What should I do if the DNS resolution is tampered with? Teach you to quickly troubleshoot and repair

in daily network use, many users will encounter the situation that they clearly enter the correct URL but jump to unfamiliar pages, the website loads slowly or even cannot be accessed, which is likely to be caused by the tampering of DNS parsing. As the "navigator" of network access, once tampered with, it will not only affect the normal Internet experience, but also may bring risks such as phishing website fraud and privacy leakage. This article will help users solve the problem of DNS parsing being tampered with in an all-round way, so that network access can return to safe and smooth.

, how to identify DNS resolution is tampered with?

DNS analysis is tampered with the initial symptoms are easy to be ignored, understanding the typical abnormal performance is the key to timely detection of problems.

1, URL jump abnormal

enter the commonly used regular website URL, but jump to the original website style is completely different from the unfamiliar page, or directly jump to the advertising page, phishing website, this is the most intuitive performance of DNS resolution is tampered with. For example, enter the bank's official website address, but open the fake login page, such a situation is likely to be the DNS resolution result is maliciously replaced.

2, network access abnormal fluctuations

the website that was originally well accessed suddenly loaded slowly and frequently, and even some commonly used websites could not be accessed directly, but after changing the network environment, it returned to normal. This differentiated performance may also be caused by DNS resolution being tampered with. In addition, frequent pop-up advertising pop-ups unrelated to current browsing content are also potential signals that DNS resolution has been tampered with.

Second, DNS resolution has been tampered with rapid troubleshooting method

confirmed that there is an abnormality, it is necessary to accurately troubleshoot the root cause of DNS resolution being tampered with in order to solve the problem.

1. Use the command line to detect the parsing results

press the Win + R key combination in the Windows system and enter cmd to open the command prompt, enter nslookup plus the target URL to see if the returned Internet Protocol Address is consistent with the official IP of the website; Mac or Linux system will open the end point and enter the same command. If the returned Internet Protocol Address is unfamiliar and does not match the official, it can be determined that the DNS resolution has been tampered with.

2, check local and router settings

first check the DNS server address settings of the local network connection to see if it has been modified to an unfamiliar address; then log in to the router management background to check the DNS configuration item of the router. Part of the DNS resolution is tampered with by invading the router to tamper with the configuration. If an unfamiliar DNS address is found, it means that the configuration has been maliciously modified.

Third, DNS resolution is tampered with repair solutions

locate the root cause of DNS resolution being tampered with, the normal DNS resolution function can be restored through targeted operations.

1, modify the DNS server address

first modify the DNS server address of the local network connection to public safety DNS, such as domestic 114.114.114.114, Ali's 223.5.5.5, or international 8.8.8.8. If the router DNS configuration is tampered with, it is necessary to modify the DNS address to the above public DNS in the background of the router. After saving the configuration, restart the router to restore the normal parsing path and solve the abnormality caused by the tampering of DNS parsing.

2, killing malicious programs and virus

part of the DNS resolution is tampered with by malicious software and viruses in the computer. Such programs will quietly modify the system DNS configuration. At this time, you need to use professional antivirus software to scan the whole disk, thoroughly kill the malicious program, and then reset the correct DNS address to avoid the problem of DNS resolution being tampered with again.

3 Reset network settings

if the problem is still not solved after modifying the DNS address and killing the virus, you can try to reset the system network settings. Windows systems can enter netsh winsock reset and netsh int ip reset commands in the command prompt to reset the network; Mac systems can reset the network configuration through the Restore button in Network Preferences to completely clear the abnormal configuration left by DNS resolution tampering.

How to prevent DNS resolution from being tampered with?

solve the problem of DNS resolution being tampered with, do a good job of long-term protection to avoid encountering the same failure again.

1 Enable DNSSEC Security Extensions

DNSSEC is a DNS security verification mechanism that can digitally sign DNS resolution results to ensure that the resolution results have not been tampered with. At present, most public DNS and regular domain name service providers have supported DNSSEC function, and users can turn on this function in the domain name management background to reduce the risk of DNS resolution being tampered with from the root cause.

2, regularly check the network configuration

develop the habit of regularly checking the local and router DNS configuration, check whether the DNS server address is normal once a month to avoid DNS resolution being tampered with for a long time. At the same time, timely update the router firmware and system patches to fix possible security bugs and prevent malicious programs from tampering with DNS configuration through vulnerabilities.

To sum up, DNS resolution is tampered with is a common cyber security problem. By identifying typical symptoms such as abnormal URL jumps and network fluctuations, problems can be found in time. With the help of command line detection and configuration troubleshooting, the root cause can be quickly located. Then by modifying the DNS address, killing viruses, resetting the network and other ways to repair the fault. Finally, enable DNSSEC and regularly check the configuration to achieve long-term protection. Mastering these methods can effectively deal with the problem of DNS resolution being tampered with and ensure the safety and smoothness of network access.