Cyber Defense Search Engine

IP
69.49.232.60

Alternative IP(s)
104.17.82.10 104.17.83.10 2606:4700:0:0:0:0:6811:520a 2606:4700:0:0:0:0:6811:530a

Network
69.49.232.0/23

Domain(s)
hostgator.in unifiedlayer.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
69-49-232-60.unifiedlayer.com

ASN
AS46606

Organization
UNIFIEDLAYER-AS-1

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.96.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
*.hostgator.in

Subject Alt Name
*.hostgator.in hostgator.in

SHA256 Fingerprint
50eeddb66ffb2c02531da05dc8b44a603990e7b0a5da5554408ed8fec1a451ac

Validity Not Before
2024-04-11T00:00:00Z

Validity Not After
2025-04-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
65618b916e30612ae16e306afea2e370

220-sh014.hostgator.in ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 14:15:12 +0530 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-sh014.hostgator.in Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:23.000Z",
   "alternativeip" : [
      "104.17.82.10",
      "104.17.83.10",
      "2606:4700:0:0:0:0:6811:520a",
      "2606:4700:0:0:0:0:6811:530a"
   ],
   "app" : {
      "length" : 357
   },
   "asn" : "AS46606",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-sh014.hostgator.in ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 14:15:12 +0530 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-sh014.hostgator.in Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-AUTH PLAIN LOGIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "65618b916e30612ae16e306afea2e370",
   "datammh3" : 1111686364,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hostgator.in",
      "unifiedlayer.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "3adc92ab4697d361557a8d92dfcf5d58",
      "sha1" : "9370dac3acb208ec8df56254f0da73e6686a4f4a",
      "sha256" : "50eeddb66ffb2c02531da05dc8b44a603990e7b0a5da5554408ed8fec1a451ac"
   },
   "geolocus" : {
      "asn" : "AS46606",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "endurance.com",
         "unifiedlayer.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "OPENTRANSFER-ECOMMERCE",
      "organization" : "Newfold Digital, Inc.",
      "subnet" : "69.49.232.0/23"
   },
   "host" : [
      "69-49-232-60"
   ],
   "hostname" : [
      "69-49-232-60.unifiedlayer.com",
      "hostgator.in"
   ],
   "ip" : "69.49.232.60",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "UNIFIEDLAYER-AS-1",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.96.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "69-49-232-60.unifiedlayer.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "3a:ed:d2:5d:09:16:74:b8:eb:58:1f:f5:bc:56:bf:01",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "*.hostgator.in",
         "hostgator.in"
      ],
      "commonname" : "*.hostgator.in"
   },
   "subnet" : "69.49.232.0/23",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "in"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-04-11T23:59:59Z",
      "notbefore" : "2024-04-11T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
91.208.221.30

Alternative IP(s)
2001:67c:12b0:0:0:0:0:8 91.208.221.8

Network
91.208.221.0/24

Domain(s)
inviso.se

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
mail30.inviso.se

ASN
AS29468

Organization
InfraCom Managed Services AB

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Microsoft Windows
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
*.inviso.se

Subject Alt Name
*.inviso.se inviso.se

SHA256 Fingerprint
ae278fcc16ee3b2e7ee5f197bea61080bf2cd873a7e992d9da0628b8abe06097

Validity Not Before
2024-05-15T00:00:00Z

Validity Not After
2025-06-15T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
47617f67bd87db37bc0287df0f48dcf2

