I have Fedora 12 Linux on my laptop with all the latest security updates installed. But when I open wireshark and view only dns requests (by adding a dns filter), I notice that my laptop keeps doing dns requests to random sites. I have observed this even after closing all applications (browser, torrent clients etc.,)
Is this some kind of worm or virus? :( How do I find out which process is sending these DNS requests? Strangely enough, only some of the sites that are being queried for DNS are the ones I have visited. The other sites- I haven't even heard of them before..
Tried running lsof -nl | grep udp in a loop inside a script. This always results in no output.
Thanks,
-Keshav