94.184 203.116.91.25 92.48.106.160 78.157.143.216 78.157.143.161 66.199.232.18 61.156.240.180 87.118.108.250 203.158.221.227 200.63.42.143 200.63.42.91 4.102.49.85 200.63.42.143 92.51.140.89 123.239.168.219 92.48.127.165 92.51.140.89 123.239.168.219 94.102.60.45 70.56.199.230 85.120.78.146 85.17.200.82 211.151.91.147 93.174.93.220 75.101.140.129 208.74.67.10 94.102.49.85 92.48.203.116 76.25.171.20 94.102.60.182 160.254.108.24 83.233.30.32 71.194.108.38 72-218-84-57 24.61.182.174 71.236.144.200 24.147.99.182 76.202.114.42 68.61.33.164 69.113.26.68 67.175.107.105 69.243.92.148 24.45.58.5 76.202.114.42 68.61.33.164 76.202.114.42 91.93.47.197 125.30.112.224 195.180.11.233 118.98 24.13.53.192 98.213.51.237 71.80.3.170 192.234.241.146 69.41.186.114 78.46.197.81 194.150.236.3 


# Chinese IP addresses follow:
deny from 58.22.0.0/15 58.56.0.0/15 58.58.0.0/16 58.59.0.0/17 58.60.0.0/14 58.82.0.0/15 58.208.0.0/12 58.246.0.0/15 58.248.0.0/13 59.32.0.0/13 59.40.0.0/15 59.42.0.0/16 59.56.0.0/13 60.12.0.0/16 60.28.0.0/15 60.160.0.0/11 60.194.0.0/15 60.208.0.0/13 60.216.0.0/15 61.4.64.0/20 61.48.0.0/13 61.128.0.0/10 61.135.0.0/16 61.145.73.208/28 61.162.0.0/15 61.164.0.0/16 61.179.0.0/16 61.183.0.0/16 61.184.0.0/16 61.185.219.232/29 61.188.0.0/16 61.232.0.0/14 61.236.0.0/15 116.76.0.0/15 117.21.0.0/16 118.132.0.0/14 119.18.192.0/20 121.8.0.0/13 121.16.0.0/12 121.32.0.0/14 123.4.0.0/14 124.42.64.0/18 124.236.0.0/14 125.40.0.0/13 159.226.0.0/16 202.66.0.0/16 202.96.0.0/12 202.96.128.0/18 202.108.0.0/16 203.69.0.0/16 203.169.160.0/19 210.5.0.0/19 210.14.128.0/19 210.21.0.0/16 210.51.0.0/16 210.192.96.0/19 211.76.96.0/20 211.78.208.0/20 211.90.0.0/15 211.136.0.0/13 211.233.70.0/24 211.144.12.0/22 211.144.160.0/20 211.152.14.0/24 211.154.128.0/19 211.157.32.0/19 211.161.24.128/26 218.0.0.0/11 218.56.0.0/13 218.64.0.0/11 218.88.0.0/13 218.96.0.0/14 218.102.0.0/16 218.104.0.0/14 218.242.0.0/16 219.128.0.0/11 219.232.0.0/19 220.160.0.0/11 220.181.0.0/16 220.192.0.0/12 220.228.70.0/24 220.248.0.0/14 220.250.0.0/19 220.252.0.0/16 221.10.0.0/16 221.11.0.0/16 221.122.0.0/15 221.192.0.0/14 221.208.0.0/14 221.212.0.0/16 221.216.0.0/13 221.224.0.0/13 221.228.0.0/14 221.238.0.0/15 222.32.0.0/11 222.76.0.0/14 222.80.0.0/12 222.136.0.0/13 222.166.0.0/16 222.168.0.0/15 222.172.222.0/24 222.184.0.0/13

