Cyber Defense Search Engine

IP
117.71.110.96

Network
117.71.64.0/18

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS4134

Organization
Chinanet

Protocol
mssql

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft SQL Server 10.50.1600.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
dabccad9e1f13db70f9cb5384298150b

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff
2\x06@\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:33.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS4134",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\n2\\x06@\\x00\\x00\\x00\\x00",
   "datamd5" : "dabccad9e1f13db70f9cb5384298150b",
   "datammh3" : -489642714,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4134",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "189.cn",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-AH",
      "organization" : "CHINANET anhui province network",
      "subnet" : "117.71.64.0/18"
   },
   "ip" : "117.71.110.96",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Chinanet",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "10.50.1600.0\n",
   "protocol" : "mssql",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "117.71.64.0/18",
   "tls" : "false",
   "transport" : "tcp"
}

IP
188.49.89.49

Network
188.48.0.0/15

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

ASN
AS25019

Organization
Saudi Telecom Company JSC

Protocol
mssql

Source
datascan
Operating System
FreeBSD FreeBSD

Product
Microsoft SQL Server 10.50.4000.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a54c7c0167211ceaa6867586a8a78859

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff
2\x0f\xa0\x00\x00\x00\x01

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:33.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS25019",
   "city" : "Riyadh",
   "country" : "SA",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\n2\\x0f\\xa0\\x00\\x00\\x00\\x01",
   "datamd5" : "a54c7c0167211ceaa6867586a8a78859",
   "datammh3" : -147545513,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS25019",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "SA",
      "countryname" : "Saudi Arabia",
      "domain" : [
         "stc.com.sa"
      ],
      "isineu" : "false",
      "latitude" : "23.885942",
      "location" : "23.885942,45.079162",
      "longitude" : "45.079162",
      "netname" : "SAUDINET_DSL_POOL",
      "organization" : "Saudinet, Saudi Telecom Company ISP",
      "subnet" : "188.49.0.0/16"
   },
   "ip" : "188.49.89.49",
   "ipv6" : "false",
   "latitude" : "24.6869",
   "location" : "24.6869,46.7224",
   "longitude" : "46.7224",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Saudi Telecom Company JSC",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "10.50.4000.0\n",
   "protocol" : "mssql",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "188.48.0.0/15",
   "tls" : "false",
   "transport" : "tcp"
}

IP
185.66.109.17

Network
185.66.108.0/22

Domain(s)
rootserver.io

Device

<enterprise field>: device.class

Operating System
FreeBSD FreeBSD

Reverse DNS
s2416.rootserver.io

ASN
AS200713

Organization
Zettaplan AG

Protocol
mssql

Source
datascan
Operating System
FreeBSD FreeBSD

Product
Microsoft SQL Server 16.0.1000.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
59aa0ceb7fad29becfba3a1990c3fc97

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff\x10\x00\x03\xe8\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:32.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS200713",
   "country" : "CH",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\\x10\\x00\\x03\\xe8\\x00\\x00\\x00\\x00",
   "datamd5" : "59aa0ceb7fad29becfba3a1990c3fc97",
   "datammh3" : 1366719419,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "rootserver.io"
   ],
   "host" : [
      "s2416"
   ],
   "hostname" : [
      "s2416.rootserver.io"
   ],
   "ip" : "185.66.109.17",
   "ipv6" : "false",
   "latitude" : "47.1449",
   "location" : "47.1449,8.1551",
   "longitude" : "8.1551",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Zettaplan AG",
   "os" : "FreeBSD",
   "osvendor" : "FreeBSD",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "16.0.1000.0\n",
   "protocol" : "mssql",
   "reverse" : [
      "s2416.rootserver.io"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "185.66.108.0/22",
   "tld" : [
      "io"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
1.94.207.149

Network
1.94.0.0/15

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
ecs-1-94-207-149.compute.hwclouds-dns.com

ASN
AS55990

Organization
Huawei Cloud Service data center

Protocol
mssql

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft SQL Server 16.0.1000.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
59aa0ceb7fad29becfba3a1990c3fc97

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff\x10\x00\x03\xe8\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:32.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS55990",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\\x10\\x00\\x03\\xe8\\x00\\x00\\x00\\x00",
   "datamd5" : "59aa0ceb7fad29becfba3a1990c3fc97",
   "datammh3" : 1366719419,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS55990",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "drpeng.com.cn",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "DXTNET",
      "organization" : "Beijing Teletron Telecom Engineering Co., Ltd.",
      "subnet" : "1.94.0.0/16"
   },
   "host" : [
      "ecs-1-94-207-149"
   ],
   "hostname" : [
      "ecs-1-94-207-149.compute.hwclouds-dns.com"
   ],
   "ip" : "1.94.207.149",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Huawei Cloud Service data center",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "16.0.1000.0\n",
   "protocol" : "mssql",
   "reverse" : [
      "ecs-1-94-207-149.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "1.94.0.0/15",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
116.205.190.38

