IP Information for 85.11.167.11

Location Sofia, 🇧🇬 Bulgaria
ASN AS213438 — COLOCATEL-INC Colocatel Network - High Bandwidth Dedicated Servers, SC
BGP Prefix 85.11.167.0/24
Registry ripencc
IP Address 85.11.167.11

IOC Matches

ID Type Tag Source Last seen Comments
315087 IP honeypot 4 2026-05-30 21:03:28
  • 2026-05-30: Observed 351 times. Targeted ports: 5432, 25432, 54320. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-29: Observed 459 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-28: Observed 2 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-27: Observed 488 times. Targeted ports: 5432, 5434, 5435. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-26: Observed 73 times. Targeted ports: 5432, 54322. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-05-25: Observed 56 times. Targeted ports: 5432, 25432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-24: Observed 4 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-23: Observed 2 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-22: Observed 13 times. Targeted ports: 16379. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-21: Observed 601 times. Targeted ports: 5432, 5439, 15432. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-20: Observed 358 times. Targeted ports: 5432, 5434. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-19: Observed 28 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker. Usernames: wog.
  • 2026-05-18: Observed 2 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-17: Observed 13 times. Targeted ports: 6380. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-16: Observed 880 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM ESTABLISHED SYN resend with different seq.
  • 2026-05-15: Observed 404 times. Targeted ports: 5432, 54321. Country: Bulgaria.
  • 2026-05-14: Observed 375 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-05-13: Observed 56 times. Targeted ports: 5432, 5434. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-05-12: Observed 60 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-05-11: Observed 2 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-10: Observed 191 times. Targeted ports: 5432, 65532. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-09: Observed 188 times. Targeted ports: 5432, 54321. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-08: Observed 1509 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-07: Observed 3 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-06: Observed 313 times. Targeted ports: 5432, 54321, 54322. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-05: Observed 600 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-04: Observed 39 times. Targeted ports: 5434. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-03: Observed 346 times. Targeted ports: 5432, 5436, 5437. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-02: Observed 2 times. Targeted ports: 5432. Country: Bulgaria.
  • 2026-05-01: Observed 587 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria.
  • 2026-04-30: Observed 3 times. Targeted ports: 5432. Country: Bulgaria.
  • 2026-04-29: Observed 1485 times. Targeted ports: 5432, 54320, 54322. Country: Bulgaria. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with invalid timestamp, SURICATA STREAM spurious retransmission.
  • 2026-04-28: Observed 406 times. Targeted ports: 5432, 15432. Country: Bulgaria.
  • 2026-04-27: Observed 233 times. Targeted ports: 5432, 54321. Country: Bulgaria.
  • 2026-04-26: Observed 353 times. Targeted ports: 5432, 5434, 5435. Country: Bulgaria. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-04-23: Observed 2 times. Targeted ports: 5432. Country: Bulgaria.
  • 2026-04-22: Observed 2 times. Targeted ports: 5432. Country: Bulgaria.
  • 2026-04-21: Observed 245 times. Targeted ports: 5432, 5440. Country: Bulgaria.
  • 2026-04-10: Observed 703 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker.

URLs on this IP

No URLs found for this IP.

Passive DNS

No pDNS records found for 85.11.167.11.

Search History

ID Source Last seen
56022 web 2026-05-08 11:02:30

Whois

No Whois record yet. The worker will fetch it when this IP is in the queue.