Traffic Report - rynzs (US, San Jose)

Traffic Report for rynzs (US, San Jose)

Linux | 0.89 GB | hosting

Select Endpoint:

Page loaded: 2026-02-06 20:49:59 UTC

Actionable Threat Intelligence

Firewall IP Blocklists

Choose Your Blocklist Strategy

Three different blocklist options are available based on your security requirements and tolerance for false positives.

LightScope Network Power

Harnesses the power of the entire LightScope network! Contains IPs that connected to honeypots across ALL LightScope endpoints.

🌐 Network-wide threat intelligence
✓ 100% verified genuine attackers
✓ No spoofed IP addresses
✓ Maximum protection coverage

Best Choice: Leverages the collective intelligence of the entire LightScope network. Safe for immediate deployment.

Download Recommended

Conservative

Endpoint-Specific Verified

Only includes IPs that completed a 3-way TCP handshake with THIS endpoint's honeypot services. These are verified genuine threat actors specific to your endpoint.

✓ Endpoint-specific targeting
✓ Zero spoofing risk
✓ Safe for production
✓ Targeted protection

Good Choice: For endpoint-specific protection. These IPs specifically targeted your infrastructure.

Download Conservative

Extreme (Not Recommended)

All Threat Actor IPs

Includes ALL individual threat actor IPs that targeted your network, including those that may be spoofed by competitors or other attackers.

🚨 HIGH spoofing probability
⚠️ WILL LIKELY block legitimate traffic
⚠️ Can cause service disruption
⚠️ NOT RECOMMENDED

Not Recommended: High risk of blocking legitimate services. Only for isolated environments.

Download Extreme

Firewall Import Instructions:

pfSense/OPNsense:
Firewall → Aliases → IP → Upload

Cisco ASA:
object-group network BLOCKLIST

iptables:
ipset create blocklist hash:ip

Format:
Plain text, one IP per line

Automation & API Access

Automate your blocklist updates! Use these wget commands to automatically download the latest blocklists for integration into scripts, cron jobs, or automated security workflows.

Recommended (Network-wide)

wget -O recommended_blocklist.txt \

                                                              "https://lightscope.isi.edu/blocklist/20251004_pesszaxsjsanedtmkihqycumjrdaihwegcrtytwlpnrynzs/recommended"

Conservative (Endpoint-specific)

wget -O conservative_blocklist.txt \

                                                              "https://lightscope.isi.edu/blocklist/20251004_pesszaxsjsanedtmkihqycumjrdaihwegcrtytwlpnrynzs/conservative"

Extreme (Not Recommended)

wget -O extreme_blocklist.txt \

                                                              "https://lightscope.isi.edu/blocklist/20251004_pesszaxsjsanedtmkihqycumjrdaihwegcrtytwlpnrynzs/extreme"

Example Automation Script:

#!/bin/bash

                                                            # Download latest LightScope blocklist

                                                            wget -q -O /tmp/blocklist.txt \

                                                              "https://lightscope.isi.edu/blocklist/20251004_pesszaxsjsanedtmkihqycumjrdaihwegcrtytwlpnrynzs/recommended"

                                                            

                                                            # Apply to iptables

                                                            ipset flush lightscope_blocklist

                                                            while read ip; do

                                                              ipset add lightscope_blocklist $ip

                                                            done < /tmp/blocklist.txt

Cron Job Example:

# Update blocklist every hour

                                                            0 * * * * /usr/local/bin/update_blocklist.sh

                                                            

                                                            # Update blocklist daily at 2 AM

                                                            0 2 * * * wget -q -O /etc/firewall/blocklist.txt \

                                                              "https://lightscope.isi.edu/blocklist/20251004_pesszaxsjsanedtmkihqycumjrdaihwegcrtytwlpnrynzs/recommended" \

                                                              && /usr/local/bin/reload_firewall.sh

Pro Tip: Set up automated downloads to keep your firewall protection current. The blocklists are updated whenever new dashboard data is processed, ensuring you have the latest threat intelligence.

Internal Threats

None detected
No unwanted traffic from internal IP addresses

Changes To Targeted Ports

No major changes detected
No port changes above 300%

Overall Traffic Trends

Normal Level
-41.3% change (7-day)

Current: 243,630
Previous: 415,132

Status:

Traffic levels are within normal range
Continue regular monitoring
Review other sections for insights

How to Use This Section

This section provides immediate, actionable insights from your threat intelligence data. Red items require immediate attention, yellow items need investigation, and green items indicate normal status. Click on the detailed sections below for comprehensive analysis and remediation steps.

Honeypot Analysis

IPs Connected to Honeypot Ports On Your Machine

Loading honeypot connections data...

Incomplete Connections: Attackers Started But Didn't Complete The 3-Way Handshake To Honeypot Ports

Loading incomplete connections data...

Honeypot Port Statistics

Loading port statistics...

Attack Payloads

Loading payload analysis...

Honeypot Attack Timeline

Loading temporal analysis...

General Information

All Sources Unwanted Traffic Port Activity

Last 7 Days

Show top:

Daily Unwanted Traffic Since Inception

Weekly Unwanted Traffic by Hour

Last 7 Days

Ports Targeted by Unwanted Traffic

Last 7 Days

Show top:

Data Time Ranges:

Weekly Unwanted Traffic by Hour: Last 7 days
Daily Unwanted Traffic Since Inception: Complete history
Port Statistics: Last 7 days

Unique Threat Actors

19,718

Distinct sources of unwanted traffic

Comparative Analysis

Unwanted Traffic Rankings

70.7% Unwanted Traffic Volume Percentile

Rank 13 of 41
among active endpoints for receiving unwanted traffic

121,891

Unwanted
Packets (7d)

11,271

Threat
Sources

15320

Targeted
Ports

Unwanted Traffic Concentration

Top threat subnets generate:

Top 5% of subnets (261 subnets): 83.4%

Top 10% of subnets: 89.7%

Top 20% of subnets: 93.4%

From 5,223 total threat subnets (121,699 unwanted packets)

Internal Threats

CRITICAL SECURITY WARNING

Any unwanted traffic shown in this section represents a critical security threat and must be investigated immediately.

This traffic originates from private (non-publicly routable) IP addresses on your local network, which indicates:

A compromised endpoint on your internal network
Malware or unauthorized software sending unwanted traffic
Potential lateral movement by an attacker
Misconfigured network equipment or services

If any traffic is shown below, immediate action is required: Identify and isolate the source devices, perform security scans, and investigate for signs of compromise.

No Internal Threats Detected

Excellent! No unwanted traffic from internal/private IP addresses was detected on this endpoint. This indicates that your internal network security posture is good for this monitoring point.

