IP address: 81.22.45.250

Host rating:

2.0

out of 463 votes

Last update: 2020-02-02

Host details

Unknown
Unknown
Unknown
Unknown
See comments

Reported breaches

  • Port scan
  • Dodgy activity
Report breach

Whois record

The publicly-available Whois record found at whois.ripe.net server.

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '81.22.45.0 - 81.22.45.255'

% Abuse contact for '81.22.45.0 - 81.22.45.255' is '[email protected]'

inetnum:        81.22.45.0 - 81.22.45.255
netname:        RU-INFOTECH-20181015
country:        RU
org:            ORG-ITL54-RIPE
admin-c:        LD5832-RIPE
tech-c:         LD5832-RIPE
status:         ASSIGNED PA
mnt-by:         IP-RIPE
mnt-routes:     ru-informtech-1-mnt
mnt-routes:     MNT-SELECTEL
created:        2018-10-15T14:52:53Z
last-modified:  2019-04-08T18:52:43Z
source:         RIPE

% Information related to '81.22.45.0/24AS49505'

route:          81.22.45.0/24
descr:          Selectel Customer
origin:         AS49505
mnt-by:         MNT-SELECTEL
created:        2018-11-23T13:48:16Z
last-modified:  2018-11-23T13:48:16Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.96 (HEREFORD)


User comments

463 security incident(s) reported by users

BHD Honeypot
Port scan
2020-02-02

In the last 24h, the attacker (81.22.45.250) attempted to scan 965 ports.
The following ports have been scanned: 9023/tcp (Secure Web Access - 1), 570/tcp (demon), 8835/tcp, 9097/tcp, 8526/tcp, 2266/tcp (M-Files Server), 3118/tcp (PKAgent), 995/tcp (pop3 protocol over TLS/SSL (was spop3)), 6766/tcp, 9261/tcp, 1886/tcp (Leonardo over IP), 8943/tcp, 5318/tcp, 3677/tcp (RoverLog IPC), 3685/tcp (DS Expert Agent), 1097/tcp (Sun Cluster Manager), 6477/tcp, 2035/tcp (imsldoc), 1513/tcp (Fujitsu Systems Business of America, Inc), 9906/tcp, 3205/tcp (iSNS Server Port), 943/tcp, 9371/tcp, 2296/tcp (Theta License Manager (Rainbow)), 4928/tcp, 1822/tcp (es-elmd), 4532/tcp, 58049/tcp, 6131/tcp, 6202/tcp, 8634/tcp, 5711/tcp, 5852/tcp, 320/tcp (PTP General), 3531/tcp (Joltid), 4476/tcp, 2884/tcp (Flash Msg), 6826/tcp, 7935/tcp, 3651/tcp (XRPC Registry), 8681/tcp, 3678/tcp (DataGuardianLT), 4507/tcp, 2306/tcp (TAPPI BoxNet), 8595/tcp, 1684/tcp (SnareSecure), 8228/tcp, 8145/tcp, 8473/tcp (Virtual Point to Point), 4394/tcp, 293/tcp, 1480/tcp (PacerForum), 2131/tcp (Avantageb2b), 21218/tcp, 1273/tcp (EMC-Gateway), 6348/tcp, 8461/tcp, 4178/tcp (StorMan), 7939/tcp, 3728/tcp (Ericsson Web on Air), 5183/tcp, 6144/tcp (StatSci License Manager - 1), 3975/tcp (Air Shot), 2540/tcp (LonWorks), 8018/tcp, 9295/tcp (ARMCenter https Service), 4617/tcp, 1627/tcp (T.128 Gateway), 27417/tcp, 907/tcp, 2254/tcp (Seismic P.O.C. Port), 7678/tcp, 1293/tcp (PKT-KRB-IPSec), 8170/tcp, 9907/tcp, 1933/tcp (IBM LM MT Agent), 9203/tcp (WAP secure session service), 7277/tcp (OMA Internal Location Secure Protocol), 2794/tcp, 6233/tcp, 9827/tcp, 9619/tcp, 7834/tcp, 761/tcp (rxe), 2883/tcp (NDNP), 7295/tcp, 8707/tcp, 6312/tcp, 5482/tcp, 1752/tcp (Leap of Faith Research License Manager), 874/tcp, 8701/tcp, 8530/tcp, 9438/tcp, 7955/tcp, 2341/tcp (XIO Status), 1328/tcp (EWALL), 526/tcp (newdate), 611/tcp (npmp-gui), 4936/tcp, 4497/tcp, 1077/tcp (IMGames), 1508/tcp (diagmond), 6849/tcp, 5220/tcp, 1586/tcp (ibm-abtact), 5168/tcp (SCTE30 Connection), 629/tcp (3Com AMP3), 2593/tcp (MNS Mail Notice Service), 1655/tcp (dec-mbadmin), 9751/tcp, 5258/tcp, 1343/tcp (re101), 196/tcp (DNSIX Session Mgt Module Audit Redir), 2036/tcp (Ethernet WS DP network), 676/tcp (VPPS Via), 1160/tcp (DB Lite Mult-User Server), 9793/tcp, 8266/tcp, 3096/tcp (Active Print Server Port), 9526/tcp, 8871/tcp, 3299/tcp (pdrncs), 3421/tcp (Bull Apprise portmapper), 7661/tcp, 3836/tcp (MARKEM NEXTGEN DCP), 5390/tcp, 7997/tcp, 9630/tcp (Peovica Controller), 2843/tcp (PDnet), 3699/tcp (Internet Call Waiting), 3017/tcp (Event Listener), 1930/tcp (Drive AppServer), 8354/tcp, 56983/tcp, 9113/tcp, 9587/tcp, 5320/tcp (Webservices-based Zn interface of BSF), 469/tcp (Radio Control Protocol), 2460/tcp (ms-theater), 3023/tcp (magicnotes), 8604/tcp, 2350/tcp (Pharos Booking Server), 8608/tcp, 4318/tcp, 5902/tcp, 9988/tcp (Software Essentials Secure HTTP server), 8487/tcp, 486/tcp (avian), 6549/tcp (APC 6549), 2093/tcp (NBX CC), 7647/tcp, 5525/tcp, 5638/tcp, 377/tcp (NEC Corporation), 9572/tcp, 2198/tcp (OneHome Remote Access), 5815/tcp, 447/tcp (DDM-Distributed File Management), 780/tcp (wpgs), 4494/tcp, 6036/tcp, 871/tcp, 1498/tcp (Sybase SQL Any), 2643/tcp (GTE-SAMP), 1565/tcp (WinDD), 9148/tcp, 2255/tcp (VRTP - ViRtue Transfer Protocol), 4874/tcp, 31640/tcp, 1906/tcp (TPortMapperReq), 3507/tcp (Nesh Broker Port), 6508/tcp (BoKS Dir Server, Public Port), 7167/tcp (CA SRM Agent), 1430/tcp (Hypercom TPDU), 8377/tcp (Cruise SWROUTE), 8852/tcp, 2124/tcp (ELATELINK), 2403/tcp (TaskMaster 2000 Web), 8932/tcp, 9667/tcp (Cross-platform Music Multiplexing System), 2293/tcp (Network Platform Debug Manager), 28559/tcp, 1607/tcp (stt), 3584/tcp (U-DBase Access Protocol), 8575/tcp, 1734/tcp (Camber Corporation License Management), 5761/tcp, 35002/tcp, 144/tcp (Universal Management Architecture), 9516/tcp, 1994/tcp (cisco serial tunnel port), 4244/tcp, 2451/tcp (netchat), 1411/tcp (AudioFile), 4702/tcp (NetXMS Server Synchronization), 3711/tcp (EBD Server 2), 9038/tcp, 2835/tcp (EVTP-DATA), 3877/tcp (XMPCR Interface Port), 9625/tcp, 2268/tcp (AMT), 991/tcp (Netnews Administration System), 7983/tcp, 4846/tcp (Contamac ICM Service), 3144/tcp (Tarantella), 7184/tcp, 6637/tcp, 2580/tcp (Tributary), 8669/tcp, 9796/tcp, 1297/tcp (sdproxy), 7366/tcp, 3120/tcp (D2000 Webserver Port), 143/tcp (Internet Message Access Protocol), 1463/tcp (Nucleus), 8731/tcp, 5373/tcp, 5727/tcp (ASG Event Notification Framework), 3949/tcp (Dynamic Routing Information Protocol), 7646/tcp, 9432/tcp, 3630/tcp (C&S Remote Database Port), 6072/tcp (DIAGNOSE-PROC), 9574/tcp, 1118/tcp (SACRED), 3557/tcp (PersonalOS Comm Port), 4488/tcp (Apple Wide Area Connectivity Service ICE Bootstrap), 7522/tcp, 7922/tcp, 334/tcp, 4633/tcp, 2493/tcp (Talarian MQS), 2833/tcp (glishd), 5414/tcp (StatusD), 3985/tcp (MAPPER TCP/IP server), 461/tcp (DataRampSrv), 7282/tcp (eventACTION/ussACTION (MZCA) server), 3277/tcp (AWG Proxy), 294/tcp, 8948/tcp, 1163/tcp (SmartDialer Data Protocol), 5101/tcp (Talarian_TCP), 2515/tcp (Facsys Router), 3991/tcp (BindView-SMCServer), 5345/tcp, 3749/tcp (CimTrak), 2276/tcp (iBridge Management), 8782/tcp, 9386/tcp, 5792/tcp, 2031/tcp (mobrien-chat), 4711/tcp, 2868/tcp (NPEP Messaging), 9215/tcp (Integrated Setup and Install Service), 9450/tcp (Sentinel Keys Server), 9721/tcp, 4331/tcp, 1364/tcp (Network DataMover Server), 979/tcp, 5621/tcp, 8844/tcp, 7741/tcp (ScriptView Network), 721/tcp, 4163/tcp (Silver Peak Peer Protocol), 6318/tcp, 9923/tcp, 873/tcp (rsync), 3886/tcp (NEI management port), 1514/tcp (Fujitsu Systems Business of America, Inc), 520/tcp (extended file name server), 5844/tcp, 7241/tcp, 2687/tcp (pq-lic-mgmt), 6154/tcp, 5916/tcp, 671/tcp (VACDSM-APP), 1526/tcp (Prospero Data Access Prot non-priv), 1219/tcp (AeroFlight-Ret), 6871/tcp, 31831/tcp, 3544/tcp (Teredo Port), 2428/tcp (One Way Trip Time), 6742/tcp, 3517/tcp (IEEE 802.11 WLANs WG IAPP), 9114/tcp, 6755/tcp, 4372/tcp (LAN2CAN Data), 9717/tcp, 6786/tcp (Sun Java Web Console JMX), 915/tcp, 7222/tcp, 1452/tcp (GTE Government Systems License Man), 5853/tcp, 4013/tcp (ACL Manager), 6414/tcp, 217/tcp (dBASE Unix), 7568/tcp, 9894/tcp, 627/tcp (PassGo Tivoli), 1453/tcp (Genie License Manager), 8428/tcp, 1532/tcp (miroconnect), 9847/tcp, 956/tcp, 6269/tcp (Grid Authentication Alt), 5607/tcp, 8125/tcp, 2798/tcp (TMESIS-UPShot), 7298/tcp, 3428/tcp (2Wire CSS), 9584/tcp, 1929/tcp (Bandwiz System - Server), 16239/tcp, 2133/tcp (ZYMED-ZPP), 2936/tcp (OTPatch), 8891/tcp (Desktop Data TCP 3: NESS application), 3768/tcp (rblcheckd server daemon), 8562/tcp, 2211/tcp (EMWIN), 3784/tcp (BFD Control Protocol), 6033/tcp, 8055/tcp (Senomix Timesheets Server [1 year assignment]), 5983/tcp, 9736/tcp, 3065/tcp (slinterbase), 2256/tcp (PCC MFP), 1770/tcp (bmc-net-svc), 2155/tcp (Bridge Protocol), 4262/tcp, 8043/tcp (FireScope Server), 2053/tcp (Lot105 DSuper Updates), 4934/tcp, 9503/tcp, 421/tcp (Ariel 2), 5436/tcp, 149/tcp (AED 512 Emulation Service), 8362/tcp, 4075/tcp (ISC Alarm Message Service), 870/tcp, 2453/tcp (madge ltd), 542/tcp (commerce), 376/tcp (Amiga Envoy Network Inquiry Proto), 2542/tcp (uDraw(Graph)), 9709/tcp, 2461/tcp (qadmifoper), 7763/tcp, 5439/tcp, 1192/tcp (caids sensors channel), 2609/tcp (System Monitor), 6255/tcp, 7019/tcp, 1744/tcp (ncpm-ft), 2795/tcp (LiveStats), 5221/tcp (3eTI Extensible Management Protocol for OAMP), 2565/tcp (Coordinator Server), 3599/tcp (Quasar Accounting Server), 9672/tcp, 7176/tcp, 9141/tcp, 5526/tcp, 8409/tcp, 863/tcp, 7154/tcp, 7031/tcp, 318/tcp (PKIX TimeStamp), 9962/tcp, 1249/tcp (Mesa Vista Co), 2375/tcp, 5488/tcp, 5452/tcp, 2511/tcp (Metastorm), 363/tcp (RSVP Tunnel), 211/tcp (Texas Instruments 914C/G Terminal), 5699/tcp, 5016/tcp, 7023/tcp (Comtech T2 NMCS), 1069/tcp (COGNEX-INSIGHT), 1158/tcp (dbControl OMS), 8967/tcp, 6560/tcp, 8598/tcp, 1358/tcp (CONNLCLI), 390/tcp (UIS), 5048/tcp (Texai Message Service), 3043/tcp (Broadcast Routing Protocol), 7706/tcp, 507/tcp (crs), 8761/tcp, 5176/tcp, 7951/tcp, 6394/tcp, 9963/tcp, 3490/tcp (Colubris Management Port), 8158/tcp, 5164/tcp (Virtual Protocol Adapter), 5508/tcp, 7596/tcp, 1072/tcp (CARDAX), 2064/tcp (ICG IP Relay Port), 7158/tcp, 6358/tcp, 3519/tcp (Netvion Messenger Port), 8006/tcp, 9217/tcp (FSC Communication Port), 3897/tcp (Simple Distributed Objects over SSH), 4072/tcp (Zieto Socket Communications), 3998/tcp (Distributed Nagios Executor Service), 210/tcp (ANSI Z39.50), 7992/tcp, 675/tcp (DCTP), 7987/tcp, 63366/tcp, 2472/tcp (C3), 6617/tcp, 9821/tcp, 2518/tcp (Willy), 3603/tcp (Integrated Rcvr Control), 6058/tcp, 4213/tcp, 1702/tcp (deskshare), 8076/tcp, 5747/tcp (Wildbits Tunatic), 9557/tcp, 7130/tcp, 8829/tcp, 1197/tcp (Carrius Remote Access), 872/tcp, 337/tcp, 4338/tcp, 6898/tcp, 7147/tcp, 9131/tcp (Dynamic Device Discovery), 9580/tcp, 5447/tcp, 7015/tcp (Talon Webserver), 4054/tcp (CosmoCall Universe Communications Port 2), 8772/tcp, 4755/tcp, 5781/tcp (3PAR Event Reporting Service), 284/tcp (corerjd), 5839/tcp, 3241/tcp (SysOrb Monitoring Server), 1241/tcp (nessus), 4883/tcp (Meier-Phelps License Server), 4649/tcp, 5411/tcp (ActNet), 9083/tcp (EMC PowerPath Mgmt Service), 2141/tcp (IAS-ADMIND), 1306/tcp (RE-Conn-Proto), 9103/tcp (Bacula Storage Daemon), 7035/tcp, 9741/tcp, 5713/tcp (proshare conf audio), 5268/tcp, 2054/tcp (Weblogin Port), 8635/tcp, 1146/tcp (audit transfer), 710/tcp (Entrust Administration Service Handler), 6749/tcp, 9829/tcp, 5166/tcp (WinPCS Service Connection), 9895/tcp, 115/tcp (Simple File Transfer Protocol), 8658/tcp, 1376/tcp (IBM Person to Person Software), 4437/tcp, 7857/tcp, 5801/tcp, 2206/tcp (HP OpenCall bus), 9055/tcp, 1831/tcp (Myrtle), 9277/tcp, 640/tcp (entrust-sps), 2638/tcp (Sybase Anywhere), 6564/tcp, 9875/tcp (Session Announcement v1), 4481/tcp, 6782/tcp, 6198/tcp, 7743/tcp (Sakura Script Transfer Protocol), 2322/tcp (ofsd), 6768/tcp (BMC PERFORM MGRD), 4736/tcp, 1643/tcp (isis-ambc), 2466/tcp (Load Balance Forwarding), 4225/tcp, 8437/tcp, 7439/tcp, 2585/tcp (NETX Server), 805/tcp, 159/tcp (NSS-Routing), 5962/tcp, 7065/tcp, 1758/tcp (tftp-mcast), 4987/tcp (SMAR Ethernet Port 1), 7409/tcp, 2915/tcp (TK Socket), 7790/tcp, 5885/tcp, 1606/tcp (Salutation Manager (SLM-API)), 5198/tcp, 3775/tcp (ISPM Manager Port), 5325/tcp, 2235/tcp (Sercomm-WLink), 4235/tcp, 1893/tcp (ELAD Protocol), 9575/tcp, 8238/tcp, 9863/tcp, 928/tcp, 9565/tcp, 7947/tcp, 9245/tcp, 959/tcp, 4314/tcp, 5717/tcp (proshare conf notify), 8225/tcp, 9791/tcp, 8776/tcp, 8995/tcp, 2514/tcp (Facsys NTP), 1876/tcp (ewcappsrv), 6496/tcp, 3220/tcp (XML NM over SSL), 4822/tcp, 8113/tcp, 536/tcp (opalis-rdv), 5971/tcp, 6556/tcp, 9542/tcp, 5293/tcp, 2109/tcp (Ergolight), 403/tcp (decap), 6592/tcp, 617/tcp (SCO Desktop Administration Server), 1815/tcp (MMPFT), 6632/tcp (eGenix mxODBC Connect), 3183/tcp (COPS/TLS), 1885/tcp (Veritas Trap Server), 6962/tcp (jmevt2), 2762/tcp (DICOM TLS), 1608/tcp (Smart Corp. License Manager), 7913/tcp (QuickObjects secure port), 4121/tcp (e-Builder Application Communication), 7156/tcp, 1064/tcp (JSTEL), 9854/tcp, 382/tcp (hp performance data managed node), 4101/tcp (Braille protocol), 3762/tcp (GBS SnapMail Protocol), 2879/tcp (ucentric-ds), 3009/tcp (PXC-NTFY), 3986/tcp (MAPPER workstation server), 7412/tcp, 6078/tcp, 1626/tcp (Shockwave), 2968/tcp (ENPP), 5538/tcp, 741/tcp (netGW), 7116/tcp, 5585/tcp (BeInSync-sync), 9694/tcp (T-Mobile Client Wakeup Message), 8285/tcp, 4691/tcp (monotone Netsync Protocol), 1405/tcp (IBM Remote Execution Starter), 6398/tcp, 7267/tcp, 663/tcp (PureNoise), 4815/tcp, 4380/tcp, 8939/tcp, 7812/tcp, 1247/tcp (VisionPyramid), 8109/tcp, 4558/tcp, 7429/tcp (OpenView DM rqt communication), 2077/tcp (Old Tivoli Storage Manager), 2203/tcp (b2 Runtime Protocol), 9564/tcp, 3858/tcp (Trap Port MOM), 4993/tcp, 6135/tcp, 2126/tcp (PktCable-COPS), 5603/tcp (A1-BS), 9013/tcp, 8582/tcp, 9867/tcp, 7002/tcp (users & groups database), 1487/tcp (LocalInfoSrvr), 572/tcp (sonar), 743/tcp, 2172/tcp (MS Firewall SecureStorage), 8652/tcp, 7201/tcp (DLIP), 3801/tcp (ibm manager service), 8942/tcp, 5243/tcp, 39565/tcp, 4396/tcp (Fly Object Space), 4865/tcp, 848/tcp (GDOI), 5958/tcp, 6845/tcp, 9165/tcp, 774/tcp (rpasswd), 3291/tcp (S A Holditch & Associates - LM), 9233/tcp, 5485/tcp, 9035/tcp, 8533/tcp, 1669/tcp (netview-aix-9), 8240/tcp, 3115/tcp (MCTET Master), 7351/tcp, 1810/tcp (Jerand License Manager), 9298/tcp, 114/tcp, 6676/tcp, 2546/tcp (vytalvaultbrtp), 8342/tcp, 8177/tcp, 7607/tcp, 6236/tcp, 5069/tcp (I/Net 2000-NPR), 9831/tcp, 2363/tcp (Media Central NFSD), 2209/tcp (HP RIM for Files Portal Service), 9109/tcp, 4017/tcp (Talarian Mcast), 9390/tcp (OpenVAS Transfer Protocol), 6650/tcp, 195/tcp (DNSIX Network Level Module Audit), 5162/tcp (SNMP Notification over SSH Transport Model), 1775/tcp, 4309/tcp (Exsequi Appliance Discovery), 890/tcp, 1380/tcp (Telesis Network License Manager), 7357/tcp, 5874/tcp, 3827/tcp (Netadmin Systems MPI service), 1707/tcp (vdmplay), 228/tcp, 6246/tcp, 4669/tcp (E-Port Data Service), 7722/tcp, 1939/tcp (JetVision Server Port), 3793/tcp (DataCore Software), 4831/tcp, 1512/tcp (Microsoft's Windows Internet Name Service), 299/tcp, 1339/tcp (kjtsiteserver), 5788/tcp, 8324/tcp, 8036/tcp, 2271/tcp (Secure Meeting Maker Scheduling), 3110/tcp (simulator control port), 4952/tcp (SAG Directory Server), 5949/tcp, 4503/tcp, 9171/tcp, 141/tcp (EMFIS Control Service), 3273/tcp (Simple Extensible Multiplexed Protocol), 2662/tcp (BinTec-CAPI), 8334/tcp, 1059/tcp (nimreg), 965/tcp, 8736/tcp, 815/tcp, 2366/tcp (qip-login), 3815/tcp (LANsurveyor XML), 1874/tcp (Fjswapsnp), 424/tcp (IBM Operations Planning and Control Track), 5975/tcp, 2867/tcp (esps-portal), 8338/tcp, 6346/tcp (gnutella-svc), 6816/tcp, 5476/tcp, 9956/tcp, 4942/tcp (Equitrac Office), 35851/tcp, 9926/tcp, 5487/tcp, 1639/tcp (cert-initiator), 6628/tcp (AFE Stock Channel M/C), 2115/tcp (Key Distribution Manager), 1613/tcp (NetBill Key Repository), 1683/tcp (ncpm-hip), 7822/tcp, 7811/tcp, 6953/tcp, 7715/tcp, 4614/tcp, 954/tcp, 1289/tcp (JWalkServer), 516/tcp (videotex), 2933/tcp (4-TIER OPM GW), 2793/tcp (initlsmsad), 1658/tcp (sixnetudr), 2714/tcp (Raven Trinity Data Mover), 1620/tcp (faxportwinport), 3165/tcp (Newgenpay Engine Service), 2033/tcp (glogger), 3217/tcp (Unified IP & Telecom Environment), 7850/tcp, 7064/tcp, 963/tcp, 5108/tcp, 7208/tcp, 462/tcp (DataRampSrvSec), 2551/tcp (ISG UDA Server), 1233/tcp (Universal App Server), 1494/tcp (ica), 6762/tcp, 4828/tcp, 7543/tcp (atul server), 5475/tcp, 6775/tcp, 2907/tcp (WEBMETHODS B2B), 5569/tcp, 3735/tcp (Password Distribution), 8144/tcp, 5882/tcp, 260/tcp (Openport), 1861/tcp (LeCroy VICP), 916/tcp, 4071/tcp (Automatically Incremental Backup), 531/tcp (chat), 10977/tcp, 7049/tcp, 4581/tcp, 8357/tcp, 2735/tcp (NetIQ Monitor Console), 329/tcp, 11003/tcp, 9637/tcp, 1182/tcp (AcceleNet Control), 5319/tcp, 331/tcp, 1316/tcp (Exbit-ESCP), 9864/tcp, 1025/tcp (network blackjack), 2939/tcp (SM-PAS-2), 9246/tcp, 205/tcp (AppleTalk Unused), 3763/tcp (XO Wave Control Port), 4697/tcp, 6639/tcp, 7205/tcp, 6220/tcp, 3178/tcp (Radiance UltraEdge Port), 281/tcp (Personal Link), 5044/tcp (LXI Event Service), 2278/tcp (Simple Stacked Sequences Database), 3903/tcp (CharsetMGR), 5250/tcp (soaGateway), 3930/tcp (Syam Web Server Port), 3731/tcp (Service Manager), 5097/tcp, 4062/tcp (Ice Location Service (SSL)), 2065/tcp (Data Link Switch Read Port Number), 4263/tcp, 4376/tcp (BioAPI Interworking), 4631/tcp, 1211/tcp (Groove DPP), 2391/tcp (3COM Net Management), 9636/tcp, 2566/tcp (pcs-pcw), 5635/tcp (SFM Authentication Subsystem), 7476/tcp, 5052/tcp (ITA Manager), 5868/tcp, 417/tcp (Onmux), 1801/tcp (Microsoft Message Que), 9469/tcp, 8489/tcp, 6279/tcp, 5768/tcp (OpenMail CMTS Server), 5279/tcp, 5904/tcp, 674/tcp (ACAP), 7162/tcp (CA Storage Manager), 5675/tcp (V5UA application port), 3543/tcp (qftest Lookup Port), 46273/tcp, 1483/tcp (AFS License Manager), 4849/tcp (App Server - Admin HTTPS), 3443/tcp (OpenView Network Node Manager WEB Server), 5078/tcp, 4991/tcp (VITA Radio Transport), 5163/tcp (Shadow Backup), 398/tcp (Kryptolan), 11818/tcp, 2991/tcp (WKSTN-MON), 1701/tcp (l2tp), 3027/tcp (LiebDevMgmt_C), 2977/tcp (TTCs Enterprise Test Access Protocol - NS), 8405/tcp (SuperVault Backup), 2452/tcp (SnifferClient), 2640/tcp (Sabbagh Associates Licence Manager), 8035/tcp, 1926/tcp (Evolution Game Server), 1813/tcp (RADIUS Accounting), 1217/tcp (HPSS NonDCE Gateway), 2548/tcp (vytalvaultpipe), 7220/tcp, 220/tcp (Interactive Mail Access Protocol v3), 4180/tcp (HTTPX), 945/tcp, 23885/tcp, 9490/tcp, 8923/tcp, 7731/tcp, 9734/tcp, 824/tcp, 4227/tcp, 2216/tcp (VTU data service), 7520/tcp, 1148/tcp (Elfiq Replication Service), 7845/tcp (APC 7845), 313/tcp (Magenta Logic), 4565/tcp, 541/tcp (uucp-rlogin), 6283/tcp, 9842/tcp, 7883/tcp, 6067/tcp, 702/tcp (IRIS over BEEP), 279/tcp, 5671/tcp (amqp protocol over TLS/SSL), 3967/tcp (PPS Message Service), 1844/tcp (DirecPC-DLL), 9310/tcp, 6356/tcp, 8169/tcp, 5022/tcp (mice server), 2537/tcp (Upgrade Protocol), 4764/tcp, 6032/tcp, 9730/tcp, 8633/tcp, 7499/tcp, 9121/tcp, 2088/tcp (IP Busy Lamp Field), 7309/tcp, 3560/tcp (INIServe port), 2480/tcp (Informatica PowerExchange Listener), 5064/tcp (Channel Access 1), 6295/tcp, 818/tcp, 8293/tcp (Hiperscan Identification Service), 5926/tcp, 1648/tcp (concurrent-lm), 2889/tcp (RSOM), 2837/tcp (Repliweb), 7548/tcp (Threat Information Distribution Protocol), 6153/tcp, 7493/tcp, 8806/tcp, 7866/tcp, 5832/tcp, 6688/tcp (CleverView for TCP/IP Message Service), 6427/tcp, 917/tcp, 9666/tcp, 9003/tcp, 5129/tcp, 3417/tcp (ConServR file translation), 2957/tcp (JAMCT5), 4911/tcp, 4174/tcp, 4638/tcp, 8613/tcp (Canon BJNP Port 3), 2784/tcp (world wide web - development), 579/tcp (decbsrv), 2630/tcp (Sitara Management), 3911/tcp (Printer Status Port), 1288/tcp (NavBuddy), 7936/tcp, 5214/tcp, 26889/tcp, 8927/tcp, 3857/tcp (Trap Port), 7457/tcp, 9613/tcp, 1535/tcp (ampr-info), 7838/tcp, 8677/tcp, 7399/tcp, 7990/tcp, 7213/tcp, 5109/tcp, 9159/tcp, 9492/tcp, 6051/tcp, 415/tcp (BNet), 4134/tcp (NIFTY-Serve HMI protocol), 3714/tcp (DELOS Direct Messaging), 3659/tcp (Apple SASL), 5506/tcp (Amcom Mobile Connect), 3495/tcp (securitylayer over tcp), 821/tcp, 1552/tcp (pciarray), 7428/tcp (OpenView DM Log Agent Manager), 1406/tcp (NetLabs License Manager), 408/tcp (Prospero Resource Manager Sys. Man.), 2102/tcp (Zephyr server), 6937/tcp, 8543/tcp, 6858/tcp, 8937/tcp (Transaction Warehouse Data Service), 5964/tcp, 750/tcp (rfile), 5765/tcp, 5277/tcp, 4143/tcp (Document Replication), 1635/tcp (EDB Server 1), 5205/tcp, 9286/tcp, 8467/tcp, 8189/tcp, 1238/tcp (hacl-qs), 6105/tcp (Prima Server), 7865/tcp, 1808/tcp (Oracle-VP2), 4908/tcp, 8273/tcp, 3805/tcp (ThorGuard Server Port), 8085/tcp, 122/tcp (SMAKYNET), 3825/tcp (Antera FlowFusion Process Simulation), 9878/tcp, 1222/tcp (SNI R&D network), 7487/tcp, 3890/tcp (Niche Data Server Connect), 812/tcp, 3283/tcp (Net Assistant), 286/tcp (FXP Communication), 9865/tcp, 8832/tcp, 6529/tcp, 7640/tcp, 2240/tcp (RECIPe), 1960/tcp (Merit DAC NASmanager), 8382/tcp, 262/tcp (Arcisdms), 3249/tcp (State Sync Protocol), 4834/tcp, 3656/tcp (ActiveBatch Job Scheduler), 4293/tcp, 5174/tcp, 5532/tcp, 6339/tcp, 359/tcp (Network Security Risk Management Protocol), 8422/tcp, 1193/tcp (Five Across Server), 2237/tcp (Optech Port1 License Manager), 7802/tcp.
      
