Cyber Defense Search Engine

IP
216.137.183.160

Alternative IP(s)
104.21.7.209 172.67.188.6

Network
216.137.176.0/20

Domain(s)
canvory.eu

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
server.canvory.eu

ASN
AS55293

Organization
A2HOSTING

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.98

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
server.canvory.eu

Subject Alt Name
server.canvory.eu

SHA256 Fingerprint
6f4a8696e0dce7c9738908ea3a5acf368e3fb42dc20ee24100a8987aa2f13cf4

Validity Not Before
2024-11-03T03:44:32Z

Validity Not After
2025-02-01T03:44:31Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3968808befda1f4ad4fde1ce33778354

220-server.canvory.eu ESMTP Exim 4.98 #2 Thu, 21 Nov 2024 11:28:09 +0100 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-server.canvory.eu Hello <hostname> [<srcip>]
250-SIZE 52428800
250-LIMITS MAILMAX=1000 RCPTMAX=50000
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "104.21.7.209",
      "172.67.188.6"
   ],
   "app" : {
      "length" : 370
   },
   "asn" : "AS55293",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-server.canvory.eu ESMTP Exim 4.98 #2 Thu, 21 Nov 2024 11:28:09 +0100 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-server.canvory.eu Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-LIMITS MAILMAX=1000 RCPTMAX=50000\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "3968808befda1f4ad4fde1ce33778354",
   "datammh3" : 2019764522,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "canvory.eu"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "eb63ab7d0eb4eca3627ccf662bbd9830",
      "sha1" : "00cc10c011c3a3aacf7024112f77ddd56ae7b9ce",
      "sha256" : "6f4a8696e0dce7c9738908ea3a5acf368e3fb42dc20ee24100a8987aa2f13cf4"
   },
   "geolocus" : {
      "asn" : "AS55293",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "a2hosting.com",
         "a2webhosting.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "INTERNET-BLK-A2HOS-16",
      "organization" : "A2 Hosting, Inc.",
      "subnet" : "216.137.180.0/22"
   },
   "host" : [
      "server"
   ],
   "hostname" : [
      "server.canvory.eu"
   ],
   "ip" : "216.137.183.160",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "A2HOSTING",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.98",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "server.canvory.eu"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "03:be:d2:c4:c9:e2:4f:55:e2:e4:b8:6b:f0:a5:46:98:66:e1",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "server.canvory.eu"
      ],
      "commonname" : "server.canvory.eu"
   },
   "subnet" : "216.137.176.0/20",
   "tld" : [
      "eu"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-01T03:44:31Z",
      "notbefore" : "2024-11-03T03:44:32Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
157.90.233.234

Alternative IP(s)
2a01:4f8:1c1b:7606:0:0:0:1

Network
157.90.0.0/16

Domain(s)
helixnet.co

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
mail.helixnet.co

ASN
AS24940

Organization
Hetzner Online GmbH

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
mail.helixnet.co

Subject Alt Name
mail.helixnet.co

SHA256 Fingerprint
116e0e9d8fbb536579c5fa6d2c0ca8872fd29162bc42e6ba6f8d6b25f3d71ad7

Validity Not Before
2024-10-15T12:10:16Z

Validity Not After
2025-01-13T12:10:15Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
006b469cdd8b6aff8dfdfddd2bd2cba8

220 mail.helixnet.co ESMTP Postcow
250-mail.helixnet.co
250-PIPELINING
250-SIZE 104857600
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
220 2.0.0 Ready to start TLS

