JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.219.1.228

139.219.1.228 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 15%: ?

15%

ISP	Shanghai Blue Cloud Technology Co.,Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS58593
Domain Name	21vbluecloud.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.219.1.228

Whois 139.219.1.228

IP Abuse Reports for 139.219.1.228:

This IP address has been reported a total of 34 times from 23 distinct sources. 139.219.1.228 was first reported on December 30th 2020, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-06-17 00:50:02 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇫🇷 zulzeen	2026-05-29 15:09:15 (4 weeks ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
🇫🇷 zulzeen	2026-05-27 07:36:59 (1 month ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
🇫🇷 zulzeen	2026-05-26 06:10:04 (1 month ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
Anonymous	2026-05-18 21:13:44 (1 month ago)	unsolicited connect TCP dport 3389 (sport 58631)	Hacking
🇹🇷 Threat.live	2026-04-10 20:45:27 (2 months ago)	Suspicious activity, tcp/39005, tcp/38196, tcp/40556	Port Scan
🇯🇵 jay hung	2026-04-02 22:02:43 (2 months ago)	2026-04-02T22:02:37.809264+00:00 quarktech kernel: [1245624.982873] [UFW BLOCK] IN=eth0 OUT= MAC=22: ... show more 2026-04-02T22:02:37.809264+00:00 quarktech kernel: [1245624.982873] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=139.219.1.228 DST=172.237.29.33 LEN=40 TOS=0x00 PREC=0x00 TTL=230 ID=20184 PROTO=TCP SPT=47319 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-04-02 22:00:30 (2 months ago)	Apr 2 17:59:36 localhost kernel: [103512612.564504] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Apr 2 17:59:36 localhost kernel: [103512612.564504] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=61508 PROTO=TCP SPT=47175 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 2 17:59:36 localhost kernel: [103512612.564524] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=61508 PROTO=TCP SPT=47175 DPT=3389 SEQ=131964167 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 2 18:00:08 localhost kernel: [103512644.294673] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=20327 PROTO=TCP SPT=47206 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 2 18:00:08 localhost kernel: [103512644.294684] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=139.219.1.228 DST=[mungedIP2] LEN=40 TOS=0x show less	Port Scan
🇦🇺 FEWA	2026-04-02 21:59:44 (2 months ago)	Fail2Ban Ban Triggered	Hacking Brute-Force
🇹🇷 Threat.live	2026-04-02 07:35:17 (2 months ago)	Suspicious activity, tcp/3384, tcp/3383, tcp/3382	Port Scan
🇧🇷 marlorodrigues	2026-03-24 16:02:06 (3 months ago)	Brute Force SSH or Port Scan	Port Scan
🇩🇪 london2038.com	2026-03-24 15:57:29 (3 months ago)	Connection atttempts against closed TCP ports Mar 24 16:43:12 BLOCK SRC=139.219.1.228 LEN=40 TOS=0x0 ... show more Connection atttempts against closed TCP ports Mar 24 16:43:12 BLOCK SRC=139.219.1.228 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=12346 PROTO=TCP SPT=47144 DPT=3389 WINDOW=1024 RES=0x00 SYN Mar 24 16:49:07 BLOCK SRC=139.219.1.228 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=5680 PROTO=TCP SPT=47464 DPT=3389 WINDOW=1024 RES=0x00 SYN Mar 24 16:54:54 BLOCK SRC=139.219.1.228 LEN=52 TOS=0x02 PREC=0x00 TTL=109 ID=32650 DF PROTO=TCP SPT=48373 DPT=3389 WINDOW=8192 RES=0x00 CWR ECE SYN show less	Port Scan
🇩🇪 Honeypot-EU-Fru	2026-03-24 15:51:26 (3 months ago)	1774367485 - 03/24/2026 16:51:25 Host: 139.219.1.228/139.219.1.228 Port: 2323 TCP Blocked ...	Port Scan
🇩🇪 mattk	2026-03-11 07:10:56 (3 months ago)	port scan	Port Scan
🇺🇸 LotPhantom	2026-02-27 20:36:51 (3 months ago)	2026-02-27T20:27:45.338036+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-02-27T20:27:45.338036+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=139.219.1.228 DST=157.230.217.55 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=38031 PROTO=TCP SPT=43992 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 2026-02-27T20:36:50.660755+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=139.219.1.228 DST=157.230.217.55 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=64899 PROTO=TCP SPT=44605 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Hacking

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 217.168.240.63

🇬🇧 195.206.182.201

🇩🇪 194.88.98.114

🇩🇪 104.207.55.177

🇺🇸 44.193.230.139

🇨🇭 20.203.205.107

🇸🇬 20.6.35.235

🇺🇸 209.50.170.241

🇫🇷 185.190.143.194

🇦🇺 91.124.88.21

🇺🇸 66.132.224.20

🇸🇬 47.245.109.240

🇺🇸 44.194.80.253

🇺🇸 44.88.69.157

🇧🇷 20.226.50.160

🇺🇸 20.163.3.80

🇨🇳 222.137.180.237

🇺🇸 139.144.239.72

🇰🇷 118.45.101.159

🇺🇸 47.253.116.19