Returning 10 result(s) out of 7,452,305 in 0.082 second(s)

  • 103.195.236.72:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:22 UTC

    • IP
      103.195.236.72
      Network
      103.195.236.0/22
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS140827
      Organization
      AZ VIET NAM COMMUNICATIONS TECHNOLOGY COMPANY LIMITED
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Exim Exim 4.95
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      localhost
      Issuer Organization
      none
      Subject Organization
      none
      Subject Email
      webmaster@localhost
      Subject Common Name
      localhost
      SHA256 Fingerprint
      16cf3bc468be455eeac6b795c91cb5a9fa6890206d099288036a7348747a08d0
      Validity Not Before
      2023-08-18T03:56:44Z
      Validity Not After
      2051-01-02T03:56:44Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      67dd6099d0fcba0b32a160c338eca8f7
    • 220 thuevpsgiare-1717833374 ESMTP Exim 4.95 Thu, 21 Nov 2024 15:43:10 +0700
      250-thuevpsgiare-1717833374 Hello <hostname> [<srcip>]
      250-SIZE 52428800
      250-8BITMIME
      250-PIPELINING
      250-PIPE_CONNECT
      250-AUTH PLAIN LOGIN
      250-STARTTLS
      250 HELP
      220 TLS go ahead
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:22.000Z",
         "app" : {
            "length" : 262
         },
         "asn" : "AS140827",
         "country" : "VN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 thuevpsgiare-1717833374 ESMTP Exim 4.95 Thu, 21 Nov 2024 15:43:10 +0700\r\n250-thuevpsgiare-1717833374 Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
         "datamd5" : "67dd6099d0fcba0b32a160c338eca8f7",
         "datammh3" : 661527862,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "fingerprint" : {
            "md5" : "fdf590e78de9e378457d96eb13335fc7",
            "sha1" : "2cc71fff664fcb740960225a84db74c84a79bf18",
            "sha256" : "16cf3bc468be455eeac6b795c91cb5a9fa6890206d099288036a7348747a08d0"
         },
         "geolocus" : {
            "asn" : "AS140827",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "VN",
            "countryname" : "Vietnam",
            "domain" : [
               "dulieuaz.vn",
               "gmail.com",
               "vnnic.vn"
            ],
            "isineu" : "false",
            "latitude" : "14.058324",
            "location" : "14.058324,108.277199",
            "longitude" : "108.277199",
            "netname" : "DULIEUAZ-VN",
            "organization" : "DULIEUAZ-VN",
            "subnet" : "103.195.236.0/22"
         },
         "ip" : "103.195.236.72",
         "ipv6" : "false",
         "issuer" : {
            "city" : "Sometown",
            "commonname" : "localhost",
            "country" : "GB",
            "email" : "webmaster@localhost",
            "organization" : "none",
            "organizationalunit" : "none"
         },
         "latitude" : "16.1667",
         "location" : "16.1667,107.8333",
         "longitude" : "107.8333",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AZ VIET NAM COMMUNICATIONS TECHNOLOGY COMPANY LIMITED",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 587,
         "product" : "Exim",
         "productvendor" : "Exim",
         "productversion" : "4.95",
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "seen_date" : "2024-11-21",
         "serial" : "b5:63:bf:a6:45:c8:73:21",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subject" : {
            "city" : "Sometown",
            "commonname" : "localhost",
            "country" : "GB",
            "email" : "webmaster@localhost",
            "organization" : "none",
            "organizationalunit" : "none"
         },
         "subnet" : "103.195.236.0/22",
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2051-01-02T03:56:44Z",
            "notbefore" : "2023-08-18T03:56:44Z"
         },
         "version" : "v1",
         "wildcard" : "false"
      }
      
