Kliwp Posted July 1, 2020 Share Posted July 1, 2020 (edited) 3dxchat uses a combination of Cloudflare, Scalaxy, & Ispiria Network Solutions. The Cloudflare (USA) IP addresses are totally fine: 172.67.216.164, 104.26.1.90, 104.18.60.31 However, hackers are still able to freely access and DDOS attack: 5.61.57.85 (Scalaxy, Ispiria web host, Netherlands). This is the IP used to login to the game. Let's do some research on IP 5.61.57.85 - https://ipinfo.io/5.61.57.85 , which is associated with: ispiria.net / scalaxy.com Scalaxy has a bad reputation: https://scamalytics.com/ip/isp/scalaxy-b-v "Scalaxy B.V. is a high fraud risk ISP. They operate 6,136 IP addresses, almost all of which are running servers and anonymizing VPNs. They manage IP addresses for organisations including 3NT Solutions LLP, Internet Tekhnologii LLC, and ISPIRIA Networks Ltd. Scamalytics see low levels of traffic from this ISP across our global network, most of which is fraudulent. We apply a risk score of 82/100 to Scalaxy B.V., meaning that of the traffic where we have visibility, 82% is suspected to be fraudulent." Try visiting Ispiria or Scalaxy's web site. If you click Contact or Support, it doesn't show anyway to contact them, they're dead links. There's no phone number or anything. That's the sign of a terrible, cheap web host. That's your first problem. Web hosts like these are prone to hackers and DDOS attacks, because they're too cheap to get proper security which costs $$$. Doing a google search of IP 5.61.57.85, shows it has a history of problems: https://www.google.com/search?q=5.61.57.85 https://www.abuseipdb.com/check/5.61.57.85 https://cleantalk.org/blacklists/5.61.57.85 The IP 5.61.57.85 has a history of being used by forum spammers: https://raw.githubusercontent.com/ktsaou/blocklist-ipsets/master/stopforumspam_180d.ipset (look up 5.61.57.85 in this list) My recommendation is to call Cloudflare and ask them what web hosts they recommend; who can prevent DDOS attacks. They might be able to recommend a reputable web host in Netherlands. I hope the network/developer of 3dxchat sees this: 1. Your server should only communicate with Cloudflare IP addresses. That means the only IP addresses that are allowed to connect to it are from Cloudflare. Your server should have a hardware based firewall that rejects traffic from any other IP address other than Cloudflare. 2. 3dxchat client should only communicate with Cloudflare IP addresses. You can use Comodo to monitor 3dxchat IP address usage to ensure only Cloudflare IP addresses are being used. The whole idea is that your server only accepts traffic from Cloudflare, and 3dxchat only connects to Cloudflare. Cloudflare is the gateway, the gate keeper. Edited July 2, 2020 by Kliwp Xaufin, ☙𝔼𝕩❧, Angelqueen and 3 others 2 4 Link to comment Share on other sites More sharing options...
rhet Posted July 1, 2020 Share Posted July 1, 2020 If this is legit, it really shouldn't have been posted publicly. JohnPS 1 Link to comment Share on other sites More sharing options...
Kliwp Posted July 1, 2020 Author Share Posted July 1, 2020 (edited) 1 minute ago, rhet said: If this is legit, it really shouldn't have been posted publicly. You're missing the point. The information is public already. If I could get it, ANYONE can get it. It's extremely easy to monitor 3dxchat to see what IP addresses it connects to. Edited July 1, 2020 by Kliwp Babette, uncle, Whitesnake and 1 other 4 Link to comment Share on other sites More sharing options...
SweetAmber Posted July 2, 2020 Share Posted July 2, 2020 OK so someone in the company has to be providing information to the people who are messing with the system...... Link to comment Share on other sites More sharing options...
Etanazzi Posted July 2, 2020 Share Posted July 2, 2020 (edited) The bad rep and the history is likely because people hosted by them are doing naughty things, not that the host itself is vulnerable. You are right though, that a game that has reached this level shouldn't still be hosted by a dime a dozen web provider. They posted that they're moving datacenters. If true, then hopefully this info is already out of date and not representative of the current hosting situation. Edit: I meant a different kind of naughty lol. Edited July 2, 2020 by Etanazzi Whitesnake 1 Link to comment Share on other sites More sharing options...
pretty Posted July 2, 2020 Share Posted July 2, 2020 (edited) This should not be directed at Lisa. She is just the designer of poses and such. Direct it at SexGameDevil / 3DXChat. Edited July 2, 2020 by pretty Link to comment Share on other sites More sharing options...
Kliwp Posted July 2, 2020 Author Share Posted July 2, 2020 24 minutes ago, pretty said: This should not be directed at Lisa. She is just the designer of poses and such. Direct it at SexGameDevil / 3DXChat. I thought Lisa is like the liaison between us and SexGameDevil/3DXChat. You wouldn't happen to know how to contact the devs by any chance? Link to comment Share on other sites More sharing options...
pretty Posted July 2, 2020 Share Posted July 2, 2020 All I can tell you is go to the SexGameDevil or 3DXChat website and look for "Contact". Link to comment Share on other sites More sharing options...
Angelqueen Posted July 2, 2020 Share Posted July 2, 2020 Summ @Gizmo and @Lisa ... XD maybe work... and read you opinion dear @Kliwp !! BTW.. i thank you personally this amazing research, to try help for devs! Whitesnake 1 Link to comment Share on other sites More sharing options...
Gizmo Posted July 2, 2020 Share Posted July 2, 2020 Hello, Thanks for your message. Most likely, this is not the fault of the hosting company, but of those people who bought hosting services and used it for spam. In the current DDoS attack on us, many IP addresses of Amazon and Google Cloud are used. ☙𝔼𝕩❧, VenomousVixens, Derai and 9 others 8 4 Link to comment Share on other sites More sharing options...
Recommended Posts