CN103825895A - Information processing method and electronic device - Google Patents

Information processing method and electronic device Download PDF

Info

Publication number
CN103825895A
CN103825895A CN 201410062739 CN201410062739A CN103825895A CN 103825895 A CN103825895 A CN 103825895A CN 201410062739 CN201410062739 CN 201410062739 CN 201410062739 A CN201410062739 A CN 201410062739A CN 103825895 A CN103825895 A CN 103825895A
Authority
CN
China
Prior art keywords
ip address
dns server
information
hijacked
preset
Prior art date
Application number
CN 201410062739
Other languages
Chinese (zh)
Other versions
CN103825895B (en
Inventor
李俊
田日辉
陈实
Original Assignee
联想(北京)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 联想(北京)有限公司 filed Critical 联想(北京)有限公司
Priority to CN201410062739.5A priority Critical patent/CN103825895B/en
Publication of CN103825895A publication Critical patent/CN103825895A/en
Application granted granted Critical
Publication of CN103825895B publication Critical patent/CN103825895B/en

Links

Abstract

The invention discloses an information processing method which is used for solving the technical problem that the network security of an electronic device is poor in the prior art. The information processing method is applied to an electronic device and comprises the steps that first information is obtained, wherein the first information contains the information of a domain name to be analyzed; the electronic device is controlled to send a domain name analysis request corresponding to the first information to a domain name system (DNS) server, and a first internet protocol IP address, corresponding to the first information, fed back by the DNS server is obtained; the first IP address is matched with an obtained second IP address, so that a matching result is obtained, wherein the second IP address is a preset IP address which corresponds to the first information; whether the DNS server is hijacked is determined according to the matching result. The embodiment of the invention further discloses the electronic device corresponding to the information processing method.

Description

一种信息处理方法及电子设备 An information processing method and an electronic device

技术领域 FIELD

[0001] 本发明涉及通信领域,特别涉及一种信息处理方法及电子设备。 [0001] The present invention relates to communication field, and particularly relates to an information processing method and an electronic device.

背景技术 Background technique

[0002] 随着科学技术的不断发展,电子技术也得到了飞速的发展,电子产品的种类也越来越多,人们也享受到了科技发展带来的各种便利。 [0002] With the continuous development of science and technology, electronic technology has also been rapid development, the type of electronic products more and more, people also enjoy the convenience of a variety of scientific and technological development. 现在人们可以通过各种类型的电子设备,享受随着科技发展带来的舒适生活。 People can now various types of electronic equipment, as technology development to enjoy the comfort of life. 比如,智能手机等电子设备已经成为人们生活中一个不可或缺的部分,人们可以直接用智能手机等电子设备进行网上购物、看电影等,成为了人们随身携带的移动服务站。 For example, smart phones and other electronic devices have become an indispensable part of life, people can shop online directly with smart phones and other electronic equipment, watching movies, become a mobile service station people carry.

[0003] 在互联网上的每一个计算机都拥有一个唯一的地址,称作IP (InternetProtocol,网际协议)地址。 [0003] Each computer on the Internet has a unique address, called IP (InternetProtocol, Internet Protocol) address. 由于IP地址不方便记忆,DNS (Domain Name System,域名系统)允许用户使用一串常见的字母(即“域名”)来取代。 Because IP addresses are hard to remember, DNS (Domain Name System, Domain Name System) allows the user to use a common string of letters ( "Domain") instead. 当用户在使用网站域名时,通过DNS将网站域名解析为指定的IP地址,就可以在互联网上寻找路径。 When users use the site domain name, Web site domain name resolution by the DNS for the specified IP address, you can find a path on the Internet. 但DNS进行域名解析的过程中易遭遇DNS劫持,其中,主要是来自网络黑客对家用无线路由器DNS的恶意篡改以及对所属网络运营商的DNS广告劫持,从而篡改域名解析的真实结果,返回假的IP地址,而遭受攻击的网民不仅会受到弹窗广告的骚扰,甚至会出现输入正确的网址却进入了钓鱼网站的情况,比如登录网银时进入钓鱼网站,泄露银行账户和密码因此蒙受巨额经济损失。 But the process of DNS for name resolution easy to encounter DNS hijacking, which is mainly malicious home wireless router DNS from hackers tampering and to your network operator's DNS ad hijacking, which falsify the true results of DNS returns false IP addresses, and Internet users under attack not only by the pop ads harassment, or even appear to enter the correct URL has entered the case of phishing sites, such as into the phishing site when online banking login, leaked bank account and password and therefore suffer huge economic losses .

[0004] 因此,现有技术中存在网络的安全性较低的技术问题,用户承担的网络风险较大。 [0004] Therefore, there is a less secure network technical problems in the prior art, the network user to assume greater risk.

发明内容 SUMMARY

[0005] 本发明实施例提供一种信息处理方法和电子设备,解决了现有技术中网络安全性较低的技术问题。 Example [0005] The present invention provides an information processing method and an electronic device to solve the prior art network security less technical problems.

[0006] —种信息处理方法,应用于一电子设备,所述方法包括: [0006] - information processing method, applied to an electronic device, the method comprising:

[0007] 获得第一信息,所述第一信息为含有待解析的域名的信息; [0007] obtain the first information, the first information is information containing the domain name to be resolved;

[0008] 控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第 [0008] The electronic control device sends a DNS request for the first information to a domain name system DNS server, the DNS server returns the obtained first information corresponding to the first internet protocol IP address; wherein the said first

一 IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的; The IP address for a DNS server to resolve the domain name obtained based on the first information be included;

[0009] 将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址; [0009] The first and second IP address matches the IP address obtained, to obtain a matching result; wherein the second IP address is the preset information corresponding to the first IP address;

[0010] 根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0010] The result of the matching, determining whether the DNS server is hijacked.

[0011] 较佳的,所述电子设备具有一预设IP地址表,将所述第一IP地址与获得的第二IP地址进行匹配,包括: [0011] Preferably, the electronic device having a predetermined IP address, the first IP address matches the second IP address obtained, comprising:

[0012] 在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址; [0012] query IP address in the preset table corresponding to the first information and the second IP address;

[0013] 将所述第一IP地址与所述第二IP地址进行匹配。 [0013] The first IP address matches the second IP address.

[0014] 较佳的,在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,包括:[0015] 判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址; [0014] Preferably, the default IP address to the first query table information corresponding to the second IP address, comprising: [0015] It is determined whether there is the predetermined IP address of the table and said first information corresponding to said second IP address;

[0016] 当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址。 [0016] When the information corresponding to the first and the second IP address does not exist in the predetermined IP address, the electronic control device updates the preset IP address table, so that the predetermined IP address table having the first information corresponding to the second IP address.

[0017] 较佳的,根据所述匹配结果,确定所述DNS服务器是否被劫持,包括: [0017] Preferably, according to the matching result, determining whether the DNS server is hijacked, comprising:

[0018] 当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址; [0018] The results show that when the match when the first IP address and the second IP address matching is unsuccessful, the domain name resolution request to the DNS server through a predetermined network first receiving the DNS third server returns the IP address corresponding to the first information;

[0019] 判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果; [0019] Analyzing the third IP address is the same as the second IP address, to obtain a determination result;

[0020] 根据所述判断结果确定所述DNS服务器是否被劫持。 [0020] According to the determination result of the determining whether the DNS server is hijacked.

[0021] 较佳的,所述根据所述判断结果确定所述DNS服务器是否被劫持,包括: [0021] Preferably, according to the determination result of the determining whether the DNS server is hijacked, comprising:

[0022] 当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持; [0022] When the determination result indicates that the third IP address and the second IP address is the same, determining that the DNS server is hijacking;

[0023] 当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持。 [0023] When the determination result indicates that the third IP address and the second IP address are not identical, determining whether the DNS server is hijacked according to a preset rule.

[0024] 较佳的,当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持,具体为: [0024] Preferably, when the third determination result indicates that the second IP address and the IP address are not identical, determining whether the DNS server is hijacked, according to the preset rule specifically is:

[0025] 判断所述第三IP地址与所述第一IP地址是否一致; [0025] Analyzing the third IP address and the first IP address are the same;

[0026] 若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否贝U,确定所述DNS服务器未被劫持。 [0026] When the third IP address and the IP addresses do not match the first, the DNS server is determined to be hijacked, no shellfish U, the DNS server is determined not hijacking.

[0027] 较佳的,当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,所述方法还包括: [0027] Preferably, when the judgment result indicates that the third IP address and the second IP address is not the same, the method further comprising:

[0028] 控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 [0028] The electronic control apparatus the preset IP address of the second IP address table is updated to the third IP address.

[0029] 较佳的,将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果,具体为: [0029] Preferably, the first IP address with the IP address obtained in the second match, a matching result is obtained, in particular:

[0030] 控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求; [0030] The electronic control device transmits the domain name resolution request to the DNS server through a second predetermined network;

[0031] 获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址; [0031] The obtaining of the first DNS server returns information corresponding to said second IP address;

[0032] 将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 [0032] the first IP address and the second IP address matching, the matching result is obtained.

[0033] —种电子设备,所述电子设备包括: [0033] - electronic device, said electronic device comprising:

[0034] 获取模块,用于获得第一信息,所述第一信息为含有待解析的域名的信息; [0034] The acquisition module for obtaining a first information, the first information is information containing the domain name to be resolved;

[0035] 操作模块,用于控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的; [0035] The operating module, for controlling the electronic apparatus transmits a first request for the DNS information to domain name system DNS server, the DNS server returns obtained with the first internet protocol information corresponding to the first IP address; wherein the first IP address for the domain name according to the DNS server included in the first information obtained by parsing;

[0036] 匹配模块,用于将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址; [0036] The matching module configured to match the first IP address and the second IP address obtained, to obtain a matching result; wherein the second IP address is the preset information corresponding to the first IP addresses;

[0037] 确定模块,用于根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0037] The determining module, according to the matching result, determining whether the DNS server is hijacked.

