Cyber Defense Search Engine

IP
201.238.251.65

Alternative IP(s)
190.215.219.117 201.238.251.97

Network
201.238.248.0/22

Domain(s)
gtd.cl

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS14259

Organization
Gtd Internet S.A.

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
voice.gtd.cl

Subject Alt Name
voice.gtd.cl conectados.gtd.cl ipbx.gtd.cl proxygeo1.gtd.cl proxygeo2.gtd.cl

SHA256 Fingerprint
6d64e2287e49c576f8bcdc3251c9739cb39e4c89dc2162d95ffdba208dd1a17a

Validity Not Before
2024-04-16T00:00:00Z

Validity Not After
2025-03-24T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-28T00:14:34.000Z",
   "alternativeip" : [
      "190.215.219.117",
      "201.238.251.97"
   ],
   "app" : {
      "length" : 288
   },
   "asn" : "AS14259",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CL",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "gtd.cl"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "712a70611b9195d006f5d679223e9be2",
      "sha1" : "30467df2ad71d841e797e6f0b0ad73d3a0025c04",
      "sha256" : "6d64e2287e49c576f8bcdc3251c9739cb39e4c89dc2162d95ffdba208dd1a17a"
   },
   "geolocus" : {
      "asn" : "AS14259",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CL",
      "countryname" : "Chile",
      "domain" : [
         "grupogtd.com",
         "gtdinternet.com"
      ],
      "isineu" : "false",
      "latitude" : "-35.675147",
      "location" : "-35.675147,-71.542969",
      "longitude" : "-71.542969",
      "netname" : "CL-GISA-LACNIC",
      "organization" : "Gtd Internet S.A.",
      "subnet" : "201.238.248.0/22"
   },
   "host" : [
      "conectados",
      "ipbx",
      "proxygeo1",
      "proxygeo2",
      "voice"
   ],
   "hostname" : [
      "conectados.gtd.cl",
      "ipbx.gtd.cl",
      "proxygeo1.gtd.cl",
      "proxygeo2.gtd.cl",
      "voice.gtd.cl"
   ],
   "ip" : "201.238.251.65",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "-33.4390",
   "location" : "-33.4390,-70.6432",
   "longitude" : "-70.6432",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Gtd Internet S.A.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-28",
   "serial" : "e3:74:f0:46:10:d4:dd:8b:17:e1:e3:fc:05:27:d5:54",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "voice.gtd.cl",
         "conectados.gtd.cl",
         "ipbx.gtd.cl",
         "proxygeo1.gtd.cl",
         "proxygeo2.gtd.cl"
      ],
      "commonname" : "voice.gtd.cl"
   },
   "subnet" : "201.238.248.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "cl"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-03-24T23:59:59Z",
      "notbefore" : "2024-04-16T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
198.147.226.12

Alternative IP(s)
192.91.191.8

Network
198.147.226.0/24

Domain(s)
metaswitch.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
alamsip.metaswitch.com

ASN
AS15248

Organization
METASWITCH-AS1

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sbc-geo.metaswitch.com

Subject Alt Name
sbc-geo.metaswitch.com www.sbc-geo.metaswitch.com

SHA256 Fingerprint
c4b4ff36bff7d45f955ebb418764363f02d4c981b1963999213259c39f1f6deb

