Basically any DNS provider allows this (plus anybody can buy a domain and run their own DNS server).

The defense against this has to happen either on the resource you want to protect or in the browser.