220 mail30.inviso.se inviso.se webbhotell, all actions is logged.
250-mail30.inviso.se
250-SIZE 204800000
250-STARTTLS
250-AUTH LOGIN PLAIN
250 HELP
220 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "alternativeip" : [
      "2001:67c:12b0:0:0:0:0:8",
      "91.208.221.8"
   ],
   "app" : {
      "length" : 177
   },
   "asn" : "AS29468",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Gothenburg",
   "country" : "SE",
   "data" : "220 mail30.inviso.se inviso.se webbhotell, all actions is logged.\r\n250-mail30.inviso.se\r\n250-SIZE 204800000\r\n250-STARTTLS\r\n250-AUTH LOGIN PLAIN\r\n250 HELP\r\n220 Ready to start TLS",
   "datamd5" : "47617f67bd87db37bc0287df0f48dcf2",
   "datammh3" : -1475481747,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "inviso.se"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "6795e83ef2f9091511260fece5dcf1b7",
      "sha1" : "46835dd9a526c1e897f687d0e0ae6c2c7f6f5e96",
      "sha256" : "ae278fcc16ee3b2e7ee5f197bea61080bf2cd873a7e992d9da0628b8abe06097"
   },
   "host" : [
      "mail30"
   ],
   "hostname" : [
      "inviso.se",
      "mail30.inviso.se"
   ],
   "ip" : "91.208.221.30",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "57.7065",
   "location" : "57.7065,11.9670",
   "longitude" : "11.9670",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "InfraCom Managed Services AB",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 25,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "mail30.inviso.se"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "d3:ea:44:63:28:47:23:fa:17:b3:e9:45:7d:39:90:cd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "*.inviso.se",
         "inviso.se"
      ],
      "commonname" : "*.inviso.se"
   },
   "subnet" : "91.208.221.0/24",
   "tld" : [
      "se"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-06-15T23:59:59Z",
      "notbefore" : "2024-05-15T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
136.233.227.164

Network
136.232.0.0/15

Device

<enterprise field>: device.class <enterprise field>: device.productvendor <enterprise field>: device.product

Operating System
Linux Linux Kernel

ASN
AS55836

Organization
Reliance Jio Infocomm Limited

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Sophos Email Appliance

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sophos SSL CA_fxeXPdFETOmQMlZ

Issuer Organization
Sophos

Subject Organization
Sophos

Subject Email
support@sophos.com

Subject Common Name
Sophos SSL CA_fxeXPdFETOmQMlZ

SHA256 Fingerprint
e25773b45cc013726ff7a22b2861c022817f538d6e9f68a4b2e28bbc80b831b2

Validity Not Before
2015-08-01T00:00:00Z

Validity Not After
2036-12-31T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
dc114677ca5d6262f2c290819c47450f

220 Sophos ESMTP ready
250-Sophos Hello <hostname> [<srcip>]
250-SIZE
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-CHUNKING
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "app" : {
      "length" : 175
   },
   "asn" : "AS55836",
   "ca" : "true",
   "country" : "IN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 Sophos ESMTP ready\r\n250-Sophos Hello <hostname> [<srcip>]\r\n250-SIZE\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-CHUNKING\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "dc114677ca5d6262f2c290819c47450f",
   "datammh3" : 513102557,
   "device" : {
      "class" : "<enterprise field>: device.class",
      "product" : "<enterprise field>: device.product",
      "productvendor" : "<enterprise field>: device.productvendor"
   },
   "fingerprint" : {
      "md5" : "39508e8c5273c0c2b800e636765be52a",
      "sha1" : "55a579d7621123db3c2ec7f1283022589dd36789",
      "sha256" : "e25773b45cc013726ff7a22b2861c022817f538d6e9f68a4b2e28bbc80b831b2"
   },
   "geolocus" : {
      "asn" : "AS55836",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "IN",
      "countryname" : "India",
      "domain" : [
         "ril.com"
      ],
      "isineu" : "false",
      "latitude" : "20.593684",
      "location" : "20.593684,78.96288",
      "longitude" : "78.96288",
      "netname" : "RELIANCEJIO-IN",
      "organization" : "Reliance Jio Infocomm Limited",
      "subnet" : "136.232.0.0/15"
   },
   "ip" : "136.233.227.164",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "Sophos SSL CA_fxeXPdFETOmQMlZ",
      "country" : "GB",
      "email" : "support@sophos.com",
      "organization" : "Sophos",
      "organizationalunit" : "NSG"
   },
   "latitude" : "21.9974",
   "location" : "21.9974,79.0011",
   "longitude" : "79.0011",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Reliance Jio Infocomm Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Email Appliance",
   "productvendor" : "Sophos",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-11-21",
   "serial" : 1,
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "commonname" : "Sophos SSL CA_fxeXPdFETOmQMlZ",
      "country" : "GB",
      "email" : "support@sophos.com",
      "organization" : "Sophos",
      "organizationalunit" : "NSG"
   },
   "subnet" : "136.232.0.0/15",
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2036-12-31T23:59:59Z",
      "notbefore" : "2015-08-01T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
176.9.226.145

