How to deal with DNS hijacking

　　We know that some network operators for certain purposes, certain operations carried out on the DNS, leading to the normal Internet settings using the ISP can not get the correct IP address through the domain name. Heavily concerned with: DNS hijacking and DNS poisoning. DNS hijacking and DNS poisoning is very common in the heavenly phenomenon. After entering a wrong or non-existent URL, this should appear under normal circumstances 404 pages, and we see they are all Telecom, China Unicom and other operators of the site navigation pages, small ads appear normal telecommunications access the site, use the Acting but still can not access some overseas websites, and Google recently blocked almost completely normal, Microsoft OneDrive open, and these are DNS some extent.
　　iis7 site monitoring
　　to detect whether the site was hijacked
　　domain wall whether
　　DNS pollution detection
　　Open Site speed detecting
　　whether the site was hacked
　　invasion
　　was changed title
　　is hung black chain
　　DNS hijacking
　　DNS hijacking is through hijacking the DNS server to obtain a domain name through some means the resolution records of control, and then modify this domain analytical results, leading to access to the original IP address of the domain name transferred to the specified IP modified, the result is not access or access to a particular Web site is a fake URL, so achieve the purpose of stealing data or damage to the original normal service. DNS hijacking to achieve returns an error to the user's query results by tampering with the data on the DNS server.
　　DNS hijacking Symptoms: Users in some areas after the success of broadband connections, the first point to open any page provided by your ISP "telecommunications Megaupload", "China Netcom Yellow Pages advertising" and other content pages. There is time, there have been users to access Google domain appeared Baidu website. These are all DNS hijacking.
　　DNS poisoning
　　DNS poisoning is a way for the average user to obtain false because the destination host IP method can not communicate, is a DNS cache poisoning attack (DNS cache poisoning). The way it works is: As usual DNS queries without any authentication mechanism, and DNS query protocol is usually based on the UDP is a connectionless unreliable, so the DNS queries are vulnerable to tampering, intrusion by UDP DNS on port 53 queries request detection, and once found matching the keyword is immediately disguised as a target domain name resolution server (NS, Name server) returns a false result to the inquirer.
　　DNS poisoning symptoms: some sites are currently prohibited in the heavenly accessed basically achieved through DNS poisoning, such as YouTube, Facebook and other sites.
　　Solution
　　for DNS hijacking, you can manually replacing the DNS server to resolve public DNS.
　　For DNS poisoning, it can be said, relying solely on the individual user is difficult to solve the set, you can usually use VPN or remote domain name analytic solution, but most need to purchase pay-peer VPN or SSH, can also modify the Hosts method, manually set domain name correct IP address.
　　Public DNS
　　Public DNS is a free DNS for the mass of Internet infrastructure services. We know the Internet, it must be DNS resolution service, although the majority of computer users are less likely to manually set the DNS server address, instead of using the default network operators to automatically obtain DNS address, but for some small Internet service providers in terms of , national or global DNS nodes may be relatively small, so it is easy to result in the opening pages Pianman and so on.
　　After replacing the DNS server addresses to the public DNS, it can accelerate to a certain extent, DNS speed to prevent DNS hijacking, strengthen Internet security, can also block most of the carrier's advertising.