With permission, I'd like to start a new thread about GlassWire if I may. Now this isn't really about Hughes, because I have two ISPs, and the event that I am going to describe briefly here was when I was connected with my uncapped and no limit DSL (but Hughes upload/download speed is higher).
I purchased GlassWire Pro around 4 months ago (I think Amanda suggested Glasswire Free), and I was recently looking back at the history. I was astonished to find an upload of 750GB (yes gigabyte, and about 10 months of Hughes quota) that as far as I was concerned was unauthorized, unknown, and went to an unknown destination. Basically, it was my network drive that my personal data drive is backed up on regularly, using Acronis 2016. Since then, there have been additional uploads after an incremental backup is performed.
I have tried real hard to sort this out including posting at Microsoft, but I have run out of gas and ideas. One I want to stop it, and two I would like to know where it came from.
Glasswire indicates that the App is "System", the Host is my Seagate 41257D network attached drive, and the Traffic Type is Microsoft-DS Active Directory.
Microsoft told me to disable the Microsoft-DS Active Directory service, but I didn't find any such service to disable. This is Windows 10.
And this is relevant to Hughes because of the frequent complaints about data leaks.
Gabe has already suggested some possible leak to the Cloud. Certainly fits this IMO, but I have always said NO! to Cloud services and have not been able to find any signs of this on my computer. I haven't found any services that would fit, and also have looked at the Scheduler and haven't found anything. So far, it hasn't run often, but when it does it is fast and furious. The uploads seem to be tracking the backups to the Seagate drive in both size and frequency.
The Genie is only allowed to connect to the DSL router via WiFi. It is not physically located near an RJ45 port. I Googled and found others had received $1300 bills from Verizon.
I have a second older receiver connected via RJ45 to Hughesnet and not have had any observable utilization except when I did something deliberate like a "program on demand".
The Genie is my wife's, and she is almost always recording something. I went as far as you suggested, and then got a warning that it would take some time and would disrupt any recording while it was doing it. A happy wife is a happy life.
A happy wife is a happy life.ABSOLUTELY!!! LOL.
Thanks. I think we agree. I don't have any of that fancy stuff yet like a "smart tv". The bulk of the storage are "movies" of our Township Board screaming at each other every two weeks.
We have a new Board now that I sponsored and they are behaving much better.
I have two router/modems each with 4 ports, and two 8 port switches. One older HP printer doesn't like to be switched between the two local networks and I often have to manually reinstall it.
Once the current 6 backup cycle is complete, I will revisit which directories are backed up. No need to make copy after copy of these videos which are typically 6GB each.
I don't even remember setting up the backup schedule. I think Acronis snuck that in on me behind my back. Sneaky software.
Yeah. Thx Amanda. Previously I had been able to zoom in on the first single 750GB event which was in December. Last night when Gabe asked for the screenshot, I wasn't able to find it quickly (or at all, in the graph at the bottom), and also was not able to quickly figure out narrowing that range (August to January). I'll have to play more with Glasswire to become more skilled at using it. Nevertheless, a bit disappointed in the reporting of the "upload" event which was:
App: System Host: Seagate-41257D Traffic Type: Microsoft-DS Active Directory
If it had been a real leak, this information isn't terribly helpful. As it is, we deduced that it must be the backup process by looking at the surrounding evidence instead of the direct evidence.
Actually, it's more helpful than you think. By it telling you the host, you're able to see where it's going (in this case the Seagate Drive). If it was an external leak, as in using the internet, the host information would again tell you where it was going. Very often a Google search can tell you just what and where that host is, and what it is used for.
You'll get the hang of Glasswire over time. It's a lot of info to sort through but very helpful once you get used to its ins and outs, no pun intended. LOL.
I would have preferred that the App be Acronis instead of System, and that the Seagate be referred to as the Destination instead of the Host, and the traffic type be something meaningful, instead of Microsoft-DS Active Directory. I wasted an hour Googling to find out what that was and obtained nothing useful.
With those 2 simple changes it would have been immediately obvious what it was.
As it was, I interpreted "system" as something unknown in the operating system, the Seagate to be the "source" of the data traffic, and Microsoft-DS Active Directory as the unknown destination (like OneDrive).