[0038] 较佳的,所述匹配模块具体用于:在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配。 [0038] Preferably, the matching module is configured to: query the first and second IP address information corresponding to the IP address in the preset table; the IP address and the first The second IP address to match.

[0039] 较佳的,所述匹配模块具体用于在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,包括:判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址;当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址。 [0039] Preferably, the matching module is configured to preset the IP addresses of the second query table corresponding to the first information, comprising: determining the preset IP address table the presence or absence of the first information corresponding to a second IP address; when the preset information corresponding to the first and the second IP address is the IP address does not exist in the table, the electronic control device updates the default IP address table, so that the preset IP address table having the first information corresponding to said second IP address.

[0040] 较佳的,所述确定模块具体用于:当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址;判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果;用于根据所述判断结果确定所述DNS服务器是否被劫持。 [0040] Preferably, the determining module is configured to: when the matching results show that when the first IP address and the second IP address matching is unsuccessful, the domain name resolution request by a first predetermined network sends to the DNS server, the third IP address and the first information corresponding to the receiving DNS server returns; determining whether the third IP address and the second IP address is the same, to obtain a determination result; based on the determination result for determining whether the DNS server is hijacked.

[0041] 较佳的,所述确定模块具体用于根据所述判断结果确定所述DNS服务器是否被劫持,具体为:当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持;当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持。 [0041] Preferably, the determining module for determining, according to the result of determining whether the DNS server is hijacked, specifically: when the judgment result indicates that the third IP address and the second IP address It is the same, determining that the DNS server is hijacked; when the third determination result indicates that the second IP address and the IP address are not identical, determining whether the DNS server is hijacked according to a preset rule.

[0042] 较佳的,所述确定模块具体用于当所述判断结果表明所述第三IP地址与所述第 [0042] Preferably, the determining module is configured to, when the determination result indicates that the IP address and the third section

二 IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持,具体为:判断所述第三IP地址与所述第一IP地址是否一致;若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否则,确定所述DNS服务器未被劫持。 Two IP addresses are not the same, according to a preset rule to determine whether the DNS server is hijacked, specifically: determining whether the third IP address and the IP address of the first uniform; if the third IP address and the the first IP addresses are different, the DNS server is determined to be hijacked, otherwise, determining that the DNS server is not hijacked.

[0043] 较佳的,所述电子设备还包括更新模块,用于当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 [0043] Preferably, the electronic apparatus further comprises an updating module, configured to, when the determination result indicates that the third IP address and the second IP address is not the same, controlling the electronic device, the pre- the IP address provided in the second table to update the IP address of the third IP address.

[0044] 较佳的,所述匹配模块具体用于:控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求;获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 [0044] Preferably, the matching module is configured to: control the electronic device via a second network preset resolution request to the DNS server sends the domain name; obtaining the DNS server returns with the first information corresponding to the second IP address; the first IP address and the second IP address matching, the matching result is obtained.

[0045] 本发明实施例中,由于所述第一信息对应有一预设的所述第二IP地址,因此,当所述电子设备获得所述第一信息时,其通过向DNS服务器发送与所述第一信息对应的域名解析请求,能够获得一个与该域名对应的所述第一IP地址,比如,当要进行网站访问时,通常,用户会通过家用无线路由器与所述DNS服务器进行相连,以获得由所述DNS服务器返回的所述第一IP地址,如果所述第一IP地址与预设的所述第二IP地址相同,即匹配成功,则确定所述第一IP地址为与所述第一信息对应的、安全的域名解析地址,即所述DNS服务器未遭到劫持,从而可以对该网站进行正常的访问,如果所述第一IP地址与所述第二IP地址匹配不成功,则说明无线路由器DNS有可能已遭到劫持,即根据所述匹配结果,所述电子设备能够确定所述DNS服务器是否遭到劫持,从而可以采取相应的 When the [0045] embodiment of the present invention, since the first information corresponding to a preset second has the IP address, therefore, when the electronic apparatus to obtain the first information sent by the server to the DNS said first information corresponding to the domain name resolution request, it is possible to obtain the first IP address of a domain name corresponding to the, for example, when the site to be accessed, typically, the user will be connected through the wireless router and the home DNS server, to obtain the returned by the DNS server of the first IP address, if the first IP address with the same IP address preset second, i.e., the matching is successful, determining that the first IP address and the said first information corresponding to the secure domain name resolution address, i.e. a DNS server is not hijacked, allowing normal access to the site, if the first IP address and the IP address matches the second unsuccessful , then the wireless router has a DNS may have been hijacked, i.e. according to the matching result, the electronic device can determine whether the DNS server is hijacked, which can take appropriate 示或措施,例如弹出警告窗口,或者利用专杀工具进行查杀等等,防止黑客对无线路由器DNS的恶意篡改,从而保障网络的安全性。 Show or measures, such as pop-up warning window, or use Zhuanshagongju killing and so on, to prevent hackers on the wireless router DNS malicious tampering, in order to protect the security of the network.

附图说明 BRIEF DESCRIPTION

[0046] 图1为本发明实施例中信息处理方法的主要流程图;[0047] 图2为本发明实施例中电子设备的主要结构示意图; [0046] FIG. 1 is mainly a flowchart of the information processing method according to embodiments of the present invention; [0047] FIG. 2 is a schematic diagram of a main configuration of the embodiment of the invention the electronic device;

[0048] 图3为本发明实施例中电子设备的结构示意图。 [0048] FIG. 3 is a schematic structure of the electronic apparatus of the embodiment of the present invention.

具体实施方式 Detailed ways

[0049] 本发明实施例中提供了一种信息处理方法,应用于一电子设备,所述方法可以包括获得第一信息,所述第一信息为含有待解析的域名的信息;控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的;将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址;根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0049] The embodiment provides an information processing method according to the present invention, applied to an electronic device, the method may comprise obtaining first information, the first information is information containing the domain name to be resolved; controlling the electronic the device transmits a first request for the DNS information to domain name system DNS server, the DNS server returns the obtained first information corresponding to the first internet protocol IP address; wherein the first IP address is the said DNS server according to the first domain name included in the information obtained by parsing; the first IP address matches the second IP address obtained, to obtain a matching result; wherein the second IP address is IP address and the predetermined information corresponding to the first; according to the matching result, determining whether the DNS server is hijacked.

[0050] 本发明实施例中,由于所述第一信息对应有一预设的所述第二IP地址,因此,当所述电子设备获得所述第一信息时,其通过向DNS服务器发送与所述第一信息对应的域名解析请求,能够获得一个与该域名对应的所述第一IP地址,比如,当要进行网站访问时,通常,用户会通过家用无线路由器与所述DNS服务器进行相连,以获得由所述DNS服务器返回的所述第一IP地址,如果所述第一IP地址与预设的所述第二IP地址相同,即匹配成功,则确定所述第一IP地址为与所述第一信息对应的、安全的域名解析地址,即所述DNS服务器未遭到劫持,从而可以对该网站进行正常的访问,如果所述第一IP地址与所述第二IP地址匹配不成功,则说明无线路由器DNS有可能已遭到劫持,即根据所述匹配结果,所述电子设备能够确定所述DNS服务器是否遭到劫持,从而可以采取相应的 When the [0050] embodiment of the present invention, since the first information corresponding to a preset second has the IP address, therefore, when the electronic apparatus to obtain the first information sent by the server to the DNS said first information corresponding to the domain name resolution request, it is possible to obtain the first IP address of a domain name corresponding to the, for example, when the site to be accessed, typically, the user will be connected through the wireless router and the home DNS server, to obtain the returned by the DNS server of the first IP address, if the first IP address with the same IP address preset second, i.e., the matching is successful, determining that the first IP address and the said first information corresponding to the secure domain name resolution address, i.e. a DNS server is not hijacked, allowing normal access to the site, if the first IP address and the IP address matches the second unsuccessful , then the wireless router has a DNS may have been hijacked, i.e. according to the matching result, the electronic device can determine whether the DNS server is hijacked, which can take appropriate 示或措施,例如弹出警告窗口,或者利用专杀工具进行查杀等等,防止黑客对无线路由器DNS的恶意篡改,从而保障网络的安全性。 Show or measures, such as pop-up warning window, or use Zhuanshagongju killing and so on, to prevent hackers on the wireless router DNS malicious tampering, in order to protect the security of the network.

[0051] 为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。 [0051] In order that the invention object, technical solutions, and advantages of the embodiments more clearly, the following the present invention in the accompanying drawings, technical solutions of embodiments of the present invention are clearly and completely described, obviously, the described the embodiment is an embodiment of the present invention is a part, but not all embodiments. 基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。 Based on the embodiments of the present invention, all other embodiments of ordinary skill in the art without any creative effort shall fall within the scope of the present invention.

[0052] 本发明实施例中,所述电子设备可以是PC (个人计算机)、笔记本、PAD (平板电脑)、手机等等不同的电子设备,本发明对此不作限制。 Embodiment [0052] of the present invention, the electronic device may be a PC (Personal Computer), a notebook, the PAD (tablet PC), different electronic devices like mobile phones, the present invention is not limited to this.

[0053] 另外,本文中术语“和/或”,仅仅是一种描述关联对象的关联关系,表示可以存在三种关系,例如,A和/或B,可以表示:单独存在A,同时存在A和B,单独存在B这三种情况。 [0053] Further, herein, the term "and / or" merely describe a relationship of associated objects representing three relationships may exist, for example, A and / or B, and may indicate: the presence of A alone, while the presence of A and B, and B present three cases. 另外,本文中字符“/”,一般表示前后关联对象是一种“或”的关系。 Further, the character "/", represents the general context-objects is a "or" relationship.