# Hong Kong
deny from 58.65.232.0/21 202.69.64.0/19 202.85.128.0/19 218.252.0.0/14

# Japan (hacking, scraping, or spamming)
deny from 122.208.0.0/12 218.225.179.0/24

# Korea IP addresses follow:
deny from 58.72.0.0/13 58.239.0.0/16 58.140.0.0/14 59.0.0.0/11 59.86.192.0/18 59.186.0.0/15 61.96.0.0/12 61.248.0.0/13 116.120.0.0/13 116.45.176.0/20 118.32.0.0/11 118.128.0.0/14 118.220.16.0/20 121.128.0.0/10 122.99.128.0/17 123.111.0.0/16 124.0.0.0/15 124.50.87.161 125.128.0.0/11 125.176.0.0/12 125.240.0.0/13 143.248.0.0/16 202.179.176.0/21 210.93.0.0/16 210.94.0.0/15 210.118.216.192/26 210.205.219.0/24 210.219.0.0/16 211.32.0.0/12 211.48.0.0/15 211.50.0.0/15 211.62.35.0/24 211.104.0.0/13 211.112.0.0/13 211.168.0.0/14 211.172.0.0/14 211.176.0.0/12 211.192.0.0/13 211.211.36.0/23 211.232.0.0/13 211.240.0.0/12 218.36.0.0/14 218.144.138.0/26 218.147.0.0/16 218.232.120.0/25 219.240.0.0/15 219.248.0.0/13 219.250.88.0/21 220.73.22.160/27 220.95.88.0/24 220.119.0.0/16 221.128.0.0/12 221.144.0.0/12 221.160.0.0/13 221.168.0.0/16 221.163.46.0/24 222.96.0.0/12 222.112.0.0/13 222.120.0.0/15 222.122.0.0/16

# Neighboring Asian countries:

# Malaysia
deny from 60.48.0.0/14 60.52.0.0/15 60.54.0.0/16 124.82.0.0/16 124.217.224.0/19 202.58.80.0/20 202.71.96.0/20 202.75.32.0/19 203.223.128.0/19 210.187.49.0/25 218.111.0.0/16 218.208.12.64/27

# Phillipines
deny from 85.92.152.0/21 125.60.128.0/17 222.127.32.0/19 222.127.64.0/19

# Singapore
deny from 59.189.0.0/16 116.14.0.0/15 121.6.0.0/15 165.21.0.0/16 203.92.64.0/18 219.74.0.0/16 219.75.0.0/17

# Taiwan
deny from 59.124.0.0/14 203.71.0.0/16 203.72.0.0/16 211.23.0.0/16 211.79.32.0/20

# Thailand
deny from 58.8.0.0/16 58.9.0.0/16 58.137.13.0/24 61.19.64.0/18 117.47.0.0/16 124.122.128.0/17 202.28.0.0/15 202.44.135.0/24 203.107.142.0/24 203.113.13.0/24 202.143.128.0/18 203.144.128.0/17 203.148.128.0/17 203.149.0.0/18 203.150.128.0/17 203.151.38.0/24 203.155.0.0/16 203.158.96.0/19 203.158.128.0/17 203.172.128.0/17 222.123.0.0/16

# Vietnam
deny from 58.187.112.0/20 117.0.0.0/13 118.68.0.0/16 125.234.0.0/15 203.113.128.0/18 203.162.0.0/16 210.245.80.0/21

