Cyber Defense Search Engine

IP
68.168.119.164

Network
68.168.112.0/20

Domain(s)
web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
seout10.web-dns1.com

ASN
AS36666

Organization
GTCOMM

Protocol
smtp Cert not expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 20241029.1000

CPE(s)

<enterprise field>: cpe
Issuer Common Name
GeoTrust TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Organization
WHC ONLINE SOLUTIONS INC.

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.whc.ca *.web-dns1.com

SHA256 Fingerprint
e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808

Validity Not Before
2024-01-12T00:00:00Z

Validity Not After
2025-01-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
47364315b84fbd971e37710b0520dee9

220 se1.web-dns1.com ESMTP Exim 20241029.1000 Wed, 06 Nov 2024 10:28:40 -0500
250-se1.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE
250-8BITMIME
250-DSN
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-06T15:28:50.000Z",
   "app" : {
      "length" : 207
   },
   "asn" : "AS36666",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 se1.web-dns1.com ESMTP Exim 20241029.1000 Wed, 06 Nov 2024 10:28:40 -0500\r\n250-se1.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE\r\n250-8BITMIME\r\n250-DSN\r\n250-AUTH PLAIN LOGIN\r\n250-CHUNKING\r\n250 HELP\r\n",
   "datamd5" : "47364315b84fbd971e37710b0520dee9",
   "datammh3" : -910715975,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "aff66c750d48d4fa153336482e668459",
      "sha1" : "9b1ca2b62f43405aa2215674a496e78840c127a3",
      "sha256" : "e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808"
   },
   "geolocus" : {
      "asn" : "AS36666",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "globo.tech"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "GTCOMM",
      "organization" : "GloboTech Communications",
      "subnet" : "68.168.112.0/20"
   },
   "host" : [
      "secure",
      "seout10"
   ],
   "hostname" : [
      "secure.whc.ca",
      "seout10.web-dns1.com"
   ],
   "ip" : "68.168.119.164",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "GeoTrust TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTCOMM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "20241029.1000",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "seout10.web-dns1.com"
   ],
   "seen_date" : "2024-11-06",
   "serial" : "0c:d4:1f:49:ab:52:bb:04:96:af:cb:d7:1f:06:9f:84",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.whc.ca",
         "*.web-dns1.com"
      ],
      "city" : "Montr\u00e9al",
      "commonname" : "secure.whc.ca",
      "country" : "CA",
      "organization" : "WHC ONLINE SOLUTIONS INC."
   },
   "subnet" : "68.168.112.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-11T23:59:59Z",
      "notbefore" : "2024-01-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
67.215.8.22

Network
67.215.0.0/20

Domain(s)
web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
seout13.web-dns1.com

ASN
AS36666

Organization
GTCOMM

Protocol
smtp Cert not expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 20241029.1000

CPE(s)

<enterprise field>: cpe
Issuer Common Name
GeoTrust TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Organization
WHC ONLINE SOLUTIONS INC.

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.whc.ca *.web-dns1.com

SHA256 Fingerprint
e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808

Validity Not Before
2024-01-12T00:00:00Z

Validity Not After
2025-01-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3446d897fe01f50500ab7c1516353bcf

220 se2.web-dns1.com ESMTP Exim 20241029.1000 Sun, 03 Nov 2024 20:53:26 -0500
250-se2.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE
250-8BITMIME
250-DSN
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-04T01:53:36.000Z",
   "app" : {
      "length" : 207
   },
   "asn" : "AS36666",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 se2.web-dns1.com ESMTP Exim 20241029.1000 Sun, 03 Nov 2024 20:53:26 -0500\r\n250-se2.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE\r\n250-8BITMIME\r\n250-DSN\r\n250-AUTH PLAIN LOGIN\r\n250-CHUNKING\r\n250 HELP\r\n",
   "datamd5" : "3446d897fe01f50500ab7c1516353bcf",
   "datammh3" : -183592923,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "aff66c750d48d4fa153336482e668459",
      "sha1" : "9b1ca2b62f43405aa2215674a496e78840c127a3",
      "sha256" : "e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808"
   },
   "geolocus" : {
      "asn" : "AS36666",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "globo.tech"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "GTCOMM-1178",
      "organization" : "GloboTech Communications",
      "subnet" : "67.215.0.0/20"
   },
   "host" : [
      "secure",
      "seout13"
   ],
   "hostname" : [
      "secure.whc.ca",
      "seout13.web-dns1.com"
   ],
   "ip" : "67.215.8.22",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "GeoTrust TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTCOMM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "20241029.1000",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "seout13.web-dns1.com"
   ],
   "seen_date" : "2024-11-04",
   "serial" : "0c:d4:1f:49:ab:52:bb:04:96:af:cb:d7:1f:06:9f:84",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.whc.ca",
         "*.web-dns1.com"
      ],
      "city" : "Montr\u00e9al",
      "commonname" : "secure.whc.ca",
      "country" : "CA",
      "organization" : "WHC ONLINE SOLUTIONS INC."
   },
   "subnet" : "67.215.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-11T23:59:59Z",
      "notbefore" : "2024-01-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
54.39.238.11

