How to Use the WHOIS Command to Lookup Ip and Domain Name Information

Tony Teaches Tech
4 Oct 202207:46

Summary

TLDRThe video tutorial demonstrates how to use the WHOIS command to obtain information about IP addresses and domain names. It covers the process for both Mac/Linux and Windows users, with instructions on how to install the WHOIS command on Windows if it's not already present. The host explains that WHOIS can reveal registration and contact details for domain registrants, and even hosting information. Examples are provided, including looking up Google's domain and a personal website, to illustrate the type of data that can be accessed. The video also touches on privacy protection for domain registrants and how to find a website's hosting by using the 'ping' command to get the IP address and then querying that IP with WHOIS. The tutorial concludes with a demonstration of installing the WHOIS command on a Windows system.

Takeaways

  • 💻 The WHOIS command is used to look up IP address and domain name information, including contact details and hosting information.
  • 📡 On Mac or Linux, the WHOIS command is pre-installed and can be accessed via the terminal; on Windows, it's not installed by default but can be installed from a Microsoft URL.
  • 🔎 Running WHOIS with a domain name, such as `whois google.com`, returns various details about the domain's registration and registrar.
  • 📅 Domain names have a registration date, and the example shows Google's domain was registered on September 15, 1997, with an expiration date in 2028.
  • 🤖 Some contact information is hidden for privacy, while some is publicly available, such as the organization name and state.
  • 🌐 Name servers' details are provided in the WHOIS output, which are essential for domain functionality.
  • 📝 Privacy protection services are available to prevent public exposure of personal contact information, instead providing a contact form or a disguised email address.
  • 🏢 The WHOIS command can also reveal the registrar of a domain, such as MarkMonitor Inc. for Google's domain.
  • 🏠 By using the `ping` command followed by a domain, one can obtain the IP address of the hosting provider for that domain.
  • 🌐 WHOIS can also provide information on IP addresses, not just domain names, which can help identify hosting services used by a website.
  • 💡 Cloudflare, mentioned in the script, is a Content Delivery Network (CDN) that can be associated with a domain for asset delivery, but it doesn't necessarily mean the website is hosted on Cloudflare.
  • 📚 The tutorial also guides on how to install the WHOIS command on a Windows computer by downloading a zip file from a provided URL and extracting it to a folder.

Q & A

  • What is the purpose of the 'whois' command?

    -The 'whois' command is used to look up IP address and domain name information, which can include contact details for the domain registrant and hosting information.

  • Is the 'whois' command available on all operating systems by default?

    -The 'whois' command is available by default on Mac and Linux systems through the terminal. However, on Windows, it is not installed by default and needs to be installed separately.

  • What is the process to use the 'whois' command on Windows?

    -On Windows, you can use the command prompt to execute the 'whois' command after installing it. The installation involves downloading a 'whois' zip file from a Microsoft URL, extracting it, and then copying the path to the folder it was extracted to.

  • What is the significance of the domain registration date?

    -The domain registration date indicates when the domain name was first registered. It is important as it shows the age of the domain, which can be a factor in its credibility and search engine rankings.

  • Why might some contact information be hidden from public view in a 'whois' lookup?

    -Some contact information may be hidden due to privacy protection services that domain registrants use to prevent their personal details from being publicly accessible on the internet.

  • What is the role of Verisign in the domain registration process?

    -Verisign is the company that manages .com domain names. Every .com domain that is registered goes through Verisign at some point in the registration process.

  • What does a 'name server' refer to in the context of domain names?

    -A name server is a server that appends domain names to IP addresses. They are part of the Domain Name System (DNS) and are crucial for directing traffic to the correct location on the internet.

  • How can one find out the hosting information of a website?

    -One can use the 'ping' command to find the IP address associated with a website's hosting. Then, by using the 'whois' command on that IP address, one can obtain information about the hosting company.

  • null

    -null

  • What is a Content Delivery Network (CDN) and how is it related to website hosting?

    -A CDN is a system of distributed servers that deliver web content to users based on their geographic location, the origin of the web page, and the content delivery server to ensure fast and reliable access. It can be related to website hosting as it may host some of the website's assets to improve load times and performance.

  • How does the 'whois' command provide information about a domain's registrar?

    -The 'whois' command provides information about the registrar when it returns the details of the domain's registration. This includes the name of the registrar company, the registration and expiration dates, and sometimes contact information.

  • What is the difference between a registrar and a hosting company?

    -A registrar is a company that manages the reservation of internet domain names, while a hosting company provides the actual space and resources on the internet for websites to be viewed by others. A domain can be registered with one company and hosted with another.

  • How can the 'whois' command be used to look up information on an IP address?