[0054] 请参见图1,本发明实施例中的信息处理方法可以应用于电子设备,所述方法的主要流程如下: [0054] Referring to FIG. 1, the embodiment of the present invention, the information processing method of the embodiment may be applied to an electronic device, the main flow of the method is as follows:

[0055] 步骤101:获得第一信息,所述第一信息为含有待解析的域名的信息。 [0055] Step 101: obtaining a first information, the first information is information containing the domain name to be resolved.

[0056] 目前,网络在区分所有与之相连的网络和主机时,均采用了一种唯一、通用的地址格式,即每一个与网络相连接的计算机和服务器都被分配了一个独一无二的IP地址,为了保证网络上每台计算机的IP地址的唯一性,用户必须向特定机构申请注册,该特定机构为相应的计算机分配IP地址。 [0056] Currently, network distinguishing all hosts and networks connected thereto, are made of a single, common address format, i.e., each computer and a server connected to the network are assigned a unique IP address in order to ensure the IP address of each computer on the network is unique, the user must apply to the particular institution registered for that particular institution assigns IP addresses to the appropriate computer.

[0057] 网络中的地址方案大概分为两套:IP地址系统和域名地址系统。 [0057] network addressing scheme roughly divided into two sets: IP address and domain name system address system. 这两套地址系统其实是一一对应的关系。 In fact, the two sets of address system is one to one relationship. IP地址用二进制数来表示,每个IP地址长32比特,由4个小于256的数字组成,数字之间用点间隔,例如100.10.0.1表示一个IP地址。 IP addresses are represented by a binary number, each IP address 32 bits long, the number 4 in small composition 256, between the points with the digital interval, e.g. 100.10.0.1 denotes an IP address. 由于IP地址是数字标识,使用时难以记忆和书写,因此在IP地址的基础上又发展出一种符号化的地址方案,来代替数字型的IP地址,即域名(Domain Name),其是指一串用点分隔的名字组成的互联网上某一台计算机或计算机组的名称,由于每一个符号化的地址都与特定的IP地址对应,这样网络上的资源访问起来就容易得多了,这个与网络上的数字型IP地址相对应的字符型地址,就被称为域名。 Since the IP address is a digital identification, it is difficult to use memory and writing, so on the basis of the IP address has developed a symbolic address scheme, instead of numeric IP address, i.e., the domain name (Domain Name), which refers to a bunch of names on the Internet dot-separated names consisting of a single computer or group of computers, since each symbolic address corresponds to a specific IP address, such resources on the network access to them is much easier, this and numeric IP addresses on the network address corresponding to a character, it is called a domain name. 例如我们经常见到的QQ(—种即时通讯工具)网站的域名为職Iqq.com,或者为www.qzone.qq.com,等等。 For example, we often see QQ (- kinds of instant messaging) site's domain name for the post of Iqq.com, or as www.qzone.qq.com, and so on.

[0058] 而域名解析是指把域名(即网络地址)对应到真实的计算机能够识别的网络地址,即IP地址,比如216.239.53.99这样的形式,以便计算机能够进一步通信,传递网址和内容 [0058] and the domain name refers to the name resolution (i.e., network address) corresponds to a real computer to recognize network addresses, i.e. IP addresses, 216.239.53.99 such a form so that the computer can be further communication, transmitting URL, and

坐寸O Sit inch O

[0059] 本发明实施例中,获得所述第一信息的方式可以是通过用户的输入操作获得的,例如用户点击网页中的用于进入相关网站的链接地址,则所述电子设备可以获得所述第一信息。 Example embodiment [0059] of the present invention, to obtain the first information may be obtained by a user's input operation, for example, the user clicks on a Web page for entering a related web site URL, then the electronic device may be obtained said first information.

[0060] 其中,所述第一信息所包含的所述待解析的域名可以是指用户即将进行访问的网站对应的网站域名,例如WWW.taoba0.com。 [0060] wherein, the information included in the first domain name to be resolved may refer to the site corresponding to the upcoming access to the user domain, e.g. WWW.taoba0.com. 如果要对该网站进行访问则需要知道该网站域名对应的IP地址,即需要对该网站域名进行解析。 If you want to visit the site you will need to know the site domain names corresponding IP addresses that need to be resolved in this domain.

[0061] 步骤102:控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一IP地址;其中,所述第 [0061] Step 102: the electronic control device transmits a first request for the DNS information to domain name system DNS server, the DNS server returns the obtained first IP address corresponding to the first information; wherein, the first

一 IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的。 The IP address of a DNS server according to the domain name included in the first information obtained by parsing.

[0062] 本发明实施例中,当所述电子设备获得所述第一信息后,可以将与所述第一信息对应的域名解析请求发送到所述DNS服务器。 [0062] Example embodiments of the present invention, when the electronic apparatus to obtain the first information may be the information corresponding to the domain name of the first resolution request to the DNS server. 通常来说,所述电子设备可以首先通过WLAN(Wireless Local Area Networks,无线局域网)将所述域名解析请求发送至连接的无线路由器,并通过所述无线路由器将所述域名解析请求发送至所述DNS服务器,在所述DNS服务器根据所述域名解析请求解析出对应的所述第一IP地址后,将该IP地址发送给无线路由器,再由所述无线路由器将所述第一IP地址返回给所述电子设备,以使所述电子设备可以根据所述第一IP地址访问网站。 Typically, the electronic device can first WLAN (Wireless Local Area Networks, wireless local area network) to the domain name resolution request is sent to the wireless router is connected, through the wireless router and the domain name resolution request to the after the DNS server, the DNS server according to the request to resolve the domain name resolution corresponding to the first IP address, the IP address of the transmission to the wireless router, a wireless router and then from the first IP address returned to the the electronic device, so that the electronic device according to the first IP address may visit the website.

[0063] 较佳的,本发明实施例中,所述第一IP地址可以是指通过无线路由器DNS获得的解析后的IP地址。 [0063] Preferably, embodiments of the present invention, the first IP address is the IP address may be resolved after the wireless router obtained by the DNS. 通常,无线路由器DNS能够较快地将所述域名解析请求发送至所述DNS服务器进行域名解析。 Typically, a wireless router DNS can be quickly sent to the domain name resolution request to the DNS server for name resolution. 且,一些网络接入商,比如北京电信,上海电信等,为了要加速用户打开网页的速度,通常在他们的DNS服务器中缓存了很多域名的DNS记录,这样当某一网络接入商的用户要打开某个网页时,该网络接入商的DNS服务器不需要去查询域名数据库,而可以把自己缓存中的DNS记录直接使用,从而加快了解析速度,也相应加快了用户访问网站的速度。 Moreover, some network access providers, such as Beijing Telecom, Shanghai Telecom, in order to accelerate the speed of a user opens a Web page, the cache is usually a lot of domain's DNS records in their DNS server, so that when a user's network access to open a web page, the network access provider's DNS server does not need to query the domain name database, and can record their own DNS cache directly, thereby speeding up the parsing speed, accordingly accelerates user access to the site.

[0064] 步骤103:将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址。 [0064] Step 103: the first IP address matches the second IP address obtained, to obtain a matching result; wherein the second IP address is an IP address and the predetermined information corresponding to the first .

[0065] 本发明实施例中,在获得所述第一IP地址后,可以比较所述第一IP地址是否与所述第二IP地址相同,即将所述第一IP地址与所述第二IP地址进行匹配,从而可以获得所述匹配结果。 [0065] The embodiments of the present invention, after obtaining the first IP address, comparing the first IP address is the same as the second IP address, ie the first IP address and the second IP address matching, the matching results can be obtained. [0066] 本发明实施例中,将所述第一IP地址与获得的第二IP地址进行匹配,具有两种可能的方式,其中第一种方式可以是:所述电子设备具有一预设IP地址表,在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配。 [0066] The embodiments of the present invention, the first and second IP address matches the IP address obtained, having two possible ways in which the first embodiment may be: the electronic device having a predetermined IP address table, the default IP address to the first query table information corresponding to the second IP address; the first IP address and the second IP address matching.

[0067] 较佳的,本发明实施例中,所述预设IP地址表可以是指一个包括有常用网站域名及其对应的IP地址的列表,例如可以是白名单。 [0067] Preferably, the embodiment of the present invention, the preset IP address table may refer to a common domain comprises a list of IP addresses and its corresponding, for example, a white list. 所述白名单可以是由专门的域名注册服务机构进行收集和提供的,所述电子设备可以通过网络进行获取,以将其作为自身可查询的预设IP地址表。 The white list can be collected and provided by specialized domain name registration services, the electronic device can be obtained through the network to the default IP address as its own table that can be queried. 且所述电子设备还可以定期或不定期的更新具有的所述预设IP地址表,以确保所述预设IP地址表的准确性与完整性,防止由于某些网站域名或对应的IP地址的修改而导致无法访问最满意的网站。 And the electronic device may also have a regular or irregular update the default IP address table to ensure accuracy and completeness of the preset IP address table, to prevent certain websites or domain names corresponding IP addresses changes which led to the most satisfactory sites inaccessible. 例如,域名IP地址的更换。 For example, replace the IP address of the domain name.

