JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.238.189.22

104.238.189.22 was found in our database!

This IP was reported 53 times. Confidence of Abuse is 100%: ?

100%

ISP	Vultr Holdings, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS20473
Hostname(s)	104.238.189.22.vultrusercontent.com
Domain Name	vultr.com
Country	🇫🇷 France
City	Aubervilliers, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.238.189.22

Whois 104.238.189.22

IP Abuse Reports for 104.238.189.22:

This IP address has been reported a total of 53 times from 33 distinct sources. 104.238.189.22 was first reported on June 21st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 nigelrbfurness	2026-06-23 07:34:00 (1 day ago)		Web App Attack
🇩🇪 Hugopvigo	2026-06-22 20:32:21 (2 days ago)	"2026-06-22 20:32:21+00:00 104.238.189.22 IP con score alto (100) detectada en el log."	Brute-Force SSH
🇩🇪 maxpower	2026-06-22 17:42:43 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:19:42:34 +0200] "GET /222.php HTTP/2.0" 404 18882 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=vortici.it show less	Port Scan
🇩🇪 jasperedv.de	2026-06-22 17:22:20 (2 days ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇩🇪 maxpower	2026-06-22 17:13:41 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:19:13:35 +0200] "GET /222.php HTTP/2.0" 404 17449 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=elektra.ovh show less	Port Scan
🇩🇪 maxpower	2026-06-22 16:48:02 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:18:47:47 +0200] "GET /222.php HTTP/2.0" 404 10776 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=essenzaestetica.eu show less	Port Scan
🇩🇪 maxpower	2026-06-22 15:37:31 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:17:37:29 +0200] "GET /222.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=tikitakaplanet.it show less	Port Scan
🇩🇪 maxpower	2026-06-22 15:10:56 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:17:10:51 +0200] "GET /222.php HTTP/2.0" 404 14544 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=villapardi.it show less	Port Scan
🇺🇸 omc	2026-06-22 14:52:10 (2 days ago)	Unauthorized file [PP]	Bad Web Bot
🇩🇪 maxpower	2026-06-22 14:33:29 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:16:33:28 +0200] "GET /222.php HTTP/1.1" 301 281 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=digiampaolosrl.it show less	Port Scan
🇩🇪 maxpower	2026-06-22 14:06:26 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:16:06:21 +0200] "GET /222.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=masterlabvideoproduzioni.it show less	Port Scan
🇩🇪 outputblog.de	2026-06-22 13:38:27 (2 days ago)	apache-wp-probephp	Port Scan Hacking Brute-Force
🇩🇪 maxpower	2026-06-22 13:24:40 (2 days ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.238.189.22 (FR/France/104.238.189.22): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.238.189.22 - - [22/Jun/2026:15:24:35 +0200] "GET /222.php HTTP/1.1" 301 278 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" "104.238.189.22" host=digiampaolo.it show less	Port Scan
🇩🇪 sverson	2026-06-22 13:18:03 (2 days ago)	Automated report	Hacking
🇺🇸 etu brutus	2026-06-22 13:17:20 (2 days ago)	104.238.189.22 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host

Showing 1 to 15 of 53 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.178.118.147

🇲🇽 187.216.224.85

🇸🇪 157.22.45.106

🇫🇷 92.103.134.183

🇺🇸 44.134.207.223

🇧🇪 35.190.197.155

🇷🇴 2.57.121.112

🇬🇧 2a06:4880:c000::e3

🇩🇪 213.209.159.225

🇺🇸 141.11.88.7

🇻🇳 123.30.240.7

🇹🇭 61.19.69.203

🇺🇸 44.188.0.76

🇲🇦 41.249.164.54

🇬🇧 35.203.210.74

🇺🇸 20.118.208.65

🇭🇰 199.45.154.188

🇺🇸 172.239.62.109

🇨🇳 120.239.27.224

🇳🇱 45.148.10.152