    -The 'whois' command can be used on an IP address by simply inputting the IP address after the command, just as you would with a domain name. This will return information about the organization that owns the IP address and related details.

Outlines

00:00

🔍 Introduction to WHOIS Command for Domain Lookup

This paragraph introduces the WHOIS command, which is used to look up IP address and domain name information. It explains that this can include contact details of the domain registrant and hosting information. The speaker notes that the WHOIS command is pre-installed on Mac and Linux systems and can be accessed via the terminal, while Windows users need to use the command prompt and may need to install WHOIS separately. The tutorial then demonstrates how to use the WHOIS command by looking up information for 'google.com', including its registration date, registrar, and some contact details. It also touches upon privacy protection for domain registrants and how some information may be hidden from public view.

05:01

🌐 Exploring WHOIS for Different Domains and IP Lookup

The second paragraph continues the discussion on WHOIS by comparing the results of looking up 'google.com' with another domain, 'tonyteachers.tech'. It highlights the differences in the registrar and the level of public information available for each domain. The speaker also demonstrates the use of a contact form for privacy protection, which is a feature provided by some registrars to prevent direct public access to the registrant's contact information. Additionally, the paragraph explores how to find out the hosting information for a domain by using the 'ping' command to get the IP address and then using WHOIS to look up the hosting company associated with that IP. The paragraph concludes with a brief mention of installing the WHOIS command on a Windows computer by downloading it from a Microsoft URL.

Mindmap

Keywords

💡WHOIS command

The WHOIS command is a query and response protocol used for querying databases that store the registered users or assignees of an Internet resource, such as a domain name. In the video, it is used to look up IP address and domain name information, which can include contact details for the registrant and hosting information. It is a crucial tool for understanding the ownership and registration details of a domain name.

💡IP address

An IP address is a unique numerical label assigned to each device connected to a computer network that uses the Internet Protocol for communication. In the context of the video, the WHOIS command can be used to find out the IP address associated with a domain name, which can then be used to determine the hosting company or physical location of the website.

💡Domain name

A domain name is a human-readable string of characters that represents an IP resource and is used to identify a collection of such addresses under a single name. The video demonstrates how to use the WHOIS command to find information about a domain name, such as its registration date, expiration date, and registrar.

💡Registrar

A domain name registrar is an organization or commercial entity that manages the reservation of Internet domain names. In the video, Mark Monitor Incorporated and Google Domains are mentioned as registrars, responsible for the registration of the domain names google.com and tonyteachers.tech, respectively.

💡Privacy protection

Privacy protection is a service that domain name registrants can use to hide their personal contact information from the public WHOIS database. In the video, it is mentioned that some domain registrants, like the owner of tonyteachers.tech, use privacy protection to prevent their contact details from being publicly available.

💡Name servers

Name servers are the servers that handle the Domain Name System (DNS) records for a domain name. They are crucial for translating human-friendly domain names into IP addresses that computers use to identify each other on the network. The video discusses how the WHOIS command can reveal the name servers associated with a domain name.

💡Hosting company

A hosting company provides services required for a website or an application to be accessible over the internet. In the video, WPX Hosting is mentioned as the hosting company for tonyteachers.tech, and Cloudflare is mentioned in relation to networkchuck.com, indicating that it may be used for content delivery or hosting.

💡Ping command

The ping command is a computer network administration utility used to test the reachability of a host on an Internet Protocol (IP) network. It measures the round-trip time for messages sent from the originating host to a destination computer. In the video, the ping command is used to find the IP address associated with a domain name, which can then be used to determine the hosting company.

💡Content Delivery Network (CDN)

A CDN is a geographically distributed network of proxy servers and their data centers. The main goal is to provide high availability and performance by distributing the service spatially relative to end-users. In the video, Cloudflare is mentioned as a CDN that may be used for hosting assets for networkchuck.com.

💡VeriSign

VeriSign is an American company which provides domain registration services and internet infrastructure, including operating two of the internet's root name servers and managing the .com and .net top-level domains. In the video, VeriSign is mentioned as the company that manages .com domain names, and the WHOIS information for google.com begins with VeriSign's data.

💡Radix

Radix is a domain name registry that manages the registration and operation of various top-level domains (TLDs). In the video, it is mentioned that all .tech domain names are registered through Radix, which is based in Mumbai, India.

Highlights

The WHOIS command can be used to look up IP address and domain name information.

On Mac or Linux, WHOIS is accessible via Terminal, while on Windows it's accessed through Command Prompt.

WHOIS can provide contact information for domain registrants and hosting information.

Every .com domain goes through Verisign, the company managing .com domain names.

Google.com was first registered on September 15, 1997, with registration until 2028.

Some contact information for domains is hidden from public view for privacy.