# End Chinese/Korean blocklist

# Nigerian/African 419 Scammers IP addresses follow:
deny from 12.166.96.32/27 41.202.0.0/17 41.202.128.0/19 41.203.96.0/19 41.204.0.0/17 41.204.128.0/18 41.204.224.0/19 41.205.160.0/19 41.207.0.0/19 41.207.192.0/19 41.208.128.0/18 41.210.0.0/18 41.211.0.0/19 41.211.192.0/18 41.219.192.0/18 41.220.0.0/16 41.222.24.0/21 41.222.40.0/21 41.222.64.0/21 41.223.24.0/22 41.223.64.0/22 41.223.248.0/22 41.248.0.0/16 41.250.0.0/16 61.11.230.112/29 62.56.128.0/17 62.56.235.0/24 62.56.236.0/24 62.56.244.0/22 62.56.248.0/24 62.128.160.0/20 62.173.32.0/19 62.192.128.0/19 62.192.140.250 62.193.160.0/19 63.70.178.0/24 63.73.58.0/24 63.100.193.0/24 63.103.138.0/24 63.103.139.64/26 63.103.140.0/22 63.109.245.168/29 63.109.247.0/24 63.109.248.128/25 63.122.154.0/24 64.14.48.128/26 62.24.96.0/19 64.86.155.0/24 64.86.210.0/23 64.110.30.0/24 64.110.31.0/24 64.110.64.16/28 64.110.76.0/23 64.110.81.0/24 64.110.93.16/28 64.110.93.176/28 64.110.147.0/24 64.201.33.0/24 65.209.91.0/24 65.209.92.0/24 66.18.64.0/19 66.110.31.0/24 66.178.0.0/17 66.199.241.82 66.205.20.0/24
deny from 77.70.128.0/24 77.70.129.0/26 77.70.137.0/25 77.70.138.0/23 77.73.184.0/21 77.220.0.0/20 78.138.2.0/24 80.78.16.168/29 80.78.16.176/28 80.78.16.192/28 80.78.17.0/24 80.78.18.88/29 80.78.18.96/27 80.78.18.128/29 80.78.19.16/29 80.78.19.104/29 80.78.19.112/28 80.78.23.16/28 80.87.64.0/19 80.88.128.0/20 80.88.129.0/24 80.88.130.0/24 80.88.131.0/24 80.88.132.0/26 80.88.132.64/27 80.88.132.104/29 80.88.132.128/26 80.88.132.192/27 80.88.132.224/28 80.88.132.240/29 80.88.133.0/25 80.88.134.0/26 80.88.134.64/29 80.88.135.0/24 80.88.136.0/24 80.88.137.0/24 80.88.138.0/25 80.88.138.128/26 80.88.138.192/27 80.88.139.0/25 80.88.139.128/26 80.88.139.192/27 80.88.139.224/28 80.88.140.0/24 80.88.141.0/25 80.88.141.128/27 80.88.142.0/24 80.88.143.128/24 80.88.144.0/23 80.88.146.0/24 80.88.147.0/24 80.88.148.0/24 80.88.149.0/25 80.88.149.128/26 80.88.149.192/28 80.88.150.0/24 80.88.151.0/24 80.88.152.0/24 80.88.153.0/24 80.88.154.32/27 80.88.154.72/29 80.88.154.80/29 80.88.154.96/28 80.88.155.0/25 80.88.155.128/27 80.88.155.160/29 80.89.176.0/24
deny from 80.179.102.0/24 80.179.107.64/27 80.179.107.224/29 80.179.128.0/17 80.231.4.0/23 80.240.192.0/20 80.247.136.0/24 80.247.137.0/24 80.247.141.32/27 80.247.141.64/26 80.247.141.128/25 80.247.142.0/24 80.247.147.16/28 80.247.147.32/29 80.247.147.64/27 80.247.147.96/28 80.247.151.0/24 80.247.153.0/24 80.247.156.0/26 80.247.156.128/28 80.247.157.0/24 80.247.159.0/24 80.248.0.0/20 80.248.64.0/23 80.248.70.0/20 80.248.64.0/20 80.250.32.0/20 80.255.40.48/28 80.255.40.96/29 80.255.40.112/28 80.255.40.128/28 80.255.40.192/28 80.255.40.224/27 80.255.40.240/28 80.255.41.160/28 80.255.43.0/24 80.255.46.0/29 80.255.46.16/28 80.255.46.64/29 80.255.58.160/27 80.255.58.192/26 80.255.59.19 80.255.59.0/24 80.255.61.0/25 81.18.32.0/20 81.18.40.0/24 81.18.42.0/24 81.23.194.0/27 81.23.194.64/27 81.23.194.128/25 81.23.195.0/24 81.23.196.0/25 81.23.196.128/29 81.23.200.0/21 81.24.0.0/20 81.91.224.0/20 81.199.0.0/16 82.128.0.0/17 82.205.242.0/23 83.137.59.8/29 83.137.61.0/24 83.138.167.40/29 83.229.0.0/17 84.254.188.3 84.254.128.0/18
