Cloud909 Executive DNS Audit
Domain: 909capital.com · Example report template
Prepared by Cloud909
Overall RiskMedium
Website DNS pointed to unexpected cloud infrastructure; email appeared separately routed.
DNS ProviderGoDaddy / domaincontrol.com
Authoritative nameservers observed.
Email ProviderMXroute
MX records pointed to MXroute, not the web host.
1. Executive Summary
Public DNS records showed that web traffic for 909capital.com resolved to IP addresses associated with Amazon infrastructure, while email routing appeared to remain on MXroute. This suggests a website/redirect-layer dependency rather than evidence that Amazon handled mailbox delivery.
Plain-English finding: the website path and the email path were different. The website appeared to route through an unexpected cloud layer; email records pointed elsewhere.
2. What We Found
| Area | Observed Result | Business Meaning |
|---|---|---|
| Nameservers | ns05.domaincontrol.comns06.domaincontrol.com | GoDaddy DNS was authoritative. |
| A Records | 15.197.225.1283.33.251.168 | Website traffic resolved to unexpected Amazon-related IPs. |
| MX Records | 10 chocobo.mxrouting.net20 chocobo-relay.mxrouting.net | Email routed to MXroute. |
| Intended Web Host | 178.104.165.37 / HZ.37 | DNS should point here if Cloud909/909Hosting should host the files. |
| Likely Cause | GoDaddy forwarding or legacy redirect configuration | A simple domain forwarding setting can hide a cloud dependency underneath. |
3. Business Risk
- Infrastructure visibility gap: the operator may not know which providers are in the live routing path.
- Vendor dependency: a domain registrar redirect may depend on third-party cloud infrastructure.
- Operational confusion: server fixes on the intended VPS have no effect when DNS points elsewhere.
- Email separation: MX records should be checked independently from web hosting records.
4. Recommended Fixes
Immediate
- Disable GoDaddy forwarding for 909capital.com.
- Set A records for
@andwwwto178.104.165.37. - Verify with
dig +short 909capital.comandcurl -I https://909capital.com.
30-Day Cleanup
- Document registrar, DNS, mail, hosting, SSL, and backup providers.
- Remove stale records and old vendor dependencies.
- Enable DNS change monitoring.
Ongoing Monitoring
- Alert on A/MX/NS/TXT record changes.
- Alert on SSL expiration.
- Generate monthly executive infrastructure reports.
5. Technical Evidence
dig NS 909capital.com +short ns05.domaincontrol.com. ns06.domaincontrol.com. dig A 909capital.com +short 15.197.225.128 3.33.251.168 dig A www.909capital.com +short 909capital.com. 3.33.251.168 15.197.225.128 dig MX 909capital.com +short 10 chocobo.mxrouting.net. 20 chocobo-relay.mxrouting.net.
6. Audit Commands
DOMAIN=909capital.com dig NS $DOMAIN +short dig SOA $DOMAIN +short dig A $DOMAIN +short dig A www.$DOMAIN +short dig CNAME www.$DOMAIN +short dig MX $DOMAIN +short dig TXT $DOMAIN +short dig +trace $DOMAIN curl -IkL https://$DOMAIN dig -x 15.197.225.128 +short dig -x 3.33.251.168 +short
Cloud909 turns invisible infrastructure into readable business intelligence.