[eluser]alitech[/eluser]
I suspected DDOS, but this is ongoing for over a year so I hardly think that is the case. Saving the session data in the SQL is an interesting point. I am not sure that is or is not happening as I am not technical but I can ask the dev to look into this.
Any other possibilities?