[0068] 通常来说,所述预设IP地址表中存在的与网站域名对应的IP地址较为稳定,改变的频率较低,因此,可以认为在所述预设IP地址表中查询到的所述第二IP地址就是与待解析的域名对应的、准确的IP地址。 [0068] Typically, the default IP address table corresponding to the existing IP address domain more stable, lower frequency changes, therefore, can be considered the preset IP address of the queried table said second IP address and the domain name to be resolved is the corresponding, correct IP address. 因此,在获得所述第一IP地址和所述第二IP地址后,可直接将所述第一IP地址与所述第二IP地址进行匹配,即可知道两者是否相同。 Thus, after obtaining the first IP address and the second IP address, the first IP address directly matched with the second IP address to know whether both the same. 此外,由于所述预设IP地址表已存在于所述电子设备中,则根据域名进行查询的过程较为简单、快速,具有较强的实时性。 Further, since the preset IP address table already exists in the electronic device, the process queries the relatively simple, quick and strong real-time in accordance with the domain name.

[0069] 较佳的,本发明实施例中,在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,具体可以包括:判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址;当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址。 [0069] Preferably, embodiments of the present invention, in the preset table query IP address of the first information corresponding to a second IP address, may specifically include: determining the preset IP address table in the presence or absence of said information corresponding to said first and second IP address; when the preset information corresponding to the first and the second IP address is the IP address does not exist in the table, the electronic control device updating the default IP address table, so that the preset IP address table having the first and second information corresponding to the IP address.

[0070] 即在获得所述第二IP地址的过程中,通过对所述预设IP地址表的判断,可以确定是否需要对所述预设IP地址进行更新,以使所述预设IP地址表能够提供较为丰富的IP地址进行查询。 [0070] i.e. the second IP address obtaining process is determined by the default IP address of the table, you can determine whether to update the default IP address, IP address so that the predetermined table provides abundant IP address query. 例如,当所述预设IP地址表中不存在与所述第一信息中待解析的域名对应所述第二IP地址时,则需要更新所述设IP地址表,从而可以避免再次需要确定与所述第一信息对应的IP地址时,在所述预设IP地址表中仍查找不到对应的IP地址的情况。 For example, when the preset IP address table does not exist in the first information corresponding to the domain name to be resolved to the second IP address, the IP address is provided to update the table to avoid the need to determine again when the IP address of the first information corresponding to the default IP address table still find the IP address corresponding to less than.

[0071] 本发明实施例中,所述预设IP地址表可以是指记录有若干网站域名的IP地址的对应列表。 Embodiment [0071] of the present invention, the preset IP address table may refer to a list of records corresponding to a number of IP addresses of the domain. 例如,其中可以包括:其中一个网站域名为s.taoba0.com,其对应的IP地址为42.156.210.6,其中另一个网站域名为WWW.1cbc.com.cn,其对应的IP地址为220.181.64.180,等等。 For example, which may include: a domain which is s.taoba0.com, its corresponding IP address 42.156.210.6, wherein the other domain is WWW.1cbc.com.cn, its corresponding IP address is 220.181.64.180 ,and many more. 且所述电子设备可以通过后台更新系统对所述预设IP地址表进行更新。 And the electronic device may update the IP address of the preset table by the background updating system.

[0072] 较佳的,本发明实施例中,更新的所述预设IP地址表可以是所述电子设备通过域名注册服务机构获得的最新的域名与IP地址的对应表,以使更新后的所述预设IP地址表能够为新注册的域名提供IP地址查询功能。 [0072] Preferably, embodiments of the present invention, updating the preset IP address of the domain name table may be the latest electronic device obtained by the domain name registration services and an IP address correspondence table, so that the updated the default IP address table to provide IP address lookup capabilities for new domain name registration.

[0073] 本发明实施例中,在第一种方式中,所述电子设备中已存在所述预设IP地址表,故当需要确定与域名对应的IP地址时,可以快速地在所述预设IP地址表中进行查找对应的IP地址,并将其与所述第一IP地址进行匹配,由于查找和匹配过程较为简单快捷,且所需时间较短,具有较强的实时性,几乎不影响用户的网络体验。 [0073] The embodiment of the present invention, in a first aspect, the electronic device already exists in the default IP address, when it is determined the corresponding IP addresses, quickly in the pre be provided IP address table to find the corresponding IP address, and match with the first IP address, since the search and matching process is more simple and quick, and the required time is shorter, with strong real-time, almost no affect the user's web experience.

[0074] 同时,通常来说,改变网站域名对应的IP地址的频率较低,故所述预设IP地址表中记录的网站域名和IP地址的对应关系较为稳定。 [0074] Also, generally speaking, the lower the frequency domain corresponding to the change of the IP address, so that the preset corresponding relationship table domain IP address and the IP address recorded in the stable. 因此,通过将所述第一IP地址与从所述预设IP地址表中查询到的所述第二IP地址进行匹配,可以确定由所述DNS服务器返回的所述第一IP地址是否为假冒地址,从而避免使用被恶意篡改的IP地址,提高了网络访问的安全性。 Thus, by the first IP address matches the IP address from the preset table query to the second IP address, may be determined by the DNS server returns the IP address is the first counterfeit address, thus avoiding the use of IP address is malicious tampering, improving the security of network access.

[0075] 较佳的,本发明实施例中,将所述第一IP地址与获得的第二IP地址进行匹配的第二种方式可以是:控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求;获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 The second embodiment [0075] Preferably, in the present invention, the first and the second IP address matches the IP address may be obtained: controlling the electronic device through the second network to the preset said DNS server sends the domain name resolution request; obtaining the DNS server returns with the first information corresponding to said second IP address; the first IP address and the second IP address matching obtain the matching result.

[0076] 即在所述电子设备向所述DNS服务器发送所述域名解析请求,获得所述第一IP地址的之前、同时或之后,所述电子设备还通过所述第二预设网络将所述域名解析请求发送至所述DNS服务器,并获得根据所述域名解析请求解析出的与所述第一信息对应的所述第 Before [0076] i.e. the electronic device to the DNS domain name resolution request sent to the server, the first IP address is obtained, simultaneously with or after the electronic device through the second network to the preset said DNS request to the DNS server, and obtaining a first domain name resolution request according to the parsed information corresponding to the first

二 IP地址,其中所述第二预设网络可以是所述电子设备与所述DNS服务器相连接的网络,例如第三代移动通信技术(3rd-Generation, 3G)网络、第四代通讯技术(the4Generationmobile communication technology,4G)网络。 Two IP address, wherein said second predetermined network may be the network and the electronic device connected to the DNS server, such as a third generation mobile communications technology (3rd-Generation, 3G) network, a fourth generation communication technology ( the4Generationmobile communication technology, 4G) network. 当所述电子设备通过所述第二预设网络将所述域名解析请求发送至所述DNS服务器时,所述DNS服务器可以根据所述域名解析请求解析出与所述第一信息对应的所述第二IP地址。 When said predetermined electronic device through the second network to the domain name resolution request to the DNS server, the DNS server can resolve the parsed request to the first domain based on the information corresponding to The second IP address. 此时,可以认为通过所述第二预设网络获得的所述第二IP地址为与待解析的域名对应的、唯一准确的IP地址。 In this case, it is considered the preset obtained by the second network with the second IP address corresponding to the domain name to be resolved, and accurate unique IP address.

[0077] 步骤104:根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0077] Step 104: according to the matching result, determining whether the DNS server is hijacked.

[0078] 本发明实施例中,域名劫持是互联网攻击的一种方式,通过攻击DNS服务器,或伪造DNS服务器的方法,把目标网站域名解析到错误的地址而达到无法访问目标网站的目的。 [0078] The embodiments of the present invention, is a way of the Internet domain name hijacking attack, attack by the method of the DNS server, the DNS server or forged, parse the target domain to the wrong address can not achieve the purpose of accessing the target website. 例如,当用户的网络遭遇DNS服务器被劫持的情况时,一些特定网址会无法打开,甚至访问A网站的地址,打开的却是B网站的页面。 For example, when a user encounters a network of DNS servers are hijacked, some of the specific URL will not be opened, even access address A website page is opened instead of the B site. 如果黑客利用DNS服务器被劫持实施钓鱼,即便访问的是正确的网银或购物网站地址,也会进入黑客假冒的钓鱼网站。 If hackers use a DNS server implementation hijacked fishing, even if the visit is correct address online banking or shopping site, will enter the hacker fake phishing sites.

[0079] 本发明实施例中,如果通过第一种方式将所述第一IP地址与所述第二IP地址进行匹配,根据所述匹配结果,确定所述DNS是否被劫持,可以包括:当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址;判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果;根据所述判断结果确定所述DNS是否被劫持。 [0079] Example embodiments of the present invention, the first IP address if the first mode and the second IP address by matching, according to the matching result, determining whether the DNS hijacked, may include: when the matching results show that the first IP address and the second IP address match is unsuccessful, the domain name resolution request to the DNS server by sending a first predetermined network, the receiving DNS server returns with third IP address corresponding to the first information; determining whether the third IP address and the second IP address is the same, to obtain a determination result; based on the determination result of determining whether the DNS hijacked.

[0080] 即,在本发明实施例中,如果所述第一IP地址与通过查询所述预设IP地址表确定的所述第二IP地址不匹配时,可以通过所述第一预设网络将所述域名解析请求发送至所述DNS服务器,以获取更为准确的、与所述第一信息对应的IP地址,即所述第三IP地址,并通过将所述第二IP地址与所述第三IP地址作比较,可以判断所述预设IP地址表中与待解析域名对应的所述第二IP地址是否为最新的IP地址,以保证所述第一IP地址能与所述第一信息对应的、唯一正确的IP地址进行匹配,提高了匹配过程的准确性。 [0080] That is, in this embodiment, if the first IP address does not match the preset IP address by querying a table to determine the IP address of the second embodiment of the present invention, can be preset by the first network transmitting the DNS request to the DNS server to obtain more accurate, the IP address corresponding to the first information, i.e., the third IP address and the IP address by the second and the comparing said third IP address, based on the preset IP address of the table corresponding to the domain name to be resolved whether the second IP address of the latest IP address, to ensure that the first IP address can be the first a corresponding information, only correct IP addresses match, to improve the accuracy of the matching process.

