Cyber Defense Search Engine

IP
62.105.61.46

Network
62.105.48.0/20

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS8359

Organization
MTS PJSC

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
90bf63fa7217a4e5a60f421b64ab30eb
```
\x0d
\x0d
\x0d
\x0d
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:36.000Z",
   "app" : {
      "length" : 8
   },
   "asn" : "AS8359",
   "country" : "RU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x0d\n\\x0d\n\\x0d\n\\x0d\n",
   "datamd5" : "90bf63fa7217a4e5a60f421b64ab30eb",
   "datammh3" : -696214361,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS8359",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "RU",
      "countryname" : "Russia",
      "domain" : [
         "mtu.ru"
      ],
      "isineu" : "false",
      "latitude" : "61.52401",
      "location" : "61.52401,105.318756",
      "longitude" : "105.318756",
      "netname" : "RU-MTU-20021204",
      "organization" : "MTS PJSC",
      "subnet" : "62.105.48.0/20"
   },
   "ip" : "62.105.61.46",
   "ipv6" : "false",
   "latitude" : "55.7386",
   "location" : "55.7386,37.6068",
   "longitude" : "37.6068",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "MTS PJSC",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "62.105.48.0/20",
   "tls" : "false",
   "transport" : "tcp"
}

IP
154.243.135.164

Network
154.240.0.0/14

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS36947

Organization
Telecom Algeria

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
81051bcc2cf1bedf378224b0a93e2877
```
\x0d
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:34.000Z",
   "app" : {
      "length" : 2
   },
   "asn" : "AS36947",
   "country" : "DZ",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x0d\n",
   "datamd5" : "81051bcc2cf1bedf378224b0a93e2877",
   "datammh3" : 259745872,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS36947",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "DZ",
      "countryname" : "Algeria",
      "isineu" : "false",
      "latitude" : "28.033886",
      "location" : "28.033886,1.659626",
      "longitude" : "1.659626",
      "netname" : "LTE-4G-2016-3",
      "organization" : "route for new pool",
      "subnet" : "154.243.128.0/21"
   },
   "ip" : "154.243.135.164",
   "ipv6" : "false",
   "latitude" : "36.8977",
   "location" : "36.8977,7.7700",
   "longitude" : "7.7700",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Telecom Algeria",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "154.240.0.0/14",
   "tls" : "false",
   "transport" : "tcp"
}

IP
142.93.42.203

Network
142.93.0.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS14061

Organization
DIGITALOCEAN-ASN

Protocol
sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
f6c3eeaf6667ecdad104eebe72aa0e67

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=40457;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=fffbd158\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:33.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS14061",
   "city" : "Slough",
   "country" : "GB",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=40457;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=fffbd158\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "f6c3eeaf6667ecdad104eebe72aa0e67",
   "datammh3" : 732457255,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS14061",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "digitalocean.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DIGITALOCEAN-142-93-0-0",
      "organization" : "DigitalOcean, LLC",
      "subnet" : "142.93.32.0/20"
   },
   "ip" : "142.93.42.203",
   "ipv6" : "false",
   "latitude" : "51.5368",
   "location" : "51.5368,-0.6718",
   "longitude" : "-0.6718",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "DIGITALOCEAN-ASN",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "142.93.0.0/17",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
54.66.181.56

Network
54.64.0.0/12

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ec2-54-66-181-56.ap-southeast-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
bff81d9dc3e62014ca9e107146498263

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=58571;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=36f5544d\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:30.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS16509",
   "city" : "Sydney",
   "country" : "AU",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=58571;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=36f5544d\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "bff81d9dc3e62014ca9e107146498263",
   "datammh3" : 1661458286,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AMAZON-2011L",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "54.66.0.0/16"
   },
   "host" : [
      "ec2-54-66-181-56"
   ],
   "hostname" : [
      "ec2-54-66-181-56.ap-southeast-2.compute.amazonaws.com"
   ],
   "ip" : "54.66.181.56",
   "ipv6" : "false",
   "latitude" : "-33.8715",
   "location" : "-33.8715,151.2006",
   "longitude" : "151.2006",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "reverse" : [
      "ec2-54-66-181-56.ap-southeast-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "ap-southeast-2.compute.amazonaws.com",
      "compute.amazonaws.com"
   ],
   "subnet" : "54.64.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
91.189.210.247

Network
91.189.208.0/22

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS5524

Organization
Signet B.V.

