Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsNew Zealand BroadbandExtra internet usage
PhilANZ

352 posts

Ultimate Geek


#248698 6-Apr-2019 13:10
Send private message

I have no idea if this is the place to ask - or even what to ask. We've noticed a number of times (weeks apart) a sudden unexplained spike in our data usage. It's usually only 1-2 GB that's our normal daily usage. Yesterday being after 31 March we had a day recovering and hardly touched our computers, and noticed it.

Glasswire tells us it was dl7g9llrghqi1.cloudfront.net - which doesn't mean much to me. I'm guessing someone's using our bandwidth somehow - but we have no idea how.

More importantly, I have no idea what access they have - or how do change it. I think this is the first time since we installed a new router. We used the old password to avoid family having to update their devices, but we'll change that. Any other comments helpful comments much appreciated.

Thanks

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
gehenna
8436 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #2211762 6-Apr-2019 14:01
Send private message

Are any of your devices turned on while you notice this spike? Could be something phoning home / a scheduled backup of something. It is unlikely to be nefarious.

 
 
 
 

Send money globally for less with Wise - one free transfer up to NZ$900 (affiliate link).
PhilANZ

352 posts

Ultimate Geek


  #2211766 6-Apr-2019 14:18
Send private message

Our only regular devices are two laptops and two phones. Occasionally my wife's tablet or Kindle is turned on to download and my children's phones are seldom here. But the fact that the link I gave reported over 1Gb of usage (as has happened before but with different sites) suggests something less than healthy is happening. I just checked the site again and it appeared different again (third time).

freitasm
BDFL - Memuneh
79055 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2211772 6-Apr-2019 14:35
Send private message

That URL leads to https://www.drift.com/

 

Is this something that reminds you of anything?




Please support Geekzone by subscribing, or using one of our referral links: Mighty ApeSamsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup

 

My technology disclosure



PhilANZ

352 posts

Ultimate Geek


  #2211777 6-Apr-2019 14:44
Send private message

Not in my wildest imagings - I'm a Honda man through and through (first bikes., now cars). There was an ad too long ago for most to recall when the biker image led to "you meet the nicest people on a Honda". I'm closer to that than drifting.

freitasm
BDFL - Memuneh
79055 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2211782 6-Apr-2019 14:48
Send private message

You didn't visit the link, did you? It's not about cars, at all.

 

Or did I miss a joke?




Please support Geekzone by subscribing, or using one of our referral links: Mighty ApeSamsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup

 

My technology disclosure

Spyware
3724 posts

Uber Geek

Lifetime subscriber

  #2211783 6-Apr-2019 14:48
Send private message

Sounds like you didn't even look at the site.

Linux
11210 posts

Uber Geek

Trusted
Lifetime subscriber

  #2211786 6-Apr-2019 14:55
Send private message

PhilANZ: Not in my wildest imagings - I'm a Honda man through and through (first bikes., now cars). There was an ad too long ago for most to recall when the biker image led to "you meet the nicest people on a Honda". I'm closer to that than drifting.


You clearly did not click on the link



PhilANZ

352 posts

Ultimate Geek


  #2211790 6-Apr-2019 15:16
Send private message

I looked 3 different times - the first twice it seemed to change but still about drifting. Since I've now been to it three more times without it changing (once after deleting any cookies I couldn't clearly identify - as well as the cache) I'm even more confused than when I started. Just to be clear I didn't click on anything - just viewed it.
Looks like another hits the "too hard" basket. I'll see where the changed router password gets us over the coming .weeks.
Thanks for your time.

Linux
11210 posts

Uber Geek

Trusted
Lifetime subscriber

  #2211791 6-Apr-2019 15:20
Send private message

You don't see " Connect Your Sales Teams With Your Future Customers " ?

Spyware
3724 posts

Uber Geek

Lifetime subscriber

  #2211794 6-Apr-2019 15:32
Send private message

PhilANZ: I looked 3 different times - the first twice it seemed to change but still about drifting. Since I've now been to it three more times without it changing (once after deleting any cookies I couldn't clearly identify - as well as the cache) I'm even more confused than when I started. Just to be clear I didn't click on anything - just viewed it.