BHD Honeypot
Port scan
2020-02-01

In the last 24h, the attacker (81.22.45.250) attempted to scan 1920 ports.
The following ports have been scanned: 2848/tcp (AMT-BLC-PORT), 6804/tcp, 9618/tcp (Condor Collector Service), 2697/tcp (Oce SNMP Trap Port), 8074/tcp (Gadu-Gadu), 6057/tcp, 3846/tcp (Astare Network PCP), 4265/tcp, 5672/tcp (AMQP), 3741/tcp (WysDM Agent), 3799/tcp (RADIUS Dynamic Authorization), 7455/tcp, 1713/tcp (ConferenceTalk), 8552/tcp, 5798/tcp, 3092/tcp, 2185/tcp (OnBase Distributed Disk Services), 54070/tcp, 1741/tcp (cisco-net-mgmt), 2852/tcp (bears-01), 910/tcp (Kerberized Internet Negotiation of Keys (KINK)), 3718/tcp (OPUS Server Port), 3575/tcp (Coalsere CCM Port), 4463/tcp, 4172/tcp (PC over IP), 7679/tcp, 9199/tcp, 8012/tcp, 7848/tcp, 9268/tcp, 1863/tcp (MSNP), 7502/tcp, 22875/tcp, 387/tcp (Appletalk Update-Based Routing Pro.), 2488/tcp (Moy Corporation), 4474/tcp, 9076/tcp, 9940/tcp, 5368/tcp, 4311/tcp (P6R Secure Server Management Console), 8929/tcp, 986/tcp, 5998/tcp, 1223/tcp (TrulyGlobal Protocol), 1396/tcp (DVL Active Mail), 8930/tcp, 9384/tcp, 6216/tcp, 3282/tcp (Datusorb), 3847/tcp (MS Firewall Control), 3602/tcp (InfiniSwitch Mgr Client), 2985/tcp (HPIDSAGENT), 6576/tcp, 6924/tcp, 7690/tcp, 1230/tcp (Periscope), 4464/tcp, 3136/tcp (Grub Server Port), 1473/tcp (OpenMath), 5102/tcp (Oracle OMS non-secure), 9138/tcp, 32926/tcp, 240/tcp, 5314/tcp (opalis-rbt-ipc), 8408/tcp, 214/tcp (VM PWSCS), 6731/tcp, 530/tcp (rpc), 7744/tcp (RAQMON PDU), 5188/tcp, 9441/tcp, 477/tcp (ss7ns), 1654/tcp (stargatealerts), 3134/tcp (Extensible Code Protocol), 4018/tcp (Talarian Mcast), 5529/tcp, 6450/tcp, 4703/tcp (Network Performance Quality Evaluation System Test Service), 3453/tcp (PSC Update Port), 2457/tcp (Rapido_IP), 5828/tcp, 2378/tcp, 512/tcp (remote process execution;), 3123/tcp (EDI Translation Protocol), 1451/tcp (IBM Information Management), 7860/tcp, 6395/tcp, 6237/tcp, 4895/tcp, 289/tcp, 5993/tcp, 311/tcp (AppleShare IP WebAdmin), 254/tcp, 8381/tcp, 4103/tcp (Braille protocol), 1932/tcp (CTT Broker), 4620/tcp, 7125/tcp, 190/tcp (Gateway Access Control Protocol), 7483/tcp, 5062/tcp (Localisation access), 735/tcp, 8739/tcp, 4304/tcp (One-Wire Filesystem Server), 5879/tcp, 8402/tcp (abarsd), 5329/tcp, 4975/tcp, 4137/tcp (Classic Line Database Server Remote), 8558/tcp, 5886/tcp, 6368/tcp, 8855/tcp, 9828/tcp, 5733/tcp, 10921/tcp, 7975/tcp, 1520/tcp (atm zip office), 1357/tcp (Electronic PegBoard), 3252/tcp (DHE port), 8279/tcp, 2260/tcp (APC 2260), 2067/tcp (Data Link Switch Write Port Number), 8664/tcp, 6863/tcp, 5912/tcp (Flight Information Services), 5490/tcp, 3730/tcp (Client Control), 9260/tcp, 326/tcp, 3816/tcp (Sun Local Patch Server), 7008/tcp (server-to-server updater), 5778/tcp, 6342/tcp, 233/tcp, 4365/tcp, 2117/tcp (MENTACLIENT), 974/tcp, 4619/tcp, 7696/tcp, 8021/tcp (Intuit Entitlement Client), 6642/tcp, 55795/tcp, 393/tcp (Meta5), 8193/tcp, 3856/tcp (INFORMER), 332/tcp, 6206/tcp, 7197/tcp, 1732/tcp (proxim), 8703/tcp, 5474/tcp, 7553/tcp, 6065/tcp (WinPharaoh), 3551/tcp (Apcupsd Information Port), 2875/tcp (DX Message Base Transport Protocol), 2123/tcp (GTP-Control Plane (3GPP)), 6960/tcp, 7956/tcp, 565/tcp (whoami), 3758/tcp (apw RMI registry), 4667/tcp (MMA Comm Services), 3625/tcp (Volley), 660/tcp (MacOS Server Admin), 8528/tcp, 7057/tcp, 4551/tcp (MIH Services), 7940/tcp, 1276/tcp (ivmanager), 4345/tcp (Macro 4 Network AS), 6719/tcp, 9482/tcp, 5939/tcp, 7092/tcp, 8668/tcp, 8447/tcp, 1720/tcp (h323hostcall), 6712/tcp, 3783/tcp (Impact Mgr./PEM Gateway), 5915/tcp, 3079/tcp (LV Front Panel), 6590/tcp, 3216/tcp (Ferrari electronic FOAM), 5934/tcp, 1208/tcp (SEAGULL AIS), 9759/tcp, 1099/tcp (RMI Registry), 5071/tcp (PowerSchool), 4006/tcp (pxc-spvr), 57952/tcp, 3727/tcp (Ericsson Mobile Data Unit), 31762/tcp, 9853/tcp, 4642/tcp, 5235/tcp (Galaxy Network Service), 711/tcp (Cisco TDP), 4183/tcp (General Metaverse Messaging Protocol), 4891/tcp, 1373/tcp (Chromagrafx), 5860/tcp, 7862/tcp, 800/tcp (mdbs_daemon), 4833/tcp, 6941/tcp, 432/tcp (IASD), 8197/tcp, 416/tcp (Silverplatter), 9927/tcp, 177/tcp (X Display Manager Control Protocol), 682/tcp (XFR), 3697/tcp (NavisWorks License System), 4051/tcp (Cisco Peer to Peer Distribution Protocol), 1788/tcp (psmond), 8187/tcp, 3708/tcp (Sun App Svr - Naming), 3686/tcp (Trivial Network Management), 5175/tcp, 6167/tcp, 9019/tcp, 7204/tcp, 8143/tcp, 6774/tcp, 117/tcp (UUCP Path Service), 6545/tcp, 5859/tcp (WHEREHOO), 5372/tcp, 4729/tcp, 6290/tcp, 4322/tcp (TRIM Event Service), 8616/tcp, 4912/tcp (Technicolor LUT Access Protocol), 7288/tcp, 6193/tcp, 5549/tcp, 8433/tcp, 265/tcp (X-Bone CTL), 9378/tcp, 4775/tcp, 4086/tcp, 3710/tcp (PortGate Authentication), 2072/tcp (GlobeCast mSync), 8412/tcp, 6169/tcp, 9520/tcp, 2111/tcp (DSATP), 4629/tcp, 8653/tcp, 7817/tcp, 7032/tcp, 2773/tcp (RBackup Remote Backup), 8706/tcp, 6986/tcp, 7534/tcp, 7046/tcp, 9484/tcp, 2648/tcp (Upsnotifyprot), 5745/tcp (fcopy-server), 4424/tcp, 9476/tcp, 9409/tcp, 9563/tcp, 12832/tcp, 3208/tcp (PFU PR Callback), 2914/tcp (Game Lobby), 9422/tcp, 3756/tcp (Canon CAPT Port), 8680/tcp, 8519/tcp, 533/tcp (for emergency broadcasts), 6691/tcp, 3997/tcp (aes_db), 2786/tcp (aic-oncrpc - Destiny MCD database), 4852/tcp, 4770/tcp, 5670/tcp, 7835/tcp, 1555/tcp (livelan), 3256/tcp (Compaq RPM Agent Port), 8935/tcp, 7056/tcp, 2069/tcp (HTTP Event Port), 7858/tcp, 8980/tcp, 9975/tcp, 6534/tcp, 9635/tcp, 1259/tcp (Open Network Library Voice), 13289/tcp, 5509/tcp, 5514/tcp, 8064/tcp, 8802/tcp, 1475/tcp (Taligent License Manager), 2995/tcp (IDRS), 7705/tcp, 692/tcp (Hyperwave-ISP), 1315/tcp (E.L.S., Event Listener Service), 3479/tcp (2Wire RPC), 4938/tcp, 5040/tcp, 5659/tcp, 3213/tcp (NEON 24X7 Mission Control), 380/tcp (TIA/EIA/IS-99 modem server), 5575/tcp (Oracle Access Protocol), 3892/tcp (PCC-image-port), 2083/tcp (Secure Radius Service), 8960/tcp, 10021/tcp, 5133/tcp (Policy Commander), 9189/tcp, 2045/tcp (cdfunc), 5910/tcp (Context Management), 4160/tcp (Jini Discovery), 977/tcp, 6548/tcp (APC 6548), 7363/tcp, 9826/tcp, 745/tcp, 1575/tcp (oraclenames), 7595/tcp, 3107/tcp (Business protocol), 44947/tcp, 9445/tcp, 5996/tcp, 787/tcp, 7795/tcp, 3161/tcp (DOC1 License Manager), 2674/tcp (ewnn), 6322/tcp (Empress Software Connectivity Server 2), 931/tcp, 6126/tcp, 1186/tcp (MySQL Cluster Manager), 4038/tcp (Fazzt Point-To-Point), 8205/tcp (LM Instmgr), 1424/tcp (Hybrid Encryption Protocol), 806/tcp, 1633/tcp (PAMMRPC), 7937/tcp, 7281/tcp (ITACTIONSERVER 2), 2574/tcp (Blockade BPSP), 5749/tcp, 1043/tcp (BOINC Client Control), 6912/tcp, 6947/tcp, 6354/tcp, 1761/tcp (cft-0), 7659/tcp, 4067/tcp (Information Distribution Protocol), 985/tcp, 8237/tcp, 3868/tcp (DIAMETER), 8732/tcp, 5744/tcp (Watchdoc Server), 1093/tcp (PROOFD), 8845/tcp, 7708/tcp (scientia.net), 856/tcp, 3833/tcp (AIPN LS Authentication), 3540/tcp (PNRP User Port), 9264/tcp, 9651/tcp, 5840/tcp, 6329/tcp, 1136/tcp (HHB Gateway Control), 3245/tcp (VIEO Fabric Executive), 2360/tcp (NexstorIndLtd), 621/tcp (ESCP), 235/tcp, 2197/tcp (MNP data exchange), 8619/tcp, 9059/tcp, 1625/tcp (svs-omagent), 6531/tcp, 6619/tcp (ODETTE-FTP over TLS/SSL), 19675/tcp, 6186/tcp, 7144/tcp, 628/tcp (QMQP), 1902/tcp (Fujitsu ICL Terminal Emulator Program B), 7319/tcp, 8536/tcp, 2504/tcp (WLBS), 6701/tcp (KTI/ICAD Nameserver), 6119/tcp, 7126/tcp, 9820/tcp, 7397/tcp (Hexarc Command Language), 4467/tcp, 2748/tcp (fjippol-polsvr), 1382/tcp (udt_os), 9365/tcp, 6934/tcp, 7877/tcp, 5565/tcp, 4538/tcp (Software Data Exchange Gateway), 6476/tcp, 5281/tcp (Undo License Manager), 468/tcp (proturis), 6884/tcp, 9522/tcp, 4626/tcp, 6561/tcp, 7610/tcp, 7053/tcp, 562/tcp (chcmd), 7138/tcp, 8274/tcp, 5605/tcp (A4-SDUNode), 8054/tcp (Senomix Timesheets Server [1 year assignment]), 7719/tcp, 1058/tcp (nim), 3044/tcp (EndPoint Protocol), 5754/tcp, 8446/tcp, 8439/tcp, 6705/tcp, 8912/tcp (Windows Client Backup), 3861/tcp (winShadow Host Discovery), 7340/tcp, 1071/tcp (BSQUARE-VOIP), 7420/tcp, 492/tcp (Transport Independent Convergence for FNA), 5872/tcp, 4932/tcp, 3823/tcp (Compute Pool Conduit), 2578/tcp (RVS ISDN DCP), 6507/tcp (BoKS Dir Server, Private Port), 4594/tcp (IAS-Session (ANRI-ANRI)), 153/tcp (SGMP), 2628/tcp (DICT), 1488/tcp (DocStor), 8358/tcp, 7099/tcp (lazy-ptop), 7061/tcp, 8860/tcp, 1602/tcp (inspect), 857/tcp, 44187/tcp, 1507/tcp (symplex), 6801/tcp (ACNET Control System Protocol), 9095/tcp, 7117/tcp, 9646/tcp, 1481/tcp (AIRS), 6751/tcp, 171/tcp (Network Innovations Multiplex), 9316/tcp, 4790/tcp, 1679/tcp (darcorp-lm), 2374/tcp (Hydra RPC), 2994/tcp (VERITAS VIS2), 1859/tcp (Gamma Fetcher Server), 6940/tcp, 8095/tcp, 1690/tcp (ng-umds), 9307/tcp, 5866/tcp, 948/tcp, 6229/tcp, 1803/tcp (HP-HCIP-GWY), 7891/tcp, 1403/tcp (Prospero Resource Manager), 385/tcp (IBM Application), 2659/tcp (SNS Query), 5323/tcp, 9262/tcp, 4483/tcp, 8831/tcp, 1190/tcp (CommLinx GPS / AVL System), 6750/tcp, 2813/tcp (llm-pass), 4253/tcp, 7464/tcp, 9671/tcp, 5266/tcp, 5249/tcp (CA AC Lang Service), 1387/tcp (Computer Aided Design Software Inc LM), 7655/tcp, 7545/tcp (FlowAnalyzer UtilityServer), 6995/tcp, 6396/tcp, 9973/tcp, 8866/tcp, 8513/tcp, 1644/tcp (Satellite-data Acquisition System 4), 441/tcp (decvms-sysmgt), 9747/tcp (L5NAS Parallel Channel), 4079/tcp (SANtools Diagnostic Server), 519/tcp (unixtime), 4884/tcp (HiveStor Distributed File System), 8509/tcp, 5309/tcp (J Printer), 4708/tcp, 8482/tcp, 9977/tcp, 2684/tcp (mpnjsosv), 3159/tcp (NavegaWeb Tarification), 6042/tcp, 2340/tcp (WRS Registry), 1567/tcp (jlicelmd), 7727/tcp (Trident Systems Data), 2715/tcp (HPSTGMGR2), 8625/tcp, 9509/tcp, 5524/tcp, 3077/tcp (Orbix 2000 Locator SSL), 268/tcp (Tobit David Replica), 3746/tcp (LXPRO.COM LinkTest), 2025/tcp (ellpack), 2205/tcp (Java Presentation Server), 3008/tcp (Midnight Technologies), 2644/tcp (Travsoft IPX Tunnel), 9607/tcp, 7273/tcp (OMA Roaming Location), 3875/tcp (PNBSCADA), 7086/tcp, 3214/tcp (JMQ Daemon Port 1), 2063/tcp (ICG Bridge Port), 922/tcp, 4367/tcp, 4527/tcp, 4721/tcp, 4562/tcp, 2917/tcp (Elvin Client), 8685/tcp, 3029/tcp (LiebDevMgmt_A), 8252/tcp, 6296/tcp, 659/tcp, 5210/tcp, 7871/tcp, 3045/tcp (ResponseNet), 2983/tcp (NETPLAN), 7310/tcp, 4572/tcp, 4529/tcp, 464/tcp (kpasswd), 8380/tcp (Cruise UPDATE), 1284/tcp (IEE-QFX), 3292/tcp (Cart O Rama), 1978/tcp (UniSQL), 270/tcp, 6138/tcp, 6430/tcp, 804/tcp, 1522/tcp (Ricardo North America License Manager), 2118/tcp (MENTASERVER), 1838/tcp (TALNET), 9175/tcp, 2928/tcp (REDSTONE-CPSS), 8521/tcp, 1982/tcp (Evidentiary Timestamp), 7236/tcp, 6485/tcp (Service Registry Default IIOP Domain), 9073/tcp, 6282/tcp, 4478/tcp, 3882/tcp (DTS Service Port), 7847/tcp, 1395/tcp (PC Workstation Manager software), 1591/tcp (ncpm-pm), 7422/tcp, 8796/tcp, 4429/tcp (OMV Investigation Agent-Server), 5061/tcp (SIP-TLS), 4319/tcp, 3098/tcp (Universal Message Manager), 1877/tcp (hp-webqosdb), 1359/tcp (FTSRV), 2098/tcp (Dialog Port), 2582/tcp (ARGIS DS), 8849/tcp, 5342/tcp, 1177/tcp (DKMessenger Protocol), 9332/tcp, 8483/tcp, 1448/tcp (OpenConnect License Manager), 5604/tcp (A3-SDUNode), 6053/tcp, 5841/tcp, 4327/tcp (Jaxer Web Protocol), 165/tcp (Xerox), 4454/tcp (NSS Agent Manager), 610/tcp (npmp-local), 2733/tcp (Signet CTF), 9102/tcp (Bacula File Daemon), 7436/tcp, 3122/tcp (MTI VTR Emulator port), 25293/tcp, 7444/tcp, 5627/tcp (Node Initiated Network Association Forma), 592/tcp (Eudora Set), 561/tcp (monitor), 8370/tcp, 571/tcp (udemon), 9570/tcp, 1943/tcp (Beeyond Media), 8443/tcp (PCsync HTTPS), 4504/tcp, 106/tcp (3COM-TSMUX), 4153/tcp (MBL Remote Battery Monitoring), 4251/tcp, 496/tcp (PIM-RP-DISC), 947/tcp, 876/tcp, 1589/tcp (VQP), 4596/tcp (IAS-Neighbor (ANRI-ANRI)), 5489/tcp, 4588/tcp, 8150/tcp, 7355/tcp, 9799/tcp, 3592/tcp (LOCANIS G-TRACK NE Port), 1194/tcp (OpenVPN), 1848/tcp (fjdocdist), 8629/tcp, 2101/tcp (rtcm-sc104), 606/tcp (Cray Unified Resource Manager), 2531/tcp (ITO-E GUI), 5956/tcp, 5161/tcp (SNMP over SSH Transport Model), 3018/tcp (Service Registry), 9126/tcp, 248/tcp (bhfhs), 4712/tcp, 4675/tcp (BIAP Device Status), 8724/tcp, 2142/tcp (TDM OVER IP), 4682/tcp (finisar), 7590/tcp, 7511/tcp (pafec-lm), 8261/tcp, 2027/tcp (shadowserver), 7291/tcp, 9155/tcp, 6376/tcp, 7909/tcp, 2927/tcp (UNIMOBILECTRL), 933/tcp, 5138/tcp, 4150/tcp (PowerAlert Network Shutdown Agent), 6151/tcp, 8716/tcp, 8478/tcp, 1091/tcp (FF System Management), 4212/tcp, 119/tcp (Network News Transfer Protocol), 5946/tcp, 6325/tcp, 8423/tcp, 59440/tcp, 8387/tcp, 791/tcp, 5301/tcp (HA cluster general services), 3246/tcp (DVT SYSTEM PORT), 8155/tcp, 26972/tcp, 5481/tcp, 5825/tcp, 4723/tcp, 2859/tcp (Active Memory), 3155/tcp (JpegMpeg Port), 6046/tcp, 7515/tcp, 7604/tcp, 2356/tcp (GXT License Managemant), 2893/tcp (VSECONNECTOR), 3121/tcp, 4967/tcp, 4022/tcp (DNOX), 4793/tcp, 1356/tcp (CuillaMartin Company), 1250/tcp (swldy-sias), 6787/tcp (Sun Web Console Admin), 5142/tcp, 8464/tcp, 2232/tcp (IVS Video default), 4378/tcp (Cambridge Pixel SPx Display), 950/tcp, 5404/tcp (HPOMS-DPS-LSTN), 2912/tcp (Epicon), 4106/tcp (Synchronite), 5922/tcp, 9733/tcp, 1307/tcp (Pacmand), 5708/tcp, 1029/tcp (Solid Mux Server), 9946/tcp, 8246/tcp, 3583/tcp (CANEX Watch System), 3862/tcp (GIGA-POCKET), 843/tcp, 2810/tcp (Active Net Steward), 6704/tcp, 3251/tcp (Sys Scanner), 1166/tcp (QSM RemoteExec), 4622/tcp, 1125/tcp (HP VMM Agent), 9561/tcp, 8553/tcp, 1553/tcp (sna-cs), 6331/tcp, 8856/tcp, 8492/tcp, 3742/tcp (CST - Configuration & Service Tracker), 8171/tcp, 8112/tcp, 2632/tcp (IRdg Post), 3372/tcp (TIP 2), 4028/tcp (DTServer Port), 4176/tcp (Translattice Cluster IPC Proxy), 502/tcp (asa-appl-proto), 5446/tcp, 107/tcp (Remote Telnet Service), 4357/tcp (QSNet Conductor), 8104/tcp, 9921/tcp, 1472/tcp (csdm), 4155/tcp (Bazaar version control system), 1271/tcp (eXcW), 6685/tcp, 169/tcp (SEND), 6506/tcp (BoKS Admin Public Port), 3532/tcp (Raven Remote Management Control), 3613/tcp (Alaris Device Discovery), 3979/tcp (Smith Micro Wide Area Network Service), 5422/tcp (Salient MUX), 9568/tcp, 1105/tcp (FTRANHC), 6436/tcp, 4860/tcp, 6524/tcp, 889/tcp, 9276/tcp, 7761/tcp, 7247/tcp, 5231/tcp, 9728/tcp, 3671/tcp (e Field Control (EIBnet)), 3052/tcp (APC 3052), 1852/tcp (Virtual Time), 4814/tcp, 5823/tcp, 6012/tcp, 9539/tcp, 1323/tcp (brcd), 8797/tcp, 8257/tcp, 7118/tcp, 497/tcp (dantz), 6044/tcp, 6625/tcp (DataScaler control), 8355/tcp, 19924/tcp, 6064/tcp (NDL-AHP-SVC), 7426/tcp (OpenView DM Postmaster Manager), 8922/tcp, 4287/tcp, 7932/tcp (Tier 2 Data Resource Manager), 451/tcp (Cray Network Semaphore server), 1566/tcp (CORELVIDEO), 2865/tcp (pit-vpn), 3448/tcp (Discovery and Net Config), 3146/tcp (bears-02), 3733/tcp (Multipuesto Msg Port), 937/tcp, 8804/tcp (truecm), 1946/tcp (tekpls), 5504/tcp (fcp-cics-gw1), 2252/tcp (NJENET using SSL), 8834/tcp, 6215/tcp, 5207/tcp, 7435/tcp, 2344/tcp (fcmsys), 4435/tcp, 7736/tcp, 4417/tcp, 3773/tcp (ctdhercules), 7280/tcp (ITACTIONSERVER 1), 1839/tcp (netopia-vo1), 9416/tcp, 3521/tcp (Telequip Labs MC3SS), 8837/tcp, 7842/tcp, 1563/tcp (Cadabra License Manager), 9535/tcp (Management Suite Remote Control), 6468/tcp, 362/tcp (SRS Send), 8287/tcp, 1645/tcp (SightLine), 7078/tcp, 817/tcp, 6335/tcp, 5394/tcp, 2073/tcp (DataReel Database Socket), 6613/tcp, 5995/tcp, 6890/tcp, 3192/tcp (FireMon Revision Control), 4977/tcp, 1640/tcp (cert-responder), 4905/tcp, 9322/tcp, 5961/tcp, 368/tcp (QbikGDP), 6634/tcp, 4707/tcp, 2028/tcp (submitserver), 3229/tcp (Global CD Port), 4961/tcp, 6422/tcp, 9085/tcp (IBM Remote System Console), 9312/tcp (Sphinx search server), 9703/tcp, 6696/tcp, 4210/tcp, 4693/tcp, 4485/tcp (Assyst Data Repository Service), 5145/tcp (RMONITOR SECURE), 7503/tcp, 1279/tcp (Dell Web Admin 2), 5386/tcp, 5420/tcp (Cylink-C), 9464/tcp, 9183/tcp, 5782/tcp (3PAR Management Service), 4456/tcp (PR Chat Server), 4409/tcp (Net-Cabinet comunication), 488/tcp (gss-http), 2971/tcp (NetClip clipboard daemon), 5991/tcp (NUXSL), 4324/tcp (Balour Game Server), 5208/tcp, 2844/tcp (BPCP POLL), 9851/tcp, 5511/tcp, 5157/tcp (Mediat Remote Object Exchange), 4944/tcp, 6662/tcp, 4627/tcp, 2336/tcp (Apple UG Control), 6069/tcp (TRIP), 1068/tcp (Installation Bootstrap Proto. Cli.), 8951/tcp, 9285/tcp (N2H2 Filter Service Port), 4903/tcp, 6199/tcp, 6919/tcp, 8435/tcp, 6724/tcp, 8375/tcp, 1066/tcp (FPO-FNS), 7446/tcp, 6442/tcp, 609/tcp (npmp-trap), 192/tcp (OSU Network Monitoring System), 9760/tcp, 2527/tcp (IQ Server), 6454/tcp, 4486/tcp (Integrated Client Message Service), 3028/tcp (LiebDevMgmt_DM), 1181/tcp (3Com Net Management), 8734/tcp, 4373/tcp (Remote Authenticated Command Service), 7387/tcp, 1681/tcp (sd-elmd), 3968/tcp (iAnywhere DBNS), 7404/tcp, 3290/tcp (CAPS LOGISTICS TOOLKIT - LM), 4759/tcp, 7217/tcp, 287/tcp (K-BLOCK), 8219/tcp, 860/tcp (iSCSI), 9979/tcp, 4817/tcp, 305/tcp, 7919/tcp, 7073/tcp, 3600/tcp (text relay-answer), 5370/tcp, 266/tcp (SCSI on ST), 5317/tcp, 1156/tcp (iasControl OMS), 1611/tcp (Inter Library Loan), 7551/tcp, 841/tcp, 5903/tcp, 2670/tcp (TVE Announce), 5149/tcp, 4696/tcp, 449/tcp (AS Server Mapper), 9644/tcp, 5984/tcp (CouchDB), 5966/tcp, 23412/tcp, 9647/tcp, 5026/tcp (Storix I/O daemon (data)), 4114/tcp (JomaMQMonitor), 9661/tcp, 3035/tcp (FJSV gssagt), 5462/tcp (TTL Publisher), 3055/tcp (Policy Server), 5098/tcp, 3083/tcp (TL1-TELNET), 8258/tcp, 9213/tcp (ServerStart RemoteControl [August 2005]), 4641/tcp, 9970/tcp, 5465/tcp (NETOPS-BROKER), 8817/tcp, 5752/tcp, 3951/tcp (PWG IPP Facsimile), 9860/tcp, 6631/tcp, 5099/tcp (SentLM Srv2Srv), 9548/tcp, 8659/tcp, 6353/tcp, 9411/tcp, 34945/tcp, 4493/tcp, 396/tcp (Novell Netware over IP), 667/tcp (campaign contribution disclosures - SDR Technologies), 3952/tcp (I3 Session Manager), 4886/tcp, 9930/tcp, 8838/tcp, 4350/tcp (Net Device), 5892/tcp, 2426/tcp, 9673/tcp, 4182/tcp (Production Company Pro TCP Service), 3148/tcp (NetMike Game Administrator), 3153/tcp (S8Cargo Client Port), 1647/tcp (rsap), 6881/tcp, 3513/tcp (Adaptec Remote Protocol), 6562/tcp, 3605/tcp (ComCam IO Port), 8288/tcp, 6532/tcp, 7765/tcp, 9079/tcp, 8327/tcp, 328/tcp, 8042/tcp (FireScope Agent), 1753/tcp, 6913/tcp, 7851/tcp, 2569/tcp (Sonus Call Signal), 2390/tcp (RSMTP), 575/tcp (VEMMI), 2380/tcp, 63219/tcp, 9952/tcp (APC 9952), 3753/tcp (NattyServer Port), 7961/tcp, 7504/tcp, 3794/tcp (JAUS Robots), 8940/tcp, 9938/tcp, 4525/tcp, 8037/tcp, 8858/tcp, 1604/tcp (icabrowser), 4910/tcp, 3627/tcp (Jam Server Port), 4383/tcp, 8715/tcp, 1139/tcp (Enterprise Virtual Manager), 7323/tcp, 2750/tcp (fjippol-port1), 8174/tcp, 1826/tcp (ARDT), 2923/tcp (WTA-WSP-WTP-S), 4043/tcp (Neighbour Identity Resolution), 5270/tcp (Cartographer XMP), 2736/tcp (RADWIZ NMS SRV), 6958/tcp, 2462/tcp (qadmifevent), 2329/tcp (NVD), 5263/tcp, 9785/tcp, 2846/tcp (AIMPP Hello), 3702/tcp (Web Service Discovery), 1582/tcp (MSIMS), 2364/tcp (OI-2000), 3074/tcp (Xbox game port), 641/tcp (repcmd), 4540/tcp, 508/tcp (xvttp), 6179/tcp, 9922/tcp, 8336/tcp, 258/tcp, 269/tcp (MANET Protocols), 2407/tcp (Orion), 5680/tcp (Auriga Router Service), 5648/tcp, 7367/tcp, 6575/tcp, 8141/tcp, 6973/tcp, 3218/tcp (EMC SmartPackets), 3725/tcp (Netia NA-ER Port), 2412/tcp (CDN), 4795/tcp, 6133/tcp (New Boundary Tech WOL), 4798/tcp, 4960/tcp, 5730/tcp (Steltor's calendar access), 4550/tcp (Perman I Interbase Server), 5793/tcp (XtreamX Supervised Peer message), 8603/tcp, 1076/tcp (DAB STI-C), 9008/tcp (Open Grid Services Server), 2288/tcp (NETML), 3650/tcp (PRISMIQ VOD plug-in), 608/tcp (Sender-Initiated/Unsolicited File Transfer), 3062/tcp (ncacn-ip-tcp), 9043/tcp, 1661/tcp (netview-aix-1), 2726/tcp (TAMS), 930/tcp, 5639/tcp, 8581/tcp, 7134/tcp, 8476/tcp, 8131/tcp (INDIGO-VBCP), 8773/tcp, 5467/tcp, 9054/tcp, 2347/tcp (Game Announcement and Location), 9974/tcp, 1320/tcp (AMX-AXBNET), 4859/tcp, 2607/tcp (Dell Connection), 9140/tcp, 2455/tcp (WAGO-IO-SYSTEM), 8440/tcp, 1671/tcp (netview-aix-11), 4673/tcp (CXWS Operations), 272/tcp, 4648/tcp, 9531/tcp, 8565/tcp, 9475/tcp, 9816/tcp, 8034/tcp (.vantronix Management), 161/tcp (SNMP), 9780/tcp, 4781/tcp, 7484/tcp, 4705/tcp, 1484/tcp (Confluent License Manager), 6299/tcp, 5811/tcp, 1232/tcp, 5873/tcp, 8369/tcp, 6638/tcp, 8911/tcp (manyone-xml), 5094/tcp (HART-IP), 6569/tcp, 4526/tcp, 7512/tcp, 4377/tcp (Cambridge Pixel SPx Server), 7892/tcp, 4217/tcp, 1268/tcp (PROPEL-MSGSYS), 4917/tcp, 3422/tcp (Remote USB System Port), 7972/tcp, 6254/tcp, 6478/tcp, 4093/tcp (Pvx Plus CS Host), 1073/tcp (Bridge Control), 5428/tcp (TELACONSOLE), 9680/tcp, 2890/tcp (CSPCLMULTI), 6386/tcp, 4223/tcp, 723/tcp, 3817/tcp (Yosemite Tech Tapeware), 7155/tcp, 6684/tcp, 8579/tcp, 2357/tcp (UniHub Server), 5256/tcp, 4956/tcp, 1180/tcp (Millicent Client Proxy), 827/tcp, 4206/tcp, 4127/tcp (NetUniKeyServer), 3067/tcp (FJHPJP), 5307/tcp (SCO AIP), 9406/tcp, 8514/tcp, 9527/tcp, 9739/tcp, 1776/tcp (Federal Emergency Management Information System), 2087/tcp (ELI - Event Logging Integration), 2038/tcp (objectmanager), 2949/tcp (WAP PUSH SECURE), 504/tcp (citadel), 4866/tcp, 7141/tcp, 1894/tcp (O2Server Port), 277/tcp, 3987/tcp (Centerline), 5498/tcp, 3834/tcp (Spectar Data Stream Service), 5257/tcp, 3933/tcp (PL/B App Server User Port), 7442/tcp, 7740/tcp, 1638/tcp (ISP shared management control), 7995/tcp, 9835/tcp, 1327/tcp (Ultrex), 7615/tcp, 6772/tcp, 6134/tcp, 8322/tcp, 3498/tcp (DASHPAS user port), 4575/tcp, 5542/tcp, 1275/tcp (ivcollector), 1834/tcp (ARDUS Unicast), 698/tcp (OLSR), 7198/tcp, 4940/tcp (Equitrac Office), 6098/tcp, 7348/tcp, 3260/tcp (iSCSI port), 5054/tcp (RLM administrative interface), 4885/tcp (ABBS), 8372/tcp, 6834/tcp, 2747/tcp (fjippol-swrly), 4234/tcp, 9932/tcp, 7645/tcp, 6063/tcp, 9889/tcp (Port for Cable network related data proxy or repeater), 7709/tcp, 3278/tcp (LKCM Server), 7038/tcp, 7143/tcp, 6842/tcp (Netmo HTTP), 5767/tcp (OpenMail Suer Agent Layer (Secure)), 4746/tcp, 1901/tcp (Fujitsu ICL Terminal Emulator Program A), 3194/tcp (Rockstorm MAG protocol), 858/tcp, 8977/tcp, 7051/tcp, 6417/tcp (Faxcom Message Service), 5464/tcp (Quail Networks Object Broker), 3682/tcp (EMC SmartPackets-MAPI), 7341/tcp, 5032/tcp, 2724/tcp (qotps), 1966/tcp (Slush), 7627/tcp (SOAP Service Port), 2882/tcp (NDTP), 2249/tcp (RISO File Manager Protocol), 4138/tcp (nettest), 3036/tcp (Hagel DUMP), 5189/tcp, 2286/tcp (NAS-Metering), 1082/tcp (AMT-ESD-PROT), 3082/tcp (TL1-RAW), 5110/tcp, 1144/tcp (Fusion Script), 1521/tcp (nCube License Manager), 1573/tcp (itscomm-ns), 2299/tcp (PC Telecommute), 3568/tcp (Object Access Protocol over SSL), 6925/tcp, 1599/tcp (simbaservices), 7853/tcp, 785/tcp, 2719/tcp (Scan & Change), 1170/tcp (AT+C License Manager), 6013/tcp, 2405/tcp (TRC Netpoll), 4349/tcp (File System Port Map), 4519/tcp, 7377/tcp, 5564/tcp, 2741/tcp (TSB), 2594/tcp (Data Base Server), 4592/tcp, 2998/tcp (Real Secure), 3279/tcp (admind), 7196/tcp, 4418/tcp, 3093/tcp (Jiiva RapidMQ Center), 9170/tcp, 6918/tcp, 7912/tcp, 9839/tcp, 2759/tcp (APOLLO GMS), 6872/tcp, 9657/tcp, 3771/tcp (RTP Paging Port), 7824/tcp, 9347/tcp, 7541/tcp, 6855/tcp, 1369/tcp (GlobalView to Unix Shell), 5180/tcp, 3114/tcp (CCM AutoDiscover), 3957/tcp (MQEnterprise Broker), 24193/tcp, 9063/tcp, 2468/tcp (qip_msgd), 8244/tcp, 5736/tcp, 7792/tcp, 4573/tcp, 3884/tcp (SofTrack Metering), 8624/tcp, 3193/tcp (SpanDataPort), 7506/tcp, 2965/tcp (BULLANT RAP), 5705/tcp, 5925/tcp, 5412/tcp (Continuus), 7930/tcp, 7836/tcp, 6372/tcp, 164/tcp (CMIP/TCP Agent), 2625/tcp (Blwnkl Port), 2562/tcp (Delibo), 1968/tcp (LIPSinc), 9614/tcp (iADT Protocol over TLS), 2459/tcp (Community), 9015/tcp, 7211/tcp, 9474/tcp, 1809/tcp (Oracle-VP1), 7166/tcp (Aruba eDiscovery Server), 2297/tcp (D2K DataMover 1), 4135/tcp (Classic Line Database Server Attach), 1302/tcp (CI3-Software-2), 8395/tcp, 4307/tcp (Visicron Videoconference Service), 6645/tcp, 3034/tcp (Osmosis / Helix (R) AEEA Port), 2173/tcp (MS Firewall Replication), 6644/tcp, 2667/tcp (Alarm Clock Server), 7621/tcp, 6248/tcp, 7944/tcp, 9958/tcp, 2192/tcp (ASDIS software management), 2834/tcp (EVTP), 7672/tcp (iMQ STOMP Server), 6747/tcp, 913/tcp (APEX endpoint-relay service), 4453/tcp (NSS Alert Manager), 4760/tcp, 2377/tcp, 9874/tcp, 3894/tcp (SyAM Agent Port), 9032/tcp, 9656/tcp, 7720/tcp (MedImage Portal), 9670/tcp, 1169/tcp (TRIPWIRE), 4656/tcp, 1207/tcp (MetaSage), 8571/tcp, 7302/tcp, 8748/tcp, 427/tcp (Server Location), 7300/tcp (-7359   The Swiss Exchange), 618/tcp (DEI-ICDA), 7325/tcp, 7886/tcp, 1739/tcp (webaccess), 6452/tcp, 5649/tcp, 4219/tcp, 5992/tcp (Consul InSight Security), 5870/tcp, 6883/tcp, 1612/tcp (NetBill Transaction Server), 9427/tcp, 6115/tcp (Xic IPC Service), 6445/tcp (Grid Engine Execution Service), 4763/tcp, 5737/tcp, 9472/tcp, 9750/tcp (Board M.I.T. Synchronous Collaboration), 2388/tcp (MYNAH AutoStart), 7329/tcp, 5726/tcp (Microsoft Lifecycle Manager Secure Token Service), 9804/tcp, 7384/tcp, 6870/tcp, 9545/tcp, 4893/tcp, 8239/tcp, 7168/tcp, 746/tcp, 3439/tcp (HRI Interface Port), 8727/tcp, 1468/tcp (CSDM), 2689/tcp (FastLynx), 693/tcp (almanid Connection Endpoint), 2320/tcp (Siebel NS), 7837/tcp, 4165/tcp (ArcLink over Ethernet), 4635/tcp, 884/tcp, 1921/tcp (NoAdmin), 1830/tcp (Oracle Net8 CMan Admin), 4653/tcp, 2253/tcp (DTV Channel Request), 5141/tcp, 58558/tcp, 8751/tcp, 7308/tcp, 8648/tcp, 3981/tcp (Starfish System Admin), 964/tcp, 6004/tcp, 3523/tcp (Odeum Serverlink), 7544/tcp (FlowAnalyzer DisplayServer), 1005/tcp, 2962/tcp (IPH-POLICY-CLI), 7453/tcp, 6327/tcp, 2157/tcp (Xerox Network Document Scan Protocol), 3462/tcp (EDM STD Notify), 3157/tcp (CCC Listener Port), 4825/tcp, 475/tcp (tcpnethaspsrv), 5718/tcp (DPM Communication Server), 4299/tcp, 5658/tcp, 418/tcp (Hyper-G), 8120/tcp, 2429/tcp (FT-ROLE), 9643/tcp, 2445/tcp (DTN1), 8798/tcp, 7223/tcp, 9120/tcp, 2383/tcp (Microsoft OLAP), 9502/tcp, 6938/tcp, 8926/tcp, 5199/tcp, 929/tcp, 6813/tcp, 158/tcp (PCMail Server), 9972/tcp, 59570/tcp, 33167/tcp, 10697/tcp, 790/tcp, 1120/tcp (Battle.net File Transfer Protocol), 5813/tcp (ICMPD), 2749/tcp (fjippol-cnsl), 1469/tcp (Active Analysis Limited License Manager), 6302/tcp, 8771/tcp, 150/tcp (SQL-NET), 6201/tcp, 8339/tcp, 4132/tcp (NUTS Daemon), 775/tcp (entomb), 3548/tcp (Interworld), 6035/tcp, 6746/tcp, 495/tcp (intecourier), 649/tcp (Cadview-3d - streaming 3d models over the internet), 349/tcp (mftp), 3863/tcp (asap tcp port), 672/tcp (VPPS-QUA), 1817/tcp (RKB-OSCS), 3690/tcp (Subversion), 3766/tcp, 6852/tcp, 5480/tcp, 8371/tcp, 5653/tcp, 2825/tcp, 57619/tcp, 2112/tcp (Idonix MetaNet), 8541/tcp, 8317/tcp, 6110/tcp (HP SoftBench CM), 2421/tcp (G-Talk), 6783/tcp, 4305/tcp (better approach to mobile ad-hoc networking), 810/tcp (FCP), 6168/tcp, 1116/tcp (ARDUS Control), 3726/tcp (Xyratex Array Manager), 2827/tcp (slc ctrlrloops), 8463/tcp, 9891/tcp, 9420/tcp, 6752/tcp, 322/tcp (RTSPS), 8057/tcp (Senomix Timesheets Client [1 year assignment]), 6950/tcp, 2217/tcp (GoToDevice Device Management), 4802/tcp (Icona License System Server), 6336/tcp, 9151/tcp, 849/tcp, 9459/tcp, 9212/tcp (Server View dbms access [January 2005]), 4341/tcp (LISP Data Packets), 9789/tcp, 8504/tcp, 839/tcp, 8107/tcp, 8413/tcp, 2864/tcp (main 5001 cmd), 6758/tcp, 3474/tcp (TSP Automation), 5806/tcp, 3722/tcp (Xserve RAID), 668/tcp (MeComm), 9719/tcp, 3287/tcp (DIRECTVDATA), 6851/tcp, 4032/tcp (VERITAS Authorization Service), 4410/tcp (RIB iTWO Application Server), 5791/tcp, 351/tcp (bhoetty (added 5/21/97)), 6736/tcp, 5704/tcp, 5913/tcp (Automatic Dependent Surveillance), 4355/tcp (QSNet Workstation), 8441/tcp, 3614/tcp (Invensys Sigma Port), 9763/tcp, 6803/tcp, 3166/tcp (Quest Spotlight Out-Of-Process Collector), 9818/tcp, 8136/tcp, 7148/tcp, 6258/tcp, 4773/tcp, 3786/tcp (VSW Upstrigger port), 6170/tcp, 4902/tcp (magicCONROL RF and Data Interface), 3172/tcp (SERVERVIEW-RM), 5746/tcp (fcopys-server), 5460/tcp, 7232/tcp, 2934/tcp (4-TIER OPM CLI), 7809/tcp, 6743/tcp, 6447/tcp, 1019/tcp, 1291/tcp (SEAGULLLMS), 8045/tcp, 6130/tcp, 5253/tcp (Kohler Power Device Protocol), 3734/tcp (Synel Data Collection Port), 2129/tcp (cs-live.com), 1747/tcp (ftrapid-2), 7561/tcp, 1743/tcp (Cinema Graphics License Manager), 6717/tcp, 3993/tcp (BindView-Agent), 1462/tcp (World License Manager), 9915/tcp, 6272/tcp, 224/tcp (masqdialer), 5349/tcp (STUN Behavior Discovery over TLS), 9583/tcp, 5640/tcp, 2099/tcp (H.225.0 Annex G), 5092/tcp, 1537/tcp (isi-lm), 4248/tcp, 5766/tcp (OpenMail NewMail Server), 6493/tcp, 2639/tcp (AMInet), 8430/tcp, 2358/tcp (Futrix), 7769/tcp, 4827/tcp (HTCP), 4473/tcp, 2539/tcp (VSI Admin), 9107/tcp (AstergateFax Control Service), 9139/tcp, 9837/tcp, 5303/tcp (HA cluster probing), 7804/tcp, 2373/tcp (Remograph License Manager), 2713/tcp (Raven Trinity Broker Service), 4502/tcp, 3488/tcp (FS Remote Host Server), 4536/tcp (Event Heap Server SSL), 6088/tcp, 6127/tcp, 8676/tcp, 2742/tcp (TSB2), 4695/tcp, 5723/tcp (Operations Manager - Health Service), 1366/tcp (Novell NetWare Comm Service Platform), 6866/tcp, 9414/tcp, 8870/tcp, 8547/tcp, 9173/tcp, 893/tcp, 7353/tcp, 3258/tcp (Ivecon Server Port), 9362/tcp, 9343/tcp (MpIdcMgr), 6242/tcp (JEOL Network Services Data Transport Protocol 2), 7989/tcp, 3440/tcp (Net Steward Mgmt Console), 557/tcp (openvms-sysipc), 3812/tcp (netO WOL Server), 3824/tcp (Compute Pool Policy), 681/tcp (entrust-aams), 1426/tcp (Satellite-data Acquisition System 1), 8711/tcp, 4625/tcp, 3745/tcp (GWRTC Call Port), 2436/tcp (TOP/X), 5217/tcp, 7026/tcp, 9496/tcp, 2392/tcp (Tactical Auth), 155/tcp (NETSC), 7398/tcp, 113/tcp (Authentication Service), 2528/tcp (NCR CCL), 712/tcp (TBRPF), 7354/tcp, 9448/tcp, 4108/tcp (ACCEL), 2897/tcp (Citrix RTMP), 3515/tcp (MUST Backplane), 5851/tcp, 35105/tcp, 5337/tcp, 142/tcp (Britton-Lee IDM), 1908/tcp (Dawn), 1870/tcp (SunSCALAR DNS Service), 9676/tcp, 6431/tcp, 5581/tcp (T-Mobile SMS Protocol Message 1), 2195/tcp, 6859/tcp, 6860/tcp, 9278/tcp (Pegasus GPS Platform), 3891/tcp (Oracle RTC-PM port), 1360/tcp (MIMER), 2822/tcp (ka0wuc), 8991/tcp (webmail HTTPS service), 6770/tcp (PolyServe http), 2800/tcp (ACC RAID), 8007/tcp, 5979/tcp, 7814/tcp, 2872/tcp (RADIX), 6184/tcp, 5632/tcp (pcANYWHEREstat), 2613/tcp (SMNTUBootstrap), 6757/tcp, 1175/tcp (Dossier Server), 9881/tcp, 4927/tcp, 3779/tcp (Cognima Replication), 2887/tcp (aironet), 5846/tcp, 1547/tcp (laplink), 8864/tcp, 8655/tcp, 2308/tcp (sdhelp), 9658/tcp, 7149/tcp, 4231/tcp, 734/tcp, 1595/tcp (radio), 4868/tcp (Photon Relay), 6021/tcp, 2454/tcp (IndX-DDS), 9639/tcp, 8454/tcp, 7981/tcp (Spotlight on SQL Server Desktop Collect), 4857/tcp, 2294/tcp (Konshus License Manager (FLEX)), 7434/tcp, 7068/tcp, 5310/tcp (Outlaws), 6157/tcp, 2636/tcp (Solve), 5780/tcp (Visual Tag System RPC), 8632/tcp, 6553/tcp, 323/tcp, 4218/tcp, 9688/tcp, 173/tcp (Xyplex), 4816/tcp, 9655/tcp, 8979/tcp, 8308/tcp, 1928/tcp (Expnd Maui Srvr Dscovr), 3932/tcp (Dynamic Site System), 9624/tcp, 8286/tcp, 988/tcp, 8105/tcp, 5081/tcp (SDL - Ent Trans Server), 3119/tcp (D2000 Kernel Port), 9164/tcp (apani5), 7028/tcp, 9172/tcp, 4792/tcp, 3518/tcp (Artifact Message Server), 5809/tcp, 594/tcp (TPIP), 9623/tcp, 3971/tcp (LANrev Server), 5171/tcp, 4126/tcp (Data Domain Replication Service), 5280/tcp (Bidirectional-streams Over Synchronous HTTP (BOSH)), 3550/tcp (Secure SMPP), 8672/tcp, 5681/tcp (Net-coneX Control Protocol), 7998/tcp, 8301/tcp (Amberon PPC/PPS), 8406/tcp, 6892/tcp, 6473/tcp, 6571/tcp, 4301/tcp (Diagnostic Data), 3996/tcp (abcsoftware-01), 1554/tcp (CACI Products Company License Manager), 3132/tcp (Microsoft Business Rule Engine Update Service), 924/tcp, 5441/tcp, 656/tcp (SPMP), 365/tcp (DTK), 2634/tcp (PK Electronics), 5456/tcp (APC 5456), 4152/tcp (iDigTech Multiplex), 4690/tcp (Prelude IDS message proto), 6557/tcp, 1672/tcp (netview-aix-12), 3508/tcp (Interaction Web), 9591/tcp, 5692/tcp, 7665/tcp, 880/tcp, 3828/tcp (Netadmin Systems Event Handler), 6483/tcp (SunVTS RMI), 4990/tcp (BusySync Calendar Synch. Protocol), 5679/tcp (Direct Cable Connect Manager), 9546/tcp, 5077/tcp, 6307/tcp, 1126/tcp (HP VMM Agent), 8589/tcp, 6784/tcp, 6810/tcp, 3661/tcp (IBM Tivoli Directory Service using SSL), 8184/tcp (Remote iTach Connection), 6243/tcp (JEOL Network Services Data Transport Protocol 3), 8924/tcp, 8527/tcp, 2850/tcp (MetaConsole), 8241/tcp, 768/tcp, 7929/tcp, 7109/tcp, 6207/tcp, 4241/tcp, 8248/tcp, 7498/tcp, 330/tcp, 2920/tcp (roboEDA), 8004/tcp, 5919/tcp, 6380/tcp, 4879/tcp, 4037/tcp (RaveHD network control), 43307/tcp, 2430/tcp (venus), 5186/tcp, 990/tcp (ftp protocol, control, over TLS/SSL), 1437/tcp (Tabula), 1352/tcp (Lotus Note), 193/tcp (Spider Remote Monitoring Protocol), 688/tcp (ApplianceWare managment protocol), 9361/tcp, 1220/tcp (QT SERVER ADMIN), 9125/tcp, 603/tcp (IDXP), 2633/tcp (InterIntelli), 7501/tcp (HP OpenView Bus Daemon), 2483/tcp (Oracle TTC), 4236/tcp, 773/tcp (submit), 1584/tcp (tn-tl-fd2), 3441/tcp (OC Connect Client), 5863/tcp (PlanetPress Suite Messeng), 514/tcp (cmd), 4718/tcp, 3554/tcp (Quest Notification Server), 912/tcp (APEX relay-relay service), 9468/tcp, 9179/tcp, 6219/tcp, 7425/tcp, 5528/tcp, 1593/tcp (mainsoft-lm), 3285/tcp (Plato), 3767/tcp (ListMGR Port), 7269/tcp, 5848/tcp, 1583/tcp (simbaexpress), 1079/tcp (ASPROVATalk), 1533/tcp (Virtual Places Software), 3871/tcp (Avocent DS Authorization), 8469/tcp, 7104/tcp, 5112/tcp (PeerMe Msg Cmd Service), 8594/tcp, 5124/tcp, 2270/tcp (starSchool), 4835/tcp, 5336/tcp, 9377/tcp, 5031/tcp, 6245/tcp, 7950/tcp, 8618/tcp, 2658/tcp (SNS Admin), 2196/tcp, 5348/tcp, 8485/tcp, 1767/tcp (cft-6), 5082/tcp (Qpur Communication Protocol), 7460/tcp, 1063/tcp (KyoceraNetDev), 6523/tcp, 4259/tcp, 3171/tcp (SERVERVIEW-GF), 6142/tcp (Aspen Technology License Manager), 8601/tcp, 1854/tcp (Buddy Draw), 5228/tcp (HP Virtual Room Service), 5113/tcp, 1948/tcp (eye2eye), 3139/tcp (Incognito Rendez-Vous), 7726/tcp (FreezeX Console Service), 8975/tcp, 4375/tcp (Toltec EasyShare), 1436/tcp (Satellite-data Acquisition System 2), 207/tcp (AppleTalk Unused), 4945/tcp, 2231/tcp (WiMAX ASN Control Plane Protocol), 2149/tcp (ACPTSYS), 5921/tcp, 8609/tcp, 2103/tcp (Zephyr serv-hm connection), 9505/tcp, 883/tcp, 7113/tcp, 6856/tcp, 9228/tcp, 9769/tcp, 7233/tcp, 9722/tcp, 5165/tcp (ife_1corp), 4451/tcp (CTI System Msg), 3826/tcp (Wormux server), 1977/tcp (TCO Address Book), 4663/tcp (Note It! Message Service), 6966/tcp (swispol), 8908/tcp, 8471/tcp (PIM over Reliable Transport), 2076/tcp (Newlix JSPConfig), 7703/tcp, 764/tcp (omserv), 4131/tcp (Global Maintech Stars), 736/tcp, 8426/tcp, 5380/tcp, 6340/tcp, 236/tcp, 5647/tcp, 7823/tcp, 5974/tcp, 3108/tcp (Geolocate protocol), 8061/tcp, 9334/tcp, 2623/tcp (LMDP), 8764/tcp (OPENQUEUE), 7868/tcp, 7303/tcp, 631/tcp (IPP (Internet Printing Protocol)), 5444/tcp, 8836/tcp, 1768/tcp (cft-7), 9136/tcp, 1794/tcp (cera-bcm), 5261/tcp, 4471/tcp, 8903/tcp, 1891/tcp (ChildKey Notification), 9205/tcp (WAP vCal), 1445/tcp (Proxima License Manager), 5501/tcp (fcp-addr-srvr2), 926/tcp, 2964/tcp (BULLANT SRAP), 769/tcp (vid), 5471/tcp, 7486/tcp, 4561/tcp, 8361/tcp, 229/tcp, 5382/tcp, 9498/tcp, 478/tcp (spsc), 5729/tcp (Openmail User Agent Layer), 6780/tcp, 10900/tcp, 6458/tcp, 1649/tcp (kermit), 5702/tcp, 4871/tcp (Wired), 8490/tcp, 2809/tcp (CORBA LOC), 5287/tcp, 4063/tcp (Ice Firewall Traversal Service (TCP)), 7437/tcp (Faximum), 8661/tcp, 9855/tcp, 4818/tcp, 4549/tcp (Aegate PMR Service), 5033/tcp, 4541/tcp, 2171/tcp (MS Firewall Storage), 8119/tcp, 304/tcp, 1141/tcp (User Message Service), 8086/tcp (Distributed SCADA Networking Rendezvous Port), 8654/tcp, 1955/tcp (ABR-Secure Data (diskbridge)), 5978/tcp, 4741/tcp (Luminizer Manager), 3747/tcp (LXPRO.COM LinkTest SSL), 39833/tcp, 897/tcp, 6048/tcp, 2191/tcp (TvBus Messaging), 5047/tcp, 1457/tcp (Valisys License Manager), 9981/tcp, 9104/tcp (PeerWire), 9893/tcp, 2330/tcp (TSCCHAT), 5586/tcp, 5697/tcp, 3207/tcp (Veritas Authentication Port), 8163/tcp, 2718/tcp (PN REQUESTER 2), 5285/tcp, 4170/tcp (SMPTE Content Synchonization Protocol), 6449/tcp, 8116/tcp (Check Point Clustering), 3928/tcp (PXE NetBoot Manager), 866/tcp, 2757/tcp (CNRP), 7589/tcp, 473/tcp (hybrid-pop), 6812/tcp, 7993/tcp, 7239/tcp, 5330/tcp, 9112/tcp, 5547/tcp, 5644/tcp, 3646/tcp (XSS Server Port).
      
