IP address: 195.54.161.85

Host rating:

2.0

out of 35 votes

Last update: 2020-09-23

Host details

Unknown
Unknown
Unknown
Unknown
See comments

Reported breaches

  • Port scan
Report breach

User comments

35 security incident(s) reported by users

BHD Honeypot
Port scan
2020-09-23

In the last 24h, the attacker (195.54.161.85) attempted to scan 384 ports.
The following ports have been scanned: 58745/tcp, 57695/tcp, 60727/tcp, 25713/tcp, 7712/tcp, 37811/tcp, 36414/tcp, 17762/tcp, 19781/tcp, 50447/tcp, 53298/tcp, 31120/tcp, 10566/tcp, 61756/tcp, 42577/tcp, 55348/tcp, 54170/tcp, 12972/tcp, 54331/tcp, 33903/tcp, 11421/tcp, 26830/tcp, 18475/tcp, 26724/tcp, 15184/tcp, 36681/tcp, 33428/tcp, 60422/tcp, 45538/tcp, 32493/tcp, 11762/tcp, 39560/tcp, 16181/tcp, 11719/tcp, 57935/tcp, 18849/tcp, 60070/tcp, 15661/tcp, 44343/tcp, 10933/tcp, 20287/tcp, 38993/tcp, 14228/tcp, 61300/tcp, 60416/tcp, 25606/tcp, 15555/tcp (Cisco Stateful NAT), 36208/tcp, 32186/tcp, 27409/tcp, 32218/tcp, 26909/tcp, 36306/tcp, 39817/tcp, 34088/tcp, 6289/tcp, 8187/tcp, 39574/tcp, 23950/tcp, 17317/tcp, 16210/tcp, 20095/tcp, 16516/tcp, 32211/tcp, 33769/tcp, 44576/tcp, 18586/tcp, 16549/tcp, 8098/tcp, 54067/tcp, 36256/tcp, 31239/tcp, 35625/tcp, 11339/tcp, 23391/tcp, 22898/tcp, 28936/tcp, 49310/tcp, 11315/tcp, 27971/tcp, 39456/tcp, 58385/tcp, 12650/tcp, 12376/tcp, 40646/tcp, 50156/tcp, 18075/tcp, 33753/tcp, 22571/tcp, 12281/tcp, 24090/tcp, 15002/tcp, 60337/tcp, 20369/tcp, 38630/tcp, 56962/tcp, 5091/tcp, 32646/tcp, 62013/tcp, 57004/tcp, 28940/tcp, 46419/tcp, 35247/tcp, 23337/tcp, 16264/tcp, 15822/tcp, 41062/tcp, 63448/tcp, 48371/tcp, 30253/tcp, 18161/tcp, 27760/tcp, 16913/tcp, 47979/tcp, 15597/tcp, 37933/tcp, 16238/tcp, 60523/tcp, 14048/tcp, 7241/tcp, 57076/tcp, 17234/tcp (Integrius Secure Tunnel Protocol), 57318/tcp, 11555/tcp, 62537/tcp, 16385/tcp, 16973/tcp, 49484/tcp, 30553/tcp, 60525/tcp, 17449/tcp, 32811/tcp (Real Estate Transport Protocol), 14498/tcp, 32884/tcp, 60869/tcp, 14777/tcp, 17117/tcp, 19966/tcp, 17177/tcp, 60797/tcp, 6968/tcp, 16303/tcp, 31899/tcp, 22756/tcp, 50428/tcp, 30775/tcp, 20765/tcp, 15169/tcp, 33028/tcp, 57888/tcp, 45587/tcp, 45113/tcp, 39043/tcp, 21765/tcp, 22407/tcp, 31419/tcp, 17206/tcp, 61488/tcp, 60859/tcp, 36952/tcp, 36449/tcp, 8112/tcp, 15395/tcp, 57628/tcp, 34112/tcp, 29959/tcp, 10943/tcp, 53638/tcp, 6436/tcp, 6503/tcp (BoKS Clntd), 26377/tcp, 32619/tcp, 6100/tcp (SynchroNet-db), 24277/tcp, 6622/tcp (Multicast FTP), 58289/tcp, 56732/tcp, 16186/tcp, 31237/tcp, 35275/tcp, 6744/tcp, 48131/tcp, 29346/tcp, 61041/tcp, 13092/tcp, 41794/tcp (Crestron Control Port), 12342/tcp, 17003/tcp, 31927/tcp, 60566/tcp, 20237/tcp, 17326/tcp, 62967/tcp, 42605/tcp, 16449/tcp, 45427/tcp, 32558/tcp, 50681/tcp, 21517/tcp, 23897/tcp, 57974/tcp, 53528/tcp, 31499/tcp, 37294/tcp, 23803/tcp, 23200/tcp, 12911/tcp, 11840/tcp, 55533/tcp, 7052/tcp, 23293/tcp, 38468/tcp, 61438/tcp, 19045/tcp, 47179/tcp, 35038/tcp, 19649/tcp, 11979/tcp, 26851/tcp, 18119/tcp, 50631/tcp, 15326/tcp, 50048/tcp, 21201/tcp, 15080/tcp, 46440/tcp, 19735/tcp, 21552/tcp, 16387/tcp, 17792/tcp, 60787/tcp, 20391/tcp, 33523/tcp, 8773/tcp, 24040/tcp, 61910/tcp, 52755/tcp, 34884/tcp, 33631/tcp, 17754/tcp (Encap. ZigBee Packets), 58783/tcp, 32650/tcp, 50309/tcp, 58387/tcp, 61889/tcp, 12661/tcp, 42710/tcp, 35411/tcp, 60620/tcp, 22648/tcp, 45878/tcp, 22698/tcp, 7021/tcp (DP Serve Admin), 15288/tcp, 33256/tcp, 24412/tcp, 7688/tcp, 14417/tcp, 58978/tcp, 51991/tcp, 5079/tcp, 19620/tcp, 23373/tcp, 5762/tcp, 13118/tcp, 31931/tcp, 49093/tcp, 18826/tcp, 15451/tcp, 25475/tcp, 29929/tcp, 18095/tcp, 6747/tcp, 19492/tcp, 37869/tcp, 26002/tcp, 56620/tcp, 59850/tcp, 39488/tcp, 34054/tcp, 46582/tcp, 41555/tcp, 41729/tcp, 7168/tcp, 34117/tcp, 16720/tcp, 23019/tcp, 39235/tcp, 19517/tcp, 34558/tcp, 17721/tcp, 60703/tcp, 25604/tcp, 17919/tcp, 17356/tcp, 62174/tcp, 11472/tcp, 54122/tcp, 5117/tcp (GradeCam Image Processing), 59262/tcp, 13988/tcp, 56286/tcp, 21425/tcp, 24194/tcp, 54566/tcp, 53750/tcp, 56082/tcp, 34823/tcp, 9122/tcp, 35069/tcp, 22365/tcp, 57402/tcp, 43294/tcp, 26324/tcp, 26320/tcp, 24515/tcp, 42346/tcp, 37174/tcp, 26987/tcp, 12378/tcp, 44068/tcp, 38064/tcp, 17415/tcp, 12790/tcp, 23297/tcp, 42562/tcp, 30863/tcp, 59672/tcp, 51240/tcp, 15719/tcp, 36970/tcp, 12541/tcp, 58209/tcp, 42471/tcp, 17656/tcp, 32170/tcp, 45439/tcp, 29950/tcp, 33178/tcp, 34540/tcp, 44899/tcp, 55366/tcp, 59807/tcp, 27148/tcp, 32076/tcp, 58477/tcp, 22845/tcp, 57301/tcp, 52708/tcp, 31796/tcp, 5691/tcp, 32571/tcp, 64919/tcp, 32805/tcp, 22057/tcp, 38239/tcp, 28345/tcp, 14096/tcp, 47942/tcp, 32966/tcp, 42991/tcp, 20740/tcp, 11289/tcp, 48614/tcp, 20023/tcp, 42510/tcp (CA eTrust RPC), 14673/tcp, 15514/tcp, 54336/tcp, 40954/tcp, 26966/tcp, 16830/tcp, 48968/tcp, 14371/tcp, 10295/tcp, 52468/tcp, 16275/tcp, 31046/tcp, 46414/tcp, 41094/tcp, 42581/tcp.
      
BHD Honeypot
Port scan
2020-09-22

In the last 24h, the attacker (195.54.161.85) attempted to scan 521 ports.
The following ports have been scanned: 42000/tcp, 48000/tcp (Nimbus Controller), 3398/tcp (Mercantile), 555/tcp (dsf), 35000/tcp, 23000/tcp (Inova LightLink Server Type 1), 1000/tcp (cadlock2), 2222/tcp (EtherNet/IP I/O), 33896/tcp, 3396/tcp (Printer Agent), 9000/tcp (CSlistener), 34000/tcp, 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 111/tcp (SUN Remote Procedure Call), 38000/tcp, 22222/tcp, 55000/tcp, 13389/tcp, 30000/tcp, 3383/tcp (Enterprise Software Products License Manager), 5555/tcp (Personal Agent), 15000/tcp (Hypack Data Aquisition), 6666/tcp, 64000/tcp, 3387/tcp (Back Room Net), 63000/tcp, 20000/tcp (DNP), 62000/tcp, 39000/tcp, 222/tcp (Berkeley rshd with SPX auth), 999/tcp (puprouter), 6000/tcp (-6063/udp   X Window System), 24000/tcp (med-ltp), 60000/tcp, 3000/tcp (RemoteWare Client), 61000/tcp, 11111/tcp (Viral Computing Environment (VCE)), 11000/tcp (IRISA), 4000/tcp (Terabase), 46000/tcp, 36000/tcp, 16000/tcp (Administration Server Access), 54000/tcp, 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 777/tcp (Multiling HTTP), 22000/tcp (SNAPenetIO), 51000/tcp, 3384/tcp (Cluster Management Services), 52000/tcp, 28000/tcp (NX License Manager), 888/tcp (CD Database Protocol), 33895/tcp, 33389/tcp, 33000/tcp, 33890/tcp, 59000/tcp, 3393/tcp (D2K Tapestry Client to Server), 33898/tcp, 3392/tcp (EFI License Management), 5000/tcp (commplex-main), 17000/tcp, 29000/tcp, 3394/tcp (D2K Tapestry Server to Server), 45000/tcp, 58000/tcp, 33893/tcp, 49000/tcp, 13000/tcp, 3391/tcp (SAVANT), 23389/tcp, 444/tcp (Simple Network Paging Protocol), 44000/tcp, 55555/tcp, 57000/tcp, 31000/tcp, 666/tcp (doom Id Software), 32000/tcp, 47000/tcp (Message Bus), 21000/tcp (IRTrans Control), 63389/tcp, 41000/tcp, 53000/tcp, 3381/tcp (Geneous), 40000/tcp (SafetyNET p), 50000/tcp, 4389/tcp (Xandros Community Management Service), 33892/tcp, 14000/tcp (SCOTTY High-Speed Filetransfer), 1111/tcp (LM Social Server), 7777/tcp (cbt), 33897/tcp, 4444/tcp (NV Video default), 33891/tcp, 7000/tcp (file server itself), 3333/tcp (DEC Notes), 65000/tcp, 37000/tcp, 8000/tcp (iRDMI), 44444/tcp, 56000/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 25000/tcp (icl-twobase1), 27000/tcp (-27009 FLEX LM (1-10)), 10000/tcp (Network Data Management Protocol), 33899/tcp, 333/tcp (Texar Security Port), 33333/tcp (Digital Gaslight Service), 3380/tcp (SNS Channels), 18000/tcp (Beckman Instruments, Inc.), 3397/tcp (Cloanto License Manager), 53389/tcp, 26000/tcp (quake), 3399/tcp (CSMS), 19000/tcp (iGrid Server), 43000/tcp, 9999/tcp (distinct), 12000/tcp (IBM Enterprise Extender SNA XID Exchange), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server), 2000/tcp (Cisco SCCP), 33894/tcp.
      
BHD Honeypot
Port scan
2020-09-21

In the last 24h, the attacker (195.54.161.85) attempted to scan 21 ports.
The following ports have been scanned: 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 3383/tcp (Enterprise Software Products License Manager), 3387/tcp (Back Room Net), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 3384/tcp (Cluster Management Services), 3393/tcp (D2K Tapestry Client to Server), 3392/tcp (EFI License Management), 3394/tcp (D2K Tapestry Server to Server), 3391/tcp (SAVANT), 3381/tcp (Geneous), 3380/tcp (SNS Channels), 3397/tcp (Cloanto License Manager), 3399/tcp (CSMS), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server).
      
BHD Honeypot
Port scan
2020-09-20

Port scan from IP: 195.54.161.85 detected by psad.
BHD Honeypot
Port scan
2020-09-20

In the last 24h, the attacker (195.54.161.85) attempted to scan 11 ports.
The following ports have been scanned: 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 3383/tcp (Enterprise Software Products License Manager), 3385/tcp (qnxnetman), 3393/tcp (D2K Tapestry Client to Server), 3380/tcp (SNS Channels), 3399/tcp (CSMS).
      
BHD Honeypot
Port scan
2020-09-19

In the last 24h, the attacker (195.54.161.85) attempted to scan 178 ports.
The following ports have been scanned: 700/tcp (Extensible Provisioning Protocol), 6655/tcp (PC SOFT - Software factory UI/manager), 33395/tcp, 60/tcp, 555/tcp (dsf), 23000/tcp (Inova LightLink Server Type 1), 9009/tcp (Pichat Server), 33388/tcp, 1000/tcp (cadlock2), 200/tcp (IBM System Resource Controller), 33396/tcp, 2222/tcp (EtherNet/IP I/O), 33896/tcp, 9000/tcp (CSlistener), 9090/tcp (WebSM), 800/tcp (mdbs_daemon), 7788/tcp, 400/tcp (Oracle Secure Backup), 111/tcp (SUN Remote Procedure Call), 22222/tcp, 60006/tcp, 9988/tcp (Software Essentials Secure HTTP server), 13389/tcp, 3344/tcp (BNT Manager), 2002/tcp (globe), 707/tcp (Borland DSJ), 30000/tcp, 6006/tcp, 3383/tcp (Enterprise Software Products License Manager), 23/tcp (Telnet), 5555/tcp (Personal Agent), 15000/tcp (Hypack Data Aquisition), 90/tcp (DNSIX Securit Attribute Token Map), 4455/tcp (PR Chat User), 6666/tcp, 101/tcp (NIC Host Name Server), 7070/tcp (ARCP), 33383/tcp, 3387/tcp (Back Room Net), 404/tcp (nced), 20000/tcp (DNP), 50005/tcp, 222/tcp (Berkeley rshd with SPX auth), 999/tcp (puprouter), 33381/tcp, 303/tcp, 6000/tcp (-6063/udp   X Window System), 8008/tcp (HTTP Alternate), 321/tcp (PIP), 900/tcp (OMG Initial Refs), 24000/tcp (med-ltp), 60000/tcp, 6677/tcp, 2211/tcp (EMWIN), 3000/tcp (RemoteWare Client), 606/tcp (Cray Unified Resource Manager), 11111/tcp (Viral Computing Environment (VCE)), 33394/tcp, 4000/tcp (Terabase), 4321/tcp (Remote Who Is), 16000/tcp (Administration Server Access), 10001/tcp (SCP Configuration), 100/tcp ([unauthorized use]), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 777/tcp (Multiling HTTP), 22000/tcp (SNAPenetIO), 3384/tcp (Cluster Management Services), 5050/tcp (multimedia conference control tool), 1122/tcp (availant-mgr), 28000/tcp (NX License Manager), 888/tcp (CD Database Protocol), 3401/tcp (filecast), 33895/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 33890/tcp, 33898/tcp, 5000/tcp (commplex-main), 33392/tcp, 8080/tcp (HTTP Alternate (see port 80)), 20/tcp (File Transfer [Default Data]), 17000/tcp, 4433/tcp, 29000/tcp, 12/tcp, 33382/tcp, 33397/tcp, 300/tcp, 3030/tcp (Arepa Cas), 40004/tcp, 808/tcp, 1001/tcp, 6060/tcp, 202/tcp (AppleTalk Name Binding), 13000/tcp, 1010/tcp (surf), 5544/tcp, 81/tcp, 23389/tcp, 444/tcp (Simple Network Paging Protocol), 30003/tcp, 55555/tcp, 5566/tcp (Westec Connect), 666/tcp (doom Id Software), 3400/tcp (CSMS2), 4004/tcp (pxc-roid), 33386/tcp, 8899/tcp (ospf-lite), 40/tcp, 50/tcp (Remote Mail Checking Protocol), 3003/tcp (CGMS), 63389/tcp, 33398/tcp, 7007/tcp (basic overseer process), 12345/tcp (Italk Chat System), 10/tcp, 4040/tcp (Yo.net main service), 3381/tcp (Geneous), 1234/tcp (Infoseek Search Agent), 40000/tcp (SafetyNET p), 50000/tcp, 43389/tcp, 600/tcp (Sun IPC server), 33892/tcp, 20002/tcp (Commtact HTTP), 14000/tcp (SCOTTY High-Speed Filetransfer), 1111/tcp (LM Social Server), 7777/tcp (cbt), 33897/tcp, 4444/tcp (NV Video default), 123/tcp (Network Time Protocol), 505/tcp (mailbox-lm), 33891/tcp, 7000/tcp (file server itself), 33384/tcp, 7766/tcp, 8000/tcp (iRDMI), 33391/tcp, 44444/tcp, 8877/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 33385/tcp, 25000/tcp (icl-twobase1), 27000/tcp (-27009 FLEX LM (1-10)), 10000/tcp (Network Data Management Protocol), 2020/tcp (xinupageserver), 33899/tcp, 333/tcp (Texar Security Port), 33333/tcp (Digital Gaslight Service), 3380/tcp (SNS Channels), 33393/tcp, 18000/tcp (Beckman Instruments, Inc.), 53389/tcp, 26000/tcp (quake), 19000/tcp (iGrid Server), 9999/tcp (distinct), 30/tcp, 500/tcp (isakmp), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 33387/tcp, 54321/tcp, 33380/tcp, 3388/tcp (CB Server), 2000/tcp (Cisco SCCP), 33894/tcp, 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2020-09-17

