Showing current intelligence for this indicator.

IP Information for 85.11.167.7

Location
ASN AS213438 — COLOCATEL-INC Colocatel Network - High Bandwidth Dedicated Servers, SC
BGP Prefix 85.11.167.0/24
Registry ripencc
IP Address 85.11.167.7

IOC Matches

ID Type Tag Source Last seen Comments
39606 IP honeypot 4 2026-06-12 15:54:31
  • 2026-06-12: Observed 37 times. Targeted ports: 54320. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-11: Observed 502 times. Targeted ports: 5432, 54320, 54321. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-10: Observed 28 times. Targeted ports: 15432. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-09: Observed 6 times. Targeted ports: 25432. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-08: Observed 175 times. Targeted ports: 5432, 54320. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM FIN recv but no session.
  • 2026-06-07: Observed 15 times. Targeted ports: 8000. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-06: Observed 126 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-05: Observed 76 times. Targeted ports: 5432, 15432. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-06-04: Observed 157 times. Targeted ports: 5432, 54321. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-03: Observed 75 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-06-02: Observed 244 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker.
  • 2026-06-01: Observed 72 times. Targeted ports: 5432, 5434. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-05-31: Observed 152 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with invalid timestamp.
  • 2026-05-30: Observed 107 times. Targeted ports: 5432, 54321. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-29: Observed 139 times. Targeted ports: 5432, 54320. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-28: Observed 175 times. Targeted ports: 5432, 5435. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-27: Observed 768 times. Targeted ports: 5432, 25432, 54320. Country: Bulgaria. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-26: Observed 66 times. Targeted ports: 5432, 15432. Country: Bulgaria. Reputation: known attacker. Usernames: postgres.
  • 2026-05-25: Observed 119 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-24: Observed 576 times. Targeted ports: 5432, 5433, 5434. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-23: Observed 5 times. Targeted ports: 5432. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-22: Observed 158 times. Targeted ports: 5432, 5433. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-13: Observed 5 times. Targeted ports: 80. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-10: Observed 12 times. Targeted ports: 23. Country: Bulgaria. Reputation: known attacker.
  • 2026-03-20: Observed 1 times. Targeted ports: 443. Country: Bulgaria.
  • 2026-03-14: Observed 5 times. Targeted ports: 443. Country: Bulgaria.
  • 2026-03-11: Observed 6 times. Targeted ports: 80. Country: Bulgaria.
  • 2026-03-10: Observed 4 times. Targeted ports: 80. Country: Bulgaria.
  • 2026-03-08: Observed 8 times. Targeted ports: 80, 443. Country: Bulgaria.
  • 2026-03-03: Observed 4 times. Targeted ports: 443. Country: Bulgaria.

URLs on this IP

No URLs found for this IP.

Passive DNS

No pDNS records found for 85.11.167.7.

Search History

ID Source Last seen
65005 web 2026-06-12 19:52:57
30443 web 2026-02-25 13:42:35

Whois

No Whois record yet. The worker will fetch it when this IP is in the queue.