Network
116.205.0.0/16

Domain(s)
hwclouds-dns.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
ecs-116-205-190-38.compute.hwclouds-dns.com

ASN
AS55990

Organization
Huawei Cloud Service data center

Protocol
mssql

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft SQL Server 13.0.4001.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
12d3bc7cb6f8ecd8aac38f670f310f8b

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff\x0d\x00\x0f\xa1\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:32.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS55990",
   "city" : "Guangzhou",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\\x0d\\x00\\x0f\\xa1\\x00\\x00\\x00\\x00",
   "datamd5" : "12d3bc7cb6f8ecd8aac38f670f310f8b",
   "datammh3" : 72847434,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "hwclouds-dns.com"
   ],
   "geolocus" : {
      "asn" : "AS55990",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "cnnic.cn",
         "huawei.com",
         "hwclouds-dns.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "HWCSNET",
      "organization" : "Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)",
      "subnet" : "116.205.128.0/17"
   },
   "host" : [
      "ecs-116-205-190-38"
   ],
   "hostname" : [
      "ecs-116-205-190-38.compute.hwclouds-dns.com"
   ],
   "ip" : "116.205.190.38",
   "ipv6" : "false",
   "latitude" : "23.1181",
   "location" : "23.1181,113.2539",
   "longitude" : "113.2539",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Huawei Cloud Service data center",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "13.0.4001.0\n",
   "protocol" : "mssql",
   "reverse" : [
      "ecs-116-205-190-38.compute.hwclouds-dns.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "compute.hwclouds-dns.com"
   ],
   "subnet" : "116.205.0.0/16",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

IP
45.223.1.15

Network
45.223.1.0/24

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS19551

Organization
INCAPSULA

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
5b676da743e7d25f526cfb89b9beaaf0

HTTP Header MD5
f24159e078c8568ce9de980498ef60be

HTTP Body MD5
516ad4981029583f05f076f0e8e301e4

HTTP/1.1 400 Bad Request
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
Content-Length: 700
X-Iinfo: 10-47688576-0 0NNN RT(1732180531161 40) q(-1 -1 -1 -1) r(0 -1) b1

<html style="height:100%"><head><META NAME="ROBOTS" CONTENT="NOINDEX, NOFOLLOW"><meta name="format-detection" content="telephone=no"><meta name="viewport" content="initial-scale=1.0"><meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"></head><body style="margin:0px;height:100%"><iframe id="main-iframe" src="/_Incapsula_Resource?CWUDNSAI=2&xinfo=10-47688576-0%200NNN%20RT%281732180531161%2040%29%20q%28-1%20-1%20-1%20-1%29%20r%280%20-1%29%20b1&incident_id=0-249114854941197450&edet=3&cinfo=ffffffff&pe=544&rpinfo=0&mth=NA" frameborder=0 width="100%" height="100%" marginheight="0px" marginwidth="0px">Request unsuccessful. Incapsula incident ID: 0-249114854941197450</iframe></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:31.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "516ad4981029583f05f076f0e8e301e4",
         "bodymmh3" : 312802805,
         "headermd5" : "f24159e078c8568ce9de980498ef60be",
         "headermmh3" : -1167543744
      },
      "length" : 904
   },
   "asn" : "AS19551",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nContent-Type: text/html\r\nCache-Control: no-cache, no-store\r\nConnection: close\r\nContent-Length: 700\r\nX-Iinfo: 10-47688576-0 0NNN RT(1732180531161 40) q(-1 -1 -1 -1) r(0 -1) b1\r\n\r\n<html style=\"height:100%\"><head><META NAME=\"ROBOTS\" CONTENT=\"NOINDEX, NOFOLLOW\"><meta name=\"format-detection\" content=\"telephone=no\"><meta name=\"viewport\" content=\"initial-scale=1.0\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\"></head><body style=\"margin:0px;height:100%\"><iframe id=\"main-iframe\" src=\"/_Incapsula_Resource?CWUDNSAI=2&xinfo=10-47688576-0%200NNN%20RT%281732180531161%2040%29%20q%28-1%20-1%20-1%20-1%29%20r%280%20-1%29%20b1&incident_id=0-249114854941197450&edet=3&cinfo=ffffffff&pe=544&rpinfo=0&mth=NA\" frameborder=0 width=\"100%\" height=\"100%\" marginheight=\"0px\" marginwidth=\"0px\">Request unsuccessful. Incapsula incident ID: 0-249114854941197450</iframe></body></html>",
   "datamd5" : "5b676da743e7d25f526cfb89b9beaaf0",
   "datammh3" : -215074119,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS19551",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "imperva.com",
         "incapsula.com",
         "thalesgroup.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "INCAPSULA-NET",
      "organization" : "Incapsula Inc",
      "subnet" : "45.223.1.0/24"
   },
   "ip" : "45.223.1.15",
   "ipv6" : "false",
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "INCAPSULA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1433,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "45.223.1.0/24",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
120.78.167.171

Network
120.76.0.0/14

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS37963

Organization
Hangzhou Alibaba Advertising Co.,Ltd.

