IP address

Search at other sites:
.31758.220.10.131
Shodan(more info)
Passive DNS
Tags: Login attempts Scanner
IP blacklists
spamhaus-pbl
58.220.10.131 is listed on the spamhaus-pbl blacklist.

Description:
Type of feed: (feed detail page)

Last checked at: 2026-06-02 07:33:31.615000
Was present on blacklist at: 2026-06-02 07:33
Echelon SSH connection attempt
58.220.10.131 is listed on the Echelon SSH connection attempt blacklist.

Description: SSH connection attempt detected on port 22 or 2222
Type of feed: primary (feed detail page)

Last checked at: 2026-06-03 09:35:00.369000
Was present on blacklist at: 2026-06-02 09:35, 2026-06-03 09:35
Echelon SSH bruteforce
58.220.10.131 is listed on the Echelon SSH bruteforce blacklist.

Description: Multiple SSH authentication attempts detected
Type of feed: primary (feed detail page)

Last checked at: 2026-06-03 09:35:00.313000
Was present on blacklist at: 2026-06-02 09:35, 2026-06-03 09:35

Threat categories

TLRoleCategoryDetails
72 src login protocol: ssh
port: 22, 2222
62 src scan
Warden events (12)
2026-06-03
AttemptLogin (node.ce2b59): 2
2026-06-02
AttemptLogin (node.03e7a9): 5
ReconScanning (node.03e7a9): 3
AttemptLogin (node.ce2b59): 2
DShield reports (IP summary, reports)
2026-06-02
Number of reports: 93
Distinct targets: 8
2026-06-03
Number of reports: 93
Distinct targets: 8
Origin AS
AS137697 - CHINATELECOM-JiangSu-YangZhou-IDC
BGP Prefix
58.220.10.0/24
geo
China
🕑 Asia/Shanghai
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
58.208.0.0 - 58.223.255.255
last_activity
2026-06-03 02:09:16
last_warden_event
2026-06-03 02:09:16
rep
0.3165548178573765
reserved_range
0
Shodan's InternetDB
Open ports: 22, 3306, 4433, 8080
Tags: self-signed, database
CPEs: cpe:/a:oracle:mysql, cpe:/a:openbsd:openssh:8.9p1, cpe:/o:canonical:ubuntu_linux
ts_added
2026-06-02 07:33:30.441000
ts_last_update
2026-06-04 07:33:40.123000

Warden event timeline

DShield event timeline

Presence on blacklists