In the last 24h, the attacker (195.54.161.85) attempted to scan 368 ports.
The following ports have been scanned: 700/tcp (Extensible Provisioning Protocol), 6655/tcp (PC SOFT - Software factory UI/manager), 33395/tcp, 60/tcp, 555/tcp (dsf), 23000/tcp (Inova LightLink Server Type 1), 9009/tcp (Pichat Server), 33388/tcp, 1000/tcp (cadlock2), 200/tcp (IBM System Resource Controller), 33396/tcp, 2222/tcp (EtherNet/IP I/O), 33896/tcp, 9000/tcp (CSlistener), 9090/tcp (WebSM), 800/tcp (mdbs_daemon), 7788/tcp, 400/tcp (Oracle Secure Backup), 111/tcp (SUN Remote Procedure Call), 22222/tcp, 60006/tcp, 9988/tcp (Software Essentials Secure HTTP server), 13389/tcp, 3344/tcp (BNT Manager), 2002/tcp (globe), 707/tcp (Borland DSJ), 30000/tcp, 6006/tcp, 3383/tcp (Enterprise Software Products License Manager), 23/tcp (Telnet), 5555/tcp (Personal Agent), 15000/tcp (Hypack Data Aquisition), 90/tcp (DNSIX Securit Attribute Token Map), 4455/tcp (PR Chat User), 6666/tcp, 101/tcp (NIC Host Name Server), 7070/tcp (ARCP), 33383/tcp, 3387/tcp (Back Room Net), 404/tcp (nced), 20000/tcp (DNP), 50005/tcp, 222/tcp (Berkeley rshd with SPX auth), 999/tcp (puprouter), 33381/tcp, 303/tcp, 6000/tcp (-6063/udp   X Window System), 8008/tcp (HTTP Alternate), 321/tcp (PIP), 900/tcp (OMG Initial Refs), 24000/tcp (med-ltp), 60000/tcp, 6677/tcp, 2211/tcp (EMWIN), 3000/tcp (RemoteWare Client), 606/tcp (Cray Unified Resource Manager), 11111/tcp (Viral Computing Environment (VCE)), 33394/tcp, 4000/tcp (Terabase), 4321/tcp (Remote Who Is), 16000/tcp (Administration Server Access), 10001/tcp (SCP Configuration), 100/tcp ([unauthorized use]), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 777/tcp (Multiling HTTP), 22000/tcp (SNAPenetIO), 70/tcp (Gopher), 3384/tcp (Cluster Management Services), 5050/tcp (multimedia conference control tool), 33390/tcp, 1122/tcp (availant-mgr), 28000/tcp (NX License Manager), 888/tcp (CD Database Protocol), 3401/tcp (filecast), 33895/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 33890/tcp, 33898/tcp, 5000/tcp (commplex-main), 33392/tcp, 8080/tcp (HTTP Alternate (see port 80)), 20/tcp (File Transfer [Default Data]), 17000/tcp, 4433/tcp, 29000/tcp, 12/tcp, 33382/tcp, 33397/tcp, 300/tcp, 3030/tcp (Arepa Cas), 40004/tcp, 33893/tcp, 808/tcp, 1001/tcp, 6060/tcp, 202/tcp (AppleTalk Name Binding), 13000/tcp, 1010/tcp (surf), 5544/tcp, 81/tcp, 23389/tcp, 444/tcp (Simple Network Paging Protocol), 30003/tcp, 55555/tcp, 5566/tcp (Westec Connect), 666/tcp (doom Id Software), 3400/tcp (CSMS2), 4004/tcp (pxc-roid), 33386/tcp, 8899/tcp (ospf-lite), 40/tcp, 50/tcp (Remote Mail Checking Protocol), 21000/tcp (IRTrans Control), 3003/tcp (CGMS), 63389/tcp, 33398/tcp, 7007/tcp (basic overseer process), 12345/tcp (Italk Chat System), 10/tcp, 4040/tcp (Yo.net main service), 3381/tcp (Geneous), 1234/tcp (Infoseek Search Agent), 40000/tcp (SafetyNET p), 50000/tcp, 43389/tcp, 600/tcp (Sun IPC server), 33892/tcp, 20002/tcp (Commtact HTTP), 14000/tcp (SCOTTY High-Speed Filetransfer), 1111/tcp (LM Social Server), 7777/tcp (cbt), 33399/tcp, 33897/tcp, 4444/tcp (NV Video default), 123/tcp (Network Time Protocol), 505/tcp (mailbox-lm), 33891/tcp, 7000/tcp (file server itself), 3333/tcp (DEC Notes), 33384/tcp, 7766/tcp, 8000/tcp (iRDMI), 33391/tcp, 44444/tcp, 8877/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 33385/tcp, 25000/tcp (icl-twobase1), 27000/tcp (-27009 FLEX LM (1-10)), 10000/tcp (Network Data Management Protocol), 2020/tcp (xinupageserver), 33899/tcp, 333/tcp (Texar Security Port), 33333/tcp (Digital Gaslight Service), 3380/tcp (SNS Channels), 33393/tcp, 18000/tcp (Beckman Instruments, Inc.), 53389/tcp, 26000/tcp (quake), 19000/tcp (iGrid Server), 9999/tcp (distinct), 30/tcp, 500/tcp (isakmp), 12000/tcp (IBM Enterprise Extender SNA XID Exchange), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 33387/tcp, 54321/tcp, 33380/tcp, 3388/tcp (CB Server), 2000/tcp (Cisco SCCP), 33894/tcp, 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2020-09-16

In the last 24h, the attacker (195.54.161.85) attempted to scan 37 ports.
The following ports have been scanned: 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3383/tcp (Enterprise Software Products License Manager), 3387/tcp (Back Room Net), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 3384/tcp (Cluster Management Services), 3393/tcp (D2K Tapestry Client to Server), 3392/tcp (EFI License Management), 3394/tcp (D2K Tapestry Server to Server), 3391/tcp (SAVANT), 3381/tcp (Geneous), 3380/tcp (SNS Channels), 3397/tcp (Cloanto License Manager), 3399/tcp (CSMS), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server).
      
BHD Honeypot
Port scan
2020-09-15

In the last 24h, the attacker (195.54.161.85) attempted to scan 33 ports.
The following ports have been scanned: 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 3383/tcp (Enterprise Software Products License Manager), 3387/tcp (Back Room Net), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 3384/tcp (Cluster Management Services), 3392/tcp (EFI License Management), 3394/tcp (D2K Tapestry Server to Server), 3391/tcp (SAVANT), 3381/tcp (Geneous), 3380/tcp (SNS Channels), 3397/tcp (Cloanto License Manager), 3399/tcp (CSMS), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server).
      
BHD Honeypot
Port scan
2020-09-15

Port scan from IP: 195.54.161.85 detected by psad.
BHD Honeypot
Port scan
2020-09-05

