• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Site really slow

ozonetrooper

ozonetrooper

Android Expert
Site has been really slow my way for the past week.

This is what I see on my side (not good) :

C:\Windows\System32>tracert 147.182.165.119

Tracing route to newdo.neverstill.com [147.182.165.119]
over a maximum of 30 hops:

1 1 ms 1 ms 1 ms 10.0.0.1
2 15 ms 13 ms 10 ms 10.54.155.131
3 11 ms 13 ms 12 ms po-307-340-rur202.lamarque.tx.houston.comcast.net [96.216.183.205]
4 12 ms 13 ms 12 ms po-200-xar02.lamarque.tx.houston.comcast.net [96.217.21.241]
5 12 ms 15 ms 27 ms po-2-xar01.lamarque.tx.houston.comcast.net [68.85.246.21]
6 17 ms 16 ms 17 ms be-325-arsc1.bearcreek.tx.houston.comcast.net [96.217.21.141]
7 * * * Request timed out.
8 45 ms * * ae2.3610.edge5.Newark1.net.lumen.tech [4.69.209.74]
9 44 ms 70 ms 45 ms digital-oce.edge5.newark1.level3.net [4.28.0.46]
10 * * * Request timed out.
11 * * * Request timed out.
12 * * * Request timed out.
13 * * * Request timed out.
14 * * * Request timed out.
15 * * * Request timed out.
16 46 ms 43 ms 44 ms newdo.neverstill.com [147.182.165.119]
 
Upvote 0 Downvote
Microsoft Windows [Version 10.0.26200.8655]
(c) Microsoft Corporation. All rights reserved.

C:\Users\xman>tracert 147.182.165.119

Tracing route to newdo.neverstill.com [147.182.165.119]
over a maximum of 30 hops:

1 <1 ms <1 ms <1 ms dsldevice [192.168.1.254]
2 2 ms 2 ms 1 ms 162-238-204-1.lightspeed.hstntx.sbcglobal.net [162.238.204.1]
3 3 ms 3 ms 2 ms 71.149.23.208
4 * * * Request timed out.
5 * * * Request timed out.
6 * * * Request timed out.
7 * * * Request timed out.
8 * * * Request timed out.
9 * * 42 ms if-bundle-31-2.qcore1.dt8-dallas.as6453.net [64.86.92.52]
10 * 41 ms * if-bundle-63-2.qcore2.ct8-chicago.as6453.net [66.198.29.34]
11 40 ms * * if-bundle-2-2.qcore1.ct8-chicago.as6453.net [66.110.15.36]
12 42 ms 42 ms 42 ms 66.198.29.175
13 * * * Request timed out.
14 * * * Request timed out.
15 * * * Request timed out.
16 * * * Request timed out.
17 44 ms 43 ms 42 ms newdo.neverstill.com [147.182.165.119]

Trace complete.


It's a wonder I can see it at all .... Not all the sites problems, my provider is who is routing me to the site, and they are having major time out issues. I believe the site host can request a different routing but am not sure of it.
 
Ping test looks real good :

Results for forum.earlybird.club​


PING 147.182.165.119 (147.182.165.119) 56(84) bytes of data.
64 bytes from 147.182.165.119: icmp_seq=1 ttl=59 time=4.78 ms

--- 147.182.165.119 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 4.783/4.783/4.783/0.000 ms
 
Maybe this is a problem ?


anj.jpg



sneer
 
Why, because the hosting site is in NJ?

At least we know it's not in Rob's basement.

Doing a lookup of the IP, it does come up as listed on one blacklist site (but only that one) which is definitely not good.
 
A guess it must be a Texan thing, your not familiar with the saying, "oh your from Jersey? yuk yuk yuk"

(almost as bad as being from Naw Yark City !)

giggle


Being black listed is definitely not a good thing !

At least we know it's not in Rob's basement.
Click to expand...

laughinghard
 
Wonder if this is an issue ?

Total: 20,856 (members: 10, guests: 20,846)

I used to Admin a site, (I quit when the bull headed owner would not listen to my advice), where I watch multiple IP's hit the site at once all from one particular region of the world. I watched a brute force attack in progress from guest, I tried all I could to get the owner to let me start banning the guest but he was insistant they were not a threat.

There were only two of who had Admin access and we both had full privilages to his site. I caught someone in the Admin panel running a script on the site and he still refused to believe that it was under attack.

FYI to those in charge, I can not see the guest IP's but if you have many from the same location it is more than probable the site is being attacked.

I will show you and if you decide to go to the site it is on your own risk, I have not been back since leaving.



How many here read coding ? This is the script that was attempting to be run out of the Admin console, and only two of us had that access and it damn sure was not me and the owner said it was not him ...

I think this was an attempt to get into CPanel, which all that know what it is, knows what can be done, once accessed.

 
And since my last posting we have upped the numbers :

Total: 22,167 (members: 6, guests: 22,161)

22 thousand guests, this is not normal y'all !
 
ozonetrooper said:
Wonder if this is an issue ?

Total: 20,856 (members: 10, guests: 20,846)

I used to Admin a site, (I quit when the bull headed owner would not listen to my advice), where I watch multiple IP's hit the site at once all from one particular region of the world. I watched a brute force attack in progress from guest, I tried all I could to get the owner to let me start banning the guest but he was insistant they were not a threat.

There were only two of who had Admin access and we both had full privilages to his site. I caught someone in the Admin panel running a script on the site and he still refused to believe that it was under attack.

FYI to those in charge, I can not see the guest IP's but if you have many from the same location it is more than probable the site is being attacked.

I will show you and if you decide to go to the site it is on your own risk, I have not been back since leaving.



How many here read coding ? This is the script that was attempting to be run out of the Admin console, and only two of us had that access and it damn sure was not me and the owner said it was not him ...

I think this was an attempt to get into CPanel, which all that know what it is, knows what can be done, once accessed.

Click to expand...
yeah seems like the site is very slow though, As an ex web master, I learn to read code, so yeah... This seem either very fast or very messed up.. why would the hidden name give a different Value per each item? Strange.
 
Each string is the info needed to access a certain area, note the values are similar but not a true value, looks to be a hack job trying to fool the database.

Also note the login type/value is cplogin, looks like a request to enter CPanel.

I ran this by some people who are way more versed in this than I and their opinion was that it is a hacking attempt to get in.

The Vbulliten platform that the site uses is very old an not updated, the hash algo's are from the dinosaur age, is what I was told.
 
ozonetrooper said:
Each string is the info needed to access a certain area, note the values are similar but not a true value, looks to be a hack job trying to fool the database.

Also note the login type/value is cplogin, looks like a request to enter CPanel.

I ran this by some people who are way more versed in this than I and their opinion was that it is a hacking attempt to get in.

The Vbulliten platform that the site uses is very old an not updated, the hash algo's are from the dinosaur age, is what I was told.
Click to expand...
Ah.....That seem either dangerous or not. oh well this been online for what almost 16 years?
 
The site has been around for a long time, I was there when it was first started. The owner changed host a few times and this all came about with the latest change. He was blaming the host for not stopping the hacks. He went through all the BS the host spewed about changing the DNS and other "fixes" that did not work.

FWIW, alot of the Ip's resolved from Vietnam.

Then we got them from UK and Thailand.

NONE of the guest ever asked to be made a member ....

I wonder how many of the 22 thousand here have asked to be a member ?
 
You must log in or register to reply here.
Back
Top Bottom