Network
54.36.0.0/14

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ip11.ip-54-39-238.net

ASN
AS16276

Organization
OVH SAS

Protocol
smtp Cert expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 4.94.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.web-dns1.com *.whc.ca

SHA256 Fingerprint
78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7

Validity Not Before
2023-01-05T00:00:00Z

Validity Not After
2024-02-04T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
95d4bc220e6869b7e43b6b268624a583

220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Sun, 03 Nov 2024 09:24:53 -0500 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-coredev.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-03T14:25:04.000Z",
   "app" : {
      "length" : 332
   },
   "asn" : "AS16276",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Beauharnois",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Sun, 03 Nov 2024 09:24:53 -0500 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-coredev.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN\r\n250 HELP\r\n",
   "datamd5" : "95d4bc220e6869b7e43b6b268624a583",
   "datammh3" : 184342156,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ip-54-39-238.net",
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "4eaae2c0516b27141f31de625d02abbf",
      "sha1" : "721a6456a3fedf384f900b153cc30f9fb6e49ce6",
      "sha256" : "78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7"
   },
   "geolocus" : {
      "asn" : "AS16276",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "ovh.ca",
         "ovh.net"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "HO-2",
      "organization" : "OVH Hosting, Inc.",
      "subnet" : "54.39.192.0/18"
   },
   "host" : [
      "ip11",
      "secure"
   ],
   "hostname" : [
      "ip11.ip-54-39-238.net",
      "secure.whc.ca"
   ],
   "ip" : "54.39.238.11",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "45.3161",
   "location" : "45.3161,-73.8736",
   "longitude" : "-73.8736",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OVH SAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.94.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ip11.ip-54-39-238.net"
   ],
   "seen_date" : "2024-11-03",
   "serial" : "8c:04:f4:10:e3:94:b9:d1:1b:34:9e:da:e9:c9:cc:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.web-dns1.com",
         "*.whc.ca"
      ],
      "commonname" : "secure.whc.ca"
   },
   "subnet" : "54.36.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-02-04T23:59:59Z",
      "notbefore" : "2023-01-05T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
198.27.83.209

Network
198.27.64.0/18

Domain(s)
web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
coredev.web-dns1.com

ASN
AS16276

Organization
OVH SAS

Protocol
smtp Cert expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 4.94.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.web-dns1.com *.whc.ca

SHA256 Fingerprint
78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7

Validity Not Before
2023-01-05T00:00:00Z

Validity Not After
2024-02-04T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
2647946c5d0e18c9c3cca3cfdeefa3d0

220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Sat, 02 Nov 2024 22:19:39 -0400 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-coredev.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-03T02:19:50.000Z",
   "app" : {
      "length" : 332
   },
   "asn" : "AS16276",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Sat, 02 Nov 2024 22:19:39 -0400 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-coredev.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN\r\n250 HELP\r\n",
   "datamd5" : "2647946c5d0e18c9c3cca3cfdeefa3d0",
   "datammh3" : -1248821738,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "4eaae2c0516b27141f31de625d02abbf",
      "sha1" : "721a6456a3fedf384f900b153cc30f9fb6e49ce6",
      "sha256" : "78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7"
   },
   "geolocus" : {
      "asn" : "AS16276",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "ovh.ca",
         "ovh.net"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "OVH-ARIN-4",
      "organization" : "OVH Hosting, Inc.",
      "subnet" : "198.27.80.0/21"
   },
   "host" : [
      "coredev",
      "secure"
   ],
   "hostname" : [
      "coredev.web-dns1.com",
      "secure.whc.ca"
   ],
   "ip" : "198.27.83.209",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OVH SAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.94.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "coredev.web-dns1.com"
   ],
   "seen_date" : "2024-11-03",
   "serial" : "8c:04:f4:10:e3:94:b9:d1:1b:34:9e:da:e9:c9:cc:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.web-dns1.com",
         "*.whc.ca"
      ],
      "commonname" : "secure.whc.ca"
   },
   "subnet" : "198.27.64.0/18",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-02-04T23:59:59Z",
      "notbefore" : "2023-01-05T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
68.168.119.162

Network
68.168.112.0/20

Domain(s)
web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
se1.web-dns1.com

ASN
AS36666

Organization
GTCOMM

Protocol
smtp Cert not expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 20241022.1000

CPE(s)

<enterprise field>: cpe
Issuer Common Name
GeoTrust TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Organization
WHC ONLINE SOLUTIONS INC.