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "2a01:4f8:1c1b:7606:0:0:0:1"
   ],
   "app" : {
      "length" : 194
   },
   "asn" : "AS24940",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Nuremberg",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 mail.helixnet.co ESMTP Postcow\r\n250-mail.helixnet.co\r\n250-PIPELINING\r\n250-SIZE 104857600\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250 DSN\r\n220 2.0.0 Ready to start TLS",
   "datamd5" : "006b469cdd8b6aff8dfdfddd2bd2cba8",
   "datammh3" : 316798257,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "helixnet.co"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "925acc1c58c420d7a15f2cfa5b8ffe5d",
      "sha1" : "52ce5040ed6dc6f0ccdf8dc63f81d2b14bc356a7",
      "sha256" : "116e0e9d8fbb536579c5fa6d2c0ca8872fd29162bc42e6ba6f8d6b25f3d71ad7"
   },
   "geolocus" : {
      "asn" : "AS24940",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "hetzner.com",
         "your-server.de"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "DE-HETZNER-19911216",
      "organization" : "Hetzner Online GmbH",
      "subnet" : "157.90.0.0/16"
   },
   "host" : [
      "mail"
   ],
   "hostname" : [
      "mail.helixnet.co"
   ],
   "ip" : "157.90.233.234",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "49.4527",
   "location" : "49.4527,11.0783",
   "longitude" : "11.0783",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hetzner Online GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 4096
   },
   "reverse" : [
      "mail.helixnet.co"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:88:9b:72:82:2e:3d:a7:f1:a3:bb:80:e3:01:d8:97:75:8a",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "mail.helixnet.co"
      ],
      "commonname" : "mail.helixnet.co"
   },
   "subnet" : "157.90.0.0/16",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "co"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-13T12:10:15Z",
      "notbefore" : "2024-10-15T12:10:16Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
43.230.160.235

Alternative IP(s)
43.230.160.2

Network
43.230.160.0/22

Domain(s)
serverpanel.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
jp-s1.serverpanel.com

ASN
AS395092

Organization
SHOCK-1

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.96.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
jp-s1.serverpanel.com

Subject Alt Name
jp-s1.serverpanel.com

SHA256 Fingerprint
9de48f23748869578eaf6bf779824c30c75479f2d4d791834c31cac61531e02c

Validity Not Before
2024-10-16T04:09:51Z

Validity Not After
2025-01-14T04:09:50Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
58174fc1bc0435a0d38ac5c2cc43d1c9

220-jp-s1.serverpanel.com ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 19:28:07 +0900 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-jp-s1.serverpanel.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "43.230.160.2"
   ],
   "app" : {
      "length" : 341
   },
   "asn" : "AS395092",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Tokyo",
   "country" : "JP",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-jp-s1.serverpanel.com ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 19:28:07 +0900 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-jp-s1.serverpanel.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "58174fc1bc0435a0d38ac5c2cc43d1c9",
   "datammh3" : 2080656976,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "serverpanel.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "19707166970e15bda137ee87a904b991",
      "sha1" : "04878d959a26ef445c5059e1a6c8add7cc07c79b",
      "sha256" : "9de48f23748869578eaf6bf779824c30c75479f2d4d791834c31cac61531e02c"
   },
   "geolocus" : {
      "asn" : "AS395092",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "JP",
      "countryname" : "Japan",
      "domain" : [
         "serverpanel.com",
         "shockhosting.com"
      ],
      "isineu" : "false",
      "latitude" : "36.204824",
      "location" : "36.204824,138.252924",
      "longitude" : "138.252924",
      "netname" : "SHOCK-JP",
      "organization" : "Shock Hosting LLC",
      "subnet" : "43.230.160.0/22"
   },
   "host" : [
      "jp-s1"
   ],
   "hostname" : [
      "jp-s1.serverpanel.com"
   ],
   "ip" : "43.230.160.235",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "35.6893",
   "location" : "35.6893,139.6899",
   "longitude" : "139.6899",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SHOCK-1",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.96.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "jp-s1.serverpanel.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:e5:f5:4d:95:ae:30:95:0b:34:04:ee:e1:53:bb:93:25:8c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "jp-s1.serverpanel.com"
      ],
      "commonname" : "jp-s1.serverpanel.com"
   },
   "subnet" : "43.230.160.0/22",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-14T04:09:50Z",
      "notbefore" : "2024-10-16T04:09:51Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
35.209.94.93

Alternative IP(s)
35.206.102.35

Network
35.208.0.0/13

Domain(s)
googleusercontent.com siteground.biz

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
93.94.209.35.bc.googleusercontent.com

ASN
AS15169

Organization
GOOGLE

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
giowm1088.siteground.biz

Subject Alt Name
giowm1088.siteground.biz

SHA256 Fingerprint
420f92cae530d247052f59cec5ff4f6459c0a9c9dc46da8fc0ebadff19943dcb