deny from 155.239.0.0/16 192.116.64.0/18 192.116.128.0/18 192.116.152.0/21 192.118.71.0/24 193.95.0.0/17 193.110.2.0/23 193.189.0.0/18 193.189.64.0/23 193.189.128.0/24 193.194.64.0/19 193.219.192.0/18 193.220.0.0/16 193.220.26.0/24 193.220.30.0/26 193.220.30.64/27 193.220.31.0/26 193.220.31.64/27 193.220.45.0/25 193.220.47.0/25 193.220.77.0/26 193.220.187.0/26 193.220.187.128/27 195.8.22.0/24 195.10.109.192/26 195.24.192.0/19 195.44.168.0/21 195.44.176.0/21 195.137.13.0/24 195.137.14.0/24 195.166.224.0/19 195.214.240.0/21 195.219.176.0/24 195.225.62.0/23 195.245.108.0/23 196.0.0.0/16 196.1.176.0/20 196.3.60.0/22 196.20.0.0/19 196.29.96.0/19 196.29.216.0/21 196.29.224.0/20 196.44.96.0/19 196.45.192.0/18 196.128.0.0/10 196.192.0.0/12 196.208.0.0/14 196.220.0.0/19 198.54.0.0/16 204.118.170.0/24 208.70.0.0/21 208.78.56.0/21 209.88.163.0/24 209.101.84.0/24 209.159.160.0/20 209.198.240.0/23 209.198.242.16/28 209.198.242.96/29 209.198.242.104/30 209.198.242.108/31 209.198.242.128/27 209.198.246.240/28 212.49.64.0/19 212.60.64.0/19 212.85.192.0/19 212.96.0.0/19 212.100.64.0/19 212.165.128.0/17 212.165.132.64/27 212.165.135.0/24 212.165.140.16/29 212.165.140.64/26 212.165.140.128/25 212.165.141.0/24 212.165.147.0/26 212.165.147.128/26 212.165.183.0/24 212.199.108.0/24 212.199.251.0/24 212.247.93.0/24
deny from 213.136.96.0/19 213.140.62.0/23 213.150.192.0/23 213.154.64.0/19 213.166.160.0/19 213.181.64.0/19 213.185.96.0/21 213.185.106.0/24 213.185.112.0/24 213.185.113.0/26 213.185.113.64/27 213.185.113.96/27 213.185.118.192/26 213.185.124.0/24 213.187.135.0/24 213.187.145.0/24 213.211.128.0/18 213.211.188.0/24 213.232.96.0/24 213.255.193.0/24 213.255.194.0/24 213.255.195.0/24 213.255.198.0/24 213.255.199.0/24 216.72.104.0/21 216.74.187.0/24 216.118.252.0/24 216.118.253.0/24 216.118.254.0/24 216.129.147.128/28 216.129.159.0/24 216.133.174.0/24 216.139.160.0/19 216.147.132.144/28 216.147.132.160/28 216.147.134.0/24 216.147.159.0/24 216.185.79.0/24 216.236.200.96/28 216.236.202.96/28 216.236.205.0/24 216.236.222.128/26 216.250.195.0/27 216.250.195.64/26 216.250.221.0/24 216.250.222.0/24 216.252.176.0/24 216.252.177.0/24 216.252.231.0/25 216.252.245.0/24 217.10.163.128/26 217.10.163.192/27 217.10.163.224/27 217.10.166.0/26 217.10.166.64/28 217.10.169.0/24 217.10.170.0/24 217.10.171.0/24 217.10.173.0/26 217.10.182.0/27 217.10.184.0/24 217.14.80.0/20 217.15.124.0/25 217.20.240.0/20 217.20.241.0/25 217.20.241.128/29 217.20.241.136/29 217.20.241.144/28 217.20.241.160/29 217.20.241.168/29 217.20.241.176/29 217.20.241.184/29 217.20.241.192/29 217.20.241.200/29 217.20.241.208/29 217.20.242.0/24 217.20.243.16/28 217.20.243.32/27 217.21.64.0/19 217.78.64.0/20 217.117.0.0/20 217.146.3.144/28 217.146.3.160/28 217.146.3.176/29 217.146.3.224/27 217.146.4.64/26 217.146.5.0/24 217.146.6.0/25 217.146.6.160/27 217.146.7.0/24 217.146.8.0/25 217.146.9.0/24 217.146.10.128/25 217.146.11.0/25 217.146.12.0/24 217.146.13.0/24 217.146.14.0/25 217.146.15.0/25 217.146.16.0/27 217.146.16.32/29 217.168.112.0/20 217.194.140.0/22 217.194.144.0/20 217.199.144.0/20 217.212.242.0/23