  • 185.45.74.100:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:21 UTC

    • IP
      185.45.74.100
      Network
      185.45.74.0/23
      Domain(s)
      phdns13.es
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      dns74100.phdns13.es
      ASN
      AS201446
      Organization
      Soluciones web on line s.l.
      Protocol
      smtp Cert expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Plesk
      Issuer Organization
      Odin
      Subject Organization
      Odin
      Subject Email
      info@plesk.com
      Subject Common Name
      Plesk
      SHA256 Fingerprint
      73f2552c5378bc8e0ef6b96cb2c049887fd23490997abe913d56d80c7f6aa5e7
      Validity Not Before
      2016-03-03T17:10:52Z
      Validity Not After
      2017-03-03T17:10:52Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      588be002ed83eadee9c499ab595afba9
    • 220 localhost.localdomain ESMTP
      250-localhost.localdomain
      250-AUTH=LOGIN CRAM-MD5 PLAIN
      250-AUTH LOGIN CRAM-MD5 PLAIN
      250-STARTTLS
      250-PIPELINING
      250 8BITMIME
      220 ready for tls
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:21.000Z",
         "app" : {
            "length" : 183
         },
         "asn" : "AS201446",
         "country" : "ES",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 localhost.localdomain ESMTP\r\n250-localhost.localdomain\r\n250-AUTH=LOGIN CRAM-MD5 PLAIN\r\n250-AUTH LOGIN CRAM-MD5 PLAIN\r\n250-STARTTLS\r\n250-PIPELINING\r\n250 8BITMIME\r\n220 ready for tls",
         "datamd5" : "588be002ed83eadee9c499ab595afba9",
         "datammh3" : 1647520391,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "phdns13.es"
         ],
         "fingerprint" : {
            "md5" : "313d428eae901bc7c226a3b03f9812a6",
            "sha1" : "aab4787f76f71a868abad4b108105117fa8e1ca1",
            "sha256" : "73f2552c5378bc8e0ef6b96cb2c049887fd23490997abe913d56d80c7f6aa5e7"
         },
         "host" : [
            "dns74100"
         ],
         "hostname" : [
            "dns74100.phdns13.es"
         ],
         "ip" : "185.45.74.100",
         "ipv6" : "false",
         "issuer" : {
            "city" : "Seattle",
            "commonname" : "Plesk",
            "country" : "US",
            "email" : "info@plesk.com",
            "organization" : "Odin",
            "organizationalunit" : "Plesk"
         },
         "latitude" : "40.4172",
         "location" : "40.4172,-3.6840",
         "longitude" : "-3.6840",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Soluciones web on line s.l.",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 587,
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reverse" : [
            "dns74100.phdns13.es"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "56:d8:70:1c",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subject" : {
            "city" : "Seattle",
            "commonname" : "Plesk",
            "country" : "US",
            "email" : "info@plesk.com",
            "organization" : "Odin",
            "organizationalunit" : "Plesk"
         },
         "subnet" : "185.45.74.0/23",
         "tld" : [
            "es"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2017-03-03T17:10:52Z",
            "notbefore" : "2016-03-03T17:10:52Z"
         },
         "version" : "v1",
         "wildcard" : "false"
      }
      
  • 167.235.247.141:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:21 UTC

    • IP
      167.235.247.141
      Network
      167.235.0.0/16
      Domain(s)
      ok-campus.pp.ua your-server.de
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      static.141.247.235.167.clients.your-server.de
      ASN
      AS24940
      Organization
      Hetzner Online GmbH
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      R11
      Issuer Organization
      Let's Encrypt
      Subject Common Name
      mail.ok-campus.pp.ua
      Subject Alt Name
      mail.ok-campus.pp.ua
      SHA256 Fingerprint
      3f48d3f7abfd850edf45b9c12b9e55381ce31eed9b80901bb62ce31aed3005d3
      Validity Not Before
      2024-11-01T14:52:24Z
      Validity Not After
      2025-01-30T14:52:23Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      a1ed79313e739ebb9317e3191c89651a
    • 220 mail.ok-campus.pp.ua ESMTP
      250-mail.ok-campus.pp.ua
      250-PIPELINING
      250-SIZE 10240000
      250-ETRN
      250-STARTTLS
      250-ENHANCEDSTATUSCODES
      250-8BITMIME
      250-DSN
      250 CHUNKING
      220 2.0.0 Ready to start TLS
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:21.000Z",
         "app" : {
            "length" : 207
         },
         "asn" : "AS24940",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Falkenstein",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 mail.ok-campus.pp.ua ESMTP\r\n250-mail.ok-campus.pp.ua\r\n250-PIPELINING\r\n250-SIZE 10240000\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 CHUNKING\r\n220 2.0.0 Ready to start TLS",
         "datamd5" : "a1ed79313e739ebb9317e3191c89651a",
         "datammh3" : 550237689,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "ok-campus.pp.ua",
            "your-server.de"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "6c5082784cb4c405b6222aff1b7df65f",
            "sha1" : "3a619f986ef1bd6764b7928f2b973c73bc1b2d73",
            "sha256" : "3f48d3f7abfd850edf45b9c12b9e55381ce31eed9b80901bb62ce31aed3005d3"
         },
         "geolocus" : {
            "asn" : "AS24940",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "DE",
            "countryname" : "Germany",
            "domain" : [
               "hetzner.com"
            ],
            "isineu" : "true",
            "latitude" : "51.165691",
            "location" : "51.165691,10.451526",
            "longitude" : "10.451526",
            "netname" : "CLOUD-FSN1",
            "organization" : "Hetzner Online GmbH",
            "subnet" : "167.235.224.0/19"
         },
         "host" : [
            "mail",
            "static"
         ],
         "hostname" : [
            "mail.ok-campus.pp.ua",
            "static.141.247.235.167.clients.your-server.de"
         ],
         "ip" : "167.235.247.141",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "R11",
            "country" : "US",
            "organization" : "Let's Encrypt"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "50.4777",
         "location" : "50.4777,12.3649",
         "longitude" : "12.3649",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Hetzner Online GmbH",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 587,
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reverse" : [
            "static.141.247.235.167.clients.your-server.de"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "04:a0:70:4b:7c:34:22:56:ce:ac:9d:46:9d:b4:96:d6:61:cd",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subdomains" : [
            "141.247.235.167.clients.your-server.de",
            "167.clients.your-server.de",
            "235.167.clients.your-server.de",
            "247.235.167.clients.your-server.de",
            "clients.your-server.de"
         ],
         "subject" : {
            "altname" : [
               "mail.ok-campus.pp.ua"
            ],
            "commonname" : "mail.ok-campus.pp.ua"
         },
         "subnet" : "167.235.0.0/16",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "de",
            "pp.ua"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-01-30T14:52:23Z",
            "notbefore" : "2024-11-01T14:52:24Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 46.234.112.12:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:21 UTC