Network
176.9.0.0/16

Domain(s)
amette.eu mocube.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
sisu.mocube.net

ASN
AS24940

Organization
Hetzner Online GmbH

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Postfix Postfix

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R10

Issuer Organization
Let's Encrypt

Subject Common Name
mail.amette.eu

Subject Alt Name
hubzilla.amette.eu mail.amette.eu syncthing.amette.eu

SHA256 Fingerprint
b4a7231b7c36fef6c5ea4f614c4a1d87f6d59c20d118c064008d5dbef34007ba

Validity Not Before
2024-09-24T21:04:58Z

Validity Not After
2024-12-23T21:04:57Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
59feabc0e544c67ef462338f29baf780

220 sisu.mocube.net ESMTP Postfix
250-sisu.mocube.net
250-PIPELINING
250-SIZE 99999999
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
220 2.0.0 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "app" : {
      "length" : 201
   },
   "asn" : "AS24940",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Falkenstein",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 sisu.mocube.net ESMTP Postfix\r\n250-sisu.mocube.net\r\n250-PIPELINING\r\n250-SIZE 99999999\r\n250-VRFY\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250 DSN\r\n220 2.0.0 Ready to start TLS",
   "datamd5" : "59feabc0e544c67ef462338f29baf780",
   "datammh3" : 1184062401,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amette.eu",
      "mocube.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "bc03e27374b68aeee0f538a98dcab38a",
      "sha1" : "b91f34f06dc491865134da6417b8206e4c2db366",
      "sha256" : "b4a7231b7c36fef6c5ea4f614c4a1d87f6d59c20d118c064008d5dbef34007ba"
   },
   "host" : [
      "hubzilla",
      "mail",
      "sisu",
      "syncthing"
   ],
   "hostname" : [
      "hubzilla.amette.eu",
      "mail.amette.eu",
      "sisu.mocube.net",
      "syncthing.amette.eu"
   ],
   "ip" : "176.9.226.145",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R10",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "50.4777",
   "location" : "50.4777,12.3649",
   "longitude" : "12.3649",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hetzner Online GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Postfix",
   "productvendor" : "Postfix",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "sisu.mocube.net"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:c4:08:eb:1d:64:42:f5:56:4b:fb:62:14:9a:f9:61:09:36",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "hubzilla.amette.eu",
         "mail.amette.eu",
         "syncthing.amette.eu"
      ],
      "commonname" : "mail.amette.eu"
   },
   "subnet" : "176.9.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "eu",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-12-23T21:04:57Z",
      "notbefore" : "2024-09-24T21:04:58Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
216.38.6.30

Alternative IP(s)
216.38.6.5

Network
216.38.0.0/19

Domain(s)
secure-host.com servernap.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ip-216.38.6.30.servernap.net

ASN
AS32181

Organization
ASN-GIGENET

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
RapidSSL TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Common Name
blue.secure-host.com

Subject Alt Name
blue.secure-host.com www.blue.secure-host.com

SHA256 Fingerprint
8fe435249f5944d6401b76f0330da4078e39a6a37d1262b106b5ab96d6bb28f0

Validity Not Before
2024-05-08T00:00:00Z

Validity Not After
2025-05-13T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c01e0f23a71e768006c10e3cf2f32ef

