Detected DNS cache poisoning attack

If you do get below message from your default security software as an alert.

Detected DNS cache poisoning attack
Remote IP address:
xxx.xxx.xx.xxx.


Follow the steps below :-

Flush the DNS cache and restore MS's Hosts file ...

Copy and paste these lines in Note pad.


@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0


Save as flush.bat to your desktop. Right click on the flush.bat file to run it as Administrator. Your computer will reboot itself.

No comments:

Post a Comment