    • IP
      46.234.112.12
      Alternative IP(s)
      2a01:28:ca:112:0:0:1:488
      Network
      46.234.96.0/19
      Domain(s)
      vas-server.cz
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Debian
      Reverse DNS
      atl05.vas-server.cz
      ASN
      AS39392
      Organization
      SH.cz s.r.o.
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Debian
      Product
      Postfix Postfix
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      R11
      Issuer Organization
      Let's Encrypt
      Subject Common Name
      atl05.vas-server.cz
      Subject Alt Name
      atl05.vas-server.cz autoconfig.atl05.vas-server.cz autodiscover.atl05.vas-server.cz discover.atl05.vas-server.cz mail.atl05.vas-server.cz www.atl05.vas-server.cz
      SHA256 Fingerprint
      5e311a7598a28692fea5450621ddb9ab824399f9916b222d6a4ecc07a202417c
      Validity Not Before
      2024-11-19T03:02:35Z
      Validity Not After
      2025-02-17T03:02:34Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      9f2945903ed71fda208b645b8e2df448
    • 220 atl05.vas-server.cz ESMTP Postfix (Debian/GNU)
      250-atl05.vas-server.cz
      250-PIPELINING
      250-SIZE 30720000
      250-ETRN
      250-STARTTLS
      250-ENHANCEDSTATUSCODES
      250-8BITMIME
      250-DSN
      250-SMTPUTF8
      250 CHUNKING
      220 2.0.0 Ready to start TLS
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:21.000Z",
         "alternativeip" : [
            "2a01:28:ca:112:0:0:1:488"
         ],
         "app" : {
            "length" : 240
         },
         "asn" : "AS39392",
         "basicconstraints" : "critical",
         "ca" : "false",
         "country" : "CZ",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 atl05.vas-server.cz ESMTP Postfix (Debian/GNU)\r\n250-atl05.vas-server.cz\r\n250-PIPELINING\r\n250-SIZE 30720000\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250-SMTPUTF8\r\n250 CHUNKING\r\n220 2.0.0 Ready to start TLS",
         "datamd5" : "9f2945903ed71fda208b645b8e2df448",
         "datammh3" : 1831590780,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "vas-server.cz"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "2611cc41fcd1c766f4b72e4f499ba3db",
            "sha1" : "cdedd93884b0d9f537da818d4467d01fd29f8770",
            "sha256" : "5e311a7598a28692fea5450621ddb9ab824399f9916b222d6a4ecc07a202417c"
         },
         "geolocus" : {
            "asn" : "AS39392",
            "continent" : "EU",
            "continentname" : "Europe",
            "country" : "CZ",
            "countryname" : "Czech Republic",
            "domain" : [
               "superhosting.cz",
               "traffic7emailmarketing.cz"
            ],
            "isineu" : "true",
            "latitude" : "49.817492",
            "location" : "49.817492,15.472962",
            "longitude" : "15.472962",
            "netname" : "CZ-SUPERNETWORK-20110210",
            "organization" : "SH.cz s.r.o.",
            "subnet" : "46.234.96.0/19"
         },
         "host" : [
            "atl05",
            "autoconfig",
            "autodiscover",
            "discover",
            "mail",
            "www"
         ],
         "hostname" : [
            "atl05.vas-server.cz",
            "autoconfig.atl05.vas-server.cz",
            "autodiscover.atl05.vas-server.cz",
            "discover.atl05.vas-server.cz",
            "mail.atl05.vas-server.cz",
            "www.atl05.vas-server.cz"
         ],
         "ip" : "46.234.112.12",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "R11",
            "country" : "US",
            "organization" : "Let's Encrypt"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "50.0853",
         "location" : "50.0853,14.4110",
         "longitude" : "14.4110",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "SH.cz s.r.o.",
         "os" : "Linux",
         "osdistribution" : "Debian",
         "osvendor" : "Linux",
         "port" : 587,
         "product" : "Postfix",
         "productvendor" : "Postfix",
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reverse" : [
            "atl05.vas-server.cz"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "04:c2:44:34:56:fb:79:b2:48:03:46:07:bb:3e:34:39:f6:e2",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subdomains" : [
            "atl05.vas-server.cz"
         ],
         "subject" : {
            "altname" : [
               "atl05.vas-server.cz",
               "autoconfig.atl05.vas-server.cz",
               "autodiscover.atl05.vas-server.cz",
               "discover.atl05.vas-server.cz",
               "mail.atl05.vas-server.cz",
               "www.atl05.vas-server.cz"
            ],
            "commonname" : "atl05.vas-server.cz"
         },
         "subnet" : "46.234.96.0/19",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "cz"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-02-17T03:02:34Z",
            "notbefore" : "2024-11-19T03:02:35Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 153.127.121.31:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:21 UTC