220 blue6.serverhost.net ESMTP Sendmail; Thu, 21 Nov 2024 03:45:07 -0500
250-blue6.serverhost.net Hello <hostname> [<srcip>], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE 35000000
250-DSN
250-ETRN
250-AUTH LOGIN PLAIN
250-STARTTLS
250-DELIVERBY
250 HELP
220 2.0.0 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "alternativeip" : [
      "216.38.6.5"
   ],
   "app" : {
      "length" : 330
   },
   "asn" : "AS32181",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "data" : "220 blue6.serverhost.net ESMTP Sendmail; Thu, 21 Nov 2024 03:45:07 -0500\r\n250-blue6.serverhost.net Hello <hostname> [<srcip>], pleased to meet you\r\n250-ENHANCEDSTATUSCODES\r\n250-PIPELINING\r\n250-8BITMIME\r\n250-SIZE 35000000\r\n250-DSN\r\n250-ETRN\r\n250-AUTH LOGIN PLAIN\r\n250-STARTTLS\r\n250-DELIVERBY\r\n250 HELP\r\n220 2.0.0 Ready to start TLS",
   "datamd5" : "0c01e0f23a71e768006c10e3cf2f32ef",
   "datammh3" : -218346644,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "secure-host.com",
      "servernap.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "ac30f8edc35da1cd737b0867a828cc33",
      "sha1" : "d64609d3a52b76b65c31e977a2ca4e5b73e991a3",
      "sha256" : "8fe435249f5944d6401b76f0330da4078e39a6a37d1262b106b5ab96d6bb28f0"
   },
   "geolocus" : {
      "asn" : "AS32181",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "coloquest.com",
         "gigenet.com",
         "servernap.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GIGE",
      "organization" : "GigeNET",
      "subnet" : "216.38.0.0/19"
   },
   "host" : [
      "blue",
      "ip-216",
      "www"
   ],
   "hostname" : [
      "blue.secure-host.com",
      "ip-216.38.6.30.servernap.net",
      "www.blue.secure-host.com"
   ],
   "ip" : "216.38.6.30",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "RapidSSL TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ASN-GIGENET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ip-216.38.6.30.servernap.net"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "05:4c:94:08:1a:38:7c:02:b2:6d:25:f6:1e:1a:49:7b",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "30.servernap.net",
      "38.6.30.servernap.net",
      "6.30.servernap.net",
      "blue.secure-host.com"
   ],
   "subject" : {
      "altname" : [
         "blue.secure-host.com",
         "www.blue.secure-host.com"
      ],
      "commonname" : "blue.secure-host.com"
   },
   "subnet" : "216.38.0.0/19",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-05-13T23:59:59Z",
      "notbefore" : "2024-05-08T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
62.210.123.60

Network
62.210.64.0/18

Domain(s)
kita-domino.de

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS12876

Organization
Scaleway S.a.s.

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
R10

Issuer Organization
Let's Encrypt

Subject Common Name
mail.kita-domino.de

Subject Alt Name
mail.kita-domino.de

SHA256 Fingerprint
c679b0910e582fc944d31d5e9051dcbc3901c51340069fb6da43bcb7d9978548

Validity Not Before
2024-10-18T06:29:25Z

Validity Not After
2025-01-16T06:29:24Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2c8fc00bcd4d5143fcf835325b7da9ec

220 mail.kita-domino.de ESMTP ready
250-mail.kita-domino.de
250-PIPELINING
250-SIZE 50000000
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250 STARTTLS
220 2.0.0 Start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "app" : {
      "length" : 188
   },
   "asn" : "AS12876",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Villeneuve-le-Roi",
   "country" : "FR",
   "data" : "220 mail.kita-domino.de ESMTP ready\r\n250-mail.kita-domino.de\r\n250-PIPELINING\r\n250-SIZE 50000000\r\n250-ETRN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 STARTTLS\r\n220 2.0.0 Start TLS",
   "datamd5" : "2c8fc00bcd4d5143fcf835325b7da9ec",
   "datammh3" : 517442477,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "kita-domino.de"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "7ef3225f00dac64ab4abc0456ecdc3f0",
      "sha1" : "7659a7c77d963b325ef9d15bedb3fa28642e38e2",
      "sha256" : "c679b0910e582fc944d31d5e9051dcbc3901c51340069fb6da43bcb7d9978548"
   },
   "geolocus" : {
      "asn" : "AS12876",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "FR",
      "countryname" : "France",
      "domain" : [
         "online.net",
         "poneytelecom.eu"
      ],
      "isineu" : "true",
      "latitude" : "46.227638",
      "location" : "46.227638,2.213749",
      "longitude" : "2.213749",
      "netname" : "SCALEWAY-DEDIBOX",
      "organization" : "Scaleway",
      "subnet" : "62.210.112.0/20"
   },
   "host" : [
      "mail"
   ],
   "hostname" : [
      "mail.kita-domino.de"
   ],
   "ip" : "62.210.123.60",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R10",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "48.7368",
   "location" : "48.7368,2.4008",
   "longitude" : "2.4008",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Scaleway S.a.s.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 4096
   },
   "seen_date" : "2024-11-21",
   "serial" : "04:e9:2d:d7:3f:de:73:8f:2c:fe:b2:99:75:c5:b8:25:37:8a",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "mail.kita-domino.de"
      ],
      "commonname" : "mail.kita-domino.de"
   },
   "subnet" : "62.210.64.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "de"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-16T06:29:24Z",
      "notbefore" : "2024-10-18T06:29:25Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
69.42.218.119