# Pretoria Z.A. Used by some lottery scammers. Block these CIDRs if you get scammers from Pretoria, but no legit visitors!
deny from 41.241.0.0/16 41.242.0.0/16 41.243.0.0/16 41.246.0.0/16

# Johannesburg Telekom, ZA.
deny from 165.146.0.0/18

------------------------
This is only 1/2 the file...I can't post the entire file....too many characters.

I will post the other 1/2 next


As my previous post stated, I only add the IP of pain-in-the-@sses occasionally.
I also have a redirect for the worst ones, and have removed the website they get sent to. I didn't want to give them the link juice, and didn't want to subject any of you to what is at the site if anyone clicked the link.

The only other change I have made recently is adding the www. to my urls in my configures.php file. To get the cart working, I removed that also, just in case. I honestly think the configures.php is the problem. That was the latest change.

[daneh]

Code:

# Algeria
deny from 41.200.0.0/15 193.194.64.0/19

# Added Goldenlines.net.il (Israel) because of Open Proxies used by Nigerian scammers
deny from 80.179.244.0/24

# Amsterdam, The Netherlands Versatel Nederland DSL-NAT Customers - Lottery and 419 scammers
deny from 62.59.36.0/22 62.59.40.0/21 62.59.48.0/22 82.93. 82.168.0.0/14 87.249.104.0/23

# Freenet in Germany (freenet.de); Used as spam relay by many Nigerian scammers, in March, 2008.
# Choose one of the following CIDRs:

# Narrow freenet.de CIDR, used by recent scammers:
deny from 195.4.92.0/23

# Full Freenet.de CIDR:
deny from 195.4.0.0/16

# ISPs in Spain, France and Italy, used by many expatriot Nigerian lottery and 419 scammers (Cableuropa, Ibercom, Ono.com, Telefonica)
deny from 62.42.0.0/16 80.25.0.0/16 80.36.0.0/14 81.34.0.0/16 82.194.64.0/19 84.120.0.0/13 85.39.0.0/16 85.91.64.0/19 88.14.0.0/16 88.202.124.0/27 147.83.0.0/16 193.252.22.0/24 195.53.0.0/16 212.121.224.0/19 213.4.0.0/16 213.194.128.0/18 213.194.144.0/20