BHD Honeypot
Port scan
2020-02-01

Port scan from IP: 81.22.45.250 detected by psad.
BHD Honeypot
Port scan
2019-12-31

In the last 24h, the attacker (81.22.45.250) attempted to scan 1417 ports.
The following ports have been scanned: 52667/tcp, 3352/tcp (Scalable SQL), 7879/tcp, 8005/tcp (MXI Generation II for z/OS), 54070/tcp, 7633/tcp (PMDF Management), 9544/tcp, 11277/tcp, 6189/tcp, 6495/tcp, 58138/tcp, 23392/tcp, 55589/tcp, 22875/tcp, 58049/tcp, 11550/tcp, 7700/tcp (EM7 Secure Communications), 10005/tcp (EMC Replication Manager Server), 9990/tcp (OSM Applet Server), 6016/tcp, 1515/tcp (ifor-protocol), 10147/tcp, 32926/tcp, 12322/tcp (Warehouse Monitoring Syst), 22707/tcp, 7468/tcp, 6530/tcp, 8088/tcp (Radan HTTP), 4468/tcp, 56565/tcp, 4664/tcp (Rimage Messaging Server), 36831/tcp, 41434/tcp, 45779/tcp, 5406/tcp (Systemics Sox), 21218/tcp, 9337/tcp, 61537/tcp, 4178/tcp (StorMan), 39339/tcp, 9009/tcp (Pichat Server), 9072/tcp, 10188/tcp, 10424/tcp, 9110/tcp, 33039/tcp, 10921/tcp, 9499/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 8500/tcp (Flight Message Transfer Protocol), 2224/tcp (Easy Flexible Internet/Multiplayer Games), 12121/tcp (NuPaper Session Service), 3396/tcp (Printer Agent), 3204/tcp (Network Watcher DB Access), 13876/tcp, 8777/tcp, 662/tcp (PFTP), 38912/tcp, 6233/tcp, 56269/tcp, 2300/tcp (CVMMON), 9662/tcp, 55795/tcp, 6636/tcp, 15991/tcp, 8181/tcp, 680/tcp (entrust-aaas), 8693/tcp, 5425/tcp (Beyond Remote Command Channel), 63798/tcp, 64217/tcp, 54038/tcp, 24829/tcp, 13381/tcp, 39616/tcp, 25798/tcp, 3323/tcp, 9090/tcp (WebSM), 6306/tcp (Unified Fabric Management Protocol), 7100/tcp (X Font Service), 8862/tcp, 4850/tcp (Sun App Server - NA), 34933/tcp, 27108/tcp, 12206/tcp, 5545/tcp, 6800/tcp, 3778/tcp (Cutler-Hammer IT Port), 1414/tcp (IBM MQSeries), 57952/tcp, 9443/tcp (WSO2 Tungsten HTTPS), 10011/tcp, 31762/tcp, 6610/tcp, 50089/tcp, 3390/tcp (Distributed Service Coordinator), 30001/tcp (Pago Services 1), 36363/tcp, 30832/tcp, 32130/tcp, 1012/tcp, 4591/tcp (HRPD L3T (AT-AN)), 3364/tcp (Creative Server), 63391/tcp, 2987/tcp (identify), 1910/tcp (UltraBac Software communications port), 60001/tcp, 4119/tcp (Assuria Log Manager), 59999/tcp, 9514/tcp, 8011/tcp, 8662/tcp, 31122/tcp, 5353/tcp (Multicast DNS), 1031/tcp (BBN IAD), 9132/tcp, 32588/tcp, 3303/tcp (OP Session Client), 42387/tcp, 9578/tcp, 34344/tcp, 1938/tcp (JetVWay Client Port), 6169/tcp, 5216/tcp, 8744/tcp, 8087/tcp (Simplify Media SPP Protocol), 22222/tcp, 12832/tcp, 56983/tcp, 13679/tcp, 8148/tcp (i-SDD file transfer), 60006/tcp, 14144/tcp, 6300/tcp (BMC GRX), 40147/tcp, 10024/tcp, 6397/tcp, 15151/tcp, 1628/tcp (LonTalk normal), 10513/tcp, 4041/tcp (Rocketeer-Houston), 8268/tcp, 33339/tcp, 6988/tcp, 8400/tcp (cvd), 20539/tcp, 2083/tcp (Secure Radius Service), 10021/tcp, 61441/tcp, 3492/tcp (TVDUM Tray Port), 50918/tcp, 50208/tcp, 2281/tcp (LNVCONSOLE), 9300/tcp (Virtual Racing Service), 24605/tcp, 63500/tcp, 4008/tcp (NetCheque accounting), 30002/tcp (Pago Services 2), 30000/tcp, 2122/tcp (CauPC Remote Control), 4323/tcp (TRIM ICE Service), 28061/tcp, 44947/tcp, 12111/tcp, 15631/tcp, 1024/tcp (Reserved), 9040/tcp, 7552/tcp, 16145/tcp, 31640/tcp, 8348/tcp, 12443/tcp, 7352/tcp, 10648/tcp, 2512/tcp (Citrix IMA), 6006/tcp, 23391/tcp, 3343/tcp (MS Cluster Net), 10412/tcp, 5599/tcp (Enterprise Security Remote Install), 27992/tcp, 28559/tcp, 6030/tcp, 3407/tcp (LDAP admin server port), 6052/tcp, 10354/tcp, 48252/tcp, 35002/tcp, 19675/tcp, 9210/tcp (OMA Mobile Location Protocol), 7778/tcp (Interwise), 8794/tcp, 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 38671/tcp, 11326/tcp, 6203/tcp, 9201/tcp (WAP session service), 7474/tcp, 7575/tcp, 8048/tcp, 8663/tcp, 10806/tcp, 7980/tcp (Quest Vista), 50076/tcp, 22704/tcp, 31313/tcp, 12194/tcp, 1035/tcp (MX-XR RPC), 9873/tcp, 16565/tcp, 42825/tcp, 10667/tcp, 8735/tcp, 8068/tcp, 6666/tcp, 5152/tcp (ESRI SDE Instance Discovery), 4932/tcp, 10533/tcp, 20001/tcp (MicroSAN), 4888/tcp, 33902/tcp, 6729/tcp, 9685/tcp, 23805/tcp, 3404/tcp, 1040/tcp (Netarx Netcare), 6660/tcp, 60922/tcp, 7974/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 9020/tcp (TAMBORA), 1096/tcp (Common Name Resolution Protocol), 63388/tcp, 8267/tcp, 51070/tcp, 3387/tcp (Back Room Net), 5225/tcp (HP Server), 6093/tcp, 9098/tcp, 10040/tcp, 13495/tcp, 6425/tcp, 33911/tcp, 31729/tcp, 5598/tcp (MCT Market Data Feed), 33033/tcp, 28543/tcp, 5493/tcp, 22022/tcp, 5758/tcp, 30257/tcp, 14209/tcp, 19548/tcp, 4607/tcp, 26368/tcp, 13208/tcp, 13627/tcp, 3187/tcp (Open Design Listen Port), 50005/tcp, 2050/tcp (Avaya EMB Config Port), 6967/tcp, 5254/tcp, 5407/tcp (Foresyte-Clear), 4881/tcp, 13899/tcp, 10346/tcp, 12768/tcp, 4426/tcp (SMARTS Beacon Port), 10769/tcp, 7791/tcp, 5560/tcp, 28091/tcp, 65535/tcp, 41531/tcp, 6000/tcp (-6063/udp   X Window System), 27939/tcp, 42729/tcp, 31831/tcp, 27885/tcp, 3267/tcp (IBM Dial Out), 3379/tcp (SOCORFS), 4295/tcp, 14141/tcp (VCS Application), 4882/tcp, 13715/tcp, 8821/tcp, 55859/tcp, 7480/tcp, 54920/tcp, 9998/tcp (Distinct32), 11266/tcp, 5333/tcp, 7285/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 30556/tcp, 1090/tcp (FF Fieldbus Message Specification), 8600/tcp (Surveillance Data), 5657/tcp, 41606/tcp, 58047/tcp, 11159/tcp, 9301/tcp, 5244/tcp, 11056/tcp, 2389/tcp (OpenView Session Mgr), 7189/tcp, 6020/tcp, 9497/tcp, 10907/tcp, 25293/tcp, 6455/tcp (SKIP Certificate Receive), 994/tcp (irc protocol over TLS/SSL), 5722/tcp (Microsoft DFS Replication Service), 62329/tcp, 9918/tcp, 2080/tcp (Autodesk NLM (FLEXlm)), 60000/tcp, 49903/tcp, 9989/tcp, 28795/tcp, 4976/tcp, 5561/tcp, 33576/tcp, 6604/tcp, 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 56789/tcp, 52814/tcp, 5656/tcp, 22251/tcp, 4315/tcp, 3302/tcp (MCS Fastmail), 8304/tcp, 64103/tcp, 23518/tcp, 26972/tcp, 19772/tcp, 3174/tcp (ARMI Server), 63668/tcp, 13900/tcp, 9129/tcp, 14730/tcp, 4012/tcp (PDA Gate), 3535/tcp (MS-LA), 38047/tcp, 6969/tcp (acmsoda), 8060/tcp, 61500/tcp, 9225/tcp, 4136/tcp (Classic Line Database Server Request), 10015/tcp, 45113/tcp, 1098/tcp (RMI Activation), 8389/tcp, 51083/tcp, 10204/tcp, 9675/tcp, 50505/tcp, 9080/tcp (Groove GLRPC), 43171/tcp, 17009/tcp, 4000/tcp (Terabase), 6467/tcp, 3452/tcp (SABP-Signalling Protocol), 8202/tcp, 525/tcp (timeserver), 8154/tcp, 9905/tcp, 867/tcp, 41126/tcp, 44967/tcp, 1213/tcp (MPC LIFENET), 19210/tcp, 7982/tcp (Spotlight on SQL Server Desktop Agent), 4321/tcp (Remote Who Is), 4700/tcp (NetXMS Agent), 22143/tcp, 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 2475/tcp (ACE Server), 57681/tcp, 6879/tcp, 63006/tcp, 5769/tcp (x509solutions Internal CA), 12965/tcp, 47133/tcp, 1080/tcp (Socks), 37215/tcp, 6100/tcp (SynchroNet-db), 51749/tcp, 4/tcp, 3111/tcp (Web Synchronous Services), 19924/tcp, 24219/tcp, 9091/tcp (xmltec-xmlmail), 4202/tcp, 8830/tcp, 6943/tcp, 10001/tcp (SCP Configuration), 4102/tcp (Braille protocol), 5207/tcp, 7391/tcp (mind-file system server), 6235/tcp, 14001/tcp (SUA), 5764/tcp, 3386/tcp (GPRS Data), 23456/tcp (Aequus Service), 9595/tcp (Ping Discovery Service), 16149/tcp, 6716/tcp, 62526/tcp, 5296/tcp, 10835/tcp, 4302/tcp (Diagnostic Data Control), 16753/tcp, 8981/tcp, 4412/tcp, 8179/tcp, 63366/tcp, 3200/tcp (Press-sense Tick Port), 3669/tcp (CA SAN Switch Management), 31537/tcp, 43159/tcp, 5350/tcp (NAT-PMP Status Announcements), 4539/tcp, 51000/tcp, 5378/tcp, 16170/tcp, 7392/tcp (mrss-rendezvous server), 5006/tcp (wsm server), 5050/tcp (multimedia conference control tool), 1887/tcp (FileX Listening Port), 7620/tcp, 7111/tcp, 9444/tcp (WSO2 ESB Administration Console HTTPS), 6212/tcp, 5511/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 13001/tcp, 9880/tcp, 3666/tcp (IBM eServer PAP), 50491/tcp, 63912/tcp, 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 56943/tcp, 22950/tcp, 9324/tcp, 7036/tcp, 6129/tcp, 7785/tcp, 1313/tcp (BMC_PATROLDB), 8529/tcp, 33389/tcp, 33890/tcp, 23698/tcp, 8861/tcp, 2040/tcp (lam), 2186/tcp (Guy-Tek Automated Update Applications), 55352/tcp, 6983/tcp, 8128/tcp (PayCash Online Protocol), 50488/tcp, 3600/tcp (text relay-answer), 41292/tcp, 13636/tcp, 5070/tcp (VersaTrans Server Agent Service), 6612/tcp, 4413/tcp, 38800/tcp, 10111/tcp, 944/tcp, 8081/tcp (Sun Proxy Admin Service), 3131/tcp (Net Book Mark), 9970/tcp, 5785/tcp (3PAR Inform Remote Copy), 9025/tcp (Secure Web Access - 3), 9036/tcp, 12122/tcp, 1200/tcp (SCOL), 4427/tcp (Drizzle database server), 12638/tcp, 12705/tcp, 34945/tcp, 6738/tcp, 11144/tcp, 5905/tcp, 24607/tcp, 12166/tcp, 1686/tcp (cvmon), 64295/tcp, 1717/tcp (fj-hdnet), 17000/tcp, 5707/tcp, 8137/tcp, 7851/tcp, 52563/tcp, 54390/tcp, 51484/tcp, 7580/tcp, 63219/tcp, 30385/tcp, 1128/tcp (SAPHostControl over SOAP/HTTP), 2516/tcp (Main Control), 6240/tcp, 1086/tcp (CPL Scrambler Logging), 62105/tcp, 1243/tcp (SerialGateway), 3900/tcp (Unidata UDT OS), 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 2797/tcp (esp-encap), 14157/tcp, 7388/tcp, 2923/tcp (WTA-WSP-WTP-S), 3378/tcp (WSICOPY), 10274/tcp, 63411/tcp, 6916/tcp, 2533/tcp (SnifferServer), 7565/tcp, 40618/tcp, 16173/tcp, 8353/tcp, 29613/tcp, 55340/tcp, 9716/tcp, 1875/tcp (westell stats), 8682/tcp, 38572/tcp, 49599/tcp, 9704/tcp, 5396/tcp, 7999/tcp (iRDMI2), 1777/tcp (powerguardian), 33397/tcp, 7677/tcp (Sun App Server - HTTPS), 6232/tcp, 1089/tcp (FF Annunciation), 1374/tcp (EPI Software Systems), 62710/tcp, 9555/tcp (Trispen Secure Remote Access), 36166/tcp, 1055/tcp (ANSYS - License Manager), 33789/tcp, 4472/tcp, 9600/tcp (MICROMUSE-NCPW), 37284/tcp, 29853/tcp, 9187/tcp, 12604/tcp, 47673/tcp, 47604/tcp, 13206/tcp, 854/tcp, 6178/tcp, 3371/tcp, 13733/tcp, 6262/tcp, 8300/tcp (Transport Management Interface), 1880/tcp (Gilat VSAT Control), 1476/tcp (clvm-cfg), 33893/tcp, 2888/tcp (SPCSDLOBBY), 31263/tcp, 7526/tcp, 33009/tcp, 32599/tcp, 3010/tcp (Telerate Workstation), 7776/tcp, 52793/tcp, 48311/tcp, 5669/tcp, 1070/tcp (GMRUpdateSERV), 3473/tcp (JAUGS N-G Remotec 2), 28059/tcp, 9758/tcp, 3917/tcp (AFT multiplex port), 5594/tcp, 8109/tcp, 8307/tcp, 15/tcp, 12727/tcp, 55014/tcp, 11484/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 15288/tcp, 9494/tcp, 11172/tcp (OEM cacao JMX-remoting access point), 81/tcp, 13259/tcp, 5654/tcp, 4080/tcp (Lorica inside facing), 9797/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6900/tcp, 8002/tcp (Teradata ORDBMS), 1676/tcp (netcomm1), 10134/tcp, 6656/tcp (Emergency Message Control Service), 7/tcp (Echo), 7157/tcp, 8963/tcp, 38009/tcp, 37749/tcp, 1026/tcp (Calendar Access Protocol), 9596/tcp (Mercury Discovery), 57484/tcp, 936/tcp, 778/tcp, 10190/tcp, 3593/tcp (BP Model Debugger), 2015/tcp (cypress), 7994/tcp, 2770/tcp (Veronica), 39565/tcp, 30003/tcp, 57777/tcp, 5817/tcp, 25325/tcp, 61648/tcp, 8544/tcp, 6121/tcp (SPDY for a faster web), 63373/tcp, 6465/tcp, 11988/tcp, 34210/tcp, 5115/tcp (Symantec Autobuild Service), 7771/tcp, 8898/tcp, 8656/tcp, 10392/tcp, 60088/tcp, 9010/tcp (Secure Data Replicator Protocol), 7641/tcp, 4020/tcp (TRAP Port), 6690/tcp, 9669/tcp, 8520/tcp, 9556/tcp, 2568/tcp (SPAM TRAP), 62483/tcp, 5051/tcp (ITA Agent), 3355/tcp (Ordinox Dbase), 9920/tcp, 6566/tcp (SANE Control Port), 1428/tcp (Informatik License Manager), 29931/tcp, 5595/tcp, 23976/tcp, 57243/tcp, 6587/tcp, 10500/tcp, 35535/tcp, 9852/tcp, 8111/tcp, 8881/tcp, 33880/tcp, 55445/tcp, 6777/tcp, 6956/tcp, 19734/tcp, 58558/tcp, 14709/tcp, 3501/tcp (iSoft-P2P), 4242/tcp, 2424/tcp (KOFAX-SVR), 63389/tcp, 21463/tcp, 21193/tcp, 47693/tcp, 8345/tcp, 7083/tcp, 10408/tcp, 5551/tcp, 54186/tcp, 9701/tcp, 11204/tcp, 19501/tcp, 2176/tcp (Microsoft ActiveSync Remote API), 59570/tcp, 54153/tcp, 33210/tcp, 10697/tcp, 35851/tcp, 2/tcp (Management Utility), 7174/tcp (Clutild), 50853/tcp, 10238/tcp, 5856/tcp, 11166/tcp, 64952/tcp, 12345/tcp (Italk Chat System), 10/tcp, 5045/tcp (Open Settlement Protocol), 51524/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 10962/tcp, 1013/tcp, 10097/tcp, 18267/tcp, 41599/tcp, 13988/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 3102/tcp (SoftlinK Slave Mon Port), 8129/tcp (PayCash Wallet-Browser), 3360/tcp (KV Server), 5641/tcp, 10770/tcp, 5847/tcp, 1234/tcp (Infoseek Search Agent), 7634/tcp, 9702/tcp, 4828/tcp, 50000/tcp, 2481/tcp (Oracle GIOP), 2500/tcp (Resource Tracking system server), 4487/tcp (Protocol for Remote Execution over TCP), 14804/tcp, 11146/tcp, 9188/tcp, 12753/tcp (tsaf port), 8020/tcp (Intuit Entitlement Service and Discovery), 4389/tcp (Xandros Community Management Service), 26126/tcp, 10495/tcp, 9200/tcp (WAP connectionless session service), 102/tcp (ISO-TSAP Class 0), 10977/tcp, 38393/tcp, 7777/tcp (cbt), 8070/tcp, 12931/tcp, 5660/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 2626/tcp (gbjd816), 21027/tcp, 88/tcp (Kerberos), 9911/tcp (SYPECom Transport Protocol), 27777/tcp, 7417/tcp, 6310/tcp, 11003/tcp, 34304/tcp, 3244/tcp (OneSAF), 9901/tcp, 33891/tcp, 5121/tcp, 12001/tcp (IBM Enterprise Extender SNA COS Network Priority), 10099/tcp, 28878/tcp, 51525/tcp, 25555/tcp, 7000/tcp (file server itself), 13637/tcp, 2333/tcp (SNAPP), 40257/tcp, 53388/tcp, 8033/tcp (MindPrint), 2121/tcp (SCIENTIA-SSDB), 7750/tcp, 65000/tcp, 21141/tcp, 4489/tcp, 43794/tcp, 6611/tcp, 36877/tcp, 11526/tcp, 6132/tcp, 1697/tcp (rrisat), 61684/tcp, 8955/tcp, 45454/tcp, 1314/tcp (Photoscript Distributed Printing System), 18714/tcp, 23879/tcp, 17171/tcp, 19800/tcp, 20428/tcp, 5987/tcp (WBEM RMI), 16139/tcp, 7001/tcp (callbacks to cache managers), 5593/tcp, 9004/tcp, 63827/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 15001/tcp, 4443/tcp (Pharos), 3402/tcp (FXa Engine Network Port), 4574/tcp, 35105/tcp, 7376/tcp, 5453/tcp (SureBox), 36739/tcp, 24705/tcp, 5901/tcp, 7733/tcp, 8000/tcp (iRDMI), 29292/tcp, 46456/tcp, 27392/tcp, 108/tcp (SNA Gateway Access Server), 19191/tcp (OPSEC UAA), 9771/tcp, 10322/tcp, 4845/tcp (WordCruncher Remote Library Service), 6184/tcp, 11818/tcp, 5760/tcp, 8952/tcp, 30979/tcp, 7041/tcp, 60642/tcp, 2018/tcp (terminaldb), 46602/tcp, 2269/tcp (MIKEY), 51742/tcp, 1600/tcp (issd), 35842/tcp, 11128/tcp, 402/tcp (Genie Protocol), 8282/tcp, 8182/tcp (VMware Fault Domain Manager), 10022/tcp, 4794/tcp, 62275/tcp, 23885/tcp, 9321/tcp (guibase), 9994/tcp (OnLive-3), 57747/tcp, 5652/tcp, 6379/tcp, 6363/tcp, 25347/tcp, 5775/tcp, 4073/tcp (iRAPP Server Protocol), 6041/tcp, 2020/tcp (xinupageserver), 3365/tcp (Content Server), 42536/tcp, 7880/tcp (Pearson), 1486/tcp (nms_topo_serv), 2119/tcp (GSIGATEKEEPER), 8602/tcp, 41464/tcp, 2796/tcp (ac-tech), 7900/tcp (Multicast Event), 10736/tcp, 8590/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 3706/tcp (Real-Time Event Port), 47537/tcp, 10932/tcp, 8775/tcp, 23057/tcp, 26676/tcp, 5413/tcp (WWIOTALK), 6393/tcp, 8924/tcp, 5500/tcp (fcp-addr-srvr1), 7878/tcp, 46901/tcp, 13688/tcp, 2637/tcp (Import Document Service), 4482/tcp, 5810/tcp, 7725/tcp (Nitrogen Service), 5960/tcp, 1437/tcp (Tabula), 3380/tcp (SNS Channels), 1220/tcp (QT SERVER ADMIN), 33001/tcp, 9241/tcp, 5080/tcp (OnScreen Data Collection Service), 7699/tcp, 8059/tcp (Senomix Timesheets Client [1 year assignment]), 48769/tcp, 1528/tcp, 9800/tcp (WebDav Source Port), 15728/tcp, 33901/tcp, 2575/tcp (HL7), 23186/tcp, 52522/tcp, 13462/tcp, 3397/tcp (Cloanto License Manager), 3505/tcp (CCM communications port), 7591/tcp, 53389/tcp, 2874/tcp (DX Message Base Transport Protocol), 9029/tcp, 40400/tcp, 2046/tcp (sdfunc), 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 38516/tcp, 34016/tcp, 9002/tcp (DynamID authentication), 6161/tcp (PATROL Internet Srv Mgr), 26889/tcp, 2220/tcp (NetIQ End2End), 24922/tcp (Find Identification of Network Devices), 4821/tcp, 7479/tcp, 63839/tcp, 11173/tcp, 7890/tcp, 9991/tcp (OSM Event Server), 4589/tcp, 5082/tcp (Qpur Communication Protocol), 5468/tcp, 2661/tcp (OLHOST), 50664/tcp, 8039/tcp, 12052/tcp, 11412/tcp, 21509/tcp, 9999/tcp (distinct), 21210/tcp, 5807/tcp, 24656/tcp, 7181/tcp, 7681/tcp, 63627/tcp, 6116/tcp (XicTools License Manager Service), 5921/tcp, 20231/tcp, 21611/tcp, 8880/tcp (CDDBP), 7374/tcp, 4243/tcp, 7113/tcp, 6247/tcp, 9931/tcp, 4477/tcp, 49500/tcp, 11087/tcp, 22458/tcp, 9286/tcp, 3500/tcp (RTMP Port), 14032/tcp, 18754/tcp, 51511/tcp, 14638/tcp, 13527/tcp, 33380/tcp, 61054/tcp, 47250/tcp, 45270/tcp, 29331/tcp, 6294/tcp, 7152/tcp, 1798/tcp (Event Transfer Protocol), 30010/tcp, 7040/tcp, 2010/tcp (search), 456/tcp (macon-tcp), 7237/tcp, 8475/tcp, 4593/tcp (IPT (ANRI-ANRI)), 51056/tcp, 39811/tcp, 12582/tcp, 39833/tcp, 16564/tcp, 8401/tcp (sabarsd), 7235/tcp, 55678/tcp, 2178/tcp (Peer Services for BITS), 11027/tcp, 60061/tcp, 63653/tcp, 9453/tcp, 3922/tcp (Soronti Update Port), 35404/tcp, 10699/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 63395/tcp, 5252/tcp (Movaz SSC), 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-12-30

