Unknown Bandwidth leech

Started by Travis Retriever, June 19, 2012, 05:11:34 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
June 19, 2012, 05:11:34 PM Last Edit: June 19, 2012, 07:22:18 PM by surhotchaperchlorome
I notice when I open the task manager that, despite not downloading anything, receiving any windows updates, or anything like that, that my task manager shows that this computer is using between 1/3 and 2/3 (and sometimes nearly all) of the available bandwidth my connection has.  So I restart my computer to see what program might be leeching bandwidth for no apparent reason.  It starts happening as iTunes loads up so I uninstall iTunes.  No such luck.

Any idea what might be going on?  I checked my other computers and they don't seen to has this weirdness going on.
I *REALLY* wish Windows Task manager would tell me what program is using what bandwidth in addition to physical memory and CPU % usage.
"When the mob and the press and the whole world tell you to move, your job is to plant yourself like a tree beside the river of truth, and tell the whole world—'No. You move.'"
-Captain America, Amazing Spider-Man 537
June 19, 2012, 05:55:18 PM #1
Quote from: surhotchaperchlorome on June 19, 2012, 05:11:34 PMI *REALLY* wish Windows Task manager would tell me what program is using what bandwidth in addition to physical memory and CPU % usage.

But then it would actually be useful!
June 19, 2012, 06:02:02 PM #2
Quote from: MrBogosity on June 19, 2012, 05:55:18 PMBut then it would actually be useful!

I know, right?
"When the mob and the press and the whole world tell you to move, your job is to plant yourself like a tree beside the river of truth, and tell the whole world—'No. You move.'"
-Captain America, Amazing Spider-Man 537
June 19, 2012, 09:37:22 PM #3
What you need to use is a different program.  Depending on your version of Windows, it will have different names but it is usually called the "reliability and performance monitor."  That will be in the control panel under administrative tools.  That will tell you the program name, the address they are connecting to and the data exchanged with that address.  You will then have a better idea of what is going on for further trouble shooting.
June 19, 2012, 10:24:49 PM #4
Quote from: BogosityForumUser on June 19, 2012, 09:37:22 PM
What you need to use is a different program.  Depending on your version of Windows, it will have different names but it is usually called the "reliability and performance monitor."  That will be in the control panel under administrative tools.  That will tell you the program name, the address they are connecting to and the data exchanged with that address.  You will then have a better idea of what is going on for further trouble shooting.

I use Windows 7 (64 bit).  And I looked there and can't find it. :\
Oh well, the problem seems to have resolved (for now anyways), so it's cool.
"When the mob and the press and the whole world tell you to move, your job is to plant yourself like a tree beside the river of truth, and tell the whole world—'No. You move.'"
-Captain America, Amazing Spider-Man 537
June 20, 2012, 09:40:58 AM #5
Quote from: surhotchaperchlorome on June 19, 2012, 10:24:49 PM
I use Windows 7 (64 bit).  And I looked there and can't find it. :\
Oh well, the problem seems to have resolved (for now anyways), so it's cool.

Does Windows 7 still have netstat?  It's a handy little command line program that gives you a report of network connections your machine currently has.  (You can also use a switch to get a list of open ports, which can be useful too.)  If there isn't anything running that SHOULD be using the network connection, and something is, this can at last help identify what ports are being used, which can help identify the culprit.  (For instance, there's are whole classes of trojans that use IRC as their C&C link.  If you don't use IRC and your machine is connecting to IRC, it's a pretty good bet you have a trojan.  If you've got port 21 open and lots of connections to it, somebody probably has hacked in enough to use your FTP server for their own purposes.  I saw somebody once who had that happen to their home machine, and it had been turned into a warez server._
June 20, 2012, 12:27:38 PM #6 Last Edit: June 20, 2012, 12:53:47 PM by BogosityForumUser
Windows 7 still has netstat.  The reason I suggested the reliability and performance monitor (called resource monitor or resmon if you search for it or want to run it on 7 64bit, apparently as I don't run windows 7 myself), is because netstat doesn't give you bandwidth usage of connections and because it requires multiple executions with different switch combinations to get the complete picture.  Also, executing netstat without administrator privileges gives different results than with it in some situations.

Another thing I do that help is that I have my windows firewall on both inbound and outbound filtering.  It is (much) more difficult to configure initially but anything that wants to get out has make an exception in the firewall and is therefore very obvious when a change is made.
June 20, 2012, 02:31:01 PM #7
@evensgrey:  Ah, thanks.

@BogosityForumUser:  Yup, and it shows exactly what I need to know too!  Thanks.  You just earned your first -1 on your bogomete (-1 for evensgrey for his assistance too). :)
The odd thing is I've actually seen that program before (called resource monitor), but never once thought much of it, because I thought it was just a fancy looking task manager and redundant.
"When the mob and the press and the whole world tell you to move, your job is to plant yourself like a tree beside the river of truth, and tell the whole world—'No. You move.'"
-Captain America, Amazing Spider-Man 537
June 20, 2012, 02:55:16 PM #8
It also doesn't help that it doesn't show up under Administrator Tools anywhere. I guess you have to just know it's there.
June 20, 2012, 02:56:06 PM #9
Quote from: MrBogosity on June 20, 2012, 02:55:16 PMIt also doesn't help that it doesn't show up under Administrator Tools anywhere. I guess you have to just know it's there.

Believe me, I noticed... *eye twitch*
"When the mob and the press and the whole world tell you to move, your job is to plant yourself like a tree beside the river of truth, and tell the whole world—'No. You move.'"
-Captain America, Amazing Spider-Man 537
June 20, 2012, 08:56:34 PM #10
Yeah.  It used to be there, but no longer.  They have done that with other power tools too.  After surhotchaperchlorome said that it wasn't there, I had to check out Microsoft's website.  Now for many of the troubleshooting tools, they just have you type them into the search feature and open them that way. But someone must have decided that was too user friendly and to make it even harder by not having them appear until you have typed in the entire name.  And computer savvy people wonder why more and more people treat computers like magical boxes and fall for all those scams, we have fenced people in so much they are terrified to even take their eyes off or don't know where it is at all and just roam with no direction.

Oh, I almost forgot: thanks for the -1.
User actions
Print
Go Up Pages1