In the last 24h, the attacker (195.54.161.85) attempted to scan 1833 ports.
The following ports have been scanned: 3465/tcp (EDM MGR Cntrl), 3670/tcp (SMILE TCP/UDP Interface), 3469/tcp (Pluribus), 3846/tcp (Astare Network PCP), 3574/tcp (DMAF Server), 3741/tcp (WysDM Agent), 3799/tcp (RADIUS Dynamic Authorization), 3776/tcp (Device Provisioning Port), 3677/tcp (RoverLog IPC), 3685/tcp (DS Expert Agent), 3718/tcp (OPUS Server Port), 3575/tcp (Coalsere CCM Port), 3468/tcp (TTCM Remote Controll), 3920/tcp (Exasoft IP Port), 3609/tcp (CPDI PIDAS Connection Mon), 3589/tcp (isomair), 3851/tcp (SpectraTalk Port), 3526/tcp (starQuiz Port), 3847/tcp (MS Firewall Control), 3602/tcp (InfiniSwitch Mgr Client), 3531/tcp (Joltid), 3831/tcp (Docsvault Application Service), 3980/tcp (Aircraft Cabin Management System), 3855/tcp (OpenTRAC), 3984/tcp (MAPPER network node manager), 3740/tcp (Heartbeat Protocol), 3588/tcp (Sentinel Server), 3651/tcp (XRPC Registry), 3678/tcp (DataGuardianLT), 3757/tcp (GRF Server Port), 3453/tcp (PSC Update Port), 3958/tcp (MQEnterprise Agent), 3398/tcp (Mercantile), 3728/tcp (Ericsson Web on Air), 3616/tcp (cd3o Control Protocol), 3885/tcp (TopFlow SSL), 3975/tcp (Air Shot), 3829/tcp (Netadmin Systems Event Handler External), 3764/tcp (MNI Protected Routing), 3795/tcp (myBLAST Mekentosj port), 3556/tcp (Sky Transport Protocol), 3787/tcp (Fintrx), 3853/tcp (SONY scanning protocol), 3806/tcp (Remote System Manager), 3736/tcp (RealSpace RMI), 3489/tcp (DTP/DIA), 3700/tcp (LRS NetPage), 3730/tcp (Client Control), 3816/tcp (Sun Local Patch Server), 3396/tcp (Printer Agent), 3859/tcp (Navini Port), 3856/tcp (INFORMER), 3655/tcp (ActiveBatch Exec Agent), 3551/tcp (Apcupsd Information Port), 3410/tcp (NetworkLens SSL Event), 3758/tcp (apw RMI registry), 3977/tcp (Opsware Manager), 3625/tcp (Volley), 3783/tcp (Impact Mgr./PEM Gateway), 3454/tcp (Apple Remote Access Protocol), 3688/tcp (simple-push Secure), 3612/tcp (HP Data Protector), 3778/tcp (Cutler-Hammer IT Port), 3870/tcp (hp OVSAM HostAgent Disco), 3727/tcp (Ericsson Mobile Data Unit), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 3697/tcp (NavisWorks License System), 3639/tcp (Extensible Automation), 3883/tcp (VR Peripheral Network), 3708/tcp (Sun App Svr - Naming), 3686/tcp (Trivial Network Management), 3808/tcp (Sun App Svr-IIOPClntAuth), 3811/tcp (AMP), 3409/tcp (NetworkLens Event Port), 3421/tcp (Bull Apprise portmapper), 3901/tcp (NIM Service Handler), 3866/tcp (Sun SDViz DZDAEMON Port), 3809/tcp (Java Desktop System Configuration Agent), 3836/tcp (MARKEM NEXTGEN DCP), 3710/tcp (PortGate Authentication), 3673/tcp (Openview Media Vault GUI), 3699/tcp (Internet Call Waiting), 3570/tcp (MCC Web Server Port), 3756/tcp (Canon CAPT Port), 3527/tcp (VERITAS Backup Exec Server), 3694/tcp, 3830/tcp (Cerner System Management Agent), 3792/tcp (e-Watch Corporation SiteWatch), 3997/tcp (aes_db), 3848/tcp (IT Environmental Monitor), 3444/tcp (Denali Server), 3918/tcp (PacketCableMultimediaCOPS), 3487/tcp (LISA TCP Transfer Channel), 3455/tcp (RSVP Port), 3479/tcp (2Wire RPC), 3954/tcp (AD Replication RPC), 3892/tcp (PCC-image-port), 3431/tcp (Active License Server Port), 3403/tcp, 3878/tcp (FotoG CAD interface), 3492/tcp (TVDUM Tray Port), 3780/tcp (Nuzzler Network Protocol), 3663/tcp (DIRECWAY Tunnel Protocol), 3914/tcp (ListCREATOR Port 2), 3582/tcp (PEG PRESS Server), 3507/tcp (Nesh Broker Port), 3845/tcp (V-ONE Single Port Proxy), 3457/tcp (VAT default control), 3902/tcp (NIMsh Auxiliary Port), 3868/tcp (DIAMETER), 3887/tcp (Ciphire Data Transport), 3833/tcp (AIPN LS Authentication), 3540/tcp (PNRP User Port), 3953/tcp (Eydeas XMLink Connect), 3584/tcp (U-DBase Access Protocol), 3562/tcp (SDBProxy), 3407/tcp (LDAP admin server port), 3494/tcp (IBM 3494), 3665/tcp (Enterprise Engine Port), 3770/tcp (Cinderella Collaboration), 3988/tcp (DCS Configuration Port), 3978/tcp (Secured Configuration Server), 3819/tcp (EPL Sequ Layer Protocol), 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 3597/tcp (A14 (AN-to-SC/MM)), 3463/tcp (EDM ADM Notify), 3711/tcp (EBD Server 2), 3622/tcp (FF LAN Redundancy Port), 3752/tcp (Vigil-IP RemoteAgent), 3877/tcp (XMPCR Interface Port), 3668/tcp (Dell Remote Management), 3701/tcp (NetCelera), 3426/tcp (Arkivio Storage Protocol), 3909/tcp (SurfControl CPA), 3861/tcp (winShadow Host Discovery), 3503/tcp (MPLS LSP-echo Port), 3832/tcp (xxNETserver), 3522/tcp (DO over NSSocketPort), 3820/tcp (Siemens AuD SCP), 3823/tcp (Compute Pool Conduit), 3906/tcp (TopoVista elevation data), 3949/tcp (Dynamic Routing Information Protocol), 3976/tcp (Opsware Agent), 3630/tcp (C&S Remote Database Port), 3404/tcp, 3676/tcp (VisualAge Pacbase server), 3693/tcp, 3557/tcp (PersonalOS Comm Port), 3643/tcp (AudioJuggler), 3565/tcp (M2PA), 3985/tcp (MAPPER TCP/IP server), 3750/tcp (CBOS/IP ncapsalation port), 3754/tcp (TimesTen Broker Port), 3619/tcp (AAIR-Network 2), 3719/tcp (iTel Server Port), 3774/tcp (ZICOM), 3578/tcp (Data Port), 3412/tcp (xmlBlaster), 3615/tcp (Start Messaging Network), 3991/tcp (BindView-SMCServer), 3749/tcp (CimTrak), 3807/tcp (SpuGNA Communication Port), 3552/tcp (TeamAgenda Server Port), 3942/tcp (satellite distribution), 3424/tcp (xTrade over TLS/SSL), 3800/tcp (Print Services Interface), 3927/tcp (ScsTsr), 3539/tcp (IBM Directory Server SSL), 3746/tcp (LXPRO.COM LinkTest), 3886/tcp (NEI management port), 3875/tcp (PNBSCADA), 3549/tcp (Tellumat MDR NMS), 3876/tcp (DirectoryLockdown Agent), 3621/tcp (EPSON Network Screen Port), 3446/tcp (3Com FAX RPC port), 3544/tcp (Teredo Port), 3604/tcp (BMC JMX Port), 3517/tcp (IEEE 802.11 WLANs WG IAPP), 3618/tcp (AAIR-Network 1), 3596/tcp (Illusion Wireless MMOG), 3406/tcp (Nokia Announcement ch 2), 3496/tcp (securitylayer over tls), 3882/tcp (DTS Service Port), 3994/tcp, 3938/tcp (Oracle dbControl Agent po), 3429/tcp (GCSP user port), 3408/tcp (BES Api Port), 3428/tcp (2Wire CSS), 3940/tcp (XeCP Node Service), 3931/tcp (MSR Plugin Port), 3447/tcp (DirectNet IM System), 3837/tcp (MARKEM Auto-Discovery), 3768/tcp (rblcheckd server daemon), 3784/tcp (BFD Control Protocol), 3460/tcp (EDM Manger), 3592/tcp (LOCANIS G-TRACK NE Port), 3864/tcp (asap/tls tcp port), 3744/tcp (SASG), 3965/tcp (Avanti IP to NCPE API), 3813/tcp (Rhapsody Interface Protocol), 3511/tcp (WebMail/2), 3641/tcp (Netplay Port 2), 3648/tcp (Fujitsu Cooperation Port), 3555/tcp (Vipul's Razor), 3636/tcp (SerVistaITSM), 3653/tcp (Tunnel Setup Protocol), 3581/tcp (Ascent Capture Licensing), 3964/tcp (SASG GPRS), 3748/tcp (webData), 3542/tcp (HA cluster monitor), 3502/tcp (Avocent Install Discovery), 3405/tcp (Nokia Announcement ch 1), 3576/tcp (Coalsere CMC Port), 3564/tcp (Electromed SIM port), 3797/tcp (idps), 3535/tcp (MS-LA), 3608/tcp (Trendchip control protocol), 3436/tcp (GuardControl Exchange Protocol), 3717/tcp (WV CSP UDP/IP CIR Channel), 3821/tcp (ATSC PMCP Standard), 3484/tcp (GBS SnapTalk Protocol), 3583/tcp (CANEX Watch System), 3862/tcp (GIGA-POCKET), 3905/tcp (Mailbox Update (MUPDATE) protocol), 3599/tcp (Quasar Accounting Server), 4000/tcp (Terabase), 3742/tcp (CST - Configuration & Service Tracker), 3452/tcp (SABP-Signalling Protocol), 3514/tcp (MUST Peer to Peer), 3532/tcp (Raven Remote Management Control), 3573/tcp (Advantage Group UPS Suite), 3613/tcp (Alaris Device Discovery), 3979/tcp (Smith Micro Wide Area Network Service), 3896/tcp (Simple Distributed Objects over TLS), 3476/tcp (NVIDIA Mgmt Protocol), 3671/tcp (e Field Control (EIBnet)), 3516/tcp (Smartcard Port), 3483/tcp (Slim Devices Protocol), 3448/tcp (Discovery and Net Config), 3733/tcp (Multipuesto Msg Port), 3865/tcp (xpl automation protocol), 3773/tcp (ctdhercules), 3434/tcp (OpenCM Server), 3524/tcp (ECM Server port), 3490/tcp (Colubris Management Port), 3521/tcp (Telequip Labs MC3SS), 3647/tcp (Splitlock Gateway), 3519/tcp (Netvion Messenger Port), 3897/tcp (Simple Distributed Objects over SSH), 3680/tcp (NPDS Tracker), 3998/tcp (Distributed Nagios Executor Service), 3561/tcp (BMC-OneKey), 3818/tcp (Crinis Heartbeat), 3456/tcp (VAT default data), 3669/tcp (CA SAN Switch Management), 3528/tcp (JBoss IIOP), 3723/tcp (Sychron Service Daemon), 3480/tcp (Secure Virtual Workspace), 3433/tcp (Altaworks Service Management Platform), 3603/tcp (Integrated Rcvr Control), 3960/tcp (Bess Peer Assessment), 3916/tcp (WysDM Controller), 3912/tcp (Global Maintech Stars), 3919/tcp (HyperIP), 3936/tcp (Mailprox), 3910/tcp (Printer Request Port), 3939/tcp (Anti-virus Application Management Port), 3842/tcp (NHCI status port), 3477/tcp (eComm link port), 3943/tcp (TetraNode Ip Gateway), 3666/tcp (IBM eServer PAP), 3628/tcp (EPT Machine Interface), 3471/tcp (jt400-ssl), 3585/tcp (Emprise License Server), 3675/tcp (CallTrax Data Port), 3414/tcp (BroadCloud WIP Port), 3852/tcp (SSE App Configuration), 3423/tcp (xTrade Reliable Messaging), 3577/tcp (Configuration Port), 3493/tcp (Network UPS Tools), 3869/tcp (hp OVSAM MgmtServer Disco), 3401/tcp (filecast), 3968/tcp (iAnywhere DBNS), 3755/tcp (SAS Remote Help Server), 3533/tcp (Raven Remote Management Data), 3959/tcp (Tree Hopper Networking), 3482/tcp (Vulture Monitoring System), 4757/tcp, 3600/tcp (text relay-answer), 3393/tcp (D2K Tapestry Client to Server), 3571/tcp (MegaRAID Server Port), 3586/tcp (License Server Console), 3667/tcp (IBM Information Exchange), 3392/tcp (EFI License Management), 3925/tcp (Zoran Media Port), 3951/tcp (PWG IPP Facsimile), 3908/tcp (HP Procurve NetManagement), 3952/tcp (I3 Session Manager), 3640/tcp (Netplay Port 1), 3432/tcp (Secure Device Protocol), 3772/tcp (Chantry Tunnel Protocol), 3956/tcp (GigE Vision Control), 3644/tcp (ssowatch), 3513/tcp (Adaptec Remote Protocol), 3681/tcp (BTS X73 Port), 3605/tcp (ComCam IO Port), 3946/tcp (BackupEDGE Server), 3425/tcp (AGPS Access Port), 3689/tcp (Digital Audio Access Protocol), 3520/tcp (Netvion Galileo Log Port), 3427/tcp (WebSphere SNMP), 3915/tcp (Auto-Graphics Cataloging), 3753/tcp (NattyServer Port), 3794/tcp (JAUS Robots), 3486/tcp (IFSF Heartbeat Port), 3900/tcp (Unidata UDT OS), 3411/tcp (BioLink Authenteon server), 3627/tcp (Jam Server Port), 3775/tcp (ISPM Manager Port), 3683/tcp (BMC EDV/EA), 3702/tcp (Web Service Discovery), 3961/tcp (ProAxess Server), 3445/tcp (Media Object Network), 3394/tcp (D2K Tapestry Server to Server), 3729/tcp (Fireking Audit Port), 3913/tcp (ListCREATOR Port), 3687/tcp (simple-push), 3725/tcp (Netia NA-ER Port), 3662/tcp (pserver), 3451/tcp (ASAM Services), 3650/tcp (PRISMIQ VOD plug-in), 3963/tcp (Teran Hybrid Routing Protocol), 3724/tcp (World of Warcraft), 3545/tcp (CAMAC equipment), 3580/tcp (NATI-ServiceLocator), 3530/tcp (Grid Friendly), 3705/tcp (Adobe Server 5), 3660/tcp (IBM Tivoli Directory Service using SSL), 3645/tcp (Cyc), 3642/tcp (Juxml Replication port), 3617/tcp (ATI SHARP Logic Engine), 3872/tcp (OEM Agent), 3983/tcp (ESRI Image Service), 3450/tcp (CAStorProxy), 3674/tcp (WinINSTALL IPC Port), 3895/tcp (SyAm SMC Service Port), 3579/tcp (Tarantella Load Balancing), 3606/tcp (Splitlock Server), 3422/tcp (Remote USB System Port), 3817/tcp (Yosemite Tech Tapeware), 3652/tcp (VxCR NBU Default Port), 3611/tcp (Six Degrees Port), 3762/tcp (GBS SnapMail Protocol), 3986/tcp (MAPPER workstation server), 3438/tcp (Spiralcraft Admin), 3850/tcp (QTMS Bootstrap Protocol), 3987/tcp (Centerline), 3834/tcp (Spectar Data Stream Service), 3933/tcp (PL/B App Server User Port), 3635/tcp (Simple Distributed Objects), 3498/tcp (DASHPAS user port), 3473/tcp (JAUGS N-G Remotec 2), 3917/tcp (AFT multiplex port), 3791/tcp (TV NetworkVideo Data port), 3391/tcp (SAVANT), 3632/tcp (distributed compiler), 3696/tcp (Telnet Com Port Control), 3858/tcp (Trap Port MOM), 3929/tcp (AMS Port), 3682/tcp (EMC SmartPackets-MAPI), 3546/tcp, 3464/tcp (EDM MGR Sync), 3478/tcp (STUN Behavior Discovery over TCP), 3888/tcp (Ciphire Services), 3413/tcp (SpecView Networking), 3491/tcp (SWR Port), 3568/tcp (Object Access Protocol over SSL), 3633/tcp (Wyrnix AIS port), 3593/tcp (BP Model Debugger), 3510/tcp (XSS Port), 3801/tcp (ibm manager service), 3973/tcp (ConnectShip Progistics), 3950/tcp (Name Munging), 3634/tcp (hNTSP Library Manager), 3771/tcp (RTP Paging Port), 3566/tcp (Quest Data Hub), 3509/tcp (Virtual Token SSL Port), 3637/tcp (Customer Service Port), 3957/tcp (MQEnterprise Broker), 3884/tcp (SofTrack Metering), 3601/tcp (Visinet Gui), 3569/tcp (Meinberg Control Service), 3567/tcp (Object Access Protocol), 3497/tcp (ipEther232Port), 3553/tcp (Red Box Recorder ADP), 3400/tcp (CSMS2), 3664/tcp (UPS Engine Port), 3525/tcp (EIS Server port), 3894/tcp (SyAM Agent Port), 3572/tcp (Registration Server Port), 3751/tcp (CommLinx GPRS Cube), 3785/tcp (BFD Echo Protocol), 3798/tcp (Minilock), 3849/tcp (SPACEWAY DNS Preload), 3695/tcp (BMC Data Collection), 3827/tcp (Netadmin Systems MPI service), 3793/tcp (DataCore Software), 3439/tcp (HRI Interface Port), 3955/tcp (p2pCommunity), 3843/tcp (Quest Common Agent), 3449/tcp (HotU Chat), 3713/tcp (TFTP over TLS), 3995/tcp (ISS Management Svcs SSL), 3458/tcp (D3WinOSFI), 3981/tcp (Starfish System Admin), 3867/tcp (Sun SDViz DZOGLSERVER Port), 3607/tcp (Precise I3), 3523/tcp (Odeum Serverlink), 3501/tcp (iSoft-P2P), 3704/tcp (Adobe Server 4), 3462/tcp (EDM STD Notify), 3506/tcp (APC 3506), 3598/tcp (A15 (AN-to-AN)), 3759/tcp (Exapt License Manager), 3879/tcp (appss license manager), 3815/tcp (LANsurveyor XML), 3712/tcp (Sentinel Enterprise), 3788/tcp (SPACEWAY Routing port), 3620/tcp (EPSON Projector Control Port), 3649/tcp (Nishioka Miyuki Msg Protocol), 3679/tcp (Newton Dock), 3548/tcp (Interworld), 3810/tcp (WLAN AS server), 3863/tcp (asap tcp port), 3690/tcp (Subversion), 3766/tcp, 3716/tcp (WV CSP SMS CIR Channel), 3966/tcp (BuildForge Lock Manager), 3904/tcp (Arnet Omnilink Port), 3467/tcp (RCST), 3726/tcp (Xyratex Array Manager), 3907/tcp (Imoguia Port), 3889/tcp (D and V Tester Control Port), 3926/tcp (WINPort), 3924/tcp (MPL_GPRS_PORT), 3418/tcp (Remote nmap), 3974/tcp (Remote Applicant Tracking Service), 3474/tcp (TSP Automation), 3722/tcp (Xserve RAID), 3735/tcp (Password Distribution), 3732/tcp (Mobile Wnn), 3538/tcp (IBM Directory Server), 3803/tcp (SoniqSync), 3715/tcp (Anoto Rendezvous Port), 3691/tcp (Magaya Network Port), 3760/tcp (adTempus Client), 3790/tcp (QuickBooks RDS), 3472/tcp (JAUGS N-G Remotec 1), 3962/tcp (SBI Agent Protocol), 3614/tcp (Invensys Sigma Port), 3631/tcp (C&S Web Services Port), 3923/tcp (Symbian Service Broker), 3587/tcp (Peer to Peer Grouping), 3537/tcp (Remote NI-VISA port), 3786/tcp (VSW Upstrigger port), 3672/tcp (LispWorks ORB), 3990/tcp (BindView-IS), 3934/tcp (PL/B File Manager Port), 3899/tcp (ITV Port), 3734/tcp (Synel Data Collection Port), 3459/tcp (TIP Integral), 3993/tcp (BindView-Agent), 3763/tcp (XO Wave Control Port), 3840/tcp (www.FlirtMitMir.de), 3626/tcp (bvControl Daemon), 3563/tcp (Watcom Debug), 3822/tcp (Compute Pool Discovery), 3903/tcp (CharsetMGR), 3488/tcp (FS Remote Host Server), 3547/tcp (Symantec SIM), 3930/tcp (Syam Web Server Port), 3731/tcp (Service Manager), 3558/tcp (MCP user port), 3944/tcp (S-Ops Management), 3475/tcp (Genisar Comm Port), 3440/tcp (Net Steward Mgmt Console), 3814/tcp (netO DCS), 3812/tcp (netO WOL Server), 3824/tcp (Compute Pool Policy), 3893/tcp (CGI StarAPI Server), 3541/tcp (VoiSpeed Port), 3972/tcp (ict-control Protocol), 3559/tcp (CCTV control port), 3739/tcp (Launchbird LicenseManager), 3745/tcp (GWRTC Call Port), 3804/tcp (Harman IQNet Port), 3595/tcp (ShareApp), 3709/tcp (CA-IDMS Server), 3515/tcp (MUST Backplane), 3839/tcp (AMX Resource Management Suite), 3860/tcp (Server/Application State Protocol (SASP)), 3969/tcp (Landmark Messages), 3402/tcp (FXa Engine Network Port), 3880/tcp (IGRS), 3543/tcp (qftest Lookup Port), 3623/tcp (HAIPIS Dynamic Discovery), 3466/tcp (WORKFLOW), 3970/tcp (LANrev Agent), 3443/tcp (OpenView Network Node Manager WEB Server), 3442/tcp (OC Connect Server), 3891/tcp (Oracle RTC-PM port), 3470/tcp (jt400), 3838/tcp (Scito Object Server), 3779/tcp (Cognima Replication), 3430/tcp (Scott Studios Dispatch), 3481/tcp (CleanerLive remote ctrl), 3624/tcp (Distributed Upgrade Port), 3638/tcp (EHP Backup Protocol), 3435/tcp (Pacom Security User Port), 3590/tcp (WV CSP SMS Binding), 3932/tcp (Dynamic Site System), 3594/tcp (MediaSpace), 3769/tcp (HAIPE Network Keying), 3518/tcp (Artifact Message Server), 3971/tcp (LANrev Server), 4126/tcp (Data Domain Replication Service), 3835/tcp (Spectar Database Rights Service), 3941/tcp (Home Portal Web Server), 3720/tcp (UF Astro. Instr. Services), 3550/tcp (Secure SMPP), 3777/tcp (Jibe EdgeBurst), 3873/tcp (fagordnc), 3737/tcp (XPanel Daemon), 3629/tcp (ESC/VP.net), 3996/tcp (abcsoftware-01), 3999/tcp (Norman distributes scanning service), 3761/tcp (gsakmp port), 3789/tcp (RemoteDeploy Administration Port [July 2003]), 3967/tcp (PPS Message Service), 3508/tcp (Interaction Web), 3828/tcp (Netadmin Systems Event Handler), 3512/tcp (Aztec Distribution Port), 3841/tcp (Z-Firm ShipRush v3), 3992/tcp (BindView-DirectoryServer), 3684/tcp (FAXstfX), 3706/tcp (Real-Time Event Port), 3989/tcp (BindView-Query Engine), 3437/tcp (Autocue Directory Service), 3560/tcp (INIServe port), 3661/tcp (IBM Tivoli Directory Service using SSL), 3982/tcp (ESRI Image Server), 3658/tcp (PlayStation AMS (Secure)), 3420/tcp (iFCP User Port), 3534/tcp (URL Daemon Port), 3874/tcp (SixXS Configuration), 3796/tcp (Spaceway Dialer), 3417/tcp (ConServR file translation), 3441/tcp (OC Connect Client), 3698/tcp (SAGECTLPANEL), 3554/tcp (Quest Notification Server), 3397/tcp (Cloanto License Manager), 3505/tcp (CCM communications port), 3881/tcp (Data Acquisition and Control), 3767/tcp (ListMGR Port), 3911/tcp (Printer Status Port), 3871/tcp (Avocent DS Authorization), 3610/tcp (ECHONET), 3857/tcp (Trap Port), 3399/tcp (CSMS), 3703/tcp (Adobe Server 3), 3692/tcp (Brimstone IntelSync), 3707/tcp (Real-Time Event Secure Port), 3499/tcp (SccIP Media), 3945/tcp (EMCADS Server Port), 3781/tcp (ABCvoice server port), 3529/tcp (JBoss IIOP/SSL), 3802/tcp (VHD), 3714/tcp (DELOS Direct Messaging), 3765/tcp (Remote Traceroute), 3659/tcp (Apple SASL), 3495/tcp (securitylayer over tcp), 3948/tcp (Anton Paar Device Administration Protocol), 3826/tcp (Wormux server), 3743/tcp (IP Control Systems Ltd.), 3536/tcp (SNAC), 3419/tcp (Isogon SoftAudit), 3500/tcp (RTMP Port), 3738/tcp (versaTalk Server Port), 3854/tcp (Stryker Comm Port), 3947/tcp (Connect and Control Protocol for Consumer, Commercial, and Industrial Electronic Devices), 3504/tcp (IronStorm game server), 3935/tcp (SDP Port Mapper Protocol), 3805/tcp (ThorGuard Server Port), 3485/tcp (CelaTalk), 3825/tcp (Antera FlowFusion Process Simulation), 3721/tcp (Xsync), 3657/tcp (ImmediaNet Beacon), 3416/tcp (AirMobile IS Command Port), 3890/tcp (Niche Data Server Connect), 3844/tcp (RNM), 3415/tcp (BCI Name Service), 3747/tcp (LXPRO.COM LinkTest SSL), 3461/tcp (EDM Stager), 3782/tcp (Secure ISO TP0 port), 3937/tcp (DVB Service Discovery), 3928/tcp (PXE NetBoot Manager), 3656/tcp (ActiveBatch Job Scheduler), 3922/tcp (Soronti Update Port), 3591/tcp (LOCANIS G-TRACK Server), 3654/tcp (VAP RealTime Messenger), 3921/tcp (Herodotus Net), 3646/tcp (XSS Server Port).
      