In the last 24h, the attacker (81.22.45.250) attempted to scan 1610 ports.
The following ports have been scanned: 5387/tcp, 7636/tcp, 9097/tcp, 52667/tcp, 7879/tcp, 8005/tcp (MXI Generation II for z/OS), 7914/tcp, 54070/tcp, 29721/tcp, 5953/tcp, 11277/tcp, 2525/tcp (MS V-Worlds), 9050/tcp (Versiera Agent Listener), 10010/tcp (ooRexx rxapi services), 58138/tcp, 3589/tcp (isomair), 6667/tcp, 22875/tcp, 58049/tcp, 11550/tcp, 7700/tcp (EM7 Secure Communications), 10005/tcp (EMC Replication Manager Server), 6001/tcp, 9990/tcp (OSM Applet Server), 60600/tcp, 6016/tcp, 33395/tcp, 10147/tcp, 22825/tcp, 32926/tcp, 6453/tcp, 9093/tcp, 22707/tcp, 7468/tcp, 4468/tcp, 56565/tcp, 4371/tcp (LAN2CAN Control), 36831/tcp, 2044/tcp (rimsl), 3757/tcp (GRF Server Port), 41434/tcp, 45779/tcp, 21218/tcp, 3958/tcp (MQEnterprise Agent), 3398/tcp (Mercantile), 11133/tcp, 41624/tcp, 61537/tcp, 62161/tcp, 4178/tcp (StorMan), 405/tcp (ncld), 13770/tcp, 44659/tcp, 32350/tcp, 9110/tcp, 33388/tcp, 33039/tcp, 4027/tcp (bitxpress), 5830/tcp, 27417/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 54640/tcp, 3700/tcp (LRS NetPage), 4646/tcp, 3204/tcp (Network Watcher DB Access), 9374/tcp (fjdmimgr), 9000/tcp (CSlistener), 8777/tcp, 662/tcp (PFTP), 38912/tcp, 8366/tcp, 5563/tcp, 56269/tcp, 2300/tcp (CVMMON), 9662/tcp, 55795/tcp, 6636/tcp, 8335/tcp, 8181/tcp, 9711/tcp, 14086/tcp, 680/tcp (entrust-aaas), 34244/tcp, 3410/tcp (NetworkLens SSL Event), 23495/tcp, 5425/tcp (Beyond Remote Command Channel), 63798/tcp, 64217/tcp, 24829/tcp, 13381/tcp, 39616/tcp, 25798/tcp, 3323/tcp, 4521/tcp, 6306/tcp (Unified Fabric Management Protocol), 34933/tcp, 12206/tcp, 5545/tcp, 6800/tcp, 1414/tcp (IBM MQSeries), 57952/tcp, 10011/tcp, 31762/tcp, 6610/tcp, 50089/tcp, 14946/tcp, 30001/tcp (Pago Services 1), 36363/tcp, 30832/tcp, 32130/tcp, 2236/tcp (Nani), 1012/tcp, 2682/tcp, 9006/tcp, 3364/tcp (Creative Server), 63391/tcp, 1910/tcp (UltraBac Software communications port), 60001/tcp, 59999/tcp, 30960/tcp, 9514/tcp, 8011/tcp, 48272/tcp, 8662/tcp, 5353/tcp (Multicast DNS), 1031/tcp (BBN IAD), 50015/tcp, 9132/tcp, 3303/tcp (OP Session Client), 9578/tcp, 34344/tcp, 1938/tcp (JetVWay Client Port), 6169/tcp, 38000/tcp, 4177/tcp (Wello P2P pubsub service), 5469/tcp, 22222/tcp, 56983/tcp, 13679/tcp, 60006/tcp, 10050/tcp (Zabbix Agent), 14144/tcp, 6300/tcp (BMC GRX), 3195/tcp (Network Control Unit), 40147/tcp, 10024/tcp, 13289/tcp, 29144/tcp, 6397/tcp, 15151/tcp, 34287/tcp, 10513/tcp, 46458/tcp, 27356/tcp, 24822/tcp, 8268/tcp, 33339/tcp, 6627/tcp (Allied Electronics NeXGen), 6988/tcp, 50500/tcp, 2083/tcp (Secure Radius Service), 10152/tcp, 3403/tcp, 10021/tcp, 3878/tcp (FotoG CAD interface), 2002/tcp (globe), 50918/tcp, 50208/tcp, 63500/tcp, 4008/tcp (NetCheque accounting), 30002/tcp (Pago Services 2), 30000/tcp, 28061/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 15631/tcp, 15076/tcp, 34420/tcp, 8885/tcp, 9040/tcp, 7552/tcp, 3263/tcp (E-Color Enterprise Imager), 9684/tcp, 31640/tcp, 8348/tcp, 12443/tcp, 10648/tcp, 5265/tcp (3Com Network Jack Port 2), 2512/tcp (Citrix IMA), 23391/tcp, 8932/tcp, 3343/tcp (MS Cluster Net), 5599/tcp (Enterprise Security Remote Install), 27992/tcp, 28559/tcp, 37777/tcp, 6030/tcp, 3383/tcp (Enterprise Software Products License Manager), 6052/tcp, 45312/tcp, 36074/tcp, 10354/tcp, 5106/tcp, 35002/tcp, 6600/tcp (Microsoft Hyper-V Live Migration), 9210/tcp (OMA Mobile Location Protocol), 7778/tcp (Interwise), 5555/tcp (Personal Agent), 5020/tcp (zenginkyo-1), 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 38671/tcp, 11326/tcp, 10081/tcp (FAM Archive Server), 6203/tcp, 11863/tcp, 9201/tcp (WAP session service), 5010/tcp (TelepathStart), 7474/tcp, 7575/tcp, 3622/tcp (FF LAN Redundancy Port), 3752/tcp (Vigil-IP RemoteAgent), 10806/tcp, 10941/tcp, 7980/tcp (Quest Vista), 11389/tcp, 50076/tcp, 22704/tcp, 4455/tcp (PR Chat User), 31313/tcp, 8023/tcp, 1035/tcp (MX-XR RPC), 9873/tcp, 42825/tcp, 1496/tcp (liberty-lm), 8933/tcp, 8068/tcp, 6666/tcp, 1045/tcp (Fingerprint Image Transfer Protocol), 5152/tcp (ESRI SDE Instance Discovery), 10533/tcp, 1400/tcp (Cadkey Tablet Daemon), 4647/tcp, 20001/tcp (MicroSAN), 4888/tcp, 33902/tcp, 44105/tcp, 43066/tcp, 35734/tcp, 27514/tcp, 1040/tcp (Netarx Netcare), 6660/tcp, 60922/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 44187/tcp, 1096/tcp (Common Name Resolution Protocol), 45455/tcp, 8267/tcp, 43117/tcp, 51070/tcp, 5225/tcp (HP Server), 3565/tcp (M2PA), 9898/tcp (MonkeyCom), 9098/tcp, 2435/tcp (OptiLogic), 1004/tcp, 13495/tcp, 33911/tcp, 3330/tcp (MCS Calypso ICF), 31729/tcp, 33033/tcp, 28543/tcp, 57725/tcp, 22022/tcp, 26654/tcp, 5758/tcp, 2919/tcp (roboER), 14209/tcp, 3807/tcp (SpuGNA Communication Port), 5812/tcp, 4607/tcp, 26368/tcp, 14115/tcp, 13924/tcp, 50005/tcp, 2050/tcp (Avaya EMB Config Port), 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 5407/tcp (Foresyte-Clear), 1050/tcp (CORBA Management Agent), 13899/tcp, 4049/tcp (Wide Area File Services), 10346/tcp, 3254/tcp (PDA System), 10769/tcp, 11022/tcp, 15003/tcp, 5560/tcp, 28091/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 6989/tcp, 9119/tcp (MXit Instant Messaging), 65535/tcp, 41531/tcp, 6000/tcp (-6063/udp   X Window System), 27939/tcp, 42729/tcp, 40803/tcp, 14141/tcp (VCS Application), 4300/tcp (Corel CCam), 4882/tcp, 13715/tcp, 8821/tcp, 55859/tcp, 53956/tcp, 54920/tcp, 6370/tcp (MetaEdit+ Server Administration), 9998/tcp (Distinct32), 11266/tcp, 5333/tcp, 28374/tcp, 7285/tcp, 10044/tcp, 14040/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 5657/tcp, 20669/tcp, 41606/tcp, 58047/tcp, 38305/tcp, 4343/tcp (UNICALL), 9301/tcp, 36562/tcp, 5151/tcp (ESRI SDE Instance), 2389/tcp (OpenView Session Mgr), 3429/tcp (GCSP user port), 9497/tcp, 52534/tcp, 8900/tcp (JMB-CDS 1), 5917/tcp, 994/tcp (irc protocol over TLS/SSL), 5722/tcp (Microsoft DFS Replication Service), 17177/tcp, 2936/tcp (OTPatch), 9918/tcp, 4442/tcp (Saris), 60000/tcp, 47009/tcp, 49903/tcp, 9989/tcp, 2581/tcp (ARGIS TE), 32555/tcp, 3744/tcp (SASG), 6555/tcp, 4976/tcp, 3000/tcp (RemoteWare Client), 5/tcp (Remote Job Entry), 4970/tcp (CCSS QSystemMonitor), 56789/tcp, 4060/tcp (DSMETER Inter-Agent Transfer Channel), 7291/tcp, 22251/tcp, 4315/tcp, 4530/tcp, 3302/tcp (MCS Fastmail), 8304/tcp, 59440/tcp, 43156/tcp, 3405/tcp (Nokia Announcement ch 1), 1020/tcp, 3174/tcp (ARMI Server), 63668/tcp, 1294/tcp (CMMdriver), 3332/tcp (MCS Mail Server), 13900/tcp, 14730/tcp, 4012/tcp (PDA Gate), 3535/tcp (MS-LA), 38047/tcp, 6969/tcp (acmsoda), 8060/tcp, 61500/tcp, 9376/tcp, 4136/tcp (Classic Line Database Server Request), 45113/tcp, 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 10185/tcp, 1098/tcp (RMI Activation), 8389/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 13391/tcp, 55596/tcp, 50505/tcp, 33203/tcp, 3347/tcp (Phoenix RPC), 24944/tcp, 4000/tcp (Terabase), 54529/tcp, 64477/tcp, 6467/tcp, 4567/tcp (TRAM), 525/tcp (timeserver), 8154/tcp, 42941/tcp, 41126/tcp, 9960/tcp, 44967/tcp, 1213/tcp (MPC LIFENET), 18181/tcp (OPSEC CVP), 3198/tcp (Embrace Device Protocol Client), 22143/tcp, 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 8083/tcp (Utilistor (Server)), 2475/tcp (ACE Server), 57681/tcp, 36477/tcp, 6879/tcp, 63006/tcp, 5556/tcp (Freeciv gameplay), 5769/tcp (x509solutions Internal CA), 51506/tcp, 12965/tcp, 47133/tcp, 39841/tcp, 37215/tcp, 39312/tcp, 51749/tcp, 4/tcp, 19924/tcp, 5048/tcp (Texai Message Service), 24219/tcp, 9091/tcp (xmltec-xmlmail), 4202/tcp, 8830/tcp, 6943/tcp, 4102/tcp (Braille protocol), 6022/tcp, 4334/tcp, 7391/tcp (mind-file system server), 7951/tcp, 14001/tcp (SUA), 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 3386/tcp (GPRS Data), 16149/tcp, 6716/tcp, 62526/tcp, 5296/tcp, 39218/tcp, 23233/tcp, 5341/tcp, 51125/tcp, 4070/tcp (Trivial IP Encryption (TrIPE)), 10835/tcp, 34265/tcp, 4302/tcp (Diagnostic Data Control), 4412/tcp, 9007/tcp, 63366/tcp, 3669/tcp (CA SAN Switch Management), 31537/tcp, 43159/tcp, 5350/tcp (NAT-PMP Status Announcements), 4539/tcp, 2829/tcp (silkp1), 51000/tcp, 57760/tcp, 3384/tcp (Cluster Management Services), 5006/tcp (wsm server), 7620/tcp, 7111/tcp, 3936/tcp (Mailprox), 31197/tcp, 52645/tcp, 1110/tcp (Start web admin server), 5973/tcp, 6095/tcp, 6212/tcp, 5511/tcp, 33390/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 13001/tcp, 9880/tcp, 3477/tcp (eComm link port), 50491/tcp, 63912/tcp, 7171/tcp (Discovery and Retention Mgt Production), 1122/tcp (availant-mgr), 9777/tcp, 56943/tcp, 4141/tcp (Workflow Server), 9324/tcp, 10797/tcp, 7036/tcp, 6129/tcp, 7785/tcp, 33895/tcp, 1313/tcp (BMC_PATROLDB), 8529/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 23698/tcp, 2186/tcp (Guy-Tek Automated Update Applications), 55352/tcp, 3040/tcp (Tomato Springs), 33898/tcp, 17909/tcp, 7779/tcp (VSTAT), 4779/tcp, 4291/tcp, 23412/tcp, 38800/tcp, 10111/tcp, 944/tcp, 8081/tcp (Sun Proxy Admin Service), 9970/tcp, 9025/tcp (Secure Web Access - 3), 12122/tcp, 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 5000/tcp (commplex-main), 7356/tcp, 48957/tcp, 7888/tcp, 12638/tcp, 12705/tcp, 34945/tcp, 31195/tcp, 12166/tcp, 1686/tcp (cvmon), 64295/tcp, 11124/tcp, 1286/tcp (netuitive), 5707/tcp, 5479/tcp, 8137/tcp, 7851/tcp, 52563/tcp, 54390/tcp, 51484/tcp, 7580/tcp, 63219/tcp, 6240/tcp, 62105/tcp, 1243/tcp (SerialGateway), 28382/tcp, 3900/tcp (Unidata UDT OS), 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 2797/tcp (esp-encap), 7388/tcp, 10274/tcp, 63411/tcp, 6916/tcp, 2533/tcp (SnifferServer), 3445/tcp (Media Object Network), 3394/tcp (D2K Tapestry Server to Server), 40618/tcp, 10961/tcp, 29613/tcp, 55340/tcp, 4795/tcp, 49873/tcp, 8682/tcp, 38572/tcp, 49599/tcp, 9704/tcp, 10848/tcp, 5396/tcp, 1140/tcp (AutoNOC Network Operations Protocol), 7999/tcp (iRDMI2), 44429/tcp, 33397/tcp, 3580/tcp (NATI-ServiceLocator), 8585/tcp, 38907/tcp, 54183/tcp, 62710/tcp, 9014/tcp, 36166/tcp, 1055/tcp (ANSYS - License Manager), 38276/tcp, 33789/tcp, 4472/tcp, 4803/tcp (Notateit Messaging), 9600/tcp (MICROMUSE-NCPW), 16257/tcp, 3606/tcp (Splitlock Server), 9187/tcp, 12604/tcp, 47673/tcp, 47604/tcp, 6082/tcp, 42635/tcp, 47278/tcp, 3371/tcp, 45044/tcp, 13733/tcp, 18261/tcp, 6262/tcp, 6214/tcp, 550/tcp (new-who), 39268/tcp, 40004/tcp, 8300/tcp (Transport Management Interface), 3346/tcp (Trnsprnt Proxy), 1880/tcp (Gilat VSAT Control), 33893/tcp, 38467/tcp, 2888/tcp (SPCSDLOBBY), 31263/tcp, 4003/tcp (pxc-splr-ft), 33009/tcp, 9272/tcp, 33884/tcp, 32599/tcp, 8702/tcp, 8583/tcp, 5021/tcp (zenginkyo-2), 52793/tcp, 48311/tcp, 7060/tcp, 1070/tcp (GMRUpdateSERV), 28059/tcp, 9758/tcp, 8109/tcp, 15/tcp, 55014/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 9494/tcp, 44809/tcp, 1100/tcp (MCTP), 11172/tcp (OEM cacao JMX-remoting access point), 81/tcp, 36704/tcp, 13259/tcp, 5654/tcp, 4080/tcp (Lorica inside facing), 3300/tcp, 6263/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6900/tcp, 54031/tcp, 8002/tcp (Teradata ORDBMS), 10080/tcp (Amanda), 6656/tcp (Emergency Message Control Service), 7/tcp (Echo), 7157/tcp, 13131/tcp, 8963/tcp, 23389/tcp, 38009/tcp, 37749/tcp, 42142/tcp, 9596/tcp (Mercury Discovery), 61745/tcp, 3593/tcp (BP Model Debugger), 64717/tcp, 39703/tcp, 13421/tcp, 2770/tcp (Veronica), 30003/tcp, 57777/tcp, 55555/tcp, 8544/tcp, 3637/tcp (Customer Service Port), 41649/tcp, 6050/tcp, 6121/tcp (SPDY for a faster web), 24193/tcp, 63373/tcp, 6465/tcp, 34210/tcp, 8984/tcp, 5115/tcp (Symantec Autobuild Service), 6025/tcp, 7771/tcp, 9236/tcp, 8656/tcp, 7693/tcp, 5400/tcp (Excerpt Search), 33386/tcp, 25767/tcp, 60088/tcp, 7641/tcp, 4020/tcp (TRAP Port), 9528/tcp, 59021/tcp, 8520/tcp, 63050/tcp, 5051/tcp (ITA Agent), 3355/tcp (Ordinox Dbase), 6566/tcp (SANE Control Port), 29931/tcp, 11904/tcp, 6081/tcp, 23976/tcp, 345/tcp (Perf Analysis Workbench), 57243/tcp, 10500/tcp, 6641/tcp, 35535/tcp, 45678/tcp (EBA PRISE), 9852/tcp, 8111/tcp, 8881/tcp, 33880/tcp, 8390/tcp, 55445/tcp, 6777/tcp, 4939/tcp, 33471/tcp, 21416/tcp, 3354/tcp (SUITJD), 2090/tcp (Load Report Protocol), 19734/tcp, 58558/tcp, 14709/tcp, 3981/tcp (Starfish System Admin), 6996/tcp, 3003/tcp (CGMS), 2424/tcp (KOFAX-SVR), 49996/tcp, 21463/tcp, 47693/tcp, 3020/tcp (CIFS), 8345/tcp, 7083/tcp, 1719/tcp (h323gatestat), 22396/tcp, 16509/tcp, 54186/tcp, 4181/tcp (MacBak), 11204/tcp, 2022/tcp (down), 19501/tcp, 10095/tcp, 2176/tcp (Microsoft ActiveSync Remote API), 59570/tcp, 54153/tcp, 33167/tcp, 11689/tcp, 33210/tcp, 10697/tcp, 41000/tcp, 35851/tcp, 3336/tcp (Direct TV Tickers), 250/tcp, 2/tcp (Management Utility), 7174/tcp (Clutild), 50853/tcp, 5856/tcp, 11166/tcp, 64952/tcp, 5045/tcp (Open Settlement Protocol), 51524/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 10962/tcp, 32382/tcp, 18267/tcp, 4040/tcp (Yo.net main service), 41599/tcp, 7243/tcp, 10374/tcp, 13988/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 11538/tcp, 3102/tcp (SoftlinK Slave Mon Port), 17777/tcp (SolarWinds Orion), 8129/tcp (PayCash Wallet-Browser), 3360/tcp (KV Server), 5641/tcp, 10770/tcp, 42636/tcp, 53934/tcp, 1234/tcp (Infoseek Search Agent), 7634/tcp, 9702/tcp, 4828/tcp, 40000/tcp (SafetyNET p), 50000/tcp, 3418/tcp (Remote nmap), 2481/tcp (Oracle GIOP), 4487/tcp (Protocol for Remote Execution over TCP), 8020/tcp (Intuit Entitlement Service and Discovery), 26126/tcp, 7617/tcp, 10495/tcp, 14000/tcp (SCOTTY High-Speed Filetransfer), 102/tcp (ISO-TSAP Class 0), 15760/tcp, 10977/tcp, 38393/tcp, 7777/tcp (cbt), 8070/tcp, 5660/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 27808/tcp, 21027/tcp, 9911/tcp (SYPECom Transport Protocol), 4444/tcp (NV Video default), 27777/tcp, 7417/tcp, 6200/tcp (LM-X License Manager by X-Formation), 2934/tcp (4-TIER OPM CLI), 9901/tcp, 33891/tcp, 32833/tcp, 10099/tcp, 21481/tcp, 19195/tcp, 9070/tcp, 51525/tcp, 5483/tcp, 7000/tcp (file server itself), 13637/tcp, 5024/tcp (SCPI-TELNET), 40257/tcp, 8033/tcp (MindPrint), 2121/tcp (SCIENTIA-SSDB), 7750/tcp, 6420/tcp (NIM_VDRShell), 65000/tcp, 21141/tcp, 4489/tcp, 1984/tcp (BB), 13757/tcp, 43794/tcp, 36877/tcp, 3370/tcp, 61684/tcp, 3334/tcp (Direct TV Webcasting), 8955/tcp, 45454/tcp, 568/tcp (microsoft shuttle), 21252/tcp, 1314/tcp (Photoscript Distributed Printing System), 18714/tcp, 23879/tcp, 4379/tcp (CTDB), 17171/tcp, 19800/tcp, 14487/tcp, 9350/tcp, 5593/tcp, 9004/tcp, 63827/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 5700/tcp, 15001/tcp, 4443/tcp (Pharos), 4574/tcp, 35105/tcp, 28481/tcp, 48212/tcp, 5453/tcp (SureBox), 36739/tcp, 46273/tcp, 24705/tcp, 7733/tcp, 8000/tcp (iRDMI), 29292/tcp, 46456/tcp, 16668/tcp, 4495/tcp, 108/tcp (SNA Gateway Access Server), 5222/tcp (XMPP Client Connection), 6184/tcp, 59090/tcp, 52313/tcp, 60411/tcp, 30979/tcp, 5230/tcp, 43539/tcp, 7041/tcp, 41217/tcp, 34862/tcp, 60642/tcp, 46602/tcp, 8444/tcp (PCsync HTTP), 57340/tcp, 2269/tcp (MIKEY), 29091/tcp, 8850/tcp, 51742/tcp, 1600/tcp (issd), 7452/tcp, 423/tcp (IBM Operations Planning and Control Start), 35842/tcp, 11128/tcp, 8282/tcp, 11716/tcp, 7538/tcp, 9577/tcp, 53471/tcp, 8182/tcp (VMware Fault Domain Manager), 10022/tcp, 62275/tcp, 6554/tcp, 9321/tcp (guibase), 37040/tcp, 36280/tcp, 9969/tcp, 57747/tcp, 5432/tcp (PostgreSQL Database), 5652/tcp, 6379/tcp, 4606/tcp, 5775/tcp, 4073/tcp (iRAPP Server Protocol), 52886/tcp, 6041/tcp, 10000/tcp (Network Data Management Protocol), 1256/tcp (de-server), 42536/tcp, 7880/tcp (Pearson), 5833/tcp, 3342/tcp (WebTIE), 1486/tcp (nms_topo_serv), 2119/tcp (GSIGATEKEEPER), 8602/tcp, 4762/tcp, 2929/tcp (AMX-WEBADMIN), 7900/tcp (Multicast Event), 51492/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 47537/tcp, 3989/tcp (BindView-Query Engine), 8775/tcp, 23057/tcp, 26676/tcp, 5413/tcp (WWIOTALK), 23421/tcp, 8293/tcp (Hiperscan Identification Service), 5338/tcp, 8924/tcp, 51807/tcp, 7878/tcp, 46901/tcp, 7649/tcp, 3361/tcp (KV Agent), 30303/tcp, 5810/tcp, 43307/tcp, 7725/tcp (Nitrogen Service), 5960/tcp, 8535/tcp, 1220/tcp (QT SERVER ADMIN), 9241/tcp, 42109/tcp, 30967/tcp, 48769/tcp, 1528/tcp, 9800/tcp (WebDav Source Port), 15728/tcp, 33901/tcp, 3796/tcp (Spaceway Dialer), 9980/tcp, 23186/tcp, 52522/tcp, 3505/tcp (CCM communications port), 7591/tcp, 53389/tcp, 13183/tcp, 9029/tcp, 26000/tcp (quake), 4658/tcp (PlayStation2 App Port), 40400/tcp, 2046/tcp (sdfunc), 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 5135/tcp (ERP-Scale), 38516/tcp, 9002/tcp (DynamID authentication), 26889/tcp, 24922/tcp (Find Identification of Network Devices), 4821/tcp, 7479/tcp, 63839/tcp, 11173/tcp, 7890/tcp, 9991/tcp (OSM Event Server), 16490/tcp, 5082/tcp (Qpur Communication Protocol), 5468/tcp, 4197/tcp, 44604/tcp, 50664/tcp, 12052/tcp, 21509/tcp, 21210/tcp, 5807/tcp, 24656/tcp, 4761/tcp, 7681/tcp, 63627/tcp, 6116/tcp (XicTools License Manager Service), 39941/tcp, 20231/tcp, 21611/tcp, 7428/tcp (OpenView DM Log Agent Manager), 7374/tcp, 7113/tcp, 9931/tcp, 9357/tcp, 1736/tcp (street-stream), 9992/tcp (OnLive-1), 4477/tcp, 44505/tcp, 29080/tcp, 3536/tcp (SNAC), 49500/tcp, 22458/tcp, 50546/tcp, 51511/tcp, 14638/tcp, 33380/tcp, 61054/tcp, 40030/tcp, 47250/tcp, 45270/tcp, 29331/tcp, 7380/tcp, 4555/tcp (RSIP Port), 43994/tcp, 6294/tcp, 7152/tcp, 1798/tcp (Event Transfer Protocol), 30010/tcp, 3485/tcp (CelaTalk), 17332/tcp, 456/tcp (macon-tcp), 10900/tcp, 2911/tcp (Blockade), 33894/tcp, 51056/tcp, 39811/tcp, 12582/tcp, 2706/tcp (NCD Mirroring), 8401/tcp (sabarsd), 11385/tcp, 55678/tcp, 13054/tcp, 2178/tcp (Peer Services for BITS), 4250/tcp, 13165/tcp, 60061/tcp, 63653/tcp, 9453/tcp, 35404/tcp, 1009/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 2348/tcp (Information to query for game status), 5252/tcp (Movaz SSC).
      
BHD Honeypot
Port scan
2019-12-29

In the last 24h, the attacker (81.22.45.250) attempted to scan 1507 ports.
The following ports have been scanned: 5387/tcp, 7636/tcp, 9097/tcp, 52667/tcp, 3352/tcp (Scalable SQL), 7914/tcp, 54070/tcp, 7633/tcp (PMDF Management), 29721/tcp, 5953/tcp, 9544/tcp, 2525/tcp (MS V-Worlds), 10010/tcp (ooRexx rxapi services), 6495/tcp, 3589/tcp (isomair), 23392/tcp, 55589/tcp, 6667/tcp, 20678/tcp, 7700/tcp (EM7 Secure Communications), 10005/tcp (EMC Replication Manager Server), 6001/tcp, 9990/tcp (OSM Applet Server), 60600/tcp, 1515/tcp (ifor-protocol), 33395/tcp, 22825/tcp, 32926/tcp, 6453/tcp, 12322/tcp (Warehouse Monitoring Syst), 9093/tcp, 6530/tcp, 8088/tcp (Radan HTTP), 4468/tcp, 56565/tcp, 4664/tcp (Rimage Messaging Server), 4371/tcp (LAN2CAN Control), 36831/tcp, 2044/tcp (rimsl), 3757/tcp (GRF Server Port), 3958/tcp (MQEnterprise Agent), 3398/tcp (Mercantile), 11133/tcp, 11015/tcp, 405/tcp (ncld), 39339/tcp, 13770/tcp, 9009/tcp (Pichat Server), 9072/tcp, 10188/tcp, 33388/tcp, 3219/tcp (WMS Messenger), 33039/tcp, 2787/tcp (piccolo - Cornerstone Software), 10921/tcp, 4027/tcp (bitxpress), 9499/tcp, 5830/tcp, 11390/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 8500/tcp (Flight Message Transfer Protocol), 2224/tcp (Easy Flexible Internet/Multiplayer Games), 3700/tcp (LRS NetPage), 12121/tcp (NuPaper Session Service), 4646/tcp, 3396/tcp (Printer Agent), 3204/tcp (Network Watcher DB Access), 9374/tcp (fjdmimgr), 13876/tcp, 9000/tcp (CSlistener), 8777/tcp, 662/tcp (PFTP), 9700/tcp (Board M.I.T. Service), 8366/tcp, 5563/tcp, 2300/tcp (CVMMON), 6636/tcp, 8335/tcp, 15991/tcp, 14086/tcp, 3410/tcp (NetworkLens SSL Event), 23495/tcp, 8693/tcp, 5425/tcp (Beyond Remote Command Channel), 24829/tcp, 39616/tcp, 4521/tcp, 6306/tcp (Unified Fabric Management Protocol), 8862/tcp, 4850/tcp (Sun App Server - NA), 27108/tcp, 12206/tcp, 6800/tcp, 3778/tcp (Cutler-Hammer IT Port), 1414/tcp (IBM MQSeries), 9443/tcp (WSO2 Tungsten HTTPS), 10011/tcp, 14946/tcp, 3390/tcp (Distributed Service Coordinator), 36363/tcp, 30832/tcp, 2236/tcp (Nani), 2682/tcp, 4591/tcp (HRPD L3T (AT-AN)), 3364/tcp (Creative Server), 2987/tcp (identify), 4119/tcp (Assuria Log Manager), 30960/tcp, 5784/tcp, 3409/tcp (NetworkLens Event Port), 9514/tcp, 48272/tcp, 31122/tcp, 5353/tcp (Multicast DNS), 1031/tcp (BBN IAD), 9132/tcp, 32588/tcp, 3303/tcp (OP Session Client), 42387/tcp, 3317/tcp (VSAI PORT), 4201/tcp, 5216/tcp, 6029/tcp, 5469/tcp, 12832/tcp, 13679/tcp, 8148/tcp (i-SDD file transfer), 60006/tcp, 10050/tcp (Zabbix Agent), 3195/tcp (Network Control Unit), 40147/tcp, 3444/tcp (Denali Server), 10024/tcp, 29144/tcp, 6397/tcp, 15151/tcp, 12748/tcp, 1628/tcp (LonTalk normal), 27356/tcp, 24822/tcp, 4041/tcp (Rocketeer-Houston), 8268/tcp, 6627/tcp (Allied Electronics NeXGen), 6988/tcp, 8400/tcp (cvd), 50500/tcp, 20539/tcp, 2083/tcp (Secure Radius Service), 10152/tcp, 3403/tcp, 3878/tcp (FotoG CAD interface), 2002/tcp (globe), 61441/tcp, 3492/tcp (TVDUM Tray Port), 50208/tcp, 2281/tcp (LNVCONSOLE), 9300/tcp (Virtual Racing Service), 63500/tcp, 4008/tcp (NetCheque accounting), 30002/tcp (Pago Services 2), 2122/tcp (CauPC Remote Control), 4323/tcp (TRIM ICE Service), 44947/tcp, 12111/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 3663/tcp (DIRECWAY Tunnel Protocol), 15076/tcp, 34420/tcp, 8885/tcp, 1024/tcp (Reserved), 9040/tcp, 3263/tcp (E-Color Enterprise Imager), 9684/tcp, 16145/tcp, 12443/tcp, 7352/tcp, 10648/tcp, 5265/tcp (3Com Network Jack Port 2), 2512/tcp (Citrix IMA), 6006/tcp, 23391/tcp, 8932/tcp, 3343/tcp (MS Cluster Net), 10412/tcp, 28559/tcp, 29755/tcp, 6030/tcp, 3383/tcp (Enterprise Software Products License Manager), 3407/tcp (LDAP admin server port), 2986/tcp (STONEFALLS), 6052/tcp, 48252/tcp, 5106/tcp, 10919/tcp, 19675/tcp, 6600/tcp (Microsoft Hyper-V Live Migration), 9210/tcp (OMA Mobile Location Protocol), 5555/tcp (Personal Agent), 5020/tcp (zenginkyo-1), 8794/tcp, 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 11326/tcp, 10081/tcp (FAM Archive Server), 11863/tcp, 5010/tcp (TelepathStart), 7474/tcp, 7575/tcp, 8048/tcp, 3622/tcp (FF LAN Redundancy Port), 2835/tcp (EVTP-DATA), 3752/tcp (Vigil-IP RemoteAgent), 8663/tcp, 10941/tcp, 7980/tcp (Quest Vista), 11389/tcp, 4455/tcp (PR Chat User), 31313/tcp, 8023/tcp, 12194/tcp, 16565/tcp, 10667/tcp, 1496/tcp (liberty-lm), 8933/tcp, 8068/tcp, 6666/tcp, 5152/tcp (ESRI SDE Instance Discovery), 4932/tcp, 10533/tcp, 1400/tcp (Cadkey Tablet Daemon), 20001/tcp (MicroSAN), 11468/tcp, 4030/tcp (Accell/JSP Daemon Port), 6729/tcp, 9685/tcp, 23805/tcp, 27514/tcp, 3404/tcp, 6660/tcp, 60922/tcp, 7974/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 9020/tcp (TAMBORA), 45455/tcp, 63388/tcp, 15826/tcp, 8267/tcp, 3387/tcp (Back Room Net), 9692/tcp, 6093/tcp, 3565/tcp (M2PA), 9898/tcp (MonkeyCom), 2435/tcp (OptiLogic), 1004/tcp, 13495/tcp, 6425/tcp, 3330/tcp (MCS Calypso ICF), 5598/tcp (MCT Market Data Feed), 28543/tcp, 5493/tcp, 22022/tcp, 26654/tcp, 5758/tcp, 2919/tcp (roboER), 30257/tcp, 19548/tcp, 3807/tcp (SpuGNA Communication Port), 4607/tcp, 26368/tcp, 13208/tcp, 14115/tcp, 13627/tcp, 13924/tcp, 3187/tcp (Open Design Listen Port), 6967/tcp, 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 5407/tcp (Foresyte-Clear), 4881/tcp, 1050/tcp (CORBA Management Agent), 13899/tcp, 4049/tcp (Wide Area File Services), 10346/tcp, 12768/tcp, 4426/tcp (SMARTS Beacon Port), 3254/tcp (PDA System), 10769/tcp, 11022/tcp, 15003/tcp, 5560/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 6989/tcp, 9119/tcp (MXit Instant Messaging), 41531/tcp, 6000/tcp (-6063/udp   X Window System), 27939/tcp, 27885/tcp, 3267/tcp (IBM Dial Out), 3379/tcp (SOCORFS), 4295/tcp, 14141/tcp (VCS Application), 4882/tcp, 8821/tcp, 7480/tcp, 11016/tcp, 6370/tcp (MetaEdit+ Server Administration), 5333/tcp, 28374/tcp, 10044/tcp, 14040/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 30556/tcp, 1090/tcp (FF Fieldbus Message Specification), 8600/tcp (Surveillance Data), 20669/tcp, 38305/tcp, 4343/tcp (UNICALL), 11159/tcp, 11056/tcp, 5151/tcp (ESRI SDE Instance), 7189/tcp, 6020/tcp, 3429/tcp (GCSP user port), 9497/tcp, 10907/tcp, 25293/tcp, 8900/tcp (JMB-CDS 1), 5917/tcp, 6455/tcp (SKIP Certificate Receive), 16239/tcp, 994/tcp (irc protocol over TLS/SSL), 5722/tcp (Microsoft DFS Replication Service), 17177/tcp, 62329/tcp, 2936/tcp (OTPatch), 9918/tcp, 2080/tcp (Autodesk NLM (FLEXlm)), 4442/tcp (Saris), 47009/tcp, 9989/tcp, 2581/tcp (ARGIS TE), 28795/tcp, 32555/tcp, 3744/tcp (SASG), 6555/tcp, 4976/tcp, 3000/tcp (RemoteWare Client), 5561/tcp, 33576/tcp, 6604/tcp, 5/tcp (Remote Job Entry), 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 56789/tcp, 52814/tcp, 4060/tcp (DSMETER Inter-Agent Transfer Channel), 5656/tcp, 7291/tcp, 22251/tcp, 4315/tcp, 4530/tcp, 3302/tcp (MCS Fastmail), 64103/tcp, 59440/tcp, 23518/tcp, 13144/tcp, 3502/tcp (Avocent Install Discovery), 1020/tcp, 19772/tcp, 1294/tcp (CMMdriver), 3332/tcp (MCS Mail Server), 13900/tcp, 9129/tcp, 14730/tcp, 4012/tcp (PDA Gate), 6969/tcp (acmsoda), 61500/tcp, 9376/tcp, 4136/tcp (Classic Line Database Server Request), 10015/tcp, 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 10185/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 10204/tcp, 9675/tcp, 13391/tcp, 55596/tcp, 9080/tcp (Groove GLRPC), 43171/tcp, 17009/tcp, 9908/tcp, 33203/tcp, 3347/tcp (Phoenix RPC), 8712/tcp, 24944/tcp, 4000/tcp (Terabase), 6467/tcp, 3452/tcp (SABP-Signalling Protocol), 8202/tcp, 525/tcp (timeserver), 9905/tcp, 867/tcp, 1213/tcp (MPC LIFENET), 18181/tcp (OPSEC CVP), 3198/tcp (Embrace Device Protocol Client), 19210/tcp, 7982/tcp (Spotlight on SQL Server Desktop Agent), 4321/tcp (Remote Who Is), 4700/tcp (NetXMS Agent), 22143/tcp, 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 8083/tcp (Utilistor (Server)), 2475/tcp (ACE Server), 6879/tcp, 51506/tcp, 12965/tcp, 1818/tcp (Enhanced Trivial File Transfer Protocol), 1080/tcp (Socks), 39841/tcp, 37215/tcp, 3111/tcp (Web Synchronous Services), 19924/tcp, 5048/tcp (Texai Message Service), 9091/tcp (xmltec-xmlmail), 4202/tcp, 16000/tcp (Administration Server Access), 8830/tcp, 6943/tcp, 10001/tcp (SCP Configuration), 4102/tcp (Braille protocol), 5207/tcp, 6022/tcp, 7951/tcp, 6235/tcp, 5764/tcp, 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 23456/tcp (Aequus Service), 16149/tcp, 39218/tcp, 5341/tcp, 51125/tcp, 4302/tcp (Diagnostic Data Control), 8981/tcp, 4412/tcp, 9007/tcp, 3200/tcp (Press-sense Tick Port), 43159/tcp, 5350/tcp (NAT-PMP Status Announcements), 4539/tcp, 2829/tcp (silkp1), 5378/tcp, 57760/tcp, 3384/tcp (Cluster Management Services), 5006/tcp (wsm server), 9987/tcp (DSM/SCM Target Interface), 5050/tcp (multimedia conference control tool), 7620/tcp, 3936/tcp (Mailprox), 31197/tcp, 9444/tcp (WSO2 ESB Administration Console HTTPS), 1110/tcp (Start web admin server), 5973/tcp, 6095/tcp, 5511/tcp, 33390/tcp, 5001/tcp (commplex-link), 9880/tcp, 3477/tcp (eComm link port), 3666/tcp (IBM eServer PAP), 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 1122/tcp (availant-mgr), 9777/tcp, 22950/tcp, 4141/tcp (Workflow Server), 7036/tcp, 6129/tcp, 7785/tcp, 1313/tcp (BMC_PATROLDB), 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 33890/tcp, 8861/tcp, 55352/tcp, 3040/tcp (Tomato Springs), 6983/tcp, 3600/tcp (text relay-answer), 33898/tcp, 17909/tcp, 7779/tcp (VSTAT), 41292/tcp, 13636/tcp, 5070/tcp (VersaTrans Server Agent Service), 4779/tcp, 4291/tcp, 23412/tcp, 5315/tcp (HA Cluster UDP Polling), 4413/tcp, 38800/tcp, 8081/tcp (Sun Proxy Admin Service), 3131/tcp (Net Book Mark), 9036/tcp, 12122/tcp, 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 5000/tcp (commplex-main), 7356/tcp, 48957/tcp, 4427/tcp (Drizzle database server), 7888/tcp, 12638/tcp, 12705/tcp, 34945/tcp, 6738/tcp, 11144/tcp, 2449/tcp (RATL), 24607/tcp, 12166/tcp, 1686/tcp (cvmon), 1717/tcp (fj-hdnet), 5479/tcp, 8137/tcp, 7851/tcp, 51484/tcp, 7580/tcp, 63219/tcp, 30385/tcp, 1128/tcp (SAPHostControl over SOAP/HTTP), 2516/tcp (Main Control), 1086/tcp (CPL Scrambler Logging), 62105/tcp, 1243/tcp (SerialGateway), 28382/tcp, 3900/tcp (Unidata UDT OS), 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 2797/tcp (esp-encap), 14157/tcp, 2923/tcp (WTA-WSP-WTP-S), 3378/tcp (WSICOPY), 6916/tcp, 2533/tcp (SnifferServer), 3394/tcp (D2K Tapestry Server to Server), 7565/tcp, 8353/tcp, 10961/tcp, 4795/tcp, 9716/tcp, 49873/tcp, 8682/tcp, 10848/tcp, 1140/tcp (AutoNOC Network Operations Protocol), 9983/tcp, 1777/tcp (powerguardian), 4111/tcp (Xgrid), 7677/tcp (Sun App Server - HTTPS), 21217/tcp, 3580/tcp (NATI-ServiceLocator), 8585/tcp, 6232/tcp, 38907/tcp, 1089/tcp (FF Annunciation), 54183/tcp, 1374/tcp (EPI Software Systems), 9555/tcp (Trispen Secure Remote Access), 9014/tcp, 11020/tcp, 36166/tcp, 1055/tcp (ANSYS - License Manager), 38276/tcp, 33789/tcp, 4472/tcp, 37284/tcp, 16257/tcp, 3606/tcp (Splitlock Server), 29853/tcp, 12604/tcp, 47604/tcp, 6082/tcp, 13206/tcp, 854/tcp, 47278/tcp, 2886/tcp (RESPONSELOGIC), 18261/tcp, 6262/tcp, 6214/tcp, 550/tcp (new-who), 8300/tcp (Transport Management Interface), 3346/tcp (Trnsprnt Proxy), 1880/tcp (Gilat VSAT Control), 1476/tcp (clvm-cfg), 38467/tcp, 31263/tcp, 4003/tcp (pxc-splr-ft), 9272/tcp, 33884/tcp, 8702/tcp, 8583/tcp, 3010/tcp (Telerate Workstation), 5021/tcp (zenginkyo-2), 7776/tcp, 52793/tcp, 7060/tcp, 3473/tcp (JAUGS N-G Remotec 2), 9758/tcp, 3917/tcp (AFT multiplex port), 5594/tcp, 8109/tcp, 8307/tcp, 6145/tcp (StatSci License Manager - 2), 12727/tcp, 11484/tcp, 15288/tcp, 1100/tcp (MCTP), 81/tcp, 36704/tcp, 13259/tcp, 5654/tcp, 4080/tcp (Lorica inside facing), 9797/tcp, 6263/tcp, 8002/tcp (Teradata ORDBMS), 6002/tcp, 1676/tcp (netcomm1), 10080/tcp (Amanda), 10134/tcp, 7157/tcp, 13131/tcp, 23389/tcp, 42142/tcp, 57484/tcp, 61745/tcp, 778/tcp, 10190/tcp, 3593/tcp (BP Model Debugger), 13421/tcp, 2015/tcp (cypress), 7994/tcp, 39565/tcp, 30003/tcp, 55555/tcp, 5817/tcp, 25325/tcp, 8544/tcp, 22296/tcp, 3637/tcp (Customer Service Port), 6050/tcp, 6121/tcp (SPDY for a faster web), 24193/tcp, 6465/tcp, 11988/tcp, 5666/tcp, 8984/tcp, 5115/tcp (Symantec Autobuild Service), 6025/tcp, 7771/tcp, 8898/tcp, 10392/tcp, 3400/tcp (CSMS2), 7693/tcp, 5400/tcp (Excerpt Search), 33386/tcp, 25767/tcp, 9010/tcp (Secure Data Replicator Protocol), 7641/tcp, 4020/tcp (TRAP Port), 9528/tcp, 6690/tcp, 9669/tcp, 8520/tcp, 9556/tcp, 2568/tcp (SPAM TRAP), 62483/tcp, 4360/tcp (Matrix VNet Communication Protocol), 63050/tcp, 5051/tcp (ITA Agent), 3355/tcp (Ordinox Dbase), 9920/tcp, 1428/tcp (Informatik License Manager), 11904/tcp, 6081/tcp, 5595/tcp, 345/tcp (Perf Analysis Workbench), 57243/tcp, 6587/tcp, 10500/tcp, 6641/tcp, 45678/tcp (EBA PRISE), 8111/tcp, 8390/tcp, 4939/tcp, 3338/tcp (OMF data b), 33471/tcp, 21416/tcp, 3354/tcp (SUITJD), 6956/tcp, 2090/tcp (Load Report Protocol), 3981/tcp (Starfish System Admin), 3501/tcp (iSoft-P2P), 4242/tcp, 6996/tcp, 3003/tcp (CGMS), 63389/tcp, 49996/tcp, 21463/tcp, 21193/tcp, 3020/tcp (CIFS), 7083/tcp, 10408/tcp, 22396/tcp, 16509/tcp, 5551/tcp, 54186/tcp, 4181/tcp (MacBak), 9701/tcp, 11204/tcp, 2022/tcp (down), 19501/tcp, 10095/tcp, 33167/tcp, 11689/tcp, 33210/tcp, 10697/tcp, 41000/tcp, 35851/tcp, 5550/tcp, 250/tcp, 10238/tcp, 11166/tcp, 12345/tcp (Italk Chat System), 10/tcp, 8084/tcp, 5045/tcp (Open Settlement Protocol), 51524/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 1013/tcp, 32382/tcp, 10097/tcp, 4040/tcp (Yo.net main service), 41599/tcp, 7243/tcp, 10374/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 11538/tcp, 3102/tcp (SoftlinK Slave Mon Port), 17777/tcp (SolarWinds Orion), 10770/tcp, 42636/tcp, 5847/tcp, 1234/tcp (Infoseek Search Agent), 9702/tcp, 4828/tcp, 50000/tcp, 3418/tcp (Remote nmap), 2500/tcp (Resource Tracking system server), 4487/tcp (Protocol for Remote Execution over TCP), 14804/tcp, 11146/tcp, 12753/tcp (tsaf port), 4389/tcp (Xandros Community Management Service), 26126/tcp, 7617/tcp, 9200/tcp (WAP connectionless session service), 14000/tcp (SCOTTY High-Speed Filetransfer), 15760/tcp, 8070/tcp, 12931/tcp, 5660/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 2626/tcp (gbjd816), 27808/tcp, 21027/tcp, 4444/tcp (NV Video default), 27777/tcp, 6310/tcp, 11003/tcp, 34304/tcp, 6200/tcp (LM-X License Manager by X-Formation), 2934/tcp (4-TIER OPM CLI), 3244/tcp (OneSAF), 32833/tcp, 12001/tcp (IBM Enterprise Extender SNA COS Network Priority), 21481/tcp, 19195/tcp, 9070/tcp, 9915/tcp, 51525/tcp, 25555/tcp, 5483/tcp, 7000/tcp (file server itself), 2333/tcp (SNAPP), 5024/tcp (SCPI-TELNET), 53388/tcp, 6420/tcp (NIM_VDRShell), 4489/tcp, 13757/tcp, 6611/tcp, 11526/tcp, 3370/tcp, 3334/tcp (Direct TV Webcasting), 568/tcp (microsoft shuttle), 21252/tcp, 44918/tcp, 23879/tcp, 4379/tcp (CTDB), 19800/tcp, 5987/tcp (WBEM RMI), 14487/tcp, 16139/tcp, 7001/tcp (callbacks to cache managers), 9350/tcp, 5593/tcp, 63827/tcp, 9393/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 5700/tcp, 4443/tcp (Pharos), 3402/tcp (FXa Engine Network Port), 4574/tcp, 7376/tcp, 28481/tcp, 46273/tcp, 5901/tcp, 8000/tcp (iRDMI), 29292/tcp, 51971/tcp, 16668/tcp, 27392/tcp, 4495/tcp, 108/tcp (SNA Gateway Access Server), 19191/tcp (OPSEC UAA), 9771/tcp, 7477/tcp, 4845/tcp (WordCruncher Remote Library Service), 59090/tcp, 11818/tcp, 5760/tcp, 8952/tcp, 52313/tcp, 60411/tcp, 5230/tcp, 43539/tcp, 7041/tcp, 41217/tcp, 34862/tcp, 60642/tcp, 8444/tcp (PCsync HTTP), 57340/tcp, 8850/tcp, 51742/tcp, 7452/tcp, 423/tcp (IBM Operations Planning and Control Start), 35842/tcp, 11128/tcp, 8282/tcp, 11716/tcp, 9577/tcp, 53471/tcp, 10022/tcp, 4794/tcp, 23885/tcp, 6554/tcp, 9321/tcp (guibase), 9994/tcp (OnLive-3), 36280/tcp, 9969/tcp, 5432/tcp (PostgreSQL Database), 4606/tcp, 25347/tcp, 5775/tcp, 22454/tcp, 6227/tcp, 4073/tcp (iRAPP Server Protocol), 52886/tcp, 6041/tcp, 10000/tcp (Network Data Management Protocol), 1256/tcp (de-server), 2020/tcp (xinupageserver), 3365/tcp (Content Server), 5833/tcp, 3342/tcp (WebTIE), 2119/tcp (GSIGATEKEEPER), 4762/tcp, 2929/tcp (AMX-WEBADMIN), 41464/tcp, 2796/tcp (ac-tech), 7900/tcp (Multicast Event), 15850/tcp, 10736/tcp, 8590/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 3706/tcp (Real-Time Event Port), 3989/tcp (BindView-Query Engine), 10932/tcp, 23057/tcp, 26676/tcp, 23421/tcp, 13599/tcp, 5338/tcp, 6393/tcp, 51807/tcp, 5500/tcp (fcp-addr-srvr1), 13688/tcp, 7649/tcp, 3361/tcp (KV Agent), 30303/tcp, 2637/tcp (Import Document Service), 4482/tcp, 1437/tcp (Tabula), 3380/tcp (SNS Channels), 8535/tcp, 1220/tcp (QT SERVER ADMIN), 33001/tcp, 9241/tcp, 42109/tcp, 5080/tcp (OnScreen Data Collection Service), 7699/tcp, 8059/tcp (Senomix Timesheets Client [1 year assignment]), 30967/tcp, 48769/tcp, 1528/tcp, 9800/tcp (WebDav Source Port), 15728/tcp, 33901/tcp, 2575/tcp (HL7), 3796/tcp (Spaceway Dialer), 9980/tcp, 13462/tcp, 3397/tcp (Cloanto License Manager), 3505/tcp (CCM communications port), 7591/tcp, 53389/tcp, 2874/tcp (DX Message Base Transport Protocol), 13183/tcp, 9029/tcp, 26000/tcp (quake), 4658/tcp (PlayStation2 App Port), 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 5135/tcp (ERP-Scale), 38516/tcp, 9002/tcp (DynamID authentication), 6161/tcp (PATROL Internet Srv Mgr), 26889/tcp, 2220/tcp (NetIQ End2End), 4821/tcp, 7479/tcp, 63839/tcp, 11173/tcp, 7890/tcp, 9991/tcp (OSM Event Server), 16490/tcp, 5082/tcp (Qpur Communication Protocol), 5468/tcp, 4197/tcp, 44604/tcp, 2661/tcp (OLHOST), 50664/tcp, 8039/tcp, 11412/tcp, 9999/tcp (distinct), 5807/tcp, 24656/tcp, 4761/tcp, 22452/tcp, 7181/tcp, 6116/tcp (XicTools License Manager Service), 5921/tcp, 20231/tcp, 8880/tcp (CDDBP), 7428/tcp (OpenView DM Log Agent Manager), 7374/tcp, 4243/tcp, 6247/tcp, 1736/tcp (street-stream), 9992/tcp (OnLive-1), 4477/tcp, 3536/tcp (SNAC), 49500/tcp, 11087/tcp, 9286/tcp, 3500/tcp (RTMP Port), 14032/tcp, 50546/tcp, 18754/tcp, 14638/tcp, 13527/tcp, 33380/tcp, 61054/tcp, 47250/tcp, 29331/tcp, 7380/tcp, 4555/tcp (RSIP Port), 6294/tcp, 7152/tcp, 1798/tcp (Event Transfer Protocol), 3485/tcp (CelaTalk), 7040/tcp, 2010/tcp (search), 17332/tcp, 10900/tcp, 2911/tcp (Blockade), 4593/tcp (IPT (ANRI-ANRI)), 2706/tcp (NCD Mirroring), 2019/tcp (whosockami), 4639/tcp, 16564/tcp, 7235/tcp, 11385/tcp, 4250/tcp, 10702/tcp, 13165/tcp, 11027/tcp, 3922/tcp (Soronti Update Port), 1212/tcp (lupa), 1009/tcp, 10699/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 2348/tcp (Information to query for game status), 5252/tcp (Movaz SSC), 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-12-29

Port scan from IP: 81.22.45.250 detected by psad.
BHD Honeypot
Port scan
2019-12-24

In the last 24h, the attacker (81.22.45.250) attempted to scan 16 ports.
The following ports have been scanned: 9072/tcp, 8744/tcp, 50500/tcp, 9098/tcp, 28795/tcp, 9908/tcp, 2040/tcp (lam), 3040/tcp (Tomato Springs), 12604/tcp, 9272/tcp, 1676/tcp (netcomm1), 8520/tcp, 10097/tcp, 2018/tcp (terminaldb), 46901/tcp, 51511/tcp.
      
