JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 207.244.252.45

207.244.252.45 was found in our database!

This IP was reported 318 times. Confidence of Abuse is 1%: ?

ISP	Contabo Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40021
Hostname(s)	vmi2495102.contaboserver.net
Domain Name	contabo.com
Country	🇺🇸 United States of America
City	St. Louis, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 207.244.252.45

Whois 207.244.252.45

IP Abuse Reports for 207.244.252.45:

This IP address has been reported a total of 318 times from 181 distinct sources. 207.244.252.45 was first reported on November 8th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 QSC-Sentinel	2026-05-20 21:49:35 (4 weeks ago)	Banned by fail2ban jail sshd on etlab-research	Brute-Force SSH
🇦🇺 Anytech	2026-01-07 17:49:00 (5 months ago)	Fail2ban: sshd - 3 attempts	Brute-Force SSH
🇫🇷 SpaceHost-Server	2026-01-03 23:36:17 (5 months ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-01-01 23:36:54 (5 months ago)		Brute-Force Web App Attack
🇨🇳 kipfel★	2026-01-01 20:23:24 (5 months ago)	2026-01-02T04:21:32.254715+08:00 self-dedi-wyse-5070-tna sshd[1143547]: Invalid user github from 207 ... show more 2026-01-02T04:21:32.254715+08:00 self-dedi-wyse-5070-tna sshd[1143547]: Invalid user github from 207.244.252.45 port 60184 2026-01-02T04:22:11.266368+08:00 self-dedi-wyse-5070-tna sshd[1143613]: Invalid user serge from 207.244.252.45 port 37520 2026-01-02T04:23:23.491805+08:00 self-dedi-wyse-5070-tna sshd[1143738]: Invalid user ubuntu from 207.244.252.45 port 46340 ... show less	Brute-Force SSH
🇬🇧 Heathrxw	2026-01-01 20:22:16 (5 months ago)	Jan 1 20:17:45 s1-jellyfish sshd[899940]: Failed password for root from 207.244.252.45 port 51816 s ... show more Jan 1 20:17:45 s1-jellyfish sshd[899940]: Failed password for root from 207.244.252.45 port 51816 ssh2 Jan 1 20:22:16 s1-jellyfish sshd[950241]: Invalid user serge from 207.244.252.45 port 35744 ... show less	Brute-Force SSH
🇺🇸 youms	2026-01-01 19:28:27 (5 months ago)	Jan 1 20:26:39 kamergaz sshd[1769130]: Invalid user es from 207.244.252.45 port 42152 Jan 1 20:26: ... show more Jan 1 20:26:39 kamergaz sshd[1769130]: Invalid user es from 207.244.252.45 port 42152 Jan 1 20:26:39 kamergaz sshd[1769130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.244.252.45 Jan 1 20:26:41 kamergaz sshd[1769130]: Failed password for invalid user es from 207.244.252.45 port 42152 ssh2 Jan 1 20:28:25 kamergaz sshd[1769674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.244.252.45 user=root Jan 1 20:28:26 kamergaz sshd[1769674]: Failed password for root from 207.244.252.45 port 44468 ssh2 show less	Brute-Force SSH
🇩🇪 403veli	2026-01-01 19:25:32 (5 months ago)	Confirmed malicious activity observed via T-Pot honeypot Observed 488 events on port 22 (unknown) fr ... show more Confirmed malicious activity observed via T-Pot honeypot Observed 488 events on port 22 (unknown) from 2026-01-01T19:25:32+00:00 to 2026-01-01T19:49:44.395000+00:00. Sample: {"src_port": 39914, "event_type": "flow", "dest_port": 22, "src_ip": "207.244.252.45"} show less	SSH
🇺🇸 bigscoots.com	2026-01-01 19:01:21 (5 months ago)	207.244.252.45 (US/United States/vmi2495102.contaboserver.net), 5 distributed sshd attacks on accoun ... show more 207.244.252.45 (US/United States/vmi2495102.contaboserver.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jan 1 12:57:33 18051 sshd[20879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.153.81.58 user=root Jan 1 12:57:35 18051 sshd[20879]: Failed password for root from 116.153.81.58 port 40618 ssh2 Jan 1 12:58:31 18051 sshd[20971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.244.252.45 user=root Jan 1 12:58:33 18051 sshd[20971]: Failed password for root from 207.244.252.45 port 38914 ssh2 Jan 1 13:01:11 18051 sshd[21260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.196.9.84 user=root IP Addresses Blocked: 116.153.81.58 (CN/China/-) show less	Brute-Force SSH
🇩🇪 nicosqc	2026-01-01 18:55:32 (5 months ago)	Invalid user tunneluser from 207.244.252.45 port 59112	Brute-Force SSH
🇩🇪 nicosqc	2026-01-01 18:55:32 (5 months ago)	Invalid user tunneluser from 207.244.252.45 port 59112	Brute-Force SSH
🇳🇱 sh97	2026-01-01 17:47:50 (5 months ago)	nl03: SSH Brute Force from 207.244.252.45 at 2026-01-01 23:17:50 IST	Brute-Force SSH
🇦🇺 Anytech	2026-01-01 17:23:14 (5 months ago)	Fail2ban: sshd - 3 attempts	Brute-Force SSH
Anonymous	2026-01-01 15:38:35 (5 months ago)	$f2bV_matches	Brute-Force SSH
🇩🇪 ipcop.net	2026-01-01 15:37:30 (5 months ago)	2026-01-01T16:31:31.773319+01:00 router03.eag-fpi.de sshd[3592756]: Invalid user altibase from 207.2 ... show more 2026-01-01T16:31:31.773319+01:00 router03.eag-fpi.de sshd[3592756]: Invalid user altibase from 207.244.252.45 port 43428 2026-01-01T16:31:31.906107+01:00 router03.eag-fpi.de sshd[3592756]: Disconnected from invalid user altibase 207.244.252.45 port 43428 [preauth] 2026-01-01T16:36:48.093877+01:00 router03.eag-fpi.de sshd[3593559]: Invalid user oscar from 207.244.252.45 port 44654 2026-01-01T16:36:48.221598+01:00 router03.eag-fpi.de sshd[3593559]: Disconnected from invalid user oscar 207.244.252.45 port 44654 [preauth] 2026-01-01T16:37:30.127946+01:00 router03.eag-fpi.de sshd[3593724]: Invalid user tunnel from 207.244.252.45 port 58094 show less	Brute-Force

Showing 1 to 15 of 318 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

fe80::7a9a:18ff:fe2e:e8a4

🇹🇼 220.130.195.220

🇺🇸 207.246.106.68

🇲🇴 182.93.7.194

🇺🇸 138.197.2.69

🇮🇩 128.14.233.253

🇰🇷 112.164.240.110

🇭🇰 103.218.241.7

🇩🇪 64.89.163.132

🇬🇧 8.208.10.35

🇫🇮 212.112.19.166

🇬🇪 194.31.8.12

🇺🇸 191.96.106.18

🇺🇸 153.66.28.132

🇫🇷 85.217.140.15

🇺🇸 64.62.197.111

🇺🇸 47.254.74.245

🇧🇪 207.175.64.232

🇮🇹 154.63.163.211

🇸🇬 101.100.194.252