Alternative IP(s)
2607:f5a0:0:7:0:0:0:2 69.42.218.103

Network
69.42.216.0/22

Domain(s)
nbtnetworks.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS33333

Organization
OBJX

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Postfix Postfix

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
nbtnetworks.net

Subject Alt Name
nbtnetworks.net www.nbtnetworks.net

SHA256 Fingerprint
7bfeb7f3f86552a2b2501f6ae09b119e1ef990e1ee85f417dc23f56364bd204c

Validity Not Before
2024-09-26T22:53:40Z

Validity Not After
2024-12-25T22:53:39Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
aeb6b6b38764d40467194eeaae15e881

220 transa.nbtnetworks.net ESMTP Postfix
250-transa.nbtnetworks.net
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250 CHUNKING
220 2.0.0 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "alternativeip" : [
      "2607:f5a0:0:7:0:0:0:2",
      "69.42.218.103"
   ],
   "app" : {
      "length" : 219
   },
   "asn" : "AS33333",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 transa.nbtnetworks.net ESMTP Postfix\r\n250-transa.nbtnetworks.net\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 CHUNKING\r\n220 2.0.0 Ready to start TLS",
   "datamd5" : "aeb6b6b38764d40467194eeaae15e881",
   "datammh3" : 768037103,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "nbtnetworks.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "80ef3ccf937a084f871157a63077c517",
      "sha1" : "a8842878e81cdbda574554af283b3bdf7f55301b",
      "sha256" : "7bfeb7f3f86552a2b2501f6ae09b119e1ef990e1ee85f417dc23f56364bd204c"
   },
   "geolocus" : {
      "asn" : "AS17048",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "awknet.com",
         "objx.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AWKNET",
      "organization" : "Awknet Communications, LLC",
      "subnet" : "69.42.216.0/22"
   },
   "host" : [
      "www"
   ],
   "hostname" : [
      "nbtnetworks.net",
      "www.nbtnetworks.net"
   ],
   "ip" : "69.42.218.119",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OBJX",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Postfix",
   "productvendor" : "Postfix",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-11-21",
   "serial" : "03:37:32:dc:ef:17:71:cd:c5:ae:e3:e6:ab:60:91:5c:b9:29",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "nbtnetworks.net",
         "www.nbtnetworks.net"
      ],
      "commonname" : "nbtnetworks.net"
   },
   "subnet" : "69.42.216.0/22",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-12-25T22:53:39Z",
      "notbefore" : "2024-09-26T22:53:40Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
12.163.141.227

Alternative IP(s)
12.193.120.201

Network
12.163.128.0/17

Domain(s)
beipssc.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS7018

Organization
ATT-INTERNET4

Protocol
smtp Cert expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Postfix Postfix

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R10

Issuer Organization
Let's Encrypt

Subject Common Name
mail.beipssc.com

Subject Alt Name
mail.beipssc.com

SHA256 Fingerprint
f8a1da612b2e13ce5895c76254ff88db506c69f59af7e0d867a67edc9026cf57

Validity Not Before
2024-08-02T12:31:12Z

Validity Not After
2024-10-31T12:31:11Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e4630514a842c82c3e8b918a01cc0f89