7-Day Comparison

Traffic Volume Changes

Current Week

243,630

packets

Previous Week

415,132

packets

Change

-171,502

(-41.3%)

New Threat Actors

IP Address	Hit Count	Country	ASN
47.100.4.222	6542	China	AS37963
202.155.148.6	4842	Singapore	AS47741
87.120.191.65	3906	Netherlands	AS174
78.128.114.126	2269	Bulgaria	AS50360
47.243.194.83	1998	Hong Kong	AS45102
139.199.80.137	1785	China	AS45090
185.156.73.233	1720	Netherlands	AS210848
62.60.135.171	1607	Iran	AS59441
80.94.95.115	1545	Romania	AS204428
87.120.191.81	1143	Netherlands	AS174

New Subnets

Subnet	Hit Count
79.124.49.0/24	12567

Significant Activity Changes

IP Address	Change	Country
79.124.49.114	+79%	Bulgaria
91.224.92.156	+53%	Lithuania
122.179.137.151	-50%	India
82.208.21.194	-28%	Germany

Port Targeting Changes

New Ports Being Targeted

Port 23 (2597 hits) Port 3306 (1884 hits) Port 1080 (1470 hits) Port 6379 (887 hits) Port 445 (868 hits) Port 3000 (863 hits) Port 3128 (799 hits) Port 7999 (756 hits) Port 8000 (644 hits) Port 8081 (602 hits)

Significant Port Changes

Port	Change
8080	+147%
443	+98%
80	+72%
3389	+65%
8443	+58%
2222	+47%
8728	+29%

New Geographic Sources

China (8327 hits) Singapore (4842 hits) Romania (2291 hits) Hong Kong (1998 hits) Iran (1607 hits)

Comparison Summary: This analysis compares the last 7 days with the previous 7 days (8-14 days ago). Traffic has decreased by 171,502 packets (41.3%). 10 new threat actor(s) detected. 1 new subnet(s) detected.

Threat Intelligence Analysis

Unwanted Traffic by Company/Organization

Company/Organization	Packet Count	Unique Sources	Countries	ASNs	Sample IPs
Capgemini Nederland B.V.	253,545	1	Netherlands	AS16074	192.113.218.205
DigitalOcean, LLC	165,701	14	Germany India United Kingdom +1	AS14061	143.198.60.26, 64.23.241.193, 134.199.196.58...
Contabo GmbH	51,775	5	Germany	AS51167	82.208.21.194, 84.247.188.191, 95.111.236.206...
Tamatiya EOOD	23,652	31	Bulgaria	AS50360	79.124.49.114, 78.128.114.126, 79.124.40.118...
Aliyun Computing Co., LTD	13,066	1	China	AS37963	47.100.4.222
Linode	12,227	88	United States	AS63949	143.42.164.97, 143.42.1.52, 143.42.164.182...
Cloud hosting	9,768	4	Lithuania	AS209605	91.224.92.156, 91.224.92.121, 91.224.92.55...
Fuse Hosting Web	9,373	2	Netherlands	AS174	87.120.191.65, 87.120.191.81
MEVSPACE sp. z o.o.	6,485	3	Poland	AS201814	185.16.39.79, 95.214.53.196, 95.214.52.233
Google LLC	5,607	55	India Italy United Kingdom +1	AS396982	35.203.211.86, 34.93.128.179, 35.222.117.243...
Telkom Internet LTD	5,066	13	Netherlands	AS210848	185.156.73.233, 92.63.197.180, 92.63.197.181...
OMAO SINGAPORE BOARDBAND	4,842	1	Singapore	AS47741	202.155.148.6
Bharti Airtel Services Limited, 6th floor , Interface Building No 7, Link Road, Mumbai Maharastra-400064	4,164	1	India	AS24560	122.179.137.151
NOAVARAN SHABAKEH SABZ MEHREGAN (Ltd.)	3,111	3	Iran	AS59441	62.60.135.171, 62.60.135.190, 62.60.131.90
Amazon Technologies Inc.	2,869	18	United States	AS16509	3.130.96.91, 3.137.73.221, 3.134.148.59...
Alibaba Cloud LLC	2,615	6	Hong Kong Singapore	AS45102	47.243.194.83, 47.236.150.243, 47.236.118.237...
Dedicated Servers IP Range	2,525	11	Poland	AS201814	194.180.49.105, 194.180.49.107, 194.180.49.109...
UNMANAGED LTD	2,485	3	Romania	AS204428 AS47890	80.94.95.115, 80.94.95.116, 193.32.162.157
Pfcloud UG	2,436	11	Germany Netherlands	AS51396	204.76.203.219, 204.76.203.212, 204.76.203.93...
Palo Alto Networks, Inc	2,029	20	Belgium Finland United States	AS396982	147.185.133.137, 147.185.132.184, 147.185.133.234...
Alferov Aleksey Aleksandrovich	1,929	6	Russia	Unknown	88.210.63.69, 88.210.63.191, 88.210.63.192...
Tencent cloud computing (Beijing) Co., Ltd.	1,785	1	China	AS45090	139.199.80.137
Alsycon B.V.	1,708	1	Netherlands	AS49870	194.50.16.198
Criminal IP Collector AiSpera	1,538	4	Netherlands	AS202425	185.242.226.43, 185.242.226.42, 185.242.226.44...
Censys, Inc.	1,296	10	Germany Hong Kong United States	AS398324 AS398705 +1	162.142.125.117, 167.94.138.176, 162.142.125.220...

Unwanted Traffic by Country

Country	Country Code	Packet Count	Unique Sources	Sample IPs
Netherlands	NL	276,738	39	192.113.218.205, 87.120.191.65, 87.120.191.81, 185.156.73.233, 194.50.16.198
United States	US	187,741	177	143.198.60.26, 64.23.241.193, 134.199.196.58, 134.199.204.151, 159.89.147.161
Germany	DE	54,526	23	82.208.21.194, 185.91.127.107, 84.247.188.191, 185.73.23.133, 217.154.38.181
Bulgaria	BG	25,314	38	79.124.49.114, 78.128.114.126, 79.124.40.118, 79.124.40.174, 79.124.49.226
China	CN	16,973	15	47.100.4.222, 139.199.80.137, 36.105.166.131, 101.68.123.77, 223.78.151.228
Lithuania	LT	10,817	6	91.224.92.156, 77.90.185.84, 91.224.92.121, 91.224.92.55, 141.98.11.140
Poland	PL	9,900	16	185.16.39.79, 149.50.107.44, 95.214.53.196, 194.180.49.105, 194.180.49.107
Singapore	SG	5,535	6	202.155.148.6, 103.189.235.176, 47.236.150.243, 8.219.40.63, 47.236.118.237
India	IN	5,226	8	122.179.137.151, 210.212.162.132, 130.250.191.201, 34.93.128.179, 49.206.194.29
United Kingdom	GB	4,219	36	157.245.32.173, 85.11.183.6, 35.203.211.86, 193.163.125.142, 35.203.210.111
Russia	RU	3,537	14	88.210.63.69, 88.210.63.191, 88.210.63.192, 88.210.63.190, 178.22.24.60
Iran	IR	3,385	5	62.60.135.171, 62.60.135.190, 185.213.165.211, 62.60.131.90, 185.231.113.86
Hong Kong	HK	3,264	12	47.243.194.83, 8.218.167.186, 152.32.213.170, 47.239.79.234, 101.36.119.218
Romania	RO	2,980	6	80.94.95.115, 80.94.95.116, 141.98.83.48, 193.32.162.157, 94.156.152.7
France	FR	1,761	9	15.188.81.217, 37.59.110.4, 94.231.206.249, 62.210.136.185, 62.210.131.202
Indonesia	ID	1,686	10	103.153.190.105, 103.52.114.250, 103.181.143.69, 103.226.138.52, 103.52.115.25
Finland	FI	1,509	15	147.185.133.137, 147.185.133.234, 147.185.133.251, 147.185.133.149, 147.185.133.51
Vietnam	VN	1,418	4	113.160.224.174, 160.250.4.167, 123.31.29.131, 27.71.28.205
Japan	JP	818	5	185.244.104.2, 162.43.41.42, 118.194.230.231, 156.236.75.64, 165.154.231.252
Canada	CA	782	1	103.102.230.4
South Korea	KR	759	7	221.145.5.14, 203.228.30.198, 220.124.208.27, 222.108.177.110, 221.159.21.170
Brazil	BR	718	5	45.238.103.198, 177.10.136.46, 177.130.248.114, 191.252.111.14, 187.62.87.27
Spain	ES	609	4	46.151.178.49, 5.187.35.158, 5.187.35.21, 185.114.175.11
Turkey	TR	493	4	92.249.61.124, 78.135.111.5, 151.242.30.71, 178.20.210.151
Unknown	Unknown	448	1	130.12.180.82