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.whc.ca *.web-dns1.com

SHA256 Fingerprint
e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808

Validity Not Before
2024-01-12T00:00:00Z

Validity Not After
2025-01-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
e1ac238f250ebbaf3adb07020ad40a4e

220 se1.web-dns1.com ESMTP Exim 20241022.1000 Fri, 01 Nov 2024 06:57:47 -0400
250-se1.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE
250-8BITMIME
250-DSN
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-01T10:57:57.000Z",
   "app" : {
      "length" : 207
   },
   "asn" : "AS36666",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 se1.web-dns1.com ESMTP Exim 20241022.1000 Fri, 01 Nov 2024 06:57:47 -0400\r\n250-se1.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE\r\n250-8BITMIME\r\n250-DSN\r\n250-AUTH PLAIN LOGIN\r\n250-CHUNKING\r\n250 HELP\r\n",
   "datamd5" : "e1ac238f250ebbaf3adb07020ad40a4e",
   "datammh3" : 1975636080,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "aff66c750d48d4fa153336482e668459",
      "sha1" : "9b1ca2b62f43405aa2215674a496e78840c127a3",
      "sha256" : "e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808"
   },
   "geolocus" : {
      "asn" : "AS36666",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "globo.tech"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "GTCOMM",
      "organization" : "GloboTech Communications",
      "subnet" : "68.168.112.0/20"
   },
   "host" : [
      "se1",
      "secure"
   ],
   "hostname" : [
      "se1.web-dns1.com",
      "secure.whc.ca"
   ],
   "ip" : "68.168.119.162",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "GeoTrust TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTCOMM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "20241022.1000",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "se1.web-dns1.com"
   ],
   "seen_date" : "2024-11-01",
   "serial" : "0c:d4:1f:49:ab:52:bb:04:96:af:cb:d7:1f:06:9f:84",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.whc.ca",
         "*.web-dns1.com"
      ],
      "city" : "Montr\u00e9al",
      "commonname" : "secure.whc.ca",
      "country" : "CA",
      "organization" : "WHC ONLINE SOLUTIONS INC."
   },
   "subnet" : "68.168.112.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-11T23:59:59Z",
      "notbefore" : "2024-01-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
67.215.8.18

Network
67.215.0.0/20

Domain(s)
web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
se2.web-dns1.com

ASN
AS36666

Organization
GTCOMM

Protocol
smtp Cert not expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 20241022.1000

CPE(s)

<enterprise field>: cpe
Issuer Common Name
GeoTrust TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Organization
WHC ONLINE SOLUTIONS INC.

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.whc.ca *.web-dns1.com

SHA256 Fingerprint
e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808

Validity Not Before
2024-01-12T00:00:00Z

Validity Not After
2025-01-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3aeaeeb12fa1d7b07bc7f31284f96da9

220 se2.web-dns1.com ESMTP Exim 20241022.1000 Sat, 26 Oct 2024 14:35:57 -0400
250-se2.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE
250-8BITMIME
250-DSN
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-26T18:36:07.000Z",
   "app" : {
      "length" : 207
   },
   "asn" : "AS36666",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 se2.web-dns1.com ESMTP Exim 20241022.1000 Sat, 26 Oct 2024 14:35:57 -0400\r\n250-se2.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE\r\n250-8BITMIME\r\n250-DSN\r\n250-AUTH PLAIN LOGIN\r\n250-CHUNKING\r\n250 HELP\r\n",
   "datamd5" : "3aeaeeb12fa1d7b07bc7f31284f96da9",
   "datammh3" : 1275811486,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "aff66c750d48d4fa153336482e668459",
      "sha1" : "9b1ca2b62f43405aa2215674a496e78840c127a3",
      "sha256" : "e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808"
   },
   "geolocus" : {
      "asn" : "AS36666",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "globo.tech"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "GTCOMM-1178",
      "organization" : "GloboTech Communications",
      "subnet" : "67.215.0.0/20"
   },
   "host" : [
      "se2",
      "secure"
   ],
   "hostname" : [
      "se2.web-dns1.com",
      "secure.whc.ca"
   ],
   "ip" : "67.215.8.18",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "GeoTrust TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTCOMM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "20241022.1000",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "se2.web-dns1.com"
   ],
   "seen_date" : "2024-10-26",
   "serial" : "0c:d4:1f:49:ab:52:bb:04:96:af:cb:d7:1f:06:9f:84",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.whc.ca",
         "*.web-dns1.com"
      ],
      "city" : "Montr\u00e9al",
      "commonname" : "secure.whc.ca",
      "country" : "CA",
      "organization" : "WHC ONLINE SOLUTIONS INC."
   },
   "subnet" : "67.215.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-11T23:59:59Z",
      "notbefore" : "2024-01-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
68.168.119.163

