DNS & HTTP Analysis for tawk.to

Details
Category: Tool Processing Reports

Processing Domain tawk.to on 02/04/2019 14:33:03


  • This tool is available free to use at GENSupport
  • Help and Support for your DNS or HTTP issues available on our Forum
  • Whenever you see a clicking on it will take you to more help
  • The version of the data model that was used in this report is 1.007
  • The version that produced this report is 1.019b

Processing DNS Records

Basic Checks

Here we check the basic functioning and security of your DNS

  • Zone Queries 6 Record Types and 20 Records Found
  • Zone Transfer Failed
  • Zone Dump
    • TXT
      • tawk.to. TTL 120 "google-site-verification=xfxcBNycIC4X65bnF6gQAEui_JhaWq7QxiM2Jzmj17k"
      • tawk.to. TTL 120 "v=spf1 include:_spf.google.com include:amazonses.com include:smtp1.uservoice.com include:mta.tawk.to include:deliver.tawk.to -all"
    • A
      • tawk.to. TTL 300 104.17.102.89
      • tawk.to. TTL 300 104.17.103.89
      • tawk.to. TTL 300 104.17.104.89
      • tawk.to. TTL 300 104.17.105.89
      • tawk.to. TTL 300 104.17.106.89
    • AAAA
      • tawk.to. TTL 300 2606:4700:0:0:0:0:6811:6659
      • tawk.to. TTL 300 2606:4700:0:0:0:0:6811:6759
      • tawk.to. TTL 300 2606:4700:0:0:0:0:6811:6859
      • tawk.to. TTL 300 2606:4700:0:0:0:0:6811:6959
      • tawk.to. TTL 300 2606:4700:0:0:0:0:6811:6a59
    • MX
      • tawk.to. TTL 300 1 aspmx.l.google.com.
      • tawk.to. TTL 300 10 aspmx2.googlemail.com.
      • tawk.to. TTL 300 10 aspmx3.googlemail.com.
      • tawk.to. TTL 300 5 alt1.aspmx.l.google.com.
      • tawk.to. TTL 300 5 alt2.aspmx.l.google.com.
    • SOA
      • tawk.to. TTL 3600 amy.ns.cloudflare.com. dns.cloudflare.com. 2030490734 10000 2400 604800 3600
    • NS
      • tawk.to. TTL 86400 amy.ns.cloudflare.com.
      • tawk.to. TTL 86400 seth.ns.cloudflare.com.

Nameservers

Here we check the setup of your nameservers. All nameservers on your domain should be listed in the zone and returned in an ANY query along with corresponding A and/or AAAA records resolving their address.

  • amy.ns.cloudflare.com 173.245.58.101 Found and Match. (Missing from Zone Address Records )
  • amy.ns.cloudflare.com Found and Match. (Missing from Zone Address Records )
  • seth.ns.cloudflare.com 173.245.59.142 Found and Match. (Missing from Zone Address Records )
  • seth.ns.cloudflare.com Found and Match. (Missing from Zone Address Records )
  • All Name Servers SHOULD BE on Different Subnets

Processing 2 TXT Records

Google Domain Verification Record

This record is used by Google to validate domain ownership when setting up Google Analytics etc

  • google-site-verification=xfxcbnycic4x65bnf6gqaeui_jhawq7qxim2jzmj17k

SPF Record:

The SPF Record defines which IP addresses are permitted to send email on this domain's behalf

  • v=spf1 (The SPF Format Version Number)
  • include:_spf.google.com (An Include - Additional look-ups required, some server's won't bother.)
  • include:amazonses.com (An Include - Additional look-ups required, some server's won't bother.)
  • include:smtp1.uservoice.com (An Include - Additional look-ups required, some server's won't bother.)
  • include:mta.tawk.to (An Include - Additional look-ups required, some server's won't bother.)
  • include:deliver.tawk.to (An Include - Additional look-ups required, some server's won't bother.)
  • -all (Permit ONLY the hosts listed)

Processing 5 MX (Mail Exchanger) Records

These Records determine the servers (mail servers) responsible for handling your incomming email. Each service is given a priority and they will be used in that order. If all the priorities are the same then they will be used in a round-robin fashion