Protocol
sip

Source
datascan
Operating System
Microsoft Windows

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
ba7d9f1c33d137eed634b5476c3ebcff

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=43457;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=f056e976\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:29.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS5524",
   "city" : "Beverwijk",
   "country" : "NL",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=43457;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=f056e976\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "ba7d9f1c33d137eed634b5476c3ebcff",
   "datammh3" : 1485341325,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "91.189.210.247",
   "ipv6" : "false",
   "latitude" : "52.4836",
   "location" : "52.4836,4.6854",
   "longitude" : "4.6854",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Signet B.V.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 5060,
   "protocol" : "sip",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "91.189.208.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
65.49.143.83

Network
65.49.136.0/21

Domain(s)
nwinternet.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
65.49.143.83.nwinternet.com

ASN
AS13370

Organization
NWI

Protocol
sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
3cd76f0d40b8d6a5aca6396caa8cb10c

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=44175;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=06e7a51a\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:29.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS13370",
   "city" : "Wenatchee",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=44175;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=06e7a51a\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "3cd76f0d40b8d6a5aca6396caa8cb10c",
   "datammh3" : -1484008865,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "nwinternet.com"
   ],
   "geolocus" : {
      "asn" : "AS13370",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "localtel.com",
         "localtel.net",
         "nwinternet.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "LOCALTEL-65-49",
      "organization" : "LocalTel Communications",
      "subnet" : "65.49.136.0/21"
   },
   "host" : [
      65
   ],
   "hostname" : [
      "65.49.143.83.nwinternet.com"
   ],
   "ip" : "65.49.143.83",
   "ipv6" : "false",
   "latitude" : "47.4221",
   "location" : "47.4221,-120.3266",
   "longitude" : "-120.3266",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "NWI",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "reverse" : [
      "65.49.143.83.nwinternet.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "143.83.nwinternet.com",
      "49.143.83.nwinternet.com",
      "83.nwinternet.com"
   ],
   "subnet" : "65.49.136.0/21",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
52.36.106.225

Network
52.32.0.0/13

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
ec2-52-36-106-225.us-west-2.compute.amazonaws.com

ASN
AS16509

Organization
AMAZON-02

Protocol
sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0ba93670efb7204314dafb381969ef4d

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=47617;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=34207b2d\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:29.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS16509",
   "city" : "Boardman",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=47617;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=34207b2d\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "0ba93670efb7204314dafb381969ef4d",
   "datammh3" : -1443671328,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS16509",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "52.32.0.0/13"
   },
   "host" : [
      "ec2-52-36-106-225"
   ],
   "hostname" : [
      "ec2-52-36-106-225.us-west-2.compute.amazonaws.com"
   ],
   "ip" : "52.36.106.225",
   "ipv6" : "false",
   "latitude" : "45.8491",
   "location" : "45.8491,-119.7143",
   "longitude" : "-119.7143",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-02",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "reverse" : [
      "ec2-52-36-106-225.us-west-2.compute.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "compute.amazonaws.com",
      "us-west-2.compute.amazonaws.com"
   ],
   "subnet" : "52.32.0.0/13",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
80.64.142.146

Network
80.64.140.0/22

Domain(s)
netplanet.at

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
80.64.142.146.net.netplanet.at

ASN
AS24953

Organization
NETPLANET GmbH

Protocol
sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
93667cdf2f3d0df041eae9af0502971a