220 mail.beipssc.com ESMTP Postfix
250-mail.beipssc.com
250-PIPELINING
250-SIZE 10485760
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-SMTPUTF8
250 CHUNKING
220 2.0.0 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "alternativeip" : [
      "12.193.120.201"
   ],
   "app" : {
      "length" : 221
   },
   "asn" : "AS7018",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 mail.beipssc.com ESMTP Postfix\r\n250-mail.beipssc.com\r\n250-PIPELINING\r\n250-SIZE 10485760\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250-SMTPUTF8\r\n250 CHUNKING\r\n220 2.0.0 Ready to start TLS",
   "datamd5" : "e4630514a842c82c3e8b918a01cc0f89",
   "datammh3" : -1040115561,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "beipssc.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "25d13b462b4e93debc32e71038e4ba19",
      "sha1" : "d20fcae72c6771879aed6dd7da4c07c77b9b197a",
      "sha256" : "f8a1da612b2e13ce5895c76254ff88db506c69f59af7e0d867a67edc9026cf57"
   },
   "geolocus" : {
      "asn" : "AS7018",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "att.com",
         "att.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "ATTWORLD-MIS-163-128",
      "organization" : "AT&T Services, Inc.",
      "subnet" : "12.163.128.0/17"
   },
   "host" : [
      "mail"
   ],
   "hostname" : [
      "mail.beipssc.com"
   ],
   "ip" : "12.163.141.227",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R10",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "34.7448",
   "location" : "34.7448,-92.2883",
   "longitude" : "-92.2883",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ATT-INTERNET4",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Postfix",
   "productvendor" : "Postfix",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-11-21",
   "serial" : "03:21:30:33:e6:da:ff:28:f5:38:87:fc:65:ae:b1:8e:10:f2",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "mail.beipssc.com"
      ],
      "commonname" : "mail.beipssc.com"
   },
   "subnet" : "12.163.128.0/17",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-10-31T12:31:11Z",
      "notbefore" : "2024-08-02T12:31:12Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
217.182.173.22

Alternative IP(s)
2001:41d0:203:916:0:0:0:0

Network
217.182.0.0/16

Domain(s)
gugocreative.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ps01.infra.gugocreative.com

ASN
AS16276

Organization
OVH SAS

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Postfix Postfix

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R10

Issuer Organization
Let's Encrypt

Subject Common Name
ps01.infra.gugocreative.com

Subject Alt Name
ps01.infra.gugocreative.com

SHA256 Fingerprint
4e6b78f191222d90fceb8991617de037b05c513279570740246d34865a9739ce

Validity Not Before
2024-11-14T05:40:44Z

Validity Not After
2025-02-12T05:40:43Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
bb733f29a67746aa4759e24dd755c0dd

220 ps01.infra.gugocreative.com ESMTP Postfix
250-ps01.infra.gugocreative.com
250-PIPELINING
250-SIZE 25600000
250-ETRN
250-STARTTLS
250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250 CHUNKING
220 2.0.0 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:21.000Z",
   "alternativeip" : [
      "2001:41d0:203:916:0:0:0:0"
   ],
   "app" : {
      "length" : 271
   },
   "asn" : "AS16276",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Poissy",
   "country" : "FR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 ps01.infra.gugocreative.com ESMTP Postfix\r\n250-ps01.infra.gugocreative.com\r\n250-PIPELINING\r\n250-SIZE 25600000\r\n250-ETRN\r\n250-STARTTLS\r\n250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 CHUNKING\r\n220 2.0.0 Ready to start TLS",
   "datamd5" : "bb733f29a67746aa4759e24dd755c0dd",
   "datammh3" : -1276386937,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "gugocreative.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "24dd94f351117367b5881a3f0a91c6d3",
      "sha1" : "81531917a32bdcabe7254667f21eec5fd7737eca",
      "sha256" : "4e6b78f191222d90fceb8991617de037b05c513279570740246d34865a9739ce"
   },
   "geolocus" : {
      "asn" : "AS16276",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "FR",
      "countryname" : "France",
      "domain" : [
         "ovh.net"
      ],
      "isineu" : "true",
      "latitude" : "46.227638",
      "location" : "46.227638,2.213749",
      "longitude" : "2.213749",
      "netname" : "FR-OVH-20010302",
      "organization" : "OVH SAS",
      "subnet" : "217.182.0.0/16"
   },
   "host" : [
      "ps01"
   ],
   "hostname" : [
      "ps01.infra.gugocreative.com"
   ],
   "ip" : "217.182.173.22",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R10",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "48.9300",
   "location" : "48.9300,2.0605",
   "longitude" : "2.0605",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OVH SAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Postfix",
   "productvendor" : "Postfix",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ps01.infra.gugocreative.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:bf:8b:fa:c0:17:80:94:7a:c0:70:e5:6e:d6:77:89:b5:fd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "infra.gugocreative.com"
   ],
   "subject" : {
      "altname" : [
         "ps01.infra.gugocreative.com"
      ],
      "commonname" : "ps01.infra.gugocreative.com"
   },
   "subnet" : "217.182.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-12T05:40:43Z",
      "notbefore" : "2024-11-14T05:40:44Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
91.215.168.114