Validity Not Before
2023-11-27T00:00:00Z

Validity Not After
2024-12-27T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-26T08:02:48.000Z",
   "alternativeip" : [
      "192.91.191.8"
   ],
   "app" : {
      "length" : 288
   },
   "asn" : "AS15248",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "US",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "metaswitch.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "c4fc57b7d29e73d5d9acdb259d15af4f",
      "sha1" : "0ab108b6df4413afc31d1cbf563546e096ba5286",
      "sha256" : "c4b4ff36bff7d45f955ebb418764363f02d4c981b1963999213259c39f1f6deb"
   },
   "geolocus" : {
      "asn" : "AS15248",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "microsoft.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "DATCON-NET",
      "organization" : "Metaswitch Networks Corp.",
      "subnet" : "198.147.226.0/24"
   },
   "host" : [
      "alamsip",
      "sbc-geo",
      "www"
   ],
   "hostname" : [
      "alamsip.metaswitch.com",
      "sbc-geo.metaswitch.com",
      "www.sbc-geo.metaswitch.com"
   ],
   "ip" : "198.147.226.12",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "METASWITCH-AS1",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "alamsip.metaswitch.com"
   ],
   "seen_date" : "2024-10-26",
   "serial" : "40:73:da:89:33:85:33:68:7f:0d:d8:d6:3f:11:01:dd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc-geo.metaswitch.com"
   ],
   "subject" : {
      "altname" : [
         "sbc-geo.metaswitch.com",
         "www.sbc-geo.metaswitch.com"
      ],
      "commonname" : "sbc-geo.metaswitch.com"
   },
   "subnet" : "198.147.226.0/24",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-27T23:59:59Z",
      "notbefore" : "2023-11-27T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
72.12.250.49

Network
72.12.240.0/20

Domain(s)
scinternet.net socen.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
72-12-250-49.scinternet.net

ASN
AS26253

Organization
SCINTERNET

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sccvoip.socen.com

Subject Alt Name
sccvoip.socen.com www.sccvoip.socen.com

SHA256 Fingerprint
ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26

Validity Not Before
2024-03-14T00:00:00Z

Validity Not After
2025-03-14T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-25T09:35:45.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26253",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Panguitch",
   "country" : "US",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "scinternet.net",
      "socen.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "639e130ee18f731c7a3f6fb984e64445",
      "sha1" : "a4bfa280d42a0246bd166e0f24c241d0c1692247",
      "sha256" : "ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26"
   },
   "geolocus" : {
      "asn" : "AS26253",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "scinternet.net",
         "socen.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SCINTERNET-NET",
      "organization" : "South Central Communications, Inc.",
      "subnet" : "72.12.240.0/20"
   },
   "host" : [
      "72-12-250-49",
      "sccvoip",
      "www"
   ],
   "hostname" : [
      "72-12-250-49.scinternet.net",
      "sccvoip.socen.com",
      "www.sccvoip.socen.com"
   ],
   "ip" : "72.12.250.49",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.8078",
   "location" : "37.8078,-112.4391",
   "longitude" : "-112.4391",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SCINTERNET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "72-12-250-49.scinternet.net"
   ],
   "seen_date" : "2024-10-25",
   "serial" : "8c:bd:09:8e:a9:19:a1:96:8d:3f:f5:30:4a:97:cd:8c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sccvoip.socen.com"
   ],
   "subject" : {
      "altname" : [
         "sccvoip.socen.com",
         "www.sccvoip.socen.com"
      ],
      "commonname" : "sccvoip.socen.com"
   },
   "subnet" : "72.12.240.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-03-14T23:59:59Z",
      "notbefore" : "2024-03-14T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
201.238.251.97

Alternative IP(s)
190.215.219.117 201.238.251.65

Network
201.238.248.0/22

Domain(s)
gtd.cl

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS14259

Organization
Gtd Internet S.A.

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
voice.gtd.cl

Subject Alt Name
voice.gtd.cl conectados.gtd.cl ipbx.gtd.cl proxygeo1.gtd.cl proxygeo2.gtd.cl

SHA256 Fingerprint
6d64e2287e49c576f8bcdc3251c9739cb39e4c89dc2162d95ffdba208dd1a17a

Validity Not Before
2024-04-16T00:00:00Z

Validity Not After
2025-03-24T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-23T10:17:07.000Z",
   "alternativeip" : [
      "190.215.219.117",
      "201.238.251.65"
   ],
   "app" : {
      "length" : 288
   },
   "asn" : "AS14259",
   "basicconstraints" : "critical",
   "ca" : "false",
   "country" : "CL",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "gtd.cl"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "712a70611b9195d006f5d679223e9be2",
      "sha1" : "30467df2ad71d841e797e6f0b0ad73d3a0025c04",
      "sha256" : "6d64e2287e49c576f8bcdc3251c9739cb39e4c89dc2162d95ffdba208dd1a17a"
   },
   "geolocus" : {
      "asn" : "AS14259",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CL",
      "countryname" : "Chile",
      "domain" : [
         "grupogtd.com",
         "gtdinternet.com"
      ],
      "isineu" : "false",
      "latitude" : "-35.675147",
      "location" : "-35.675147,-71.542969",
      "longitude" : "-71.542969",
      "netname" : "CL-GISA-LACNIC",
      "organization" : "Gtd Internet S.A.",
      "subnet" : "201.238.248.0/22"
   },
   "host" : [
      "conectados",
      "ipbx",
      "proxygeo1",
      "proxygeo2",
      "voice"
   ],
   "hostname" : [
      "conectados.gtd.cl",
      "ipbx.gtd.cl",
      "proxygeo1.gtd.cl",
      "proxygeo2.gtd.cl",
      "voice.gtd.cl"
   ],
   "ip" : "201.238.251.97",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "-33.4390",
   "location" : "-33.4390,-70.6432",
   "longitude" : "-70.6432",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Gtd Internet S.A.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-23",
   "serial" : "e3:74:f0:46:10:d4:dd:8b:17:e1:e3:fc:05:27:d5:54",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subject" : {
      "altname" : [
         "voice.gtd.cl",
         "conectados.gtd.cl",
         "ipbx.gtd.cl",
         "proxygeo1.gtd.cl",
         "proxygeo2.gtd.cl"
      ],
      "commonname" : "voice.gtd.cl"
   },
   "subnet" : "201.238.248.0/22",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "cl"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-03-24T23:59:59Z",
      "notbefore" : "2024-04-16T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
173.243.161.170

Network
173.243.160.0/20

Domain(s)
firstlight.net

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
173-243-161-170.static.firstlight.net

ASN
AS13536

Organization
TVC-AS1

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
maxmobile.alb.firstlight.net

Subject Alt Name
maxmobile.alb.firstlight.net www.maxmobile.alb.firstlight.net

SHA256 Fingerprint
0f4fd3934f4f34431a4dc70527c3529f59f818b051f92a817baf00b23b4f5c2e

Validity Not Before
2024-09-12T00:00:00Z

Validity Not After
2025-09-17T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-19T09:00:35.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS13536",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Houghton",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "firstlight.net"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "46fb87c5bf8a2a4ca07d07c581b0533f",
      "sha1" : "a05776f88d86685fd5ae9731df4df821e2f10a7b",
      "sha256" : "0f4fd3934f4f34431a4dc70527c3529f59f818b051f92a817baf00b23b4f5c2e"
   },
   "geolocus" : {
      "asn" : "AS13536",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "firstlight.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "173-243-160-0-24",
      "organization" : "FirstLight Fiber, Inc.",
      "subnet" : "173.243.160.0/20"
   },
   "host" : [
      "173-243-161-170",
      "maxmobile",
      "www"
   ],
   "hostname" : [
      "173-243-161-170.static.firstlight.net",
      "maxmobile.alb.firstlight.net",
      "www.maxmobile.alb.firstlight.net"
   ],
   "ip" : "173.243.161.170",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "42.4245",
   "location" : "42.4245,-78.2104",
   "longitude" : "-78.2104",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TVC-AS1",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "173-243-161-170.static.firstlight.net"
   ],
   "seen_date" : "2024-10-19",
   "serial" : "b4:2a:c0:65:1c:ed:e0:71:8d:5d:2e:95:4f:f9:5b:02",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "alb.firstlight.net",
      "maxmobile.alb.firstlight.net",
      "static.firstlight.net"
   ],
   "subject" : {
      "altname" : [
         "maxmobile.alb.firstlight.net",
         "www.maxmobile.alb.firstlight.net"
      ],
      "commonname" : "maxmobile.alb.firstlight.net"
   },
   "subnet" : "173.243.160.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-09-17T23:59:59Z",
      "notbefore" : "2024-09-12T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
72.12.250.49

Network
72.12.240.0/20

Domain(s)
scinternet.net socen.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
72-12-250-49.scinternet.net

ASN
AS26253

Organization
SCINTERNET

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sccvoip.socen.com

Subject Alt Name
sccvoip.socen.com www.sccvoip.socen.com

SHA256 Fingerprint
ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26

Validity Not Before
2024-03-14T00:00:00Z

Validity Not After
2025-03-14T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-18T23:50:56.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26253",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Panguitch",
   "country" : "US",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "scinternet.net",
      "socen.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "639e130ee18f731c7a3f6fb984e64445",
      "sha1" : "a4bfa280d42a0246bd166e0f24c241d0c1692247",
      "sha256" : "ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26"
   },
   "geolocus" : {
      "asn" : "AS26253",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "scinternet.net",
         "socen.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SCINTERNET-NET",
      "organization" : "South Central Communications, Inc.",
      "subnet" : "72.12.240.0/20"
   },
   "host" : [
      "72-12-250-49",
      "sccvoip",
      "www"
   ],
   "hostname" : [
      "72-12-250-49.scinternet.net",
      "sccvoip.socen.com",
      "www.sccvoip.socen.com"
   ],
   "ip" : "72.12.250.49",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.8078",
   "location" : "37.8078,-112.4391",
   "longitude" : "-112.4391",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SCINTERNET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "72-12-250-49.scinternet.net"
   ],
   "seen_date" : "2024-10-18",
   "serial" : "8c:bd:09:8e:a9:19:a1:96:8d:3f:f5:30:4a:97:cd:8c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sccvoip.socen.com"
   ],
   "subject" : {
      "altname" : [
         "sccvoip.socen.com",
         "www.sccvoip.socen.com"
      ],
      "commonname" : "sccvoip.socen.com"
   },
   "subnet" : "72.12.240.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-03-14T23:59:59Z",
      "notbefore" : "2024-03-14T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
72.12.250.49

Network
72.12.240.0/20

Domain(s)
scinternet.net socen.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
72-12-250-49.scinternet.net

ASN
AS26253

Organization
SCINTERNET

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sccvoip.socen.com

Subject Alt Name
sccvoip.socen.com www.sccvoip.socen.com

SHA256 Fingerprint
ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26

Validity Not Before
2024-03-14T00:00:00Z

Validity Not After
2025-03-14T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-17T11:02:40.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26253",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Panguitch",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "scinternet.net",
      "socen.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "639e130ee18f731c7a3f6fb984e64445",
      "sha1" : "a4bfa280d42a0246bd166e0f24c241d0c1692247",
      "sha256" : "ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26"
   },
   "geolocus" : {
      "asn" : "AS26253",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "scinternet.net",
         "socen.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SCINTERNET-NET",
      "organization" : "South Central Communications, Inc.",
      "subnet" : "72.12.240.0/20"
   },
   "host" : [
      "72-12-250-49",
      "sccvoip",
      "www"
   ],
   "hostname" : [
      "72-12-250-49.scinternet.net",
      "sccvoip.socen.com",
      "www.sccvoip.socen.com"
   ],
   "ip" : "72.12.250.49",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.8078",
   "location" : "37.8078,-112.4391",
   "longitude" : "-112.4391",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SCINTERNET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "72-12-250-49.scinternet.net"
   ],
   "seen_date" : "2024-10-17",
   "serial" : "8c:bd:09:8e:a9:19:a1:96:8d:3f:f5:30:4a:97:cd:8c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sccvoip.socen.com"
   ],
   "subject" : {
      "altname" : [
         "sccvoip.socen.com",
         "www.sccvoip.socen.com"
      ],
      "commonname" : "sccvoip.socen.com"
   },
   "subnet" : "72.12.240.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-03-14T23:59:59Z",
      "notbefore" : "2024-03-14T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
72.12.250.49

Network
72.12.240.0/20

Domain(s)
scinternet.net socen.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