[0081] 较佳的,本发明实施例中,所述第一预设网络可以是与所述第二预设网络相同的网络,例如都是3G/4G网络。 [0081] Preferably, the embodiment of the present invention, the first predetermined network may be the same network with the second predetermined network, such as are 3G / 4G networks.

[0082] 由于所述电子设备通过所述第一预设网络可以DNS服务器进行连接,由此可认为,通过所述第一预设网络获得的所述第三IP地址为当前与所述第一信息对应的、唯一准确的IP地址。 [0082] Since the first electronic device through the predetermined network may be connected to the DNS server, whereby that the first preset obtained by the third network IP address of the first current information corresponding to the only correct IP address.

[0083] 本发明实施例中,根据所述判断结果确定所述DNS服务器是否被劫持,可以包括:当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持;当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS是否被劫持。 Embodiment [0083] of the present invention, determining whether the DNS server is hijacked, according to the determination result may include: when the third determination result indicates that the second IP address and the IP address are the same, it is determined said DNS server hijacked; when the third determination result indicates that the second IP address and the IP address are not identical, determining whether the DNS hijacked according to a preset rule.

[0084] S卩,在本发明实施中,当所述第一IP地址与所述第二IP地址匹配不成功时,可以将所述第二IP地址与通过所述第一预设网络获得的所述第三IP地址进行比较,如果确定所述第二IP地址与所述第三IP地址相同,则表明所述预设IP地址表能够为域名信息提供准确的IP地址。 [0084] S Jie, in the embodiment of the present invention, when the first IP address and the second IP address is no match can be obtained with the second IP address by the first predetermined network comparing said third IP address, determining if the second IP address and the IP address is the same as the third, it indicates that the preset IP address table to provide accurate information about the IP address of the domain name.

[0085] 例如,当用户使用手机浏览器访问中国工商银行的网站时,所述第一信息包含的待解析的域名为Wm.icbc.com.cn,所述电子设备通过无线路由器DNS获得与该域名对应的所述第一IP地址为192.168.1.2,而通过所述预设IP地址表查询到的所述第二IP地址为220.181.64.180,故所述第一IP地址与所述第二IP地址匹配不成功。 [0085] For example, when a user uses the mobile browser to access Industrial and Commercial Bank of China website, the domain name to be resolved is the first information contained Wm.icbc.com.cn, the electronic device through a wireless router to get the DNS the domain name corresponding to a first IP address is 192.168.1.2, and by the preset table query IP address to the second IP address is 220.181.64.180, so that the first IP address and the second IP address match is unsuccessful. 此时,可控制手机通过3G网络向DNS服务器发送相同的所述域名解析请求,所获得的解析后的IP地址为220.181.64.180,即所述第三IP地址。 In this case, the phone can be controlled via the 3G network sending the same domain name resolution request to the DNS server, the IP address obtained was resolved 220.181.64.180, i.e., the third IP address. 通过判断可知,所述第二IP地址与所述第三IP地址相同,故可确定所述预设IP地址表所提供的所述第二IP地址为解析该域名后的准确IP地址。 Found by determining the IP address and the second IP address is the same as the third, it can determine the preset IP address of the second table provides the IP address to resolve the exact IP address of the domain.

[0086] 较佳的,本发明实施例中,如果所述判断结果表明所述第三IP地址与所述第二IP地址不相同,则根据预设规则确定所述DNS服务器是否被劫持,具体可以为:判断所述第三IP地址与所述第一IP地址是否一致;若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否则,确定所述DNS服务器未被劫持。 [0086] Preferably, the embodiment of the present invention, if the determination result indicates that the third IP address and the second IP address is not the same, according to a preset rule determined whether the DNS server is hijacked, particularly may be: determining whether the third IP address and the IP address of the first uniform; if the third IP address and the IP addresses do not match the first, the DNS server is determined to be hijacked, otherwise, determining that the DNS server is not hijacked.

[0087] 本发明实施例中,当所述第三IP地址与所述第二IP地址不相同时,可知,所述电子设备中,当前的预设IP地址表所提供的与所述第一信息对应的IP地址可能存在不准确的情况。 [0087] The embodiments of the present invention, when the third IP address and the second IP address is not the same, it is understood the electronic device, the current IP address of the default table provided with the first information corresponding IP address may exist inaccurate. 例如,所述电子设备还未对所述预设IP地址表进行更新。 For example, the electronic device has not been the default IP address table is updated. 此时,可继续判断所述第一IP地址是否与所述第三IP地址相同,从而进一步确定所述DNS服务器是否被劫持。 At this time, continue to determine whether the first IP address is the same as the third IP address, thereby further determining whether the DNS server is hijacked.

[0088] 较佳的,本发明实施例中,如果确定所述DNS服务器被劫持,则可以控制所述电子设备执行查杀命令或输出相应的警告信息,提示用户当前访问网站不安全。 [0088] Preferably, the embodiment of the present invention, if the DNS server is determined to be hijacked, the electronic device may execute a control command or killing appropriate output warning that the user is currently accessing site unsafe.

[0089] 本发明实施例中,当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,所述方法还可以包括:控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 [0089] The embodiments of the present invention, when the judgment result indicates that the third IP address and the second IP address is not the same, the method may further comprise: controlling the electronic device, the default IP said second address table update the IP address of the third IP address.

[0090] 通常来说,所述电子设备通过网络能够连接到正常的DNS服务器,并获得与域名对应的解析地址。 [0090] Typically, the electronic device can be connected via a network to a normal DNS server, and receives an address corresponding to the domain name. 因此,当所述电子设备通过预设网络向DNS服务器发送所述域名解析请求时,获得的由所述DNS服务器返回的解析地址,即所述第三IP地址为当前与所述第一信息对应的IP地址。 Thus, by the DNS server returns the resolved address when the electronic device transmits the domain name resolution request to the DNS server through a predetermined network, obtained, i.e., the third current corresponds to the IP address of the first information IP address. 因此,在获取所述第三IP地址后,可以将当前所述预设IP地址表中与所述第一信息对应的所述第二IP地址更新为所述第三IP地址,从而获得更新后的所述预设IP地址表,以便根据所述第一信息为待解析的域名提供对应的IP地址。 Thus, after obtaining the third IP address, the IP address of the current update to the first table to the second information corresponding to the third IP address is an IP address, so as to obtain a preset update the preset IP address table that corresponds to the IP address of the domain name to be resolved based on the first information.

[0091] 请参见图2,基于同一发明构思,本发明还提供一种电子设备,所述电子设备可以包括获取模块201、操作模块202、匹配模块203和确定模块204。 [0091] Referring to FIG 2, based on the same inventive concept, the present invention also provides an electronic device, the electronic device may include an acquisition module 201, an operation module 202, a matching module 203 and a determining module 204.

[0092] 所述获取模块201可以用于获得第一信息,所述第一信息为含有待解析的域名的信息。 [0092] The acquisition module 201 may be used to obtain the first information, the first information is information containing the domain name to be resolved.

[0093] 所述操作模块202可以用于控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的。 [0093] The module 202 may be used to control operation of the electronic apparatus transmits a first request for the DNS information to domain name system DNS server, the DNS server returns obtained with the first information corresponding to a first internet protocol IP address; wherein the first IP address for the domain name according to the DNS server included in the first information obtained by parsing.

[0094] 所述匹配模块203可以用于将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址。 [0094] The matching module 203 may be used to match the first IP address and the second IP address obtained, to obtain a matching result; wherein the second IP address is the first preset IP address information corresponding to.

[0095] 所述确定模块204可以用于根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0095] The determining module 204 may be used according to the matching result, determining whether the DNS server is hijacked.

[0096] 本发明实施例中,所述匹配模块203具体可以用于:在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配。 [0096] Example embodiments of the present invention, the matching module 203 may be specifically configured to: in the preset IP address of the first query table information corresponding to the second IP address; the first IP IP address and the second address match.

[0097] 本发明实施例中,所述匹配模块203具体用于在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,可以包括:判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址;当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址。 [0097] The embodiments of the present invention, the matching module 203 specifically for the IP address in the preset table corresponding to the first information query a second IP address, comprising: determining the preset the presence or absence of the first and second information corresponding to the IP addresses of the table; when the preset information corresponding to the first and second IP address is the IP address does not exist in the table, the control said electronic device to update the default IP address table, so that the preset IP address table having the first and second information corresponding to the IP address.

[0098] 本发明实施例中,所述确定模块204具体可以用于:当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址;判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果;根据所述判断结果确定所述DNS服务器是否被劫持。 [0098] Example embodiments of the present invention, the determining module 204 may be specifically configured to: when the matching results show that when the first IP address and the second IP address matching is unsuccessful, the domain name resolution request by sending to the network a first predetermined DNS server, receives the DNS server returns with the third information corresponding to the first IP address; Analyzing the third IP address is the same as the second IP address, to obtain a determination result; based on the determination result of determining whether the DNS server is hijacked.

[0099] 较佳的,本发明实施例中,所述确定模块204具体用于根据所述判断结果确定所述DNS服务器是否被劫持,具体为:当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持;当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持。 Embodiment [0099] Preferably, in the present invention, the determining module 204 is specifically configured based on the determination result of determining whether the DNS server is hijacked, specifically: when the judgment result indicates that the third IP address and the second IP address is the same, determining that the DNS server is hijacked; simultaneously, the DNS server is determined when the third determination result indicates that the second IP address and the IP address is not in accordance with a preset rule whether hijacked.

