Fliphats Email solution

Layered Intelligence  ·  Real-Time SMTP Verification

0
Total Checked
0
Valid
0
Invalid
0
Unverifiable
0
Unknown / Risky
Real-Time Verify
SMTP deep-check in progress…
Verification History
Email Status Score Flags MX Host / IP
Loading…
Bulk Verification (CSV)

Drag & Drop a CSV or TXT file here

or click to browse  ·  one email per line, or CSV with an email column

Processing… 0%
Status: Tier:
# Email Status Score Flags MX Host / IP
Status Guide:   ● valid — SMTP confirmed mailbox exists  ·  ● unverifiable — major provider (Gmail/Yahoo/Outlook) — they block SMTP probing  ·  ● risky — catch-all domain, individual mailbox unconfirmable  ·  ● invalid — SMTP rejected / disposable / no MX  ·  ● unknown — SMTP blocked or timed out

Help & FAQ

📊 Understanding Scores
The score tells you how safe and deliverable an email address is before you send to it.

  • 90–100 Premium — SMTP-confirmed, clean domain, real person
  • 75–89 High Quality — SMTP-verified with minor deductions
  • 60–74 Acceptable — Major provider or catch-all, can't fully confirm
  • 40–59 Risky — Blocked, greylisted, or missing DNS security
  • 0–39 Poor / Invalid — Multiple red flags or hard failure
When you submit an email, a quick check runs instantly (format, domain, blacklists). The score you see first is based on that.

A deeper SMTP check then runs in the background — it actually connects to the mail server and tests the mailbox. The score updates when that finishes.

A drop usually means the mailbox doesn't exist, or the mail server blocked the probe.
Every email starts at 100 and points are deducted for problems found:

  • Misspelled domain (e.g. gmaill.com) — −20
  • Role-based address (info@, admin@) — −20
  • High-risk domain extension (.xyz, .top) — −30
  • Missing SPF or DMARC record — −10 each
  • Domain on spam blacklist — −40
Points are then added back if good signals are found:
  • SMTP confirmed the mailbox exists — +20
  • Real person detected via Gravatar — +10
  • Domain has both SPF & DMARC — +5
🔖 Email Statuses
Best result possible. The mail server directly confirmed that this mailbox exists and can receive email. Safe to send.
The email is on a major provider (Gmail, Yahoo, Outlook, iCloud, etc.) that intentionally blocks external SMTP checks to protect their users.

The domain is 100% legitimate — we just can't confirm the individual mailbox. These are generally safe to send to.
The mail server rejected this address — the mailbox does not exist. Sending to it will result in a hard bounce. Do not send.
The domain is a catch-all — its mail server accepts all incoming emails without checking if the individual mailbox exists.

The address format is valid and the domain works, but we cannot confirm this specific mailbox is real. Send with caution.
The SMTP check could not complete — the server blocked the connection, timed out, or gave an inconclusive response.

The email may or may not be valid. Common reasons: strict firewall rules, greylisting, or port 25 blocked at network level.
🚩 What Do Flags Mean?
The best flag to have. It means our system connected directly to the mail server and received confirmation that this exact mailbox exists and accepts mail. Score gets a +20 boost.
The domain is configured to accept every email sent to it, even made-up addresses like xyzabc123@thatdomain.com.

This means we can't tell if your specific address is real or not. Score is capped at 65 (hard catch-all) or 70 (soft catch-all).
The domain belongs to a temporary / throwaway email service (like Mailinator, TempMail, Guerrilla Mail, etc.).

These addresses are created to bypass sign-up forms and are almost never real people. Score is set to 0.
The local part of the email (before the @) is a shared department inbox, not a personal address. Examples: info@, admin@, support@, sales@, noreply@.

These are often read by multiple people or automated systems. Expect very low engagement. Score deducted by −20.
SPF and DMARC are email security records that real businesses publish on their domain to prove they own it and prevent spoofing.

A domain missing these records is a strong sign of a low-quality, newly created, or suspicious domain. Each missing record deducts −10 points.
The domain extension (TLD) is heavily associated with spam, fraud, and low-quality registrations. Examples: .xyz, .top, .tk, .icu, .work, .gq.

These TLDs are often free or extremely cheap, making them popular for throwaway domains. Deducts −30 points.
Gravatar is a global avatar service where people register their email to set a profile picture used across thousands of websites.

If a Gravatar profile is found for this email, it's strong evidence a real human actively uses this address. Adds +10 points.
The domain has both SPF and DMARC records properly configured — a hallmark of a legitimate, well-maintained business domain. Adds a +5 point bonus.
The domain has no mail server configured at all. It is literally impossible to deliver email to this address. Score is set to 0.
📁 Bulk CSV Upload
Scroll down to the Bulk Verification section. You can either:

  • Drag & drop your file onto the upload zone
  • Click the zone to browse and select the file
Your file can be:
  • A plain text file — one email address per line
  • A CSV file — with a column named email
Duplicate addresses are automatically detected and skipped.
After processing, a Filter Bar appears above the results table. You can:

  • Click a Status pill (Valid, Invalid, Unverifiable, etc.) to show only that status
  • Type a Min/Max Score to show only emails in a score range
  • Use Tier buttons (Premium, High, OK, Risky) for instant score presets
  • Click ✕ Reset to clear all filters
The table updates instantly — no reprocessing needed.
Downloads a CSV file containing only the rows currently visible in the table after your filters are applied.

For example: filter to Valid with score 80+, then export — you get only your highest-quality emails.

The filename reflects your filters (e.g. email_results_valid_score80-100.csv). Your full unfiltered data is never lost — just reset the filters to see everything again.
The exported file includes these columns:

  • email — the address
  • status — valid / invalid / unverifiable / risky / unknown
  • score — 0 to 100
  • flags — all signals, pipe-separated
  • mx_host — the mail server hostname
  • smtp_reason — why the SMTP result was given
  • spf / dmarc — yes or no
  • gravatar — yes or no (real person detected)
  • tld_risk — yes or no (high-risk domain extension)
  • catch_all_confidence — hard / soft / empty
🌐 MX Host & IP
MX stands for Mail Exchanger — it's the server address responsible for receiving emails for that domain.

For example, Gmail addresses show gmail-smtp-in.l.google.com. Seeing a valid MX host means the domain is properly set up to receive mail.
The A record (IP address) of the email domain. This is the numeric address the domain resolves to.

A dash (—) means the domain has no direct IP address, which is normal for large providers like Gmail or Yahoo that use dedicated mail infrastructure.
💡 General
Email verification involves real network connections — connecting to the domain's mail server, running an SMTP handshake, and waiting for a response.

Some mail servers are slow to respond, behind firewalls, or use greylisting (a technique that delays unfamiliar senders). The system waits up to 35 seconds per email before timing out.
Google, Yahoo, Microsoft, Apple and other major providers intentionally block all external SMTP verification attempts to protect their users' privacy.

This is expected and normal — it does not mean the address is invalid. The score stays high (60+) because the domain itself is fully legitimate.
Every email you verify is saved to the database and shown in the Verification History table.

If the same email has been checked multiple times, only the most recent result is shown. The table auto-refreshes every 5 seconds to show SMTP results as they complete.