Protocol
mssql

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft SQL Server 10.50.1600.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
dabccad9e1f13db70f9cb5384298150b

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff
2\x06@\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:31.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS37963",
   "city" : "Shenzhen",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\n2\\x06@\\x00\\x00\\x00\\x00",
   "datamd5" : "dabccad9e1f13db70f9cb5384298150b",
   "datammh3" : -489642714,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS37963",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "alibaba-inc.com",
         "cnnic.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "ALISOFT",
      "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
      "subnet" : "120.76.0.0/14"
   },
   "ip" : "120.78.167.171",
   "ipv6" : "false",
   "latitude" : "22.5559",
   "location" : "22.5559,114.0577",
   "longitude" : "114.0577",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "10.50.1600.0\n",
   "protocol" : "mssql",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "120.76.0.0/14",
   "tls" : "false",
   "transport" : "tcp"
}

IP
8.138.23.103

Network
8.136.0.0/13

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS37963

Organization
Hangzhou Alibaba Advertising Co.,Ltd.

Protocol
mssql

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft SQL Server 15.0.2000.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a16afae93b9abac71a279271ffa123c5

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff\x0f\x00\x07\xd0\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:31.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS37963",
   "city" : "Guangzhou",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\\x0f\\x00\\x07\\xd0\\x00\\x00\\x00\\x00",
   "datamd5" : "a16afae93b9abac71a279271ffa123c5",
   "datammh3" : 443389347,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS37963",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "alibaba-inc.com"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "ALICLOUD",
      "organization" : "Alibaba.com Singapore E-Commerce Private Limited",
      "subnet" : "8.136.0.0/14"
   },
   "ip" : "8.138.23.103",
   "ipv6" : "false",
   "latitude" : "23.1181",
   "location" : "23.1181,113.2539",
   "longitude" : "113.2539",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Hangzhou Alibaba Advertising Co.,Ltd.",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "15.0.2000.0\n",
   "protocol" : "mssql",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subnet" : "8.136.0.0/13",
   "tls" : "false",
   "transport" : "tcp"
}

IP
45.223.154.163

Network
45.223.152.0/22

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

ASN
AS19551

Organization
INCAPSULA

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
09019440531a21459924cbb59b31736e

HTTP Header MD5
6565f5b8eedaf4dca346a42cd5e099e3

HTTP Body MD5
cdfbb8cdf223edb37a0b95d50909a106

HTTP/1.1 400 Bad Request
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
Content-Length: 701
X-Iinfo: 12-123175065-0 0NNN RT(1732180530144 85) q(-1 -1 -1 -1) r(0 -1) b1