Unwanted Traffic by Autonomous System (ASN)

ASN	AS Name	Packet Count	Unique Sources	Countries	Sample IPs
AS16074	Capgemini Nederland B.V.	253,545	1	Netherlands	192.113.218.205
AS14061	DigitalOcean, LLC	165,701	14	Germany India United Kingdom +1	143.198.60.26, 64.23.241.193, 134.199.196.58...
AS51167	Contabo GmbH	51,775	5	Germany	82.208.21.194, 84.247.188.191, 95.111.236.206...
AS50360	Tamatiya EOOD	24,387	34	Bulgaria	79.124.49.114, 78.128.114.126, 79.124.40.118...
AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	13,066	1	China	47.100.4.222
AS63949	Akamai Connected Cloud	12,227	88	United States	143.42.164.97, 143.42.1.52, 143.42.164.182...
AS209605	UAB Host Baltic	10,000	5	Lithuania	91.224.92.156, 91.224.92.121, 91.224.92.55...
AS201814	MEVSPACE sp. z o.o.	9,776	15	Poland	185.16.39.79, 149.50.107.44, 95.214.53.196...
AS174	Cogent Communications	9,373	2	Netherlands	87.120.191.65, 87.120.191.81
AS396982	Google LLC	7,636	75	Belgium Finland India +3	35.203.211.86, 147.185.133.137, 34.93.128.179...
Unknown	Unknown	6,227	23	Austria Canada China +8	103.102.230.4, 45.156.87.74, 130.12.180.82...
AS210848	Telkom Internet LTD	5,066	13	Netherlands	185.156.73.233, 92.63.197.180, 92.63.197.181...
AS47741	TSUNAMI ELECTRIC LIMITED	4,842	1	Singapore	202.155.148.6
AS24560	Bharti Airtel Ltd., Telemedia Services	4,164	1	India	122.179.137.151
AS16509	Amazon.com, Inc.	3,785	19	France United States	15.188.81.217, 3.130.96.91, 3.137.73.221...
AS59441	Hostiran Network	3,111	3	Iran	62.60.135.171, 62.60.135.190, 62.60.131.90
AS45102	Alibaba (US) Technology Co., Ltd.	3,013	9	Hong Kong Singapore United States	47.243.194.83, 8.218.167.186, 47.236.150.243...
AS51396	Pfcloud UG	2,436	11	Germany Netherlands	204.76.203.219, 204.76.203.212, 204.76.203.93...
AS204428	SS-Net	2,293	2	Romania	80.94.95.115, 80.94.95.116
AS202425	IP Volume inc	2,070	6	Netherlands	185.242.226.43, 185.242.226.42, 185.242.226.44...
AS45090	Shenzhen Tencent Computer Systems Company Limited	1,785	1	China	139.199.80.137
AS49870	Alsycon B.V.	1,708	1	Netherlands	194.50.16.198
AS398324	Censys, Inc.	1,105	8	United States	162.142.125.117, 167.94.138.176, 162.142.125.220...
AS45899	VNPT Corp	1,068	1	Vietnam	113.160.224.174
AS213438	ColocaTel Inc.	1,000	2	Netherlands	193.142.147.209, 193.142.146.230

Global Threat Intelligence

Network-Wide Intelligence: This section provides threat intelligence analysis across all LightScope endpoints in your network, helping you understand broader attack patterns and emerging threats.

Global Threat Trends

Network-Wide Traffic Volume

Recent 30 days

Previous 30 days

0.0% change

Unique Threat Sources

Recent 30 days

Previous 30 days

0.0% change

Top Threat Source Countries

Country	Packets	Sources

Top Targeted Ports Globally

Port	Hit Count	Sources

Individual Threat Actors

143.198.60.26

31,846 hits

1 ports

10/67 endpoints

United States (US)
Santa Clara, California

ASN: AS14061
DigitalOcean, LLC

AbuseIPDB 100%

Location Information

Country:	United States (US)
City:	Santa Clara
Region:	California
Postal Code:	95054
Timezone:	America/Los_Angeles

Network Information

ASN:	AS14061
AS Name:	DigitalOcean, LLC
Company:	DigitalOcean, LLC
Domain:	digitalocean.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 100% (High Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

82.208.21.194

25,106 hits

1 ports

2/67 endpoints

Germany (DE)
Düsseldorf, North Rhine-Westphalia

ASN: AS51167
Contabo GmbH

AbuseIPDB 25%

Location Information

Country:	Germany (DE)
City:	Düsseldorf
Region:	North Rhine-Westphalia
Postal Code:	40210
Timezone:	Europe/Berlin

Network Information

ASN:	AS51167
AS Name:	Contabo GmbH
Company:	Contabo GmbH
Domain:	contabo.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 25% (Low Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

ludbp (46,376 hits)

Temporal Port Activity

Last 7 Days

xqtiq (867 hits)

Temporal Port Activity

Last 7 Days

64.23.241.193

23,288 hits

1 ports

9/67 endpoints

United States (US)
Santa Clara, California

ASN: AS14061
DigitalOcean, LLC

AbuseIPDB 70%

Location Information

Country:	United States (US)
City:	Santa Clara
Region:	California
Postal Code:	95054
Timezone:	America/Los_Angeles

Network Information

ASN:	AS14061
AS Name:	DigitalOcean, LLC
Company:	DigitalOcean, LLC
Domain:	digitalocean.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 70% (Medium Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

vqhav (21,890 hits)

Temporal Port Activity

Last 7 Days

134.199.196.58

20,568 hits

1 ports

10/67 endpoints

United States (US)
Lithia Springs, Georgia

ASN: AS14061
DigitalOcean, LLC

AbuseIPDB 100%

Location Information

Country:	United States (US)
City:	Lithia Springs
Region:	Georgia
Postal Code:	30122
Timezone:	America/New_York

Network Information

ASN:	AS14061
AS Name:	DigitalOcean, LLC
Company:	DigitalOcean, LLC
Domain:	digitalocean.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 100% (High Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

79.124.49.114

11,208 hits

2388 ports

3/67 endpoints

Bulgaria (BG)
Sofia, Sofia-Capital

ASN: AS50360
Tamatiya EOOD

AbuseIPDB 53%

Location Information

Country:	Bulgaria (BG)
City:	Sofia
Region:	Sofia-Capital
Postal Code:	1000
Timezone:	Europe/Sofia

Network Information

ASN:	AS50360
AS Name:	Tamatiya EOOD
Company:	Tamatiya EOOD
Domain:	4vendeta.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 53% (Medium Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

nqatp (10,688 hits)

Temporal Port Activity

Last 7 Days

chcoy (9,811 hits)

Temporal Port Activity

Last 7 Days

vqhav (5,800 hits)

Temporal Port Activity

Last 7 Days

47.100.4.222

6,542 hits

1 ports

1/67 endpoints

China (CN)
Shanghai, Shanghai

ASN: AS37963
Aliyun Computing Co., LTD

AbuseIPDB 76%

Location Information

Country:	China (CN)
City:	Shanghai
Region:	Shanghai
Postal Code:	200000
Timezone:	Asia/Shanghai