  • Priority 1 handled by host aspmx.l.google.com. [74.125.133.26] Valid
    • Email Handled By Google Corporation
    • Port 25 (smtp) : Open
  • Priority 10 handled by host aspmx2.googlemail.com. [74.125.205.27] Valid
    • Email Handled By Google Corporation
    • Port 25 (smtp) : Open
  • Priority 10 handled by host aspmx3.googlemail.com. [74.125.68.27] Valid
    • Email Handled By Google Corporation
    • Port 25 (smtp) : Open
  • Priority 5 handled by host alt1.aspmx.l.google.com. [74.125.205.26] Valid
    • Email Handled By Google Corporation
    • Port 25 (smtp) : Open
  • Priority 5 handled by host alt2.aspmx.l.google.com. [74.125.68.26] Valid
    • Email Handled By Google Corporation
    • Port 25 (smtp) : Open

Processing 0 CNAME (Alias) Records

These records are aliases making one hostname relate to another. These are often used to match hosts back to clusters or internal referencs that may change.

    Processing 5 A (IPv4 Address) Records

    These records define the IP Addresse(s) of the servers responsible for hosting your webiste and other resouces on your domain. The www record is the most common one and will be used to identify your website address

    • Host: tawk.to. = IP: [104.17.102.89] Valid Reachable (15.114ms)
    • Host: tawk.to. = IP: [104.17.103.89] Valid Reachable (15.497ms)
    • Host: tawk.to. = IP: [104.17.104.89] Valid Reachable (15.243ms)
    • Host: tawk.to. = IP: [104.17.105.89] Valid Reachable (15.346ms)
    • Host: tawk.to. = IP: [104.17.106.89] Valid Reachable (15.855ms)

    Processing AAAA (IPv6 Address) Records

    These records define the IP Addresse(s) of the servers responsible for hosting your webiste and other resouces on your domain

    • Host: tawk.to. = IP: [2606:4700:0:0:0:0:6811:6659] Valid
    • Host: tawk.to. = IP: [2606:4700:0:0:0:0:6811:6759] Valid
    • Host: tawk.to. = IP: [2606:4700:0:0:0:0:6811:6859] Valid
    • Host: tawk.to. = IP: [2606:4700:0:0:0:0:6811:6959] Valid
    • Host: tawk.to. = IP: [2606:4700:0:0:0:0:6811:6a59] Valid

    Processing Domain Public Records

    • We have been unable to find the website IP from the zone
    • Performed an additional out-of-zone lookup to find website host [104.17.105.89]

      • Domain Name WHOIS Information - tawk.to

      • Unable to open socket

      Website Hosting WHOIS Information - 104.17.105.89

      • NetRange 104.16.0.0 - 104.31.255.255
      • CIDR 104.16.0.0/12
      • NetHandle NET-104-16-0-0-1
      • Parent NET104 (NET-104-0-0-0-0)
      • NetType Direct Assignment
      • OriginAS AS13335
      • Organization Cloudflare, Inc. (CLOUD14)
      • RegDate 2014-03-28
      • Updated 2017-02-17
      • Ref: https://rdap.arin.net/registry/ip/104.16.0.0
      • OrgName Cloudflare, Inc.
      • OrgId CLOUD14
      • Address 101 Townsend Street
      • City San Francisco
      • StateProv CA
      • PostalCode 94107
      • Country US
      • RegDate 2010-07-09
      • Updated 2018-10-10
      • Ref: https://rdap.arin.net/registry/entity/CLOUD14
      • OrgNOCHandle NOC11962-ARIN
      • OrgNOCName NOC
      • OrgNOCPhone +1-650-319-8930
      • OrgNOCEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
      • OrgNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
      • OrgTechHandle ADMIN2521-ARIN
      • OrgTechName Admin
      • OrgTechPhone +1-650-319-8930
      • OrgTechEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
      • OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
      • OrgAbuseHandle ABUSE2916-ARIN
      • OrgAbuseName Abuse
      • OrgAbusePhone +1-650-319-8930
      • OrgAbuseEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
      • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
      • RNOCHandle NOC11962-ARIN
      • RNOCName NOC
      • RNOCPhone +1-650-319-8930
      • RNOCEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
      • RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
      • RAbuseHandle ABUSE2916-ARIN
      • RAbuseName Abuse
      • RAbusePhone +1-650-319-8930
      • RAbuseEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
      • RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
      • RTechHandle ADMIN2521-ARIN
      • RTechName Admin
      • RTechPhone +1-650-319-8930
      • RTechEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
      • RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