BHD Honeypot
Port scan
2020-09-04

In the last 24h, the attacker (195.54.161.85) attempted to scan 150 ports.
The following ports have been scanned: 3352/tcp (Scalable SQL), 3368/tcp, 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3358/tcp (Mp Sys Rmsvr), 3359/tcp (WG NetForce), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3364/tcp (Creative Server), 3389/tcp (MS WBT Server), 3356/tcp (UPNOTIFYPS), 3377/tcp (Cogsys Network License Manager), 3383/tcp (Enterprise Software Products License Manager), 3363/tcp (NATI Vi Server), 3387/tcp (Back Room Net), 3369/tcp, 3379/tcp (SOCORFS), 3376/tcp (CD Broker), 3373/tcp (Lavenir License Manager), 3372/tcp (TIP 2), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 3384/tcp (Cluster Management Services), 3393/tcp (D2K Tapestry Client to Server), 3392/tcp (EFI License Management), 3378/tcp (WSICOPY), 3351/tcp (Btrieve port), 3394/tcp (D2K Tapestry Server to Server), 3371/tcp, 3353/tcp (FATPIPE), 3391/tcp (SAVANT), 3355/tcp (Ordinox Dbase), 3350/tcp (FINDVIATV), 3354/tcp (SUITJD), 3362/tcp (DJ ILM), 3374/tcp (Cluster Disc), 3381/tcp (Geneous), 3360/tcp (KV Server), 3357/tcp (Adtech Test IP), 3367/tcp (-3371  Satellite Video Data Link), 3370/tcp, 3366/tcp (Creative Partner), 3365/tcp (Content Server), 3361/tcp (KV Agent), 3380/tcp (SNS Channels), 3397/tcp (Cloanto License Manager), 3399/tcp (CSMS), 3375/tcp (VSNM Agent), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server).
      
BHD Honeypot
Port scan
2020-09-03

Port scan from IP: 195.54.161.85 detected by psad.
BHD Honeypot
Port scan
2020-09-02

In the last 24h, the attacker (195.54.161.85) attempted to scan 2288 ports.
The following ports have been scanned: 3352/tcp (Scalable SQL), 34120/tcp, 34058/tcp, 34148/tcp, 700/tcp (Extensible Provisioning Protocol), 34164/tcp, 6655/tcp (PC SOFT - Software factory UI/manager), 33926/tcp, 34103/tcp, 34042/tcp, 33395/tcp, 3305/tcp (ODETTE-FTP), 34132/tcp, 60/tcp, 34026/tcp, 34142/tcp, 3398/tcp (Mercantile), 33942/tcp, 33963/tcp, 34101/tcp, 555/tcp (dsf), 23000/tcp (Inova LightLink Server Type 1), 34071/tcp, 33903/tcp, 9009/tcp (Pichat Server), 33904/tcp, 33985/tcp, 33388/tcp, 1000/tcp (cadlock2), 200/tcp (IBM System Resource Controller), 33396/tcp, 2222/tcp (EtherNet/IP I/O), 33896/tcp, 33938/tcp, 3396/tcp (Printer Agent), 9000/tcp (CSlistener), 33941/tcp, 34000/tcp, 3358/tcp (Mp Sys Rmsvr), 3359/tcp (WG NetForce), 34169/tcp, 33905/tcp, 34096/tcp, 33976/tcp, 34140/tcp, 3323/tcp, 9090/tcp (WebSM), 33973/tcp, 34176/tcp, 33945/tcp, 3321/tcp (VNSSTR), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3324/tcp, 34088/tcp, 34040/tcp, 800/tcp (mdbs_daemon), 7788/tcp, 34031/tcp, 3389/tcp (MS WBT Server), 34177/tcp, 400/tcp (Oracle Secure Backup), 33900/tcp, 34059/tcp, 111/tcp (SUN Remote Procedure Call), 3303/tcp (OP Session Client), 34092/tcp, 3317/tcp (VSAI PORT), 34185/tcp, 34123/tcp, 34035/tcp, 34046/tcp, 33980/tcp, 3356/tcp (UPNOTIFYPS), 22222/tcp, 34037/tcp, 60006/tcp, 3345/tcp (Influence), 34163/tcp, 34134/tcp, 33948/tcp, 33912/tcp, 34083/tcp, 9988/tcp (Software Essentials Secure HTTP server), 13389/tcp, 3344/tcp (BNT Manager), 2002/tcp (globe), 33931/tcp, 3318/tcp (Swith to Swith Routing Information Protocol), 707/tcp (Borland DSJ), 34115/tcp, 30000/tcp, 33988/tcp, 33929/tcp, 34028/tcp, 34154/tcp, 34106/tcp, 6006/tcp, 34149/tcp, 34022/tcp, 3343/tcp (MS Cluster Net), 33995/tcp, 34135/tcp, 34084/tcp, 3383/tcp (Enterprise Software Products License Manager), 34143/tcp, 23/tcp (Telnet), 34024/tcp, 34126/tcp, 5555/tcp (Personal Agent), 15000/tcp (Hypack Data Aquisition), 90/tcp (DNSIX Securit Attribute Token Map), 34004/tcp, 4455/tcp (PR Chat User), 33946/tcp, 33932/tcp, 34178/tcp, 33982/tcp, 6666/tcp, 33979/tcp, 3320/tcp (Office Link 2000), 33902/tcp, 101/tcp (NIC Host Name Server), 7070/tcp (ARCP), 33383/tcp, 34032/tcp, 3387/tcp (Back Room Net), 33943/tcp, 33937/tcp, 33911/tcp, 3330/tcp (MCS Calypso ICF), 34121/tcp, 33958/tcp, 404/tcp (nced), 34105/tcp, 34070/tcp, 20000/tcp (DNP), 34129/tcp, 50005/tcp, 34087/tcp, 34171/tcp, 34125/tcp, 222/tcp (Berkeley rshd with SPX auth), 34095/tcp, 999/tcp (puprouter), 33381/tcp, 303/tcp, 3339/tcp (OMF data l), 33969/tcp, 34193/tcp, 3315/tcp (CDID), 6000/tcp (-6063/udp   X Window System), 33967/tcp, 34099/tcp, 8008/tcp (HTTP Alternate), 34097/tcp, 3314/tcp (Unify Object Host), 321/tcp (PIP), 34072/tcp, 34170/tcp, 34076/tcp, 900/tcp (OMG Initial Refs), 34162/tcp, 24000/tcp (med-ltp), 60000/tcp, 6677/tcp, 2211/tcp (EMWIN), 33916/tcp, 33965/tcp, 3348/tcp (Pangolin Laser), 3000/tcp (RemoteWare Client), 33910/tcp, 606/tcp (Cray Unified Resource Manager), 33962/tcp, 34005/tcp, 34174/tcp, 3349/tcp (Chevin Services), 3302/tcp (MCS Fastmail), 33993/tcp, 3332/tcp (MCS Mail Server), 34052/tcp, 34008/tcp, 33908/tcp, 34156/tcp, 34100/tcp, 11111/tcp (Viral Computing Environment (VCE)), 34108/tcp, 33394/tcp, 34055/tcp, 34116/tcp, 33966/tcp, 34057/tcp, 3347/tcp (Phoenix RPC), 34130/tcp, 4000/tcp (Terabase), 34112/tcp, 33928/tcp, 34199/tcp, 34141/tcp, 4321/tcp (Remote Who Is), 34190/tcp, 34122/tcp, 34107/tcp, 34082/tcp, 34186/tcp, 33981/tcp, 34025/tcp, 33914/tcp, 16000/tcp (Administration Server Access), 10001/tcp (SCP Configuration), 100/tcp ([unauthorized use]), 34066/tcp, 33983/tcp, 34131/tcp, 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 34062/tcp, 33952/tcp, 777/tcp (Multiling HTTP), 22000/tcp (SNAPenetIO), 34192/tcp, 70/tcp (Gopher), 34044/tcp, 3311/tcp (MCNS Tel Ret), 3384/tcp (Cluster Management Services), 33909/tcp, 33918/tcp, 5050/tcp (multimedia conference control tool), 3310/tcp (Dyna Access), 33957/tcp, 34189/tcp, 3329/tcp (HP Device Disc), 33390/tcp, 33987/tcp, 33992/tcp, 34184/tcp, 1122/tcp (availant-mgr), 3328/tcp (Eaglepoint License Manager), 28000/tcp (NX License Manager), 888/tcp (CD Database Protocol), 3401/tcp (filecast), 33968/tcp, 33895/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 33890/tcp, 33960/tcp, 34009/tcp, 34029/tcp, 34139/tcp, 3337/tcp (Direct TV Data Catalog), 3393/tcp (D2K Tapestry Client to Server), 33898/tcp, 33984/tcp, 33940/tcp, 33654/tcp, 34114/tcp, 34021/tcp, 34151/tcp, 3392/tcp (EFI License Management), 5000/tcp (commplex-main), 3309/tcp (TNS ADV), 33392/tcp, 33975/tcp, 33961/tcp, 34168/tcp, 33959/tcp, 8080/tcp (HTTP Alternate (see port 80)), 34173/tcp, 20/tcp (File Transfer [Default Data]), 33999/tcp, 17000/tcp, 4433/tcp, 34104/tcp, 29000/tcp, 34068/tcp, 12/tcp, 3327/tcp (BBARS), 34061/tcp, 34056/tcp, 34197/tcp, 3351/tcp (Btrieve port), 34033/tcp, 3394/tcp (D2K Tapestry Server to Server), 34074/tcp, 33382/tcp, 34018/tcp, 34159/tcp, 34034/tcp, 33970/tcp, 34146/tcp, 33934/tcp, 34150/tcp, 33950/tcp, 3316/tcp (AICC/CMI), 34166/tcp, 33997/tcp, 34013/tcp, 33397/tcp, 33955/tcp, 3335/tcp (Direct TV Software Updates), 300/tcp, 34030/tcp, 34111/tcp, 33947/tcp, 34127/tcp, 3030/tcp (Arepa Cas), 34012/tcp, 34145/tcp, 34003/tcp, 3306/tcp (MySQL), 40004/tcp, 3346/tcp (Trnsprnt Proxy), 33893/tcp, 808/tcp, 33936/tcp, 1001/tcp, 6060/tcp, 202/tcp (AppleTalk Name Binding), 3353/tcp (FATPIPE), 34010/tcp, 13000/tcp, 1010/tcp (surf), 3391/tcp (SAVANT), 5544/tcp, 81/tcp, 34006/tcp, 3300/tcp, 23389/tcp, 444/tcp (Simple Network Paging Protocol), 34124/tcp, 34153/tcp, 34086/tcp, 30003/tcp, 3308/tcp (TNS Server), 55555/tcp, 34027/tcp, 34079/tcp, 5566/tcp (Westec Connect), 3313/tcp (Unify Object Broker), 34144/tcp, 34191/tcp, 666/tcp (doom Id Software), 33927/tcp, 3400/tcp (CSMS2), 3340/tcp (OMF data m), 3331/tcp (MCS Messaging), 34167/tcp, 33906/tcp, 4004/tcp (pxc-roid), 34049/tcp, 33386/tcp, 34157/tcp, 34007/tcp, 34020/tcp, 8899/tcp (ospf-lite), 40/tcp, 3355/tcp (Ordinox Dbase), 34147/tcp, 33990/tcp, 34077/tcp, 33989/tcp, 33986/tcp, 34054/tcp, 34098/tcp, 34039/tcp, 3326/tcp (SFTU), 33930/tcp, 3338/tcp (OMF data b), 50/tcp (Remote Mail Checking Protocol), 34117/tcp, 34085/tcp, 34060/tcp, 34183/tcp, 3350/tcp (FINDVIATV), 3354/tcp (SUITJD), 21000/tcp (IRTrans Control), 3003/tcp (CGMS), 63389/tcp, 34128/tcp, 33951/tcp, 33398/tcp, 34048/tcp, 34155/tcp, 34073/tcp, 7007/tcp (basic overseer process), 3304/tcp (OP Session Server), 34160/tcp, 33907/tcp, 33953/tcp, 34001/tcp, 34180/tcp, 3336/tcp (Direct TV Tickers), 3325/tcp, 34075/tcp, 12345/tcp (Italk Chat System), 10/tcp, 34064/tcp, 33933/tcp, 33944/tcp, 34158/tcp, 34041/tcp, 34196/tcp, 4040/tcp (Yo.net main service), 33977/tcp, 3381/tcp (Geneous), 34036/tcp, 34172/tcp, 3360/tcp (KV Server), 34053/tcp, 1234/tcp (Infoseek Search Agent), 40000/tcp (SafetyNET p), 50000/tcp, 34119/tcp, 43389/tcp, 600/tcp (Sun IPC server), 33892/tcp, 20002/tcp (Commtact HTTP), 33954/tcp, 14000/tcp (SCOTTY High-Speed Filetransfer), 1111/tcp (LM Social Server), 7777/tcp (cbt), 33399/tcp, 33897/tcp, 34078/tcp, 3357/tcp (Adtech Test IP), 4444/tcp (NV Video default), 33921/tcp, 34002/tcp, 123/tcp (Network Time Protocol), 505/tcp (mailbox-lm), 34182/tcp, 33891/tcp, 33917/tcp, 7000/tcp (file server itself), 34113/tcp, 3333/tcp (DEC Notes), 33384/tcp, 33922/tcp, 34093/tcp, 34043/tcp, 3307/tcp (OP Session Proxy), 7766/tcp, 34195/tcp, 34136/tcp, 34137/tcp, 3334/tcp (Direct TV Webcasting), 34175/tcp, 33915/tcp, 34187/tcp, 34019/tcp, 33972/tcp, 33923/tcp, 33996/tcp, 33998/tcp, 33171/tcp, 34094/tcp, 34181/tcp, 3341/tcp (OMF data h), 33964/tcp, 8000/tcp (iRDMI), 33913/tcp, 33391/tcp, 44444/tcp, 8877/tcp, 33991/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 33385/tcp, 33924/tcp, 34014/tcp, 34091/tcp, 34069/tcp, 3312/tcp (Application Management Server), 34102/tcp, 33956/tcp, 25000/tcp (icl-twobase1), 34047/tcp, 34188/tcp, 34198/tcp, 27000/tcp (-27009 FLEX LM (1-10)), 10000/tcp (Network Data Management Protocol), 34050/tcp, 2020/tcp (xinupageserver), 3342/tcp (WebTIE), 34194/tcp, 34038/tcp, 34200/tcp, 33939/tcp, 34045/tcp, 3301/tcp, 33994/tcp, 33899/tcp, 34165/tcp, 333/tcp (Texar Security Port), 34161/tcp, 33661/tcp, 34017/tcp, 33333/tcp (Digital Gaslight Service), 3380/tcp (SNS Channels), 33974/tcp, 33393/tcp, 34081/tcp, 33901/tcp, 18000/tcp (Beckman Instruments, Inc.), 3397/tcp (Cloanto License Manager), 34109/tcp, 33978/tcp, 53389/tcp, 26000/tcp (quake), 34016/tcp, 34011/tcp, 3399/tcp (CSMS), 19000/tcp (iGrid Server), 34138/tcp, 34133/tcp, 34051/tcp, 9999/tcp (distinct), 34067/tcp, 30/tcp, 33935/tcp, 500/tcp (isakmp), 33949/tcp, 12000/tcp (IBM Enterprise Extender SNA XID Exchange), 33920/tcp, 34080/tcp, 3382/tcp (Fujitsu Network Enhanced Antitheft function), 34063/tcp, 34152/tcp, 33919/tcp, 34110/tcp, 34089/tcp, 34065/tcp, 33387/tcp, 54321/tcp, 3319/tcp (SDT License Manager), 33380/tcp, 3388/tcp (CB Server), 33925/tcp, 34015/tcp, 34118/tcp, 34179/tcp, 2000/tcp (Cisco SCCP), 33971/tcp, 33894/tcp, 34090/tcp, 3322/tcp (-3325  Active Networks), 34023/tcp.
      
BHD Honeypot
Port scan
2020-09-01

In the last 24h, the attacker (195.54.161.85) attempted to scan 89 ports.
The following ports have been scanned: 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 3383/tcp (Enterprise Software Products License Manager), 3387/tcp (Back Room Net), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 3384/tcp (Cluster Management Services), 3393/tcp (D2K Tapestry Client to Server), 3392/tcp (EFI License Management), 3394/tcp (D2K Tapestry Server to Server), 3391/tcp (SAVANT), 3381/tcp (Geneous), 3380/tcp (SNS Channels), 3397/tcp (Cloanto License Manager), 3399/tcp (CSMS), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server).
      
