JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.199.228.233

139.199.228.233 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 100%: ?

100%

ISP	Tencent cloud computing (Beijing) Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.199.228.233

Whois 139.199.228.233

IP Abuse Reports for 139.199.228.233:

This IP address has been reported a total of 52 times from 38 distinct sources. 139.199.228.233 was first reported on April 13th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 MP.tv	2026-05-29 23:40:18 (2 weeks ago)	2026-05-30T01:37:15.024382+02:00 transfer-srv sshd[248278]: pam_unix(sshd:auth): authentication fail ... show more 2026-05-30T01:37:15.024382+02:00 transfer-srv sshd[248278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 user=root 2026-05-30T01:37:17.254138+02:00 transfer-srv sshd[248278]: Failed password for root from 139.199.228.233 port 54418 ssh2 202 ... show less	Brute-Force SSH
🇵🇱 IROK	2026-05-29 23:10:02 (2 weeks ago)	2026-05-30T01:07:26.742296 pclab24.pl sshd[244122]: Connection from 139.199.228.233 port 40020 on 10 ... show more 2026-05-30T01:07:26.742296 pclab24.pl sshd[244122]: Connection from 139.199.228.233 port 40020 on 10.10.0.5 port 22 2026-05-30T01:07:29.260183 pclab24.pl sshd[244122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 user=root 2026-05-30T01:07:30.772693 pclab24.pl sshd[244122]: Failed password for root from 139.199.228.233 port 40020 ssh2 2026-05-30T01:09:59.243204 pclab24.pl sshd[245138]: Connection from 139.199.228.233 port 37690 on 10.10.0.5 port 22 2026-05-30T01:10:01.701651 pclab24.pl sshd[245138]: Invalid user under from 139.199.228.233 port 37690 ... show less	SSH
🇺🇸 amit177	2026-05-29 23:07:36 (2 weeks ago)		Brute-Force SSH
Anonymous	2026-05-29 19:38:31 (2 weeks ago)	2026-05-29T16:22:55.387090-03:00 web sshd[474640]: Failed password for root from 139.199.228.233 por ... show more 2026-05-29T16:22:55.387090-03:00 web sshd[474640]: Failed password for root from 139.199.228.233 port 43794 ssh2 2026-05-29T16:22:55.673279-03:00 web sshd[474640]: Disconnected from authenticating user root 139.199.228.233 port 43794 [preauth] 2026-05-29T16:38:29.661474-03:00 web sshd[482771]: Connection closed by 139.199.228.233 port 57288 [preauth] ... show less	Brute-Force SSH
🇧🇷 chronos	2026-05-29 18:48:39 (2 weeks ago)	Generic malicious activity: [HONEYPOT] Attempted SSH access... \| Port: 2222 \| Proto: TCP \| Location: ... show more Generic malicious activity: [HONEYPOT] Attempted SSH access... \| Port: 2222 \| Proto: TCP \| Location: China, N/A show less	Port Scan Hacking
🇭🇰 bluecloudwork	2026-05-29 18:13:03 (2 weeks ago)	Fail2Ban - Brute-force SSH server ...	Brute-Force SSH
🇨🇭 ScanThe.Net	2026-05-29 16:41:35 (2 weeks ago)	ID: 3663833821 \| PORT: 7645 \| https://139-199-228-233.scanthe.net	Port Scan
🇩🇪 licen777	2026-05-29 14:28:56 (2 weeks ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-29T13:22:08Z and 2026-05-2 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-29T13:22:08Z and 2026-05-29T14:28:56Z show less	Brute-Force SSH
🇬🇧 lumi	2026-05-29 14:23:00 (2 weeks ago)	2026-05-29T14:21:10.018409+00:00 habibi.infra.lumis.moe sshd-session[1663218]: pam_unix(sshd:auth): ... show more 2026-05-29T14:21:10.018409+00:00 habibi.infra.lumis.moe sshd-session[1663218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 2026-05-29T14:21:12.214750+00:00 habibi.infra.lumis.moe sshd-session[1663218]: Failed password for invalid user appuser from 139.199.228.233 port 46956 ssh2 2026-05-29T14:22:59.601855+00:00 habibi.infra.lumis.moe sshd-session[1663383]: Invalid user system from 139.199.228.233 port 48246 ... show less	Brute-Force SSH