    Processing Website

      Website Headers for www.tawk.to

      We will obtain the headers from your website and parse them for validity

      • Web Server is cloudflare
      • Server header does not contain version information
      • Request Response HTTP/1.1 200 OK OK
      • SSL is available and enabled
        • Certificate Name /OU=Domain Control Validated/OU=PositiveSSL Multi-Domain/CN=ssl765174.cloudflaressl.com
          • Certificate Issued To
          • Country
          • City
          • Locality
          • Organisation
          • Certificate Scope ssl765174.cloudflaressl.com
          Certificate Issuer
          • Country GB
          • Organisation COMODO CA Limited
          • Certificate Scope COMODO ECC Domain Validation Secure Server CA 2
          Certificate Validity
          • Valid From 190118000000Z
          • Valid To 190727235959Z
          Certificate Ciphers
          • SN ecdsa-with-SHA256
          • LN ecdsa-with-SHA256
          Certificate Extensions
          • Alternative Hostnames DNS:ssl765174.cloudflaressl.com, DNS:*.tawk.to, DNS:tawk.to
          • Key Usage TLS Web Server Authentication, TLS Web Client Authentication
      • There was a redirect to https://www.tawk.to/

        • General

        • allow Valid methods for a specified resource after a 405 : Missing
        • location For Redirects specifies the target : Missing
        • connection Control options for the current connection [keep-alive]
        • x-powered-by Specifies Technology in use - Security Risk : Missing
        • x-aspnet-version Specifies the ASP.net version - Security Risk : Missing
        • accept-ranges To advertise its support of partial requests : Missing
        • link Used to express typed relationship with another resource : Missing

        Security

        • referrer-policy Modifies the algorithm used to populate the Referer Header : Missing
        • x-xss-protection Prevents pages loading when XSS is detected : Missing
        • feature-policy Allow or Deny the use of browser features : Missing
        • p3p Platform for Privacy Preferences : Missing
        • content-security-policy CSP Content Security Policy : Missing
        • x-frame-options Can we open this response in an iframe : Missing

        Cross Origin

        • access-control-allow-origin Can we share the response with the given origin : Missing
        • access-control-allow-credentials Tells Browsers whether to expose the response to frontend JavaScript : Missing
        • access-control-expose-headers Indicates which headers can be exposed as part of the Response : Missing
        • access-control-max-age Indicates how long the results of a preflight request can be stored : Missing
        • access-control-allow-methods Methods allowed when accessing the resource in response to a preflight request : Missing
        • access-control-allow-headers Indicates which headers can be used during the actual request : Missing

        Content

        • content-language The natural language or languages of the intended audience : Missing
        • transfer-encoding The form of encoding used : Missing
        • content-length The length of the response body : Missing
        • content-type The Media type of the Response Body [text/html; charset=UTF-8]
        • date The date and time of generation [Tue, 02 Apr 2019 14:30:25 GMT]
        • content-disposition An opportunity to raise a File Download dialogue box : Missing
        • content-encoding The type of encoding/compression used on the Response : Missing
        • content-location An alternate location for the returned data : Missing
        • content-range Where in a full body message this partial message belongs : Missing
        • etag An identifier for a specific version of a resource : Missing
        • vary how to match future request headers [Accept-Encoding, Cookie]
        • x-content-type-options Types in Content-Type should NOT be changed [nosniff]

