網絡掃描:WHOIS信息查詢
WHOIS(讀作Who is,非縮寫)是用來查詢域名的IP及所有者等信息的傳輸協議。簡單說,WHOIS就是一個用來查詢域名是否已經被注冊,以及已經注冊域名的詳細信息的數據庫(如域名所有人、域名注冊商、域名注冊日期和過期日期等)。通過域名Whois服務器查詢,可以查詢域名歸屬者聯系方式,以及注冊和到期時間。本文介紹實施WHOIS信息查詢的方法。
1. WHOIS查詢網址
通過訪問網址http://whois.chinaz.com/,可以快速地查詢到某域名的相關信息。在瀏覽器的地址欄中輸入網址http://whois.chinaz.com/,訪問成功后,顯示界面如圖1所示。
圖1 Whois查詢站點
在如圖1所示的文本框中輸入要查詢的域名,并單擊“查詢”按鈕,即可獲取到對應的信息。例如,查詢域名qq.com的相關信息。查詢完成后,顯示如圖2和圖3所示。因為無法截取所有信息,所以這里只截取了兩個圖。
圖2 域名信息
圖3 Whois查詢
在圖2中顯示了域名qq.com的信息,包括該域名的注冊商、聯系郵箱、電話、創建時間、過期時間和域名服務器等。
在圖3中顯示了域名qq.com的WHOIS信息,包括注冊域名ID、注冊WHOIS服務器、注冊的URL、更新時間和創建時間等。
2. 使用Whois工具
Whois工具是用來查找并顯示指定賬號(或域名)的用戶相關信息。下面介紹使用Whois工具來實現WHOIS信息查詢的方法。使用Whois工具的語法格式如下:
whois [域名]
使用Whois工具查詢域名baidu.com的相關信息。執行命令如下:
root@daxueba:~# whois baidu.com
Domain Name: BAIDU.COM #域名
Registry Domain ID: 11181110_DOMAIN_COM-VRSN #注冊域名ID
Registrar WHOIS Server: whois.markmonitor.com #注冊WHOIS服務器
Registrar URL: http://www.markmonitor.com #注冊者URL
Updated Date: 2021-07-23T02:36:28Z #更新時間
Creation Date: 1999-10-11T11:05:17Z #創建時間
Registry Expiry Date: 2026-10-11T11:05:17Z #過期時間
Registrar: MarkMonitor Inc. #注冊者
Registrar IANA ID: 292 #注冊者IANA ID
Registrar Abuse Contact Email: abusecomplaints@markmonitor.com #注冊濫用電子郵箱聯系人
Registrar Abuse Contact Phone: +1.2083895740 #注冊者濫用電話號碼
Domain Status: clientDeleteProhibited https://icann.org/epp#clientDelete
Prohibited #域名狀態
Domain Status: clientTransferProhibited https://icann.org/epp#client
TransferProhibited
Domain Status: clientUpdateProhibited https://icann.org/epp#client
UpdateProhibited
Domain Status: serverDeleteProhibited https://icann.org/epp#server
DeleteProhibited
Domain Status: serverTransferProhibited https://icann.org/epp#server
TransferProhibited
Domain Status: serverUpdateProhibited https://icann.org/epp#server
UpdateProhibited
Name Server: DNS.BAIDU.COM #域名服務器
Name Server: NS2.BAIDU.COM
Name Server: NS3.BAIDU.COM
Name Server: NS4.BAIDU.COM
Name Server: NS7.BAIDU.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of whois database: 2021-07-23T09:26:13Z <<< #最后更新WHOIS數據庫時間
……省略部分內容
Web-based WHOIS: #基于Web的WHOIS信息
https://domains.markmonitor.com/whois
If you have a legitimate interest in viewing the non-public WHOIS details, send
your request and the reasons for your request to whoisrequest@markmonitor.com
and specify the domain name in the subject line. We will review that request and
may ask for supporting documentation and explanation.
The data in MarkMonitor’s WHOIS database is provided for information purposes,
and to assist persons in obtaining information about or related to a domain
name’s registration record. While MarkMonitor believes the data to ben accurate,
the data is provided "as is" with no guarantee or warranties regarding itsaccuracy.
By submitting a WHOIS query, you agree that you will use this data only for
lawful purposes and that, under no circumstances will you use this data to:
(1) allow, enable, or otherwise support the transmission by email,telephone,or facsimile of mass, unsolicited, commercial advertising, or spam; or
(2) enable high volume, automated, or electronic processes that send queries,data, or email to MarkMonitor (or its systems) or the domain name contacts (orits systems).
MarkMonitor.com reserves the right to modify these terms at any time.
By submitting this query, you agree to abide by this policy.
MarkMonitor is the Global Leader in Online Brand Protection.
