Two days ago, my account got suspended. I checked the website (antivirus.22web.org) at 22:05 - everything was normal. At 22:30 I got the message that it was suspended because I “hit the Hits limits”. The graph showed that there were like 250000 hits in those 25 minutes. That’s 10000 hits per minute or about 170 hits per second. That doesn’t make any sense, given that normal traffic is about 5000 hits per DAY.
But even more importantly, my SQL database that logs views for each page, didn’t show ANY increase of views for any pages. But I just waited for it to get reactivated. When it did, I checked everything on the ftp, and there was nothing out of the ordinary. No sign of any increased activity. The SQL database still showed a perfectly normal view count. So I figured it was just a strange glitch.
Today, things went as usual, and I checked the website at 18:37 the last time - everything was normal, with about 4900 hits in the control panel. At 19:30, I got a suspension notice again, and the graph shows over 100000 hits. Again, no increase in views in my SQL database, so this makes no sense. Where are the supposed hits coming from?
There used to be a direct option to submit a ticked, but all those links only point to dash.infinityfree.com, so I don’t know where to submit a ticket. I can’t find any link for it.
Can anybody tell me what’s going on or how to submit a ticket?
My best guess is that you were hit by a bunch of attacks from a bot or malicious service, and the server locked down your account before your code could run (or more likely the requests went over the maximum allowable concurrent requests for your account, and the account was suspended before they could all process).
You can only submit a ticket for permanent suspensions. Temporary suspensions (like for passing your daily hits limit) have never had that option. Your only choice is to wait for it to pass.
You can only records requests that hit your PHP code. Requests that hit other URLs cannot be logged in your own code. Unfortunately, we don’t store server access logs to be able to tell what URLs were hit instead.
No, not really. Attacks are just part of the reality of the internet, and there is not a lot you can do to protect against it. The traffic does go to your website, and it does take server capacity from us to handle. That’s not something any of can just ignore or make disappear.
If you have a custom domain, something like Cloudflare can help. But that’s not supported for free subdomains, both by Cloudflare and by us.