        Cache

        • cache-control Tells caches whether they may cache this object [max-age=3, must-revalidate]
        • expires Gives the date/time after which the response is considered stale : Missing
        • last-modified The last modified date for the requested object : Missing
        • pragma Implementation-specific fields for caching : Missing
        • x-cache-action From an Intermediate cache : Missing
        • x-cache-hits Intermediate Cache Hits count : Missing
        • x-cache-age Intermediate Cache Content Age : Missing
        • via Informs the client of proxies through which the response was sent : Missing
        • age The Age this page has been cached in a proxy : Missing
        • x-served-by The Cache that served this response : Missing
        • x-cache Indicates if the cache served cached content : Missing
        • x-via-fastly Specific headers from Fastly : Missing

        Strict Transport Security (HSTS) Policy

        • strict-transport-security A HSTS Policy for the client with scope [max-age=0; includeSubDomains; preload]

        Cookies and Fragments

        • set-cookie Cookie Data to store locally [__cfduid=d203bee8a48be7885b3832b6a596ad8fb1554215425; expires=Wed, 01-Apr-20 14:30:25 GMT; path=/; domain=.tawk.to; HttpOnly]

        Other

        • x-backend-server Identifies the backend server providing this response : Missing
        • x-robots-tag Search engine Robot Directive : Missing
        • gen Used by some of the GEN Tools to verify zone ownership : Missing
        • cf-cache-status Cloudflare Specific Header indicating cache status for this response : Missing
        • x-aspnetmvc-version ASP MVC Version Number - Security Risk : Missing

        Not Profiled

        • expect-ct [max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"]
        • cf-ray [4c1380266c57bc50-LHR]

      Robots.txt

      • You do not appear to have a robots.txt file. This is ok

    Processing Website Profile Data

      Website Render for www.tawk.to

      Technology Profile tawk.to

      We will check for fingerprints of common website technologies

        • Name : WordPress
        • Confidence : high
        • Version : 5.1.1

      MOZ Rank Profile https://www.tawk.to/

      We will retrieve your Ranking Profile from Moz.com

      • 19517 The number of external, equity links
      • 27186 The number of internal and external equity and non-equity links
      • 61 The Domain Authority (DA) ( 0->100 )
      • 60 The Page Authority (PA) ( 0->100 )
      • 6 The MozRank of the Domain ( 0->10 )

      Alexa Rank Profile https://www.tawk.to/

      We will retrieve your Ranking Profile from Alexa.com

      • 690 The number of external in links
      • 2198 Your Alexa Rank

      Meta Profile https://www.tawk.to/

      We will check the entire body for metadata

      • viewport : width=device-width, initial-scale=1, maximum-scale=1
      • description : tawk.to is a free live chat app that lets you monitor and chat with visitors on your website or from a free customizable page
      • generator : WPML ver:4.0.4 stt:1,46;
      • twitter:title : tawk.to - "The 100% FREE live chat application for your website!"
      • twitter:url : https://www.tawk.to
      • twitter:description : tawk.to is a free live chat app that lets you monitor and chat with visitors on your website or from a free customizable page
      • twitter:image : https://www.tawk.to/wp-content/uploads/2018/06/feature-image-blog.jpg
      • twitter:card : summary_large_image
      • theme-color : #03a84e

    Processing Completed

    • Performance Profile
      • DNS Lookups : 0.31 seconds
      • DNS Folding/Unfolding : 0.00 seconds
      • DNS Nameserver Checks : 0.00 seconds
      • DNS TXT Records : 0.00 seconds
      • DNS MX Records : 0.76 seconds
      • DNS CNAME : 0.00 seconds
      • DNS Address : 0.14 seconds
      • WHOIS Lookups : 60.35 seconds
      • First CURL : 0.26 seconds
      • Second CURL : 0.71 seconds
      • SSL Lookup : 0.36 seconds
      • Header Parsing : 0.00 seconds
      • Robots.txt Parsing : 0.59 seconds
      • Website Profile : 8.66 seconds
      • Website MozData : 0.30 seconds
      • Website Alexa : 0.78 seconds
      • Website META : 0.66 seconds

    The process is now completed and the results are shown above. Please take a moment to consider each test and its response. DNS, SMTP and HTTP are not simple protocols and it is way beyond the scope of this tool to suggest improvements, but you are welcome to request assistance via our Forum.