BHD Honeypot
Port scan
2019-12-24

Port scan from IP: 81.22.45.250 detected by psad.
BHD Honeypot
Port scan
2019-12-16

In the last 24h, the attacker (81.22.45.250) attempted to scan 1259 ports.
The following ports have been scanned: 7636/tcp, 9097/tcp, 52667/tcp, 3352/tcp (Scalable SQL), 7879/tcp, 7914/tcp, 54070/tcp, 7633/tcp (PMDF Management), 5953/tcp, 9544/tcp, 2525/tcp (MS V-Worlds), 6189/tcp, 9050/tcp (Versiera Agent Listener), 6495/tcp, 58138/tcp, 55589/tcp, 6667/tcp, 58049/tcp, 7700/tcp (EM7 Secure Communications), 6001/tcp, 60600/tcp, 6016/tcp, 1515/tcp (ifor-protocol), 6453/tcp, 9093/tcp, 7468/tcp, 6530/tcp, 8088/tcp (Radan HTTP), 4468/tcp, 56565/tcp, 4664/tcp (Rimage Messaging Server), 4371/tcp (LAN2CAN Control), 2044/tcp (rimsl), 3757/tcp (GRF Server Port), 41434/tcp, 5406/tcp (Systemics Sox), 3958/tcp (MQEnterprise Agent), 11133/tcp, 41624/tcp, 9337/tcp, 61537/tcp, 4178/tcp (StorMan), 405/tcp (ncld), 39339/tcp, 9072/tcp, 9110/tcp, 3219/tcp (WMS Messenger), 2787/tcp (piccolo - Cornerstone Software), 10921/tcp, 4027/tcp (bitxpress), 5830/tcp, 11390/tcp, 27417/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 8500/tcp (Flight Message Transfer Protocol), 2224/tcp (Easy Flexible Internet/Multiplayer Games), 3700/tcp (LRS NetPage), 4646/tcp, 3396/tcp (Printer Agent), 3204/tcp (Network Watcher DB Access), 9374/tcp (fjdmimgr), 662/tcp (PFTP), 9700/tcp (Board M.I.T. Service), 6233/tcp, 5563/tcp, 9662/tcp, 55795/tcp, 6636/tcp, 8335/tcp, 8181/tcp, 680/tcp (entrust-aaas), 34244/tcp, 3410/tcp (NetworkLens SSL Event), 8693/tcp, 5425/tcp (Beyond Remote Command Channel), 64217/tcp, 39616/tcp, 3323/tcp, 4521/tcp, 6306/tcp (Unified Fabric Management Protocol), 7100/tcp (X Font Service), 4850/tcp (Sun App Server - NA), 5545/tcp, 6800/tcp, 3778/tcp (Cutler-Hammer IT Port), 1414/tcp (IBM MQSeries), 57952/tcp, 6610/tcp, 50089/tcp, 3390/tcp (Distributed Service Coordinator), 36363/tcp, 2236/tcp (Nani), 1012/tcp, 2682/tcp, 9006/tcp, 4591/tcp (HRPD L3T (AT-AN)), 3364/tcp (Creative Server), 63391/tcp, 2987/tcp (identify), 1910/tcp (UltraBac Software communications port), 60001/tcp, 4119/tcp (Assuria Log Manager), 30960/tcp, 5784/tcp, 3409/tcp (NetworkLens Event Port), 9514/tcp, 8011/tcp, 48272/tcp, 31122/tcp, 5353/tcp (Multicast DNS), 9132/tcp, 3303/tcp (OP Session Client), 42387/tcp, 3317/tcp (VSAI PORT), 1938/tcp (JetVWay Client Port), 6169/tcp, 4201/tcp, 5216/tcp, 4177/tcp (Wello P2P pubsub service), 6029/tcp, 8744/tcp, 5469/tcp, 56983/tcp, 8148/tcp (i-SDD file transfer), 60006/tcp, 10050/tcp (Zabbix Agent), 14144/tcp, 6300/tcp (BMC GRX), 3195/tcp (Network Control Unit), 40147/tcp, 3444/tcp (Denali Server), 6397/tcp, 1628/tcp (LonTalk normal), 4041/tcp (Rocketeer-Houston), 33339/tcp, 6627/tcp (Allied Electronics NeXGen), 6988/tcp, 50500/tcp, 20539/tcp, 2083/tcp (Secure Radius Service), 3403/tcp, 3878/tcp (FotoG CAD interface), 2002/tcp (globe), 61441/tcp, 3492/tcp (TVDUM Tray Port), 50208/tcp, 9300/tcp (Virtual Racing Service), 63500/tcp, 4008/tcp (NetCheque accounting), 2122/tcp (CauPC Remote Control), 4323/tcp (TRIM ICE Service), 12111/tcp, 4317/tcp, 3663/tcp (DIRECWAY Tunnel Protocol), 8885/tcp, 1024/tcp (Reserved), 9040/tcp, 7552/tcp, 9684/tcp, 8348/tcp, 5265/tcp (3Com Network Jack Port 2), 6006/tcp, 3343/tcp (MS Cluster Net), 10412/tcp, 5599/tcp (Enterprise Security Remote Install), 6030/tcp, 3383/tcp (Enterprise Software Products License Manager), 3407/tcp (LDAP admin server port), 2986/tcp (STONEFALLS), 6052/tcp, 45312/tcp, 48252/tcp, 5106/tcp, 6600/tcp (Microsoft Hyper-V Live Migration), 5555/tcp (Personal Agent), 5020/tcp (zenginkyo-1), 8794/tcp, 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 38671/tcp, 11326/tcp, 6203/tcp, 5010/tcp (TelepathStart), 3622/tcp (FF LAN Redundancy Port), 7980/tcp (Quest Vista), 50076/tcp, 4455/tcp (PR Chat User), 8023/tcp, 1035/tcp (MX-XR RPC), 42825/tcp, 8735/tcp, 8933/tcp, 8068/tcp, 6666/tcp, 5152/tcp (ESRI SDE Instance Discovery), 4932/tcp, 1400/tcp (Cadkey Tablet Daemon), 4647/tcp, 4030/tcp (Accell/JSP Daemon Port), 6729/tcp, 44105/tcp, 27514/tcp, 3404/tcp, 1040/tcp (Netarx Netcare), 6660/tcp, 60922/tcp, 7974/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 44187/tcp, 1096/tcp (Common Name Resolution Protocol), 45455/tcp, 63388/tcp, 51070/tcp, 3387/tcp (Back Room Net), 5225/tcp (HP Server), 6093/tcp, 3565/tcp (M2PA), 9898/tcp (MonkeyCom), 2435/tcp (OptiLogic), 1004/tcp, 6425/tcp, 3330/tcp (MCS Calypso ICF), 31729/tcp, 5598/tcp (MCT Market Data Feed), 33033/tcp, 57725/tcp, 5493/tcp, 22022/tcp, 5758/tcp, 2919/tcp (roboER), 3807/tcp (SpuGNA Communication Port), 5812/tcp, 4607/tcp, 14115/tcp, 3187/tcp (Open Design Listen Port), 2050/tcp (Avaya EMB Config Port), 6967/tcp, 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 5407/tcp (Foresyte-Clear), 4881/tcp, 1050/tcp (CORBA Management Agent), 4049/tcp (Wide Area File Services), 4426/tcp (SMARTS Beacon Port), 3254/tcp (PDA System), 7791/tcp, 5560/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 65535/tcp, 6000/tcp (-6063/udp   X Window System), 3267/tcp (IBM Dial Out), 3379/tcp (SOCORFS), 4295/tcp, 4300/tcp (Corel CCam), 4882/tcp, 55859/tcp, 7480/tcp, 53956/tcp, 54920/tcp, 6370/tcp (MetaEdit+ Server Administration), 5333/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 1090/tcp (FF Fieldbus Message Specification), 5657/tcp, 41606/tcp, 4343/tcp (UNICALL), 9301/tcp, 5244/tcp, 2389/tcp (OpenView Session Mgr), 6020/tcp, 3429/tcp (GCSP user port), 9497/tcp, 5917/tcp, 6455/tcp (SKIP Certificate Receive), 994/tcp (irc protocol over TLS/SSL), 5722/tcp (Microsoft DFS Replication Service), 62329/tcp, 2936/tcp (OTPatch), 9918/tcp, 4442/tcp (Saris), 60000/tcp, 47009/tcp, 2581/tcp (ARGIS TE), 3744/tcp (SASG), 6555/tcp, 4976/tcp, 3000/tcp (RemoteWare Client), 5/tcp (Remote Job Entry), 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 56789/tcp, 4060/tcp (DSMETER Inter-Agent Transfer Channel), 5656/tcp, 7291/tcp, 4315/tcp, 4530/tcp, 3302/tcp (MCS Fastmail), 64103/tcp, 3405/tcp (Nokia Announcement ch 1), 1020/tcp, 3174/tcp (ARMI Server), 63668/tcp, 1294/tcp (CMMdriver), 3332/tcp (MCS Mail Server), 4012/tcp (PDA Gate), 3535/tcp (MS-LA), 6969/tcp (acmsoda), 61500/tcp, 9225/tcp, 4136/tcp (Classic Line Database Server Request), 10015/tcp, 45113/tcp, 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 1098/tcp (RMI Activation), 8389/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 9675/tcp, 55596/tcp, 50505/tcp, 43171/tcp, 9908/tcp, 33203/tcp, 3347/tcp (Phoenix RPC), 8712/tcp, 4000/tcp (Terabase), 6467/tcp, 4567/tcp (TRAM), 3452/tcp (SABP-Signalling Protocol), 525/tcp (timeserver), 8154/tcp, 867/tcp, 9960/tcp, 1213/tcp (MPC LIFENET), 7982/tcp (Spotlight on SQL Server Desktop Agent), 4321/tcp (Remote Who Is), 2903/tcp (SUITCASE), 57681/tcp, 6879/tcp, 5769/tcp (x509solutions Internal CA), 51506/tcp, 47133/tcp, 39841/tcp, 39312/tcp, 6100/tcp (SynchroNet-db), 51749/tcp, 3111/tcp (Web Synchronous Services), 5048/tcp (Texai Message Service), 4202/tcp, 6943/tcp, 4102/tcp (Braille protocol), 5207/tcp, 6022/tcp, 4334/tcp, 7391/tcp (mind-file system server), 6235/tcp, 5764/tcp, 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 3386/tcp (GPRS Data), 9595/tcp (Ping Discovery Service), 62526/tcp, 5296/tcp, 39218/tcp, 5341/tcp, 51125/tcp, 4070/tcp (Trivial IP Encryption (TrIPE)), 10835/tcp, 4302/tcp (Diagnostic Data Control), 4412/tcp, 8179/tcp, 9007/tcp, 63366/tcp, 3200/tcp (Press-sense Tick Port), 3669/tcp (CA SAN Switch Management), 5350/tcp (NAT-PMP Status Announcements), 4539/tcp, 2829/tcp (silkp1), 51000/tcp, 5378/tcp, 57760/tcp, 3384/tcp (Cluster Management Services), 7392/tcp (mrss-rendezvous server), 5006/tcp (wsm server), 1887/tcp (FileX Listening Port), 7620/tcp, 1110/tcp (Start web admin server), 5973/tcp, 6212/tcp, 5511/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 3477/tcp (eComm link port), 3666/tcp (IBM eServer PAP), 50491/tcp, 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 9777/tcp, 4141/tcp (Workflow Server), 7036/tcp, 6129/tcp, 7785/tcp, 1313/tcp (BMC_PATROLDB), 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 55352/tcp, 3040/tcp (Tomato Springs), 6983/tcp, 50488/tcp, 3600/tcp (text relay-answer), 7779/tcp (VSTAT), 41292/tcp, 5070/tcp (VersaTrans Server Agent Service), 4779/tcp, 6612/tcp, 4291/tcp, 5315/tcp (HA Cluster UDP Polling), 38800/tcp, 944/tcp, 8081/tcp (Sun Proxy Admin Service), 3131/tcp (Net Book Mark), 5785/tcp (3PAR Inform Remote Copy), 9036/tcp, 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 5000/tcp (commplex-main), 1200/tcp (SCOL), 7356/tcp, 48957/tcp, 4427/tcp (Drizzle database server), 7888/tcp, 6738/tcp, 2449/tcp (RATL), 5905/tcp, 1686/tcp (cvmon), 1717/tcp (fj-hdnet), 5707/tcp, 5479/tcp, 7851/tcp, 52563/tcp, 54390/tcp, 7580/tcp, 1128/tcp (SAPHostControl over SOAP/HTTP), 2516/tcp (Main Control), 6240/tcp, 1086/tcp (CPL Scrambler Logging), 62105/tcp, 1243/tcp (SerialGateway), 3900/tcp (Unidata UDT OS), 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 2797/tcp (esp-encap), 2923/tcp (WTA-WSP-WTP-S), 3378/tcp (WSICOPY), 6916/tcp, 3445/tcp (Media Object Network), 8353/tcp, 4795/tcp, 9716/tcp, 1875/tcp (westell stats), 8682/tcp, 9704/tcp, 9983/tcp, 7999/tcp (iRDMI2), 44429/tcp, 1777/tcp (powerguardian), 4111/tcp (Xgrid), 3580/tcp (NATI-ServiceLocator), 8585/tcp, 6232/tcp, 54183/tcp, 1374/tcp (EPI Software Systems), 62710/tcp, 11020/tcp, 1055/tcp (ANSYS - License Manager), 38276/tcp, 4472/tcp, 4803/tcp (Notateit Messaging), 37284/tcp, 3606/tcp (Splitlock Server), 6082/tcp, 854/tcp, 42635/tcp, 2886/tcp (RESPONSELOGIC), 3371/tcp, 45044/tcp, 6214/tcp, 550/tcp (new-who), 40004/tcp, 8300/tcp (Transport Management Interface), 3346/tcp (Trnsprnt Proxy), 1880/tcp (Gilat VSAT Control), 1476/tcp (clvm-cfg), 38467/tcp, 4003/tcp (pxc-splr-ft), 9272/tcp, 3010/tcp (Telerate Workstation), 5021/tcp (zenginkyo-2), 52793/tcp, 48311/tcp, 5669/tcp, 1070/tcp (GMRUpdateSERV), 3473/tcp (JAUGS N-G Remotec 2), 3917/tcp (AFT multiplex port), 5594/tcp, 8109/tcp, 6145/tcp (StatSci License Manager - 2), 15/tcp, 12727/tcp, 55014/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 1100/tcp (MCTP), 11172/tcp (OEM cacao JMX-remoting access point), 81/tcp, 13259/tcp, 5654/tcp, 4080/tcp (Lorica inside facing), 3300/tcp, 6263/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6900/tcp, 54031/tcp, 8002/tcp (Teradata ORDBMS), 6002/tcp, 1676/tcp (netcomm1), 10134/tcp, 6656/tcp (Emergency Message Control Service), 7/tcp (Echo), 7157/tcp, 37749/tcp, 42142/tcp, 1026/tcp (Calendar Access Protocol), 57484/tcp, 61745/tcp, 778/tcp, 3593/tcp (BP Model Debugger), 39703/tcp, 2015/tcp (cypress), 2770/tcp (Veronica), 57777/tcp, 5817/tcp, 61648/tcp, 3637/tcp (Customer Service Port), 6050/tcp, 6121/tcp (SPDY for a faster web), 63373/tcp, 6465/tcp, 11988/tcp, 5666/tcp, 7771/tcp, 8898/tcp, 8656/tcp, 3400/tcp (CSMS2), 25767/tcp, 60088/tcp, 4020/tcp (TRAP Port), 9528/tcp, 6690/tcp, 59021/tcp, 9556/tcp, 2568/tcp (SPAM TRAP), 62483/tcp, 4360/tcp (Matrix VNet Communication Protocol), 63050/tcp, 5051/tcp (ITA Agent), 3355/tcp (Ordinox Dbase), 1428/tcp (Informatik License Manager), 6081/tcp, 5595/tcp, 345/tcp (Perf Analysis Workbench), 57243/tcp, 6641/tcp, 9852/tcp, 8111/tcp, 8881/tcp, 8390/tcp, 55445/tcp, 3338/tcp (OMF data b), 33471/tcp, 3354/tcp (SUITJD), 6956/tcp, 2090/tcp (Load Report Protocol), 58558/tcp, 3981/tcp (Starfish System Admin), 3501/tcp (iSoft-P2P), 4242/tcp, 6996/tcp, 3003/tcp (CGMS), 2424/tcp (KOFAX-SVR), 63389/tcp, 49996/tcp, 47693/tcp, 3020/tcp (CIFS), 7083/tcp, 1719/tcp (h323gatestat), 22396/tcp, 5551/tcp, 54186/tcp, 4181/tcp (MacBak), 2022/tcp (down), 2176/tcp (Microsoft ActiveSync Remote API), 59570/tcp, 3336/tcp (Direct TV Tickers), 5550/tcp, 2/tcp (Management Utility), 7174/tcp (Clutild), 50853/tcp, 5856/tcp, 11166/tcp, 64952/tcp, 5045/tcp (Open Settlement Protocol), 51524/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 10962/tcp, 4040/tcp (Yo.net main service), 41599/tcp, 7243/tcp, 11538/tcp, 3102/tcp (SoftlinK Slave Mon Port), 8129/tcp (PayCash Wallet-Browser), 3360/tcp (KV Server), 5641/tcp, 53934/tcp, 5847/tcp, 1234/tcp (Infoseek Search Agent), 7634/tcp, 4828/tcp, 50000/tcp, 2500/tcp (Resource Tracking system server), 4487/tcp (Protocol for Remote Execution over TCP), 8020/tcp (Intuit Entitlement Service and Discovery), 4389/tcp (Xandros Community Management Service), 26126/tcp, 102/tcp (ISO-TSAP Class 0), 7777/tcp (cbt), 5660/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 27808/tcp, 88/tcp (Kerberos), 9911/tcp (SYPECom Transport Protocol), 4444/tcp (NV Video default), 7417/tcp, 6310/tcp, 6200/tcp (LM-X License Manager by X-Formation), 2934/tcp (4-TIER OPM CLI), 3244/tcp (OneSAF), 9901/tcp, 5121/tcp, 32833/tcp, 5483/tcp, 2333/tcp (SNAPP), 53388/tcp, 2121/tcp (SCIENTIA-SSDB), 7750/tcp, 6420/tcp (NIM_VDRShell), 65000/tcp, 4489/tcp, 1984/tcp (BB), 43794/tcp, 6611/tcp, 36877/tcp, 6132/tcp, 1697/tcp (rrisat), 3370/tcp, 61684/tcp, 3334/tcp (Direct TV Webcasting), 568/tcp (microsoft shuttle), 44918/tcp, 1314/tcp (Photoscript Distributed Printing System), 4379/tcp (CTDB), 5987/tcp (WBEM RMI), 7001/tcp (callbacks to cache managers), 5593/tcp, 63827/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 5700/tcp, 4443/tcp (Pharos), 3402/tcp (FXa Engine Network Port), 4574/tcp, 7376/tcp, 48212/tcp, 5453/tcp (SureBox), 8000/tcp (iRDMI), 46456/tcp, 4495/tcp, 108/tcp (SNA Gateway Access Server), 5222/tcp (XMPP Client Connection), 10322/tcp, 7477/tcp, 4845/tcp (WordCruncher Remote Library Service), 6184/tcp, 59090/tcp, 5760/tcp, 52313/tcp, 60411/tcp, 43539/tcp, 34862/tcp, 60642/tcp, 2018/tcp (terminaldb), 57340/tcp, 2269/tcp (MIKEY), 423/tcp (IBM Operations Planning and Control Start), 402/tcp (Genie Protocol), 9577/tcp, 53471/tcp, 8182/tcp (VMware Fault Domain Manager), 4794/tcp, 62275/tcp, 6554/tcp, 9321/tcp (guibase), 57747/tcp, 5432/tcp (PostgreSQL Database), 5652/tcp, 6379/tcp, 5775/tcp, 6227/tcp, 4073/tcp (iRAPP Server Protocol), 52886/tcp, 10000/tcp (Network Data Management Protocol), 2020/tcp (xinupageserver), 3365/tcp (Content Server), 7880/tcp (Pearson), 2119/tcp (GSIGATEKEEPER), 4762/tcp, 2929/tcp (AMX-WEBADMIN), 2796/tcp (ac-tech), 8590/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 3706/tcp (Real-Time Event Port), 47537/tcp, 3989/tcp (BindView-Query Engine), 10932/tcp, 8293/tcp (Hiperscan Identification Service), 5338/tcp, 6393/tcp, 51807/tcp, 5500/tcp (fcp-addr-srvr1), 7878/tcp, 46901/tcp, 7649/tcp, 3361/tcp (KV Agent), 2637/tcp (Import Document Service), 4482/tcp, 5810/tcp, 43307/tcp, 7725/tcp (Nitrogen Service), 5960/tcp, 1437/tcp (Tabula), 3380/tcp (SNS Channels), 1220/tcp (QT SERVER ADMIN), 33001/tcp, 42109/tcp, 5080/tcp (OnScreen Data Collection Service), 7699/tcp, 48769/tcp, 1528/tcp, 33901/tcp, 2575/tcp (HL7), 3796/tcp (Spaceway Dialer), 52522/tcp, 3397/tcp (Cloanto License Manager), 3505/tcp (CCM communications port), 7591/tcp, 2874/tcp (DX Message Base Transport Protocol), 9029/tcp, 4658/tcp (PlayStation2 App Port), 2046/tcp (sdfunc), 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 5135/tcp (ERP-Scale), 38516/tcp, 6161/tcp (PATROL Internet Srv Mgr), 2220/tcp (NetIQ End2End), 24922/tcp (Find Identification of Network Devices), 7479/tcp, 63839/tcp, 7890/tcp, 4589/tcp, 5082/tcp (Qpur Communication Protocol), 5468/tcp, 4197/tcp, 44604/tcp, 2661/tcp (OLHOST), 50664/tcp, 8039/tcp, 5807/tcp, 4761/tcp, 7181/tcp, 63627/tcp, 6116/tcp (XicTools License Manager Service), 5921/tcp, 7428/tcp (OpenView DM Log Agent Manager), 7374/tcp, 4243/tcp, 6247/tcp, 9357/tcp, 1736/tcp (street-stream), 9992/tcp (OnLive-1), 4477/tcp, 3536/tcp (SNAC), 3500/tcp (RTMP Port), 33380/tcp, 61054/tcp, 47250/tcp, 4555/tcp (RSIP Port), 6294/tcp, 1798/tcp (Event Transfer Protocol), 3485/tcp (CelaTalk), 7040/tcp, 2010/tcp (search), 17332/tcp, 456/tcp (macon-tcp), 10900/tcp, 2911/tcp (Blockade), 4593/tcp (IPT (ANRI-ANRI)), 51056/tcp, 2706/tcp (NCD Mirroring), 2019/tcp (whosockami), 4639/tcp, 39833/tcp, 8401/tcp (sabarsd), 7235/tcp, 2178/tcp (Peer Services for BITS), 4250/tcp, 63653/tcp, 9453/tcp, 3922/tcp (Soronti Update Port), 1212/tcp (lupa), 1009/tcp, 10699/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 63395/tcp, 2348/tcp (Information to query for game status), 5252/tcp (Movaz SSC), 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-12-15

In the last 24h, the attacker (81.22.45.250) attempted to scan 2519 ports.
The following ports have been scanned: 7636/tcp, 9097/tcp, 52667/tcp, 3352/tcp (Scalable SQL), 7879/tcp, 8005/tcp (MXI Generation II for z/OS), 54070/tcp, 7633/tcp (PMDF Management), 29721/tcp, 9544/tcp, 11277/tcp, 2525/tcp (MS V-Worlds), 9050/tcp (Versiera Agent Listener), 10010/tcp (ooRexx rxapi services), 58138/tcp, 3589/tcp (isomair), 23392/tcp, 55589/tcp, 6667/tcp, 20678/tcp, 22875/tcp, 58049/tcp, 11550/tcp, 7700/tcp (EM7 Secure Communications), 10005/tcp (EMC Replication Manager Server), 6001/tcp, 60600/tcp, 1515/tcp (ifor-protocol), 33395/tcp, 10147/tcp, 22825/tcp, 32926/tcp, 6453/tcp, 12322/tcp (Warehouse Monitoring Syst), 9093/tcp, 22707/tcp, 6530/tcp, 8088/tcp (Radan HTTP), 4664/tcp (Rimage Messaging Server), 4371/tcp (LAN2CAN Control), 36831/tcp, 2044/tcp (rimsl), 3757/tcp (GRF Server Port), 41434/tcp, 45779/tcp, 21218/tcp, 3398/tcp (Mercantile), 11133/tcp, 41624/tcp, 9337/tcp, 61537/tcp, 11015/tcp, 62161/tcp, 405/tcp (ncld), 39339/tcp, 13770/tcp, 9009/tcp (Pichat Server), 9072/tcp, 44659/tcp, 10188/tcp, 10424/tcp, 32350/tcp, 9110/tcp, 33388/tcp, 33039/tcp, 10921/tcp, 4027/tcp (bitxpress), 9499/tcp, 5830/tcp, 27417/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 54640/tcp, 3700/tcp (LRS NetPage), 12121/tcp (NuPaper Session Service), 4646/tcp, 3204/tcp (Network Watcher DB Access), 9374/tcp (fjdmimgr), 13876/tcp, 8777/tcp, 38912/tcp, 8366/tcp, 5563/tcp, 56269/tcp, 2300/tcp (CVMMON), 9662/tcp, 55795/tcp, 8335/tcp, 15991/tcp, 8181/tcp, 9711/tcp, 14086/tcp, 680/tcp (entrust-aaas), 34244/tcp, 3410/tcp (NetworkLens SSL Event), 23495/tcp, 8693/tcp, 63798/tcp, 64217/tcp, 54038/tcp, 24829/tcp, 13381/tcp, 39616/tcp, 25798/tcp, 3323/tcp, 9090/tcp (WebSM), 6306/tcp (Unified Fabric Management Protocol), 7100/tcp (X Font Service), 4850/tcp (Sun App Server - NA), 34933/tcp, 27108/tcp, 12206/tcp, 6800/tcp, 1414/tcp (IBM MQSeries), 57952/tcp, 9443/tcp (WSO2 Tungsten HTTPS), 10011/tcp, 31762/tcp, 50089/tcp, 14946/tcp, 3390/tcp (Distributed Service Coordinator), 30001/tcp (Pago Services 1), 36363/tcp, 30832/tcp, 32130/tcp, 2236/tcp (Nani), 1012/tcp, 2682/tcp, 9006/tcp, 4591/tcp (HRPD L3T (AT-AN)), 3364/tcp (Creative Server), 63391/tcp, 1910/tcp (UltraBac Software communications port), 60001/tcp, 59999/tcp, 30960/tcp, 5784/tcp, 9514/tcp, 48272/tcp, 8662/tcp, 31122/tcp, 5353/tcp (Multicast DNS), 1031/tcp (BBN IAD), 50015/tcp, 9132/tcp, 32588/tcp, 3303/tcp (OP Session Client), 42387/tcp, 9578/tcp, 34344/tcp, 1938/tcp (JetVWay Client Port), 6169/tcp, 38000/tcp, 5216/tcp, 6029/tcp, 8087/tcp (Simplify Media SPP Protocol), 5469/tcp, 22222/tcp, 56983/tcp, 13679/tcp, 8148/tcp (i-SDD file transfer), 60006/tcp, 14144/tcp, 40147/tcp, 3444/tcp (Denali Server), 10024/tcp, 13289/tcp, 29144/tcp, 6397/tcp, 15151/tcp, 34287/tcp, 12748/tcp, 1628/tcp (LonTalk normal), 10513/tcp, 46458/tcp, 27356/tcp, 24822/tcp, 4041/tcp (Rocketeer-Houston), 8268/tcp, 33339/tcp, 6627/tcp (Allied Electronics NeXGen), 6988/tcp, 8400/tcp (cvd), 50500/tcp, 20539/tcp, 2083/tcp (Secure Radius Service), 10152/tcp, 3403/tcp, 10021/tcp, 3878/tcp (FotoG CAD interface), 2002/tcp (globe), 61441/tcp, 3492/tcp (TVDUM Tray Port), 50918/tcp, 50208/tcp, 2281/tcp (LNVCONSOLE), 9300/tcp (Virtual Racing Service), 24605/tcp, 63500/tcp, 4008/tcp (NetCheque accounting), 30002/tcp (Pago Services 2), 30000/tcp, 2122/tcp (CauPC Remote Control), 28061/tcp, 44947/tcp, 12111/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 15631/tcp, 15076/tcp, 34420/tcp, 1024/tcp (Reserved), 9040/tcp, 7552/tcp, 3263/tcp (E-Color Enterprise Imager), 9684/tcp, 16145/tcp, 31640/tcp, 8348/tcp, 12443/tcp, 7352/tcp, 10648/tcp, 2512/tcp (Citrix IMA), 6006/tcp, 23391/tcp, 8932/tcp, 3343/tcp (MS Cluster Net), 10412/tcp, 27992/tcp, 28559/tcp, 37777/tcp, 29755/tcp, 3383/tcp (Enterprise Software Products License Manager), 3407/tcp (LDAP admin server port), 2986/tcp (STONEFALLS), 6052/tcp, 45312/tcp, 36074/tcp, 10354/tcp, 48252/tcp, 5106/tcp, 35002/tcp, 10919/tcp, 19675/tcp, 9210/tcp (OMA Mobile Location Protocol), 7778/tcp (Interwise), 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 38671/tcp, 11326/tcp, 10081/tcp (FAM Archive Server), 6203/tcp, 11863/tcp, 9201/tcp (WAP session service), 5010/tcp (TelepathStart), 7474/tcp, 7575/tcp, 8048/tcp, 2835/tcp (EVTP-DATA), 3752/tcp (Vigil-IP RemoteAgent), 8663/tcp, 10806/tcp, 10941/tcp, 7980/tcp (Quest Vista), 11389/tcp, 50076/tcp, 22704/tcp, 4455/tcp (PR Chat User), 31313/tcp, 8023/tcp, 12194/tcp, 1035/tcp (MX-XR RPC), 9873/tcp, 16565/tcp, 42825/tcp, 10667/tcp, 8735/tcp, 1496/tcp (liberty-lm), 8933/tcp, 8068/tcp, 6666/tcp, 1045/tcp (Fingerprint Image Transfer Protocol), 4932/tcp, 10533/tcp, 1400/tcp (Cadkey Tablet Daemon), 4647/tcp, 20001/tcp (MicroSAN), 11468/tcp, 4888/tcp, 33902/tcp, 4030/tcp (Accell/JSP Daemon Port), 44105/tcp, 9685/tcp, 43066/tcp, 23805/tcp, 35734/tcp, 27514/tcp, 60922/tcp, 7974/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 9020/tcp (TAMBORA), 1096/tcp (Common Name Resolution Protocol), 45455/tcp, 63388/tcp, 15826/tcp, 43117/tcp, 51070/tcp, 9692/tcp, 3565/tcp (M2PA), 9898/tcp (MonkeyCom), 9098/tcp, 2435/tcp (OptiLogic), 1004/tcp, 10040/tcp, 13495/tcp, 6425/tcp, 33911/tcp, 31729/tcp, 5598/tcp (MCT Market Data Feed), 33033/tcp, 28543/tcp, 22022/tcp, 26654/tcp, 5758/tcp, 30257/tcp, 14209/tcp, 19548/tcp, 3807/tcp (SpuGNA Communication Port), 5812/tcp, 4607/tcp, 26368/tcp, 13208/tcp, 14115/tcp, 13627/tcp, 13924/tcp, 3187/tcp (Open Design Listen Port), 50005/tcp, 2050/tcp (Avaya EMB Config Port), 6967/tcp, 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 1050/tcp (CORBA Management Agent), 13899/tcp, 4049/tcp (Wide Area File Services), 10346/tcp, 12768/tcp, 3254/tcp (PDA System), 10769/tcp, 11022/tcp, 15003/tcp, 7791/tcp, 28091/tcp, 6989/tcp, 9119/tcp (MXit Instant Messaging), 65535/tcp, 41531/tcp, 6000/tcp (-6063/udp   X Window System), 27939/tcp, 42729/tcp, 31831/tcp, 27885/tcp, 40803/tcp, 3379/tcp (SOCORFS), 14141/tcp (VCS Application), 4300/tcp (Corel CCam), 4882/tcp, 13715/tcp, 8821/tcp, 55859/tcp, 7480/tcp, 11016/tcp, 53956/tcp, 54920/tcp, 6370/tcp (MetaEdit+ Server Administration), 9998/tcp (Distinct32), 11266/tcp, 5333/tcp, 28374/tcp, 7285/tcp, 10044/tcp, 14040/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 30556/tcp, 1090/tcp (FF Fieldbus Message Specification), 8600/tcp (Surveillance Data), 5657/tcp, 20669/tcp, 41606/tcp, 58047/tcp, 38305/tcp, 11159/tcp, 9301/tcp, 36562/tcp, 5244/tcp, 11056/tcp, 2389/tcp (OpenView Session Mgr), 7189/tcp, 10907/tcp, 52534/tcp, 25293/tcp, 8900/tcp (JMB-CDS 1), 5917/tcp, 6455/tcp (SKIP Certificate Receive), 16239/tcp, 994/tcp (irc protocol over TLS/SSL), 17177/tcp, 62329/tcp, 2936/tcp (OTPatch), 9918/tcp, 2080/tcp (Autodesk NLM (FLEXlm)), 4442/tcp (Saris), 60000/tcp, 47009/tcp, 49903/tcp, 9989/tcp, 28795/tcp, 32555/tcp, 4976/tcp, 3000/tcp (RemoteWare Client), 5561/tcp, 33576/tcp, 6604/tcp, 5/tcp (Remote Job Entry), 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 56789/tcp, 52814/tcp, 7291/tcp, 22251/tcp, 4315/tcp, 3302/tcp (MCS Fastmail), 8304/tcp, 64103/tcp, 59440/tcp, 23518/tcp, 26972/tcp, 43156/tcp, 13144/tcp, 3502/tcp (Avocent Install Discovery), 3405/tcp (Nokia Announcement ch 1), 1020/tcp, 19772/tcp, 63668/tcp, 1294/tcp (CMMdriver), 13900/tcp, 9129/tcp, 14730/tcp, 4012/tcp (PDA Gate), 3535/tcp (MS-LA), 38047/tcp, 8060/tcp, 61500/tcp, 9225/tcp, 9376/tcp, 4136/tcp (Classic Line Database Server Request), 10015/tcp, 45113/tcp, 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 10185/tcp, 1098/tcp (RMI Activation), 8389/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 10204/tcp, 9675/tcp, 13391/tcp, 55596/tcp, 50505/tcp, 9080/tcp (Groove GLRPC), 43171/tcp, 17009/tcp, 9908/tcp, 33203/tcp, 3347/tcp (Phoenix RPC), 8712/tcp, 24944/tcp, 54529/tcp, 64477/tcp, 4567/tcp (TRAM), 8202/tcp, 525/tcp (timeserver), 8154/tcp, 42941/tcp, 9905/tcp, 867/tcp, 41126/tcp, 9960/tcp, 44967/tcp, 18181/tcp (OPSEC CVP), 19210/tcp, 7982/tcp (Spotlight on SQL Server Desktop Agent), 4700/tcp (NetXMS Agent), 22143/tcp, 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 2475/tcp (ACE Server), 57681/tcp, 36477/tcp, 63006/tcp, 51506/tcp, 12965/tcp, 1818/tcp (Enhanced Trivial File Transfer Protocol), 47133/tcp, 1080/tcp (Socks), 39841/tcp, 37215/tcp, 39312/tcp, 6100/tcp (SynchroNet-db), 51749/tcp, 4/tcp, 3111/tcp (Web Synchronous Services), 19924/tcp, 24219/tcp, 16000/tcp (Administration Server Access), 8830/tcp, 6943/tcp, 10001/tcp (SCP Configuration), 6022/tcp, 7391/tcp (mind-file system server), 7951/tcp, 6235/tcp, 14001/tcp (SUA), 5764/tcp, 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 3386/tcp (GPRS Data), 23456/tcp (Aequus Service), 16149/tcp, 6716/tcp, 62526/tcp, 39218/tcp, 23233/tcp, 5341/tcp, 51125/tcp, 10835/tcp, 34265/tcp, 16753/tcp, 8981/tcp, 4412/tcp, 8179/tcp, 63366/tcp, 3669/tcp (CA SAN Switch Management), 31537/tcp, 43159/tcp, 4539/tcp, 2829/tcp (silkp1), 51000/tcp, 5378/tcp, 57760/tcp, 3384/tcp (Cluster Management Services), 16170/tcp, 7392/tcp (mrss-rendezvous server), 9987/tcp (DSM/SCM Target Interface), 5050/tcp (multimedia conference control tool), 1887/tcp (FileX Listening Port), 7111/tcp, 3936/tcp (Mailprox), 31197/tcp, 52645/tcp, 6212/tcp, 5511/tcp, 33390/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 13001/tcp, 9880/tcp, 3477/tcp (eComm link port), 3666/tcp (IBM eServer PAP), 50491/tcp, 63912/tcp, 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 1122/tcp (availant-mgr), 9777/tcp, 56943/tcp, 22950/tcp, 9324/tcp, 10797/tcp, 7036/tcp, 6129/tcp, 7785/tcp, 33895/tcp, 1313/tcp (BMC_PATROLDB), 8529/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 33890/tcp, 23698/tcp, 8861/tcp, 2040/tcp (lam), 2186/tcp (Guy-Tek Automated Update Applications), 55352/tcp, 3040/tcp (Tomato Springs), 6983/tcp, 8128/tcp (PayCash Online Protocol), 50488/tcp, 3600/tcp (text relay-answer), 33898/tcp, 17909/tcp, 7779/tcp (VSTAT), 13636/tcp, 4779/tcp, 6612/tcp, 23412/tcp, 5315/tcp (HA Cluster UDP Polling), 38800/tcp, 10111/tcp, 944/tcp, 8081/tcp (Sun Proxy Admin Service), 3131/tcp (Net Book Mark), 9970/tcp, 5785/tcp (3PAR Inform Remote Copy), 9025/tcp (Secure Web Access - 3), 9036/tcp, 12122/tcp, 5000/tcp (commplex-main), 1200/tcp (SCOL), 7356/tcp, 48957/tcp, 4427/tcp (Drizzle database server), 7888/tcp, 12638/tcp, 12705/tcp, 34945/tcp, 31195/tcp, 11144/tcp, 5905/tcp, 24607/tcp, 12166/tcp, 1686/tcp (cvmon), 64295/tcp, 1717/tcp (fj-hdnet), 17000/tcp, 11124/tcp, 1286/tcp (netuitive), 8137/tcp, 7851/tcp, 52563/tcp, 54390/tcp, 51484/tcp, 7580/tcp, 63219/tcp, 30385/tcp, 1128/tcp (SAPHostControl over SOAP/HTTP), 2516/tcp (Main Control), 1086/tcp (CPL Scrambler Logging), 62105/tcp, 1243/tcp (SerialGateway), 28382/tcp, 3900/tcp (Unidata UDT OS), 3152/tcp (FeiTian Port), 2797/tcp (esp-encap), 14157/tcp, 7388/tcp, 2923/tcp (WTA-WSP-WTP-S), 3378/tcp (WSICOPY), 10274/tcp, 63411/tcp, 6916/tcp, 2533/tcp (SnifferServer), 3394/tcp (D2K Tapestry Server to Server), 7565/tcp, 40618/tcp, 16173/tcp, 8353/tcp, 10961/tcp, 29613/tcp, 55340/tcp, 4795/tcp, 9716/tcp, 49873/tcp, 1875/tcp (westell stats), 8682/tcp, 38572/tcp, 49599/tcp, 10848/tcp, 5396/tcp, 1140/tcp (AutoNOC Network Operations Protocol), 9983/tcp, 7999/tcp (iRDMI2), 44429/tcp, 1777/tcp (powerguardian), 33397/tcp, 4111/tcp (Xgrid), 7677/tcp (Sun App Server - HTTPS), 21217/tcp, 38907/tcp, 1089/tcp (FF Annunciation), 54183/tcp, 1374/tcp (EPI Software Systems), 62710/tcp, 9555/tcp (Trispen Secure Remote Access), 9014/tcp, 11020/tcp, 36166/tcp, 1055/tcp (ANSYS - License Manager), 38276/tcp, 33789/tcp, 4472/tcp, 4803/tcp (Notateit Messaging), 9600/tcp (MICROMUSE-NCPW), 37284/tcp, 16257/tcp, 3606/tcp (Splitlock Server), 29853/tcp, 9187/tcp, 12604/tcp, 47673/tcp, 47604/tcp, 13206/tcp, 42635/tcp, 6178/tcp, 47278/tcp, 2886/tcp (RESPONSELOGIC), 3371/tcp, 45044/tcp, 13733/tcp, 18261/tcp, 6262/tcp, 6214/tcp, 550/tcp (new-who), 39268/tcp, 40004/tcp, 8300/tcp (Transport Management Interface), 3346/tcp (Trnsprnt Proxy), 1880/tcp (Gilat VSAT Control), 1476/tcp (clvm-cfg), 33893/tcp, 38467/tcp, 2888/tcp (SPCSDLOBBY), 31263/tcp, 4003/tcp (pxc-splr-ft), 7526/tcp, 33009/tcp, 9272/tcp, 33884/tcp, 32599/tcp, 8702/tcp, 8583/tcp, 3010/tcp (Telerate Workstation), 7776/tcp, 52793/tcp, 48311/tcp, 5669/tcp, 7060/tcp, 3473/tcp (JAUGS N-G Remotec 2), 28059/tcp, 3917/tcp (AFT multiplex port), 5594/tcp, 8109/tcp, 8307/tcp, 6145/tcp (StatSci License Manager - 2), 15/tcp, 12727/tcp, 55014/tcp, 11484/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 15288/tcp, 9494/tcp, 44809/tcp, 1100/tcp (MCTP), 11172/tcp (OEM cacao JMX-remoting access point), 36704/tcp, 13259/tcp, 5654/tcp, 4080/tcp (Lorica inside facing), 9797/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6900/tcp, 8002/tcp (Teradata ORDBMS), 1676/tcp (netcomm1), 10080/tcp (Amanda), 10134/tcp, 7/tcp (Echo), 13131/tcp, 8963/tcp, 23389/tcp, 38009/tcp, 37749/tcp, 42142/tcp, 1026/tcp (Calendar Access Protocol), 9596/tcp (Mercury Discovery), 57484/tcp, 61745/tcp, 936/tcp, 778/tcp, 10190/tcp, 3593/tcp (BP Model Debugger), 64717/tcp, 39703/tcp, 13421/tcp, 2015/tcp (cypress), 7994/tcp, 2770/tcp (Veronica), 39565/tcp, 30003/tcp, 57777/tcp, 55555/tcp, 5817/tcp, 25325/tcp, 8544/tcp, 22296/tcp, 3637/tcp (Customer Service Port), 41649/tcp, 6050/tcp, 6121/tcp (SPDY for a faster web), 24193/tcp, 63373/tcp, 6465/tcp, 11988/tcp, 34210/tcp, 8984/tcp, 6025/tcp, 7771/tcp, 8898/tcp, 9236/tcp, 8656/tcp, 10392/tcp, 3400/tcp (CSMS2), 7693/tcp, 5400/tcp (Excerpt Search), 33386/tcp, 25767/tcp, 60088/tcp, 9010/tcp (Secure Data Replicator Protocol), 7641/tcp, 4020/tcp (TRAP Port), 6690/tcp, 9669/tcp, 8520/tcp, 2568/tcp (SPAM TRAP), 62483/tcp, 63050/tcp, 3355/tcp (Ordinox Dbase), 6566/tcp (SANE Control Port), 29931/tcp, 11904/tcp, 5595/tcp, 23976/tcp, 345/tcp (Perf Analysis Workbench), 57243/tcp, 10500/tcp, 6641/tcp, 35535/tcp, 45678/tcp (EBA PRISE), 9852/tcp, 8111/tcp, 8881/tcp, 33880/tcp, 8390/tcp, 55445/tcp, 6777/tcp, 4939/tcp, 3338/tcp (OMF data b), 33471/tcp, 21416/tcp, 3354/tcp (SUITJD), 6956/tcp, 2090/tcp (Load Report Protocol), 19734/tcp, 58558/tcp, 14709/tcp, 3981/tcp (Starfish System Admin), 3501/tcp (iSoft-P2P), 6996/tcp, 2424/tcp (KOFAX-SVR), 63389/tcp, 49996/tcp, 21463/tcp, 21193/tcp, 8345/tcp, 7083/tcp, 10408/tcp, 1719/tcp (h323gatestat), 22396/tcp, 16509/tcp, 54186/tcp, 4181/tcp (MacBak), 9701/tcp, 11204/tcp, 2022/tcp (down), 19501/tcp, 10095/tcp, 2176/tcp (Microsoft ActiveSync Remote API), 59570/tcp, 54153/tcp, 33167/tcp, 11689/tcp, 33210/tcp, 10697/tcp, 41000/tcp, 35851/tcp, 3336/tcp (Direct TV Tickers), 5550/tcp, 250/tcp, 2/tcp (Management Utility), 7174/tcp (Clutild), 50853/tcp, 10238/tcp, 11166/tcp, 64952/tcp, 12345/tcp (Italk Chat System), 10/tcp, 8084/tcp, 51524/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 10962/tcp, 1013/tcp, 32382/tcp, 10097/tcp, 18267/tcp, 41599/tcp, 7243/tcp, 10374/tcp, 13988/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 11538/tcp, 17777/tcp (SolarWinds Orion), 10770/tcp, 42636/tcp, 53934/tcp, 1234/tcp (Infoseek Search Agent), 9702/tcp, 4828/tcp, 40000/tcp (SafetyNET p), 50000/tcp, 3418/tcp (Remote nmap), 2481/tcp (Oracle GIOP), 2500/tcp (Resource Tracking system server), 4487/tcp (Protocol for Remote Execution over TCP), 14804/tcp, 9188/tcp, 12753/tcp (tsaf port), 8020/tcp (Intuit Entitlement Service and Discovery), 4389/tcp (Xandros Community Management Service), 26126/tcp, 7617/tcp, 10495/tcp, 9200/tcp (WAP connectionless session service), 14000/tcp (SCOTTY High-Speed Filetransfer), 102/tcp (ISO-TSAP Class 0), 15760/tcp, 10977/tcp, 38393/tcp, 7777/tcp (cbt), 8070/tcp, 12931/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 2626/tcp (gbjd816), 27808/tcp, 21027/tcp, 88/tcp (Kerberos), 9911/tcp (SYPECom Transport Protocol), 27777/tcp, 7417/tcp, 6310/tcp, 11003/tcp, 34304/tcp, 2934/tcp (4-TIER OPM CLI), 3244/tcp (OneSAF), 9901/tcp, 33891/tcp, 32833/tcp, 12001/tcp (IBM Enterprise Extender SNA COS Network Priority), 10099/tcp, 21481/tcp, 19195/tcp, 9070/tcp, 28878/tcp, 9915/tcp, 51525/tcp, 25555/tcp, 13637/tcp, 2333/tcp (SNAPP), 5024/tcp (SCPI-TELNET), 40257/tcp, 53388/tcp, 8033/tcp (MindPrint), 2121/tcp (SCIENTIA-SSDB), 7750/tcp, 6420/tcp (NIM_VDRShell), 65000/tcp, 21141/tcp, 4489/tcp, 1984/tcp (BB), 13757/tcp, 43794/tcp, 6611/tcp, 36877/tcp, 11526/tcp, 1697/tcp (rrisat), 61684/tcp, 3334/tcp (Direct TV Webcasting), 8955/tcp, 45454/tcp, 568/tcp (microsoft shuttle), 21252/tcp, 44918/tcp, 1314/tcp (Photoscript Distributed Printing System), 18714/tcp, 23879/tcp, 17171/tcp, 19800/tcp, 20428/tcp, 5987/tcp (WBEM RMI), 14487/tcp, 16139/tcp, 7001/tcp (callbacks to cache managers), 9350/tcp, 5593/tcp, 9004/tcp, 63827/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 15001/tcp, 3402/tcp (FXa Engine Network Port), 35105/tcp, 7376/tcp, 28481/tcp, 48212/tcp, 36739/tcp, 46273/tcp, 24705/tcp, 7733/tcp, 8000/tcp (iRDMI), 29292/tcp, 46456/tcp, 51971/tcp, 16668/tcp, 27392/tcp, 19191/tcp (OPSEC UAA), 9771/tcp, 10322/tcp, 7477/tcp, 4845/tcp (WordCruncher Remote Library Service), 59090/tcp, 8952/tcp, 52313/tcp, 60411/tcp, 30979/tcp, 5230/tcp, 43539/tcp, 7041/tcp, 41217/tcp, 34862/tcp, 46602/tcp, 8444/tcp (PCsync HTTP), 57340/tcp, 2269/tcp (MIKEY), 29091/tcp, 8850/tcp, 51742/tcp, 1600/tcp (issd), 7452/tcp, 423/tcp (IBM Operations Planning and Control Start), 35842/tcp, 11128/tcp, 402/tcp (Genie Protocol), 8282/tcp, 11716/tcp, 7538/tcp, 9577/tcp, 53471/tcp, 8182/tcp (VMware Fault Domain Manager), 10022/tcp, 4794/tcp, 62275/tcp, 23885/tcp, 6554/tcp, 9321/tcp (guibase), 9994/tcp (OnLive-3), 37040/tcp, 36280/tcp, 9969/tcp, 57747/tcp, 5652/tcp, 4606/tcp, 6363/tcp, 25347/tcp, 5775/tcp, 22454/tcp, 6227/tcp, 4073/tcp (iRAPP Server Protocol), 52886/tcp, 10000/tcp (Network Data Management Protocol), 1256/tcp (de-server), 2020/tcp (xinupageserver), 3365/tcp (Content Server), 42536/tcp, 7880/tcp (Pearson), 5833/tcp, 3342/tcp (WebTIE), 1486/tcp (nms_topo_serv), 8602/tcp, 4762/tcp, 2929/tcp (AMX-WEBADMIN), 41464/tcp, 2796/tcp (ac-tech), 7900/tcp (Multicast Event), 51492/tcp, 15850/tcp, 10736/tcp, 8590/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 3706/tcp (Real-Time Event Port), 47537/tcp, 3989/tcp (BindView-Query Engine), 10932/tcp, 8775/tcp, 23057/tcp, 26676/tcp, 5413/tcp (WWIOTALK), 23421/tcp, 13599/tcp, 6393/tcp, 8924/tcp, 51807/tcp, 7878/tcp, 46901/tcp, 13688/tcp, 7649/tcp, 3361/tcp (KV Agent), 30303/tcp, 2637/tcp (Import Document Service), 5810/tcp, 43307/tcp, 7725/tcp (Nitrogen Service), 5960/tcp, 1437/tcp (Tabula), 3380/tcp (SNS Channels), 8535/tcp, 1220/tcp (QT SERVER ADMIN), 33001/tcp, 9241/tcp, 42109/tcp, 5080/tcp (OnScreen Data Collection Service), 8059/tcp (Senomix Timesheets Client [1 year assignment]), 30967/tcp, 48769/tcp, 1528/tcp, 9800/tcp (WebDav Source Port), 15728/tcp, 33901/tcp, 2575/tcp (HL7), 3796/tcp (Spaceway Dialer), 9980/tcp, 23186/tcp, 52522/tcp, 13462/tcp, 3397/tcp (Cloanto License Manager), 7591/tcp, 53389/tcp, 2874/tcp (DX Message Base Transport Protocol), 13183/tcp, 9029/tcp, 26000/tcp (quake), 40400/tcp, 2046/tcp (sdfunc), 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 38516/tcp, 34016/tcp, 6161/tcp (PATROL Internet Srv Mgr), 26889/tcp, 2220/tcp (NetIQ End2End), 24922/tcp (Find Identification of Network Devices), 4821/tcp, 7479/tcp, 63839/tcp, 11173/tcp, 7890/tcp, 9991/tcp (OSM Event Server), 4589/tcp, 16490/tcp, 5082/tcp (Qpur Communication Protocol), 44604/tcp, 2661/tcp (OLHOST), 50664/tcp, 8039/tcp, 12052/tcp, 11412/tcp, 21509/tcp, 9999/tcp (distinct), 21210/tcp, 5807/tcp, 24656/tcp, 4761/tcp, 22452/tcp, 7181/tcp, 7681/tcp, 63627/tcp, 39941/tcp, 20231/tcp, 21611/tcp, 8880/tcp (CDDBP), 7428/tcp (OpenView DM Log Agent Manager), 7113/tcp, 6247/tcp, 9931/tcp, 1736/tcp (street-stream), 4477/tcp, 44505/tcp, 29080/tcp, 3536/tcp (SNAC), 49500/tcp, 11087/tcp, 22458/tcp, 9286/tcp, 3500/tcp (RTMP Port), 14032/tcp, 50546/tcp, 18754/tcp, 51511/tcp, 14638/tcp, 13527/tcp, 33380/tcp, 61054/tcp, 40030/tcp, 47250/tcp, 45270/tcp, 29331/tcp, 7380/tcp, 4555/tcp (RSIP Port), 43994/tcp, 6294/tcp, 7152/tcp, 1798/tcp (Event Transfer Protocol), 30010/tcp, 7040/tcp, 2010/tcp (search), 17332/tcp, 456/tcp (macon-tcp), 10900/tcp, 7237/tcp, 8475/tcp, 33894/tcp, 51056/tcp, 39811/tcp, 12582/tcp, 2706/tcp (NCD Mirroring), 2019/tcp (whosockami), 39833/tcp, 16564/tcp, 8401/tcp (sabarsd), 7235/tcp, 11385/tcp, 55678/tcp, 13054/tcp, 2178/tcp (Peer Services for BITS), 10702/tcp, 13165/tcp, 11027/tcp, 60061/tcp, 63653/tcp, 9453/tcp, 3922/tcp (Soronti Update Port), 1212/tcp (lupa), 35404/tcp, 10699/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 63395/tcp, 2348/tcp (Information to query for game status), 5252/tcp (Movaz SSC), 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-12-14

