Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 292
  • Last Modified:

Uncontrolled Generated Internet Traffic

Hi Guys,

We are using a 3rd party internet proxy server at a site for workstations to have controlled internet access.

Over the December period there were extremely high internet usage and traffic through- put on the internet proxy server.

Upon investigation we found thousands of the following URL requests in the log files.
In an attempt to stop the persistant lookup we asked the users to use Firefox instead of IE (not sure if this will stop the occurance)

http://www.google.co.za/webhp HTTP/1.1

Does anyone perhaps know what this URL on Google refers to, and why it would popup thousands of times in the logs?
0
Rupert Eghardt
Asked:
Rupert Eghardt
  • 4
  • 3
1 Solution
 
Dave BaldwinFixer of ProblemsCommented:
Looks like it might be related to the Google Toolbar or another Google service.  http://answers.yahoo.com/question/index?qid=20080304152357AA4DT3U
0
 
Rupert EghardtProgrammerAuthor Commented:
Thanks Dave,

I agree.  It is quite a tricky one, as we are unable to block all Google traffic in the proxy config.  

I wonder how one could prevent these site-visits from pushing up the internet usage?
0
 
Dave BaldwinFixer of ProblemsCommented:
Are you in South Africa?  Maybe you can get rid of all the Google Toolbars.  They aren't actually needed for anything but feeding Google's marketing machine.
0
KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

 
Rupert EghardtProgrammerAuthor Commented:
We are still experiencing high traffic in IE when inserting the internet proxy settings.
The logs report continuous recurring entries:  http://www.google.co.za/webhp HTTP/1.1

When we remove the settings and use Firefox instead, the activity stops and the usage drops to normal.

In IE I am unable to identify any obvious cause, no toolbars, no "add-on's"

I have even tried uninstalling IE and reinstalling.  The traffic re-occurs as soon as IE has the proxy settings configured.  I guess it must be a 3rd party application using the IE settings?
0
 
Dave BaldwinFixer of ProblemsCommented:
Looks like it is a 'redirect' virus or trojan.  It is capable of infecting Firefox too.  http://www.bleepingcomputer.com/forums/topic309331.html
0
 
Rupert EghardtProgrammerAuthor Commented:
No solution found, using Firefox instead for the time being
0
 
Rupert EghardtProgrammerAuthor Commented:
No solution found, using Firefox instead for the time being
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now