security - log scanners
ATX features several tools to scan the raw log files of all incoming and outgoing traffic.
These tools give you more information about the type of traffic you receive from a trade
and possibly help you detect cheaters and other types of abnormal traffic activities.
1. proxy counter
A proxy server is a pass-through server, a surfer doesn't connect directly to the internet,
but connects to a proxy server first, which connects the surfer to the internet.
This way he can hide his true identity, and this makes proxy servers ideal for staging attacks.
A high amount of proxy traffic often is a strong indication that something is wrong.
Run the proxy counter for your trades, and find out what the average proxy percentage is for your trades
If one or a few trades show a much higher percentage, then you should further investigate these trades
2. Count repetetive occuring IP's
Many times when a trade is showing unusual activity, it's becauses of one or a few IPs that
are loading your site thousands of times in a short period of time.
Perhaps a surfer is downloading your entire website and follows every link
or a spider is going over your website, or somebody has unleashed his hitbot on your site.
Use this tool to find IPs that are causing a massive amount of hits.
You can choose to then block these IPs with the htaccess controller in ATX.
3. Scan single IP
Once you have located a suspicious IP, run the single IP scanner to find out further info about it.
You will be able to see when it produced hits and clicks and with what user-agent.
The IP scanner will also show you the referrer (if available), so that you can consider blocking the trade,
or at least contacting the site owner about the traffic he's sending.