Validity Not Before
2024-10-07T07:42:33Z

Validity Not After
2025-01-05T07:42:32Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
9f72a7dbbfcc3059a279309cb74c8771

220-giowm1088.siteground.biz ESMTP #2 Thu, 21 Nov 2024 10:28:07 +0000 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-giowm1088.siteground.biz Hello <ip> [<srcip>]
250-SIZE 83886080
250-LIMITS MAILMAX=1000 RCPTMAX=50000
250-8BITMIME
250-DSN
250-VRFY
250-AUTH LOGIN PLAIN
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "35.206.102.35"
   ],
   "app" : {
      "length" : 376
   },
   "asn" : "AS15169",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Council Bluffs",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-giowm1088.siteground.biz ESMTP #2 Thu, 21 Nov 2024 10:28:07 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-giowm1088.siteground.biz Hello <ip> [<srcip>]\r\n250-SIZE 83886080\r\n250-LIMITS MAILMAX=1000 RCPTMAX=50000\r\n250-8BITMIME\r\n250-DSN\r\n250-VRFY\r\n250-AUTH LOGIN PLAIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "9f72a7dbbfcc3059a279309cb74c8771",
   "datammh3" : 1489354424,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "googleusercontent.com",
      "siteground.biz"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "a01e023a51e6981ac880103f85bf27c5",
      "sha1" : "73592b2b0294c7596877f00b596f630c205b25ff",
      "sha256" : "420f92cae530d247052f59cec5ff4f6459c0a9c9dc46da8fc0ebadff19943dcb"
   },
   "geolocus" : {
      "asn" : "AS15169",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googleusercontent.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGLE-CLOUD",
      "organization" : "Google LLC",
      "subnet" : "35.208.0.0/15"
   },
   "host" : [
      93,
      "giowm1088"
   ],
   "hostname" : [
      "93.94.209.35.bc.googleusercontent.com",
      "giowm1088.siteground.biz"
   ],
   "ip" : "35.209.94.93",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "41.2591",
   "location" : "41.2591,-95.8517",
   "longitude" : "-95.8517",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "93.94.209.35.bc.googleusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "03:ff:74:e0:46:96:ac:a0:42:dc:f2:52:d7:5f:e0:82:fe:b6",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "209.35.bc.googleusercontent.com",
      "35.bc.googleusercontent.com",
      "94.209.35.bc.googleusercontent.com",
      "bc.googleusercontent.com"
   ],
   "subject" : {
      "altname" : [
         "giowm1088.siteground.biz"
      ],
      "commonname" : "giowm1088.siteground.biz"
   },
   "subnet" : "35.208.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "biz",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-05T07:42:32Z",
      "notbefore" : "2024-10-07T07:42:33Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
213.165.250.192

Network
213.165.240.0/20

Domain(s)
inmotionhosting.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
vps106384.inmotionhosting.com

ASN
AS22611

Organization
INMOTION

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.96.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
vps106384.inmotionhosting.com

Subject Alt Name
vps106384.inmotionhosting.com

SHA256 Fingerprint
3b7b17ab6aaa3b21d349d0a50b45f9acf752472c8fff08385050fd509db9a644

Validity Not Before
2024-11-10T04:31:40Z

Validity Not After
2025-02-08T04:31:39Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
541f336cc5aab7a7fff08be64679d29c

220-vps106384.inmotionhosting.com ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 05:28:07 -0500 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-vps106384.inmotionhosting.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "app" : {
      "length" : 357
   },
   "asn" : "AS22611",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-vps106384.inmotionhosting.com ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 05:28:07 -0500 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-vps106384.inmotionhosting.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "541f336cc5aab7a7fff08be64679d29c",
   "datammh3" : -1621107268,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "inmotionhosting.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "a3f03054c09729ebbf543f333a5d2ee2",
      "sha1" : "9707a517214170bdb4e2d5bc3caed98ed2b2097a",
      "sha256" : "3b7b17ab6aaa3b21d349d0a50b45f9acf752472c8fff08385050fd509db9a644"
   },
   "geolocus" : {
      "asn" : "AS22611",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "inmotionhosting.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "INMOT-1",
      "organization" : "InMotion Hosting, Inc.",
      "subnet" : "213.165.250.0/24"
   },
   "host" : [
      "vps106384"
   ],
   "hostname" : [
      "vps106384.inmotionhosting.com"
   ],
   "ip" : "213.165.250.192",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "INMOTION",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.96.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "vps106384.inmotionhosting.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:ed:e7:af:17:47:0a:3b:71:03:c5:52:93:08:d1:a5:76:6c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "vps106384.inmotionhosting.com"
      ],
      "commonname" : "vps106384.inmotionhosting.com"
   },
   "subnet" : "213.165.240.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-08T04:31:39Z",
      "notbefore" : "2024-11-10T04:31:40Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
196.196.205.157

