JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.219.1.228

139.219.1.228 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 16%: ?

16%

ISP	Shanghai Blue Cloud Technology Co.,Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS58593
Domain Name	21vbluecloud.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.219.1.228

Whois 139.219.1.228

IP Abuse Reports for 139.219.1.228:

This IP address has been reported a total of 34 times from 23 distinct sources. 139.219.1.228 was first reported on December 30th 2020, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-06-17 00:50:02 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇫🇷 zulzeen	2026-05-29 15:09:15 (3 weeks ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
🇫🇷 zulzeen	2026-05-27 07:36:59 (4 weeks ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
🇫🇷 zulzeen	2026-05-26 06:10:04 (4 weeks ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
Anonymous	2026-05-18 21:13:44 (1 month ago)	unsolicited connect TCP dport 3389 (sport 58631)	Hacking
🇹🇷 Threat.live	2026-04-10 20:45:27 (2 months ago)	Suspicious activity, tcp/39005, tcp/38196, tcp/40556	Port Scan
🇯🇵 jay hung	2026-04-02 22:02:43 (2 months ago)	2026-04-02T22:02:37.809264+00:00 quarktech kernel: [1245624.982873] [UFW BLOCK] IN=eth0 OUT= MAC=22: ... show more 2026-04-02T22:02:37.809264+00:00 quarktech kernel: [1245624.982873] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=139.219.1.228 DST=172.237.29.33 LEN=40 TOS=0x00 PREC=0x00 TTL=230 ID=20184 PROTO=TCP SPT=47319 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-04-02 22:00:30 (2 months ago)	Apr 2 17:59:36 localhost kernel: [103512612.564504] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Apr 2 17:59:36 localhost kernel: [103512612.564504] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=61508 PROTO=TCP SPT=47175 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 2 17:59:36 localhost kernel: [103512612.564524] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=61508 PROTO=TCP SPT=47175 DPT=3389 SEQ=131964167 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 2 18:00:08 localhost kernel: [103512644.294673] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=20327 PROTO=TCP SPT=47206 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 2 18:00:08 localhost kernel: [103512644.294684] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x show less	Port Scan
🇦🇺 FEWA	2026-04-02 21:59:44 (2 months ago)	Fail2Ban Ban Triggered	Hacking Brute-Force
🇹🇷 Threat.live	2026-04-02 07:35:17 (2 months ago)	Suspicious activity, tcp/3384, tcp/3383, tcp/3382	Port Scan
🇧🇷 marlorodrigues	2026-03-24 16:02:06 (3 months ago)	Brute Force SSH or Port Scan	Port Scan
🇩🇪 london2038.com	2026-03-24 15:57:29 (3 months ago)	Connection atttempts against closed TCP ports Mar 24 16:43:12 BLOCK SRC=139.219.1.228 LEN=40 TOS=0x0 ... show more Connection atttempts against closed TCP ports Mar 24 16:43:12 BLOCK SRC=139.219.1.228 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=12346 PROTO=TCP SPT=47144 DPT=3389 WINDOW=1024 RES=0x00 SYN Mar 24 16:49:07 BLOCK SRC=139.219.1.228 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=5680 PROTO=TCP SPT=47464 DPT=3389 WINDOW=1024 RES=0x00 SYN Mar 24 16:54:54 BLOCK SRC=139.219.1.228 LEN=52 TOS=0x02 PREC=0x00 TTL=109 ID=32650 DF PROTO=TCP SPT=48373 DPT=3389 WINDOW=8192 RES=0x00 CWR ECE SYN show less	Port Scan
🇩🇪 Honeypot-EU-Fru	2026-03-24 15:51:26 (3 months ago)	1774367485 - 03/24/2026 16:51:25 Host: 139.219.1.228/139.219.1.228 Port: 2323 TCP Blocked ...	Port Scan
🇩🇪 mattk	2026-03-11 07:10:56 (3 months ago)	port scan	Port Scan
🇺🇸 LotPhantom	2026-02-27 20:36:51 (3 months ago)	2026-02-27T20:27:45.338036+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-02-27T20:27:45.338036+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=139.219.1.228 DST=157.230.217.55 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=38031 PROTO=TCP SPT=43992 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 2026-02-27T20:36:50.660755+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=139.219.1.228 DST=157.230.217.55 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=64899 PROTO=TCP SPT=44605 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Hacking

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 139.59.113.226

🇨🇳 111.11.93.87

🇫🇷 91.196.152.118

🇳🇱 91.92.40.233

🇺🇸 35.234.176.177

🇺🇸 35.197.104.10

🇯🇵 219.117.255.19

🇵🇪 190.223.60.209

🇺🇸 172.174.211.122

🇺🇸 172.105.128.13

🇬🇧 167.172.55.243

🇺🇸 162.216.150.154

🇫🇷 85.217.140.6

🇺🇸 206.223.228.229

🇸🇮 176.76.130.206

🇮🇩 163.7.12.183

🇺🇸 162.216.149.220

🇺🇸 162.216.149.190

🇺🇸 147.185.132.127

🇭🇺 77.111.89.92