  • 103.11.102.36:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:20 UTC

    • IP
      103.11.102.36
      Alternative IP(s)
      43.241.73.171
      Network
      103.11.100.0/22
      Domain(s)
      pointdnshere.com
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      kt-e04-a07.pointdnshere.com
      ASN
      AS132056
      Organization
      RM B, 2F 88 KWAI CHEONG ROAD
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Exim Exim 4.98
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Sectigo RSA Domain Validation Secure Server CA
      Issuer Organization
      Sectigo Limited
      Subject Common Name
      *.pointdnshere.com
      Subject Alt Name
      *.pointdnshere.com pointdnshere.com
      SHA256 Fingerprint
      f60cd53d02338b2ae0736917cdc8e62d1d7eb4a6059d9d4d4264e0548abf750c
      Validity Not Before
      2024-06-20T00:00:00Z
      Validity Not After
      2025-07-08T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      1621395fc5ccd9f9e1af08cc073b4527
    • 220 tgt-tko-m409.pointdnshere.com ESMTP Exim 4.98 Thu, 21 Nov 2024 16:43:08 +0800
      250-tgt-tko-m409.pointdnshere.com Hello <hostname> [<srcip>]
      250-SIZE 52428800
      250-LIMITS MAILMAX=100 RCPTMAX=150
      250-8BITMIME
      250-PIPELINING
      250-PIPECONNECT
      250-AUTH PLAIN LOGIN
      250-STARTTLS
      250 HELP
      220 TLS go ahead
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:20.000Z",
         "alternativeip" : [
            "43.241.73.171"
         ],
         "app" : {
            "length" : 309
         },
         "asn" : "AS132056",
         "basicconstraints" : "critical",
         "ca" : "false",
         "country" : "HK",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 tgt-tko-m409.pointdnshere.com ESMTP Exim 4.98 Thu, 21 Nov 2024 16:43:08 +0800\r\n250-tgt-tko-m409.pointdnshere.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-LIMITS MAILMAX=100 RCPTMAX=150\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-AUTH PLAIN LOGIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
         "datamd5" : "1621395fc5ccd9f9e1af08cc073b4527",
         "datammh3" : -996555673,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "pointdnshere.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "19ae00098a238cc981a16d4ac9668801",
            "sha1" : "2549f46d2815b2599850e8604d3c06e199599b21",
            "sha256" : "f60cd53d02338b2ae0736917cdc8e62d1d7eb4a6059d9d4d4264e0548abf750c"
         },
         "geolocus" : {
            "asn" : "AS132056",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "HK",
            "countryname" : "Hong Kong",
            "domain" : [
               "scicube.com"
            ],
            "isineu" : "false",
            "latitude" : "22.396428",
            "location" : "22.396428,114.109497",
            "longitude" : "114.109497",
            "netname" : "SCICUBE",
            "organization" : "SCICUBE-ROUTE-OBJ",
            "subnet" : "103.11.100.0/22"
         },
         "host" : [
            "kt-e04-a07"
         ],
         "hostname" : [
            "kt-e04-a07.pointdnshere.com",
            "pointdnshere.com"
         ],
         "ip" : "103.11.102.36",
         "ipv6" : "false",
         "issuer" : {
            "city" : "Salford",
            "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
            "country" : "GB",
            "organization" : "Sectigo Limited"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "22.2578",
         "location" : "22.2578,114.1657",
         "longitude" : "114.1657",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "RM B, 2F 88 KWAI CHEONG ROAD",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 587,
         "product" : "Exim",
         "productvendor" : "Exim",
         "productversion" : "4.98",
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 4096
         },
         "reverse" : [
            "kt-e04-a07.pointdnshere.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "82:7d:59:d9:f0:71:60:a1:aa:1c:7a:a2:7e:ec:e6:39",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subject" : {
            "altname" : [
               "*.pointdnshere.com",
               "pointdnshere.com"
            ],
            "commonname" : "*.pointdnshere.com"
         },
         "subnet" : "103.11.100.0/22",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-07-08T23:59:59Z",
            "notbefore" : "2024-06-20T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "true"
      }
      