Alternative IP(s)
196.196.205.130

Network
196.196.204.0/22

Domain(s)
cprapid.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS58065

Organization
Orion Network Limited

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.96.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
196-196-205-130.cprapid.com

Subject Alt Name
196-196-205-130.cprapid.com autoconfig.196-196-205-130.cprapid.com autodiscover.196-196-205-130.cprapid.com ipv6.196-196-205-130.cprapid.com mail.196-196-205-130.cprapid.com www.196-196-205-130.cprapid.com

SHA256 Fingerprint
6024df6399f1568e36d84b95719cb328527d63143f49fcd9ef8a585089baae2b

Validity Not Before
2024-11-11T08:11:25Z

Validity Not After
2025-02-09T08:11:24Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a49e1718487df97e4e22cd221fb8bda6

220-196-196-205-130.cprapid.com ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 05:28:09 -0500 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-196-196-205-130.cprapid.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "196.196.205.130"
   ],
   "app" : {
      "length" : 353
   },
   "asn" : "AS58065",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Helsinki",
   "country" : "FI",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-196-196-205-130.cprapid.com ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 05:28:09 -0500 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-196-196-205-130.cprapid.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "a49e1718487df97e4e22cd221fb8bda6",
   "datammh3" : -2120206174,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "cprapid.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "00067a347e6998d9516a5593cef1b397",
      "sha1" : "173492ece7a524b6912341a5e5486b6b6a8f99ab",
      "sha256" : "6024df6399f1568e36d84b95719cb328527d63143f49fcd9ef8a585089baae2b"
   },
   "geolocus" : {
      "asn" : "AS58065",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "ZA",
      "countryname" : "South Africa",
      "isineu" : "false",
      "latitude" : "-30.559482",
      "location" : "-30.559482,22.937506",
      "longitude" : "22.937506",
      "netname" : "FIBERSA",
      "organization" : "Route",
      "subnet" : "196.196.204.0/22"
   },
   "host" : [
      "196-196-205-130",
      "autoconfig",
      "autodiscover",
      "ipv6",
      "mail",
      "www"
   ],
   "hostname" : [
      "196-196-205-130.cprapid.com",
      "autoconfig.196-196-205-130.cprapid.com",
      "autodiscover.196-196-205-130.cprapid.com",
      "ipv6.196-196-205-130.cprapid.com",
      "mail.196-196-205-130.cprapid.com",
      "www.196-196-205-130.cprapid.com"
   ],
   "ip" : "196.196.205.157",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "60.1797",
   "location" : "60.1797,24.9344",
   "longitude" : "24.9344",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Orion Network Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.96.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-11-21",
   "serial" : "04:28:56:89:05:59:01:50:e7:78:76:b0:be:c0:4f:14:20:21",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "196-196-205-130.cprapid.com"
   ],
   "subject" : {
      "altname" : [
         "196-196-205-130.cprapid.com",
         "autoconfig.196-196-205-130.cprapid.com",
         "autodiscover.196-196-205-130.cprapid.com",
         "ipv6.196-196-205-130.cprapid.com",
         "mail.196-196-205-130.cprapid.com",
         "www.196-196-205-130.cprapid.com"
      ],
      "commonname" : "196-196-205-130.cprapid.com"
   },
   "subnet" : "196.196.204.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-09T08:11:24Z",
      "notbefore" : "2024-11-11T08:11:25Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
103.26.141.158

Network
103.26.140.0/22

Domain(s)
hostpapavps.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
fbdjh360.hostpapavps.net

