The tracking script collects raw browser signals; the server runs 14+ checks against them — proxy headers, datacenter IPs, WebDriver, headless UA, plugin and mime-type absence, zero or unrealistic screen sizes, timezone/VPS and timezone-vs-Geo mismatches, fast-click timing, and bot UA patterns. Suspicious visitors are redirected to configurable waste destinations — game apps, phone card offers, SIM company landing pages — so nobody can send you bad traffic and get good traffic back.