Network Information

ASN:	AS37963
AS Name:	Hangzhou Alibaba Advertising Co.,Ltd.
Company:	Aliyun Computing Co., LTD
Domain:	alibabacloud.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 76% (High Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

utfcd (31 hits)

Temporal Port Activity

Last 7 Days

134.199.204.151

5,184 hits

1 ports

2/67 endpoints

United States (US)
Lithia Springs, Georgia

ASN: AS14061
DigitalOcean, LLC

AbuseIPDB 98%

Location Information

Country:	United States (US)
City:	Lithia Springs
Region:	Georgia
Postal Code:	30122
Timezone:	America/New_York

Network Information

ASN:	AS14061
AS Name:	DigitalOcean, LLC
Company:	DigitalOcean, LLC
Domain:	digitalocean.com

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 98% (High Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

isxku (10,914 hits)

Temporal Port Activity

Last 7 Days

deoyg (10,856 hits)

Temporal Port Activity

Last 7 Days

91.224.92.156

5,005 hits

2 ports

10/67 endpoints

Lithuania (LT)
Kaunas, Kaunas

ASN: AS209605
Cloud hosting

AbuseIPDB 100%

Location Information

Country:	Lithuania (LT)
City:	Kaunas
Region:	Kaunas
Postal Code:	44001
Timezone:	Europe/Vilnius

Network Information

ASN:	AS209605
AS Name:	UAB Host Baltic
Company:	Cloud hosting
Domain:	serveroffer.lt

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 100% (High Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

202.155.148.6

4,842 hits

2555 ports

3/67 endpoints

Singapore (SG)
Singapore,

ASN: AS47741
OMAO SINGAPORE BOARDBAND

AbuseIPDB 41%

Location Information

Country:	Singapore (SG)
City:	Singapore
Region:
Postal Code:	574180
Timezone:	Asia/Singapore

Network Information

ASN:	AS47741
AS Name:	TSUNAMI ELECTRIC LIMITED
Company:	OMAO SINGAPORE BOARDBAND
Domain:	omao.ee

Privacy Information

Hosting:	true
Proxy:
VPN:
Tor:

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 41% (Low Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

xqtiq (797 hits)

Temporal Port Activity

Last 7 Days

tgcua (781 hits)

Temporal Port Activity

Last 7 Days

deoyg (618 hits)

Temporal Port Activity

Last 7 Days

87.120.191.65

3,906 hits

2 ports

10/67 endpoints

Netherlands (NL)
Lelystad, Flevoland

ASN: AS174
Fuse Hosting Web

AbuseIPDB 100%

Location Information

Country:	Netherlands (NL)
City:	Lelystad
Region:	Flevoland
Postal Code:	8224
Timezone:	Europe/Amsterdam

Network Information

ASN:	AS174
AS Name:	Cogent Communications
Company:	Fuse Hosting Web
Domain:	fusehosting.net

Privacy Information

Hosting:	Unknown
Proxy:	Unknown
VPN:	Unknown
Tor:	Unknown

AbuseIPDB Information

Abuse Confidence Score:

AbuseIPDB 100% (High Risk)

rynzs - Targeted Ports

Top:

Temporal Port Activity

Last 7 Days

Threat Actor Observations on Other Lightscope Endpoints

Show top:

Subnet Temporal Port Activity

Last 7 Days

Show top:

Top Subnet Offenders

143.198.60.0/24

31,846 hits

1 IPs

1 ports

9/67 endpoints

143.198.60.26 (31,846)

IPs in Subnet

IP Address	Hit Count
143.198.60.26	31,846

Ports Targeted by This Subnet

Top:

Temporal Port Activity

82.208.21.0/24

25,106 hits

1 IPs

1 ports

1/67 endpoints

82.208.21.194 (25,106)

IPs in Subnet

IP Address	Hit Count
82.208.21.194	25,106

Ports Targeted by This Subnet

Top:

Temporal Port Activity

64.23.241.0/24

23,289 hits

2 IPs

2 ports

8/67 endpoints

64.23.241.193 (23,288) 64.23.241.182 (1)

IPs in Subnet

IP Address	Hit Count
64.23.241.193	23,288
64.23.241.182	1

Ports Targeted by This Subnet

Top:

Temporal Port Activity

134.199.196.0/24

20,568 hits

1 IPs

1 ports

13/67 endpoints

134.199.196.58 (20,568)

IPs in Subnet

IP Address	Hit Count
134.199.196.58	20,568

Ports Targeted by This Subnet

Top:

Temporal Port Activity

147.185.133.0/24

13,715 hits

253 IPs

4187 ports

40/67 endpoints

147.185.133.137 (151) 147.185.133.234 (118) 147.185.133.251 (116) +250 more

IPs in Subnet

IP Address	Hit Count
147.185.133.137	151
147.185.133.234	118
147.185.133.251	116
147.185.133.149	114
147.185.133.51	102
147.185.133.218	98
147.185.133.173	92
147.185.133.116	91
147.185.133.160	91
147.185.133.198	90
147.185.133.43	90
147.185.133.120	89
147.185.133.204	89
147.185.133.209	87
147.185.133.253	87
147.185.133.155	86
147.185.133.202	86
147.185.133.197	85
147.185.133.213	84
147.185.133.67	84
147.185.133.54	82
147.185.133.82	81
147.185.133.206	80
147.185.133.235	78
147.185.133.87	76
147.185.133.13	75
147.185.133.243	75
147.185.133.60	75
147.185.133.75	75
147.185.133.112	74
147.185.133.162	74
147.185.133.110	73
147.185.133.109	71
147.185.133.80	71
147.185.133.28	70
147.185.133.99	70
147.185.133.189	68
147.185.133.238	68
147.185.133.174	67
147.185.133.104	65
147.185.133.183	65
147.185.133.208	65
147.185.133.23	64
147.185.133.250	64
147.185.133.36	64
147.185.133.128	63
147.185.133.130	63
147.185.133.157	63
147.185.133.186	63
147.185.133.59	63
147.185.133.71	63
147.185.133.108	62
147.185.133.52	62
147.185.133.111	61
147.185.133.46	61
147.185.133.68	61
147.185.133.142	60
147.185.133.240	60
147.185.133.32	60
147.185.133.11	59
147.185.133.254	59
147.185.133.136	58
147.185.133.188	58
147.185.133.190	58
147.185.133.63	58
147.185.133.122	57
147.185.133.168	57
147.185.133.17	57
147.185.133.223	57
147.185.133.230	57
147.185.133.29	57
147.185.133.62	57
147.185.133.85	57
147.185.133.127	56
147.185.133.226	56
147.185.133.31	56
147.185.133.56	56
147.185.133.148	55
147.185.133.171	55
147.185.133.216	55
147.185.133.239	55
147.185.133.24	55
147.185.133.35	55
147.185.133.50	55
147.185.133.7	55
147.185.133.118	54
147.185.133.151	54
147.185.133.158	54
147.185.133.159	54
147.185.133.170	54
147.185.133.178	54
147.185.133.199	54
147.185.133.221	54
147.185.133.8	54
147.185.133.117	53
147.185.133.201	53
147.185.133.207	53
147.185.133.212	53
147.185.133.232	53
147.185.133.241	53
147.185.133.44	53
147.185.133.45	53
147.185.133.55	53
147.185.133.83	53
147.185.133.89	53
147.185.133.9	53
147.185.133.1	52
147.185.133.126	52
147.185.133.18	52
147.185.133.236	52
147.185.133.101	51
147.185.133.169	51
147.185.133.217	51
147.185.133.22	51
147.185.133.252	51
147.185.133.57	51
147.185.133.95	51
147.185.133.96	51
147.185.133.123	50
147.185.133.124	50
147.185.133.154	50
147.185.133.164	50
147.185.133.166	50
147.185.133.196	50
147.185.133.21	50
147.185.133.215	50
147.185.133.233	50
147.185.133.58	50
147.185.133.90	50
147.185.133.10	49
147.185.133.113	49
147.185.133.119	49
147.185.133.138	49
147.185.133.144	49
147.185.133.147	49
147.185.133.163	49
147.185.133.194	49
147.185.133.2	49
147.185.133.245	49
147.185.133.65	49
147.185.133.76	49
147.185.133.84	49
147.185.133.133	48
147.185.133.141	48
147.185.133.152	48
147.185.133.167	48
147.185.133.176	48
147.185.133.177	48
147.185.133.184	48
147.185.133.191	48
147.185.133.20	48
147.185.133.228	48
147.185.133.30	48
147.185.133.81	48
147.185.133.88	48
147.185.133.97	48
147.185.133.185	47
147.185.133.192	47
147.185.133.200	47
147.185.133.225	47
147.185.133.34	47
147.185.133.100	46
147.185.133.106	46
147.185.133.121	46
147.185.133.140	46
147.185.133.156	46
147.185.133.161	46
147.185.133.237	46
147.185.133.242	46
147.185.133.25	46
147.185.133.47	46
147.185.133.70	46
147.185.133.86	46
147.185.133.93	46
147.185.133.102	45
147.185.133.105	45
147.185.133.132	45
147.185.133.203	45
147.185.133.231	45
147.185.133.249	45
147.185.133.255	45
147.185.133.48	45
147.185.133.66	45
147.185.133.125	44
147.185.133.153	44
147.185.133.175	44
147.185.133.19	44
147.185.133.205	44
147.185.133.211	44
147.185.133.220	44
147.185.133.41	44
147.185.133.49	44
147.185.133.73	44
147.185.133.91	44
147.185.133.103	43
147.185.133.107	43
147.185.133.135	43
147.185.133.139	43
147.185.133.222	43
147.185.133.227	43
147.185.133.248	43
147.185.133.39	43
147.185.133.4	43
147.185.133.42	43
147.185.133.114	42
147.185.133.145	42
147.185.133.15	42
147.185.133.16	42
147.185.133.179	42
147.185.133.181	42
147.185.133.219	42
147.185.133.61	42
147.185.133.69	42
147.185.133.74	42
147.185.133.94	42
147.185.133.0	41
147.185.133.129	41
147.185.133.131	41
147.185.133.146	41
147.185.133.150	41
147.185.133.210	41
147.185.133.5	41
147.185.133.182	40
147.185.133.187	40
147.185.133.193	40
147.185.133.224	40
147.185.133.26	40
147.185.133.27	40
147.185.133.72	40
147.185.133.98	40
147.185.133.134	39
147.185.133.143	39
147.185.133.165	39
147.185.133.244	39
147.185.133.33	39
147.185.133.6	39
147.185.133.78	39
147.185.133.172	38
147.185.133.180	38
147.185.133.214	38
147.185.133.247	38
147.185.133.37	38
147.185.133.77	38
147.185.133.229	37
147.185.133.3	37
147.185.133.14	36
147.185.133.195	36
147.185.133.40	36
147.185.133.53	35
147.185.133.115	34
147.185.133.12	34
147.185.133.246	28
147.185.133.92	28

Ports Targeted by This Subnet

Top:

Temporal Port Activity

162.216.150.0/24

13,622 hits

245 IPs

4204 ports

41/67 endpoints

162.216.150.241 (117) 162.216.150.123 (104) 162.216.150.80 (102) +242 more

IPs in Subnet

IP Address	Hit Count
162.216.150.241	117
162.216.150.123	104
162.216.150.80	102
162.216.150.175	100
162.216.150.105	97
162.216.150.215	95
162.216.150.141	94
162.216.150.20	94
162.216.150.74	93
162.216.150.214	92
162.216.150.173	90
162.216.150.55	90
162.216.150.104	89
162.216.150.248	88
162.216.150.144	87
162.216.150.174	87
162.216.150.217	86
162.216.150.153	85
162.216.150.88	85
162.216.150.243	84
162.216.150.16	83
162.216.150.3	83
162.216.150.124	82
162.216.150.38	82
162.216.150.62	81
162.216.150.246	79
162.216.150.26	79
162.216.150.185	78
162.216.150.25	78
162.216.150.136	77
162.216.150.143	74
162.216.150.168	74
162.216.150.238	74
162.216.150.151	72
162.216.150.57	72
162.216.150.158	71
162.216.150.4	71
162.216.150.66	71
162.216.150.196	70
162.216.150.85	70
162.216.150.197	69
162.216.150.212	69
162.216.150.216	69
162.216.150.69	69
162.216.150.72	69
162.216.150.97	69
162.216.150.172	68
162.216.150.24	68
162.216.150.75	67
162.216.150.17	66
162.216.150.204	66
162.216.150.33	66
162.216.150.92	65
162.216.150.206	63
162.216.150.142	62
162.216.150.137	61
162.216.150.31	61
162.216.150.68	61
162.216.150.95	61
162.216.150.96	61
162.216.150.13	60
162.216.150.226	60
162.216.150.27	60
162.216.150.35	60
162.216.150.133	59
162.216.150.148	59
162.216.150.203	59
162.216.150.225	59
162.216.150.63	59
162.216.150.82	59
162.216.150.11	58
162.216.150.146	58
162.216.150.202	58
162.216.150.244	58
162.216.150.250	58
162.216.150.39	58
162.216.150.6	58
162.216.150.87	58
162.216.150.199	57
162.216.150.229	57
162.216.150.65	57
162.216.150.81	57
162.216.150.252	56
162.216.150.45	56
162.216.150.5	56
162.216.150.58	56
162.216.150.103	55
162.216.150.128	55
162.216.150.131	55
162.216.150.186	55
162.216.150.190	55
162.216.150.195	55
162.216.150.221	55
162.216.150.222	55
162.216.150.223	55
162.216.150.32	55
162.216.150.90	55
162.216.150.98	55
162.216.150.15	54
162.216.150.18	54
162.216.150.200	54
162.216.150.245	54
162.216.150.99	54
162.216.150.115	53
162.216.150.145	53
162.216.150.163	53
162.216.150.169	53
162.216.150.201	53
162.216.150.209	53
162.216.150.23	53
162.216.150.240	53
162.216.150.30	53
162.216.150.44	53
162.216.150.101	52
162.216.150.111	52
162.216.150.134	52
162.216.150.187	52
162.216.150.194	52
162.216.150.210	52
162.216.150.60	52
162.216.150.107	51
162.216.150.149	51
162.216.150.231	51
162.216.150.233	51
162.216.150.237	51
162.216.150.49	51
162.216.150.64	51
162.216.150.12	50
162.216.150.121	50
162.216.150.132	50
162.216.150.177	50
162.216.150.234	50
162.216.150.249	50
162.216.150.40	50
162.216.150.79	50
162.216.150.130	49
162.216.150.160	49
162.216.150.176	49
162.216.150.181	49
162.216.150.207	49
162.216.150.211	49
162.216.150.22	49
162.216.150.28	49
162.216.150.71	49
162.216.150.91	49
162.216.150.94	49
162.216.150.100	48
162.216.150.102	48
162.216.150.127	48
162.216.150.165	48
162.216.150.189	48
162.216.150.191	48
162.216.150.192	48
162.216.150.224	48
162.216.150.254	48
162.216.150.36	48
162.216.150.46	48
162.216.150.50	48
162.216.150.54	48
162.216.150.7	48
162.216.150.10	47
162.216.150.135	47
162.216.150.14	47
162.216.150.162	47
162.216.150.170	47
162.216.150.182	47
162.216.150.213	47
162.216.150.227	47
162.216.150.251	47
162.216.150.37	47
162.216.150.76	47
162.216.150.78	47
162.216.150.112	46
162.216.150.139	46
162.216.150.150	46
162.216.150.157	46
162.216.150.178	46
162.216.150.193	46
162.216.150.208	46
162.216.150.235	46
162.216.150.242	46
162.216.150.52	46
162.216.150.61	46
162.216.150.93	46
162.216.150.106	45
162.216.150.129	45
162.216.150.167	45
162.216.150.171	45
162.216.150.188	45
162.216.150.232	45
162.216.150.236	45
162.216.150.239	45
162.216.150.56	45
162.216.150.108	44
162.216.150.109	44
162.216.150.125	44
162.216.150.126	44
162.216.150.218	44
162.216.150.220	44
162.216.150.41	44
162.216.150.42	44
162.216.150.47	44
162.216.150.51	44
162.216.150.77	44
162.216.150.228	43
162.216.150.247	43
162.216.150.253	43
162.216.150.119	42
162.216.150.122	42
162.216.150.152	42
162.216.150.156	42
162.216.150.198	42
162.216.150.219	42
162.216.150.48	42
162.216.150.53	42
162.216.150.83	42
162.216.150.86	42
162.216.150.114	41
162.216.150.140	41
162.216.150.184	41
162.216.150.230	41
162.216.150.29	41
162.216.150.34	41
162.216.150.118	40
162.216.150.159	40
162.216.150.21	40
162.216.150.67	40
162.216.150.9	40
162.216.150.113	39
162.216.150.120	39
162.216.150.180	39
162.216.150.84	39
162.216.150.110	38
162.216.150.117	38
162.216.150.138	38
162.216.150.164	38
162.216.150.179	38
162.216.150.59	38
162.216.150.116	37
162.216.150.43	37
162.216.150.73	37
162.216.150.147	35
162.216.150.161	34
162.216.150.89	34
162.216.150.155	32