🇩🇪 syndications4radio.de	2026-05-29 14:08:13 (2 weeks ago)	2026-05-29T16:00:56.730743+02:00 v2202509299507380972 sshd[1452661]: pam_unix(sshd:auth): authentica ... show more 2026-05-29T16:00:56.730743+02:00 v2202509299507380972 sshd[1452661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 2026-05-29T16:00:59.336643+02:00 v2202509299507380972 sshd[1452661]: Failed password for invalid user user1 from 139.199.228.233 port 50898 ssh2 2026-05-29T16:08:11.481447+02:00 v2202509299507380972 sshd[1453310]: Invalid user info from 139.199.228.233 port 33614 2026-05-29T16:08:11.483962+02:00 v2202509299507380972 sshd[1453310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 2026-05-29T16:08:13.141342+02:00 v2202509299507380972 sshd[1453310]: Failed password for invalid user info from 139.199.228.233 port 33614 ssh2 ... show less	Brute-Force SSH
🇨🇳 WMK965	2026-05-29 13:29:06 (2 weeks ago)	2026-05-29T21:27:43.042412+08:00 [HOSTNAME] sshd[725161]: pam_unix(sshd:auth): authentication failur ... show more 2026-05-29T21:27:43.042412+08:00 [HOSTNAME] sshd[725161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 user=root 2026-05-29T21:27:44.709812+08:00 [HOSTNAME] sshd[725161]: Failed password for root from 139.199.228.233 port 45078 ssh2 2026-05-29T21:29:02.507514+08:00 [HOSTNAME] sshd[725221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 user=root 2026-05-29T21:29:04.686662+08:00 [HOSTNAME] sshd[725221]: Failed password for root from 139.199.228.233 port 41290 ssh2 show less	Brute-Force SSH
🇺🇸 demonsword	2026-05-29 12:22:54 (2 weeks ago)	SSH brute-force detected: 4 failed login attempts in the last 1 hour.	Brute-Force SSH
🇩🇪 RoblKyogre	2026-05-29 10:48:25 (2 weeks ago)	2026-05-29T03:31:03.289328-07:00 NetCafe sshd-session[1047843]: Failed password for invalid user tai ... show more 2026-05-29T03:31:03.289328-07:00 NetCafe sshd-session[1047843]: Failed password for invalid user taibabi from 139.199.228.233 port 34084 ssh2 2026-05-29T03:42:30.369328-07:00 NetCafe sshd-session[1051668]: Invalid user ubuntu from 139.199.228.233 port 41488 2026-05-29T03:42:30.376686-07:00 NetCafe sshd-session[1051668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.228.233 2026-05-29T03:42:31.915972-07:00 NetCafe sshd-session[1051668]: Failed password for invalid user ubuntu from 139.199.228.233 port 41488 ssh2 2026-05-29T03:48:24.777746-07:00 NetCafe sshd-session[1053673]: Invalid user ubuntu from 139.199.228.233 port 60420 ... show less	Brute-Force SSH
🇩🇪 NetWatch	2026-05-29 09:59:34 (2 weeks ago)	The IP 139.199.228.233 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
🇫🇷 glmx	2026-05-29 08:38:44 (2 weeks ago)	SSH honeypot interaction detected. The source host initiated a connection to a monitored SSH endpoin ... show more SSH honeypot interaction detected. The source host initiated a connection to a monitored SSH endpoint, behavior consistent with automated SSH scanning or brute-force reconnaissance. show less	Brute-Force SSH

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 190.216.132.134

🇩🇴 186.6.146.159

🇨🇱 181.42.206.123

🇫🇮 147.185.133.83

🇨🇳 115.175.15.145

🇺🇸 104.210.209.47

🇮🇩 103.112.245.85

🇱🇹 81.30.98.62

🇬🇧 213.166.84.52

🇺🇸 209.250.5.77

🇳🇱 192.42.116.106

🇺🇸 142.93.204.108

🇵🇰 119.160.215.49

🇧🇬 79.124.49.174

🇩🇪 69.5.169.101

🇺🇸 20.65.194.112

🇳🇱 176.65.139.92

🇰🇷 118.37.214.187

🇺🇸 91.230.168.28

🇺🇸 66.132.195.39