ASN
AS40092

Organization
ONIAAS

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.96.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
fbdjh360.hostpapavps.net

Subject Alt Name
fbdjh360.hostpapavps.net

SHA256 Fingerprint
4ecb6eecf7f8be8b321731a66245c020d4ab0e1d555153b93bb78b1d9c45b234

Validity Not Before
2024-11-11T15:58:59Z

Validity Not After
2025-02-09T15:58:58Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0cf034fb02de3e4414b39b0989d72097

220-fbdjh360.hostpapavps.net ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 10:28:09 +0000 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-fbdjh360.hostpapavps.net Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "app" : {
      "length" : 369
   },
   "asn" : "AS40092",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Toronto",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-fbdjh360.hostpapavps.net ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 10:28:09 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-fbdjh360.hostpapavps.net Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-AUTH PLAIN LOGIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "0cf034fb02de3e4414b39b0989d72097",
   "datammh3" : 473567089,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hostpapavps.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "0912444fa405c06bb5c8afd01110e20b",
      "sha1" : "b5be0d75e54ebca64e29275df730802eb2f79be6",
      "sha256" : "4ecb6eecf7f8be8b321731a66245c020d4ab0e1d555153b93bb78b1d9c45b234"
   },
   "geolocus" : {
      "asn" : "AS13768",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "hostpapa.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "NET-103-26-140-0-1",
      "organization" : "HostPapa",
      "subnet" : "103.26.140.0/22"
   },
   "host" : [
      "fbdjh360"
   ],
   "hostname" : [
      "fbdjh360.hostpapavps.net"
   ],
   "ip" : "103.26.141.158",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6547",
   "location" : "43.6547,-79.3623",
   "longitude" : "-79.3623",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ONIAAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.96.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "fbdjh360.hostpapavps.net"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "03:c6:3f:96:82:4f:d6:e3:4d:c6:23:3c:66:0c:62:de:77:ba",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "fbdjh360.hostpapavps.net"
      ],
      "commonname" : "fbdjh360.hostpapavps.net"
   },
   "subnet" : "103.26.140.0/22",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-09T15:58:58Z",
      "notbefore" : "2024-11-11T15:58:59Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
35.206.92.76

Alternative IP(s)
35.209.233.85

Network
35.206.64.0/18

Domain(s)
googleusercontent.com sgvps.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
76.92.206.35.bc.googleusercontent.com

ASN
AS15169

Organization
GOOGLE

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
c71878.sgvps.net

Subject Alt Name
c71878.sgvps.net

SHA256 Fingerprint
a3f61f290a29665deb8cc347f042e6a97d498aa8a65d5573c02f3bd308ce4267

Validity Not Before
2024-11-07T07:21:45Z

Validity Not After
2025-02-05T07:21:44Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f5ba64aa021cdcd682890fdc50121872

220-c71878.sgvps.net ESMTP #2 Thu, 21 Nov 2024 10:28:07 +0000 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-c71878.sgvps.net Hello <ip> [<srcip>]
250-SIZE 83886080
250-LIMITS MAILMAX=1000 RCPTMAX=50000
250-8BITMIME
250-DSN
250-VRFY
250-AUTH LOGIN PLAIN
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "35.209.233.85"
   ],
   "app" : {
      "length" : 360
   },
   "asn" : "AS15169",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Council Bluffs",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-c71878.sgvps.net ESMTP #2 Thu, 21 Nov 2024 10:28:07 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-c71878.sgvps.net Hello <ip> [<srcip>]\r\n250-SIZE 83886080\r\n250-LIMITS MAILMAX=1000 RCPTMAX=50000\r\n250-8BITMIME\r\n250-DSN\r\n250-VRFY\r\n250-AUTH LOGIN PLAIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "f5ba64aa021cdcd682890fdc50121872",
   "datammh3" : 1513400875,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "googleusercontent.com",
      "sgvps.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "3ba23ed2e51066c7ba05ce91d8d40592",
      "sha1" : "44f9a05c26108bd5091dfdc048e95f5581ac4d64",
      "sha256" : "a3f61f290a29665deb8cc347f042e6a97d498aa8a65d5573c02f3bd308ce4267"
   },
   "geolocus" : {
      "asn" : "AS15169",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googleusercontent.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGLE-CLOUD",
      "organization" : "Google LLC",
      "subnet" : "35.206.64.0/18"
   },
   "host" : [
      76,
      "c71878"
   ],
   "hostname" : [
      "76.92.206.35.bc.googleusercontent.com",
      "c71878.sgvps.net"
   ],
   "ip" : "35.206.92.76",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "41.2591",
   "location" : "41.2591,-95.8517",
   "longitude" : "-95.8517",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "76.92.206.35.bc.googleusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:97:18:09:df:b5:28:94:33:ad:d1:4a:85:6a:e5:b8:96:b8",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "206.35.bc.googleusercontent.com",
      "35.bc.googleusercontent.com",
      "92.206.35.bc.googleusercontent.com",
      "bc.googleusercontent.com"
   ],
   "subject" : {
      "altname" : [
         "c71878.sgvps.net"
      ],
      "commonname" : "c71878.sgvps.net"
   },
   "subnet" : "35.206.64.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-05T07:21:44Z",
      "notbefore" : "2024-11-07T07:21:45Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
185.163.106.158