In the last 24h, the attacker (81.22.45.250) attempted to scan 139 ports.
The following ports have been scanned: 5387/tcp, 5953/tcp, 6189/tcp, 9990/tcp (OSM Applet Server), 4664/tcp (Rimage Messaging Server), 9110/tcp, 3219/tcp (WMS Messenger), 9000/tcp (CSlistener), 662/tcp (PFTP), 2300/tcp (CVMMON), 8335/tcp, 13381/tcp, 2987/tcp (identify), 6169/tcp, 4177/tcp (Wello P2P pubsub service), 8744/tcp, 8087/tcp (Simplify Media SPP Protocol), 12832/tcp, 8148/tcp (i-SDD file transfer), 6397/tcp, 10152/tcp, 4008/tcp (NetCheque accounting), 2122/tcp (CauPC Remote Control), 3383/tcp (Enterprise Software Products License Manager), 9210/tcp (OMA Mobile Location Protocol), 5020/tcp (zenginkyo-1), 8794/tcp, 10081/tcp (FAM Archive Server), 7474/tcp, 7575/tcp, 2835/tcp (EVTP-DATA), 8663/tcp, 4888/tcp, 8267/tcp, 3330/tcp (MCS Calypso ICF), 13627/tcp, 6967/tcp, 5254/tcp, 10346/tcp, 12768/tcp, 11022/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 3744/tcp (SASG), 3502/tcp (Avocent Install Discovery), 9129/tcp, 14730/tcp, 64477/tcp, 4567/tcp (TRAM), 3198/tcp (Embrace Device Protocol Client), 2475/tcp (ACE Server), 6879/tcp, 9091/tcp (xmltec-xmlmail), 7391/tcp (mind-file system server), 9595/tcp (Ping Discovery Service), 9007/tcp, 5378/tcp, 5006/tcp (wsm server), 9444/tcp (WSO2 ESB Administration Console HTTPS), 6095/tcp, 5511/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 33895/tcp, 8529/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 8128/tcp (PayCash Online Protocol), 3600/tcp (text relay-answer), 4413/tcp, 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 12638/tcp, 1286/tcp (netuitive), 8585/tcp, 6232/tcp, 6082/tcp, 6214/tcp, 8300/tcp (Transport Management Interface), 2888/tcp (SPCSDLOBBY), 7060/tcp, 9758/tcp, 8002/tcp (Teradata ORDBMS), 7157/tcp, 13421/tcp, 63373/tcp, 7693/tcp, 9556/tcp, 6587/tcp, 21463/tcp, 4181/tcp (MacBak), 11204/tcp, 59570/tcp, 250/tcp, 10238/tcp, 3726/tcp (Xyratex Array Manager), 3360/tcp (KV Server), 5847/tcp, 7634/tcp, 4444/tcp (NV Video default), 7000/tcp (file server itself), 8033/tcp (MindPrint), 3370/tcp, 5987/tcp (WBEM RMI), 9350/tcp, 9393/tcp, 4574/tcp, 11818/tcp, 3365/tcp (Content Server), 8590/tcp, 3989/tcp (BindView-Query Engine), 5413/tcp (WWIOTALK), 5338/tcp, 7878/tcp, 5810/tcp, 8535/tcp, 8059/tcp (Senomix Timesheets Client [1 year assignment]), 2575/tcp (HL7), 40400/tcp, 4243/tcp, 6247/tcp, 9357/tcp, 9992/tcp (OnLive-1), 3485/tcp (CelaTalk), 7237/tcp, 8475/tcp, 2019/tcp (whosockami), 1009/tcp.
      
BHD Honeypot
Port scan
2019-12-14

Port scan from IP: 81.22.45.250 detected by psad.
BHD Honeypot
Port scan
2019-11-23

In the last 24h, the attacker (81.22.45.250) attempted to scan 558 ports.
The following ports have been scanned: 9097/tcp, 54070/tcp, 7633/tcp (PMDF Management), 29721/tcp, 5953/tcp, 58138/tcp, 55589/tcp, 6667/tcp, 22875/tcp, 58049/tcp, 6001/tcp, 60600/tcp, 10147/tcp, 22825/tcp, 12322/tcp (Warehouse Monitoring Syst), 6530/tcp, 36831/tcp, 41434/tcp, 45779/tcp, 5406/tcp (Systemics Sox), 21218/tcp, 3398/tcp (Mercantile), 41624/tcp, 405/tcp (ncld), 9009/tcp (Pichat Server), 32350/tcp, 33388/tcp, 33039/tcp, 54640/tcp, 2224/tcp (Easy Flexible Internet/Multiplayer Games), 3700/tcp (LRS NetPage), 4646/tcp, 3396/tcp (Printer Agent), 3204/tcp (Network Watcher DB Access), 9000/tcp (CSlistener), 8777/tcp, 15991/tcp, 3410/tcp (NetworkLens SSL Event), 5425/tcp (Beyond Remote Command Channel), 63798/tcp, 24829/tcp, 39616/tcp, 3323/tcp, 4850/tcp (Sun App Server - NA), 27108/tcp, 12206/tcp, 57952/tcp, 6610/tcp, 3390/tcp (Distributed Service Coordinator), 30832/tcp, 32130/tcp, 1012/tcp, 2682/tcp, 4591/tcp (HRPD L3T (AT-AN)), 59999/tcp, 8011/tcp, 31122/tcp, 5353/tcp (Multicast DNS), 1031/tcp (BBN IAD), 50015/tcp, 9132/tcp, 42387/tcp, 9578/tcp, 38000/tcp, 4201/tcp, 5216/tcp, 4177/tcp (Wello P2P pubsub service), 8744/tcp, 8087/tcp (Simplify Media SPP Protocol), 22222/tcp, 13679/tcp, 14144/tcp, 3195/tcp (Network Control Unit), 10024/tcp, 13289/tcp, 29144/tcp, 6397/tcp, 15151/tcp, 46458/tcp, 50500/tcp, 20539/tcp, 2083/tcp (Secure Radius Service), 3403/tcp, 10021/tcp, 61441/tcp, 3492/tcp (TVDUM Tray Port), 2281/tcp (LNVCONSOLE), 9300/tcp (Virtual Racing Service), 24605/tcp, 30002/tcp (Pago Services 2), 12111/tcp, 15631/tcp, 15076/tcp, 1024/tcp (Reserved), 9684/tcp, 31640/tcp, 12443/tcp, 5265/tcp (3Com Network Jack Port 2), 23391/tcp, 8932/tcp, 3343/tcp (MS Cluster Net), 37777/tcp, 3407/tcp (LDAP admin server port), 2986/tcp (STONEFALLS), 45312/tcp, 36074/tcp, 35002/tcp, 10919/tcp, 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 38671/tcp, 5010/tcp (TelepathStart), 8048/tcp, 3622/tcp (FF LAN Redundancy Port), 2835/tcp (EVTP-DATA), 3752/tcp (Vigil-IP RemoteAgent), 42825/tcp, 6666/tcp, 1045/tcp (Fingerprint Image Transfer Protocol), 20001/tcp (MicroSAN), 11468/tcp, 6729/tcp, 35734/tcp, 1040/tcp (Netarx Netcare), 1096/tcp (Common Name Resolution Protocol), 45455/tcp, 15826/tcp, 8267/tcp, 51070/tcp, 2435/tcp (OptiLogic), 1004/tcp, 10040/tcp, 6425/tcp, 3330/tcp (MCS Calypso ICF), 5598/tcp (MCT Market Data Feed), 28543/tcp, 5493/tcp, 22022/tcp, 26654/tcp, 2919/tcp (roboER), 30257/tcp, 19548/tcp, 26368/tcp, 13627/tcp, 13924/tcp, 3187/tcp (Open Design Listen Port), 2050/tcp (Avaya EMB Config Port), 4881/tcp, 1050/tcp (CORBA Management Agent), 10346/tcp, 12768/tcp, 4426/tcp (SMARTS Beacon Port), 3254/tcp (PDA System), 10769/tcp, 15003/tcp, 28091/tcp, 65535/tcp, 6000/tcp (-6063/udp   X Window System), 40803/tcp, 3267/tcp (IBM Dial Out), 14141/tcp (VCS Application), 6370/tcp (MetaEdit+ Server Administration), 9998/tcp (Distinct32), 11266/tcp, 28374/tcp, 7285/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 58047/tcp, 4343/tcp (UNICALL), 11159/tcp, 36562/tcp, 2389/tcp (OpenView Session Mgr), 7189/tcp, 9497/tcp, 16239/tcp, 994/tcp (irc protocol over TLS/SSL), 17177/tcp, 62329/tcp, 2936/tcp (OTPatch), 60000/tcp, 47009/tcp, 2581/tcp (ARGIS TE), 3000/tcp (RemoteWare Client), 5561/tcp, 33576/tcp, 5/tcp (Remote Job Entry), 56789/tcp, 52814/tcp, 4060/tcp (DSMETER Inter-Agent Transfer Channel), 7291/tcp, 22251/tcp, 4530/tcp, 3302/tcp (MCS Fastmail), 8304/tcp, 43156/tcp, 3405/tcp (Nokia Announcement ch 1), 1020/tcp, 19772/tcp, 3174/tcp (ARMI Server), 63668/tcp, 14730/tcp, 4012/tcp (PDA Gate), 3535/tcp (MS-LA), 61500/tcp, 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 1098/tcp (RMI Activation), 50505/tcp, 3347/tcp (Phoenix RPC), 8712/tcp, 4000/tcp (Terabase), 54529/tcp, 4567/tcp (TRAM), 8202/tcp, 9960/tcp, 18181/tcp (OPSEC CVP), 19210/tcp, 4700/tcp (NetXMS Agent), 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 8083/tcp (Utilistor (Server)), 2475/tcp (ACE Server), 5769/tcp (x509solutions Internal CA), 51506/tcp, 39841/tcp, 6100/tcp (SynchroNet-db), 4/tcp, 3111/tcp (Web Synchronous Services), 9091/tcp (xmltec-xmlmail), 4202/tcp, 16000/tcp (Administration Server Access), 5207/tcp, 6022/tcp, 5764/tcp, 62526/tcp, 5296/tcp, 39218/tcp, 23233/tcp, 51125/tcp, 34265/tcp, 4302/tcp (Diagnostic Data Control), 16753/tcp, 8981/tcp, 63366/tcp, 3200/tcp (Press-sense Tick Port), 4539/tcp, 57760/tcp, 3384/tcp (Cluster Management Services), 16170/tcp, 9987/tcp (DSM/SCM Target Interface), 5050/tcp (multimedia conference control tool), 1887/tcp (FileX Listening Port), 5973/tcp, 6095/tcp, 6212/tcp, 33390/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 13001/tcp, 9880/tcp, 3477/tcp (eComm link port), 63912/tcp, 1122/tcp (availant-mgr), 56943/tcp, 10797/tcp, 1313/tcp (BMC_PATROLDB), 33389/tcp, 23698/tcp, 2040/tcp (lam), 8128/tcp (PayCash Online Protocol), 4779/tcp, 23412/tcp, 3131/tcp (Net Book Mark), 9970/tcp, 5785/tcp (3PAR Inform Remote Copy), 9036/tcp, 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 5000/tcp (commplex-main), 7356/tcp, 48957/tcp, 7888/tcp, 34945/tcp, 31195/tcp, 11144/tcp, 2449/tcp (RATL), 24607/tcp, 1686/tcp (cvmon), 1717/tcp (fj-hdnet), 17000/tcp, 52563/tcp, 54390/tcp, 51484/tcp, 28382/tcp, 3900/tcp (Unidata UDT OS), 3378/tcp (WSICOPY), 40618/tcp, 8353/tcp, 29613/tcp, 55340/tcp, 1875/tcp (westell stats), 1140/tcp (AutoNOC Network Operations Protocol), 44429/tcp, 33397/tcp, 21217/tcp, 54183/tcp, 1374/tcp (EPI Software Systems), 9014/tcp, 1055/tcp (ANSYS - License Manager), 37284/tcp, 3606/tcp (Splitlock Server), 47673/tcp, 6082/tcp, 854/tcp, 42635/tcp, 3371/tcp, 13733/tcp, 6262/tcp, 6214/tcp, 39268/tcp, 33893/tcp, 38467/tcp, 31263/tcp, 4003/tcp (pxc-splr-ft), 7526/tcp, 7776/tcp, 52793/tcp, 1070/tcp (GMRUpdateSERV), 28059/tcp, 3917/tcp (AFT multiplex port), 15/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 15288/tcp, 11172/tcp (OEM cacao JMX-remoting access point), 5654/tcp, 9797/tcp, 6263/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 10080/tcp (Amanda), 23389/tcp, 37749/tcp, 42142/tcp, 1026/tcp (Calendar Access Protocol), 936/tcp, 10190/tcp, 3593/tcp (BP Model Debugger), 64717/tcp, 39703/tcp, 2015/tcp (cypress), 7994/tcp, 57777/tcp, 25325/tcp, 6121/tcp (SPDY for a faster web), 63373/tcp, 5666/tcp, 8898/tcp, 8656/tcp, 10392/tcp, 5400/tcp (Excerpt Search), 33386/tcp, 25767/tcp, 6690/tcp, 59021/tcp, 2568/tcp (SPAM TRAP), 4360/tcp (Matrix VNet Communication Protocol), 3355/tcp (Ordinox Dbase), 9920/tcp, 6081/tcp, 57243/tcp, 10500/tcp, 45678/tcp (EBA PRISE), 9852/tcp, 8881/tcp, 55445/tcp, 6777/tcp, 4939/tcp, 3338/tcp (OMF data b), 3354/tcp (SUITJD), 2090/tcp (Load Report Protocol), 58558/tcp, 3981/tcp (Starfish System Admin), 3003/tcp (CGMS), 63389/tcp, 21193/tcp, 3020/tcp (CIFS), 8345/tcp, 5551/tcp, 19501/tcp, 10095/tcp, 59570/tcp, 54153/tcp, 33167/tcp, 50853/tcp, 5856/tcp, 10/tcp, 5045/tcp (Open Settlement Protocol), 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 10962/tcp, 18267/tcp, 4040/tcp (Yo.net main service), 13988/tcp, 11538/tcp, 3360/tcp (KV Server), 5641/tcp, 42636/tcp, 53934/tcp, 4828/tcp, 50000/tcp, 2481/tcp (Oracle GIOP), 4487/tcp (Protocol for Remote Execution over TCP), 11146/tcp, 12753/tcp (tsaf port), 8020/tcp (Intuit Entitlement Service and Discovery), 26126/tcp, 10495/tcp, 14000/tcp (SCOTTY High-Speed Filetransfer), 102/tcp (ISO-TSAP Class 0), 10977/tcp, 38393/tcp, 7777/tcp (cbt), 3090/tcp (Senforce Session Services), 2626/tcp (gbjd816), 27808/tcp, 4444/tcp (NV Video default), 6200/tcp (LM-X License Manager by X-Formation), 10099/tcp, 9070/tcp, 51525/tcp, 53388/tcp, 8033/tcp (MindPrint), 2121/tcp (SCIENTIA-SSDB), 6420/tcp (NIM_VDRShell), 21141/tcp, 4489/tcp, 1984/tcp (BB), 13757/tcp, 43794/tcp, 6611/tcp, 6132/tcp, 1697/tcp (rrisat), 3370/tcp, 568/tcp (microsoft shuttle), 17171/tcp, 19800/tcp, 20428/tcp, 5987/tcp (WBEM RMI), 14487/tcp, 9393/tcp, 5700/tcp, 4443/tcp (Pharos), 4574/tcp, 35105/tcp, 28481/tcp, 36739/tcp, 46273/tcp, 24705/tcp, 5901/tcp, 7733/tcp, 46456/tcp, 51971/tcp, 9771/tcp, 4845/tcp (WordCruncher Remote Library Service), 8952/tcp, 52313/tcp, 5230/tcp, 43539/tcp, 34862/tcp, 46602/tcp, 8850/tcp, 7538/tcp, 53471/tcp, 62275/tcp, 9994/tcp (OnLive-3), 57747/tcp, 5652/tcp, 10000/tcp (Network Data Management Protocol), 1256/tcp (de-server), 3365/tcp (Content Server), 42536/tcp, 2929/tcp (AMX-WEBADMIN), 2796/tcp (ac-tech), 15850/tcp, 10736/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 47537/tcp, 3989/tcp (BindView-Query Engine), 26676/tcp, 5413/tcp (WWIOTALK), 5338/tcp, 5500/tcp (fcp-addr-srvr1), 7878/tcp, 46901/tcp, 13688/tcp, 3361/tcp (KV Agent), 5960/tcp, 1437/tcp (Tabula), 1220/tcp (QT SERVER ADMIN), 42109/tcp, 8059/tcp (Senomix Timesheets Client [1 year assignment]), 48769/tcp, 33901/tcp, 3397/tcp (Cloanto License Manager), 13183/tcp, 2046/tcp (sdfunc), 38516/tcp, 34016/tcp, 2220/tcp (NetIQ End2End), 11173/tcp, 7890/tcp, 4589/tcp, 16490/tcp, 5082/tcp (Qpur Communication Protocol), 5468/tcp, 4197/tcp, 44604/tcp, 2661/tcp (OLHOST), 12052/tcp, 11412/tcp, 5807/tcp, 22452/tcp, 20231/tcp, 7428/tcp (OpenView DM Log Agent Manager), 49500/tcp, 50546/tcp, 51511/tcp, 14638/tcp, 33380/tcp, 61054/tcp, 40030/tcp, 4555/tcp (RSIP Port), 43994/tcp, 30010/tcp, 3485/tcp (CelaTalk), 2010/tcp (search), 2911/tcp (Blockade), 4593/tcp (IPT (ANRI-ANRI)), 12582/tcp, 2019/tcp (whosockami), 39833/tcp, 11385/tcp, 55678/tcp, 4250/tcp, 10702/tcp, 13165/tcp, 11027/tcp, 60061/tcp, 3922/tcp (Soronti Update Port), 2348/tcp (Information to query for game status), 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-11-22