  • 113.106.164.104:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:20 UTC

    • IP
      113.106.164.104
      Alternative IP(s)
      103.220.9.184 113.106.164.103 47.242.136.177
      Network
      113.96.0.0/12
      Domain(s)
      chinachine.com redstone.com.cn
      Device

      <enterprise field>: device.class

      Operating System
      Microsoft Windows
      Reverse DNS
      chinachine.com mail.redstone.com.cn mail.chinachine.com redstone.com.cn
      ASN
      AS4134
      Organization
      Chinanet
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Microsoft Windows
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      RapidSSL Global TLS RSA4096 SHA256 2022 CA1
      Issuer Organization
      DigiCert, Inc.
      Subject Common Name
      *.redstone.com.cn
      Subject Alt Name
      *.redstone.com.cn redstone.com.cn
      SHA256 Fingerprint
      8c6a0577b1f78055bd7957648c0082c293e06ed725eca2fa4eb5b79a4d5ffb8a
      Validity Not Before
      2024-01-22T00:00:00Z
      Validity Not After
      2025-02-11T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fdac49604ae3a268790c0c71b0835b1d
    • 220 mail.redstone.com.cn ESMTP MSA Thu, 21 Nov 2024 16:43:07 +0800
      250-mail.redstone.com.cn Hello <ip> [<srcip>], pleased to meet you
      250-AUTH LOGIN PLAIN
      250-8BITMIME
      250-ENHANCEDSTATUSCODES
      250-PIPELINING
      250-CHUNKING
      250-STARTTLS
      250 SIZE 28672000
      220 2.7.0 Ready to start TLS
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:20.000Z",
         "alternativeip" : [
            "103.220.9.184",
            "113.106.164.103",
            "47.242.136.177"
         ],
         "app" : {
            "length" : 288
         },
         "asn" : "AS4134",
         "basicconstraints" : "critical",
         "ca" : "false",
         "country" : "CN",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 mail.redstone.com.cn ESMTP MSA Thu, 21 Nov 2024 16:43:07 +0800\r\n250-mail.redstone.com.cn Hello <ip> [<srcip>], pleased to meet you\r\n250-AUTH LOGIN PLAIN\r\n250-8BITMIME\r\n250-ENHANCEDSTATUSCODES\r\n250-PIPELINING\r\n250-CHUNKING\r\n250-STARTTLS\r\n250 SIZE 28672000\r\n220 2.7.0 Ready to start TLS",
         "datamd5" : "fdac49604ae3a268790c0c71b0835b1d",
         "datammh3" : 1606114832,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "chinachine.com",
            "redstone.com.cn"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "91ca1a48eadd1b6125fd34066b7fa714",
            "sha1" : "d8409e2fd75c8523bb4d6ebb338bec0a69dae4b8",
            "sha256" : "8c6a0577b1f78055bd7957648c0082c293e06ed725eca2fa4eb5b79a4d5ffb8a"
         },
         "geolocus" : {
            "asn" : "AS4134",
            "continent" : "AS",
            "continentname" : "Asia",
            "country" : "CN",
            "countryname" : "China",
            "domain" : [
               "163.com",
               "chinatelecom.cn"
            ],
            "isineu" : "false",
            "latitude" : "35.86166",
            "location" : "35.86166,104.195397",
            "longitude" : "104.195397",
            "netname" : "CHINANET-GD",
            "organization" : "CHINANET Guangdong province network",
            "subnet" : "113.104.0.0/14"
         },
         "host" : [
            "mail"
         ],
         "hostname" : [
            "chinachine.com",
            "mail.chinachine.com",
            "mail.redstone.com.cn",
            "redstone.com.cn"
         ],
         "ip" : "113.106.164.104",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "RapidSSL Global TLS RSA4096 SHA256 2022 CA1",
            "country" : "US",
            "organization" : "DigiCert, Inc."
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "34.7732",
         "location" : "34.7732,113.7220",
         "longitude" : "113.7220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Chinanet",
         "os" : "Windows",
         "osvendor" : "Microsoft",
         "port" : 587,
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reverse" : [
            "chinachine.com",
            "mail.redstone.com.cn",
            "mail.chinachine.com",
            "redstone.com.cn"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "0b:c6:10:df:e0:54:f3:0d:d4:9d:03:fa:6f:15:5a:cc",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subject" : {
            "altname" : [
               "*.redstone.com.cn",
               "redstone.com.cn"
            ],
            "commonname" : "*.redstone.com.cn"
         },
         "subnet" : "113.96.0.0/12",
         "tld" : [
            "com",
            "com.cn"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-02-11T23:59:59Z",
            "notbefore" : "2024-01-22T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "true"
      }
      