BHD Honeypot
Port scan
2020-08-31

In the last 24h, the attacker (195.54.161.85) attempted to scan 79 ports.
The following ports have been scanned: 3398/tcp (Mercantile), 3396/tcp (Printer Agent), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3389/tcp (MS WBT Server), 3383/tcp (Enterprise Software Products License Manager), 3387/tcp (Back Room Net), 3386/tcp (GPRS Data), 3385/tcp (qnxnetman), 3384/tcp (Cluster Management Services), 3393/tcp (D2K Tapestry Client to Server), 3392/tcp (EFI License Management), 3394/tcp (D2K Tapestry Server to Server), 3391/tcp (SAVANT), 3381/tcp (Geneous), 3380/tcp (SNS Channels), 3397/tcp (Cloanto License Manager), 3399/tcp (CSMS), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3388/tcp (CB Server).
      
BHD Honeypot
Port scan
2020-08-29

In the last 24h, the attacker (195.54.161.85) attempted to scan 682 ports.
The following ports have been scanned: 4730/tcp (Gearman Job Queue System), 4265/tcp, 4374/tcp (PSI Push-to-Talk Protocol), 4577/tcp, 4463/tcp, 4033/tcp (SANavigator Peer Port), 4172/tcp (PC over IP), 4928/tcp, 4311/tcp (P6R Secure Server Management Console), 4532/tcp, 4598/tcp (A16 (AN-AN)), 4679/tcp (MGE UPS Supervision), 4810/tcp, 4399/tcp, 4464/tcp, 4476/tcp, 4876/tcp, 4507/tcp, 4468/tcp, 4167/tcp (DeskDirect Global Network), 4371/tcp (LAN2CAN Control), 4394/tcp, 4703/tcp (Network Performance Quality Evaluation System Test Service), 4978/tcp, 4974/tcp, 4397/tcp, 4298/tcp, 4895/tcp, 4178/tcp (StorMan), 35000/tcp, 4103/tcp (Braille protocol), 23000/tcp (Inova LightLink Server Type 1), 4740/tcp (ipfix protocol over TLS), 4304/tcp (One-Wire Filesystem Server), 4687/tcp (Network Scanner Tool FTP), 4199/tcp (EIMS ADMIN), 4137/tcp (Classic Line Database Server Remote), 4745/tcp (Funambol Mobile Push), 4027/tcp (bitxpress), 4461/tcp, 4498/tcp, 4369/tcp (Erlang Port Mapper Daemon), 4726/tcp, 4646/tcp, 4203/tcp, 9000/tcp (CSlistener), 34000/tcp, 4052/tcp (VoiceConnect Interact), 4981/tcp, 4492/tcp, 4619/tcp, 4098/tcp (drmsfsd), 4285/tcp, 4870/tcp (Citcom Tracking Service), 4156/tcp (STAT Results), 4171/tcp (Maxlogic Supervisor Communication), 4720/tcp, 4889/tcp, 4667/tcp (MMA Comm Services), 4551/tcp (MIH Services), 4145/tcp (VVR Control), 4345/tcp (Macro 4 Network AS), 4780/tcp, 4284/tcp, 4559/tcp (HylaFAX), 4497/tcp, 4400/tcp (ASIGRA Services), 4123/tcp (Zensys Z-Wave Control Protocol), 4605/tcp, 4642/tcp, 4989/tcp (Parallel for GAUSS (tm)), 4183/tcp (General Metaverse Messaging Protocol), 4891/tcp, 4308/tcp (CompX-LockView), 4591/tcp (HRPD L3T (AT-AN)), 4187/tcp (Cascade Proxy), 4090/tcp (OMA BCAST Service Guide), 4051/tcp (Cisco Peer to Peer Distribution Protocol), 4159/tcp (Network Security Service), 4768/tcp, 4154/tcp (atlinks device discovery), 4447/tcp (N1-RMGMT), 4543/tcp, 4797/tcp, 4119/tcp (Assuria Log Manager), 4729/tcp, 4843/tcp (OPC UA TCP Protocol over TLS/SSL), 4438/tcp, 4681/tcp (Parliant Telephony System), 4775/tcp, 4086/tcp, 4943/tcp, 4948/tcp, 38000/tcp, 4201/tcp, 4386/tcp, 4046/tcp (Accounting Protocol), 4036/tcp (WAP Push OTA-HTTP secure), 4177/tcp (Wello P2P pubsub service), 4662/tcp (OrbitNet Message Service), 4973/tcp, 4068/tcp (IP Fleet Broadcast), 4192/tcp (Azeti Agent Service), 4848/tcp (App Server - Admin HTTP), 4254/tcp, 4852/tcp, 4221/tcp, 4422/tcp, 4610/tcp, 4247/tcp, 4618/tcp, 4392/tcp (American Printware RXServer Protocol), 4273/tcp, 4041/tcp (Rocketeer-Houston), 4938/tcp, 4875/tcp, 4370/tcp (ELPRO V2 Protocol Tunnel), 4160/tcp (Jini Discovery), 4583/tcp, 4494/tcp, 4008/tcp (NetCheque accounting), 4878/tcp, 4830/tcp, 30000/tcp, 4328/tcp (Jaxer Manager Command Protocol), 4323/tcp (TRIM ICE Service), 4038/tcp (Fazzt Point-To-Point), 4874/tcp, 4067/tcp (Information Distribution Protocol), 4684/tcp (RFID Reader Protocol 1.0), 4820/tcp, 4014/tcp (TAICLOCK), 4922/tcp, 4420/tcp, 4524/tcp, 4935/tcp, 4264/tcp, 4714/tcp, 4336/tcp, 4578/tcp, 4897/tcp, 4344/tcp (VinaInstall), 5555/tcp (Personal Agent), 15000/tcp (Hypack Data Aquisition), 4039/tcp (Fazzt Administration), 4724/tcp, 4455/tcp (PR Chat User), 4139/tcp (Imperfect Networks Server), 4528/tcp, 4094/tcp (sysrq daemon), 4537/tcp (WSS Security Service), 4950/tcp (Sybase Server Monitor), 6666/tcp, 4841/tcp (QUOSA Virtual Library Service), 4932/tcp, 4998/tcp, 4516/tcp, 4888/tcp, 4608/tcp, 4657/tcp, 4395/tcp (OmniVision communication for Virtual environments), 4237/tcp, 4628/tcp, 4316/tcp, 4488/tcp (Apple Wide Area Connectivity Service ICE Bootstrap), 4633/tcp, 4636/tcp, 4035/tcp (WAP Push OTA-HTTP port), 4483/tcp, 4289/tcp, 4253/tcp, 63000/tcp, 4607/tcp, 20000/tcp (DNP), 4725/tcp (TruckStar Service), 4079/tcp (SANtools Diagnostic Server), 4331/tcp, 4708/tcp, 4230/tcp, 4163/tcp (Silver Peak Peer Protocol), 4469/tcp, 39000/tcp, 4088/tcp (Noah Printing Service Protocol), 4426/tcp (SMARTS Beacon Port), 222/tcp (Berkeley rshd with SPX auth), 4925/tcp, 4367/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 4527/tcp, 4731/tcp (Remote Capture Protocol), 4721/tcp, 6000/tcp (-6063/udp   X Window System), 4615/tcp, 4572/tcp, 4796/tcp, 4300/tcp (Corel CCam), 4882/tcp, 4784/tcp (BFD Multihop Control), 4602/tcp (EAX MTS Server), 4246/tcp, 4699/tcp, 4001/tcp (NewOak), 4059/tcp (DLMS/COSEM), 4401/tcp (ASIGRA Televaulting DS-System Service), 4238/tcp, 4776/tcp, 4013/tcp (ACL Manager), 4429/tcp (OMV Investigation Agent-Server), 4829/tcp, 4319/tcp, 4343/tcp (UNICALL), 4756/tcp, 4327/tcp (Jaxer Web Protocol), 4531/tcp, 4504/tcp, 4442/tcp (Saris), 4251/tcp, 4596/tcp (IAS-Neighbor (ANRI-ANRI)), 4303/tcp (Simple Railroad Command Protocol), 4292/tcp, 4976/tcp, 4553/tcp (ICS host services), 4675/tcp (BIAP Device Status), 4076/tcp (Seraph DCS), 4262/tcp, 4970/tcp (CCSS QSystemMonitor), 4777/tcp, 4682/tcp (finisar), 4060/tcp (DSMETER Inter-Agent Transfer Channel), 4934/tcp, 4595/tcp (IAS-Paging (ANRI-ANRI)), 4315/tcp, 4530/tcp, 4150/tcp (PowerAlert Network Shutdown Agent), 4363/tcp, 4212/tcp, 4599/tcp (A17 (AN-AN)), 4044/tcp (Location Tracking Protocol), 4075/tcp (ISC Alarm Message Service), 4996/tcp, 4012/tcp (PDA Gate), 4844/tcp (nCode ICE-flow Library LogServer), 4913/tcp (LUTher Control Protocol), 4391/tcp (American Printware IMServer Protocol), 4901/tcp (FileLocator Remote Search Agent), 4967/tcp, 4933/tcp, 4793/tcp, 4136/tcp (Classic Line Database Server Request), 4921/tcp, 4805/tcp, 4491/tcp, 4109/tcp (Instantiated Zero-control Messaging), 11111/tcp (Viral Computing Environment (VCE)), 4047/tcp (Context Transfer Protocol), 4378/tcp (Cambridge Pixel SPx Display), 4252/tcp, 4106/tcp (Synchronite), 4021/tcp (Nexus Portal), 4198/tcp, 4096/tcp (BRE (Bridge Relay Element)), 4115/tcp (CDS Transfer Agent), 4556/tcp (DTN Bundle TCP CL Protocol), 4622/tcp, 4077/tcp, 4737/tcp (IPDR/SP), 4393/tcp (American Printware RXSpooler Protocol), 4000/tcp (Terabase), 4988/tcp (SMAR Ethernet Port 2), 4567/tcp (TRAM), 4028/tcp (DTServer Port), 4994/tcp, 4406/tcp (ASIGRA Televaulting DS-Sleeper Service), 4728/tcp (CA Port Multiplexer), 4700/tcp (NetXMS Agent), 4860/tcp, 4205/tcp, 4440/tcp, 4814/tcp, 4016/tcp (Talarian Mcast), 36000/tcp, 4512/tcp, 4202/tcp, 16000/tcp (Administration Server Access), 4102/tcp (Braille protocol), 4508/tcp, 4441/tcp, 4417/tcp, 4986/tcp (Model Railway Interface Program), 4158/tcp (STAT Command Center), 4799/tcp, 4272/tcp, 4520/tcp, 4977/tcp, 4446/tcp (N1-FWP), 4302/tcp (Diagnostic Data Control), 4546/tcp (SF License Manager (Sentinel)), 4904/tcp, 4707/tcp, 4980/tcp, 4949/tcp (Munin Graphing Framework), 4539/tcp, 4213/tcp, 4894/tcp (LysKOM Protocol A), 4353/tcp (F5 iQuery), 4085/tcp (EZNews Newsroom Message Service), 4210/tcp, 4485/tcp (Assyst Data Repository Service), 4890/tcp, 4029/tcp (IP Q signaling protocol), 4456/tcp (PR Chat Server), 4985/tcp (GER HC Standard), 4324/tcp (Balour Game Server), 4788/tcp, 4518/tcp, 4175/tcp (Brocade Cluster Communication Protocol), 4346/tcp (ELAN LM), 4054/tcp (CosmoCall Universe Communications Port 2), 4903/tcp, 4883/tcp (Meier-Phelps License Server), 4141/tcp (Workflow Server), 28000/tcp (NX License Manager), 888/tcp (CD Database Protocol), 33895/tcp, 4200/tcp (-4299  VRML Multi User Systems), 33389/tcp, 4239/tcp, 4759/tcp, 4757/tcp, 4437/tcp, 4713/tcp, 4058/tcp (Kingfisher protocol), 4114/tcp (JomaMQMonitor), 4413/tcp, 4168/tcp (PrintSoft License Server), 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 5000/tcp (commplex-main), 4281/tcp, 4481/tcp, 4493/tcp, 4732/tcp, 4886/tcp, 4182/tcp (Production Company Pro TCP Service), 4166/tcp (Joost Peer to Peer Protocol), 4116/tcp (smartcard-TLS), 4736/tcp, 17000/tcp, 4563/tcp, 4433/tcp, 4225/tcp, 29000/tcp, 4226/tcp, 4750/tcp (Simple Service Auto Discovery), 4383/tcp, 4898/tcp, 4421/tcp, 4128/tcp (NuFW decision delegation protocol), 4734/tcp, 4540/tcp, 4335/tcp, 4544/tcp, 4354/tcp (QSNet Transmitter), 4640/tcp, 4296/tcp, 4960/tcp, 4550/tcp (Perman I Interbase Server), 4025/tcp (Partition Image Port), 4452/tcp (CTI Program Load), 4351/tcp (PLCY Net Services), 4909/tcp, 4789/tcp, 4111/tcp (Xgrid), 4269/tcp, 4859/tcp, 45000/tcp, 4717/tcp, 4648/tcp, 4722/tcp, 4781/tcp, 4705/tcp, 4217/tcp, 4923/tcp, 4917/tcp, 4548/tcp (Synchromesh), 4053/tcp (CosmoCall Universe Communications Port 1), 4445/tcp (UPNOTIFYP), 4956/tcp, 4084/tcp, 4685/tcp (Autopac Protocol), 4101/tcp (Braille protocol), 4206/tcp, 4127/tcp (NetUniKeyServer), 4929/tcp, 4946/tcp, 4866/tcp, 4847/tcp (Web Fresh Communication), 4652/tcp, 4920/tcp, 4655/tcp, 4256/tcp, 4003/tcp (pxc-splr-ft), 4836/tcp, 4754/tcp, 4024/tcp (TNP1 User Port), 4575/tcp, 4815/tcp, 4604/tcp, 4940/tcp (Equitrac Office), 4738/tcp (SoleraTec Locator), 4885/tcp (ABBS), 4234/tcp, 4142/tcp (Document Server), 4900/tcp (HyperFileSQL Client/Server Database Engine), 4746/tcp, 4080/tcp (Lorica inside facing), 4993/tcp, 4569/tcp (Inter-Asterisk eXchange), 4907/tcp, 4856/tcp, 4260/tcp, 4587/tcp, 4742/tcp (SICCT), 444/tcp (Simple Network Paging Protocol), 44000/tcp, 4349/tcp (File System Port Map), 4519/tcp, 4290/tcp, 4396/tcp (Fly Object Space), 4592/tcp, 4214/tcp, 4418/tcp, 4958/tcp, 4547/tcp (Lanner License Manager), 4683/tcp (Spike Clipboard Service), 57000/tcp, 4465/tcp, 4672/tcp (remote file access server), 4665/tcp (Container Client Message Service), 4135/tcp (Classic Line Database Server Attach), 4307/tcp (Visicron Videoconference Service), 4312/tcp (Parascale Membership Manager), 4954/tcp, 4425/tcp (NetROCKEY6 SMART Plus Service), 4580/tcp, 4453/tcp (NSS Alert Manager), 4760/tcp, 4017/tcp (Talarian Mcast), 4020/tcp (TRAP Port), 4402/tcp (ASIGRA Televaulting DS-Client Service), 32000/tcp, 4656/tcp, 4398/tcp, 4769/tcp, 4055/tcp (CosmoCall Universe Communications Port 3), 4579/tcp, 4669/tcp (E-Port Data Service), 4937/tcp, 47000/tcp (Message Bus), 4831/tcp, 4339/tcp, 4165/tcp (ArcLink over Ethernet), 4635/tcp, 4813/tcp, 4320/tcp (FDT Remote Categorization Protocol), 4233/tcp, 4503/tcp, 4120/tcp, 4242/tcp, 4457/tcp (PR Register), 4651/tcp, 4261/tcp, 4984/tcp (WebYast), 4840/tcp (OPC UA TCP Protocol), 4124/tcp (Rohill TetraNode Ip Gateway v2), 4110/tcp (G2 RFID Tag Telemetry Data), 4942/tcp (Equitrac Office), 4460/tcp, 4671/tcp (Bull RSF action server), 4951/tcp (PWG WIMS), 4132/tcp (NUTS Daemon), 4839/tcp (Varadero-2), 4614/tcp, 4554/tcp (MS FRS Replication), 4601/tcp (Piranha2), 4162/tcp (OMS Topology), 53000/tcp, 4332/tcp, 4387/tcp, 4630/tcp, 4915/tcp (Fibics Remote Control Service), 4040/tcp (Yo.net main service), 4678/tcp (boundary traversal), 4305/tcp (better approach to mobile ad-hoc networking), 4808/tcp, 4623/tcp, 4809/tcp, 4091/tcp (EminentWare Installer), 4099/tcp (DPCP), 4194/tcp, 4341/tcp (LISP Data Packets), 4340/tcp (Gaia Connector Protocol), 4828/tcp, 50000/tcp, 4716/tcp, 4616/tcp, 4487/tcp (Protocol for Remote Execution over TCP), 4118/tcp (Netadmin Systems NETscript service), 4677/tcp (Business Continuity Servi), 4389/tcp (Xandros Community Management Service), 33892/tcp, 4410/tcp (RIB iTWO Application Server), 14000/tcp (SCOTTY High-Speed Filetransfer), 4009/tcp (Chimera HWM), 4355/tcp (QSNet Workstation), 4071/tcp (Automatically Incremental Backup), 4963/tcp, 4125/tcp (Opsview Envoy), 4087/tcp (APplus Service), 4773/tcp, 4186/tcp (Box Backup Store Service), 4919/tcp, 4686/tcp (Manina Service Protocol), 4505/tcp, 4650/tcp, 4019/tcp (Talarian Mcast), 4964/tcp, 4015/tcp (Talarian Mcast), 33891/tcp, 4390/tcp (Physical Access Control), 4151/tcp (Men & Mice Remote Control), 4697/tcp, 4926/tcp, 4827/tcp (HTCP), 4473/tcp, 65000/tcp, 4489/tcp, 4089/tcp (OpenCORE Remote Control Service), 4861/tcp, 37000/tcp, 4536/tcp (Event Heap Server SSL), 4968/tcp, 4062/tcp (Ice Location Service (SSL)), 4674/tcp (AppIQ Agent Management), 4542/tcp, 4947/tcp, 4434/tcp, 4631/tcp, 4772/tcp, 4379/tcp (CTDB), 4625/tcp, 4506/tcp, 4179/tcp (Maxum Services), 4108/tcp (ACCEL), 4670/tcp (Light packets transfer protocol), 4443/tcp (Pharos), 4992/tcp, 8000/tcp (iRDMI), 4414/tcp, 4991/tcp (VITA Radio Transport), 4288/tcp, 4845/tcp (WordCruncher Remote Library Service), 4258/tcp, 56000/tcp, 4927/tcp, 4112/tcp (Apple VPN Server Reporting Protocol), 4868/tcp (Photon Relay), 4858/tcp, 4218/tcp, 4801/tcp (Icona Web Embedded Chat), 4962/tcp, 4245/tcp, 4196/tcp, 4092/tcp (EminentWare DGS), 4105/tcp (ShofarPlayer), 4792/tcp, 4733/tcp (RES Orchestration Catalog Services), 4533/tcp, 4126/tcp (Data Domain Replication Service), 4227/tcp, 4430/tcp (REAL SQL Server), 4606/tcp, 4297/tcp, 4073/tcp (iRAPP Server Protocol), 4941/tcp (Equitrac Office), 10000/tcp (Network Data Management Protocol), 4791/tcp, 4571/tcp, 4301/tcp (Diagnostic Data), 4432/tcp, 4824/tcp, 4690/tcp (Prelude IDS message proto), 4887/tcp, 4048/tcp, 4366/tcp, 4764/tcp, 4042/tcp (LDXP), 33899/tcp, 333/tcp (Texar Security Port), 4083/tcp (Lorica outside facing (SSL)), 4972/tcp, 4276/tcp, 4347/tcp (LAN Surveyor), 4241/tcp, 4107/tcp (JDL Accounting LAN Service), 4064/tcp (Ice Firewall Traversal Service (SSL)), 4011/tcp (Alternate Service Boot), 4482/tcp, 4879/tcp, 4037/tcp (RaveHD network control), 33333/tcp (Digital Gaslight Service), 4930/tcp, 4249/tcp, 4911/tcp, 4718/tcp, 18000/tcp (Beckman Instruments, Inc.), 4499/tcp, 4174/tcp, 4638/tcp, 53389/tcp, 4644/tcp, 4229/tcp, 4122/tcp (Fiber Patrol Alarm Service), 4643/tcp, 4632/tcp, 4819/tcp, 4821/tcp, 4835/tcp, 4031/tcp (UUCP over SSL), 4066/tcp (Performance Measurement and Analysis), 4097/tcp (Patrol View), 4680/tcp (MGE UPS Management), 4862/tcp, 4899/tcp (RAdmin Port), 43000/tcp, 4375/tcp (Toltec EasyShare), 4945/tcp, 4811/tcp, 4823/tcp, 12000/tcp (IBM Enterprise Extender SNA XID Exchange), 4243/tcp, 4081/tcp (Lorica inside facing (SSL)), 4451/tcp (CTI System Msg), 4026/tcp (Graphical Debug Server), 4023/tcp (ESNM Zoning Port), 4477/tcp, 4131/tcp (Global Maintech Stars), 4143/tcp (Document Replication), 4007/tcp (pxc-splr), 4931/tcp, 4832/tcp, 4908/tcp, 4555/tcp (RSIP Port), 4661/tcp (Kar2ouche Peer location service), 4005/tcp (pxc-pin), 4561/tcp, 2000/tcp (Cisco SCCP), 4871/tcp (Wired), 4063/tcp (Ice Firewall Traversal Service (TCP)), 4818/tcp, 4557/tcp, 4593/tcp (IPT (ANRI-ANRI)), 4190/tcp (ManageSieve Protocol), 4534/tcp, 4758/tcp, 4294/tcp, 4807/tcp, 4639/tcp, 4741/tcp (Luminizer Manager), 4056/tcp (Location Message Service), 4170/tcp (SMPTE Content Synchonization Protocol), 4050/tcp (Wide Area File Services), 4293/tcp, 4268/tcp, 4277/tcp.
      