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=55369;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=17d53623\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:28.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS24953",
   "city" : "Neusiedl am See",
   "country" : "AT",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=55369;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=17d53623\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "93667cdf2f3d0df041eae9af0502971a",
   "datammh3" : 355441535,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "netplanet.at"
   ],
   "host" : [
      80
   ],
   "hostname" : [
      "80.64.142.146.net.netplanet.at"
   ],
   "ip" : "80.64.142.146",
   "ipv6" : "false",
   "latitude" : "47.9433",
   "location" : "47.9433,16.8344",
   "longitude" : "16.8344",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "NETPLANET GmbH",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "reverse" : [
      "80.64.142.146.net.netplanet.at"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "146.net.netplanet.at",
      "net.netplanet.at",
      "64.142.146.net.netplanet.at",
      "142.146.net.netplanet.at"
   ],
   "subnet" : "80.64.140.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "at"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
154.245.5.231

Network
154.245.0.0/16

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS36947

Organization
Telecom Algeria

Protocol
unknown

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
81051bcc2cf1bedf378224b0a93e2877
```
\x0d
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:28.000Z",
   "app" : {
      "length" : 2
   },
   "asn" : "AS36947",
   "country" : "DZ",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x0d\n",
   "datamd5" : "81051bcc2cf1bedf378224b0a93e2877",
   "datammh3" : 259745872,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS36947",
      "continent" : "AF",
      "continentname" : "Africa",
      "country" : "DZ",
      "countryname" : "Algeria",
      "isineu" : "false",
      "latitude" : "28.033886",
      "location" : "28.033886,1.659626",
      "longitude" : "1.659626",
      "netname" : "LTE2017-2",
      "organization" : "route for new pool",
      "subnet" : "154.245.0.0/20"
   },
   "ip" : "154.245.5.231",
   "ipv6" : "false",
   "latitude" : "36.8977",
   "location" : "36.8977,7.7700",
   "longitude" : "7.7700",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Telecom Algeria",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "unknown",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "154.245.0.0/16",
   "tls" : "false",
   "transport" : "tcp"
}

IP
92.173.172.129

Network
92.173.128.0/18

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS3215

Organization
Orange

Protocol
sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
de0fec17355a2a1a20b8745614fccb82

SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;rport=44183;received=<srcip>\x0d
To: <sip:nm2@nm2>;tag=36b9567d\x0d
From: <sip:nm@nm>;tag=root\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/sdp\x0d
Accept-Language: en\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\x0d
Supported: replaces, timer\x0d
Allow-Events: message-summary, dialog, call-info, line-seize\x0d
Content-Length: 0\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T08:47:28.000Z",
   "app" : {
      "length" : 429
   },
   "asn" : "AS3215",
   "city" : "Marseille",
   "country" : "FR",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;rport=44183;received=<srcip>\\x0d\nTo: <sip:nm2@nm2>;tag=36b9567d\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/sdp\\x0d\nAccept-Language: en\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE\\x0d\nSupported: replaces, timer\\x0d\nAllow-Events: message-summary, dialog, call-info, line-seize\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "de0fec17355a2a1a20b8745614fccb82",
   "datammh3" : -1710589141,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "92.173.172.129",
   "ipv6" : "false",
   "latitude" : "43.3017",
   "location" : "43.3017,5.3800",
   "longitude" : "5.3800",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Orange",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "92.173.128.0/18",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

Returning 10 result(s) out of 630,148 in 0.271 second(s)

62.105.61.46:5060 (tcp/unknown) - last seen on 2024-11-21 at 08:47:36 UTC

154.243.135.164:5060 (tcp/unknown) - last seen on 2024-11-21 at 08:47:34 UTC

142.93.42.203:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:33 UTC

54.66.181.56:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:30 UTC

91.189.210.247:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:29 UTC

65.49.143.83:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:29 UTC

52.36.106.225:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:29 UTC

80.64.142.146:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:28 UTC

154.245.5.231:5060 (tcp/unknown) - last seen on 2024-11-21 at 08:47:28 UTC

92.173.172.129:5060 (tcp/sip) - last seen on 2024-11-21 at 08:47:28 UTC