  • 185.28.158.142:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:20 UTC

    • IP
      185.28.158.142
      Alternative IP(s)
      185.28.158.140 2a00:9e20:191:0:0:0:b91c:9e8c 2a00:9e20:191:0:0:0:b91c:9e8e
      Network
      185.28.156.0/22
      Domain(s)
      jobmagazin.de wilken-infodienste.de
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      Reverse DNS
      jobmagazin.de
      ASN
      AS60574
      Organization
      Christian clos
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Sendmail Sendmail 8.14.7
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Sectigo RSA Domain Validation Secure Server CA
      Issuer Organization
      Sectigo Limited
      Subject Common Name
      host01.wilken-infodienste.de
      Subject Alt Name
      host01.wilken-infodienste.de www.host01.wilken-infodienste.de
      SHA256 Fingerprint
      62f5d82a3ef13467fa451e9a613e51e1cf1486d1d69a8a49cdd694d375ddfe4b
      Validity Not Before
      2024-07-07T00:00:00Z
      Validity Not After
      2025-07-07T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      68bbcaf7b95d1deaf7499b5f4d6b4d6f
    • 220 host01.wilken-infodienste.de ESMTP Sendmail 8.14.7/8.14.7; Thu, 21 Nov 2024 09:43:07 +0100
      250-host01.wilken-infodienste.de Hello <hostname> [<srcip>], pleased to meet you
      250-ENHANCEDSTATUSCODES
      250-PIPELINING
      250-8BITMIME
      250-SIZE
      250-DSN
      250-AUTH DIGEST-MD5 CRAM-MD5 LOGIN PLAIN
      250-STARTTLS
      250-DELIVERBY
      250 HELP
      220 2.0.0 Ready to start TLS
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:20.000Z",
         "alternativeip" : [
            "185.28.158.140",
            "2a00:9e20:191:0:0:0:b91c:9e8c",
            "2a00:9e20:191:0:0:0:b91c:9e8e"
         ],
         "app" : {
            "length" : 361
         },
         "asn" : "AS60574",
         "basicconstraints" : "critical",
         "ca" : "false",
         "country" : "DE",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 host01.wilken-infodienste.de ESMTP Sendmail 8.14.7/8.14.7; Thu, 21 Nov 2024 09:43:07 +0100\r\n250-host01.wilken-infodienste.de Hello <hostname> [<srcip>], pleased to meet you\r\n250-ENHANCEDSTATUSCODES\r\n250-PIPELINING\r\n250-8BITMIME\r\n250-SIZE\r\n250-DSN\r\n250-AUTH DIGEST-MD5 CRAM-MD5 LOGIN PLAIN\r\n250-STARTTLS\r\n250-DELIVERBY\r\n250 HELP\r\n220 2.0.0 Ready to start TLS",
         "datamd5" : "68bbcaf7b95d1deaf7499b5f4d6b4d6f",
         "datammh3" : 1641816910,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "jobmagazin.de",
            "wilken-infodienste.de"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "8664e2db113df08a3bf5d6a6f598ab34",
            "sha1" : "4959d50aa28d317e76e786ee66564f0bd66c5497",
            "sha256" : "62f5d82a3ef13467fa451e9a613e51e1cf1486d1d69a8a49cdd694d375ddfe4b"
         },
         "host" : [
            "host01",
            "www"
         ],
         "hostname" : [
            "host01.wilken-infodienste.de",
            "jobmagazin.de",
            "www.host01.wilken-infodienste.de"
         ],
         "ip" : "185.28.158.142",
         "ipv6" : "false",
         "issuer" : {
            "city" : "Salford",
            "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
            "country" : "GB",
            "organization" : "Sectigo Limited"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "51.2993",
         "location" : "51.2993,9.4910",
         "longitude" : "9.4910",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Christian clos",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 587,
         "product" : "Sendmail",
         "productvendor" : "Sendmail",
         "productversion" : "8.14.7",
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reverse" : [
            "jobmagazin.de"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "f2:e4:c8:e8:5d:20:bc:ae:84:45:fe:b0:47:66:85:a7",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subdomains" : [
            "host01.wilken-infodienste.de"
         ],
         "subject" : {
            "altname" : [
               "host01.wilken-infodienste.de",
               "www.host01.wilken-infodienste.de"
            ],
            "commonname" : "host01.wilken-infodienste.de"
         },
         "subnet" : "185.28.156.0/22",
         "tld" : [
            "de"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-07-07T23:59:59Z",
            "notbefore" : "2024-07-07T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 116.90.49.147:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:20 UTC