MarkMonitor Domain Management(TM)
MarkMonitor Brand Protection(TM)
MarkMonitor AntiCounterfeiting(TM)
MarkMonitor AntiPiracy(TM)
MarkMonitor AntiFraud(TM)
Professional and Managed Services
Visit MarkMonitor at https://www.markmonitor.com
Contact us at +1.8007459229
In Europe, at +44.02032062220
從以上輸出信息可以看到獲取到域名baidu.com的相關WHOIS信息。例如,注冊商域名ID為11181110_DOMAIN_COM-VRSN、注冊的WHOIS服務器為whois.markmonitor.com、創建時間為1999-10-11T11:05:17Z等。
3. 使用DMitry工具
DMitry工具是用來查詢IP或域名WHOIS信息的。使用該工具查詢WHOIS信息的語法格式如下:
dmitry -w [domain]
以上語法中的選項及含義如下:
-w:對指定的域名實施WHOIS查詢。
domain:指定查詢的域名。
使用DMitry工具查詢域名baidu.com的WHOIS信息。執行命令如下:
root@daxueba:~# dmitry -w baidu.com
Deepmagic Information Gathering Tool
"There be some deep magic going on"
HostIP:123.125.115.110 #主機IP地址
HostName:baidu.com #主機名
Gathered Inic-whois information for baidu.com #生成的WHOIS信息
---------------------------------
Domain Name: BAIDU.COM #域名
Registry Domain ID: 11181110_DOMAIN_COM-VRSN #注冊域名ID
Registrar WHOIS Server: whois.markmonitor.com #注冊WHOIS服務器
Registrar URL: http://www.markmonitor.com #注冊者URL
Updated Date: 2021-07-23T02:36:28Z #更新時間
Creation Date: 1999-10-11T11:05:17Z #創建時間
Registry Expiry Date: 2026-10-11T11:05:17Z #過期時間
Registrar: MarkMonitor Inc. #注冊者
Registrar IANA ID: 292 #注冊者IANA ID
Registrar Abuse Contact Email: abusecomplaints@markmonitor.com #注冊者濫用郵件聯系人
Registrar Abuse Contact Phone: +1.2083895740 #注冊者濫用電話號碼
Domain Status: clientDeleteProhibited https://icann.org/epp#clientDelete
Prohibited #域名狀態
Domain Status: clientTransferProhibited https://icann.org/epp#client
TransferProhibited
Domain Status: clientUpdateProhibited https://icann.org/epp#client
UpdateProhibited
Domain Status: serverDeleteProhibited https://icann.org/epp#server
DeleteProhibited
Domain Status: serverTransferProhibited https://icann.org/epp#server
TransferProhibited
Domain Status: serverUpdateProhibited https://icann.org/epp#server
UpdateProhibited
Name Server: DNS.BAIDU.COM #域名服務器
Name Server: NS2.BAIDU.COM
Name Server: NS3.BAIDU.COM
Name Server: NS4.BAIDU.COM
Name Server: NS7.BAIDU.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.
org/wicf/
>>> Last update of whois database: 2021-07-23T10:19:04Z <<<
#最后更新WHOIS數據庫時間
For more information on Whois status codes, please visit https://icann.org/epp
NOTICE: The expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is currently set to expire. This date does not necessarily reflect the expiration date of the domain name registrant's agreement with the sponsoring registrar. Users may consult the sponsoring registrar's Whois database to view the registrar's reported date of expiration for this registration.TERMS OF USE: You are not authorized to access or query our Whois database through the use of electronic processes that are high-volume and automated except as reasonably necessary to register domain names or modify existing registrations; the Data in VeriSign Global Registry Services' ("VeriSign") Whois database is provided by VeriSign for information purposes only, and to assist persons in obtaining information about or related to a domain name registration record. VeriSign does not guarantee its accuracy. By submitting a Whois query, you agree to abide by the following terms of use: You agree that you may use this Data only for lawful purposes and that under no circumstances will you use this Data to: (1) allow, enable, or otherwise support the transmission of mass unsolicited, commercial advertising or solicitations via e-mail, telephone,or facsimile; or (2) enable high volume, automated, electronic processes that apply to VeriSign (or its computer systems). The compilation,repackaging, dissemination or other use of this Data is expressly prohibited without the prior written consent of VeriSign. You agree not to use electronic processes that are automated and high-volume to access or query the Whois database except as reasonably necessary to register domain names or modify existing registrations. VeriSign reserves the right to restrict your access to the Whois database in its sole discretion to ensure operational stability. VeriSign may restrict or terminate your access to the Whois database for failure to abide by these terms of use. VeriSign reserves the right to modify these terms at any time.The Registry database contains ONLY .COM, .NET, .EDU domains and Registrars.
All scans completed, exiting
從以上輸出信息中可以看到,成功獲取到了域名baidu.com相關的WHOIS信息。