WHOIS can also provide information from the registrar, such as creation, update, and expiration dates.

Different domain endings, like .tech, are registered through different companies, such as Radix.

Privacy protection can prevent contact information from being publicly visible.

A disguised email address can be provided for contact forms to protect privacy.

The ping command can reveal the IP address associated with a domain's web hosting.

WHOIS can also look up information based on an IP address, not just domain names.

Hosting companies can be identified through WHOIS lookups of associated IP addresses.

Content Delivery Networks (CDNs) like Cloudflare may be associated with a domain but not necessarily the hosting provider.

WHOIS command is not installed by default on Windows but can be installed from a Microsoft URL.

After installing WHOIS on Windows, it can be executed from the Command Prompt for any domain or IP address.

Transcripts

play00:00

in this video i'm going to show you how

play00:01

to use the who is command to look up ip

play00:03

address and domain name information and

play00:05

this information can be contact

play00:07

information for whoever registered the

play00:10

domain name and it can even be hosting

play00:12

information so let's go ahead and hop on

play00:14

into the tutorial if you're on a mac or

play00:16

a linux computer you're already going to

play00:17

have the whois command installed and you

play00:19

can access it via terminal if you're on

play00:21

windows you're going to use the command

play00:22

prompt but this is not installed by

play00:24

default stick around to the end of the

play00:26

video if you want to learn how to

play00:27

install who is on windows but otherwise

play00:30

let's go ahead and proceed so like i

play00:32

said we have the who is command

play00:34

installed and you can see how to use it

play00:36

here we're going to do our first example

play00:38

with who is google.com so it's just who

play00:41

is and then the name of a domain name

play00:43

so hit enter and it's going to spit out

play00:45

a lot of information definitely

play00:47

overwhelming at first but let me walk

play00:48

you through it so

play00:50

every single dot com domain name that

play00:52

you look up is going to start with this

play00:54

section it's just

play00:55

generic information for

play00:57

anybody who has a dot com so every dot

play01:00

com goes through verisign

play01:02

that is the company who manages dot com

play01:05

domain names so if you register a dot

play01:07

com domain it's going to go through

play01:08

verisign at some point so

play01:10

not not the most interesting stuff at

play01:12

the top maybe something that's

play01:13

interesting is that the first.coms were

play01:15

recruited in 1985. okay so the next

play01:18

section is more along the lines of what

play01:20

we're interested in so specifically the

play01:22

domain name google.com

play01:25

has some information here so that was

play01:27

first registered on

play01:29

september 15 1997

play01:32

and they have the domain name registered

play01:34

until 2028 so

play01:36

they they're well out there and that's

play01:38

like a what is it eight years into the

play01:41

future six to eight years into the

play01:42

future

play01:43

they registered with their registrar is

play01:46

mark monitor incorporated okay they have

play01:49

a little bit of contact information in

play01:50

here but it seems they have a lot of

play01:52

that information hidden from the public

play01:54

view uh here's some name servers

play01:57

and that's about all the interesting

play01:59

stuff so that was a who is from verisign

play02:02

uh there's also a who is from mark

play02:03

monitor their registrar so you see some

play02:06

redundant information so google.com

play02:09

uh the same

play02:10

creation date updated date the

play02:12

expiration date

play02:13

and then

play02:14

uh the same type of contact information

play02:17

and

play02:18

the name servers as well so

play02:20

they do have a little bit more public

play02:23

information that they're out of

play02:24

california the the organization's called

play02:27

google llc

play02:28

but that's about it for google let's try

play02:31

another example i'm going to pull up

play02:33

another terminal window here just to

play02:35

show you how these these two compared to

play02:37

each other so

play02:38

uh where were we who is so who is we'll

play02:41

try who is tony teaches dot tech

play02:45

okay so this is a different domain

play02:47

ending so we're not gonna see a com at

play02:49

the top we're going to see a dot tech so

play02:51

all dot tech domain names are registered

play02:55

through

play02:56

radix okay and they're out of mumbai

play02:58

india

play03:00

and that came into existence the tech

play03:03

domain name

play03:04

first came into existence in 2015. so

play03:07

cool but uh not what we're here to look

play03:09

at

play03:10

so let's look at tonyteachers.tech so

play03:13

that is my website if you haven't

play03:15

figured that out i registered that on

play03:17

january 19th of 2020

play03:19

i registered it with google so google

play03:21

domains

play03:23

here is my name servers they're all

play03:25

google domain name servers and i have

play03:28

some privacy protection so you can't see