In the last 24h, the attacker (81.22.45.250) attempted to scan 909 ports.
The following ports have been scanned: 5387/tcp, 7636/tcp, 52667/tcp, 3352/tcp (Scalable SQL), 7879/tcp, 8005/tcp (MXI Generation II for z/OS), 7914/tcp, 9544/tcp, 11277/tcp, 2525/tcp (MS V-Worlds), 6189/tcp, 9050/tcp (Versiera Agent Listener), 10010/tcp (ooRexx rxapi services), 6495/tcp, 3589/tcp (isomair), 23392/tcp, 20678/tcp, 11550/tcp, 7700/tcp (EM7 Secure Communications), 10005/tcp (EMC Replication Manager Server), 9990/tcp (OSM Applet Server), 6016/tcp, 1515/tcp (ifor-protocol), 33395/tcp, 32926/tcp, 6453/tcp, 9093/tcp, 22707/tcp, 7468/tcp, 8088/tcp (Radan HTTP), 4468/tcp, 56565/tcp, 4664/tcp (Rimage Messaging Server), 4371/tcp (LAN2CAN Control), 2044/tcp (rimsl), 3757/tcp (GRF Server Port), 3958/tcp (MQEnterprise Agent), 11133/tcp, 9337/tcp, 61537/tcp, 11015/tcp, 62161/tcp, 4178/tcp (StorMan), 39339/tcp, 13770/tcp, 9072/tcp, 44659/tcp, 10188/tcp, 10424/tcp, 9110/tcp, 3219/tcp (WMS Messenger), 2787/tcp (piccolo - Cornerstone Software), 10921/tcp, 4027/tcp (bitxpress), 9499/tcp, 11390/tcp, 27417/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 8500/tcp (Flight Message Transfer Protocol), 12121/tcp (NuPaper Session Service), 9374/tcp (fjdmimgr), 13876/tcp, 662/tcp (PFTP), 9700/tcp (Board M.I.T. Service), 38912/tcp, 8366/tcp, 6233/tcp, 5563/tcp, 56269/tcp, 2300/tcp (CVMMON), 9662/tcp, 55795/tcp, 6636/tcp, 8335/tcp, 8181/tcp, 9711/tcp, 14086/tcp, 680/tcp (entrust-aaas), 34244/tcp, 23495/tcp, 8693/tcp, 64217/tcp, 54038/tcp, 13381/tcp, 25798/tcp, 4521/tcp, 6306/tcp (Unified Fabric Management Protocol), 7100/tcp (X Font Service), 8862/tcp, 34933/tcp, 5545/tcp, 6800/tcp, 3778/tcp (Cutler-Hammer IT Port), 1414/tcp (IBM MQSeries), 9443/tcp (WSO2 Tungsten HTTPS), 10011/tcp, 31762/tcp, 50089/tcp, 14946/tcp, 30001/tcp (Pago Services 1), 2236/tcp (Nani), 9006/tcp, 3364/tcp (Creative Server), 63391/tcp, 2987/tcp (identify), 1910/tcp (UltraBac Software communications port), 60001/tcp, 4119/tcp (Assuria Log Manager), 30960/tcp, 5784/tcp, 3409/tcp (NetworkLens Event Port), 9514/tcp, 48272/tcp, 8662/tcp, 32588/tcp, 3303/tcp (OP Session Client), 3317/tcp (VSAI PORT), 34344/tcp, 1938/tcp (JetVWay Client Port), 6169/tcp, 6029/tcp, 5469/tcp, 12832/tcp, 56983/tcp, 8148/tcp (i-SDD file transfer), 60006/tcp, 10050/tcp (Zabbix Agent), 6300/tcp (BMC GRX), 40147/tcp, 3444/tcp (Denali Server), 34287/tcp, 12748/tcp, 1628/tcp (LonTalk normal), 10513/tcp, 27356/tcp, 24822/tcp, 4041/tcp (Rocketeer-Houston), 8268/tcp, 33339/tcp, 6627/tcp (Allied Electronics NeXGen), 8400/tcp (cvd), 10152/tcp, 2002/tcp (globe), 50918/tcp, 50208/tcp, 63500/tcp, 4008/tcp (NetCheque accounting), 30000/tcp, 2122/tcp (CauPC Remote Control), 4323/tcp (TRIM ICE Service), 28061/tcp, 44947/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 3663/tcp (DIRECWAY Tunnel Protocol), 34420/tcp, 8885/tcp, 9040/tcp, 7552/tcp, 3263/tcp (E-Color Enterprise Imager), 16145/tcp, 8348/tcp, 7352/tcp, 10648/tcp, 2512/tcp (Citrix IMA), 6006/tcp, 10412/tcp, 5599/tcp (Enterprise Security Remote Install), 27992/tcp, 28559/tcp, 29755/tcp, 6030/tcp, 3383/tcp (Enterprise Software Products License Manager), 6052/tcp, 10354/tcp, 48252/tcp, 5106/tcp, 19675/tcp, 6600/tcp (Microsoft Hyper-V Live Migration), 9210/tcp (OMA Mobile Location Protocol), 7778/tcp (Interwise), 5555/tcp (Personal Agent), 5020/tcp (zenginkyo-1), 8794/tcp, 11326/tcp, 10081/tcp (FAM Archive Server), 6203/tcp, 11863/tcp, 9201/tcp (WAP session service), 7474/tcp, 7575/tcp, 8663/tcp, 10806/tcp, 10941/tcp, 7980/tcp (Quest Vista), 11389/tcp, 50076/tcp, 22704/tcp, 4455/tcp (PR Chat User), 31313/tcp, 8023/tcp, 12194/tcp, 1035/tcp (MX-XR RPC), 9873/tcp, 16565/tcp, 10667/tcp, 8735/tcp, 1496/tcp (liberty-lm), 8933/tcp, 8068/tcp, 5152/tcp (ESRI SDE Instance Discovery), 4932/tcp, 10533/tcp, 1400/tcp (Cadkey Tablet Daemon), 4647/tcp, 4888/tcp, 33902/tcp, 4030/tcp (Accell/JSP Daemon Port), 44105/tcp, 9685/tcp, 43066/tcp, 23805/tcp, 27514/tcp, 3404/tcp, 6660/tcp, 60922/tcp, 7974/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 9020/tcp (TAMBORA), 44187/tcp, 63388/tcp, 43117/tcp, 9692/tcp, 5225/tcp (HP Server), 6093/tcp, 3565/tcp (M2PA), 9898/tcp (MonkeyCom), 9098/tcp, 13495/tcp, 33911/tcp, 31729/tcp, 33033/tcp, 57725/tcp, 5758/tcp, 14209/tcp, 3807/tcp (SpuGNA Communication Port), 5812/tcp, 4607/tcp, 13208/tcp, 14115/tcp, 6967/tcp, 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 5407/tcp (Foresyte-Clear), 13899/tcp, 4049/tcp (Wide Area File Services), 11022/tcp, 7791/tcp, 5560/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 6989/tcp, 9119/tcp (MXit Instant Messaging), 41531/tcp, 27939/tcp, 42729/tcp, 31831/tcp, 27885/tcp, 3379/tcp (SOCORFS), 4295/tcp, 4300/tcp (Corel CCam), 4882/tcp, 13715/tcp, 8821/tcp, 55859/tcp, 7480/tcp, 11016/tcp, 53956/tcp, 54920/tcp, 5333/tcp, 10044/tcp, 14040/tcp, 1090/tcp (FF Fieldbus Message Specification), 8600/tcp (Surveillance Data), 5657/tcp, 20669/tcp, 41606/tcp, 38305/tcp, 9301/tcp, 5244/tcp, 11056/tcp, 5151/tcp (ESRI SDE Instance), 6020/tcp, 3429/tcp (GCSP user port), 10907/tcp, 52534/tcp, 25293/tcp, 8900/tcp (JMB-CDS 1), 5917/tcp, 6455/tcp (SKIP Certificate Receive), 5722/tcp (Microsoft DFS Replication Service), 9918/tcp, 2080/tcp (Autodesk NLM (FLEXlm)), 4442/tcp (Saris), 49903/tcp, 28795/tcp, 32555/tcp, 3744/tcp (SASG), 6555/tcp, 4976/tcp, 6604/tcp, 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 5656/tcp, 4315/tcp, 64103/tcp, 59440/tcp, 23518/tcp, 26972/tcp, 13144/tcp, 3502/tcp (Avocent Install Discovery), 1294/tcp (CMMdriver), 3332/tcp (MCS Mail Server), 13900/tcp, 9129/tcp, 38047/tcp, 6969/tcp (acmsoda), 8060/tcp, 9376/tcp, 4136/tcp (Classic Line Database Server Request), 10015/tcp, 45113/tcp, 10185/tcp, 8389/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 9675/tcp, 13391/tcp, 55596/tcp, 9080/tcp (Groove GLRPC), 43171/tcp, 17009/tcp, 9908/tcp, 33203/tcp, 24944/tcp, 64477/tcp, 6467/tcp, 3452/tcp (SABP-Signalling Protocol), 525/tcp (timeserver), 8154/tcp, 42941/tcp, 9905/tcp, 867/tcp, 41126/tcp, 1213/tcp (MPC LIFENET), 3198/tcp (Embrace Device Protocol Client), 7982/tcp (Spotlight on SQL Server Desktop Agent), 4321/tcp (Remote Who Is), 22143/tcp, 57681/tcp, 36477/tcp, 6879/tcp, 63006/tcp, 5556/tcp (Freeciv gameplay), 12965/tcp, 1818/tcp (Enhanced Trivial File Transfer Protocol), 47133/tcp, 1080/tcp (Socks), 37215/tcp, 39312/tcp, 51749/tcp, 19924/tcp, 5048/tcp (Texai Message Service), 24219/tcp, 8830/tcp, 6943/tcp, 4102/tcp (Braille protocol), 4334/tcp, 7391/tcp (mind-file system server), 7951/tcp, 6235/tcp, 14001/tcp (SUA), 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 3386/tcp (GPRS Data), 23456/tcp (Aequus Service), 9595/tcp (Ping Discovery Service), 16149/tcp, 6716/tcp, 5341/tcp, 4070/tcp (Trivial IP Encryption (TrIPE)), 4412/tcp, 8179/tcp, 9007/tcp, 3669/tcp (CA SAN Switch Management), 31537/tcp, 43159/tcp, 5350/tcp (NAT-PMP Status Announcements), 2829/tcp (silkp1), 51000/tcp, 5378/tcp, 7392/tcp (mrss-rendezvous server), 7620/tcp, 7111/tcp, 3936/tcp (Mailprox), 31197/tcp, 52645/tcp, 1110/tcp (Start web admin server), 5511/tcp, 3666/tcp (IBM eServer PAP), 50491/tcp, 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 9777/tcp, 22950/tcp, 4141/tcp (Workflow Server), 9324/tcp, 7036/tcp, 6129/tcp, 7785/tcp, 33895/tcp, 8529/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33890/tcp, 8861/tcp, 2186/tcp (Guy-Tek Automated Update Applications), 55352/tcp, 3040/tcp (Tomato Springs), 6983/tcp, 50488/tcp, 3600/tcp (text relay-answer), 33898/tcp, 17909/tcp, 7779/tcp (VSTAT), 41292/tcp, 13636/tcp, 5070/tcp (VersaTrans Server Agent Service), 6612/tcp, 4291/tcp, 5315/tcp (HA Cluster UDP Polling), 4413/tcp, 38800/tcp, 10111/tcp, 944/tcp, 8081/tcp (Sun Proxy Admin Service), 9025/tcp (Secure Web Access - 3), 12122/tcp, 1200/tcp (SCOL), 4427/tcp (Drizzle database server), 12638/tcp, 12705/tcp, 6738/tcp, 64295/tcp, 11124/tcp, 1286/tcp (netuitive), 5707/tcp, 5479/tcp, 8137/tcp, 7580/tcp, 63219/tcp, 1128/tcp (SAPHostControl over SOAP/HTTP), 2516/tcp (Main Control), 6240/tcp, 1086/tcp (CPL Scrambler Logging), 62105/tcp, 1243/tcp (SerialGateway), 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 2797/tcp (esp-encap), 14157/tcp, 2923/tcp (WTA-WSP-WTP-S), 10274/tcp, 63411/tcp, 6916/tcp, 2533/tcp (SnifferServer), 3445/tcp (Media Object Network), 3394/tcp (D2K Tapestry Server to Server), 7565/tcp, 16173/tcp, 10961/tcp, 4795/tcp, 9716/tcp, 49873/tcp, 8682/tcp, 38572/tcp, 49599/tcp, 9704/tcp, 10848/tcp, 5396/tcp, 9983/tcp, 7999/tcp (iRDMI2), 1777/tcp (powerguardian), 4111/tcp (Xgrid), 8585/tcp, 6232/tcp, 38907/tcp, 1089/tcp (FF Annunciation), 62710/tcp, 11020/tcp, 36166/tcp, 38276/tcp, 33789/tcp, 4472/tcp, 4803/tcp (Notateit Messaging), 9600/tcp (MICROMUSE-NCPW), 16257/tcp, 29853/tcp, 9187/tcp, 12604/tcp, 47604/tcp, 6178/tcp, 47278/tcp, 2886/tcp (RESPONSELOGIC), 45044/tcp, 18261/tcp, 550/tcp (new-who), 40004/tcp, 8300/tcp (Transport Management Interface), 3346/tcp (Trnsprnt Proxy), 1880/tcp (Gilat VSAT Control), 1476/tcp (clvm-cfg), 2888/tcp (SPCSDLOBBY), 33009/tcp, 9272/tcp, 33884/tcp, 32599/tcp, 8702/tcp, 8583/tcp, 3010/tcp (Telerate Workstation), 5021/tcp (zenginkyo-2), 48311/tcp, 5669/tcp, 7060/tcp, 3473/tcp (JAUGS N-G Remotec 2), 5594/tcp, 8109/tcp, 8307/tcp, 6145/tcp (StatSci License Manager - 2), 12727/tcp, 55014/tcp, 11484/tcp, 9494/tcp, 44809/tcp, 1100/tcp (MCTP), 81/tcp, 36704/tcp, 13259/tcp, 4080/tcp (Lorica inside facing), 3300/tcp, 6900/tcp, 54031/tcp, 8002/tcp (Teradata ORDBMS), 6002/tcp, 1676/tcp (netcomm1), 10134/tcp, 7/tcp (Echo), 7157/tcp, 13131/tcp, 8963/tcp, 38009/tcp, 9596/tcp (Mercury Discovery), 57484/tcp, 61745/tcp, 778/tcp, 2770/tcp (Veronica), 39565/tcp, 30003/tcp, 5817/tcp, 61648/tcp, 8544/tcp, 22296/tcp, 3637/tcp (Customer Service Port), 41649/tcp, 6050/tcp, 24193/tcp, 6465/tcp, 11988/tcp, 34210/tcp, 8984/tcp, 5115/tcp (Symantec Autobuild Service), 6025/tcp, 7771/tcp, 9236/tcp, 3400/tcp (CSMS2), 7693/tcp, 60088/tcp, 9010/tcp (Secure Data Replicator Protocol), 7641/tcp, 4020/tcp (TRAP Port), 9528/tcp, 9669/tcp, 8520/tcp, 9556/tcp, 62483/tcp, 63050/tcp, 6566/tcp (SANE Control Port), 1428/tcp (Informatik License Manager), 29931/tcp, 11904/tcp, 5595/tcp, 23976/tcp, 345/tcp (Perf Analysis Workbench), 6587/tcp, 6641/tcp, 35535/tcp, 8111/tcp, 33880/tcp, 8390/tcp, 33471/tcp, 21416/tcp, 6956/tcp, 19734/tcp, 14709/tcp, 3501/tcp (iSoft-P2P), 4242/tcp, 6996/tcp, 2424/tcp (KOFAX-SVR), 49996/tcp, 21463/tcp, 47693/tcp, 7083/tcp, 10408/tcp, 1719/tcp (h323gatestat), 22396/tcp, 16509/tcp, 54186/tcp, 4181/tcp (MacBak), 9701/tcp, 11204/tcp, 2022/tcp (down), 11689/tcp, 33210/tcp, 10697/tcp, 41000/tcp, 35851/tcp, 3336/tcp (Direct TV Tickers), 5550/tcp, 250/tcp, 2/tcp (Management Utility), 7174/tcp (Clutild), 10238/tcp, 11166/tcp, 64952/tcp, 12345/tcp (Italk Chat System), 8084/tcp, 51524/tcp, 1013/tcp, 32382/tcp, 10097/tcp, 41599/tcp, 7243/tcp, 10374/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 3102/tcp (SoftlinK Slave Mon Port), 17777/tcp (SolarWinds Orion), 10770/tcp, 5847/tcp, 1234/tcp (Infoseek Search Agent), 7634/tcp, 9702/tcp, 40000/tcp (SafetyNET p), 3418/tcp (Remote nmap), 2500/tcp (Resource Tracking system server), 14804/tcp, 4389/tcp (Xandros Community Management Service), 7617/tcp, 9200/tcp (WAP connectionless session service), 15760/tcp, 8070/tcp, 12931/tcp, 5660/tcp, 9399/tcp, 21027/tcp, 88/tcp (Kerberos), 9911/tcp (SYPECom Transport Protocol), 27777/tcp, 7417/tcp, 6310/tcp, 11003/tcp, 2934/tcp (4-TIER OPM CLI), 3244/tcp (OneSAF), 9901/tcp, 33891/tcp, 32833/tcp, 12001/tcp (IBM Enterprise Extender SNA COS Network Priority), 21481/tcp, 19195/tcp, 28878/tcp, 9915/tcp, 25555/tcp, 5483/tcp, 7000/tcp (file server itself), 13637/tcp, 2333/tcp (SNAPP), 5024/tcp (SCPI-TELNET), 40257/tcp, 7750/tcp, 65000/tcp, 36877/tcp, 11526/tcp, 61684/tcp, 3334/tcp (Direct TV Webcasting), 8955/tcp, 45454/tcp, 21252/tcp, 44918/tcp, 1314/tcp (Photoscript Distributed Printing System), 18714/tcp, 23879/tcp, 4379/tcp (CTDB), 16139/tcp, 9350/tcp, 5593/tcp, 9004/tcp, 63827/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 15001/tcp, 3402/tcp (FXa Engine Network Port), 7376/tcp, 48212/tcp, 5453/tcp (SureBox), 8000/tcp (iRDMI), 29292/tcp, 16668/tcp, 27392/tcp, 4495/tcp, 108/tcp (SNA Gateway Access Server), 19191/tcp (OPSEC UAA), 5222/tcp (XMPP Client Connection), 10322/tcp, 7477/tcp, 6184/tcp, 59090/tcp, 11818/tcp, 5760/tcp, 60411/tcp, 30979/tcp, 7041/tcp, 41217/tcp, 60642/tcp, 2018/tcp (terminaldb), 8444/tcp (PCsync HTTP), 57340/tcp, 2269/tcp (MIKEY), 51742/tcp, 1600/tcp (issd), 7452/tcp, 423/tcp (IBM Operations Planning and Control Start), 35842/tcp, 11128/tcp, 402/tcp (Genie Protocol), 8282/tcp, 11716/tcp, 9577/tcp, 8182/tcp (VMware Fault Domain Manager), 10022/tcp, 4794/tcp, 23885/tcp, 6554/tcp, 9321/tcp (guibase), 37040/tcp, 36280/tcp, 9969/tcp, 5432/tcp (PostgreSQL Database), 6379/tcp, 4606/tcp, 6363/tcp, 25347/tcp, 5775/tcp, 22454/tcp, 4073/tcp (iRAPP Server Protocol), 52886/tcp, 6041/tcp, 2020/tcp (xinupageserver), 7880/tcp (Pearson), 5833/tcp, 3342/tcp (WebTIE), 1486/tcp (nms_topo_serv), 2119/tcp (GSIGATEKEEPER), 8602/tcp, 4762/tcp, 41464/tcp, 7900/tcp (Multicast Event), 51492/tcp, 8590/tcp, 3706/tcp (Real-Time Event Port), 10932/tcp, 8775/tcp, 23057/tcp, 13599/tcp, 8293/tcp (Hiperscan Identification Service), 6393/tcp, 8924/tcp, 51807/tcp, 7649/tcp, 30303/tcp, 2637/tcp (Import Document Service), 5810/tcp, 43307/tcp, 7725/tcp (Nitrogen Service), 3380/tcp (SNS Channels), 8535/tcp, 33001/tcp, 9241/tcp, 5080/tcp (OnScreen Data Collection Service), 30967/tcp, 1528/tcp, 9800/tcp (WebDav Source Port), 2575/tcp (HL7), 3796/tcp (Spaceway Dialer), 9980/tcp, 23186/tcp, 52522/tcp, 13462/tcp, 3505/tcp (CCM communications port), 7591/tcp, 53389/tcp, 2874/tcp (DX Message Base Transport Protocol), 9029/tcp, 26000/tcp (quake), 4658/tcp (PlayStation2 App Port), 40400/tcp, 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 5135/tcp (ERP-Scale), 9002/tcp (DynamID authentication), 6161/tcp (PATROL Internet Srv Mgr), 26889/tcp, 4821/tcp, 63839/tcp, 9991/tcp (OSM Event Server), 50664/tcp, 8039/tcp, 21509/tcp, 9999/tcp (distinct), 21210/tcp, 24656/tcp, 4761/tcp, 7181/tcp, 63627/tcp, 6116/tcp (XicTools License Manager Service), 39941/tcp, 5921/tcp, 21611/tcp, 8880/tcp (CDDBP), 7374/tcp, 4243/tcp, 7113/tcp, 6247/tcp, 9931/tcp, 9357/tcp, 1736/tcp (street-stream), 9992/tcp (OnLive-1), 4477/tcp, 44505/tcp, 29080/tcp, 3536/tcp (SNAC), 11087/tcp, 22458/tcp, 3500/tcp (RTMP Port), 14032/tcp, 18754/tcp, 13527/tcp, 47250/tcp, 45270/tcp, 7380/tcp, 7152/tcp, 1798/tcp (Event Transfer Protocol), 7040/tcp, 17332/tcp, 456/tcp (macon-tcp), 10900/tcp, 8475/tcp, 33894/tcp, 51056/tcp, 39811/tcp, 2706/tcp (NCD Mirroring), 4639/tcp, 16564/tcp, 8401/tcp (sabarsd), 7235/tcp, 2178/tcp (Peer Services for BITS), 63653/tcp, 9453/tcp, 1212/tcp (lupa), 35404/tcp, 1009/tcp, 10699/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 63395/tcp, 5252/tcp (Movaz SSC).
      
BHD Honeypot
Port scan
2019-11-22

Port scan from IP: 81.22.45.250 detected by psad.
BHD Honeypot
Port scan
2019-11-18

In the last 24h, the attacker (81.22.45.250) attempted to scan 695 ports.
The following ports have been scanned: 5387/tcp, 7636/tcp, 9097/tcp, 7879/tcp, 54070/tcp, 29721/tcp, 9544/tcp, 11277/tcp, 6189/tcp, 6495/tcp, 58138/tcp, 3589/tcp (isomair), 22875/tcp, 10005/tcp (EMC Replication Manager Server), 6001/tcp, 6016/tcp, 1515/tcp (ifor-protocol), 6453/tcp, 9093/tcp, 8088/tcp (Radan HTTP), 4468/tcp, 56565/tcp, 45779/tcp, 5406/tcp (Systemics Sox), 3958/tcp (MQEnterprise Agent), 11133/tcp, 9337/tcp, 11015/tcp, 62161/tcp, 33039/tcp, 2787/tcp (piccolo - Cornerstone Software), 10921/tcp, 5830/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 12121/tcp (NuPaper Session Service), 4646/tcp, 3396/tcp (Printer Agent), 8777/tcp, 5563/tcp, 55795/tcp, 6636/tcp, 8181/tcp, 34244/tcp, 3410/tcp (NetworkLens SSL Event), 8693/tcp, 24829/tcp, 13381/tcp, 8862/tcp, 9443/tcp (WSO2 Tungsten HTTPS), 10011/tcp, 6610/tcp, 1012/tcp, 4591/tcp (HRPD L3T (AT-AN)), 3364/tcp (Creative Server), 63391/tcp, 60001/tcp, 4119/tcp (Assuria Log Manager), 5784/tcp, 8011/tcp, 8662/tcp, 1031/tcp (BBN IAD), 9132/tcp, 32588/tcp, 3303/tcp (OP Session Client), 9578/tcp, 6169/tcp, 5216/tcp, 6029/tcp, 8744/tcp, 22222/tcp, 6300/tcp (BMC GRX), 3195/tcp (Network Control Unit), 34287/tcp, 1628/tcp (LonTalk normal), 6988/tcp, 8400/tcp (cvd), 50500/tcp, 2083/tcp (Secure Radius Service), 3403/tcp, 2002/tcp (globe), 50918/tcp, 4008/tcp (NetCheque accounting), 30000/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 3663/tcp (DIRECWAY Tunnel Protocol), 34420/tcp, 1024/tcp (Reserved), 7552/tcp, 3263/tcp (E-Color Enterprise Imager), 10648/tcp, 5265/tcp (3Com Network Jack Port 2), 2512/tcp (Citrix IMA), 6006/tcp, 8932/tcp, 3343/tcp (MS Cluster Net), 3407/tcp (LDAP admin server port), 2986/tcp (STONEFALLS), 6052/tcp, 5106/tcp, 6600/tcp (Microsoft Hyper-V Live Migration), 9210/tcp (OMA Mobile Location Protocol), 7778/tcp (Interwise), 5555/tcp (Personal Agent), 5020/tcp (zenginkyo-1), 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 11326/tcp, 6203/tcp, 9201/tcp (WAP session service), 5010/tcp (TelepathStart), 8048/tcp, 3752/tcp (Vigil-IP RemoteAgent), 10806/tcp, 11389/tcp, 50076/tcp, 22704/tcp, 8023/tcp, 12194/tcp, 9873/tcp, 8735/tcp, 1496/tcp (liberty-lm), 8068/tcp, 1045/tcp (Fingerprint Image Transfer Protocol), 4647/tcp, 4888/tcp, 6729/tcp, 9685/tcp, 1040/tcp (Netarx Netcare), 6660/tcp, 7974/tcp, 15826/tcp, 43117/tcp, 3387/tcp (Back Room Net), 9692/tcp, 6093/tcp, 3565/tcp (M2PA), 9098/tcp, 2435/tcp (OptiLogic), 10040/tcp, 6425/tcp, 5598/tcp (MCT Market Data Feed), 28543/tcp, 5493/tcp, 5758/tcp, 2919/tcp (roboER), 14209/tcp, 19548/tcp, 26368/tcp, 13924/tcp, 3187/tcp (Open Design Listen Port), 2050/tcp (Avaya EMB Config Port), 6967/tcp, 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 5407/tcp (Foresyte-Clear), 1050/tcp (CORBA Management Agent), 4049/tcp (Wide Area File Services), 10346/tcp, 12768/tcp, 4426/tcp (SMARTS Beacon Port), 7791/tcp, 5560/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 9119/tcp (MXit Instant Messaging), 27885/tcp, 4295/tcp, 14141/tcp (VCS Application), 4882/tcp, 13715/tcp, 11016/tcp, 6370/tcp (MetaEdit+ Server Administration), 9998/tcp (Distinct32), 5333/tcp, 7285/tcp, 389/tcp (Lightweight Directory Access Protocol), 1090/tcp (FF Fieldbus Message Specification), 8600/tcp (Surveillance Data), 4343/tcp (UNICALL), 9301/tcp, 5244/tcp, 5151/tcp (ESRI SDE Instance), 2389/tcp (OpenView Session Mgr), 7189/tcp, 6020/tcp, 3429/tcp (GCSP user port), 9497/tcp, 25293/tcp, 6455/tcp (SKIP Certificate Receive), 2936/tcp (OTPatch), 4442/tcp (Saris), 47009/tcp, 9989/tcp, 32555/tcp, 3744/tcp (SASG), 3000/tcp (RemoteWare Client), 5/tcp (Remote Job Entry), 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 5656/tcp, 7291/tcp, 4530/tcp, 8304/tcp, 3502/tcp (Avocent Install Discovery), 3405/tcp (Nokia Announcement ch 1), 3174/tcp (ARMI Server), 9129/tcp, 8060/tcp, 61500/tcp, 4136/tcp (Classic Line Database Server Request), 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 1098/tcp (RMI Activation), 8389/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 9675/tcp, 17009/tcp, 8712/tcp, 4000/tcp (Terabase), 6467/tcp, 4567/tcp (TRAM), 3452/tcp (SABP-Signalling Protocol), 8202/tcp, 525/tcp (timeserver), 8154/tcp, 9905/tcp, 867/tcp, 7982/tcp (Spotlight on SQL Server Desktop Agent), 4321/tcp (Remote Who Is), 4700/tcp (NetXMS Agent), 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 8083/tcp (Utilistor (Server)), 2475/tcp (ACE Server), 36477/tcp, 12965/tcp, 1080/tcp (Socks), 39841/tcp, 5048/tcp (Texai Message Service), 8830/tcp, 4102/tcp (Braille protocol), 5207/tcp, 6022/tcp, 4334/tcp, 7951/tcp, 14001/tcp (SUA), 5764/tcp, 9595/tcp (Ping Discovery Service), 6716/tcp, 10835/tcp, 16753/tcp, 4412/tcp, 3200/tcp (Press-sense Tick Port), 5350/tcp (NAT-PMP Status Announcements), 4539/tcp, 3384/tcp (Cluster Management Services), 5050/tcp (multimedia conference control tool), 7620/tcp, 3936/tcp (Mailprox), 52645/tcp, 9444/tcp (WSO2 ESB Administration Console HTTPS), 1110/tcp (Start web admin server), 5973/tcp, 6212/tcp, 5511/tcp, 33390/tcp, 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 4141/tcp (Workflow Server), 9324/tcp, 7036/tcp, 7785/tcp, 33895/tcp, 8529/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 23698/tcp, 2040/tcp (lam), 2186/tcp (Guy-Tek Automated Update Applications), 3600/tcp (text relay-answer), 17909/tcp, 5070/tcp (VersaTrans Server Agent Service), 6612/tcp, 23412/tcp, 5315/tcp (HA Cluster UDP Polling), 4413/tcp, 8081/tcp (Sun Proxy Admin Service), 12122/tcp, 7356/tcp, 4427/tcp (Drizzle database server), 6738/tcp, 2449/tcp (RATL), 5905/tcp, 1686/tcp (cvmon), 11124/tcp, 1286/tcp (netuitive), 8137/tcp, 7580/tcp, 62105/tcp, 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 14157/tcp, 7388/tcp, 63411/tcp, 6916/tcp, 2533/tcp (SnifferServer), 16173/tcp, 4795/tcp, 1875/tcp (westell stats), 9704/tcp, 10848/tcp, 1140/tcp (AutoNOC Network Operations Protocol), 7677/tcp (Sun App Server - HTTPS), 8585/tcp, 1374/tcp (EPI Software Systems), 62710/tcp, 9014/tcp, 11020/tcp, 1055/tcp (ANSYS - License Manager), 3606/tcp (Splitlock Server), 9187/tcp, 12604/tcp, 13206/tcp, 854/tcp, 3371/tcp, 45044/tcp, 18261/tcp, 550/tcp (new-who), 8300/tcp (Transport Management Interface), 33009/tcp, 5021/tcp (zenginkyo-2), 7776/tcp, 7060/tcp, 28059/tcp, 5594/tcp, 8307/tcp, 6145/tcp (StatSci License Manager - 2), 12727/tcp, 55014/tcp, 11484/tcp, 9494/tcp, 11172/tcp (OEM cacao JMX-remoting access point), 81/tcp, 4080/tcp (Lorica inside facing), 9797/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6900/tcp, 8002/tcp (Teradata ORDBMS), 6002/tcp, 1676/tcp (netcomm1), 1026/tcp (Calendar Access Protocol), 61745/tcp, 10190/tcp, 3593/tcp (BP Model Debugger), 7994/tcp, 2770/tcp (Veronica), 30003/tcp, 61648/tcp, 41649/tcp, 6121/tcp (SPDY for a faster web), 6465/tcp, 5666/tcp, 8984/tcp, 5115/tcp (Symantec Autobuild Service), 8656/tcp, 10392/tcp, 7693/tcp, 33386/tcp, 9010/tcp (Secure Data Replicator Protocol), 7641/tcp, 9528/tcp, 6690/tcp, 59021/tcp, 2568/tcp (SPAM TRAP), 4360/tcp (Matrix VNet Communication Protocol), 3355/tcp (Ordinox Dbase), 6566/tcp (SANE Control Port), 1428/tcp (Informatik License Manager), 5595/tcp, 6587/tcp, 6641/tcp, 35535/tcp, 8111/tcp, 33880/tcp, 8390/tcp, 6777/tcp, 3338/tcp (OMF data b), 3354/tcp (SUITJD), 6956/tcp, 19734/tcp, 58558/tcp, 3981/tcp (Starfish System Admin), 6996/tcp, 3003/tcp (CGMS), 63389/tcp, 49996/tcp, 21463/tcp, 7083/tcp, 5551/tcp, 4181/tcp (MacBak), 9701/tcp, 11204/tcp, 2022/tcp (down), 10095/tcp, 2176/tcp (Microsoft ActiveSync Remote API), 10697/tcp, 41000/tcp, 35851/tcp, 5550/tcp, 2/tcp (Management Utility), 7174/tcp (Clutild), 10238/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 1013/tcp, 7243/tcp, 13988/tcp, 17934/tcp, 8129/tcp (PayCash Wallet-Browser), 3360/tcp (KV Server), 53934/tcp, 1234/tcp (Infoseek Search Agent), 7634/tcp, 2481/tcp (Oracle GIOP), 4487/tcp (Protocol for Remote Execution over TCP), 8020/tcp (Intuit Entitlement Service and Discovery), 4389/tcp (Xandros Community Management Service), 7617/tcp, 7777/tcp (cbt), 8070/tcp, 21027/tcp, 6310/tcp, 6200/tcp (LM-X License Manager by X-Formation), 2934/tcp (4-TIER OPM CLI), 33891/tcp, 5121/tcp, 32833/tcp, 12001/tcp (IBM Enterprise Extender SNA COS Network Priority), 10099/tcp, 9070/tcp, 9915/tcp, 25555/tcp, 7000/tcp (file server itself), 5024/tcp (SCPI-TELNET), 2121/tcp (SCIENTIA-SSDB), 7750/tcp, 6420/tcp (NIM_VDRShell), 65000/tcp, 1984/tcp (BB), 3334/tcp (Direct TV Webcasting), 8955/tcp, 21252/tcp, 44918/tcp, 4379/tcp (CTDB), 7001/tcp (callbacks to cache managers), 9350/tcp, 9004/tcp, 63827/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 35105/tcp, 5453/tcp (SureBox), 24705/tcp, 29292/tcp, 4495/tcp, 6184/tcp, 11818/tcp, 5760/tcp, 2269/tcp (MIKEY), 8850/tcp, 7452/tcp, 402/tcp (Genie Protocol), 8282/tcp, 8182/tcp (VMware Fault Domain Manager), 10022/tcp, 6554/tcp, 6379/tcp, 6363/tcp, 6227/tcp, 4073/tcp (iRAPP Server Protocol), 10000/tcp (Network Data Management Protocol), 7880/tcp (Pearson), 1486/tcp (nms_topo_serv), 8602/tcp, 4762/tcp, 2796/tcp (ac-tech), 15850/tcp, 10736/tcp, 8590/tcp, 3706/tcp (Real-Time Event Port), 8775/tcp, 23057/tcp, 26676/tcp, 5413/tcp (WWIOTALK), 8293/tcp (Hiperscan Identification Service), 6393/tcp, 8924/tcp, 5500/tcp (fcp-addr-srvr1), 7649/tcp, 3361/tcp (KV Agent), 2637/tcp (Import Document Service), 4482/tcp, 43307/tcp, 7725/tcp (Nitrogen Service), 3380/tcp (SNS Channels), 5080/tcp (OnScreen Data Collection Service), 7699/tcp, 30967/tcp, 15728/tcp, 13462/tcp, 3397/tcp (Cloanto License Manager), 2874/tcp (DX Message Base Transport Protocol), 40400/tcp, 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 5135/tcp (ERP-Scale), 38516/tcp, 9002/tcp (DynamID authentication), 4821/tcp, 7479/tcp, 9991/tcp (OSM Event Server), 4589/tcp, 4197/tcp, 44604/tcp, 2661/tcp (OLHOST), 8039/tcp, 21210/tcp, 24656/tcp, 4761/tcp, 7181/tcp, 63627/tcp, 6116/tcp (XicTools License Manager Service), 5921/tcp, 21611/tcp, 8880/tcp (CDDBP), 7428/tcp (OpenView DM Log Agent Manager), 7374/tcp, 6247/tcp, 9357/tcp, 9992/tcp (OnLive-1), 44505/tcp, 29080/tcp, 3536/tcp (SNAC), 11087/tcp, 3500/tcp (RTMP Port), 50546/tcp, 51511/tcp, 33380/tcp, 45270/tcp, 7380/tcp, 4555/tcp (RSIP Port), 7152/tcp, 17332/tcp, 2911/tcp (Blockade), 4593/tcp (IPT (ANRI-ANRI)), 33894/tcp, 51056/tcp, 2706/tcp (NCD Mirroring), 2019/tcp (whosockami), 8401/tcp (sabarsd), 55678/tcp, 4250/tcp, 11027/tcp, 60061/tcp, 9453/tcp, 1212/tcp (lupa), 35404/tcp, 1009/tcp, 10699/tcp, 48990/tcp, 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-11-17