 

You went to drfting.com rather than drift.com

Rikkitic
Awrrr
18586 posts

Uber Geek

Lifetime subscriber

  #2211796 6-Apr-2019 15:37
Send private message

DNS hijack? Rogue Hosts file? Sounds like he's seeing something completely different from the rest of us.

 

Edit: There is an easier explanation.

 

 

 

 

 

 




Plesse igmore amd axxept applogies in adbance fir anu typos

 


 

PhilANZ

352 posts

Ultimate Geek


  #2211797 6-Apr-2019 15:40
Send private message

I confess I didn't spend much time there at all - bit leery of some of the nasties on the net, and I'd just had over 1Gb of bandwidth chewed up for nothing so didn't want to spend any time there. Mea culpa I just saw the site was drift.com and took off. I didn't stay around to read it. The cloudfront.net didn't produce anything so it seemed like the sort of place I didn't want to stay.

Linux
11210 posts

Uber Geek

Trusted
Lifetime subscriber

  #2211801 6-Apr-2019 16:01
Send private message

Rikkitic:

 

DNS hijack? Rogue Hosts file? Sounds like he's seeing something completely different from the rest of us.

 

Edit: There is an easier explanation.

 



They did not actually click on the link

Rikkitic
Awrrr
18586 posts

Uber Geek

Lifetime subscriber

  #2211819 6-Apr-2019 16:41
Send private message

Linux:
Rikkitic:

 

DNS hijack? Rogue Hosts file? Sounds like he's seeing something completely different from the rest of us.

 

Edit: There is an easier explanation.

 



They did not actually click on the link

 

Yeah, I realised that after I posted. I was just tossing out some ideas as they occurred.

 

 




Plesse igmore amd axxept applogies in adbance fir anu typos

 


 

freitasm
BDFL - Memuneh
79055 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2211872 6-Apr-2019 17:29
Send private message

Cloudfront is just the Amazon Web Services CDN service. That specific URL is used by the domain I posted.

 

I am not sure what else we could find without specific tracing all packets in the network.

 

Obvious question: all devices that could be off were off (laptops, desktops)? Smartphones and tablets, unless you explicitly push the power button for a few seconds and the click the "OFF" on screen are just sleeping and could still be doing things in the background.

 

All devices were scanned for malware?




Please support Geekzone by subscribing, or using one of our referral links: Mighty ApeSamsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup

 

My technology disclosure

 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Logitech Introduces New G522 Gaming Headset
Posted 21-May-2025 19:01

LG Announces New Ultragear OLED Range for 2025
Posted 20-May-2025 16:35

Sandisk Raises the Bar With WD_BLACK SN8100 NVME SSD
Posted 20-May-2025 16:29

Sony Introduces the Next Evolution of Noise Cancelling with the WH-1000XM6
Posted 20-May-2025 16:22

Samsung Reveals Its 2025 Line-up of Home Appliances and AV Solutions
Posted 20-May-2025 16:11

Hisense NZ Unveils Local 2025 ULED Range
Posted 20-May-2025 16:00

Synology Launches BeeStation Plus
Posted 20-May-2025 15:55

New Suunto Run Available in Australia and New Zealand
Posted 13-May-2025 21:00

Cricut Maker 4 Review
Posted 12-May-2025 15:18

Dynabook Launches Ultra-Light Portégé Z40L-N Copilot+PC with Self-Replaceable Battery
Posted 8-May-2025 14:08

Shopify Sidekick Gets a Major Reasoning Upgrade, Plus Free Image Generation
Posted 8-May-2025 14:03

Microsoft Introduces New Surface Copilot+ PCs
Posted 8-May-2025 13:56

D-Link A/NZ launches DWR-933M 4G+ LTE Cat6 Wi-Fi 6 Mobile Hotspot
Posted 8-May-2025 13:49

Synology Expands DiskStation Lineup with DS1825+ and DS1525+
Posted 8-May-2025 13:44

JBL Releases Next Generation Flip 7 and Charge 6
Posted 8-May-2025 13:41








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







Backblaze unlimited backup



RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
Hatch
GoodSync
Backblaze backup
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright