ONYPHE
datascan ctl threatlist sniffer vulnscan riskscan

Returning 7 result(s) out of 7 in 0.058 second(s)

  • 179.50.14.204:443 (tcp/sip/tls) - last seen on 2024-10-31 at 23:17:32 UTC

    • IP
      179.50.14.204
      Network
      179.50.0.0/20
      Domain(s)
      grupogtd.com.co
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip Cert not expired sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
    • Issuer Common Name
      Go Daddy Secure Certificate Authority - G2
      Issuer Organization
      GoDaddy.com, Inc.
      Subject Common Name
      sbc1-vdct3.grupogtd.com.co
      Subject Alt Name
      sbc1-vdct3.grupogtd.com.co www.sbc1-vdct3.grupogtd.com.co
      SHA256 Fingerprint
      7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946
      Validity Not Before
      2023-11-17T19:27:47Z
      Validity Not After
      2024-12-16T18:47:15Z

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fc25cd896eab2116188446a6ae21e476 
    • SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-31T23:17:32.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26619",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Medell\u00edn",
   "country" : "CO",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "grupogtd.com.co"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "9d09df8e2e8d21759a51aeeb57cdf864",
      "sha1" : "e716f7dcc6db390f2610c6228cbe4018bc5b43cd",
      "sha256" : "7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.0.0/20"
   },
   "host" : [
      "sbc1-vdct3",
      "www"
   ],
   "hostname" : [
      "sbc1-vdct3.grupogtd.com.co",
      "www.sbc1-vdct3.grupogtd.com.co"
   ],
   "ip" : "179.50.14.204",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Scottsdale",
      "commonname" : "Go Daddy Secure Certificate Authority - G2",
      "country" : "US",
      "organization" : "GoDaddy.com, Inc.",
      "organizationalunit" : "http://certs.godaddy.com/repository/"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "6.2529",
   "location" : "6.2529,-75.5646",
   "longitude" : "-75.5646",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-31",
   "serial" : "49:b5:7e:70:48:e3:33:c6",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc1-vdct3.grupogtd.com.co"
   ],
   "subject" : {
      "altname" : [
         "sbc1-vdct3.grupogtd.com.co",
         "www.sbc1-vdct3.grupogtd.com.co"
      ],
      "commonname" : "sbc1-vdct3.grupogtd.com.co"
   },
   "subnet" : "179.50.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com.co"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-16T18:47:15Z",
      "notbefore" : "2023-11-17T19:27:47Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

  • 179.50.14.204:443 (tcp/sip/tls) - last seen on 2024-10-21 at 19:46:17 UTC

    • IP
      179.50.14.204
      Network
      179.50.0.0/20
      Domain(s)
      grupogtd.com.co
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip Cert not expired sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Go Daddy Secure Certificate Authority - G2
      Issuer Organization
      GoDaddy.com, Inc.
      Subject Common Name
      sbc1-vdct3.grupogtd.com.co
      Subject Alt Name
      sbc1-vdct3.grupogtd.com.co www.sbc1-vdct3.grupogtd.com.co
      SHA256 Fingerprint
      7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946
      Validity Not Before
      2023-11-17T19:27:47Z
      Validity Not After
      2024-12-16T18:47:15Z

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fc25cd896eab2116188446a6ae21e476 
    • SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-21T19:46:17.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26619",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Bogot\u00e1",
   "country" : "CO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "grupogtd.com.co"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "9d09df8e2e8d21759a51aeeb57cdf864",
      "sha1" : "e716f7dcc6db390f2610c6228cbe4018bc5b43cd",
      "sha256" : "7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.0.0/20"
   },
   "host" : [
      "sbc1-vdct3",
      "www"
   ],
   "hostname" : [
      "sbc1-vdct3.grupogtd.com.co",
      "www.sbc1-vdct3.grupogtd.com.co"
   ],
   "ip" : "179.50.14.204",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Scottsdale",
      "commonname" : "Go Daddy Secure Certificate Authority - G2",
      "country" : "US",
      "organization" : "GoDaddy.com, Inc.",
      "organizationalunit" : "http://certs.godaddy.com/repository/"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "4.6115",
   "location" : "4.6115,-74.0833",
   "longitude" : "-74.0833",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-21",
   "serial" : "49:b5:7e:70:48:e3:33:c6",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc1-vdct3.grupogtd.com.co"
   ],
   "subject" : {
      "altname" : [
         "sbc1-vdct3.grupogtd.com.co",
         "www.sbc1-vdct3.grupogtd.com.co"
      ],
      "commonname" : "sbc1-vdct3.grupogtd.com.co"
   },
   "subnet" : "179.50.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com.co"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-16T18:47:15Z",
      "notbefore" : "2023-11-17T19:27:47Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

  • 179.50.14.204:443 (tcp/sip/tls) - last seen on 2024-10-21 at 19:35:40 UTC

    • IP
      179.50.14.204
      Network
      179.50.0.0/20
      Domain(s)
      grupogtd.com.co
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip Cert not expired sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Go Daddy Secure Certificate Authority - G2
      Issuer Organization
      GoDaddy.com, Inc.
      Subject Common Name
      sbc1-vdct3.grupogtd.com.co
      Subject Alt Name
      sbc1-vdct3.grupogtd.com.co www.sbc1-vdct3.grupogtd.com.co
      SHA256 Fingerprint
      7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946
      Validity Not Before
      2023-11-17T19:27:47Z
      Validity Not After
      2024-12-16T18:47:15Z

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fc25cd896eab2116188446a6ae21e476 
    • SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-21T19:35:40.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26619",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Bogot\u00e1",
   "country" : "CO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "grupogtd.com.co"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "9d09df8e2e8d21759a51aeeb57cdf864",
      "sha1" : "e716f7dcc6db390f2610c6228cbe4018bc5b43cd",
      "sha256" : "7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.0.0/20"
   },
   "host" : [
      "sbc1-vdct3",
      "www"
   ],
   "hostname" : [
      "sbc1-vdct3.grupogtd.com.co",
      "www.sbc1-vdct3.grupogtd.com.co"
   ],
   "ip" : "179.50.14.204",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Scottsdale",
      "commonname" : "Go Daddy Secure Certificate Authority - G2",
      "country" : "US",
      "organization" : "GoDaddy.com, Inc.",
      "organizationalunit" : "http://certs.godaddy.com/repository/"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "4.6115",
   "location" : "4.6115,-74.0833",
   "longitude" : "-74.0833",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-21",
   "serial" : "49:b5:7e:70:48:e3:33:c6",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc1-vdct3.grupogtd.com.co"
   ],
   "subject" : {
      "altname" : [
         "sbc1-vdct3.grupogtd.com.co",
         "www.sbc1-vdct3.grupogtd.com.co"
      ],
      "commonname" : "sbc1-vdct3.grupogtd.com.co"
   },
   "subnet" : "179.50.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com.co"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-16T18:47:15Z",
      "notbefore" : "2023-11-17T19:27:47Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

  • 179.50.5.34:5060 (tcp/sip) - last seen on 2024-10-20 at 09:31:47 UTC

    • IP
      179.50.5.34
      Network
      179.50.0.0/20
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      67bd053c4bd8c990fcd5c3475ec2d60d 
    • SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;branch=foo;received=<srcip>;rport=50801\x0d
From: <sip:nm@nm>;tag=root\x0d
To: <sip:nm2@nm2>;tag=as5a173ffa\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
Server: FortiVoice-VM\x0d
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO, PUBLISH, MESSAGE\x0d
Supported: replaces, timer\x0d
Contact: <sip:<ip>:5060;transport=TCP>\x0d
Accept: application/sdp\x0d
Content-Length: 0\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-20T09:31:47.000Z",
   "app" : {
      "length" : 402
   },
   "asn" : "AS26619",
   "city" : "Medell\u00edn",
   "country" : "CO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;branch=foo;received=<srcip>;rport=50801\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nTo: <sip:nm2@nm2>;tag=as5a173ffa\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nServer: FortiVoice-VM\\x0d\nAllow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO, PUBLISH, MESSAGE\\x0d\nSupported: replaces, timer\\x0d\nContact: <sip:<ip>:5060;transport=TCP>\\x0d\nAccept: application/sdp\\x0d\nContent-Length: 0\\x0d\n\\x0d\n",
   "datamd5" : "67bd053c4bd8c990fcd5c3475ec2d60d",
   "datammh3" : -2030525760,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.0.0/20"
   },
   "ip" : "179.50.5.34",
   "ipv6" : "false",
   "latitude" : "6.2529",
   "location" : "6.2529,-75.5646",
   "longitude" : "-75.5646",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "seen_date" : "2024-10-20",
   "source" : "datascan",
   "subnet" : "179.50.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 179.50.14.204:443 (tcp/sip/tls) - last seen on 2024-10-15 at 04:42:50 UTC

    • IP
      179.50.14.204
      Network
      179.50.0.0/20
      Domain(s)
      grupogtd.com.co
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip Cert not expired sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
    • Issuer Common Name
      Go Daddy Secure Certificate Authority - G2
      Issuer Organization
      GoDaddy.com, Inc.
      Subject Common Name
      sbc1-vdct3.grupogtd.com.co
      Subject Alt Name
      sbc1-vdct3.grupogtd.com.co www.sbc1-vdct3.grupogtd.com.co
      SHA256 Fingerprint
      7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946
      Validity Not Before
      2023-11-17T19:27:47Z
      Validity Not After
      2024-12-16T18:47:15Z

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      fc25cd896eab2116188446a6ae21e476 
    • SIP/2.0 400 Bad Request\x0d
Warning: 399 sip "Missing Via"\x0d
Host: <ip>\x0d
Connection: close\x0d
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\x0d
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\x0d
Accept-Language: en-US,en;q=0.5\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-15T04:42:50.000Z",
   "app" : {
      "length" : 288
   },
   "asn" : "AS26619",
   "basicconstraints" : "critical",
   "ca" : "false",
   "city" : "Bogot\u00e1",
   "country" : "CO",
   "data" : "SIP/2.0 400 Bad Request\\x0d\nWarning: 399 sip \"Missing Via\"\\x0d\nHost: <ip>\\x0d\nConnection: close\\x0d\nUser-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0\\x0d\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\\x0d\nAccept-Language: en-US,en;q=0.5\\x0d\n\\x0d\n",
   "datamd5" : "fc25cd896eab2116188446a6ae21e476",
   "datammh3" : -478195950,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "grupogtd.com.co"
   ],
   "extkeyusage" : [
      "serverAuth",
      "clientAuth"
   ],
   "fingerprint" : {
      "md5" : "9d09df8e2e8d21759a51aeeb57cdf864",
      "sha1" : "e716f7dcc6db390f2610c6228cbe4018bc5b43cd",
      "sha256" : "7784371ce6ee3b0625e96bf4c63ed8df85e95788d38f8893e22ae1f3f430f946"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.0.0/20"
   },
   "host" : [
      "sbc1-vdct3",
      "www"
   ],
   "hostname" : [
      "sbc1-vdct3.grupogtd.com.co",
      "www.sbc1-vdct3.grupogtd.com.co"
   ],
   "ip" : "179.50.14.204",
   "ipv6" : "false",
   "issuer" : {
      "city" : "Scottsdale",
      "commonname" : "Go Daddy Secure Certificate Authority - G2",
      "country" : "US",
      "organization" : "GoDaddy.com, Inc.",
      "organizationalunit" : "http://certs.godaddy.com/repository/"
   },
   "keyusage" : [
      "digitalSignature",
      "keyEncipherment"
   ],
   "latitude" : "4.6115",
   "location" : "4.6115,-74.0833",
   "longitude" : "-74.0833",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 443,
   "protocol" : "sip",
   "publickey" : {
      "algorithm" : "rsaEncryption",
      "length" : 2048
   },
   "seen_date" : "2024-10-15",
   "serial" : "49:b5:7e:70:48:e3:33:c6",
   "signature" : {
      "algorithm" : "sha256WithRSAEncryption"
   },
   "source" : "datascan",
   "subdomains" : [
      "sbc1-vdct3.grupogtd.com.co"
   ],
   "subject" : {
      "altname" : [
         "sbc1-vdct3.grupogtd.com.co",
         "www.sbc1-vdct3.grupogtd.com.co"
      ],
      "commonname" : "sbc1-vdct3.grupogtd.com.co"
   },
   "subnet" : "179.50.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com.co"
   ],
   "tls" : "true",
   "transport" : "tcp",
   "url" : "/",
   "validity" : {
      "notafter" : "2024-12-16T18:47:15Z",
      "notbefore" : "2023-11-17T19:27:47Z"
   },
   "version" : "v3",
   "wildcard" : "false"
}

  • 179.50.16.221:5060 (tcp/sip) - last seen on 2024-10-14 at 01:16:27 UTC

    • IP
      179.50.16.221
      Network
      179.50.16.0/21
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c7f13c0f4510cc1d7d337caea7ad2b87 
    • SIP/2.0 200 OK\x0d
Via: SIP/2.0/UDP nm;rport=58501;received=<srcip>;branch=foo\x0d
Call-ID: 50000\x0d
From: <sip:nm@nm>;tag=root\x0d
To: <sip:nm2@nm2>;tag=foo\x0d
CSeq: 42 OPTIONS\x0d
Accept: application/dndstatus-info+xml, application/pidf+xml, application/xpidf+xml, application/cpim-pidf+xml, application/dialog-info+xml, application/simple-message-summary, application/simple-message-summary, application/pidf+xml, application/dialog-info+xml, application/dndstatus-info+xml, application/sdp, message/sipfrag;version=2.0\x0d
Allow: OPTIONS, REGISTER, SUBSCRIBE, NOTIFY, PUBLISH, INVITE, ACK, BYE, CANCEL, UPDATE, PRACK, MESSAGE, REFER\x0d
Supported: 100rel, timer, replaces, norefersub\x0d
Accept-Encoding: text/plain\x0d
Accept-Language: en\x0d
Server: FortiVoice-VM\x0d
Content-Length:  0\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-14T01:16:27.000Z",
   "app" : {
      "length" : 762
   },
   "asn" : "AS26619",
   "city" : "Medell\u00edn",
   "country" : "CO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 200 OK\\x0d\nVia: SIP/2.0/UDP nm;rport=58501;received=<srcip>;branch=foo\\x0d\nCall-ID: 50000\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nTo: <sip:nm2@nm2>;tag=foo\\x0d\nCSeq: 42 OPTIONS\\x0d\nAccept: application/dndstatus-info+xml, application/pidf+xml, application/xpidf+xml, application/cpim-pidf+xml, application/dialog-info+xml, application/simple-message-summary, application/simple-message-summary, application/pidf+xml, application/dialog-info+xml, application/dndstatus-info+xml, application/sdp, message/sipfrag;version=2.0\\x0d\nAllow: OPTIONS, REGISTER, SUBSCRIBE, NOTIFY, PUBLISH, INVITE, ACK, BYE, CANCEL, UPDATE, PRACK, MESSAGE, REFER\\x0d\nSupported: 100rel, timer, replaces, norefersub\\x0d\nAccept-Encoding: text/plain\\x0d\nAccept-Language: en\\x0d\nServer: FortiVoice-VM\\x0d\nContent-Length:  0\\x0d\n\\x0d\n",
   "datamd5" : "c7f13c0f4510cc1d7d337caea7ad2b87",
   "datammh3" : 228072886,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.16.0/21"
   },
   "ip" : "179.50.16.221",
   "ipv6" : "false",
   "latitude" : "6.2529",
   "location" : "6.2529,-75.5646",
   "longitude" : "-75.5646",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "seen_date" : "2024-10-14",
   "source" : "datascan",
   "subnet" : "179.50.16.0/21",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

  • 179.50.14.204:5060 (tcp/sip) - last seen on 2024-10-10 at 21:17:56 UTC

    • IP
      179.50.14.204
      Network
      179.50.0.0/20
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux Kernel
      ASN
      AS26619
      Organization
      GTD COLOMBIA S.A.S
      Protocol
      sip
      Source
      datascan
    • Operating System
      Linux Linux Kernel
      CPE(s)

      <enterprise field>: cpe

    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      c5bdda49ddb739ec92b63493e85ceead 
    • SIP/2.0 604 Does Not Exist Anywhere\x0d
Call-ID: 50000\x0d
CSeq: 42 OPTIONS\x0d
From: <sip:nm@nm>;tag=root\x0d
To: <sip:nm2@nm2>;tag=sip+2+22c5000b+157d10df\x0d
Via: SIP/2.0/TCP nm;received=<srcip>;rport=42291;branch=foo\x0d
Server: SIP/2.0\x0d
Content-Length: 0\x0d
Max-Forwards: 69\x0d
Accept: application/sdp\x0d
Contact: <sip:nm@nm>\x0d
\x0d

    • {
   "@category" : "datascan",
   "@timestamp" : "2024-10-10T21:17:56.000Z",
   "app" : {
      "length" : 310
   },
   "asn" : "AS26619",
   "city" : "Bogot\u00e1",
   "country" : "CO",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "SIP/2.0 604 Does Not Exist Anywhere\\x0d\nCall-ID: 50000\\x0d\nCSeq: 42 OPTIONS\\x0d\nFrom: <sip:nm@nm>;tag=root\\x0d\nTo: <sip:nm2@nm2>;tag=sip+2+22c5000b+157d10df\\x0d\nVia: SIP/2.0/TCP nm;received=<srcip>;rport=42291;branch=foo\\x0d\nServer: SIP/2.0\\x0d\nContent-Length: 0\\x0d\nMax-Forwards: 69\\x0d\nAccept: application/sdp\\x0d\nContact: <sip:nm@nm>\\x0d\n\\x0d\n",
   "datamd5" : "c5bdda49ddb739ec92b63493e85ceead",
   "datammh3" : -433380313,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS26619",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "CO",
      "countryname" : "Colombia",
      "domain" : [
         "grupogtd.com"
      ],
      "isineu" : "false",
      "latitude" : "4.570868",
      "location" : "4.570868,-74.297333",
      "longitude" : "-74.297333",
      "netname" : "CO-FLSA1-LACNIC",
      "organization" : "GTD COLOMBIA S.A.S",
      "subnet" : "179.50.0.0/20"
   },
   "ip" : "179.50.14.204",
   "ipv6" : "false",
   "latitude" : "4.6115",
   "location" : "4.6115,-74.0833",
   "longitude" : "-74.0833",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "GTD COLOMBIA S.A.S",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5060,
   "protocol" : "sip",
   "seen_date" : "2024-10-10",
   "source" : "datascan",
   "subnet" : "179.50.0.0/20",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}