play03:31

any of my contact information

play03:33

that is here here's the who is that who

play03:35

is google.com

play03:37

this is my registrar this is the

play03:40

information for my privacy protection

play03:42

the only way the only kind of public

play03:45

information that is exposed

play03:47

which really isn't much is this

play03:50

registrant email so it's not my email it

play03:52

just takes you to a contact form and let

play03:55

me show you

play03:56

what that looks like so i'm going to go

play03:58

here open that up and if you did want to

play04:00

get in touch with me

play04:01

you can

play04:03

type the domain name in it already

play04:04

pre-filled it for you confirm that

play04:06

you're not a robot submit and then it's

play04:08

going to give you a contact form that

play04:10

will

play04:11

actually it's not going to give you

play04:12

contact form sorry it's going to give

play04:13

you an email address a hidden email

play04:15

address the disguise email address but

play04:17

this will actually end up in my email

play04:19

box so you can

play04:20

some people have their information

play04:22

public some of them

play04:24

have contact forms some of them have

play04:25

private email addresses like this just

play04:27

so that your public information isn't

play04:30

sitting out there on the internet so

play04:33

that's what that looks like

play04:35

anything else interesting in here

play04:37

not really

play04:39

what is interesting though i got my

play04:41

domain name from google domains as you

play04:43

can tell here but what about my website

play04:45

where is my website hosted well there is

play04:48

a way you can sometimes figure this out

play04:50

so for a particular

play04:52

website or a particular domain name

play04:54

let's go ahead and ping it use the ping

play04:56

command so if we ping tony teaches

play04:59

dot tech that's going to give us back

play05:01

the ip address associated with the web

play05:03

hosting for that that domain name so now

play05:07

we can use the whois command to look up

play05:10

that ip address it doesn't have to be a

play05:12

domain name it can be an ip address as

play05:13

well so let's see what's going on at

play05:16

194.1.147

play05:20

dot

play05:21

what was the other

play05:23

147.33 okay so

play05:25

that shows us

play05:27

uh let's see the organization that

play05:30

i guess owns that ip address is ripe ncc

play05:34

uh

play05:35

k

play05:36

media tech okay we're getting onto

play05:38

something here and there it is wpx

play05:41

hosting wpx hosting is my hosting

play05:44

company that's what i use to host my

play05:46

website and they are out of

play05:49

sofia bulgaria okay so that's where my

play05:53

website is hosted

play05:55

we can try this for

play05:57

another website right so we can do who

play06:00

is

play06:02

network

play06:04

chuck

play06:05

dot com

play06:07

and he has a dot com so you see that

play06:09

same exact verisign information at the

play06:11

top

play06:13

and he registered his domain name

play06:15

in 2016

play06:17

from

play06:18

godaddy so his he he used godaddy to

play06:21

register his domain but that doesn't

play06:23

necessarily mean that his website is

play06:25

hosted with godaddy so we can try a

play06:27

similar technique we can do ping

play06:30

network

play06:32

chuck.com

play06:34

that'll give us back the ip address of

play06:36

his web hosting and then we can do who

play06:38

is

play06:40

this ip address

play06:43

and we'll see information from

play06:45

cloudflare so cloudflare is like it's a

play06:48

cdn a content delivery network so that

play06:50

doesn't necessarily mean his website is

play06:52

hosted from that that just means that uh

play06:54

some of his assets are there but it it

play06:56

could be the case that he's hosting

play06:58

directly with cloud failure

play07:00

um

play07:01

so yeah i think now i'll show you how to

play07:04

install the

play07:06

uh whois command on windows so check

play07:08

that out next as you can see here the

play07:10

who is command is not installed on this

play07:12

windows computer but we can install it

play07:14

by going to this microsoft url and

play07:17

downloading this who is zip file and we

play07:20

can go ahead and extract that zip file

play07:22

and then what you're going to want to do

play07:24

is copy the path to the folder that it

play07:26

was extracted to

play07:28

open up a command prompt window

play07:31

cd into that directory and now you can

play07:33

execute the whois command for any domain

play07:36

name or ip address that you desire

play07:39

[Music]

Browse More Related Video

How to Join a Client PC (Windows 10) to an Active Directory Domain Controller (Windows Server 2019)

Install and Configure DHCP Server in Windows Server 2019 Step By Step Guide

How to connect EC2 instance over SSH using Windows and Mac? | Visual Explanations

Setting up Active Directory in Windows Server 2019 (Step By Step Guide)

Como usar o Cloudflare na Turbo Cloud

Windows Latest CMD Hacks & Tricks

Rate This

5.0 / 5 (0 votes)

Summary
Outlines
Mindmap
Keywords
Highlights
Transcripts
Related Tags
WHOIS TutorialIP LookupDomain InformationContact DetailsPrivacy ProtectionHosting ServicesTech EducationOnline SecurityInternet BasicsCommand PromptMac/LinuxWindows Software