    • IP
      116.90.49.147
      Alternative IP(s)
      116.90.49.2
      Network
      116.90.0.0/18
      Domain(s)
      stealth-servers.com.au
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS55803
      Organization
      Hostopia Australia Web Pty Ltd
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      Product
      Exim Exim 4.96.2
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Sectigo RSA Domain Validation Secure Server CA
      Issuer Organization
      Sectigo Limited
      Subject Common Name
      *.stealth-servers.com.au
      Subject Alt Name
      *.stealth-servers.com.au stealth-servers.com.au
      SHA256 Fingerprint
      2a229db26d4cfc954be1742c67e6610d7a6ed99aa8b831584d2646961e30f4ce
      Validity Not Before
      2024-09-22T00:00:00Z
      Validity Not After
      2025-09-22T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      f0439dd18b59cb8d4f30809439924b52
    • 220-vmcp06.stealth-servers.com.au ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 19:43:08 +1100 
      220-We do not authorize the use of this system to transport unsolicited, 
      220 and/or bulk e-mail.
      250-vmcp06.stealth-servers.com.au Hello <hostname> [<srcip>]
      250-SIZE 52428800
      250-8BITMIME
      250-PIPELINING
      250-PIPECONNECT
      250-AUTH PLAIN LOGIN
      250-STARTTLS
      250 HELP
      220 TLS go ahead
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:20.000Z",
         "alternativeip" : [
            "116.90.49.2"
         ],
         "app" : {
            "length" : 379
         },
         "asn" : "AS55803",
         "basicconstraints" : "critical",
         "ca" : "false",
         "country" : "AU",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220-vmcp06.stealth-servers.com.au ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 19:43:08 +1100 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-vmcp06.stealth-servers.com.au Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-AUTH PLAIN LOGIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
         "datamd5" : "f0439dd18b59cb8d4f30809439924b52",
         "datammh3" : 432407225,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "stealth-servers.com.au"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "365c6d8db05a881705d164ff448876fb",
            "sha1" : "e4cb846bf6372f1c6242dbd6a8c2faf50126366b",
            "sha256" : "2a229db26d4cfc954be1742c67e6610d7a6ed99aa8b831584d2646961e30f4ce"
         },
         "geolocus" : {
            "asn" : "AS55803",
            "continent" : "OC",
            "continentname" : "Oceania",
            "country" : "AU",
            "countryname" : "Australia",
            "domain" : [
               "digitalpacific.com.au",
               "hostopia.com.au",
               "smartservers.com.au"
            ],
            "isineu" : "false",
            "latitude" : "-25.274398",
            "location" : "-25.274398,133.775136",
            "longitude" : "133.775136",
            "netname" : "DIGITALPACIFIC",
            "organization" : "Hostopia Australia Web Pty Ltd",
            "subnet" : "116.90.0.0/18"
         },
         "hostname" : [
            "stealth-servers.com.au"
         ],
         "ip" : "116.90.49.147",
         "ipv6" : "false",
         "issuer" : {
            "city" : "Salford",
            "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
            "country" : "GB",
            "organization" : "Sectigo Limited"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "-33.4940",
         "location" : "-33.4940,143.2104",
         "longitude" : "143.2104",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "Hostopia Australia Web Pty Ltd",
         "os" : "Linux Kernel",
         "osvendor" : "Linux",
         "port" : 587,
         "product" : "Exim",
         "productvendor" : "Exim",
         "productversion" : "4.96.2",
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "seen_date" : "2024-11-21",
         "serial" : "e9:4d:18:88:0c:a9:61:ca:ed:3c:52:64:71:4d:31:02",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subject" : {
            "altname" : [
               "*.stealth-servers.com.au",
               "stealth-servers.com.au"
            ],
            "commonname" : "*.stealth-servers.com.au"
         },
         "subnet" : "116.90.0.0/18",
         "tld" : [
            "com.au"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-09-22T23:59:59Z",
            "notbefore" : "2024-09-22T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "true"
      }
      
