I run a forum for a community of Expats in Spain. We recently had to change to a new host server because I took over from another guy that fell out with site owners.
The forum has been hosted on the new server since 8th Feb 2009 up to today it has used 29gig of bandwidth. Looking at the stats it appears that someone (probably the former manager) is hitting the site with multiple visits. Looking at the time stat for length of stay. There have been 296visits today by someone that did not spend more than one second on the site. It also seems that they hit a number of pages at the same time. This is replicated back to the 8th Feb.
So, my question to you is. Is this my imagination or is it possible to set this up with some kind of script? We know the IP address of the suspect but he is part of a network of users all using the same IP address. Apart from asking the IP to block his access to our site is there any other way we can either stop these attacks or trace him so we can take legal action.
Hope someone can come up with something.