Network
68.168.112.0/20

Domain(s)
web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
seout2.web-dns1.com

ASN
AS36666

Organization
GTCOMM

Protocol
smtp Cert not expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 20241015.1224

CPE(s)

<enterprise field>: cpe
Issuer Common Name
GeoTrust TLS RSA CA G1

Issuer Organization
DigiCert Inc

Subject Organization
WHC ONLINE SOLUTIONS INC.

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.whc.ca *.web-dns1.com

SHA256 Fingerprint
e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808

Validity Not Before
2024-01-12T00:00:00Z

Validity Not After
2025-01-11T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
ce89ba355c79fdaee05e03d36aa0f794

220 se1.web-dns1.com ESMTP Exim 20241015.1224 Fri, 25 Oct 2024 22:18:37 -0400
250-se1.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE
250-8BITMIME
250-DSN
250-AUTH PLAIN LOGIN
250-CHUNKING
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-26T02:18:47.000Z",
   "app" : {
      "length" : 207
   },
   "asn" : "AS36666",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220 se1.web-dns1.com ESMTP Exim 20241015.1224 Fri, 25 Oct 2024 22:18:37 -0400\r\n250-se1.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE\r\n250-8BITMIME\r\n250-DSN\r\n250-AUTH PLAIN LOGIN\r\n250-CHUNKING\r\n250 HELP\r\n",
   "datamd5" : "ce89ba355c79fdaee05e03d36aa0f794",
   "datammh3" : -1548525091,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "aff66c750d48d4fa153336482e668459",
      "sha1" : "9b1ca2b62f43405aa2215674a496e78840c127a3",
      "sha256" : "e7b2d359c0426c9f4f81e6374f7e1e8eae16188fadcac88e3f2ec2391c120808"
   },
   "geolocus" : {
      "asn" : "AS36666",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "globo.tech"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "GTCOMM",
      "organization" : "GloboTech Communications",
      "subnet" : "68.168.112.0/20"
   },
   "host" : [
      "secure",
      "seout2"
   ],
   "hostname" : [
      "secure.whc.ca",
      "seout2.web-dns1.com"
   ],
   "ip" : "68.168.119.163",
   "ipv6" : "false",
   "issuer" : {
      "commonname" : "GeoTrust TLS RSA CA G1",
      "country" : "US",
      "organization" : "DigiCert Inc",
      "organizationalunit" : "www.digicert.com"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "43.6319",
   "location" : "43.6319,-79.3716",
   "longitude" : "-79.3716",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTCOMM",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "20241015.1224",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "seout2.web-dns1.com"
   ],
   "seen_date" : "2024-10-26",
   "serial" : "0c:d4:1f:49:ab:52:bb:04:96:af:cb:d7:1f:06:9f:84",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.whc.ca",
         "*.web-dns1.com"
      ],
      "city" : "Montr\u00e9al",
      "commonname" : "secure.whc.ca",
      "country" : "CA",
      "organization" : "WHC ONLINE SOLUTIONS INC."
   },
   "subnet" : "68.168.112.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2025-01-11T23:59:59Z",
      "notbefore" : "2024-01-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
54.39.238.9

Network
54.36.0.0/14

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ip9.ip-54-39-238.net

ASN
AS16276

Organization
OVH SAS

Protocol
smtp Cert expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 4.94.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.web-dns1.com *.whc.ca

SHA256 Fingerprint
78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7

Validity Not Before
2023-01-05T00:00:00Z

Validity Not After
2024-02-04T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a77654fb71aa58cf45e5d22bab173d5a