  • 216.92.58.108:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 08:43:20 UTC

    • IP
      216.92.58.108
      Alternative IP(s)
      104.21.34.254 172.67.210.110 2606:4700:3031:0:0:0:6815:22fe 2606:4700:3032:0:0:0:ac43:d26e
      Network
      216.92.0.0/16
      Domain(s)
      chesleyhouse.com pair.com
      Device

      <enterprise field>: device.class

      Operating System
      FreeBSD FreeBSD
      Reverse DNS
      chesleyhouse.com
      ASN
      AS7859
      Organization
      PAIR-NETWORKS
      Protocol
      smtp Cert not expired smtp
      Source
      datascan
    • Operating System
      FreeBSD FreeBSD
      Product
      Postfix Postfix
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Sectigo RSA Organization Validation Secure Server CA
      Issuer Organization
      Sectigo Limited
      Subject Organization
      Pair Networks, Inc.
      Subject Common Name
      *.pair.com
      Subject Alt Name
      *.pair.com pair.com
      SHA256 Fingerprint
      2299041c02d3c0fa82393fdf69148591b7f68359e8d6b6877cb45c392fbcee11
      Validity Not Before
      2024-01-05T00:00:00Z
      Validity Not After
      2025-02-04T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0865147f5104c325d14e4e51dfb2053b
    • 220 ndris.pair.com ESMTP Postfix
      250-ndris.pair.com
      250-PIPELINING
      250-SIZE 104857600
      250-ETRN
      250-STARTTLS
      250-ENHANCEDSTATUSCODES
      250-8BITMIME
      250-DSN
      250 CHUNKING
      220 2.0.0 Ready to start TLS
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T08:43:20.000Z",
         "alternativeip" : [
            "104.21.34.254",
            "172.67.210.110",
            "2606:4700:3031:0:0:0:6815:22fe",
            "2606:4700:3032:0:0:0:ac43:d26e"
         ],
         "app" : {
            "length" : 204
         },
         "asn" : "AS7859",
         "basicconstraints" : "critical",
         "ca" : "false",
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "220 ndris.pair.com ESMTP Postfix\r\n250-ndris.pair.com\r\n250-PIPELINING\r\n250-SIZE 104857600\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250-DSN\r\n250 CHUNKING\r\n220 2.0.0 Ready to start TLS",
         "datamd5" : "0865147f5104c325d14e4e51dfb2053b",
         "datammh3" : 192913822,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "chesleyhouse.com",
            "pair.com"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "38cead2de1c889b2e49cb2653cd6e802",
            "sha1" : "73644616a03a46f4cbd130e4eb2fb6b91808388e",
            "sha256" : "2299041c02d3c0fa82393fdf69148591b7f68359e8d6b6877cb45c392fbcee11"
         },
         "geolocus" : {
            "asn" : "AS7859",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "pair.com",
               "pair.net",
               "pairnetworks.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "PAIRNET-BLK-3",
            "organization" : "pair Networks",
            "subnet" : "216.92.0.0/16"
         },
         "hostname" : [
            "chesleyhouse.com",
            "pair.com"
         ],
         "ip" : "216.92.58.108",
         "ipv6" : "false",
         "issuer" : {
            "city" : "Salford",
            "commonname" : "Sectigo RSA Organization Validation Secure Server CA",
            "country" : "GB",
            "organization" : "Sectigo Limited"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "37.7510",
         "location" : "37.7510,-97.8220",
         "longitude" : "-97.8220",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "PAIR-NETWORKS",
         "os" : "FreeBSD",
         "osvendor" : "FreeBSD",
         "port" : 587,
         "product" : "Postfix",
         "productvendor" : "Postfix",
         "protocol" : "smtp",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reverse" : [
            "chesleyhouse.com"
         ],
         "seen_date" : "2024-11-21",
         "serial" : "aa:9d:b1:d4:78:c7:49:c1:43:c4:b5:3f:02:4a:f4:18",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan",
         "subject" : {
            "altname" : [
               "*.pair.com",
               "pair.com"
            ],
            "commonname" : "*.pair.com",
            "country" : "US",
            "organization" : "Pair Networks, Inc."
         },
         "subnet" : "216.92.0.0/16",
         "tld" : [
            "com"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "validity" : {
            "notafter" : "2025-02-04T23:59:59Z",
            "notbefore" : "2024-01-05T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "true"
      }