Ports Targeted by This Subnet

Top:

Temporal Port Activity

35.203.211.0/24

13,480 hits

245 IPs

4120 ports

40/67 endpoints

35.203.211.86 (161) 35.203.211.254 (108) 35.203.211.22 (106) +242 more

IPs in Subnet

IP Address	Hit Count
35.203.211.86	161
35.203.211.254	108
35.203.211.22	106
35.203.211.95	103
35.203.211.248	99
35.203.211.62	98
35.203.211.111	97
35.203.211.231	95
35.203.211.222	94
35.203.211.27	90
35.203.211.36	89
35.203.211.42	89
35.203.211.182	88
35.203.211.201	87
35.203.211.82	87
35.203.211.81	85
35.203.211.200	84
35.203.211.237	84
35.203.211.47	84
35.203.211.116	83
35.203.211.157	83
35.203.211.89	83
35.203.211.31	81
35.203.211.247	80
35.203.211.76	79
35.203.211.159	78
35.203.211.251	77
35.203.211.19	76
35.203.211.6	76
35.203.211.169	75
35.203.211.150	74
35.203.211.32	74
35.203.211.25	73
35.203.211.33	73
35.203.211.160	72
35.203.211.104	70
35.203.211.16	70
35.203.211.192	70
35.203.211.64	70
35.203.211.66	70
35.203.211.71	70
35.203.211.235	69
35.203.211.67	69
35.203.211.132	67
35.203.211.224	67
35.203.211.138	66
35.203.211.236	66
35.203.211.102	65
35.203.211.133	64
35.203.211.194	64
35.203.211.244	64
35.203.211.101	63
35.203.211.186	63
35.203.211.118	62
35.203.211.156	62
35.203.211.162	62
35.203.211.188	62
35.203.211.79	62
35.203.211.23	61
35.203.211.127	60
35.203.211.140	59
35.203.211.144	59
35.203.211.208	58
35.203.211.239	58
35.203.211.3	58
35.203.211.63	58
35.203.211.161	57
35.203.211.190	57
35.203.211.198	56
35.203.211.246	56
35.203.211.38	56
35.203.211.7	56
35.203.211.91	56
35.203.211.106	55
35.203.211.13	55
35.203.211.134	55
35.203.211.149	55
35.203.211.168	55
35.203.211.179	55
35.203.211.94	55
35.203.211.114	54
35.203.211.129	54
35.203.211.228	54
35.203.211.243	54
35.203.211.39	54
35.203.211.72	54
35.203.211.124	53
35.203.211.166	53
35.203.211.197	53
35.203.211.199	53
35.203.211.245	53
35.203.211.52	53
35.203.211.53	53
35.203.211.57	53
35.203.211.77	53
35.203.211.80	53
35.203.211.131	52
35.203.211.148	52
35.203.211.171	52
35.203.211.18	52
35.203.211.202	52
35.203.211.211	52
35.203.211.218	52
35.203.211.227	52
35.203.211.44	52
35.203.211.55	52
35.203.211.90	52
35.203.211.120	51
35.203.211.125	51
35.203.211.142	51
35.203.211.15	51
35.203.211.163	51
35.203.211.164	51
35.203.211.50	51
35.203.211.78	51
35.203.211.98	51
35.203.211.99	51
35.203.211.107	50
35.203.211.11	50
35.203.211.146	50
35.203.211.17	50
35.203.211.207	50
35.203.211.214	50
35.203.211.219	50
35.203.211.229	50
35.203.211.241	50
35.203.211.252	50
35.203.211.35	50
35.203.211.46	50
35.203.211.65	50
35.203.211.74	50
35.203.211.83	50
35.203.211.9	50
35.203.211.121	49
35.203.211.139	49
35.203.211.155	49
35.203.211.158	49
35.203.211.177	49
35.203.211.20	49
35.203.211.209	49
35.203.211.220	49
35.203.211.43	49
35.203.211.54	49
35.203.211.75	49
35.203.211.85	49
35.203.211.97	49
35.203.211.10	48
35.203.211.110	48
35.203.211.115	48
35.203.211.137	48
35.203.211.14	48
35.203.211.153	48
35.203.211.180	48
35.203.211.185	48
35.203.211.189	48
35.203.211.21	48
35.203.211.213	48
35.203.211.217	48
35.203.211.230	48
35.203.211.232	48
35.203.211.4	48
35.203.211.100	47
35.203.211.103	47
35.203.211.112	47
35.203.211.151	47
35.203.211.170	47
35.203.211.195	47
35.203.211.205	47
35.203.211.233	47
35.203.211.26	47
35.203.211.34	47
35.203.211.59	47
35.203.211.108	46
35.203.211.152	46
35.203.211.184	46
35.203.211.212	46
35.203.211.24	46
35.203.211.48	46
35.203.211.84	46
35.203.211.92	46
35.203.211.12	45
35.203.211.145	45
35.203.211.172	45
35.203.211.178	45
35.203.211.225	45
35.203.211.242	45
35.203.211.249	45
35.203.211.250	45
35.203.211.29	45
35.203.211.93	45
35.203.211.109	44
35.203.211.123	44
35.203.211.141	44
35.203.211.203	44
35.203.211.234	44
35.203.211.56	44
35.203.211.61	44
35.203.211.69	44
35.203.211.8	44
35.203.211.96	44
35.203.211.119	43
35.203.211.126	43
35.203.211.135	43
35.203.211.183	43
35.203.211.191	43
35.203.211.193	43
35.203.211.196	43
35.203.211.223	43
35.203.211.51	43
35.203.211.60	43
35.203.211.130	42
35.203.211.167	42
35.203.211.175	42
35.203.211.105	41
35.203.211.113	41
35.203.211.136	41
35.203.211.147	41
35.203.211.187	41
35.203.211.226	41
35.203.211.240	41
35.203.211.45	41
35.203.211.49	41
35.203.211.58	41
35.203.211.154	40
35.203.211.165	40
35.203.211.176	40
35.203.211.206	40
35.203.211.41	40
35.203.211.253	39
35.203.211.143	38
35.203.211.181	38
35.203.211.204	38
35.203.211.238	38
35.203.211.68	38
35.203.211.73	38
35.203.211.5	37
35.203.211.174	36
35.203.211.40	36
35.203.211.173	35
35.203.211.210	35
35.203.211.28	34
35.203.211.37	34
35.203.211.70	34
35.203.211.221	33
35.203.211.87	33