Alternative IP(s)
185.163.106.130 188.114.96.0 188.114.97.0 2a06:98c1:3120:0:0:0:0:0 2a06:98c1:3121:0:0:0:0:0 2a0b:8800:0:0:0:0:0:102

Network
185.163.104.0/22

Domain(s)
mydot.ro

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
mydot.ro

ASN
AS43376

Organization
Dotro Telecom Srl

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

Product
Exim Exim 4.96.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
nexus.mydot.ro

Subject Alt Name
nexus.mydot.ro

SHA256 Fingerprint
a4e4f1bb414d52a7b1101e1319021c9489923b3089e91f5fb91b5b2d7e136280

Validity Not Before
2024-11-03T09:11:43Z

Validity Not After
2025-02-01T09:11:42Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
cfc4963ccb892d0910fc59f4cbee788c

220-nexus.mydot.ro ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 12:28:09 +0200 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-nexus.mydot.ro Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "alternativeip" : [
      "185.163.106.130",
      "188.114.96.0",
      "188.114.97.0",
      "2a06:98c1:3120:0:0:0:0:0",
      "2a06:98c1:3121:0:0:0:0:0",
      "2a0b:8800:0:0:0:0:0:102"
   ],
   "app" : {
      "length" : 349
   },
   "asn" : "AS43376",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Bucharest",
   "country" : "RO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-nexus.mydot.ro ESMTP Exim 4.96.2 #2 Thu, 21 Nov 2024 12:28:09 +0200 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-nexus.mydot.ro Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPECONNECT\r\n250-AUTH PLAIN LOGIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "cfc4963ccb892d0910fc59f4cbee788c",
   "datammh3" : -302077194,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "mydot.ro"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "b3443c7b3469110a3ce25b020c7b5e69",
      "sha1" : "499876815476e71e6cc1395a49616eccbeb4f7ac",
      "sha256" : "a4e4f1bb414d52a7b1101e1319021c9489923b3089e91f5fb91b5b2d7e136280"
   },
   "geolocus" : {
      "asn" : "AS43376",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RO",
      "countryname" : "Romania",
      "domain" : [
         "dotrotelecom.ro"
      ],
      "isineu" : "true",
      "latitude" : "45.943161",
      "location" : "45.943161,24.96676",
      "longitude" : "24.96676",
      "netname" : "DOTRO-TELECOM-Business",
      "organization" : "DOTRO TELECOM",
      "subnet" : "185.163.104.0/22"
   },
   "host" : [
      "nexus"
   ],
   "hostname" : [
      "mydot.ro",
      "nexus.mydot.ro"
   ],
   "ip" : "185.163.106.158",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "44.4152",
   "location" : "44.4152,26.1660",
   "longitude" : "26.1660",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Dotro Telecom Srl",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.96.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "mydot.ro"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "03:d9:9e:dc:f2:98:df:b2:1c:2b:18:4b:62:33:8c:45:2c:88",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "nexus.mydot.ro"
      ],
      "commonname" : "nexus.mydot.ro"
   },
   "subnet" : "185.163.104.0/22",
   "tld" : [
      "ro"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-02-01T09:11:42Z",
      "notbefore" : "2024-11-03T09:11:43Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
35.215.71.117