BHD Honeypot
Port scan
2020-08-29

Port scan from IP: 195.54.161.85 detected by psad.
BHD Honeypot
Port scan
2020-08-28

In the last 24h, the attacker (195.54.161.85) attempted to scan 2634 ports.
The following ports have been scanned: 3465/tcp (EDM MGR Cntrl), 3670/tcp (SMILE TCP/UDP Interface), 3469/tcp (Pluribus), 3118/tcp (PKAgent), 42000/tcp, 3352/tcp (Scalable SQL), 3846/tcp (Astare Network PCP), 3574/tcp (DMAF Server), 3741/tcp (WysDM Agent), 3799/tcp (RADIUS Dynamic Authorization), 3092/tcp, 3776/tcp (Device Provisioning Port), 3677/tcp (RoverLog IPC), 3685/tcp (DS Expert Agent), 3019/tcp (Resource Manager), 3718/tcp (OPUS Server Port), 3575/tcp (Coalsere CCM Port), 48000/tcp (Nimbus Controller), 3005/tcp (Genius License Manager), 3468/tcp (TTCM Remote Controll), 3920/tcp (Exasoft IP Port), 3609/tcp (CPDI PIDAS Connection Mon), 3205/tcp (iSNS Server Port), 3175/tcp (T1_E1_Over_IP), 3589/tcp (isomair), 3851/tcp (SpectraTalk Port), 3031/tcp (Remote AppleEvents/PPC Toolbox), 3526/tcp (starQuiz Port), 3282/tcp (Datusorb), 3847/tcp (MS Firewall Control), 3602/tcp (InfiniSwitch Mgr Client), 3531/tcp (Joltid), 3980/tcp (Aircraft Cabin Management System), 3855/tcp (OpenTRAC), 3136/tcp (Grub Server Port), 3984/tcp (MAPPER network node manager), 3740/tcp (Heartbeat Protocol), 3588/tcp (Sentinel Server), 3305/tcp (ODETTE-FTP), 3651/tcp (XRPC Registry), 3678/tcp (DataGuardianLT), 3081/tcp (TL1-LV), 3134/tcp (Extensible Code Protocol), 3368/tcp, 3757/tcp (GRF Server Port), 3453/tcp (PSC Update Port), 3958/tcp (MQEnterprise Agent), 3398/tcp (Mercantile), 555/tcp (dsf), 3728/tcp (Ericsson Web on Air), 3167/tcp (Now Contact Public Server), 3616/tcp (cd3o Control Protocol), 3885/tcp (TopFlow SSL), 3975/tcp (Air Shot), 3829/tcp (Netadmin Systems Event Handler External), 3764/tcp (MNI Protected Routing), 3219/tcp (WMS Messenger), 3795/tcp (myBLAST Mekentosj port), 1000/tcp (cadlock2), 3556/tcp (Sky Transport Protocol), 3787/tcp (Fintrx), 3853/tcp (SONY scanning protocol), 3806/tcp (Remote System Manager), 3252/tcp (DHE port), 3736/tcp (RealSpace RMI), 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 3700/tcp (LRS NetPage), 33896/tcp, 3730/tcp (Client Control), 3816/tcp (Sun Local Patch Server), 3396/tcp (Printer Agent), 3204/tcp (Network Watcher DB Access), 3280/tcp (VS Server), 3358/tcp (Mp Sys Rmsvr), 3859/tcp (Navini Port), 3856/tcp (INFORMER), 3655/tcp (ActiveBatch Exec Agent), 3293/tcp (fg-fps), 3551/tcp (Apcupsd Information Port), 3410/tcp (NetworkLens SSL Event), 3758/tcp (apw RMI registry), 3977/tcp (Opsware Manager), 3625/tcp (Volley), 3262/tcp (NECP), 3323/tcp, 3783/tcp (Impact Mgr./PEM Gateway), 3235/tcp (MDAP port), 3454/tcp (Apple Remote Access Protocol), 3079/tcp (LV Front Panel), 3063/tcp (ncadg-ip-udp), 3216/tcp (Ferrari electronic FOAM), 3688/tcp (simple-push Secure), 3612/tcp (HP Data Protector), 3778/tcp (Cutler-Hammer IT Port), 3870/tcp (hp OVSAM HostAgent Disco), 3069/tcp (ls3), 3727/tcp (Ericsson Mobile Data Unit), 3321/tcp (VNSSTR), 3390/tcp (Distributed Service Coordinator), 3395/tcp (Dyna License Manager (Elam)), 3324/tcp, 3364/tcp (Creative Server), 3389/tcp (MS WBT Server), 3697/tcp (NavisWorks License System), 3639/tcp (Extensible Automation), 3883/tcp (VR Peripheral Network), 3708/tcp (Sun App Svr - Naming), 3686/tcp (Trivial Network Management), 3808/tcp (Sun App Svr-IIOPClntAuth), 3096/tcp (Active Print Server Port), 3299/tcp (pdrncs), 3811/tcp (AMP), 3409/tcp (NetworkLens Event Port), 3421/tcp (Bull Apprise portmapper), 3127/tcp (CTX Bridge Port), 3901/tcp (NIM Service Handler), 3265/tcp (Altav Tunnel), 3866/tcp (Sun SDViz DZDAEMON Port), 3809/tcp (Java Desktop System Configuration Agent), 3303/tcp (OP Session Client), 3317/tcp (VSAI PORT), 3012/tcp (Trusted Web Client), 3836/tcp (MARKEM NEXTGEN DCP), 3156/tcp (Indura Collector), 3710/tcp (PortGate Authentication), 3673/tcp (Openview Media Vault GUI), 3699/tcp (Internet Call Waiting), 3570/tcp (MCC Web Server Port), 3356/tcp (UPNOTIFYPS), 22222/tcp, 3017/tcp (Event Listener), 3109/tcp (Personnel protocol), 3208/tcp (PFU PR Callback), 3756/tcp (Canon CAPT Port), 3126/tcp, 3527/tcp (VERITAS Backup Exec Server), 3248/tcp (PROCOS LM), 3694/tcp, 3830/tcp (Cerner System Management Agent), 3792/tcp (e-Watch Corporation SiteWatch), 3997/tcp (aes_db), 3023/tcp (magicnotes), 3256/tcp (Compaq RPM Agent Port), 3195/tcp (Network Control Unit), 3848/tcp (IT Environmental Monitor), 3444/tcp (Denali Server), 3918/tcp (PacketCableMultimediaCOPS), 55000/tcp, 3487/tcp (LISA TCP Transfer Channel), 3455/tcp (RSVP Port), 3479/tcp (2Wire RPC), 13389/tcp, 3954/tcp (AD Replication RPC), 3213/tcp (NEON 24X7 Mission Control), 3892/tcp (PCC-image-port), 3344/tcp (BNT Manager), 3431/tcp (Active License Server Port), 3403/tcp, 3878/tcp (FotoG CAD interface), 3318/tcp (Swith to Swith Routing Information Protocol), 3492/tcp (TVDUM Tray Port), 3107/tcp (Business protocol), 3780/tcp (Nuzzler Network Protocol), 3663/tcp (DIRECWAY Tunnel Protocol), 3914/tcp (ListCREATOR Port 2), 3161/tcp (DOC1 License Manager), 3158/tcp (SmashTV Protocol), 3050/tcp (gds_db), 3263/tcp (E-Color Enterprise Imager), 3582/tcp (PEG PRESS Server), 3507/tcp (Nesh Broker Port), 3140/tcp (Arilia Multiplexor), 3845/tcp (V-ONE Single Port Proxy), 3457/tcp (VAT default control), 3902/tcp (NIMsh Auxiliary Port), 3868/tcp (DIAMETER), 3887/tcp (Ciphire Data Transport), 3833/tcp (AIPN LS Authentication), 3236/tcp (appareNet Test Server), 3343/tcp (MS Cluster Net), 3540/tcp (PNRP User Port), 3953/tcp (Eydeas XMLink Connect), 3245/tcp (VIEO Fabric Executive), 3141/tcp (VMODEM), 3584/tcp (U-DBase Access Protocol), 3184/tcp (ApogeeX Port), 3383/tcp (Enterprise Software Products License Manager), 3562/tcp (SDBProxy), 3257/tcp (Compaq RPM Server Port), 3494/tcp (IBM 3494), 3665/tcp (Enterprise Engine Port), 3770/tcp (Cinderella Collaboration), 3988/tcp (DCS Configuration Port), 3978/tcp (Secured Configuration Server), 3819/tcp (EPL Sequ Layer Protocol), 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 3597/tcp (A14 (AN-to-SC/MM)), 3124/tcp (Beacon Port), 3711/tcp (EBD Server 2), 3622/tcp (FF LAN Redundancy Port), 3163/tcp (RES-SAP), 3752/tcp (Vigil-IP RemoteAgent), 3877/tcp (XMPCR Interface Port), 3668/tcp (Dell Remote Management), 3701/tcp (NetCelera), 3363/tcp (NATI Vi Server), 3143/tcp (Sea View), 3144/tcp (Tarantella), 3426/tcp (Arkivio Storage Protocol), 3105/tcp (Cardbox), 3225/tcp (FCIP), 3202/tcp (IntraIntra), 3909/tcp (SurfControl CPA), 3861/tcp (winShadow Host Discovery), 3503/tcp (MPLS LSP-echo Port), 3120/tcp (D2000 Webserver Port), 3832/tcp (xxNETserver), 3522/tcp (DO over NSSocketPort), 3820/tcp (Siemens AuD SCP), 3823/tcp (Compute Pool Conduit), 3320/tcp (Office Link 2000), 3906/tcp (TopoVista elevation data), 3949/tcp (Dynamic Routing Information Protocol), 3100/tcp (OpCon/xps), 3976/tcp (Opsware Agent), 3630/tcp (C&S Remote Database Port), 3404/tcp, 3676/tcp (VisualAge Pacbase server), 3693/tcp, 64000/tcp, 3557/tcp (PersonalOS Comm Port), 3061/tcp (cautcpd), 3387/tcp (Back Room Net), 3643/tcp (AudioJuggler), 3104/tcp (Autocue Logger Protocol), 3565/tcp (M2PA), 3985/tcp (MAPPER TCP/IP server), 3210/tcp (Flamenco Networks Proxy), 3750/tcp (CBOS/IP ncapsalation port), 3754/tcp (TimesTen Broker Port), 3619/tcp (AAIR-Network 2), 3330/tcp (MCS Calypso ICF), 3719/tcp (iTel Server Port), 3197/tcp (Embrace Device Protocol Server), 3774/tcp (ZICOM), 3215/tcp (JMQ Daemon Port 2), 3277/tcp (AWG Proxy), 3578/tcp (Data Port), 3013/tcp (Gilat Sky Surfer), 3412/tcp (xmlBlaster), 3991/tcp (BindView-SMCServer), 3749/tcp (CimTrak), 3369/tcp, 3091/tcp (1Ci Server Management), 3807/tcp (SpuGNA Communication Port), 3234/tcp (Alchemy Server), 3187/tcp (Open Design Listen Port), 62000/tcp, 3552/tcp (TeamAgenda Server Port), 3942/tcp (satellite distribution), 3424/tcp (xTrade over TLS/SSL), 3159/tcp (NavegaWeb Tarification), 3800/tcp (Print Services Interface), 3927/tcp (ScsTsr), 3077/tcp (Orbix 2000 Locator SSL), 3539/tcp (IBM Directory Server SSL), 3746/tcp (LXPRO.COM LinkTest), 3886/tcp (NEI management port), 3008/tcp (Midnight Technologies), 3875/tcp (PNBSCADA), 3214/tcp (JMQ Daemon Port 1), 3103/tcp (Autocue SMI Protocol), 3254/tcp (PDA System), 999/tcp (puprouter), 3549/tcp (Tellumat MDR NMS), 3876/tcp (DirectoryLockdown Agent), 3339/tcp (OMF data l), 3621/tcp (EPSON Network Screen Port), 3029/tcp (LiebDevMgmt_A), 3151/tcp (NetMike Assessor), 3129/tcp (NetPort Discovery Port), 3315/tcp (CDID), 3288/tcp (COPS), 3446/tcp (3Com FAX RPC port), 3224/tcp (AES Discovery Port), 3045/tcp (ResponseNet), 3267/tcp (IBM Dial Out), 3038/tcp (Santak UPS), 3379/tcp (SOCORFS), 3544/tcp (Teredo Port), 3604/tcp (BMC JMX Port), 3292/tcp (Cart O Rama), 3060/tcp (interserver), 3517/tcp (IEEE 802.11 WLANs WG IAPP), 3618/tcp (AAIR-Network 1), 3314/tcp (Unify Object Host), 3271/tcp (CSoft Prev Port), 3054/tcp (AMT CNF PROT), 3097/tcp, 3596/tcp (Illusion Wireless MMOG), 3406/tcp (Nokia Announcement ch 2), 3496/tcp (securitylayer over tls), 3882/tcp (DTS Service Port), 3199/tcp (DMOD WorkSpace), 3098/tcp (Universal Message Manager), 3938/tcp (Oracle dbControl Agent po), 3046/tcp (di-ase), 3429/tcp (GCSP user port), 3408/tcp (BES Api Port), 3113/tcp (CS-Authenticate Svr Port), 3428/tcp (2Wire CSS), 3122/tcp (MTI VTR Emulator port), 3940/tcp (XeCP Node Service), 3931/tcp (MSR Plugin Port), 3447/tcp (DirectNet IM System), 24000/tcp (med-ltp), 3837/tcp (MARKEM Auto-Discovery), 3169/tcp (SERVERVIEW-AS), 60000/tcp, 3768/tcp (rblcheckd server daemon), 3784/tcp (BFD Control Protocol), 3142/tcp (RDC WH EOS), 3460/tcp (EDM Manger), 3592/tcp (LOCANIS G-TRACK NE Port), 3162/tcp (SFLM), 3864/tcp (asap/tls tcp port), 3744/tcp (SASG), 3348/tcp (Pangolin Laser), 3965/tcp (Avanti IP to NCPE API), 3813/tcp (Rhapsody Interface Protocol), 3511/tcp (WebMail/2), 3000/tcp (RemoteWare Client), 3641/tcp (Netplay Port 2), 3065/tcp (slinterbase), 3648/tcp (Fujitsu Cooperation Port), 3018/tcp (Service Registry), 3555/tcp (Vipul's Razor), 3636/tcp (SerVistaITSM), 3349/tcp (Chevin Services), 3653/tcp (Tunnel Setup Protocol), 3581/tcp (Ascent Capture Licensing), 3302/tcp (MCS Fastmail), 3033/tcp (PDB), 61000/tcp, 3964/tcp (SASG GPRS), 3748/tcp (webData), 3542/tcp (HA cluster monitor), 3502/tcp (Avocent Install Discovery), 3405/tcp (Nokia Announcement ch 1), 3174/tcp (ARMI Server), 3576/tcp (Coalsere CMC Port), 3564/tcp (Electromed SIM port), 3155/tcp (JpegMpeg Port), 3332/tcp (MCS Mail Server), 3021/tcp (AGRI Server), 3797/tcp (idps), 3535/tcp (MS-LA), 3121/tcp, 3188/tcp (Broadcom Port), 3608/tcp (Trendchip control protocol), 3297/tcp (Cytel License Manager), 3436/tcp (GuardControl Exchange Protocol), 3376/tcp (CD Broker), 11000/tcp (IRISA), 3821/tcp (ATSC PMCP Standard), 3484/tcp (GBS SnapTalk Protocol), 3583/tcp (CANEX Watch System), 3862/tcp (GIGA-POCKET), 3373/tcp (Lavenir License Manager), 3905/tcp (Mailbox Update (MUPDATE) protocol), 3251/tcp (Sys Scanner), 3599/tcp (Quasar Accounting Server), 3347/tcp (Phoenix RPC), 4000/tcp (Terabase), 3742/tcp (CST - Configuration & Service Tracker), 3372/tcp (TIP 2), 3452/tcp (SABP-Signalling Protocol), 3160/tcp (TIP Application Server), 3514/tcp (MUST Peer to Peer), 46000/tcp, 3532/tcp (Raven Remote Management Control), 3573/tcp (Advantage Group UPS Suite), 3613/tcp (Alaris Device Discovery), 3137/tcp (rtnt-1 data packets), 3198/tcp (Embrace Device Protocol Client), 3979/tcp (Smith Micro Wide Area Network Service), 3896/tcp (Simple Distributed Objects over TLS), 3476/tcp (NVIDIA Mgmt Protocol), 3671/tcp (e Field Control (EIBnet)), 3052/tcp (APC 3052), 3080/tcp (stm_pproc), 3212/tcp (Survey Instrument), 3516/tcp (Smartcard Port), 3111/tcp (Web Synchronous Services), 3037/tcp (HP SAN Mgmt), 3483/tcp (Slim Devices Protocol), 3146/tcp (bears-02), 3043/tcp (Broadcast Routing Protocol), 3733/tcp (Multipuesto Msg Port), 3865/tcp (xpl automation protocol), 54000/tcp, 3773/tcp (ctdhercules), 3434/tcp (OpenCM Server), 3524/tcp (ECM Server port), 3490/tcp (Colubris Management Port), 3386/tcp (GPRS Data), 3154/tcp (ON RMI Registry), 3385/tcp (qnxnetman), 3521/tcp (Telequip Labs MC3SS), 3222/tcp (Gateway Load Balancing Pr), 777/tcp (Multiling HTTP), 22000/tcp (SNAPenetIO), 3647/tcp (Splitlock Gateway), 3223/tcp (DIGIVOTE (R) Vote-Server), 3519/tcp (Netvion Messenger Port), 3897/tcp (Simple Distributed Objects over SSH), 3112/tcp (KDE System Guard), 3680/tcp (NPDS Tracker), 3192/tcp (FireMon Revision Control), 3998/tcp (Distributed Nagios Executor Service), 3561/tcp (BMC-OneKey), 3818/tcp (Crinis Heartbeat), 3456/tcp (VAT default data), 3200/tcp (Press-sense Tick Port), 3669/tcp (CA SAN Switch Management), 3311/tcp (MCNS Tel Ret), 3170/tcp (SERVERVIEW-ASN), 3528/tcp (JBoss IIOP), 3723/tcp (Sychron Service Daemon), 3433/tcp (Altaworks Service Management Platform), 3229/tcp (Global CD Port), 3603/tcp (Integrated Rcvr Control), 51000/tcp, 3960/tcp (Bess Peer Assessment), 3916/tcp (WysDM Controller), 3912/tcp (Global Maintech Stars), 3384/tcp (Cluster Management Services), 3173/tcp (SERVERVIEW-ICC), 3919/tcp (HyperIP), 3310/tcp (Dyna Access), 3936/tcp (Mailprox), 3243/tcp (Timelot Port), 3910/tcp (Printer Request Port), 3939/tcp (Anti-virus Application Management Port), 3842/tcp (NHCI status port), 3477/tcp (eComm link port), 52000/tcp, 3943/tcp (TetraNode Ip Gateway), 3666/tcp (IBM eServer PAP), 3628/tcp (EPT Machine Interface), 3471/tcp (jt400-ssl), 3585/tcp (Emprise License Server), 3675/tcp (CallTrax Data Port), 3414/tcp (BroadCloud WIP Port), 3852/tcp (SSE App Configuration), 3423/tcp (xTrade Reliable Messaging), 3577/tcp (Configuration Port), 3328/tcp (Eaglepoint License Manager), 3493/tcp (Network UPS Tools), 3869/tcp (hp OVSAM MgmtServer Disco), 3401/tcp (filecast), 3253/tcp (PDA Data), 3028/tcp (LiebDevMgmt_DM), 3264/tcp (cc:mail/lotus), 3168/tcp (Now Up-to-Date Public Server), 33000/tcp, 3281/tcp (SYSOPT), 3125/tcp (A13-AN Interface), 3294/tcp (fg-gip), 33890/tcp, 3968/tcp (iAnywhere DBNS), 3755/tcp (SAS Remote Help Server), 3533/tcp (Raven Remote Management Data), 3290/tcp (CAPS LOGISTICS TOOLKIT - LM), 3040/tcp (Tomato Springs), 3959/tcp (Tree Hopper Networking), 3482/tcp (Vulture Monitoring System), 3600/tcp (text relay-answer), 3337/tcp (Direct TV Data Catalog), 59000/tcp, 3393/tcp (D2K Tapestry Client to Server), 33898/tcp, 3571/tcp (MegaRAID Server Port), 3586/tcp (License Server Console), 3667/tcp (IBM Information Exchange), 3055/tcp (Policy Server), 3392/tcp (EFI License Management), 3083/tcp (TL1-TELNET), 3131/tcp (Net Book Mark), 3925/tcp (Zoran Media Port), 3025/tcp (Arepa Raft), 3951/tcp (PWG IPP Facsimile), 3226/tcp (ISI Industry Software IRP), 3309/tcp (TNS ADV), 3908/tcp (HP Procurve NetManagement), 3230/tcp (Software Distributor Port), 3952/tcp (I3 Session Manager), 3640/tcp (Netplay Port 1), 3432/tcp (Secure Device Protocol), 3772/tcp (Chantry Tunnel Protocol), 3056/tcp (CDL Server), 3148/tcp (NetMike Game Administrator), 3153/tcp (S8Cargo Client Port), 3956/tcp (GigE Vision Control), 3644/tcp (ssowatch), 3513/tcp (Adaptec Remote Protocol), 3001/tcp, 3681/tcp (BTS X73 Port), 3605/tcp (ComCam IO Port), 3228/tcp (DiamondWave MSG Server), 3946/tcp (BackupEDGE Server), 3425/tcp (AGPS Access Port), 3689/tcp (Digital Audio Access Protocol), 3520/tcp (Netvion Galileo Log Port), 3427/tcp (WebSphere SNMP), 3242/tcp (Session Description ID), 3196/tcp (Network Control Unit), 3915/tcp (Auto-Graphics Cataloging), 3753/tcp (NattyServer Port), 3794/tcp (JAUS Robots), 3209/tcp (HP OpenView Network Path Engine Server), 3486/tcp (IFSF Heartbeat Port), 3900/tcp (Unidata UDT OS), 3411/tcp (BioLink Authenteon server), 3053/tcp (dsom-server), 3152/tcp (FeiTian Port), 3206/tcp (IronMail POP Proxy), 3627/tcp (Jam Server Port), 3327/tcp (BBARS), 3378/tcp (WSICOPY), 3275/tcp (SAMD), 3775/tcp (ISPM Manager Port), 3683/tcp (BMC EDV/EA), 3024/tcp (NDS_SSO), 3702/tcp (Web Service Discovery), 3351/tcp (Btrieve port), 3276/tcp (Maxim ASICs), 3961/tcp (ProAxess Server), 3074/tcp (Xbox game port), 3445/tcp (Media Object Network), 3394/tcp (D2K Tapestry Server to Server), 3086/tcp (JDL-DBKitchen), 3729/tcp (Fireking Audit Port), 3913/tcp (ListCREATOR Port), 3218/tcp (EMC SmartPackets), 3687/tcp (simple-push), 3725/tcp (Netia NA-ER Port), 3662/tcp (pserver), 3022/tcp (CSREGAGENT), 3451/tcp (ASAM Services), 3255/tcp (Semaphore Connection Port), 3220/tcp (XML NM over SSL), 3316/tcp (AICC/CMI), 3650/tcp (PRISMIQ VOD plug-in), 3062/tcp (ncacn-ip-tcp), 3963/tcp (Teran Hybrid Routing Protocol), 3070/tcp (MGXSWITCH), 3284/tcp (4Talk), 3724/tcp (World of Warcraft), 3545/tcp (CAMAC equipment), 3580/tcp (NATI-ServiceLocator), 3530/tcp (Grid Friendly), 3032/tcp (Redwood Chat), 3705/tcp (Adobe Server 5), 3660/tcp (IBM Tivoli Directory Service using SSL), 3335/tcp (Direct TV Software Updates), 3645/tcp (Cyc), 3642/tcp (Juxml Replication port), 3617/tcp (ATI SHARP Logic Engine), 3872/tcp (OEM Agent), 3183/tcp (COPS/TLS), 3983/tcp (ESRI Image Service), 3450/tcp (CAStorProxy), 3674/tcp (WinINSTALL IPC Port), 3895/tcp (SyAm SMC Service Port), 3579/tcp (Tarantella Load Balancing), 58000/tcp, 3606/tcp (Splitlock Server), 3422/tcp (Remote USB System Port), 3130/tcp (ICPv2), 3817/tcp (Yosemite Tech Tapeware), 3099/tcp (CHIPSY Machine Daemon), 3652/tcp (VxCR NBU Default Port), 3611/tcp (Six Degrees Port), 3762/tcp (GBS SnapMail Protocol), 3030/tcp (Arepa Cas), 3009/tcp (PXC-NTFY), 3986/tcp (MAPPER workstation server), 3067/tcp (FJHPJP), 3371/tcp, 3438/tcp (Spiralcraft Admin), 3128/tcp (Active API Server Port), 3016/tcp (Notify Server), 3850/tcp (QTMS Bootstrap Protocol), 3306/tcp (MySQL), 3147/tcp (RFIO), 3987/tcp (Centerline), 3211/tcp (Avocent Secure Management), 3346/tcp (Trnsprnt Proxy), 3834/tcp (Spectar Data Stream Service), 33893/tcp, 3933/tcp (PL/B App Server User Port), 3635/tcp (Simple Distributed Objects), 3010/tcp (Telerate Workstation), 3498/tcp (DASHPAS user port), 49000/tcp, 3473/tcp (JAUGS N-G Remotec 2), 3260/tcp (iSCSI port), 3917/tcp (AFT multiplex port), 3353/tcp (FATPIPE), 3791/tcp (TV NetworkVideo Data port), 13000/tcp, 3391/tcp (SAVANT), 3278/tcp (LKCM Server), 3632/tcp (distributed compiler), 3696/tcp (Telnet Com Port Control), 3858/tcp (Trap Port MOM), 3300/tcp, 3194/tcp (Rockstorm MAG protocol), 3929/tcp (AMS Port), 3238/tcp (appareNet Analysis Server), 3682/tcp (EMC SmartPackets-MAPI), 3546/tcp, 3064/tcp (Remote Port Redirector), 23389/tcp, 3464/tcp (EDM MGR Sync), 3036/tcp (Hagel DUMP), 3011/tcp (Trusted Web), 3478/tcp (STUN Behavior Discovery over TCP), 3413/tcp (SpecView Networking), 3491/tcp (SWR Port), 3568/tcp (Object Access Protocol over SSL), 3633/tcp (Wyrnix AIS port), 3261/tcp (winShadow), 3593/tcp (BP Model Debugger), 3510/tcp (XSS Port), 3801/tcp (ibm manager service), 3973/tcp (ConnectShip Progistics), 3180/tcp (Millicent Broker Server), 3042/tcp (journee), 3308/tcp (TNS Server), 55555/tcp, 3950/tcp (Name Munging), 3279/tcp (admind), 3093/tcp (Jiiva RapidMQ Center), 3634/tcp (hNTSP Library Manager), 3771/tcp (RTP Paging Port), 3566/tcp (Quest Data Hub), 3509/tcp (Virtual Token SSL Port), 3637/tcp (Customer Service Port), 3066/tcp (NETATTACHSDMP), 3291/tcp (S A Holditch & Associates - LM), 3114/tcp (CCM AutoDiscover), 3957/tcp (MQEnterprise Broker), 3313/tcp (Unify Object Broker), 3884/tcp (SofTrack Metering), 3193/tcp (SpanDataPort), 3601/tcp (Visinet Gui), 3057/tcp (GoAhead FldUp), 3047/tcp (Fast Security HL Server), 31000/tcp, 3569/tcp (Meinberg Control Service), 3567/tcp (Object Access Protocol), 3115/tcp (MCTET Master), 3497/tcp (ipEther232Port), 3232/tcp (MDT port), 3553/tcp (Red Box Recorder ADP), 666/tcp (doom Id Software), 3400/tcp (CSMS2), 3340/tcp (OMF data m), 3026/tcp (AGRI Gateway), 3331/tcp (MCS Messaging), 3664/tcp (UPS Engine Port), 3034/tcp (Osmosis / Helix (R) AEEA Port), 3525/tcp (EIS Server port), 3894/tcp (SyAM Agent Port), 3572/tcp (Registration Server Port), 3751/tcp (CommLinx GPRS Cube), 3355/tcp (Ordinox Dbase), 3785/tcp (BFD Echo Protocol), 3798/tcp (Minilock), 3849/tcp (SPACEWAY DNS Preload), 3695/tcp (BMC Data Collection), 3827/tcp (Netadmin Systems MPI service), 3190/tcp (ConServR Proxy), 3269/tcp (Microsoft Global Catalog with LDAP/SSL), 3326/tcp (SFTU), 3181/tcp (BMC Patrol Agent), 3793/tcp (DataCore Software), 3439/tcp (HRI Interface Port), 3338/tcp (OMF data b), 3041/tcp (di-traceware), 3955/tcp (p2pCommunity), 3085/tcp (PCIHReq), 3350/tcp (FINDVIATV), 3164/tcp (IMPRS), 3354/tcp (SUITJD), 3843/tcp (Quest Common Agent), 3449/tcp (HotU Chat), 3713/tcp (TFTP over TLS), 3995/tcp (ISS Management Svcs SSL), 21000/tcp (IRTrans Control), 3110/tcp (simulator control port), 3458/tcp (D3WinOSFI), 3867/tcp (Sun SDViz DZOGLSERVER Port), 3607/tcp (Precise I3), 3523/tcp (Odeum Serverlink), 3501/tcp (iSoft-P2P), 3704/tcp (Adobe Server 4), 3039/tcp (Cogitate, Inc.), 3101/tcp (HP PolicyXpert PIB Server), 3003/tcp (CGMS), 3362/tcp (DJ ILM), 63389/tcp, 3374/tcp (Cluster Disc), 3462/tcp (EDM STD Notify), 3273/tcp (Simple Extensible Multiplexed Protocol), 3157/tcp (CCC Listener Port), 3506/tcp (APC 3506), 3020/tcp (CIFS), 3145/tcp (CSI-LFAP), 3598/tcp (A15 (AN-to-AN)), 3759/tcp (Exapt License Manager), 3076/tcp (Orbix 2000 Config), 3304/tcp (OP Session Server), 3879/tcp (appss license manager), 3078/tcp (Orbix 2000 Locator SSL), 3815/tcp (LANsurveyor XML), 3179/tcp (H2GF W.2m Handover prot.), 3712/tcp (Sentinel Enterprise), 3788/tcp (SPACEWAY Routing port), 41000/tcp, 3298/tcp (DeskView), 3620/tcp (EPSON Projector Control Port), 3336/tcp (Direct TV Tickers), 3325/tcp, 3649/tcp (Nishioka Miyuki Msg Protocol), 3679/tcp (Newton Dock), 3548/tcp (Interworld), 3095/tcp (Panasas rendevous port), 3810/tcp (WLAN AS server), 3863/tcp (asap tcp port), 3690/tcp (Subversion), 3766/tcp, 3006/tcp (Instant Internet Admin), 3716/tcp (WV CSP SMS CIR Channel), 3084/tcp (ITM-MCCS), 3966/tcp (BuildForge Lock Manager), 3904/tcp (Arnet Omnilink Port), 3177/tcp (Phonex Protocol), 3381/tcp (Geneous), 3467/tcp (RCST), 3165/tcp (Newgenpay Engine Service), 3726/tcp (Xyratex Array Manager), 3217/tcp (Unified IP & Telecom Environment), 3907/tcp (Imoguia Port), 3889/tcp (D and V Tester Control Port), 3926/tcp (WINPort), 3102/tcp (SoftlinK Slave Mon Port), 3049/tcp (NSWS), 3203/tcp (Network Watcher Monitor), 3360/tcp (KV Server), 3247/tcp (DVT DATA LINK), 3068/tcp (ls3 Broadcast), 3924/tcp (MPL_GPRS_PORT), 40000/tcp (SafetyNET p), 3418/tcp (Remote nmap), 3974/tcp (Remote Applicant Tracking Service), 3474/tcp (TSP Automation), 3722/tcp (Xserve RAID), 3287/tcp (DIRECTVDATA), 3735/tcp (Password Distribution), 3732/tcp (Mobile Wnn), 3538/tcp (IBM Directory Server), 3803/tcp (SoniqSync), 3715/tcp (Anoto Rendezvous Port), 3691/tcp (Magaya Network Port), 3760/tcp (adTempus Client), 1111/tcp (LM Social Server), 3790/tcp (QuickBooks RDS), 3472/tcp (JAUGS N-G Remotec 1), 3089/tcp (ParaTek Agent Linking), 3962/tcp (SBI Agent Protocol), 3614/tcp (Invensys Sigma Port), 7777/tcp (cbt), 3631/tcp (C&S Web Services Port), 3166/tcp (Quest Spotlight Out-Of-Process Collector), 3923/tcp (Symbian Service Broker), 33897/tcp, 3587/tcp (Peer to Peer Grouping), 3090/tcp (Senforce Session Services), 3357/tcp (Adtech Test IP), 3537/tcp (Remote NI-VISA port), 3073/tcp (Very simple chatroom prot), 4444/tcp (NV Video default), 3786/tcp (VSW Upstrigger port), 3672/tcp (LispWorks ORB), 3990/tcp (BindView-IS), 3172/tcp (SERVERVIEW-RM), 3934/tcp (PL/B File Manager Port), 3367/tcp (-3371  Satellite Video Data Link), 3899/tcp (ITV Port), 3244/tcp (OneSAF), 3233/tcp (WhiskerControl main port), 3734/tcp (Synel Data Collection Port), 3094/tcp (Jiiva RapidMQ Registry), 3459/tcp (TIP Integral), 3993/tcp (BindView-Agent), 3231/tcp (VidiGo communication (previous was: Delta Solutions Direct)), 3201/tcp (CPQ-TaskSmart), 3763/tcp (XO Wave Control Port), 3840/tcp (www.FlirtMitMir.de), 7000/tcp (file server itself), 3626/tcp (bvControl Daemon), 3087/tcp (Asoki SMA), 3333/tcp (DEC Notes), 3048/tcp (Sierra Net PC Trader), 3178/tcp (Radiance UltraEdge Port), 3563/tcp (Watcom Debug), 3822/tcp (Compute Pool Discovery), 3903/tcp (CharsetMGR), 3307/tcp (OP Session Proxy), 3488/tcp (FS Remote Host Server), 3547/tcp (Symantec SIM), 3930/tcp (Syam Web Server Port), 3731/tcp (Service Manager), 3370/tcp, 3558/tcp (MCP user port), 3944/tcp (S-Ops Management), 3475/tcp (Genisar Comm Port), 3334/tcp (Direct TV Webcasting), 3258/tcp (Ivecon Server Port), 3440/tcp (Net Steward Mgmt Console), 3814/tcp (netO DCS), 3812/tcp (netO WOL Server), 3824/tcp (Compute Pool Policy), 3893/tcp (CGI StarAPI Server), 3541/tcp (VoiSpeed Port), 3972/tcp (ict-control Protocol), 3559/tcp (CCTV control port), 3739/tcp (Launchbird LicenseManager), 3745/tcp (GWRTC Call Port), 3804/tcp (Harman IQNet Port), 3595/tcp (ShareApp), 3133/tcp (Prism Deploy User Port), 3268/tcp (Microsoft Global Catalog), 3709/tcp (CA-IDMS Server), 3515/tcp (MUST Backplane), 3839/tcp (AMX Resource Management Suite), 3860/tcp (Server/Application State Protocol (SASP)), 3969/tcp (Landmark Messages), 3402/tcp (FXa Engine Network Port), 3116/tcp (MCTET Gateway), 3366/tcp (Creative Partner), 3880/tcp (IGRS), 3543/tcp (qftest Lookup Port), 3341/tcp (OMF data h), 3286/tcp (E-Net), 3623/tcp (HAIPIS Dynamic Discovery), 3466/tcp (WORKFLOW), 3970/tcp (LANrev Agent), 3443/tcp (OpenView Network Node Manager WEB Server), 3442/tcp (OC Connect Server), 3891/tcp (Oracle RTC-PM port), 3470/tcp (jt400), 3186/tcp (IIW Monitor User Port), 44444/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 3058/tcp (videobeans), 3838/tcp (Scito Object Server), 3071/tcp (ContinuStor Manager Port), 3779/tcp (Cognima Replication), 3430/tcp (Scott Studios Dispatch), 3481/tcp (CleanerLive remote ctrl), 3027/tcp (LiebDevMgmt_C), 3312/tcp (Application Management Server), 3624/tcp (Distributed Upgrade Port), 3072/tcp (ContinuStor Monitor Port), 3638/tcp (EHP Backup Protocol), 3138/tcp (rtnt-2 data packets), 3182/tcp (BMC Patrol Rendezvous), 3435/tcp (Pacom Security User Port), 3590/tcp (WV CSP SMS Binding), 3014/tcp (Broker Service), 25000/tcp (icl-twobase1), 3932/tcp (Dynamic Site System), 3594/tcp (MediaSpace), 3237/tcp (appareNet Test Packet Sequencer), 3119/tcp (D2000 Kernel Port), 3769/tcp (HAIPE Network Keying), 3518/tcp (Artifact Message Server), 3971/tcp (LANrev Server), 3835/tcp (Spectar Database Rights Service), 3941/tcp (Home Portal Web Server), 3720/tcp (UF Astro. Instr. Services), 3550/tcp (Secure SMPP), 3777/tcp (Jibe EdgeBurst), 3873/tcp (fagordnc), 27000/tcp (-27009 FLEX LM (1-10)), 3015/tcp (NATI DSTP), 3737/tcp (XPanel Daemon), 3629/tcp (ESC/VP.net), 3365/tcp (Content Server), 3996/tcp (abcsoftware-01), 3132/tcp (Microsoft Business Rule Engine Update Service), 3342/tcp (WebTIE), 3999/tcp (Norman distributes scanning service), 3761/tcp (gsakmp port), 3789/tcp (RemoteDeploy Administration Port [July 2003]), 3967/tcp (PPS Message Service), 3185/tcp (SuSE Meta PPPD), 3301/tcp, 3508/tcp (Interaction Web), 3828/tcp (Netadmin Systems Event Handler), 3512/tcp (Aztec Distribution Port), 3841/tcp (Z-Firm ShipRush v3), 3992/tcp (BindView-DirectoryServer), 3684/tcp (FAXstfX), 3706/tcp (Real-Time Event Port), 3989/tcp (BindView-Query Engine), 3437/tcp (Autocue Directory Service), 3560/tcp (INIServe port), 3661/tcp (IBM Tivoli Directory Service using SSL), 3982/tcp (ESRI Image Server), 3658/tcp (PlayStation AMS (Secure)), 3380/tcp (SNS Channels), 3420/tcp (iFCP User Port), 3534/tcp (URL Daemon Port), 3874/tcp (SixXS Configuration), 3007/tcp (Lotus Mail Tracking Agent Protocol), 3796/tcp (Spaceway Dialer), 3417/tcp (ConServR file translation), 3189/tcp (Pinnacle Sys InfEx Port), 3441/tcp (OC Connect Client), 3698/tcp (SAGECTLPANEL), 3554/tcp (Quest Notification Server), 3397/tcp (Cloanto License Manager), 3505/tcp (CCM communications port), 3285/tcp (Plato), 26000/tcp (quake), 3881/tcp (Data Acquisition and Control), 3274/tcp (Ordinox Server), 3767/tcp (ListMGR Port), 3911/tcp (Printer Status Port), 3871/tcp (Avocent DS Authorization), 3610/tcp (ECHONET), 3059/tcp (qsoft), 3117/tcp (MCTET Jserv), 3857/tcp (Trap Port), 3399/tcp (CSMS), 3703/tcp (Adobe Server 3), 19000/tcp (iGrid Server), 3692/tcp (Brimstone IntelSync), 3707/tcp (Real-Time Event Secure Port), 3004/tcp (Csoft Agent), 3176/tcp (ARS Master), 3499/tcp (SccIP Media), 3171/tcp (SERVERVIEW-GF), 3945/tcp (EMCADS Server Port), 9999/tcp (distinct), 3139/tcp (Incognito Rendez-Vous), 3272/tcp (Fujitsu User Manager), 3781/tcp (ABCvoice server port), 3802/tcp (VHD), 3375/tcp (VSNM Agent), 3714/tcp (DELOS Direct Messaging), 3765/tcp (Remote Traceroute), 3659/tcp (Apple SASL), 3495/tcp (securitylayer over tcp), 3250/tcp (HMS hicp port), 3135/tcp (PeerBook Port), 3002/tcp (RemoteWare Server), 3948/tcp (Anton Paar Device Administration Protocol), 3240/tcp (Trio Motion Control Port), 3382/tcp (Fujitsu Network Enhanced Antitheft function), 3150/tcp (NetMike Assessor Administrator), 3289/tcp (ENPC), 3826/tcp (Wormux server), 3743/tcp (IP Control Systems Ltd.), 3259/tcp (Epson Network Common Devi), 3536/tcp (SNAC), 3296/tcp (Rib License Manager), 3419/tcp (Isogon SoftAudit), 3108/tcp (Geolocate protocol), 3500/tcp (RTMP Port), 3319/tcp (SDT License Manager), 3738/tcp (versaTalk Server Port), 3149/tcp (NetMike Game Server), 3388/tcp (CB Server), 3854/tcp (Stryker Comm Port), 3947/tcp (Connect and Control Protocol for Consumer, Commercial, and Industrial Electronic Devices), 3270/tcp (Verismart), 3504/tcp (IronStorm game server), 3935/tcp (SDP Port Mapper Protocol), 3805/tcp (ThorGuard Server Port), 3485/tcp (CelaTalk), 3825/tcp (Antera FlowFusion Process Simulation), 3239/tcp (appareNet User Interface), 3088/tcp (eXtensible Data Transfer Protocol), 3721/tcp (Xsync), 3227/tcp (DiamondWave NMS Server), 3657/tcp (ImmediaNet Beacon), 3416/tcp (AirMobile IS Command Port), 3106/tcp (Cardbox HTTP), 3890/tcp (Niche Data Server Connect), 33894/tcp, 3844/tcp (RNM), 3415/tcp (BCI Name Service), 3283/tcp (Net Assistant), 3266/tcp (NS CFG Server), 3747/tcp (LXPRO.COM LinkTest SSL), 3461/tcp (EDM Stager), 3782/tcp (Secure ISO TP0 port), 3937/tcp (DVB Service Discovery), 3207/tcp (Veritas Authentication Port), 3249/tcp (State Sync Protocol), 3928/tcp (PXE NetBoot Manager), 3656/tcp (ActiveBatch Job Scheduler), 3922/tcp (Soronti Update Port), 3591/tcp (LOCANIS G-TRACK Server), 3051/tcp (Galaxy Server), 3191/tcp (ConServR SSL Proxy), 3654/tcp (VAP RealTime Messenger), 3322/tcp (-3325  Active Networks), 3921/tcp (Herodotus Net), 3646/tcp (XSS Server Port).
      