Ports Targeted by This Subnet

Top:

Temporal Port Activity

35.203.210.0/24

13,438 hits

244 IPs

4155 ports

40/67 endpoints

35.203.210.111 (140) 35.203.210.18 (117) 35.203.210.31 (117) +241 more

IPs in Subnet

IP Address	Hit Count
35.203.210.111	140
35.203.210.18	117
35.203.210.31	117
35.203.210.49	114
35.203.210.223	105
35.203.210.229	105
35.203.210.97	103
35.203.210.140	101
35.203.210.133	100
35.203.210.245	99
35.203.210.220	98
35.203.210.40	98
35.203.210.103	97
35.203.210.122	91
35.203.210.16	89
35.203.210.226	87
35.203.210.187	86
35.203.210.189	86
35.203.210.249	86
35.203.210.83	86
35.203.210.13	85
35.203.210.167	85
35.203.210.250	85
35.203.210.239	82
35.203.210.246	82
35.203.210.96	82
35.203.210.136	81
35.203.210.51	81
35.203.210.166	78
35.203.210.181	77
35.203.210.227	76
35.203.210.208	75
35.203.210.238	74
35.203.210.94	74
35.203.210.99	74
35.203.210.7	73
35.203.210.184	72
35.203.210.248	72
35.203.210.155	71
35.203.210.82	70
35.203.210.114	68
35.203.210.146	68
35.203.210.197	68
35.203.210.219	67
35.203.210.129	66
35.203.210.130	66
35.203.210.233	66
35.203.210.154	64
35.203.210.247	64
35.203.210.41	64
35.203.210.43	64
35.203.210.93	64
35.203.210.132	62
35.203.210.150	62
35.203.210.196	62
35.203.210.115	61
35.203.210.211	61
35.203.210.241	61
35.203.210.33	61
35.203.210.32	60
35.203.210.44	60
35.203.210.102	59
35.203.210.117	59
35.203.210.179	59
35.203.210.215	59
35.203.210.95	59
35.203.210.144	58
35.203.210.206	58
35.203.210.213	58
35.203.210.34	58
35.203.210.55	58
35.203.210.65	58
35.203.210.172	57
35.203.210.183	57
35.203.210.188	57
35.203.210.21	57
35.203.210.106	56
35.203.210.148	56
35.203.210.205	56
35.203.210.60	56
35.203.210.107	55
35.203.210.161	55
35.203.210.22	55
35.203.210.4	55
35.203.210.42	55
35.203.210.47	55
35.203.210.64	55
35.203.210.80	55
35.203.210.9	55
35.203.210.152	54
35.203.210.225	54
35.203.210.48	54
35.203.210.62	54
35.203.210.87	54
35.203.210.120	53
35.203.210.180	53
35.203.210.209	53
35.203.210.222	53
35.203.210.234	53
35.203.210.45	53
35.203.210.5	53
35.203.210.67	53
35.203.210.75	53
35.203.210.91	53
35.203.210.119	52
35.203.210.158	52
35.203.210.217	52
35.203.210.25	52
35.203.210.57	52
35.203.210.88	52
35.203.210.92	52
35.203.210.138	51
35.203.210.201	51
35.203.210.108	50
35.203.210.121	50
35.203.210.124	50
35.203.210.160	50
35.203.210.174	50
35.203.210.175	50
35.203.210.195	50
35.203.210.236	50
35.203.210.251	50
35.203.210.35	50
35.203.210.53	50
35.203.210.98	50
35.203.210.11	49
35.203.210.116	49
35.203.210.127	49
35.203.210.137	49
35.203.210.17	49
35.203.210.190	49
35.203.210.194	49
35.203.210.20	49
35.203.210.202	49
35.203.210.210	49
35.203.210.253	49
35.203.210.29	49
35.203.210.68	49
35.203.210.70	49
35.203.210.101	48
35.203.210.109	48
35.203.210.125	48
35.203.210.141	48
35.203.210.185	48
35.203.210.191	48
35.203.210.252	48
35.203.210.58	48
35.203.210.79	48
35.203.210.128	47
35.203.210.149	47
35.203.210.156	47
35.203.210.19	47
35.203.210.192	47
35.203.210.203	47
35.203.210.24	47
35.203.210.59	47
35.203.210.85	47
35.203.210.12	46
35.203.210.123	46
35.203.210.145	46
35.203.210.214	46
35.203.210.240	46
35.203.210.73	46
35.203.210.77	46
35.203.210.112	45
35.203.210.143	45
35.203.210.15	45
35.203.210.151	45
35.203.210.159	45
35.203.210.169	45
35.203.210.37	45
35.203.210.81	45
35.203.210.100	44
35.203.210.165	44
35.203.210.221	44
35.203.210.230	44
35.203.210.38	44
35.203.210.46	44
35.203.210.54	44
35.203.210.6	44
35.203.210.74	44
35.203.210.110	43
35.203.210.134	43
35.203.210.157	43
35.203.210.164	43
35.203.210.182	43
35.203.210.3	43
35.203.210.76	43
35.203.210.86	43
35.203.210.90	43
35.203.210.105	42
35.203.210.113	42
35.203.210.126	42
35.203.210.139	42
35.203.210.163	42
35.203.210.170	42
35.203.210.177	42
35.203.210.200	42
35.203.210.204	42
35.203.210.218	42
35.203.210.228	42
35.203.210.237	42
35.203.210.28	42
35.203.210.39	42
35.203.210.66	42
35.203.210.8	42
35.203.210.142	41
35.203.210.162	41
35.203.210.171	41
35.203.210.243	41
35.203.210.135	40
35.203.210.193	40
35.203.210.26	40
35.203.210.61	40
35.203.210.118	39
35.203.210.131	39
35.203.210.147	39
35.203.210.153	39
35.203.210.224	39
35.203.210.173	38
35.203.210.198	38
35.203.210.23	38
35.203.210.244	38
35.203.210.52	38
35.203.210.69	38
35.203.210.89	38
35.203.210.168	37
35.203.210.50	37
35.203.210.56	37
35.203.210.72	37
35.203.210.10	36
35.203.210.14	36
35.203.210.235	36
35.203.210.199	35
35.203.210.207	35
35.203.210.216	35
35.203.210.30	35
35.203.210.104	34
35.203.210.231	34
35.203.210.63	34
35.203.210.84	33
35.203.210.254	32
35.203.210.78	32
35.203.210.36	31

