huge volume outbound packets

  • Thread starter Thread starter DJD
  • Start date Start date
D

DJD

When I look at the status of my computer's 100Mbps NIC
while connected to our network I see a huge quantity of
data packets being sent.

When I am connected using the wireless connection, that
status is normal.

I have scanned for viruses on my machine using the latest
definitions from Symantec.

Any clue what I should be looking for?
 
When I look at the status of my computer's 100Mbps NIC
while connected to our network I see a huge quantity of
data packets being sent.

When I am connected using the wireless connection, that
status is normal.

I have scanned for viruses on my machine using the latest
definitions from Symantec.

Any clue what I should be looking for?
Click to expand...

David,

Some viruses / malware is known to bypass or disable virus detection programs
running on a computer. Some malware is not virus related.

Start with an on-line virus scan:
http://security.symantec.com/ssc/
http://housecall.trendmicro.com/housecall/start_corp.asp

Try an online diagnostic:
http://www.pcpitstop.com/default.asp

Get Process Explorer (free) from
<http://www.sysinternals.com/ntw2k/freeware/procexp.shtml>. Provides way more
information than Task Manager. And Port Explorer (free) from
<http://www.diamondcs.com.au/portexplorer/index.php?page=home> will show you
what network connections your computer is actually opening, and what processes
are opening them.

Finally, a spyware check.

Start by downloading LSP-Fix from <http://www.cexx.org/lspfix.htm>, and
CWShredder from <http://www.majorgeeks.com/download4086.html>.

First, run CWShredder.

Now check for, and remove, spyware. Get HijackThis
<http://www.majorgeeks.com/download.php?det=3155> and Spybot S&D
<http://security.kolla.de/index.php?lang=en&page=download>.
1) Install and run Spybot. First update it ("Search for updates"), then run a
scan ("Check for problems"). Trust Spybot, and make all recommended deletions.
2) Install and run HijackThis. Do NOT make any changes immediately. Save the
Log.
3) Have your HJT log interpreted by experts at one or more of the following
forums (and post it here):
<http://forums.tomcoyote.org/>
<http://63.247.79.145/~coyote/forums/>
<http://www.wilderssecurity.com/>
<http://forums.net-integration.net/>
<http://www.spywareinfo.com/forums/>

If removal of any spyware affects your ability to access the internet (some
spyware builds itself into the network software, and its removal may damage your
network), run LSP-Fix.

Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
 
Is the number huge? Like in the billions? If so it's probably a bug in the
network adapter driver for your NIC, and there might be a newer one
available.
 
Back
Top