Accessible SMB Report

LAST UPDATED: 2022-05-19

This report identifies hosts that have an SMB instance running on port 445/TCP that are accessible on the Internet.

This service should not be exposed to the Internet.

For more details behind the scan methodology and a daily update of global SMB scan statistics please visit our dedicated Accessible SMB scan page.

For more information on our scanning efforts, check out our Internet scanning summary page.

Filename: scan_smb

Fields

  • timestamp
    Time that the IP was probed in UTC+0
  • ip
    The IP address of the device in question
  • protocol
    Protocol that the response came on (always TCP)
  • port
    Port that the response came from (445/TCP)
  • hostname
    Reverse DNS name of the device in question
  • tag
    Will always be smb
  • asn
    ASN of where the device in question resides
  • geo
    Country where the device in question resides
  • region
    State / Province / Administrative region where the device in question resides
  • city
    City in which the device in question resides
  • naics
    North American Industry Classification System Code
  • sic
    Standard Industrial Classification System Code
  • smb_implant
    Indicates if an smb-implant is present (Y/N)
  • arch
    If an smb-implant is present, indicates if the system architecture is 32-bit (x86) or 64-bit (x64)
  • key
    If an smb-implant is present, indicates the crypto key
  • smbv1_support
    SMBv1 support (Y/N)
  • smb_major_number
    SMB major version number
  • smb_minor_number
    SMB minor version number
  • smb_revision
    SMB revision number
  • smb_version_string
    SMB version string

Sample

"timestamp","ip","port","hostname","tag","asn","geo","region","city","naics","sic","smb_implant","arch","key","smbv1_support","smb_major_number","smb_minor_number","smb_revision","smb_version_string"
"2010-02-10 00:00:00",192.168.0.1,445,node01.example.com,smb,64512,ZZ,Region,City,0,0,N,,,N,2,1,0,"SMB 2.1"
"2010-02-10 00:00:01",192.168.0.2,445,node02.example.com,smb,64512,ZZ,Region,City,0,0,N,,,N,2,1,0,"SMB 2.1"
"2010-02-10 00:00:02",192.168.0.3,445,node03.example.com,smb,64512,ZZ,Region,City,0,0,N,,,N,2,1,0,"SMB 2.1"

Our 125 Report Types

« Back to Network Reporting