# 193.252.22.0/24 = orange.fr, in Paris, France. Constant 419 scams coming from their email servers!

# Costa Rica exceptions:
allow from 196.40.0.0/18 196.40.64.0/19

# Newest Nigerian/African ISP additions/subtractions below:

# Jan 4, 2008; Added 41.211.0.0/19 (Ghana scammers)
# Jan 8, 2008: Added 77.70.128.0/24 77.70.129.0/26 77.70.138.0/23 (NG)
# Jan 10, 2008: Changed the CIDR 80.255.41.160/29  to 80.255.41.160/28 to include 8 new IPs, assigned to Lagos NG.
# Jan 13, 2008: Added 80.78.23.16/28 (NG), 83.137.59.8/29 and 196.44.96.0/19 (Ghana scammers)
# Jan 15, 2008: Added 196.3.61.0/24 (Starcomms Nigeria Limited)
# Jan 27, 2008: Added 196.29.216.0/21 (DirectonPC Nigeria) and moved Turkish IP list to the Russian Blocklist
# Feb 02, 2008: Added 196.45.192.0/18 (Q-kon Pty Ltd, Lagos, NG)
# Feb 15, 2008: Added 196.1.176.0/20 (Nigerian Telecommunications Ltd.)
# Feb 17, 2008: Added 80.255.61.0/25 (INTELSAT-CUST-globalcom-NG)
# Feb 25, 2008: Added 195.10.109.192/26 (Ghana)
# Mar 26, 2008: Added; 80.78.19.104/29 (NG), 80.78.19.112/28 (NG and GH)
# Mar 28, 2008: Added ISPs in Spain, below, due to Nigerian 419 lottery scammers living there
# Apr 03, 2008: Added 217.21.64.0/19 (Gilat Satcom IPPlanet satellite service to Nigeria and Africa)
# Apr 07, 2008: Added 195.214.240.0/21 waycom.net in France, for Nigerian 419 scam emails
# Apr 07, 2008: Added 213.194.128.0/18 and 213.194.144.0/20 in Spain, due to Nigerian 419 scammers
# Apr 11, 2008: Added 196.29.224.0/20 (GH)
# May 04, 2008: Added 87.249.104.0/23 (Amsterdam, NL, JR Online)
# May 05, 2008: Added 196.208.0.0/14 (Johannesburg, Gauteng, South Africa)
# May 06, 2008: Added 63.109.247.0/24 New Skies Satellite Service used by Nigerian 419 scammers
# May 06, 2008: Added 88.202.124.0/27 below. Skylogic.net satellite service, Italy; used by Nigerian 419 scammers
# May 06, 2008: Added 80.78.19.16/29 Nigeria (ConstellationCorp)
# May 09, 2008: Expanded 196.3.61.0/24 to 196.3.60.0/22 to include full CIDR for Starcomms of Lagos, Nigeria
# May 12, 2008: Added 147.83.0.0/16 in Spain, for spamming my contact form.
# May 17, 2008: Added Algeria group; 41.200.0.0/15 193.194.64.0/19
# May 20, 2008: Added 81.34.0.0/16 RIMA in Spain, for spamming
# May 21, 2008: Added 216.118.254.0/24 Ironlinks, because of Nigerian scammers using the ISP
# May 27, 2008: Added 192.118.71.0/24 an Israeli satellite service used by Nigerian scammers today.
# May 27, 2008: Added 85.91.64.0/19 in Santiago De Compostela, Galicia, Spain; due to Nigerian scammers
# May 29, 2008: Replaced all the following IpPlanet CIDRs with 81.199.0.0/16 - 81.199.6.0/24 81.199.7.0/24 81.199.48.0/20 81.199.72.0/22 81.199.76.0/24 81.199.82.0/23 81.199.84.0/22 81.199.84.0/24 81.199.85.0/24 81.199.86.0/24 81.199.87.0/24 81.199.88.0/24 81.199.89.0/24 81.199.90.0/24 81.199.94.0/23 81.199.108.0/22 81.199.124.0/22 81.199.172.160/27 81.199.240.0/21
# June 27, 2008: Added 41.223.64.0/22 - Nigeria
# July 26, 2008: Added 196.29.96.0/19 - Ghana
# July 28, 2008: Added 41.203.96.0/19 - Lagos, Nigeria
# Aug 14, 2008: Added 85.39.0.0/16 to the Italian list; Interbusiness.it - used by Nigerian 419 scammer