220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Thu, 24 Oct 2024 03:14:55 -0400 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-coredev.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-24T07:15:05.000Z",
   "app" : {
      "length" : 332
   },
   "asn" : "AS16276",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Beauharnois",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Thu, 24 Oct 2024 03:14:55 -0400 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-coredev.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN\r\n250 HELP\r\n",
   "datamd5" : "a77654fb71aa58cf45e5d22bab173d5a",
   "datammh3" : -2027879462,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ip-54-39-238.net",
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "4eaae2c0516b27141f31de625d02abbf",
      "sha1" : "721a6456a3fedf384f900b153cc30f9fb6e49ce6",
      "sha256" : "78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7"
   },
   "geolocus" : {
      "asn" : "AS16276",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "ovh.ca",
         "ovh.net"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "HO-2",
      "organization" : "OVH Hosting, Inc.",
      "subnet" : "54.39.192.0/18"
   },
   "host" : [
      "ip9",
      "secure"
   ],
   "hostname" : [
      "ip9.ip-54-39-238.net",
      "secure.whc.ca"
   ],
   "ip" : "54.39.238.9",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "45.3161",
   "location" : "45.3161,-73.8736",
   "longitude" : "-73.8736",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OVH SAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.94.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ip9.ip-54-39-238.net"
   ],
   "seen_date" : "2024-10-24",
   "serial" : "8c:04:f4:10:e3:94:b9:d1:1b:34:9e:da:e9:c9:cc:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.web-dns1.com",
         "*.whc.ca"
      ],
      "commonname" : "secure.whc.ca"
   },
   "subnet" : "54.36.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-02-04T23:59:59Z",
      "notbefore" : "2023-01-05T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
54.39.238.13

Network
54.36.0.0/14

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ip13.ip-54-39-238.net

ASN
AS16276

Organization
OVH SAS

Protocol
smtp Cert expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 4.94.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.web-dns1.com *.whc.ca

SHA256 Fingerprint
78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7

Validity Not Before
2023-01-05T00:00:00Z

Validity Not After
2024-02-04T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
308c1cb9990791a92a5221192b37462e

220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Wed, 23 Oct 2024 20:37:38 -0400 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-coredev.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-24T00:37:49.000Z",
   "app" : {
      "length" : 332
   },
   "asn" : "AS16276",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Beauharnois",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Wed, 23 Oct 2024 20:37:38 -0400 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-coredev.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN\r\n250 HELP\r\n",
   "datamd5" : "308c1cb9990791a92a5221192b37462e",
   "datammh3" : -1734971519,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ip-54-39-238.net",
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "4eaae2c0516b27141f31de625d02abbf",
      "sha1" : "721a6456a3fedf384f900b153cc30f9fb6e49ce6",
      "sha256" : "78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7"
   },
   "geolocus" : {
      "asn" : "AS16276",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "ovh.ca",
         "ovh.net"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "HO-2",
      "organization" : "OVH Hosting, Inc.",
      "subnet" : "54.39.192.0/18"
   },
   "host" : [
      "ip13",
      "secure"
   ],
   "hostname" : [
      "ip13.ip-54-39-238.net",
      "secure.whc.ca"
   ],
   "ip" : "54.39.238.13",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "45.3161",
   "location" : "45.3161,-73.8736",
   "longitude" : "-73.8736",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OVH SAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.94.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ip13.ip-54-39-238.net"
   ],
   "seen_date" : "2024-10-24",
   "serial" : "8c:04:f4:10:e3:94:b9:d1:1b:34:9e:da:e9:c9:cc:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.web-dns1.com",
         "*.whc.ca"
      ],
      "commonname" : "secure.whc.ca"
   },
   "subnet" : "54.36.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-02-04T23:59:59Z",
      "notbefore" : "2023-01-05T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

IP
54.39.238.15

Network
54.36.0.0/14

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ip15.ip-54-39-238.net

ASN
AS16276

Organization
OVH SAS

Protocol
smtp Cert expired smtp

Source
datascan
NOTE
This tab is a merge from current page results.