<html style="height:100%"><head><META NAME="ROBOTS" CONTENT="NOINDEX, NOFOLLOW"><meta name="format-detection" content="telephone=no"><meta name="viewport" content="initial-scale=1.0"><meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"></head><body style="margin:0px;height:100%"><iframe id="main-iframe" src="/_Incapsula_Resource?CWUDNSAI=2&xinfo=12-123175065-0%200NNN%20RT%281732180530144%2085%29%20q%28-1%20-1%20-1%20-1%29%20r%280%20-1%29%20b1&incident_id=0-521123938405122764&edet=3&cinfo=ffffffff&pe=544&rpinfo=0&mth=NA" frameborder=0 width="100%" height="100%" marginheight="0px" marginwidth="0px">Request unsuccessful. Incapsula incident ID: 0-521123938405122764</iframe></body></html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:30.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "cdfbb8cdf223edb37a0b95d50909a106",
         "bodymmh3" : 191775641,
         "headermd5" : "6565f5b8eedaf4dca346a42cd5e099e3",
         "headermmh3" : 1211269500
      },
      "length" : 906
   },
   "asn" : "AS19551",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nContent-Type: text/html\r\nCache-Control: no-cache, no-store\r\nConnection: close\r\nContent-Length: 701\r\nX-Iinfo: 12-123175065-0 0NNN RT(1732180530144 85) q(-1 -1 -1 -1) r(0 -1) b1\r\n\r\n<html style=\"height:100%\"><head><META NAME=\"ROBOTS\" CONTENT=\"NOINDEX, NOFOLLOW\"><meta name=\"format-detection\" content=\"telephone=no\"><meta name=\"viewport\" content=\"initial-scale=1.0\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\"></head><body style=\"margin:0px;height:100%\"><iframe id=\"main-iframe\" src=\"/_Incapsula_Resource?CWUDNSAI=2&xinfo=12-123175065-0%200NNN%20RT%281732180530144%2085%29%20q%28-1%20-1%20-1%20-1%29%20r%280%20-1%29%20b1&incident_id=0-521123938405122764&edet=3&cinfo=ffffffff&pe=544&rpinfo=0&mth=NA\" frameborder=0 width=\"100%\" height=\"100%\" marginheight=\"0px\" marginwidth=\"0px\">Request unsuccessful. Incapsula incident ID: 0-521123938405122764</iframe></body></html>",
   "datamd5" : "09019440531a21459924cbb59b31736e",
   "datammh3" : -522191480,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS19551",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "imperva.com",
         "incapsula.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "INCAPSULA-NET",
      "organization" : "Incapsula Inc",
      "subnet" : "45.223.154.162/31"
   },
   "ip" : "45.223.154.163",
   "ipv6" : "false",
   "latitude" : "37.7510",
   "location" : "37.7510,-97.8220",
   "longitude" : "-97.8220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "INCAPSULA",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 1433,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "45.223.152.0/22",
   "tag" : "<enterprise field>: tag",
   "tls" : "false",
   "transport" : "tcp"
}

IP
34.238.101.9

Network
34.224.0.0/12

Domain(s)
amazonaws.com

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

Reverse DNS
ec2-34-238-101-9.compute-1.amazonaws.com

ASN
AS14618

Organization
AMAZON-AES

Protocol
mssql

Source
datascan
Operating System
Microsoft Windows

Product
Microsoft SQL Server 16.0.4135.0

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
005c23f757b4cec874bcb2484ddaefc2

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff\x10\x00\x10'\x00\x00\x00\x00

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-21T09:15:28.000Z",
   "app" : {
      "length" : 37
   },
   "asn" : "AS14618",
   "city" : "Ashburn",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "\\x04\\x01\\x00%\\x00\\x00\\x01\\x00\\x00\\x00\\x15\\x00\\x06\\x01\\x00\\x1b\\x00\\x01\\x02\\x00\\x1c\\x00\\x01\\x03\\x00\\x1d\\x00\\x00\\xff\\x10\\x00\\x10'\\x00\\x00\\x00\\x00",
   "datamd5" : "005c23f757b4cec874bcb2484ddaefc2",
   "datammh3" : -207798678,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "domain" : [
      "amazonaws.com"
   ],
   "geolocus" : {
      "asn" : "AS14618",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "amazon.com",
         "amazonaws.com",
         "aws.com"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "AT-88-Z",
      "organization" : "Amazon Technologies Inc.",
      "subnet" : "34.224.0.0/12"
   },
   "host" : [
      "ec2-34-238-101-9"
   ],
   "hostname" : [
      "ec2-34-238-101-9.compute-1.amazonaws.com"
   ],
   "ip" : "34.238.101.9",
   "ipv6" : "false",
   "latitude" : "39.0469",
   "location" : "39.0469,-77.4903",
   "longitude" : "-77.4903",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "AMAZON-AES",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 1433,
   "product" : "SQL Server",
   "productvendor" : "Microsoft",
   "productversion" : "16.0.4135.0\n",
   "protocol" : "mssql",
   "reverse" : [
      "ec2-34-238-101-9.compute-1.amazonaws.com"
   ],
   "seen_date" : "2024-11-21",
   "source" : "datascan",
   "subdomains" : [
      "compute-1.amazonaws.com"
   ],
   "subnet" : "34.224.0.0/12",
   "tag" : "<enterprise field>: tag",
   "tld" : [
      "com"
   ],
   "tls" : "false",
   "transport" : "tcp"
}

Returning 10 result(s) out of 1,326,754 in 0.572 second(s)

117.71.110.96:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:33 UTC

188.49.89.49:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:33 UTC

185.66.109.17:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:32 UTC

1.94.207.149:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:32 UTC

116.205.190.38:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:32 UTC

45.223.1.15:1433 (tcp/http) - last seen on 2024-11-21 at 09:15:31 UTC

120.78.167.171:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:31 UTC

8.138.23.103:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:31 UTC

45.223.154.163:1433 (tcp/http) - last seen on 2024-11-21 at 09:15:30 UTC

34.238.101.9:1433 (tcp/mssql) - last seen on 2024-11-21 at 09:15:28 UTC