Hello! My site is loading very slowly. Am I on an old server, by chance? Am I crammed on a server with too many other users? Please let me know what action needs taken here, and thank you! The site is geoff gundy dot com.

Avatar
  • updated
  • Answered

How would you rate the customer service you received?

Satisfaction mark by Geoff Gundy 2 years ago

I have chatted with three people online plus my web developer, and this makes the most sense.  On my old site, which we just replaced, I was getting probably a dozen bot emails per week.  Thanks - I will look into this further!

Add a comment about quality of support you received (optional):

Pinned replies
Avatar
Ronnie H.
  • Answer
  • Answered

Hi, Geoff! Sorry to hear you're running into trouble with your site being slow. I ran some tests and, since the site is well-optimized in terms of file size and overall content, I suspect that the issue is either a DDOS attack or, much more likely, a brute force attack. WordPress login pages are a common target of these sorts of attacks and chances are that taking care of that will resolve the issue in a day or two as the attempts fall off. 

You can confirm this by checking out AWStats, that will help you narrow down any suspicious activity. Lastly, when you check AWStats, be on the lookout for unusually high downloads of individual files. This is a common vector for DDOS attacks and can even just be the result of poorly programmed bot behavior. I've seen situations where a single, moderately sized audio or video file was just relentlessly queried/downloaded by bots and resulted in hundreds of gigabytes of unproductive traffic! If all else fails, try the free tier of something like CloudFlare and activate the DDOS protection to see if that has any effect. Hope that helps!

Avatar
Ronnie H.
  • Answer
  • Answered

Hi, Geoff! Sorry to hear you're running into trouble with your site being slow. I ran some tests and, since the site is well-optimized in terms of file size and overall content, I suspect that the issue is either a DDOS attack or, much more likely, a brute force attack. WordPress login pages are a common target of these sorts of attacks and chances are that taking care of that will resolve the issue in a day or two as the attempts fall off. 

You can confirm this by checking out AWStats, that will help you narrow down any suspicious activity. Lastly, when you check AWStats, be on the lookout for unusually high downloads of individual files. This is a common vector for DDOS attacks and can even just be the result of poorly programmed bot behavior. I've seen situations where a single, moderately sized audio or video file was just relentlessly queried/downloaded by bots and resulted in hundreds of gigabytes of unproductive traffic! If all else fails, try the free tier of something like CloudFlare and activate the DDOS protection to see if that has any effect. Hope that helps!