CPE(s)

Domain(s)
ip-54-39-238.net web-dns1.com whc.ca

Hostname(s)
coredev.web-dns1.com ip11.ip-54-39-238.net ip13.ip-54-39-238.net ip15.ip-54-39-238.net ip9.ip-54-39-238.net se1.web-dns1.com se2.web-dns1.com secure.whc.ca seout10.web-dns1.com seout13.web-dns1.com seout2.web-dns1.com

IP(s)
198.27.83.209 54.39.238.11 54.39.238.13 54.39.238.15 54.39.238.9 67.215.8.18 67.215.8.22 68.168.119.162 68.168.119.163 68.168.119.164

Port(s)
465

Protocol(s)
smtp

Tag(s)
Operating System
Linux Linux Kernel

Product
Exim Exim 4.94.2

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
secure.whc.ca

Subject Alt Name
secure.whc.ca *.web-dns1.com *.whc.ca

SHA256 Fingerprint
78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7

Validity Not Before
2023-01-05T00:00:00Z

Validity Not After
2024-02-04T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
ee20f6d678d56a096d62b326d53f92ef

220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Mon, 21 Oct 2024 07:05:49 -0400 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-coredev.web-dns1.com Hello <hostname> [<srcip>]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN
250 HELP

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-21T11:06:00.000Z",
   "app" : {
      "length" : 332
   },
   "asn" : "AS16276",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Beauharnois",
   "country" : "CA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "220-coredev.web-dns1.com ESMTP Exim 4.94.2 #2 Mon, 21 Oct 2024 07:05:49 -0400 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n250-coredev.web-dns1.com Hello <hostname> [<srcip>]\r\n250-SIZE 52428800\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN\r\n250 HELP\r\n",
   "datamd5" : "ee20f6d678d56a096d62b326d53f92ef",
   "datammh3" : 1431511786,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "ip-54-39-238.net",
      "web-dns1.com",
      "whc.ca"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "4eaae2c0516b27141f31de625d02abbf",
      "sha1" : "721a6456a3fedf384f900b153cc30f9fb6e49ce6",
      "sha256" : "78d4aa4aba29740ab63d80971670f0999d33179f840dfd673a37a21360badde7"
   },
   "geolocus" : {
      "asn" : "AS16276",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "CA",
      "countryname" : "Canada",
      "domain" : [
         "ovh.ca",
         "ovh.net"
      ],
      "isineu" : "false",
      "latitude" : "56.130366",
      "location" : "56.130366,-106.346771",
      "longitude" : "-106.346771",
      "netname" : "HO-2",
      "organization" : "OVH Hosting, Inc.",
      "subnet" : "54.39.192.0/18"
   },
   "host" : [
      "ip15",
      "secure"
   ],
   "hostname" : [
      "ip15.ip-54-39-238.net",
      "secure.whc.ca"
   ],
   "ip" : "54.39.238.15",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "45.3161",
   "location" : "45.3161,-73.8736",
   "longitude" : "-73.8736",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "OVH SAS",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 465,
   "product" : "Exim",
   "productvendor" : "Exim",
   "productversion" : "4.94.2",
   "protocol" : "smtp",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "ip15.ip-54-39-238.net"
   ],
   "seen_date" : "2024-10-21",
   "serial" : "8c:04:f4:10:e3:94:b9:d1:1b:34:9e:da:e9:c9:cc:79",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "secure.whc.ca",
         "*.web-dns1.com",
         "*.whc.ca"
      ],
      "commonname" : "secure.whc.ca"
   },
   "subnet" : "54.36.0.0/14",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "ca",
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "validity" : {
      "notafter" : "2024-02-04T23:59:59Z",
      "notbefore" : "2023-01-05T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "true"
}

Returning 10 result(s) out of 21 in 0.100 second(s)

68.168.119.164:465 (tcp/smtp/tls) - last seen on 2024-11-06 at 15:28:50 UTC

67.215.8.22:465 (tcp/smtp/tls) - last seen on 2024-11-04 at 01:53:36 UTC

54.39.238.11:465 (tcp/smtp/tls) - last seen on 2024-11-03 at 14:25:04 UTC

198.27.83.209:465 (tcp/smtp/tls) - last seen on 2024-11-03 at 02:19:50 UTC

68.168.119.162:465 (tcp/smtp/tls) - last seen on 2024-11-01 at 10:57:57 UTC

67.215.8.18:465 (tcp/smtp/tls) - last seen on 2024-10-26 at 18:36:07 UTC

68.168.119.163:465 (tcp/smtp/tls) - last seen on 2024-10-26 at 02:18:47 UTC

54.39.238.9:465 (tcp/smtp/tls) - last seen on 2024-10-24 at 07:15:05 UTC

54.39.238.13:465 (tcp/smtp/tls) - last seen on 2024-10-24 at 00:37:49 UTC

54.39.238.15:465 (tcp/smtp/tls) - last seen on 2024-10-21 at 11:06:00 UTC