We use Open DNS to block malicious websites.
Our report is showing vicp.net domain being filtered out with a huge hit count.
It is good that it is being blocked however I suspect that there is a virus infection or malware infection on the network on one of the PCs.
But since Open DNS has no way of finding out the offending endpoint, I have to do this locally and myself.
I don't know much about the network monitoring but I do know the concept on which the utilities like ethereal and Microsoft Network monitor work.
I have never used any of that successfully after playing around with them.
So 1. Is there a way I can use any of these monitoring utilities and if so, which one and exactly how do I setup the filters etc.
2. Is there an alternative way of finding this out? Our AV monitoring suggests everything is fine.
As you can understand this is my #1 priority right now as I need to stop this before it spreads to the other branch offices as well.
Urgent help needed!!!