Reverse DNS
72-12-250-49.scinternet.net

ASN
AS26253

Organization
SCINTERNET

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sccvoip.socen.com

Subject Alt Name
sccvoip.socen.com www.sccvoip.socen.com

SHA256 Fingerprint
ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26

Validity Not Before
2024-03-14T00:00:00Z

Validity Not After
2025-03-14T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-17T10:53:18.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26253",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Panguitch",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "scinternet.net",
      "socen.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "639e130ee18f731c7a3f6fb984e64445",
      "sha1" : "a4bfa280d42a0246bd166e0f24c241d0c1692247",
      "sha256" : "ed530fe99eb555b7f948e86da0bb63085cfcb73de01c880b59a8586cdd673e26"
   },
   "geolocus" : {
      "asn" : "AS26253",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "scinternet.net",
         "socen.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SCINTERNET-NET",
      "organization" : "South Central Communications, Inc.",
      "subnet" : "72.12.240.0/20"
   },
   "host" : [
      "72-12-250-49",
      "sccvoip",
      "www"
   ],
   "hostname" : [
      "72-12-250-49.scinternet.net",
      "sccvoip.socen.com",
      "www.sccvoip.socen.com"
   ],
   "ip" : "72.12.250.49",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "37.8078",
   "location" : "37.8078,-112.4391",
   "longitude" : "-112.4391",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SCINTERNET",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "reverse" : [
      "72-12-250-49.scinternet.net"
   ],
   "seen_date" : "2024-10-17",
   "serial" : "8c:bd:09:8e:a9:19:a1:96:8d:3f:f5:30:4a:97:cd:8c",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sccvoip.socen.com"
   ],
   "subject" : {
      "altname" : [
         "sccvoip.socen.com",
         "www.sccvoip.socen.com"
      ],
      "commonname" : "sccvoip.socen.com"
   },
   "subnet" : "72.12.240.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com",
      "net"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2025-03-14T23:59:59Z",
      "notbefore" : "2024-03-14T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
20.212.157.117

Alternative IP(s)
192.91.191.8

Network
20.192.0.0/10

Domain(s)
metaswitch.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS8075

Organization
MICROSOFT-CORP-MSN-AS-BLOCK

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sbc-geo.metaswitch.com

Subject Alt Name
sbc-geo.metaswitch.com www.sbc-geo.metaswitch.com

SHA256 Fingerprint
c4b4ff36bff7d45f955ebb418764363f02d4c981b1963999213259c39f1f6deb

Validity Not Before
2023-11-27T00:00:00Z

Validity Not After
2024-12-27T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-16T06:32:28.000Z",
   "alternativeip" : [
      "192.91.191.8"
   ],
   "app" : {
      "length" : 288
   },
   "asn" : "AS8075",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "metaswitch.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "c4fc57b7d29e73d5d9acdb259d15af4f",
      "sha1" : "0ab108b6df4413afc31d1cbf563546e096ba5286",
      "sha256" : "c4b4ff36bff7d45f955ebb418764363f02d4c981b1963999213259c39f1f6deb"
   },
   "geolocus" : {
      "asn" : "AS8075",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "microsoft.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MSFT",
      "organization" : "Microsoft Corporation",
      "subnet" : "20.212.0.0/16"
   },
   "host" : [
      "sbc-geo",
      "www"
   ],
   "hostname" : [
      "sbc-geo.metaswitch.com",
      "www.sbc-geo.metaswitch.com"
   ],
   "ip" : "20.212.157.117",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "1.2868",
   "location" : "1.2868,103.8503",
   "longitude" : "103.8503",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "MICROSOFT-CORP-MSN-AS-BLOCK",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-16",
   "serial" : "40:73:da:89:33:85:33:68:7f:0d:d8:d6:3f:11:01:dd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc-geo.metaswitch.com"
   ],
   "subject" : {
      "altname" : [
         "sbc-geo.metaswitch.com",
         "www.sbc-geo.metaswitch.com"
      ],
      "commonname" : "sbc-geo.metaswitch.com"
   },
   "subnet" : "20.192.0.0/10",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-27T23:59:59Z",
      "notbefore" : "2023-11-27T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