# End Nigerian/African blocklist

# Russia, Ukraine, Bulgaria, Romania, Latvia, Estonia, Kazakstan, Moldavia/Moldova, Poland, Serbia & Slovakia
deny from 62.76.126.0/24 62.85.0.0/17 62.133.128.0/19 62.168.224.0/19 62.213.64.0/18 62.233.142.0/26 70.85.189.224/29 77.51.0.0/18 77.51.64.0/18 77.79.244.0/22 77.87.152.0/21 77.88.0.0/18 77.91.224.0/21 77.94.124.0/22 77.120.0.0/14 77.221.128.0/19 77.234.0.0/19 77.244.208.0/20 78.36.0.0/15 78.85.0.0/16 78.106.0.0/15 78.129.128.0/17 78.157.128.0/19 79.120.0.0/17 79.126.0.0/18 79.139.128.0/17 79.140.160.0/20 80.71.240.0/20 80.73.64.0/21 80.85.176.0/20 80.86.240.0/21 80.233.128.0/17 81.5.96.0/20 81.9.0.0/20 81.16.80.0/20 81.19.64.0/19 81.21.0.0/20 81.30.176.0/20 81.88.208.0/20 81.95.144.0/20 81.176.0.0/15 81.181.16.0/22 81.195.0.0/16 81.196.0.0/16 81.222.128.0/20 82.76.0.0/14 82.103.64.0/18 82.114.224.0/19 82.138.6.128/25 82.138.32.0/19 82.144.192.0/19 82.146.56.0/21 82.151.112.0/21 82.160.203.0/24 82.179.160.0/20 82.204.128.0/17 83.19.145.232/29 83.174.192.0/18 83.219.129.0/24 83.222.0.0/19 83.222.22.0/23 83.237.0.0/16 85.14.35.0/24 85.21.0.0/16 85.29.192.0/18 85.94.0.0/19 85.112.112.0/20 85.140.0.0/15 85.142.0.0/15 85.192.60.0/23 85.249.128.0/19 85.255.112.0/20 86.34.0.0/16 86.57.128.0/17 86.125.88.0/21 86.127.19.0/24 87.99.64.0/19 87.103.192.0/20 87.103.208.0/20 87.110.0.0/16 87.117.0.0/18 87.118.128.0/18 87.119.224.0/19 87.120.16.0/20 87.204.0.0/15 87.226.0.0/17 87.242.116.0/23 87.248.160.0/19 87.253.192.0/19 88.147.128.0/17 88.200.128.0/17 88.201.128.0/17 88.212.192.0/18 89.20.128.0/19 89.28.0.0/17 89.32.152.0/21 89.37.144.0/21 89.38.112.0/20 89.41.176.0/20 89.44.142.0/23 89.106.96.0/19 89.108.64.0/19 89.110.0.0/18 89.110.56.0/22 89.111.176.0/20 89.113.72.0/21 89.114.54.0/23 89.122.0.0/16 89.123.0.0/16 89.175.0.0/16 89.178.0.0/15 89.190.224.0/19 89.208.160.0/19 89.218.0.0/16 89.253.0.0/18 90.150.128.0/20 90.156.128.0/17 91.76.0.0/14 91.122.0.0/16 91.124.0.0/16 91.193.140.0/22 91.197.128.0/22 92.80.0.0/15 92.82.0.0/16 92.83.0.0/16 92.84.0.0/16 92.112.0.0/15 92.114.128.0/17 92.241.160.0/19 92.244.224.0/19 93.80.0.0/15 141.85.0.0/16 158.197.0.0/16 160.99.0.0/16 192.129.3.0/24 193.39.113.0/24 193.47.166.0/24 193.108.248.0/22 193.178.144.0/22 193.178.228.0/23 193.200.50.0/23 193.223.101.0/24 193.230.232.0/24 194.44.36.0/24 194.85.90.0/23 194.102.114.0/24 194.181.0.0/16 194.186.0.0/16 195.2.96.0/19 195.2.252.0/23 195.3.148.0/22 195.5.116.0/23 195.28.32.0/19 195.34.224.0/19 195.42.160.0/19 195.93.218.0/23 195.93.218.0/24 195.95.218.0/23 195.95.228.0/23 195.137.200.0/23 195.138.198.0/24 195.189.246.0/23 195.190.13.0/24 195.208.0.0/15 195.209.32.0/19 195.225.64.0/22 195.225.176.0/22 195.239.0.0/16 195.242.98.0/23 195.242.232.0/22 195.244.128.128/25 195.245.112.0/23 195.245.208.0/24 204.9.184.0/21 212.9.224.0/19 212.24.32.0/19 212.44.64.0/20 212.44.80.0/22 212.44.128.0/19 212.58.192.0/19 212.118.32.0/19 212.158.160.0/20 213.35.224.0/23 213.91.128.0/17 213.140.96.0/19 213.142.192.0/19 213.154.192.0/19 213.156.192.0/24 213.215.64.0/18 213.242.12.0/22 213.248.0.0/18 217.12.240.0/20 217.16.16.0/20 217.28.208.0/21 217.77.208.0/20 217.106.0.0/15 217.146.240.0/20 217.174.96.0/20

