Skip navigation

Data is sent/received even if not on the net

662 Views 13 Replies Latest reply: Dec 30, 2011 9:49 AM by BDAqua RSS
Faris Kalin Calculating status...
Currently Being Moderated
Nov 27, 2011 1:23 AM

I've got a weird situation.  Even if I never access any program that would use the net, if I'm connected to my mifi (4g 4510 and previously the 3g 2200), it will show on the mifi that data is being transmitted and/or received.  The light on the mifi blinks when data is sent/received.  It also shows up in the activity monitor.  Anyone have any idea what the cause of this is, and whether or not I should be worried?

 

I tend to be pretty cautious so I wouldn't think that I'm infected with something, but this is really odd behavior, don't you think.  I always use limited user mode, NoScript, and am careful where I go on the net.  Plus, I've never been prompted for my admin password other than when I'm updating via the Apple software updater.

MacBook Pro, Mac OS X (10.5.8)
  • BDAqua Level 10 Level 10 (114,800 points)
    Currently Being Moderated
    Nov 27, 2011 10:48 AM (in response to Faris Kalin)

    Hello Faris,

     

    Several things could be happening, is Mail running? Time/Date can be updating, Bonjour can be advertising services.

     

    What encryption or type of connection does it use? Could someone nearby be using it?

     

    Open Activity Monitor>Network Tab, does it show sent/rec'd bytes when the flashing is happening?

     

    Little Snitch, stops/alerts outgoing stuff...

     

    http://www.obdev.at/products/littlesnitch/index.html

  • BDAqua Level 10 Level 10 (114,800 points)
    Currently Being Moderated
    Nov 28, 2011 10:31 AM (in response to Faris Kalin)

    WPA2 is the encryption type it's using, which is good.

     

    I wouldn't be worried, it seems normal here, but Little Snitch would likely tell you what it was that wanted out.

  • BDAqua Level 10 Level 10 (114,800 points)
    Currently Being Moderated
    Nov 29, 2011 9:39 AM (in response to Faris Kalin)

    Not much you need to know about installing or using it, some would consider it a pain to use as I do,  I do think it'll tell us what this is that is going out, here's the Rules you can view...

    LittleSnithRules.jpg

  • David Vincent Level 1 Level 1 (15 points)
    Currently Being Moderated
    Dec 28, 2011 3:32 AM (in response to Faris Kalin)

    This agent is probably ok.  A technical note, http://support.apple.com/kb/TS1770, says in part: "The PubSub agent syncs the RSS read/unread status of bookmarked RSS feeds between computers using Mac OS X 10.5 that are syncing bookmarks via MobileMe Sync."

  • BDAqua Level 10 Level 10 (114,800 points)
    Currently Being Moderated
    Dec 28, 2011 12:18 PM (in response to Faris Kalin)

    Once installed it loads automatically, & all those things are normal processes.

  • BDAqua Level 10 Level 10 (114,800 points)
    Currently Being Moderated
    Dec 29, 2011 9:24 AM (in response to Faris Kalin)

    It'll get easier.

     

    css.wlxrs.com appears to be malware alright, (mostly Windows though), open Little Snitch Rules & make sure that one is denied always...

     

    http://www.threatexpert.com/report.aspx?md5=26d29b1a830fb021f568805f9daa6b95

     

    Then get the Free Sophos AV software...

     

    http://www.sophos.com/en-us/products/free-tools/sophos-antivirus-for-mac-home-ed ition.aspx

  • BDAqua Level 10 Level 10 (114,800 points)
    Currently Being Moderated
    Dec 30, 2011 9:49 AM (in response to Faris Kalin)

    OK, I guess it could be used for something else, if Avast says it's OK, then likely not the problem I thought.

Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.