45.85.218.109 Threat Intelligence and Host Information

Jun 04, 2026 ipinfopage

General

IP Address
45.85.218.109
IPv4 Address
Location
🇩🇪 Germany
DE
Network
AS44486
SYNLINQ
Threat Score
50/100
Medium Risk
176-65-139-111176-65-139-146176-65-139-164176-65-139-20176-65-139-22176-65-139-220176-65-139-36176-65-139-41
Attack Intelligence
MITRE ATT&CK Techniques
T1595 - Active Scanning
Open Ports Detected
1337
Geographic Location
Country
Germany
City
Unknown
Region
Unknown
Coordinates
51.2993, 9.4910
Network Information
ASN
AS44486
Organization
SYNLINQ
Network
AS44486 SYNLINQ
WHOIS Information
inetnum
45.85.216.0 - 45.85.219.255
netname
DE-NEXSERV-20190607
country
DE
org
ORG-NG255-RIPE
admin-c
NGRC1-RIPE
tech-c
NGRC1-RIPE
status
ALLOCATED PA
mnt-by
lir-de-nexserv-1-MNT
created
2023-12-05T12:00:18Z
last-modified
2023-12-05T12:00:18Z
organisation
ORG-NG255-RIPE
org-name
nexserv GmbH
reg-nr
District court Krefeld HRB 15000
org-type
LIR
address
Kapellenstraße 22
phone
+49 2151 3281080
abuse-c
AR66541-RIPE
mnt-ref
lir-de-nexserv-1-MNT
fax-no
+49 2151 3281099
role
nexserv GmbH Ripe Coordination
abuse-mailbox
abuse@nexserv.de
nic-hdl
NGRC1-RIPE
route
45.85.218.0/24
origin
AS48314
Attack Logs
Date Target Location Protocol Link
2026-05-28 Vultrparis TELNET View Log

  • Country: Germany
  • Network:
  • Noticed: 10 times
  • Protocols Attacked: telnet
  • Passive DNS Results: host-34.mine-hoster.de

Malware Detected on Host

Count: 4 4c32dc36b29a82aa9a7c369310cf5d4711697867a6031b27052c850767ab05b3 dd7ad09bc9368448b175044c6ba0fe9c07b8358fb8a0bfce719ce1b2084f6e5b a81250987adc632f491a585e5ecda2665ff4b96fd57b240cc656605da84fb1d3 df1302c1034994d9efd381a0329dc655a3e92063b2c00f5bc9f9cf8e01a3d15a

CVEs Detected

CVE-2007-4559 CVE-2009-2940 CVE-2009-3720 CVE-2020-29396 CVE-2021-32052 CVE-2023-24329 CVE-2023-27043 CVE-2023-36632 CVE-2023-40217 CVE-2023-41105 CVE-2024-6232 CVE-2024-7592 CVE-2024-9287 CVE-2025-12084 CVE-2025-12781 CVE-2025-13836 CVE-2025-13837 CVE-2026-4519

Disclaimer
This page contains threat intelligence information for the IPv4 address 45.85.218.109 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.