Ports Targeted by This Subnet

Top:

Temporal Port Activity

162.216.149.0/24

13,133 hits

244 IPs

4176 ports

42/67 endpoints

162.216.149.193 (105) 162.216.149.109 (101) 162.216.149.10 (95) +241 more

IPs in Subnet

IP Address	Hit Count
162.216.149.193	105
162.216.149.109	101
162.216.149.10	95
162.216.149.175	95
162.216.149.190	95
162.216.149.107	94
162.216.149.241	94
162.216.149.34	93
162.216.149.108	91
162.216.149.18	84
162.216.149.19	83
162.216.149.116	81
162.216.149.77	80
162.216.149.72	79
162.216.149.104	78
162.216.149.163	77
162.216.149.43	76
162.216.149.117	75
162.216.149.140	75
162.216.149.199	75
162.216.149.46	75
162.216.149.148	74
162.216.149.240	74
162.216.149.226	72
162.216.149.132	70
162.216.149.216	70
162.216.149.236	70
162.216.149.58	70
162.216.149.200	69
162.216.149.24	68
162.216.149.16	67
162.216.149.169	67
162.216.149.182	67
162.216.149.215	67
162.216.149.195	66
162.216.149.146	65
162.216.149.172	65
162.216.149.93	65
162.216.149.94	65
162.216.149.111	64
162.216.149.123	64
162.216.149.147	64
162.216.149.214	64
162.216.149.26	64
162.216.149.9	64
162.216.149.133	62
162.216.149.145	62
162.216.149.69	62
162.216.149.99	62
162.216.149.15	61
162.216.149.155	61
162.216.149.37	61
162.216.149.41	61
162.216.149.89	61
162.216.149.106	60
162.216.149.151	60
162.216.149.189	60
162.216.149.33	60
162.216.149.118	59
162.216.149.154	59
162.216.149.202	59
162.216.149.203	59
162.216.149.207	59
162.216.149.221	59
162.216.149.235	59
162.216.149.53	59
162.216.149.6	59
162.216.149.68	59
162.216.149.162	58
162.216.149.181	58
162.216.149.205	58
162.216.149.217	58
162.216.149.231	58
162.216.149.239	58
162.216.149.81	58
162.216.149.105	57
162.216.149.131	57
162.216.149.210	57
162.216.149.234	57
162.216.149.244	57
162.216.149.248	57
162.216.149.31	57
162.216.149.7	57
162.216.149.156	56
162.216.149.174	56
162.216.149.188	56
162.216.149.22	56
162.216.149.49	56
162.216.149.14	55
162.216.149.166	55
162.216.149.254	55
162.216.149.45	55
162.216.149.110	54
162.216.149.129	54
162.216.149.149	54
162.216.149.152	54
162.216.149.173	54
162.216.149.197	54
162.216.149.21	54
162.216.149.233	54
162.216.149.237	54
162.216.149.42	54
162.216.149.44	54
162.216.149.67	54
162.216.149.125	53
162.216.149.13	53
162.216.149.158	53
162.216.149.165	53
162.216.149.176	53
162.216.149.185	53
162.216.149.225	53
162.216.149.48	53
162.216.149.103	52
162.216.149.113	52
162.216.149.124	52
162.216.149.191	52
162.216.149.201	52
162.216.149.223	52
162.216.149.224	52
162.216.149.227	52
162.216.149.251	52
162.216.149.253	52
162.216.149.29	52
162.216.149.3	52
162.216.149.52	52
162.216.149.74	52
162.216.149.119	51
162.216.149.134	51
162.216.149.160	51
162.216.149.183	51
162.216.149.194	51
162.216.149.247	51
162.216.149.249	51
162.216.149.32	51
162.216.149.36	51
162.216.149.82	51
162.216.149.229	50
162.216.149.50	50
162.216.149.70	50
162.216.149.86	50
162.216.149.177	49
162.216.149.187	49
162.216.149.20	49
162.216.149.219	49
162.216.149.238	49
162.216.149.242	49
162.216.149.250	49
162.216.149.27	49
162.216.149.54	49
162.216.149.63	49
162.216.149.76	49
162.216.149.83	49
162.216.149.85	49
162.216.149.102	48
162.216.149.11	48
162.216.149.112	48
162.216.149.161	48
162.216.149.17	48
162.216.149.212	48
162.216.149.40	48
162.216.149.71	48
162.216.149.80	48
162.216.149.64	47
162.216.149.97	47
162.216.149.127	46
162.216.149.130	46
162.216.149.167	46
162.216.149.208	46
162.216.149.232	46
162.216.149.28	46
162.216.149.30	46
162.216.149.47	46
162.216.149.12	45
162.216.149.137	45
162.216.149.143	45
162.216.149.180	45
162.216.149.186	45
162.216.149.5	45
162.216.149.60	45
162.216.149.78	45
162.216.149.79	45
162.216.149.95	45
162.216.149.153	44
162.216.149.196	44
162.216.149.211	44
162.216.149.228	44
162.216.149.38	44
162.216.149.51	44
162.216.149.91	44
162.216.149.92	44
162.216.149.122	43
162.216.149.128	43
162.216.149.139	43
162.216.149.141	43
162.216.149.144	43
162.216.149.170	43
162.216.149.184	43
162.216.149.209	43
162.216.149.57	43
162.216.149.62	43
162.216.149.73	43
162.216.149.136	42
162.216.149.168	42
162.216.149.35	42
162.216.149.39	42
162.216.149.56	42
162.216.149.100	41
162.216.149.101	41
162.216.149.142	41
162.216.149.159	41
162.216.149.178	41
162.216.149.179	41
162.216.149.23	41
162.216.149.243	41
162.216.149.252	41
162.216.149.88	41
162.216.149.115	40
162.216.149.138	40
162.216.149.213	40
162.216.149.25	40
162.216.149.114	39
162.216.149.120	39
162.216.149.126	39
162.216.149.75	39
162.216.149.171	38
162.216.149.66	38
162.216.149.90	38
162.216.149.157	37
162.216.149.164	37
162.216.149.192	37
162.216.149.246	37
162.216.149.8	37
162.216.149.98	37
162.216.149.121	36
162.216.149.245	36
162.216.149.59	36
162.216.149.61	36
162.216.149.87	36
162.216.149.230	35
162.216.149.135	34
162.216.149.198	34
162.216.149.55	34
162.216.149.65	34
162.216.149.84	33

Ports Targeted by This Subnet

Top:

Temporal Port Activity

79.124.49.0/24

12,567 hits

5 IPs

3030 ports

37/67 endpoints

79.124.49.114 (11,208) 79.124.49.226 (742) 79.124.49.230 (353) +2 more

IPs in Subnet

IP Address	Hit Count
79.124.49.114	11,208
79.124.49.226	742
79.124.49.230	353
79.124.49.58	139
79.124.49.62	125

Ports Targeted by This Subnet

Top:

Temporal Port Activity

Complete Endpoint Data Export

Download All LightScope Data For This Endpoint

Get the complete raw dataset for this endpoint in CSV format. This includes all network traffic data, timestamps, IP addresses, ports, and other collected intelligence from the lightscope_honeypot_included_data table.

Format: CSV (Comma-Separated Values)
Contents: All endpoint data ordered by most recent first
Use Case: Research, analysis, custom reporting, data science
Compatibility: Excel, Python pandas, R, SQL imports

Download All Data

CSV format

Note: This download contains the raw data used to generate all dashboard visualizations and analytics. File size depends on the amount of traffic data collected for this endpoint.