IP
20.212.157.117

Alternative IP(s)
198.147.226.12

Network
20.192.0.0/10

Domain(s)
metaswitch.com

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS8075

Organization
MICROSOFT-CORP-MSN-AS-BLOCK

Protocol
sip Cert not expired sip

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe
Issuer Common Name
Sectigo RSA Domain Validation Secure Server CA

Issuer Organization
Sectigo Limited

Subject Common Name
sbc-geo.metaswitch.com

Subject Alt Name
sbc-geo.metaswitch.com www.sbc-geo.metaswitch.com

SHA256 Fingerprint
c4b4ff36bff7d45f955ebb418764363f02d4c981b1963999213259c39f1f6deb

Validity Not Before
2023-11-27T00:00:00Z

Validity Not After
2024-12-27T23:59:59Z

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
fc25cd896eab2116188446a6ae21e476

SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

{
   "@category" : "datascan",
   "@timestamp" : "2024-10-16T06:25:45.000Z",
   "alternativeip" : [
      "198.147.226.12"
   ],
   "app" : {
      "length" : 288
   },
   "asn" : "AS8075",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Singapore",
   "country" : "SG",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "metaswitch.com"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "c4fc57b7d29e73d5d9acdb259d15af4f",
      "sha1" : "0ab108b6df4413afc31d1cbf563546e096ba5286",
      "sha256" : "c4b4ff36bff7d45f955ebb418764363f02d4c981b1963999213259c39f1f6deb"
   },
   "geolocus" : {
      "asn" : "AS8075",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "microsoft.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "MSFT",
      "organization" : "Microsoft Corporation",
      "subnet" : "20.212.0.0/16"
   },
   "host" : [
      "sbc-geo",
      "www"
   ],
   "hostname" : [
      "sbc-geo.metaswitch.com",
      "www.sbc-geo.metaswitch.com"
   ],
   "ip" : "20.212.157.117",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Salford",
      "commonname" : "Sectigo RSA Domain Validation Secure Server CA",
      "country" : "GB",
      "organization" : "Sectigo Limited"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "1.2868",
   "location" : "1.2868,103.8503",
   "longitude" : "103.8503",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "MICROSOFT-CORP-MSN-AS-BLOCK",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-16",
   "serial" : "40:73:da:89:33:85:33:68:7f:0d:d8:d6:3f:11:01:dd",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc-geo.metaswitch.com"
   ],
   "subject" : {
      "altname" : [
         "sbc-geo.metaswitch.com",
         "www.sbc-geo.metaswitch.com"
      ],
      "commonname" : "sbc-geo.metaswitch.com"
   },
   "subnet" : "20.192.0.0/10",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-27T23:59:59Z",
      "notbefore" : "2023-11-27T00:00:00Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

Returning 10 result(s) out of 35 in 0.039 second(s)

201.238.251.65:443 (tcp/sip/tls) - last seen on 2024-10-28 at 00:14:34 UTC

198.147.226.12:443 (tcp/sip/tls) - last seen on 2024-10-26 at 08:02:48 UTC

72.12.250.49:443 (tcp/sip/tls) - last seen on 2024-10-25 at 09:35:45 UTC

201.238.251.97:443 (tcp/sip/tls) - last seen on 2024-10-23 at 10:17:07 UTC

173.243.161.170:443 (tcp/sip/tls) - last seen on 2024-10-19 at 09:00:35 UTC

72.12.250.49:443 (tcp/sip/tls) - last seen on 2024-10-18 at 23:50:56 UTC

72.12.250.49:443 (tcp/sip/tls) - last seen on 2024-10-17 at 11:02:40 UTC

72.12.250.49:443 (tcp/sip/tls) - last seen on 2024-10-17 at 10:53:18 UTC

20.212.157.117:443 (tcp/sip/tls) - last seen on 2024-10-16 at 06:32:28 UTC

20.212.157.117:443 (tcp/sip/tls) - last seen on 2024-10-16 at 06:25:45 UTC