[0100] 较佳的,本发明实施例中,所述确定模块204具体可以用于当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持,具体为:判断所述第三IP地址与所述第一IP地址是否一致;若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否则,确定所述DNS服务器未被劫持。 [0100] Preferably, the embodiment of the present invention, the determining module 204 may be specifically configured to, when the determination result indicates that the third IP address and the second IP address is not the same, according to a preset rule determined the DNS server is hijacked, specifically: determining whether the third IP address and the IP address of the first uniform; if the third IP address is inconsistent with the first IP address, the DNS server is determined hijack, otherwise, determining that the DNS server is not hijacked.

[0101] 较佳的,本发明实施例中,所述电子设备还包括更新模块301。 [0101] Preferably, the embodiment of the present invention, the electronic device further comprises an updating module 301. 请参见图3。 See Figure 3.

[0102] 所述更新模块301可以用于当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 [0102] The updating module 301 may be configured to, when the determination result indicates that the third IP address and the second IP address is not the same, controlling the electronic device to the IP address of the preset table said second IP address is updated to the third IP address.

[0103] 较佳的,本发明实施例中,所述匹配模块203具体可以用于:控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求;获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 [0103] Preferably, embodiments of the present invention, the matching module 203 may be specifically configured to: control the electronic device via the second network transmits the preset domain name resolution request to the DNS server; obtaining a DNS the server returns information corresponding to the first and the second IP address; the first IP address matches the second IP address, the matching result is obtained.

[0104] 本发明实施例中提供了一种信息处理方法,应用于一电子设备,所述方法可以包括获得第一信息,所述第一信息为含有待解析的域名的信息;控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的;将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址;根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0104] Examples provided an information processing method according to the present invention, applied to an electronic device, the method may comprise obtaining first information, the first information is information containing the domain name to be resolved; controlling the electronic the device transmits a first request for the DNS information to domain name system DNS server, the DNS server returns the obtained first information corresponding to the first internet protocol IP address; wherein the first IP address is the said DNS server according to the first domain name included in the information obtained by parsing; the first IP address matches the second IP address obtained, to obtain a matching result; wherein the second IP address is IP address and the predetermined information corresponding to the first; according to the matching result, determining whether the DNS server is hijacked.

[0105] 本发明实施例中,由于所述第一信息对应有一预设的所述第二IP地址,因此,当所述电子设备获得所述第一信息时,其通过向DNS服务器发送与所述第一信息对应的域名解析请求,能够获得一个与该域名对应的所述第一IP地址,比如,当要进行网站访问时,通常,用户会通过家用无线路由器与所述DNS服务器进行相连,以获得由所述DNS服务器返回的所述第一IP地址,如果所述第一IP地址与预设的所述第二IP地址相同,即匹配成功,则确定所述第一IP地址为与所述第一信息对应的、安全的域名解析地址,即所述DNS服务器未遭到劫持,从而可以对该网站进行正常的访问,如果所述第一IP地址与所述第二IP地址匹配不成功,则说明无线路由器DNS有可能已遭到劫持,即根据所述匹配结果,所述电子设备能够确定所述DNS服务器是否遭到劫持,从而可以采取相应的 When the [0105] embodiment of the present invention, since the first information corresponding to a preset second has the IP address, therefore, when the electronic apparatus to obtain the first information sent by the server to the DNS said first information corresponding to the domain name resolution request, it is possible to obtain the first IP address of a domain name corresponding to the, for example, when the site to be accessed, typically, the user will be connected through the wireless router and the home DNS server, to obtain the returned by the DNS server of the first IP address, if the first IP address with the same IP address preset second, i.e., the matching is successful, determining that the first IP address and the said first information corresponding to the secure domain name resolution address, i.e. a DNS server is not hijacked, allowing normal access to the site, if the first IP address and the IP address matches the second unsuccessful , then the wireless router has a DNS may have been hijacked, i.e. according to the matching result, the electronic device can determine whether the DNS server is hijacked, which can take appropriate 示或措施,例如弹出警告窗口,或者利用专杀工具进行查杀等等,防止黑客对无线路由器DNS的恶意篡改,从而保障网络的安全性。 Show or measures, such as pop-up warning window, or use Zhuanshagongju killing and so on, to prevent hackers on the wireless router DNS malicious tampering, in order to protect the security of the network.

[0106] 具体来讲,本申请实施例中的信息处理方法对应的计算机程序指令可以被存储在光盘,硬盘,U盘等存储介质上,当存储介质中的与信息处理方法对应的计算机程序指令被一电子设备读取或被执行时,包括如下步骤: [0106] Specifically, the present application computer program instructions, the information processing method corresponding to the embodiment of the embodiment may be stored on the optical disk, hard disk, U disk and other storage medium, when the computer program instructions stored in the medium information processing method corresponding storage when performing a read or electronic device, comprising the steps of:

[0107] 获得第一信息,所述第一信息为含有待解析的域名的信息; [0107] obtain the first information, the first information is information containing the domain name to be resolved;

[0108] 控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的; [0108] The electronic control device sends a DNS request for the first information to a domain name system DNS server, the DNS server returns the obtained first information corresponding to the first internet protocol IP address; wherein the said first IP address to the DNS server to resolve the domain name obtained based on the first information be included;

[0109] 将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址; [0109] The first and second IP address matches the IP address obtained, to obtain a matching result; wherein the second IP address is the preset information corresponding to the first IP address;

[0110] 根据所述匹配结果,确定所述DNS服务器是否被劫持。 [0110] The result of the matching, determining whether the DNS server is hijacked.

[0111] 可选的,当所述电子设备具有一预设IP地址表时,所述存储介质中存储的与步骤将所述第一IP地址与获得的第二IP地址进行匹配,对应的计算机指令在具体被执行过程中,包括如下步骤: [0111] Alternatively, when the electronic apparatus is a predetermined IP address, stored in the storage medium of the first step with the second IP address obtained in the IP address matches the corresponding computer in particular instruction is executed in the process, comprising the steps of:

[0112] 在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址; [0112] query IP address in the preset table corresponding to the first information and the second IP address;

[0113] 将所述第一IP地址与所述第二IP地址进行匹配 [0113] the first IP address and the second IP address matching

[0114] 可选的,所述存储介质中还存储有另外一些计算机指令,这些计算机指令在与步骤在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,对应的计算机指令在具体被执行过程中,包括如下步骤: [0114] Alternatively, the storage medium further stores instructions there are other computer, which computer instructions in Step query IP address in the preset table corresponding to the first information and the second IP address corresponding computer instructions are in the specific implementation, comprising the steps of:

[0115] 判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址; [0115] Analyzing the preset information corresponding to the first and the second IP address if the IP address exists in the table;

[0116] 当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址 [0116] When the information corresponding to the first and the second IP address does not exist in the predetermined IP address, the electronic control device updates the preset IP address table, so that the predetermined IP address table having the first IP address information corresponding to the second

[0117] 可选的,所述存储介质中还存储有另外一些计算机指令,这些计算机指令在与步骤:根据所述匹配结果,确定所述DNS服务器是否被劫持,对应的计算机指令在具体被执行过程中,包括如下步骤: [0117] Alternatively, the storage medium further stores some additional computer instructions and those computer instructions in the steps of: based on the matching results, determining whether the DNS server is hijacked, in particular the corresponding computer instructions to be executed process, comprising the steps of:

[0118] 当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址; [0118] The results show that when the match when the first IP address and the second IP address matching is unsuccessful, the domain name resolution request to the DNS server through a predetermined network first receiving the DNS third server returns the IP address corresponding to the first information;

[0119] 判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果; [0119] Analyzing the third IP address is the same as the second IP address, to obtain a determination result;

[0120] 根据所述判断结果确定所述DNS服务器是否被劫持。 [0120] According to the determination result of the determining whether the DNS server is hijacked.

[0121] 可选的,所述存储介质中还存储有另外一些计算机指令,这些计算机指令在与步骤:所述根据所述判断结果确定所述DNS服务器是否被劫持,对应的计算机指令在具体被执行过程中,包括如下步骤: [0121] Alternatively, the storage medium further stores some additional computer instructions and those computer instructions in the steps of: based on the determination result of said determining whether the DNS server is hijacked, corresponding computer instructions are in particular during execution, comprising the steps of:

[0122] 当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持; [0122] When the determination result indicates that the third IP address and the second IP address is the same, determining that the DNS server is hijacking;

[0123] 当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持。 [0123] When the determination result indicates that the third IP address and the second IP address are not identical, determining whether the DNS server is hijacked according to a preset rule.

[0124] 可选的,所述存储介质中还存储有另外一些计算机指令,这些计算机指令在与步骤:当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持,对应的计算机指令在具体被执行过程中,包括如下步骤: [0124] Alternatively, the storage medium further stores some additional computer instructions and those computer instructions in the steps of: indicating that the third IP address and the second IP address is not the same as when the determination result, the preset rule is determined whether the DNS server is hijacked, corresponding computer instructions are in the specific implementation, comprising the steps of:

[0125] 判断所述第三IP地址与所述第一IP地址是否一致; [0125] Analyzing the third IP address and the first IP address are the same;

[0126] 若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否贝U,确定所述DNS服务器未被劫持。 [0126] When the third IP address and the IP addresses do not match the first, the DNS server is determined to be hijacked, no shellfish U, the DNS server is determined not hijacking.

[0127] 可选的,所述存储介质中还存储有另外一些计算机指令,这些计算机指令在与步骤:当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,对应的计算机指令在具体被执行过程中,还包括如下步骤: [0127] Alternatively, the storage medium further stores some additional computer instructions and those computer instructions in the steps of: indicating that the third IP address and the second IP address is not the same as when the determination result, computer instructions corresponding to the particular procedure being performed, the further comprising the steps of:

[0128] 控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 [0128] The electronic control apparatus the preset IP address of the second IP address table is updated to the third IP address.

