I know this general question has been asked previously. However, at least for my own piece of mind I'd like to ask per my specific experience. I just recently joined opendns and set up my router to use it. It's been about 5 days now since i've been using it.
I have looked at the stats and the blocked domains. There are a LOT of porn domains on there, of which, i'm positive no one in my household has tried to access. Now, I know the stats are not exclusively reflective of HTTP traffic that are initiated by a person. It includes those but also includes software, services, hardware, etc. that may also be included. Though, i'm pretty concerned if there is something other than a human initiating requests to these domains. That means there is something installed somewhere doing this and I need to get to the bottom of it.
My configuration is as follows:
Verizon Fios --> House --> coax to Verizon MI424WR router (w/wirless off) --> LAN to WAN connection into my ASUS router --> Devices on network
Thoughts on how to hoan in on what exactly is requesting name resolution on these porn domains?
I've toyed a bit with possibly using Wireshark and similar tools but that assumes you can predict when these domains will be requested/require resolution in order to capture. And of course, the router doesn't allow for logging web requests which I would do just to ensure it's not coming from a human after all.
Please sign in to leave a comment.