# Turkish universities, web hosts and Turk Telekom customers - scammers, spammers, phishing websites and server script exploiters:
deny from 77.79.64.0/18 78.160.0.0/11 79.135.160.0/19 81.213.128.0/17 81.214.0.0/16 81.215.0.0/16 82.222.0.0/16 85.96.0.0/12 85.100.128.0/17 85.103.0.0/17 85.105.0.0/17 85.110.0.0/16 88.226.0.0/16 88.229.0.0/16 88.231.0.0/16 88.233.0.0/16 88.234.0.0/16 88.238.0.0/16 88.239.0.0/17 88.241.128.0/17 88.245.0.0/16 88.247.128.0/17 88.248.0.0/17 88.251.0.0/16 88.254.0.0/16 88.255.0.0/16 89.106.0.0/19 160.75.0.0/16 194.27.48.0/23 195.174.0.0/15 195.175.0.0/17 212.174.113.0/24 212.175.0.0/16

# Add other blocked domain names or IP addresses here, starting with "deny from " without quotes

# If you find that you need to poke a hole in the blocklist, for legitimate visitors, follow this example: allow from 123.456.789.0

# Add "allow from" IP addresses, or CIDR Ranges, after all of the "deny from" items, just before the closing Files tag.

# Everything not included within these deny from ranges is PERMITTED by the allow portion of the directive.

</Files>


# This prevents web browsers or spiders from seeing your .htaccess directives:

<Files .htaccess>
deny from all
</Files>

# End of file

[DrByte]

I did make a change to my includes/configure.php to include the www. to the webserver path after reading a post on it.

...

Does anyone have an idea if the problem may be the .htaccess or maybe the change to the configure file? Maybe it is a conflict between them....

RewriteEngine on
RewriteCond %{HTTP_HOST} ^www.mistkits.(.*)
RewriteRule ^(.*)$ http://mistkits.com/$1 [R=301,L]

So ... you edited your configure.php to force the inclusion of "www.", but your .htaccess forces the removal of "www.". No wonder your site is confused.

[mprough]

So ... you edited your configure.php to force the inclusion of "www.", but your .htaccess forces the removal of "www.". No wonder your site is confused.

Yep

Code:

RewriteEngine on
RewriteCond %{HTTP_HOST} ^www.mistkits.(.*)
RewriteRule ^(.*)$ http://mistkits.com/$1 [R=301,L]

~Melanie

[daneh]

And the fix is........

I never said I was the brightest bulb in the pack.

[DrByte]

Well ... if it worked *before* you edited your configure.php file to add the "www." prefix (apparently just because it looked like a good idea) ... then ... it would seem that undoing that change would be a logical first step.

[daneh]

Kinda got that.

I guess a better way of asking the question would be:

If I would like my site accessible via www or http, I need that redirect in the htaccess file correct?

Then, I thought I was doing the right thing per this thread, but obviously not.

Honestly, (and obviously...LOL) I know just enough about the .htaccess to be dangerous.

I am glad I learn from my mistakes.
Or do I?

[DrByte]

If I would like my site accessible via www or http, I need that redirect in the htaccess file correct?

Zen Cart makes its URLs from the settings in the configure.php file.

If you go and override the entire website's functionality by changing/adding stuff to your .htaccess which directly conflicts with what you've configured your Zen Cart site to do, you're going to have problems.

So ... decide what you want, and do it ... consistently:

If you want to force "www." in your URLs, then make your .htaccess ADD it if it's missing, AND make your configure.php include it.

If you want to force NO "www." in your URLs, then leave your current .htaccess alone, and remove the "www." from your configure.php files.

Honestly, (and obviously...LOL) I know just enough about the .htaccess to be dangerous.

Well ... you've got a heckuva bloated .htaccess for someone who's making such a claim.