[0129] 可选的,所述存储介质中还存储有另外一些计算机指令,这些计算机指令在与步骤:将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果,对应的计算机指令在具体被执行过程中,具体包括如下步骤: [0129] Alternatively, the storage medium further stores some additional computer instructions and those computer instructions in the steps of: the first IP address matches the second IP address obtained, to obtain a matching result, the corresponding the computer instructions are in the specific implementation, includes the following steps:

[0130] 控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求; [0130] The electronic control device transmits the domain name resolution request to the DNS server through a second predetermined network;

[0131] 获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址; [0131] The obtaining of the first DNS server returns information corresponding to said second IP address;

[0132] 将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 [0132] the first IP address and the second IP address matching, the matching result is obtained.

[0133] 显然,本领域的技术人员可以对本发明进行各种改动和变型而不脱离本发明的精神和范围。 [0133] Obviously, those skilled in the art can make various modifications and variations to the invention without departing from the spirit and scope of the invention. 这样,倘若本发明的这些修改和变型属于本发明权利要求及其等同技术的范围之内,则本发明也意图包含这些改动和变型在内。 Thus, if these modifications and variations of the present invention fall within the claims of the invention and the scope of equivalents thereof, the present invention intends to include these modifications and variations.

Claims (16)

1.一种信息处理方法,应用于一电子设备,所述方法包括: 获得第一信息,所述第一信息为含有待解析的域名的信息; 控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的; 将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址; 根据所述匹配结果,确定所述DNS服务器是否被劫持。 1. An information processing method applied to an electronic device, the method comprising: obtaining a first information, the first information is information containing the domain name to be resolved; for controlling the electronic device to send a domain name system DNS server the first information of the domain name resolution request, obtain the DNS server returns with the first internet protocol information corresponding to the first IP address; wherein the first IP address to the DNS server according to the first a domain name included in the information obtained by parsing; the first IP address matches the second IP address obtained, to obtain a matching result; wherein the second IP address is the first preset information corresponding to the IP address; according to the matching result, determining whether the DNS server is hijacked.
2.如权利要求1所述的方法,其特征在于,所述电子设备具有一预设IP地址表,将所述第一IP地址与获得的第二IP地址进行匹配,包括: 在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址; 将所述第一IP地址与所述第二IP地址进行匹配。 2. The method according to claim 1, wherein, said electronic device having a predetermined IP address, the first IP address matches the second IP address obtained, comprising: in said pre- IP address table provided in the first information query corresponding to the second IP address; the first IP address and the second IP address matching.
3.如权利要求2所述的方法,其特征在于,在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,包括: 判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址; 当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址。 3. The method according to claim 2, wherein the first query and the second IP address information corresponding to the IP address in the preset table, comprising: determining the preset IP address table in the presence or absence of said information corresponding to said first and second IP address; when the preset information corresponding to the first and the second IP address is the IP address does not exist in the table, the electronic control device updating the default IP address table, so that the preset IP address table having the first and second information corresponding to the IP address.
4.如权利要求2或3所述的方法,其特征在于,根据所述匹配结果,确定所述DNS服务器是否被劫持,包括: 当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址; 判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果; 根据所述判断结果确定所述DNS服务器是否被劫持。 4. The method of claim 2 or claim 3, wherein, according to the matching result, determining whether the DNS server is hijacked, comprising: said address when said first and said matching result indicates that the first IP two IP address match is unsuccessful, the domain name resolution request is sent to the network by a first predetermined DNS server, receives the third IP address and the information corresponding to the first DNS server returns; determining the whether the third IP address and the second IP address is the same, to obtain a determination result; based on the determination result of determining whether the DNS server is hijacked.
5.如权利要求4所述的方法,其特征在于,所述根据所述判断结果确定所述DNS服务器是否被劫持,包括: 当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持; 当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持。 5. The method according to claim 4, characterized in that, based on the determination result of said determining whether the DNS server is hijacked, comprising: when the judgment result indicates that the third IP address and the second the same IP address, the DNS server is determined hijacking; when the third determination result indicates that the second IP address and the IP address are not identical, determining whether the DNS server is hijacked according to a preset rule.
6.如权利要求5所述的方法,其特征在于,当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持,具体为: 判断所述第三IP地址与所述第一IP地址是否一致; 若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否则,确定所述DNS服务器未被劫持。 6. The method according to claim 5, wherein, when the judgment result indicates that the third IP address and the second IP address is not the same, according to a preset rule to determine whether the DNS server is hijacked specifically: determining whether the third IP address and the IP address of the first uniform; if the third IP address and the IP addresses do not match the first, the DNS server is determined to be hijacked, or determining the DNS server is not hijacked.
7.如权利要求5或6所述的方法,其特征在于,当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,所述方法还包括: 控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 7. The method of claim 5 or claim 6, wherein, when the judgment result indicates that the third IP address and the second IP address is not the same, the method further comprising: controlling the electronic apparatus the preset IP address of the second IP address table is updated to the third IP address.
8.如权利要求1所述的方法,其特征在于,将所述第一 IP地址与获得的第二IP地址进行匹配,获得一匹配结果,具体为: 控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求; 获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址; 将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 8. The method according to claim 1, wherein the first IP address matches the second IP address obtained, to obtain a matching result, in particular: the electronic control device through a second preset DNS resolution request to the network server sends the domain name; obtaining the DNS server returns with the first information corresponding to said second IP address; the first IP address with the second IP address matching, the matching result is obtained.
9.一种电子设备,包括: 获取模块,用于获得第一信息,所述第一信息为含有待解析的域名的信息; 操作模块,用于控制所述电子设备向域名系统DNS服务器发送针对所述第一信息的域名解析请求,获得所述DNS服务器返回的与所述第一信息对应的第一网际协议IP地址;其中,所述第一IP地址为所述DNS服务器根据对所述第一信息中包括的域名进行解析得到的; 匹配模块,用于将所述第一IP地址与获得的第二IP地址进行匹配,获得一匹配结果;其中,所述第二IP地址为预设的与所述第一信息对应的IP地址; 确定模块,用于根据所述匹配结果,确定所述DNS服务器是否被劫持。 An electronic apparatus, comprising: an obtaining module for obtaining the first information, the first information is information containing the domain name to be resolved; operating means for controlling the electronic device sends a domain name system DNS server for the first information of the domain name resolution request, obtain the DNS server returns with the first internet protocol information corresponding to the first IP address; wherein the first IP address to the DNS server according to the first a domain name included in the information obtained by parsing; matching module, configured to the first IP address and the second IP address obtained by matching to obtain a matching result; wherein the second IP address as the default IP address corresponding to the first information; determining module, according to the matching result, determining whether the DNS server is hijacked.
10.如权利要求9所述的电子设备,其特征在于,所述匹配模块具体用于:在所述预设IP地址表中查询与所述第一·信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配。 10. The electronic apparatus according to claim 9, wherein said matching module is configured to: the preset IP address query table of the first-information corresponding to the second IP address; the first IP address and the second IP address matching.
11.如权利要求10所述的电子设备,其特征在于,所述匹配模块具体用于在所述预设IP地址表中查询与所述第一信息对应的所述第二IP地址,包括:判断所述预设IP地址表中是否存在与所述第一信息对应的所述第二IP地址;当所述预设IP地址表中不存在与所述第一信息对应的所述第二IP地址时,控制所述电子设备更新所述预设IP地址表,以使所述预设IP地址表中具有与所述第一信息对应的所述第二IP地址。 11. The electronic apparatus according to claim 10, wherein said matching module is configured to query IP address in the preset table corresponding to the first information and the second IP address, comprising: determining whether there is the predetermined IP address table information corresponding to the first and second IP address; when the preset IP address table does not exist in the second information corresponding to the first IP an address, the electronic control device updates the preset IP address table, so that the preset IP address table having information corresponding to the first and second IP address.
12.如权利要求10或11所述的电子设备,其特征在于,所述确定模块具体用于:当所述匹配结果表明所述第一IP地址与所述第二IP地址匹配不成功时,将所述域名解析请求通过第一预设网络发送至所述DNS服务器,接收所述DNS服务器返回的与所述第一信息对应的第三IP地址;判断所述第三IP地址是否与所述第二IP地址相同,获得一判断结果;根据所述判断结果确定所述DNS服务器是否被劫持。 12. The electronic device of claim 10 or claim 11, wherein the determining module is configured to: when the first IP address matching result of the match is not successful indicating that the second IP address, the domain name resolution request to the network through a first predetermined DNS server, receives the DNS server returns with the third IP address corresponding to the first information; determining whether the IP address and the third the second IP address is the same, to obtain a determination result; based on the determination result of determining whether the DNS server is hijacked.
13.如权利要求12所述的电子设备,其特征在于,所述确定模块具体用于根据所述判断结果确定所述DNS服务器是否被劫持,具体为:当所述判断结果表明所述第三IP地址与所述第二IP地址相同时,确定所述DNS服务器被劫持;当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持。 13. The electronic device according to claim 12, wherein the determining module for determining, according to the result of determining whether the DNS server is hijacked, specifically: when the judgment result indicates that the third IP address and the second IP address is the same, determining that the DNS server is hijacked; when the judgment result indicates that the third IP address and the second IP address is not the same, is determined according to the preset rule whether the DNS server is hijacked.
14.如权利要求13所述的电子设备,其特征在于,所述确定模块具体用于当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,根据预设规则确定所述DNS服务器是否被劫持,具体为:判断所述第三IP地址与所述第一IP地址是否一致;若所述第三IP地址与所述第一IP地址不一致,确定所述DNS服务器被劫持,否则,确定所述DNS服务器未被劫持。 14. The electronic device according to claim 13, wherein said determining simultaneously, according to a preset rule module is configured to, when the determination result indicates that the third IP address and the second IP address is not in determining whether the DNS server is hijacked, specifically: determining whether the third IP address and the IP address of the first uniform; if the third IP address is inconsistent with the first IP address, the DNS server determines It was hijacked, otherwise, determining that the DNS server is not hijacked.
15.如权利要求13或14所述的电子设备,其特征在于,所述电子设备还包括更新模块,用于当所述判断结果表明所述第三IP地址与所述第二IP地址不相同时,控制所述电子设备将所述预设IP地址表中的所述第二IP地址更新为所述第三IP地址。 15. The electronic device of claim 13 or claim 14, wherein said electronic apparatus further comprises an updating module, configured to, when the determination result indicates that the third IP address and the second IP address is not in Meanwhile, the electronic control apparatus the preset IP address of the second IP address table is updated to the third IP address.
16.如权利要求9所述的电子设备,其特征在于,所述匹配模块具体用于:控制所述电子设备通过第二预设网络向所述DNS服务器发送所述域名解析请求;获得所述DNS服务器返回的与所述第一信息对应的所述第二IP地址;将所述第一IP地址与所述第二IP地址进行匹配,获得所述匹配结果。 16. The electronic device according to claim 9, wherein said matching module is configured to: control said electronic device transmits the domain name resolution request to the DNS server through a second predetermined network; obtaining DNS server returns with the first information corresponding to said second IP address; the first IP address matches the second IP address, the matching result is obtained.
CN201410062739.5A 2014-02-24 2014-02-24 A kind of information processing method and electronic equipment CN103825895B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410062739.5A CN103825895B (en) 2014-02-24 2014-02-24 A kind of information processing method and electronic equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410062739.5A CN103825895B (en) 2014-02-24 2014-02-24 A kind of information processing method and electronic equipment