Network
91.215.168.0/22

Domain(s)
dns-rus.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS49693

Organization
Best-Hoster Group Co. Ltd.

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.94.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
91-215-168-114.dns-rus.net

Issuer Organization
XX

Subject Organization
XX

Subject Email
root@91-215-168-114.dns-rus.net

Subject Common Name
91-215-168-114.dns-rus.net

SHA256 Fingerprint
196dab49fe1e0a261c5bd74af086ef6ce7ffb11349f60a0058434488a68af770

Validity Not Before
2020-12-20T19:00:30Z

Validity Not After
2030-12-18T19:00:30Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
af4ba6e164199ca142bcb57fa0e49a5e

220 <ip>.dns-rus.net ESMTP Exim 4.94.2 Thu, 21 Nov 2024 11:45:07 +0300
250-<ip>.dns-rus.net Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:45:20.000Z",
   "app" : {
      "length" : 273
   },
   "asn" : "AS49693",
   "ca" : "true",
   "country" : "RU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 <ip>.dns-rus.net ESMTP Exim 4.94.2 Thu, 21 Nov 2024 11:45:07 +0300\r\n250-<ip>.dns-rus.net Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN CRAM-MD5\r\n250-CHUNKING\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "af4ba6e164199ca142bcb57fa0e49a5e",
   "datammh3" : 2070397591,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "dns-rus.net"
   ],
   "fingerprint" : {
      "md5" : "383dd6a97ae9f65b697656ca2bd720ad",
      "sha1" : "0c9d2b3c7a719b942a36831b8b89b23e1c5aece2",
      "sha256" : "196dab49fe1e0a261c5bd74af086ef6ce7ffb11349f60a0058434488a68af770"
   },
   "host" : [
      "91-215-168-114"
   ],
   "hostname" : [
      "91-215-168-114.dns-rus.net"
   ],
   "ip" : "91.215.168.114",
   "ipv6" : "false",
   "issuer" : {
      "city" : "XX",
      "commonname" : "91-215-168-114.dns-rus.net",
      "country" : "XX",
      "email" : "root@91-215-168-114.dns-rus.net",
      "organization" : "XX",
      "organizationalunit" : "XX"
   },
   "latitude" : "55.7386",
   "location" : "55.7386,37.6068",
   "longitude" : "37.6068",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Best-Hoster Group Co. Ltd.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 25,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.94.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 1024
   },
   "seen_date" : "2024-11-21",
   "serial" : "93:2a:76:9e:42:4b:2c:a4",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "city" : "XX",
      "commonname" : "91-215-168-114.dns-rus.net",
      "country" : "XX",
      "email" : "root@91-215-168-114.dns-rus.net",
      "organization" : "XX",
      "organizationalunit" : "XX"
   },
   "subnet" : "91.215.168.0/22",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2030-12-18T19:00:30Z",
      "notbefore" : "2020-12-20T19:00:30Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 4,484,894 in 0.137 second(s)

69.49.232.60:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:23 UTC

91.208.221.30:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

136.233.227.164:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

176.9.226.145:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

216.38.6.30:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

62.210.123.60:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

69.42.218.119:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

12.163.141.227:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

217.182.173.22:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:21 UTC

91.215.168.114:25 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:45:20 UTC