Network
35.208.0.0/13

Domain(s)
googleusercontent.com sgvps.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
117.71.215.35.bc.googleusercontent.com

ASN
AS15169

Organization
GOOGLE

Protocol
smtp Cert not expired smtp

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
R11

Issuer Organization
Let's Encrypt

Subject Common Name
c1108289.sgvps.net

Subject Alt Name
c1108289.sgvps.net

SHA256 Fingerprint
1be1860da70059aa0727ef3e8b28516132411df562c9d9f70c4d912ee618fefc

Validity Not Before
2024-09-25T07:42:15Z

Validity Not After
2024-12-24T07:42:14Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
932a9971807254e74f8701f146853856

220-c1108289.sgvps.net ESMTP #2 Thu, 21 Nov 2024 10:28:07 +0000 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-c1108289.sgvps.net Hello <ip> [<srcip>]
250-SIZE 83886080
250-LIMITS MAILMAX=1000 RCPTMAX=50000
250-8BITMIME
250-DSN
250-VRFY
250-AUTH LOGIN PLAIN
250-STARTTLS
250 HELP
220 TLS go ahead

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T10:28:21.000Z",
   "app" : {
      "length" : 364
   },
   "asn" : "AS15169",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Los Angeles",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-c1108289.sgvps.net ESMTP #2 Thu, 21 Nov 2024 10:28:07 +0000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-c1108289.sgvps.net Hello <ip> [<srcip>]\r\n250-SIZE 83886080\r\n250-LIMITS MAILMAX=1000 RCPTMAX=50000\r\n250-8BITMIME\r\n250-DSN\r\n250-VRFY\r\n250-AUTH LOGIN PLAIN\r\n250-STARTTLS\r\n250 HELP\r\n220 TLS go ahead",
   "datamd5" : "932a9971807254e74f8701f146853856",
   "datammh3" : -1368462527,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "googleusercontent.com",
      "sgvps.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "3a562335663c1fbd667b34a9197a5373",
      "sha1" : "74234b521b3d422d90d69cce3e7be44fdfed311b",
      "sha256" : "1be1860da70059aa0727ef3e8b28516132411df562c9d9f70c4d912ee618fefc"
   },
   "geolocus" : {
      "asn" : "AS15169",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "google.com",
         "googleusercontent.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "GOOGLE-CLOUD",
      "organization" : "Google LLC",
      "subnet" : "35.215.64.0/18"
   },
   "host" : [
      117,
      "c1108289"
   ],
   "hostname" : [
      "117.71.215.35.bc.googleusercontent.com",
      "c1108289.sgvps.net"
   ],
   "ip" : "35.215.71.117",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "R11",
      "country" : "US",
      "organization" : "Let's Encrypt"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "34.0544",
   "location" : "34.0544,-118.2441",
   "longitude" : "-118.2441",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GOOGLE",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 587,
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "117.71.215.35.bc.googleusercontent.com"
   ],
   "seen_date" : "2024-11-21",
   "serial" : "04:78:36:f7:06:15:08:21:9e:37:36:2b:5f:06:28:98:5c:93",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "215.35.bc.googleusercontent.com",
      "35.bc.googleusercontent.com",
      "71.215.35.bc.googleusercontent.com",
      "bc.googleusercontent.com"
   ],
   "subject" : {
      "altname" : [
         "c1108289.sgvps.net"
      ],
      "commonname" : "c1108289.sgvps.net"
   },
   "subnet" : "35.208.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-12-24T07:42:14Z",
      "notbefore" : "2024-09-25T07:42:15Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 1,046,552 in 0.133 second(s)

216.137.183.160:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

157.90.233.234:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

43.230.160.235:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

35.209.94.93:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

213.165.250.192:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

196.196.205.157:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

103.26.141.158:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

35.206.92.76:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

185.163.106.158:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC

35.215.71.117:587 (tcp/smtp/tls) - last seen on 2024-11-21 at 10:28:21 UTC