In the last 24h, the attacker (81.22.45.250) attempted to scan 3159 ports.
The following ports have been scanned: 5387/tcp, 7636/tcp, 9097/tcp, 52667/tcp, 3352/tcp (Scalable SQL), 8005/tcp (MXI Generation II for z/OS), 7914/tcp, 54070/tcp, 7633/tcp (PMDF Management), 29721/tcp, 5953/tcp, 9544/tcp, 11277/tcp, 2525/tcp (MS V-Worlds), 6189/tcp, 9050/tcp (Versiera Agent Listener), 10010/tcp (ooRexx rxapi services), 6495/tcp, 58138/tcp, 3589/tcp (isomair), 23392/tcp, 55589/tcp, 6667/tcp, 20678/tcp, 22875/tcp, 58049/tcp, 11550/tcp, 7700/tcp (EM7 Secure Communications), 10005/tcp (EMC Replication Manager Server), 6001/tcp, 9990/tcp (OSM Applet Server), 60600/tcp, 6016/tcp, 1515/tcp (ifor-protocol), 33395/tcp, 10147/tcp, 22825/tcp, 32926/tcp, 6453/tcp, 12322/tcp (Warehouse Monitoring Syst), 9093/tcp, 22707/tcp, 7468/tcp, 6530/tcp, 8088/tcp (Radan HTTP), 4468/tcp, 56565/tcp, 4664/tcp (Rimage Messaging Server), 4371/tcp (LAN2CAN Control), 36831/tcp, 2044/tcp (rimsl), 3757/tcp (GRF Server Port), 41434/tcp, 45779/tcp, 21218/tcp, 3958/tcp (MQEnterprise Agent), 3398/tcp (Mercantile), 11133/tcp, 41624/tcp, 9337/tcp, 61537/tcp, 11015/tcp, 62161/tcp, 4178/tcp (StorMan), 405/tcp (ncld), 39339/tcp, 13770/tcp, 9009/tcp (Pichat Server), 9072/tcp, 44659/tcp, 10188/tcp, 10424/tcp, 32350/tcp, 9110/tcp, 33388/tcp, 3219/tcp (WMS Messenger), 33039/tcp, 2787/tcp (piccolo - Cornerstone Software), 10921/tcp, 4027/tcp (bitxpress), 9499/tcp, 5830/tcp, 11390/tcp, 27417/tcp, 63651/tcp, 2222/tcp (EtherNet/IP I/O), 3489/tcp (DTP/DIA), 54640/tcp, 8500/tcp (Flight Message Transfer Protocol), 2224/tcp (Easy Flexible Internet/Multiplayer Games), 3700/tcp (LRS NetPage), 12121/tcp (NuPaper Session Service), 4646/tcp, 3204/tcp (Network Watcher DB Access), 9374/tcp (fjdmimgr), 13876/tcp, 9000/tcp (CSlistener), 8777/tcp, 662/tcp (PFTP), 9700/tcp (Board M.I.T. Service), 38912/tcp, 8366/tcp, 6233/tcp, 5563/tcp, 56269/tcp, 2300/tcp (CVMMON), 9662/tcp, 55795/tcp, 6636/tcp, 8335/tcp, 15991/tcp, 8181/tcp, 9711/tcp, 14086/tcp, 680/tcp (entrust-aaas), 34244/tcp, 3410/tcp (NetworkLens SSL Event), 23495/tcp, 8693/tcp, 5425/tcp (Beyond Remote Command Channel), 63798/tcp, 64217/tcp, 54038/tcp, 24829/tcp, 13381/tcp, 39616/tcp, 25798/tcp, 3323/tcp, 9090/tcp (WebSM), 4521/tcp, 6306/tcp (Unified Fabric Management Protocol), 7100/tcp (X Font Service), 8862/tcp, 4850/tcp (Sun App Server - NA), 34933/tcp, 27108/tcp, 12206/tcp, 5545/tcp, 6800/tcp, 3778/tcp (Cutler-Hammer IT Port), 1414/tcp (IBM MQSeries), 57952/tcp, 9443/tcp (WSO2 Tungsten HTTPS), 10011/tcp, 31762/tcp, 6610/tcp, 50089/tcp, 14946/tcp, 3390/tcp (Distributed Service Coordinator), 30001/tcp (Pago Services 1), 36363/tcp, 30832/tcp, 32130/tcp, 2236/tcp (Nani), 1012/tcp, 2682/tcp, 9006/tcp, 3364/tcp (Creative Server), 63391/tcp, 2987/tcp (identify), 1910/tcp (UltraBac Software communications port), 60001/tcp, 4119/tcp (Assuria Log Manager), 59999/tcp, 30960/tcp, 5784/tcp, 3409/tcp (NetworkLens Event Port), 9514/tcp, 8011/tcp, 48272/tcp, 31122/tcp, 5353/tcp (Multicast DNS), 1031/tcp (BBN IAD), 50015/tcp, 9132/tcp, 32588/tcp, 3303/tcp (OP Session Client), 42387/tcp, 3317/tcp (VSAI PORT), 9578/tcp, 34344/tcp, 1938/tcp (JetVWay Client Port), 38000/tcp, 4201/tcp, 5216/tcp, 4177/tcp (Wello P2P pubsub service), 6029/tcp, 8744/tcp, 8087/tcp (Simplify Media SPP Protocol), 5469/tcp, 22222/tcp, 12832/tcp, 56983/tcp, 13679/tcp, 8148/tcp (i-SDD file transfer), 60006/tcp, 10050/tcp (Zabbix Agent), 14144/tcp, 6300/tcp (BMC GRX), 3195/tcp (Network Control Unit), 40147/tcp, 3444/tcp (Denali Server), 10024/tcp, 13289/tcp, 29144/tcp, 6397/tcp, 15151/tcp, 34287/tcp, 12748/tcp, 1628/tcp (LonTalk normal), 10513/tcp, 46458/tcp, 27356/tcp, 24822/tcp, 4041/tcp (Rocketeer-Houston), 8268/tcp, 33339/tcp, 6627/tcp (Allied Electronics NeXGen), 6988/tcp, 8400/tcp (cvd), 50500/tcp, 20539/tcp, 2083/tcp (Secure Radius Service), 10152/tcp, 3403/tcp, 10021/tcp, 3878/tcp (FotoG CAD interface), 2002/tcp (globe), 61441/tcp, 3492/tcp (TVDUM Tray Port), 50918/tcp, 50208/tcp, 2281/tcp (LNVCONSOLE), 9300/tcp (Virtual Racing Service), 24605/tcp, 63500/tcp, 30002/tcp (Pago Services 2), 30000/tcp, 2122/tcp (CauPC Remote Control), 4323/tcp (TRIM ICE Service), 28061/tcp, 44947/tcp, 12111/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 3663/tcp (DIRECWAY Tunnel Protocol), 15631/tcp, 15076/tcp, 34420/tcp, 8885/tcp, 1024/tcp (Reserved), 9040/tcp, 7552/tcp, 3263/tcp (E-Color Enterprise Imager), 9684/tcp, 16145/tcp, 31640/tcp, 12443/tcp, 7352/tcp, 10648/tcp, 2512/tcp (Citrix IMA), 6006/tcp, 23391/tcp, 8932/tcp, 10412/tcp, 5599/tcp (Enterprise Security Remote Install), 27992/tcp, 28559/tcp, 37777/tcp, 29755/tcp, 6030/tcp, 3383/tcp (Enterprise Software Products License Manager), 3407/tcp (LDAP admin server port), 2986/tcp (STONEFALLS), 6052/tcp, 45312/tcp, 36074/tcp, 10354/tcp, 48252/tcp, 5106/tcp, 35002/tcp, 10919/tcp, 19675/tcp, 6600/tcp (Microsoft Hyper-V Live Migration), 9210/tcp (OMA Mobile Location Protocol), 7778/tcp (Interwise), 5555/tcp (Personal Agent), 5020/tcp (zenginkyo-1), 8794/tcp, 3898/tcp (IAS, Inc. SmartEye NET Internet Protocol), 38671/tcp, 11326/tcp, 10081/tcp (FAM Archive Server), 6203/tcp, 11863/tcp, 5010/tcp (TelepathStart), 7474/tcp, 7575/tcp, 8048/tcp, 2835/tcp (EVTP-DATA), 8663/tcp, 10806/tcp, 10941/tcp, 7980/tcp (Quest Vista), 11389/tcp, 50076/tcp, 22704/tcp, 4455/tcp (PR Chat User), 31313/tcp, 8023/tcp, 12194/tcp, 1035/tcp (MX-XR RPC), 9873/tcp, 16565/tcp, 42825/tcp, 10667/tcp, 8735/tcp, 1496/tcp (liberty-lm), 8933/tcp, 8068/tcp, 6666/tcp, 1045/tcp (Fingerprint Image Transfer Protocol), 5152/tcp (ESRI SDE Instance Discovery), 4932/tcp, 10533/tcp, 1400/tcp (Cadkey Tablet Daemon), 4647/tcp, 20001/tcp (MicroSAN), 11468/tcp, 4888/tcp, 33902/tcp, 4030/tcp (Accell/JSP Daemon Port), 6729/tcp, 44105/tcp, 9685/tcp, 43066/tcp, 23805/tcp, 35734/tcp, 27514/tcp, 3404/tcp, 1040/tcp (Netarx Netcare), 6660/tcp, 60922/tcp, 7974/tcp, 5003/tcp (FileMaker, Inc. - Proprietary transport), 9020/tcp (TAMBORA), 44187/tcp, 1096/tcp (Common Name Resolution Protocol), 45455/tcp, 63388/tcp, 15826/tcp, 8267/tcp, 43117/tcp, 51070/tcp, 5225/tcp (HP Server), 6093/tcp, 3565/tcp (M2PA), 9898/tcp (MonkeyCom), 9098/tcp, 2435/tcp (OptiLogic), 1004/tcp, 10040/tcp, 13495/tcp, 6425/tcp, 33911/tcp, 3330/tcp (MCS Calypso ICF), 31729/tcp, 5598/tcp (MCT Market Data Feed), 33033/tcp, 28543/tcp, 57725/tcp, 5493/tcp, 22022/tcp, 26654/tcp, 5758/tcp, 2919/tcp (roboER), 30257/tcp, 14209/tcp, 19548/tcp, 3807/tcp (SpuGNA Communication Port), 5812/tcp, 4607/tcp, 26368/tcp, 13208/tcp, 14115/tcp, 13627/tcp, 13924/tcp, 3187/tcp (Open Design Listen Port), 50005/tcp, 2050/tcp (Avaya EMB Config Port), 6967/tcp, 5254/tcp, 4088/tcp (Noah Printing Service Protocol), 5407/tcp (Foresyte-Clear), 4881/tcp, 1050/tcp (CORBA Management Agent), 13899/tcp, 4049/tcp (Wide Area File Services), 10346/tcp, 12768/tcp, 4426/tcp (SMARTS Beacon Port), 3254/tcp (PDA System), 10769/tcp, 11022/tcp, 15003/tcp, 7791/tcp, 5560/tcp, 28091/tcp, 4359/tcp (OMA BCAST Long-Term Key Messages), 6989/tcp, 9119/tcp (MXit Instant Messaging), 65535/tcp, 41531/tcp, 6000/tcp (-6063/udp   X Window System), 27939/tcp, 42729/tcp, 31831/tcp, 27885/tcp, 40803/tcp, 3267/tcp (IBM Dial Out), 3379/tcp (SOCORFS), 14141/tcp (VCS Application), 4300/tcp (Corel CCam), 4882/tcp, 13715/tcp, 8821/tcp, 55859/tcp, 7480/tcp, 11016/tcp, 53956/tcp, 54920/tcp, 6370/tcp (MetaEdit+ Server Administration), 9998/tcp (Distinct32), 11266/tcp, 5333/tcp, 28374/tcp, 10044/tcp, 14040/tcp, 62116/tcp, 389/tcp (Lightweight Directory Access Protocol), 30556/tcp, 1090/tcp (FF Fieldbus Message Specification), 5657/tcp, 20669/tcp, 41606/tcp, 58047/tcp, 38305/tcp, 11159/tcp, 9301/tcp, 36562/tcp, 5244/tcp, 11056/tcp, 5151/tcp (ESRI SDE Instance), 2389/tcp (OpenView Session Mgr), 7189/tcp, 6020/tcp, 10907/tcp, 52534/tcp, 25293/tcp, 8900/tcp (JMB-CDS 1), 5917/tcp, 16239/tcp, 994/tcp (irc protocol over TLS/SSL), 5722/tcp (Microsoft DFS Replication Service), 17177/tcp, 62329/tcp, 2936/tcp (OTPatch), 9918/tcp, 2080/tcp (Autodesk NLM (FLEXlm)), 4442/tcp (Saris), 60000/tcp, 47009/tcp, 49903/tcp, 9989/tcp, 2581/tcp (ARGIS TE), 28795/tcp, 32555/tcp, 3744/tcp (SASG), 6555/tcp, 4976/tcp, 3000/tcp (RemoteWare Client), 5561/tcp, 33576/tcp, 6604/tcp, 5/tcp (Remote Job Entry), 4970/tcp (CCSS QSystemMonitor), 3636/tcp (SerVistaITSM), 56789/tcp, 52814/tcp, 4060/tcp (DSMETER Inter-Agent Transfer Channel), 5656/tcp, 7291/tcp, 22251/tcp, 4315/tcp, 4530/tcp, 3302/tcp (MCS Fastmail), 8304/tcp, 64103/tcp, 59440/tcp, 23518/tcp, 26972/tcp, 43156/tcp, 13144/tcp, 3405/tcp (Nokia Announcement ch 1), 1020/tcp, 19772/tcp, 3174/tcp (ARMI Server), 63668/tcp, 1294/tcp (CMMdriver), 3332/tcp (MCS Mail Server), 13900/tcp, 9129/tcp, 14730/tcp, 4012/tcp (PDA Gate), 3535/tcp (MS-LA), 38047/tcp, 6969/tcp (acmsoda), 8060/tcp, 61500/tcp, 9225/tcp, 9376/tcp, 4136/tcp (Classic Line Database Server Request), 10015/tcp, 45113/tcp, 1021/tcp (RFC3692-style Experiment 1 (*)    [RFC4727]), 10185/tcp, 1098/tcp (RMI Activation), 8389/tcp, 51083/tcp, 8555/tcp (SYMAX D-FENCE), 9675/tcp, 13391/tcp, 55596/tcp, 50505/tcp, 9080/tcp (Groove GLRPC), 43171/tcp, 17009/tcp, 9908/tcp, 33203/tcp, 3347/tcp (Phoenix RPC), 8712/tcp, 24944/tcp, 4000/tcp (Terabase), 54529/tcp, 64477/tcp, 4567/tcp (TRAM), 3452/tcp (SABP-Signalling Protocol), 8202/tcp, 525/tcp (timeserver), 8154/tcp, 42941/tcp, 9905/tcp, 867/tcp, 41126/tcp, 9960/tcp, 44967/tcp, 1213/tcp (MPC LIFENET), 18181/tcp (OPSEC CVP), 3198/tcp (Embrace Device Protocol Client), 19210/tcp, 7982/tcp (Spotlight on SQL Server Desktop Agent), 4321/tcp (Remote Who Is), 4700/tcp (NetXMS Agent), 22143/tcp, 2903/tcp (SUITCASE), 8121/tcp (Apollo Data Port), 8083/tcp (Utilistor (Server)), 2475/tcp (ACE Server), 57681/tcp, 36477/tcp, 6879/tcp, 63006/tcp, 5556/tcp (Freeciv gameplay), 5769/tcp (x509solutions Internal CA), 51506/tcp, 12965/tcp, 1818/tcp (Enhanced Trivial File Transfer Protocol), 47133/tcp, 39841/tcp, 37215/tcp, 39312/tcp, 6100/tcp (SynchroNet-db), 51749/tcp, 4/tcp, 3111/tcp (Web Synchronous Services), 19924/tcp, 5048/tcp (Texai Message Service), 24219/tcp, 9091/tcp (xmltec-xmlmail), 4202/tcp, 16000/tcp (Administration Server Access), 8830/tcp, 6943/tcp, 10001/tcp (SCP Configuration), 4102/tcp (Braille protocol), 5207/tcp, 6022/tcp, 4334/tcp, 7391/tcp (mind-file system server), 7951/tcp, 6235/tcp, 14001/tcp (SUA), 5764/tcp, 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 3386/tcp (GPRS Data), 23456/tcp (Aequus Service), 9595/tcp (Ping Discovery Service), 16149/tcp, 6716/tcp, 62526/tcp, 5296/tcp, 39218/tcp, 23233/tcp, 5341/tcp, 51125/tcp, 4070/tcp (Trivial IP Encryption (TrIPE)), 10835/tcp, 34265/tcp, 4302/tcp (Diagnostic Data Control), 16753/tcp, 8981/tcp, 4412/tcp, 8179/tcp, 9007/tcp, 63366/tcp, 3200/tcp (Press-sense Tick Port), 3669/tcp (CA SAN Switch Management), 31537/tcp, 43159/tcp, 5350/tcp (NAT-PMP Status Announcements), 4539/tcp, 2829/tcp (silkp1), 51000/tcp, 5378/tcp, 57760/tcp, 3384/tcp (Cluster Management Services), 16170/tcp, 7392/tcp (mrss-rendezvous server), 5006/tcp (wsm server), 9987/tcp (DSM/SCM Target Interface), 5050/tcp (multimedia conference control tool), 1887/tcp (FileX Listening Port), 7620/tcp, 7111/tcp, 3936/tcp (Mailprox), 31197/tcp, 52645/tcp, 9444/tcp (WSO2 ESB Administration Console HTTPS), 6095/tcp, 6212/tcp, 5511/tcp, 33390/tcp, 5001/tcp (commplex-link), 10101/tcp (eZmeeting), 13001/tcp, 9880/tcp, 3477/tcp (eComm link port), 3666/tcp (IBM eServer PAP), 50491/tcp, 63912/tcp, 5624/tcp, 7171/tcp (Discovery and Retention Mgt Production), 1122/tcp (availant-mgr), 9777/tcp, 56943/tcp, 22950/tcp, 4141/tcp (Workflow Server), 9324/tcp, 7036/tcp, 6129/tcp, 7785/tcp, 1313/tcp (BMC_PATROLDB), 8529/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 33389/tcp, 33890/tcp, 23698/tcp, 8861/tcp, 2040/tcp (lam), 2186/tcp (Guy-Tek Automated Update Applications), 55352/tcp, 3040/tcp (Tomato Springs), 6983/tcp, 8128/tcp (PayCash Online Protocol), 50488/tcp, 3600/tcp (text relay-answer), 33898/tcp, 17909/tcp, 7779/tcp (VSTAT), 41292/tcp, 13636/tcp, 5070/tcp (VersaTrans Server Agent Service), 4779/tcp, 6612/tcp, 4291/tcp, 23412/tcp, 5315/tcp (HA Cluster UDP Polling), 4413/tcp, 38800/tcp, 10111/tcp, 944/tcp, 8081/tcp (Sun Proxy Admin Service), 3131/tcp (Net Book Mark), 9970/tcp, 5785/tcp (3PAR Inform Remote Copy), 9025/tcp (Secure Web Access - 3), 9036/tcp, 12122/tcp, 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 5000/tcp (commplex-main), 1200/tcp (SCOL), 7356/tcp, 48957/tcp, 4427/tcp (Drizzle database server), 7888/tcp, 12638/tcp, 12705/tcp, 34945/tcp, 6738/tcp, 31195/tcp, 11144/tcp, 2449/tcp (RATL), 5905/tcp, 24607/tcp, 12166/tcp, 1686/tcp (cvmon), 64295/tcp, 1717/tcp (fj-hdnet), 17000/tcp, 11124/tcp, 1286/tcp (netuitive), 5707/tcp, 5479/tcp, 7851/tcp, 52563/tcp, 54390/tcp, 51484/tcp, 7580/tcp, 63219/tcp, 30385/tcp, 1128/tcp (SAPHostControl over SOAP/HTTP), 2516/tcp (Main Control), 6240/tcp, 1086/tcp (CPL Scrambler Logging), 62105/tcp, 1243/tcp (SerialGateway), 28382/tcp, 3900/tcp (Unidata UDT OS), 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 2797/tcp (esp-encap), 14157/tcp, 7388/tcp, 2923/tcp (WTA-WSP-WTP-S), 3378/tcp (WSICOPY), 10274/tcp, 63411/tcp, 6916/tcp, 2533/tcp (SnifferServer), 3445/tcp (Media Object Network), 3394/tcp (D2K Tapestry Server to Server), 7565/tcp, 40618/tcp, 16173/tcp, 8353/tcp, 10961/tcp, 29613/tcp, 55340/tcp, 4795/tcp, 9716/tcp, 49873/tcp, 1875/tcp (westell stats), 8682/tcp, 38572/tcp, 49599/tcp, 9704/tcp, 10848/tcp, 5396/tcp, 1140/tcp (AutoNOC Network Operations Protocol), 9983/tcp, 7999/tcp (iRDMI2), 44429/tcp, 1777/tcp (powerguardian), 33397/tcp, 4111/tcp (Xgrid), 7677/tcp (Sun App Server - HTTPS), 21217/tcp, 3580/tcp (NATI-ServiceLocator), 8585/tcp, 6232/tcp, 38907/tcp, 1089/tcp (FF Annunciation), 54183/tcp, 1374/tcp (EPI Software Systems), 62710/tcp, 9555/tcp (Trispen Secure Remote Access), 9014/tcp, 11020/tcp, 36166/tcp, 1055/tcp (ANSYS - License Manager), 38276/tcp, 33789/tcp, 4472/tcp, 4803/tcp (Notateit Messaging), 9600/tcp (MICROMUSE-NCPW), 37284/tcp, 16257/tcp, 3606/tcp (Splitlock Server), 29853/tcp, 9187/tcp, 12604/tcp, 47673/tcp, 47604/tcp, 6082/tcp, 13206/tcp, 854/tcp, 42635/tcp, 6178/tcp, 47278/tcp, 2886/tcp (RESPONSELOGIC), 3371/tcp, 45044/tcp, 13733/tcp, 6262/tcp, 6214/tcp, 550/tcp (new-who), 39268/tcp, 40004/tcp, 8300/tcp (Transport Management Interface), 3346/tcp (Trnsprnt Proxy), 1880/tcp (Gilat VSAT Control), 1476/tcp (clvm-cfg), 33893/tcp, 38467/tcp, 2888/tcp (SPCSDLOBBY), 31263/tcp, 4003/tcp (pxc-splr-ft), 7526/tcp, 33009/tcp, 9272/tcp, 33884/tcp, 32599/tcp, 8702/tcp, 8583/tcp, 3010/tcp (Telerate Workstation), 5021/tcp (zenginkyo-2), 7776/tcp, 52793/tcp, 48311/tcp, 5669/tcp, 7060/tcp, 1070/tcp (GMRUpdateSERV), 3473/tcp (JAUGS N-G Remotec 2), 28059/tcp, 3917/tcp (AFT multiplex port), 8109/tcp, 8307/tcp, 6145/tcp (StatSci License Manager - 2), 15/tcp, 12727/tcp, 55014/tcp, 11484/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 15288/tcp, 9494/tcp, 44809/tcp, 1100/tcp (MCTP), 11172/tcp (OEM cacao JMX-remoting access point), 81/tcp, 36704/tcp, 13259/tcp, 5654/tcp, 4080/tcp (Lorica inside facing), 9797/tcp, 3300/tcp, 6263/tcp, 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6900/tcp, 54031/tcp, 8002/tcp (Teradata ORDBMS), 1676/tcp (netcomm1), 10080/tcp (Amanda), 10134/tcp, 6656/tcp (Emergency Message Control Service), 7/tcp (Echo), 7157/tcp, 13131/tcp, 8963/tcp, 23389/tcp, 38009/tcp, 37749/tcp, 42142/tcp, 1026/tcp (Calendar Access Protocol), 9596/tcp (Mercury Discovery), 57484/tcp, 61745/tcp, 936/tcp, 778/tcp, 10190/tcp, 3593/tcp (BP Model Debugger), 64717/tcp, 39703/tcp, 13421/tcp, 2015/tcp (cypress), 7994/tcp, 2770/tcp (Veronica), 39565/tcp, 30003/tcp, 57777/tcp, 55555/tcp, 5817/tcp, 25325/tcp, 61648/tcp, 8544/tcp, 22296/tcp, 3637/tcp (Customer Service Port), 41649/tcp, 6050/tcp, 6121/tcp (SPDY for a faster web), 24193/tcp, 63373/tcp, 6465/tcp, 11988/tcp, 34210/tcp, 5666/tcp, 8984/tcp, 5115/tcp (Symantec Autobuild Service), 6025/tcp, 7771/tcp, 8898/tcp, 9236/tcp, 8656/tcp, 10392/tcp, 3400/tcp (CSMS2), 7693/tcp, 5400/tcp (Excerpt Search), 33386/tcp, 25767/tcp, 60088/tcp, 9010/tcp (Secure Data Replicator Protocol), 7641/tcp, 4020/tcp (TRAP Port), 9528/tcp, 59021/tcp, 9669/tcp, 8520/tcp, 9556/tcp, 2568/tcp (SPAM TRAP), 62483/tcp, 4360/tcp (Matrix VNet Communication Protocol), 63050/tcp, 5051/tcp (ITA Agent), 3355/tcp (Ordinox Dbase), 9920/tcp, 6566/tcp (SANE Control Port), 1428/tcp (Informatik License Manager), 29931/tcp, 11904/tcp, 6081/tcp, 5595/tcp, 23976/tcp, 345/tcp (Perf Analysis Workbench), 57243/tcp, 6587/tcp, 10500/tcp, 6641/tcp, 35535/tcp, 45678/tcp (EBA PRISE), 9852/tcp, 8111/tcp, 8881/tcp, 33880/tcp, 8390/tcp, 55445/tcp, 6777/tcp, 4939/tcp, 3338/tcp (OMF data b), 33471/tcp, 21416/tcp, 3354/tcp (SUITJD), 6956/tcp, 2090/tcp (Load Report Protocol), 19734/tcp, 58558/tcp, 14709/tcp, 3981/tcp (Starfish System Admin), 3501/tcp (iSoft-P2P), 4242/tcp, 6996/tcp, 3003/tcp (CGMS), 2424/tcp (KOFAX-SVR), 63389/tcp, 49996/tcp, 21463/tcp, 21193/tcp, 47693/tcp, 3020/tcp (CIFS), 8345/tcp, 7083/tcp, 10408/tcp, 1719/tcp (h323gatestat), 22396/tcp, 16509/tcp, 5551/tcp, 54186/tcp, 4181/tcp (MacBak), 9701/tcp, 2022/tcp (down), 19501/tcp, 10095/tcp, 2176/tcp (Microsoft ActiveSync Remote API), 59570/tcp, 54153/tcp, 33167/tcp, 11689/tcp, 33210/tcp, 10697/tcp, 41000/tcp, 35851/tcp, 3336/tcp (Direct TV Tickers), 250/tcp, 7174/tcp (Clutild), 50853/tcp, 10238/tcp, 5856/tcp, 11166/tcp, 64952/tcp, 12345/tcp (Italk Chat System), 10/tcp, 8084/tcp, 5045/tcp (Open Settlement Protocol), 51524/tcp, 2218/tcp (Bounzza IRC Proxy), 57619/tcp, 10962/tcp, 1013/tcp, 32382/tcp, 10097/tcp, 18267/tcp, 4040/tcp (Yo.net main service), 41599/tcp, 10374/tcp, 13988/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 11538/tcp, 3102/tcp (SoftlinK Slave Mon Port), 17777/tcp (SolarWinds Orion), 8129/tcp (PayCash Wallet-Browser), 3360/tcp (KV Server), 5641/tcp, 10770/tcp, 42636/tcp, 53934/tcp, 5847/tcp, 1234/tcp (Infoseek Search Agent), 7634/tcp, 9702/tcp, 4828/tcp, 40000/tcp (SafetyNET p), 50000/tcp, 3418/tcp (Remote nmap), 2481/tcp (Oracle GIOP), 2500/tcp (Resource Tracking system server), 4487/tcp (Protocol for Remote Execution over TCP), 14804/tcp, 11146/tcp, 9188/tcp, 12753/tcp (tsaf port), 8020/tcp (Intuit Entitlement Service and Discovery), 4389/tcp (Xandros Community Management Service), 26126/tcp, 10495/tcp, 9200/tcp (WAP connectionless session service), 14000/tcp (SCOTTY High-Speed Filetransfer), 102/tcp (ISO-TSAP Class 0), 15760/tcp, 10977/tcp, 38393/tcp, 7777/tcp (cbt), 8070/tcp, 12931/tcp, 5660/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 2626/tcp (gbjd816), 27808/tcp, 21027/tcp, 88/tcp (Kerberos), 9911/tcp (SYPECom Transport Protocol), 4444/tcp (NV Video default), 27777/tcp, 7417/tcp, 6310/tcp, 11003/tcp, 34304/tcp, 6200/tcp (LM-X License Manager by X-Formation), 2934/tcp (4-TIER OPM CLI), 3244/tcp (OneSAF), 9901/tcp, 33891/tcp, 5121/tcp, 32833/tcp, 12001/tcp (IBM Enterprise Extender SNA COS Network Priority), 10099/tcp, 21481/tcp, 19195/tcp, 9070/tcp, 28878/tcp, 9915/tcp, 51525/tcp, 25555/tcp, 5483/tcp, 7000/tcp (file server itself), 13637/tcp, 2333/tcp (SNAPP), 5024/tcp (SCPI-TELNET), 40257/tcp, 53388/tcp, 8033/tcp (MindPrint), 2121/tcp (SCIENTIA-SSDB), 6420/tcp (NIM_VDRShell), 65000/tcp, 21141/tcp, 4489/tcp, 1984/tcp (BB), 13757/tcp, 43794/tcp, 6611/tcp, 36877/tcp, 11526/tcp, 6132/tcp, 1697/tcp (rrisat), 3370/tcp, 61684/tcp, 3334/tcp (Direct TV Webcasting), 8955/tcp, 45454/tcp, 568/tcp (microsoft shuttle), 21252/tcp, 44918/tcp, 1314/tcp (Photoscript Distributed Printing System), 18714/tcp, 23879/tcp, 4379/tcp (CTDB), 17171/tcp, 19800/tcp, 20428/tcp, 5987/tcp (WBEM RMI), 14487/tcp, 16139/tcp, 7001/tcp (callbacks to cache managers), 9350/tcp, 5593/tcp, 9004/tcp, 63827/tcp, 9393/tcp, 33923/tcp, 3268/tcp (Microsoft Global Catalog), 12566/tcp, 5700/tcp, 15001/tcp, 4443/tcp (Pharos), 3402/tcp (FXa Engine Network Port), 4574/tcp, 35105/tcp, 7376/tcp, 28481/tcp, 48212/tcp, 5453/tcp (SureBox), 36739/tcp, 46273/tcp, 24705/tcp, 5901/tcp, 7733/tcp, 8000/tcp (iRDMI), 29292/tcp, 46456/tcp, 51971/tcp, 16668/tcp, 27392/tcp, 4495/tcp, 108/tcp (SNA Gateway Access Server), 19191/tcp (OPSEC UAA), 9771/tcp, 5222/tcp (XMPP Client Connection), 10322/tcp, 7477/tcp, 4845/tcp (WordCruncher Remote Library Service), 6184/tcp, 59090/tcp, 5760/tcp, 8952/tcp, 52313/tcp, 60411/tcp, 30979/tcp, 5230/tcp, 43539/tcp, 7041/tcp, 41217/tcp, 34862/tcp, 60642/tcp, 2018/tcp (terminaldb), 46602/tcp, 8444/tcp (PCsync HTTP), 57340/tcp, 2269/tcp (MIKEY), 29091/tcp, 8850/tcp, 51742/tcp, 1600/tcp (issd), 423/tcp (IBM Operations Planning and Control Start), 35842/tcp, 11128/tcp, 402/tcp (Genie Protocol), 8282/tcp, 11716/tcp, 7538/tcp, 9577/tcp, 53471/tcp, 8182/tcp (VMware Fault Domain Manager), 10022/tcp, 4794/tcp, 62275/tcp, 23885/tcp, 6554/tcp, 9321/tcp (guibase), 9994/tcp (OnLive-3), 37040/tcp, 36280/tcp, 9969/tcp, 57747/tcp, 5432/tcp (PostgreSQL Database), 5652/tcp, 6379/tcp, 4606/tcp, 25347/tcp, 5775/tcp, 22454/tcp, 6227/tcp, 4073/tcp (iRAPP Server Protocol), 52886/tcp, 6041/tcp, 10000/tcp (Network Data Management Protocol), 1256/tcp (de-server), 2020/tcp (xinupageserver), 3365/tcp (Content Server), 42536/tcp, 7880/tcp (Pearson), 5833/tcp, 3342/tcp (WebTIE), 1486/tcp (nms_topo_serv), 2119/tcp (GSIGATEKEEPER), 8602/tcp, 4762/tcp, 2929/tcp (AMX-WEBADMIN), 41464/tcp, 2796/tcp (ac-tech), 7900/tcp (Multicast Event), 51492/tcp, 15850/tcp, 10736/tcp, 8097/tcp (SAC Port Id), 40089/tcp, 47537/tcp, 3989/tcp (BindView-Query Engine), 10932/tcp, 8775/tcp, 23057/tcp, 26676/tcp, 5413/tcp (WWIOTALK), 23421/tcp, 13599/tcp, 8293/tcp (Hiperscan Identification Service), 5338/tcp, 6393/tcp, 8924/tcp, 51807/tcp, 5500/tcp (fcp-addr-srvr1), 7878/tcp, 46901/tcp, 13688/tcp, 7649/tcp, 3361/tcp (KV Agent), 30303/tcp, 2637/tcp (Import Document Service), 4482/tcp, 5810/tcp, 43307/tcp, 7725/tcp (Nitrogen Service), 5960/tcp, 1437/tcp (Tabula), 3380/tcp (SNS Channels), 8535/tcp, 1220/tcp (QT SERVER ADMIN), 33001/tcp, 9241/tcp, 42109/tcp, 5080/tcp (OnScreen Data Collection Service), 7699/tcp, 8059/tcp (Senomix Timesheets Client [1 year assignment]), 30967/tcp, 48769/tcp, 1528/tcp, 9800/tcp (WebDav Source Port), 15728/tcp, 33901/tcp, 2575/tcp (HL7), 3796/tcp (Spaceway Dialer), 9980/tcp, 23186/tcp, 52522/tcp, 13462/tcp, 3397/tcp (Cloanto License Manager), 3505/tcp (CCM communications port), 7591/tcp, 53389/tcp, 2874/tcp (DX Message Base Transport Protocol), 13183/tcp, 9029/tcp, 26000/tcp (quake), 4658/tcp (PlayStation2 App Port), 40400/tcp, 2046/tcp (sdfunc), 8425/tcp, 11174/tcp (OEM cacao rmi registry access point), 5135/tcp (ERP-Scale), 38516/tcp, 34016/tcp, 9002/tcp (DynamID authentication), 6161/tcp (PATROL Internet Srv Mgr), 26889/tcp, 2220/tcp (NetIQ End2End), 24922/tcp (Find Identification of Network Devices), 7479/tcp, 63839/tcp, 11173/tcp, 7890/tcp, 9991/tcp (OSM Event Server), 16490/tcp, 5082/tcp (Qpur Communication Protocol), 5468/tcp, 4197/tcp, 44604/tcp, 2661/tcp (OLHOST), 50664/tcp, 8039/tcp, 12052/tcp, 11412/tcp, 21509/tcp, 9999/tcp (distinct), 21210/tcp, 5807/tcp, 24656/tcp, 4761/tcp, 22452/tcp, 7181/tcp, 7681/tcp, 63627/tcp, 6116/tcp (XicTools License Manager Service), 39941/tcp, 5921/tcp, 20231/tcp, 21611/tcp, 8880/tcp (CDDBP), 7428/tcp (OpenView DM Log Agent Manager), 7374/tcp, 4243/tcp, 7113/tcp, 6247/tcp, 9931/tcp, 9357/tcp, 1736/tcp (street-stream), 9992/tcp (OnLive-1), 4477/tcp, 44505/tcp, 29080/tcp, 3536/tcp (SNAC), 49500/tcp, 11087/tcp, 22458/tcp, 9286/tcp, 3500/tcp (RTMP Port), 14032/tcp, 50546/tcp, 18754/tcp, 51511/tcp, 14638/tcp, 13527/tcp, 33380/tcp, 61054/tcp, 40030/tcp, 47250/tcp, 45270/tcp, 29331/tcp, 7380/tcp, 4555/tcp (RSIP Port), 43994/tcp, 6294/tcp, 7152/tcp, 1798/tcp (Event Transfer Protocol), 30010/tcp, 3485/tcp (CelaTalk), 7040/tcp, 2010/tcp (search), 17332/tcp, 456/tcp (macon-tcp), 10900/tcp, 7237/tcp, 8475/tcp, 2911/tcp (Blockade), 4593/tcp (IPT (ANRI-ANRI)), 33894/tcp, 51056/tcp, 39811/tcp, 4639/tcp, 39833/tcp, 16564/tcp, 8401/tcp (sabarsd), 7235/tcp, 11385/tcp, 55678/tcp, 13054/tcp, 2178/tcp (Peer Services for BITS), 4250/tcp, 10702/tcp, 13165/tcp, 11027/tcp, 60061/tcp, 63653/tcp, 9453/tcp, 3922/tcp (Soronti Update Port), 1212/tcp (lupa), 35404/tcp, 1009/tcp, 10699/tcp, 1112/tcp (Intelligent Communication Protocol), 48990/tcp, 63395/tcp, 2348/tcp (Information to query for game status), 5252/tcp (Movaz SSC), 3322/tcp (-3325  Active Networks).
      
BHD Honeypot
Port scan
2019-11-16

In the last 24h, the attacker (81.22.45.250) attempted to scan 666 ports.
The following ports have been scanned: 8005/tcp (MXI Generation II for z/OS), 9544/tcp, 11277/tcp, 10010/tcp (ooRexx rxapi services), 3589/tcp (isomair), 20678/tcp, 7700/tcp (EM7 Secure Communications), 6001/tcp, 10147/tcp, 6453/tcp, 9093/tcp, 22707/tcp, 4371/tcp (LAN2CAN Control), 3757/tcp (GRF Server Port), 45779/tcp, 5406/tcp (Systemics Sox), 3958/tcp (MQEnterprise Agent), 3398/tcp (Mercantile), 11133/tcp, 11015/tcp, 4178/tcp (StorMan), 9009/tcp (Pichat Server), 9072/tcp, 44659/tcp, 10188/tcp, 10424/tcp, 32350/tcp, 9110/tcp, 2787/tcp (piccolo - Cornerstone Software), 9499/tcp, 8500/tcp (Flight Message Transfer Protocol), 3700/tcp (LRS NetPage), 3396/tcp (Printer Agent), 9374/tcp (fjdmimgr), 13876/tcp, 9000/tcp (CSlistener), 9700/tcp (Board M.I.T. Service), 8366/tcp, 6233/tcp, 5563/tcp, 2300/tcp (CVMMON), 8335/tcp, 8181/tcp, 9711/tcp, 14086/tcp, 23495/tcp, 5425/tcp (Beyond Remote Command Channel), 24829/tcp, 39616/tcp, 25798/tcp, 9090/tcp (WebSM), 4521/tcp, 4850/tcp (Sun App Server - NA), 27108/tcp, 3778/tcp (Cutler-Hammer IT Port), 57952/tcp, 14946/tcp, 3390/tcp (Distributed Service Coordinator), 32130/tcp, 9006/tcp, 4591/tcp (HRPD L3T (AT-AN)), 3364/tcp (Creative Server), 1910/tcp (UltraBac Software communications port), 5784/tcp, 3409/tcp (NetworkLens Event Port), 9514/tcp, 48272/tcp, 8662/tcp, 9132/tcp, 3317/tcp (VSAI PORT), 9578/tcp, 6169/tcp, 38000/tcp, 4201/tcp, 4177/tcp (Wello P2P pubsub service), 6029/tcp, 8744/tcp, 5469/tcp, 22222/tcp, 12832/tcp, 13679/tcp, 10050/tcp (Zabbix Agent), 6300/tcp (BMC GRX), 3195/tcp (Network Control Unit), 3444/tcp (Denali Server), 10024/tcp, 12748/tcp, 1628/tcp (LonTalk normal), 10513/tcp, 8268/tcp, 20539/tcp, 10152/tcp, 10021/tcp, 3878/tcp (FotoG CAD interface), 50208/tcp, 9300/tcp (Virtual Racing Service), 4008/tcp (NetCheque accounting), 4323/tcp (TRIM ICE Service), 12111/tcp, 4317/tcp, 7030/tcp (ObjectPlanet probe), 3663/tcp (DIRECWAY Tunnel Protocol), 15631/tcp, 8885/tcp, 9684/tcp, 8348/tcp, 12443/tcp, 5265/tcp (3Com Network Jack Port 2), 2512/tcp (Citrix IMA), 23391/tcp, 3343/tcp (MS Cluster Net), 10412/tcp, 3383/tcp (Enterprise Software Products License Manager), 10354/tcp, 35002/tcp, 10919/tcp, 19675/tcp, 8794/tcp, 11863/tcp, 7575/tcp, 3622/tcp (FF LAN Redundancy Port), 8663/tcp, 10806/tcp, 4455/tcp (PR Chat User), 16565/tcp, 8735/tcp, 8933/tcp, 8068/tcp, 6666/tcp, 5152/tcp (ESRI SDE Instance Discovery), 4932/tcp, 10533/tcp, 4647/tcp, 20001/tcp (MicroSAN), 11468/tcp, 33902/tcp, 6729/tcp, 43066/tcp, 23805/tcp, 3404/tcp, 8267/tcp, 3387/tcp (Back Room Net), 9692/tcp, 5225/tcp (HP Server), 9898/tcp (MonkeyCom), 9098/tcp, 10040/tcp, 13495/tcp, 3330/tcp (MCS Calypso ICF), 31729/tcp, 22022/tcp, 26654/tcp, 5812/tcp, 13208/tcp, 14115/tcp, 13627/tcp, 4088/tcp (Noah Printing Service Protocol), 4049/tcp (Wide Area File Services), 12768/tcp, 3254/tcp (PDA System), 10769/tcp, 15003/tcp, 6000/tcp (-6063/udp   X Window System), 27939/tcp, 31831/tcp, 4295/tcp, 8821/tcp, 55859/tcp, 11016/tcp, 9998/tcp (Distinct32), 11266/tcp, 7285/tcp, 10044/tcp, 8600/tcp (Surveillance Data), 5657/tcp, 20669/tcp, 4343/tcp (UNICALL), 11056/tcp, 7189/tcp, 3429/tcp (GCSP user port), 9497/tcp, 10907/tcp, 25293/tcp, 6455/tcp (SKIP Certificate Receive), 16239/tcp, 5722/tcp (Microsoft DFS Replication Service), 9918/tcp, 2080/tcp (Autodesk NLM (FLEXlm)), 9989/tcp, 2581/tcp (ARGIS TE), 6555/tcp, 6604/tcp, 5/tcp (Remote Job Entry), 8304/tcp, 23518/tcp, 26972/tcp, 13144/tcp, 3502/tcp (Avocent Install Discovery), 19772/tcp, 3332/tcp (MCS Mail Server), 13900/tcp, 9129/tcp, 14730/tcp, 8060/tcp, 9225/tcp, 10015/tcp, 10185/tcp, 8389/tcp, 8555/tcp (SYMAX D-FENCE), 10204/tcp, 24944/tcp, 6467/tcp, 8202/tcp, 9905/tcp, 9960/tcp, 19210/tcp, 4700/tcp (NetXMS Agent), 22143/tcp, 2903/tcp (SUITCASE), 8083/tcp (Utilistor (Server)), 57681/tcp, 6879/tcp, 5556/tcp (Freeciv gameplay), 12965/tcp, 1818/tcp (Enhanced Trivial File Transfer Protocol), 1080/tcp (Socks), 6100/tcp (SynchroNet-db), 3111/tcp (Web Synchronous Services), 19924/tcp, 24219/tcp, 9091/tcp (xmltec-xmlmail), 16000/tcp (Administration Server Access), 8830/tcp, 10001/tcp (SCP Configuration), 4102/tcp (Braille protocol), 14001/tcp (SUA), 8532/tcp, 8800/tcp (Sun Web Server Admin Service), 23456/tcp (Aequus Service), 16149/tcp, 6716/tcp, 62526/tcp, 5296/tcp, 4302/tcp (Diagnostic Data Control), 8179/tcp, 9007/tcp, 3669/tcp (CA SAN Switch Management), 5006/tcp (wsm server), 7111/tcp, 9444/tcp (WSO2 ESB Administration Console HTTPS), 5973/tcp, 6095/tcp, 33390/tcp, 13001/tcp, 3666/tcp (IBM eServer PAP), 5624/tcp, 9777/tcp, 9324/tcp, 10797/tcp, 6129/tcp, 5005/tcp (RTP control protocol [RFC 3551][RFC 4571]), 8861/tcp, 7779/tcp (VSTAT), 13636/tcp, 5315/tcp (HA Cluster UDP Polling), 38800/tcp, 10111/tcp, 8081/tcp (Sun Proxy Admin Service), 3131/tcp (Net Book Mark), 9970/tcp, 9025/tcp (Secure Web Access - 3), 4404/tcp (ASIGRA Televaulting DS-System Monitoring/Management), 4427/tcp (Drizzle database server), 7888/tcp, 12638/tcp, 12705/tcp, 11144/tcp, 24607/tcp, 12166/tcp, 1686/tcp (cvmon), 1717/tcp (fj-hdnet), 17000/tcp, 2516/tcp (Main Control), 6240/tcp, 28382/tcp, 3152/tcp (FeiTian Port), 2930/tcp (AMX-WEBLINX), 4800/tcp (Icona Instant Messenging System), 3378/tcp (WSICOPY), 2533/tcp (SnifferServer), 3445/tcp (Media Object Network), 8353/tcp, 10961/tcp, 9716/tcp, 8682/tcp, 10848/tcp, 6232/tcp, 9555/tcp (Trispen Secure Remote Access), 9014/tcp, 11020/tcp, 33789/tcp, 9600/tcp (MICROMUSE-NCPW), 37284/tcp, 16257/tcp, 12604/tcp, 6082/tcp, 13206/tcp, 13733/tcp, 18261/tcp, 6262/tcp, 6214/tcp, 40004/tcp, 33893/tcp, 4003/tcp (pxc-splr-ft), 7526/tcp, 8702/tcp, 5669/tcp, 9758/tcp, 3917/tcp (AFT multiplex port), 5594/tcp, 8109/tcp, 4900/tcp (HyperFileSQL Client/Server Database Engine), 15288/tcp, 1100/tcp (MCTP), 11172/tcp (OEM cacao JMX-remoting access point), 4999/tcp (HyperFileSQL Client/Server Database Engine Manager), 6002/tcp, 10080/tcp (Amanda), 7157/tcp, 8963/tcp, 23389/tcp, 1026/tcp (Calendar Access Protocol), 9596/tcp (Mercury Discovery), 13421/tcp, 39565/tcp, 5817/tcp, 25325/tcp, 22296/tcp, 3637/tcp (Customer Service Port), 6050/tcp, 24193/tcp, 6465/tcp, 11988/tcp, 7771/tcp, 8898/tcp, 9236/tcp, 8656/tcp, 10392/tcp, 3400/tcp (CSMS2), 5400/tcp (Excerpt Search), 4020/tcp (TRAP Port), 6690/tcp, 9669/tcp, 8520/tcp, 9556/tcp, 4360/tcp (Matrix VNet Communication Protocol), 5051/tcp (ITA Agent), 9920/tcp, 1428/tcp (Informatik License Manager), 29931/tcp, 6587/tcp, 8111/tcp, 6777/tcp, 21416/tcp, 3354/tcp (SUITJD), 19734/tcp, 14709/tcp, 3501/tcp (iSoft-P2P), 4242/tcp, 3003/tcp (CGMS), 21193/tcp, 3020/tcp (CIFS), 8345/tcp, 22396/tcp, 4181/tcp (MacBak), 11204/tcp, 10095/tcp, 11689/tcp, 10697/tcp, 35851/tcp, 5550/tcp, 2/tcp (Management Utility), 11166/tcp, 12345/tcp (Italk Chat System), 8084/tcp, 10962/tcp, 10097/tcp, 18267/tcp, 4040/tcp (Yo.net main service), 10374/tcp, 3726/tcp (Xyratex Array Manager), 17934/tcp, 11538/tcp, 17777/tcp (SolarWinds Orion), 8129/tcp (PayCash Wallet-Browser), 10770/tcp, 9702/tcp, 4828/tcp, 3418/tcp (Remote nmap), 9188/tcp, 12753/tcp (tsaf port), 8020/tcp (Intuit Entitlement Service and Discovery), 7617/tcp, 10495/tcp, 9200/tcp (WAP connectionless session service), 14000/tcp (SCOTTY High-Speed Filetransfer), 15760/tcp, 10977/tcp, 7777/tcp (cbt), 12931/tcp, 9399/tcp, 3090/tcp (Senforce Session Services), 2626/tcp (gbjd816), 4444/tcp (NV Video default), 27777/tcp, 7417/tcp, 6310/tcp, 11003/tcp, 9901/tcp, 21481/tcp, 9915/tcp, 5483/tcp, 7000/tcp (file server itself), 13637/tcp, 2333/tcp (SNAPP), 7750/tcp, 21141/tcp, 4489/tcp, 1984/tcp (BB), 6132/tcp, 3370/tcp, 21252/tcp, 18714/tcp, 23879/tcp, 17171/tcp, 19800/tcp, 20428/tcp, 5987/tcp (WBEM RMI), 14487/tcp, 16139/tcp, 9350/tcp, 9393/tcp, 3268/tcp (Microsoft Global Catalog), 5700/tcp, 15001/tcp, 4443/tcp (Pharos), 7376/tcp, 46273/tcp, 7733/tcp, 8000/tcp (iRDMI), 29292/tcp, 16668/tcp, 9771/tcp, 10322/tcp, 4845/tcp (WordCruncher Remote Library Service), 11818/tcp, 8952/tcp, 30979/tcp, 43539/tcp, 8444/tcp (PCsync HTTP), 57340/tcp, 2269/tcp (MIKEY), 29091/tcp, 1600/tcp (issd), 7452/tcp, 11128/tcp, 8282/tcp, 11716/tcp, 7538/tcp, 9577/tcp, 23885/tcp, 9321/tcp (guibase), 9994/tcp (OnLive-3), 9969/tcp, 5432/tcp (PostgreSQL Database), 5652/tcp, 4606/tcp, 6363/tcp, 22454/tcp, 10000/tcp (Network Data Management Protocol), 2020/tcp (xinupageserver), 5833/tcp, 8602/tcp, 2796/tcp (ac-tech), 15850/tcp, 3706/tcp (Real-Time Event Port), 3989/tcp (BindView-Query Engine), 10932/tcp, 5500/tcp (fcp-addr-srvr1), 7878/tcp, 13688/tcp, 3361/tcp (KV Agent), 30303/tcp, 2637/tcp (Import Document Service), 5810/tcp, 8535/tcp, 1220/tcp (QT SERVER ADMIN), 9241/tcp, 42109/tcp, 7699/tcp, 33901/tcp, 2575/tcp (HL7), 3796/tcp (Spaceway Dialer), 7591/tcp, 13183/tcp, 9029/tcp, 4658/tcp (PlayStation2 App Port), 6161/tcp (PATROL Internet Srv Mgr), 26889/tcp, 2220/tcp (NetIQ End2End), 24922/tcp (Find Identification of Network Devices), 7479/tcp, 11173/tcp, 9991/tcp (OSM Event Server), 4589/tcp, 16490/tcp, 50664/tcp, 12052/tcp, 9999/tcp (distinct), 5807/tcp, 22452/tcp, 7681/tcp, 7374/tcp, 4243/tcp, 7113/tcp, 9931/tcp, 9357/tcp, 4477/tcp, 22458/tcp, 9286/tcp, 14032/tcp, 18754/tcp, 13527/tcp, 33380/tcp, 29331/tcp, 7040/tcp, 10900/tcp, 7237/tcp, 8475/tcp, 12582/tcp, 2706/tcp (NCD Mirroring), 2019/tcp (whosockami), 4639/tcp, 39833/tcp, 8401/tcp (sabarsd), 11385/tcp, 13054/tcp, 4250/tcp, 10702/tcp, 13165/tcp, 9453/tcp, 1112/tcp (Intelligent Communication Protocol), 2348/tcp (Information to query for game status).
      
BHD Honeypot
Port scan
2019-11-16

Port scan from IP: 81.22.45.250 detected by psad.

Blacklist

Near real-time, easy to use data feed containing IPs reported on our website.

Bronze

$3

Updated daily

Learn More

Silver

$15

Updated every hour

Learn More

Gold

$30

Updated every 10 minutes

Learn More

Remarks

Black hat directory contains this IP address, because Internet users reported it as an address making unsolicited, nagging requests. We make every effort to ensure that the information contained in the Black hat directory are correct and up to date. The database is developed and updated by Internet users and moderators.

If you have any reliable information regarding malicious activity originating from this IP address, please share it with others and fill in the 'Report breach' form. It is prohibited from adding personally identifiable information.

Below breach categories are used in the database:

  • Denial of service attack - this attack is accomplished by flooding the target with massive amount of requests in order to overload the targeted system
  • Brute force attack - this category encompasses attempts to login to machine by trying many passwords and usernames
  • Backdoor attack - this category represents bypassing authentication by hidden programs or services to obtain remote access to a computer or trojan activity
  • Port scan - represents attackers identifying running services on the targeted machine by probing a server for open ports
  • Malicious bot - this category encompasses all bots performing unsolicited requests or ignoring robots.txt file
  • Anonymous proxy - public proxies like Tor, I2P relays or anonymous VPNs are often used by attacker to hide his identity
  • Web attack - attempts to exploit web application security flaws
  • CMS attack - attempts to exploit CMS vulnerability
  • App vulnerability attack - attempts to exploit other applications vulnerability
  • Web spam - encompasses all kind of HTTP spamming
  • Email spam - encompasses all kind of E-mail spamming
  • Dodgy activity - this category encompasses superfluous, dodgy requests

Report breach!

Rate host 81.22.45.250