Publications (2)

Publication Number Publication Date
CN103825895A true CN103825895A (en) 2014-05-28
CN103825895B CN103825895B (en) 2019-06-25

Family

ID=50760723

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410062739.5A CN103825895B (en) 2014-02-24 2014-02-24 A kind of information processing method and electronic equipment

Country Status (1)

Country Link
CN (1) CN103825895B (en)

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104113447A (en) * 2014-07-10 2014-10-22 北京蓝汛通信技术有限责任公司 Method, device and system for monitoring domain name resolution pollution
CN104168339A (en) * 2014-06-30 2014-11-26 汉柏科技有限公司 Method and device for preventing domain name from being intercepted
CN105338187A (en) * 2015-11-16 2016-02-17 联想(北京)有限公司 Information processing method and electronic equipment
CN105592173A (en) * 2014-10-23 2016-05-18 中国移动通信集团公司 Method and system for preventing DNS (Domain Name System) cache from being stained and local DNS server
CN105610812A (en) * 2015-12-24 2016-05-25 北京奇虎科技有限公司 Method and device for preventing hijacking of webpage
CN105681358A (en) * 2016-03-31 2016-06-15 北京奇虎科技有限公司 Domain name hijacking detection method, device and system
CN105763564A (en) * 2016-04-19 2016-07-13 成都知道创宇信息技术有限公司 DNS hijacking detection method
CN105871912A (en) * 2016-06-03 2016-08-17 腾讯科技(深圳)有限公司 Detection method for domain name hijacking, server and mobile terminal
CN105991604A (en) * 2015-02-27 2016-10-05 中兴通讯股份有限公司 Method and device for preventing form domain name hijacking
CN106302384A (en) * 2016-07-25 2017-01-04 中国联合网络通信集团有限公司 DNS message processing method and device
CN106453436A (en) * 2016-12-21 2017-02-22 北京奇虎科技有限公司 Method and device for detecting network security
CN106790083A (en) * 2016-12-22 2017-05-31 掌阅科技股份有限公司 Detection method, device and mobile terminal that DNS is kidnapped
CN106911652A (en) * 2015-12-23 2017-06-30 北京奇虎科技有限公司 The method and device for preventing wireless router configuration information to be tampered
CN107172006A (en) * 2017-03-22 2017-09-15 深信服科技股份有限公司 Detect the malicious method and device of wireless network
CN107277025A (en) * 2017-06-28 2017-10-20 维沃移动通信有限公司 A kind of Secure Network Assecc method, mobile terminal and computer-readable recording medium
CN105610812B (en) * 2015-12-24 2019-12-06 北京奇虎科技有限公司 Method and device for preventing webpage from being hijacked

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101827136B (en) * 2010-03-30 2013-04-24 北京网御星云信息技术有限公司 Defense method for domain name system server buffer infection and network outlet equipment
CN101834911B (en) * 2010-03-31 2013-04-24 北京网御星云信息技术有限公司 Defense method of domain name hijacking and network outlet equipment

Cited By (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104168339A (en) * 2014-06-30 2014-11-26 汉柏科技有限公司 Method and device for preventing domain name from being intercepted
CN104113447A (en) * 2014-07-10 2014-10-22 北京蓝汛通信技术有限责任公司 Method, device and system for monitoring domain name resolution pollution
CN104113447B (en) * 2014-07-10 2017-11-10 北京蓝汛通信技术有限责任公司 Monitor the method, apparatus and system of domain name mapping pollution
CN105592173A (en) * 2014-10-23 2016-05-18 中国移动通信集团公司 Method and system for preventing DNS (Domain Name System) cache from being stained and local DNS server
CN105592173B (en) * 2014-10-23 2019-01-01 中国移动通信集团公司 A kind of method for preventing DNS cache from being contaminated, system and local dns server
CN105991604A (en) * 2015-02-27 2016-10-05 中兴通讯股份有限公司 Method and device for preventing form domain name hijacking
CN105338187A (en) * 2015-11-16 2016-02-17 联想(北京)有限公司 Information processing method and electronic equipment
CN106911652A (en) * 2015-12-23 2017-06-30 北京奇虎科技有限公司 The method and device for preventing wireless router configuration information to be tampered
CN105610812A (en) * 2015-12-24 2016-05-25 北京奇虎科技有限公司 Method and device for preventing hijacking of webpage
CN105610812B (en) * 2015-12-24 2019-12-06 北京奇虎科技有限公司 Method and device for preventing webpage from being hijacked
CN105681358A (en) * 2016-03-31 2016-06-15 北京奇虎科技有限公司 Domain name hijacking detection method, device and system
CN105763564A (en) * 2016-04-19 2016-07-13 成都知道创宇信息技术有限公司 DNS hijacking detection method
CN105871912A (en) * 2016-06-03 2016-08-17 腾讯科技(深圳)有限公司 Detection method for domain name hijacking, server and mobile terminal
CN106302384A (en) * 2016-07-25 2017-01-04 中国联合网络通信集团有限公司 DNS message processing method and device
CN106453436A (en) * 2016-12-21 2017-02-22 北京奇虎科技有限公司 Method and device for detecting network security
WO2018113730A1 (en) * 2016-12-21 2018-06-28 北京奇虎科技有限公司 Method and apparatus for detecting network security
CN106453436B (en) * 2016-12-21 2019-05-31 北京奇虎科技有限公司 A kind of detection method and device of network security
CN106790083A (en) * 2016-12-22 2017-05-31 掌阅科技股份有限公司 Detection method, device and mobile terminal that DNS is kidnapped
CN107172006A (en) * 2017-03-22 2017-09-15 深信服科技股份有限公司 Detect the malicious method and device of wireless network
CN107277025A (en) * 2017-06-28 2017-10-20 维沃移动通信有限公司 A kind of Secure Network Assecc method, mobile terminal and computer-readable recording medium

Also Published As

Publication number Publication date
CN103825895B (en) 2019-06-25

Similar Documents

Publication Publication Date Title
US8327428B2 (en) Authenticating linked accounts
US7698442B1 (en) Server-based universal resource locator verification service
US8874695B2 (en) Web access using cross-domain cookies
EP1998506A1 (en) Virtual network connection apparatus, system, method for controlling connection of a virtual network and program
US20180287937A1 (en) Processing data packets using a policy based network path
US9660974B2 (en) Fingerprint based authentication for single sign on
US20130246609A1 (en) Methods and apparatus to track web browsing sessions
JPWO2007110951A1 (en) User confirmation apparatus, method and program
US20120210413A1 (en) Facilitating single sign-on (sso) across multiple browser instance
US20070055749A1 (en) Identifying a network address source for authentication
US9729547B2 (en) Systems and methods for credential management between electronic devices
US8862777B2 (en) Systems, apparatus, and methods for mobile device detection
US20110055562A1 (en) Public key certificate based social website account authentication
US8751586B2 (en) Domain name control based social website account authentication
US8301787B2 (en) Selective use of anonymous proxies
ES2701926T3 (en) Method and system to verify an account operation
US8763136B2 (en) Privacy enhanced browser
US20110055249A1 (en) Social website account authentication via search engine based domain name control validation
US7769820B1 (en) Universal resource locator verification services using web site attributes
TW201012156A (en) Secure resource name resolution
CN102158468A (en) Method for sharing and acquiring data in social network service (SNS)
US10313354B2 (en) Systems and methods for efficient and secure temporary anonymous access to media content
CN103475637A (en) Network access control method and system based on IP access behaviors
CN103490884A (en) System and method for verification of digital certificates
CN102306171A (en) Method and equipment for providing network access suggestions and network search suggestions

Legal Events

Date Code Title Description
C06 Publication
C10 Entry into substantive examination
GR01 Patent grant