BHD Honeypot
Port scan
2020-08-27

In the last 24h, the attacker (195.54.161.85) attempted to scan 38 ports.
The following ports have been scanned: 2222/tcp (EtherNet/IP I/O), 33896/tcp, 9000/tcp (CSlistener), 15000/tcp (Hypack Data Aquisition), 64000/tcp, 63000/tcp, 222/tcp (Berkeley rshd with SPX auth), 999/tcp (puprouter), 24000/tcp (med-ltp), 60000/tcp, 61000/tcp, 4000/tcp (Terabase), 54000/tcp, 888/tcp (CD Database Protocol), 33389/tcp, 58000/tcp, 49000/tcp, 13000/tcp, 55555/tcp, 31000/tcp, 666/tcp (doom Id Software), 50000/tcp, 4389/tcp (Xandros Community Management Service), 7777/tcp (cbt), 33891/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 25000/tcp (icl-twobase1), 27000/tcp (-27009 FLEX LM (1-10)), 33899/tcp, 9999/tcp (distinct), 33894/tcp.
      

Blacklist

Near real-time, easy to use data feed containing IPs reported on our website.

Bronze

$3

Updated daily

Learn More

Silver

$15

Updated every hour

Learn More

Gold

$30

Updated every 10 minutes

Learn More

Remarks

Black hat directory contains this IP address, because Internet users reported it as an address making unsolicited, nagging requests. We make every effort to ensure that the information contained in the Black hat directory are correct and up to date. The database is developed and updated by Internet users and moderators.

If you have any reliable information regarding malicious activity originating from this IP address, please share it with others and fill in the 'Report breach' form. It is prohibited from adding personally identifiable information.

Below breach categories are used in the database:

  • Denial of service attack - this attack is accomplished by flooding the target with massive amount of requests in order to overload the targeted system
  • Brute force attack - this category encompasses attempts to login to machine by trying many passwords and usernames
  • Backdoor attack - this category represents bypassing authentication by hidden programs or services to obtain remote access to a computer or trojan activity
  • Port scan - represents attackers identifying running services on the targeted machine by probing a server for open ports
  • Malicious bot - this category encompasses all bots performing unsolicited requests or ignoring robots.txt file
  • Anonymous proxy - public proxies like Tor, I2P relays or anonymous VPNs are often used by attacker to hide his identity
  • Web attack - attempts to exploit web application security flaws
  • CMS attack - attempts to exploit CMS vulnerability
  • App vulnerability attack - attempts to exploit other applications vulnerability
  • Web spam - encompasses all kind of HTTP spamming
  • Email spam - encompasses all kind of E-mail spamming
  • Dodgy activity - this category encompasses superfluous, dodgy requests

Report breach!

Rate host 195.54.161.85