JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.31.120.238

89.31.120.238 was found in our database!

This IP was reported 372 times. Confidence of Abuse is 86%: ?

86%

ISP	EDIS Infrastructure in UAE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Hostname(s)	238.120.31.89.in-addr.arpa
Domain Name	edis.at
Country	🇦🇪 United Arab Emirates
City	Dubai, Dubai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.31.120.238

Whois 89.31.120.238

IP Abuse Reports for 89.31.120.238:

This IP address has been reported a total of 372 times from 151 distinct sources. 89.31.120.238 was first reported on July 31st 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ISPLtd	2026-06-28 16:41:13 (6 hours ago)	Jun 28 10:39:36 89.31.120.238 TCP SPT=46060 DPT=5246 SYN Jun 28 10:40:30 89.31.120.238 TCP SPT=46076 ... show more Jun 28 10:39:36 89.31.120.238 TCP SPT=46060 DPT=5246 SYN Jun 28 10:40:30 89.31.120.238 TCP SPT=46076 DPT=9092 SYN Jun 28 10:41:12 89.31.120.238 TCP SPT=46076 DPT=16993 ... show less	Port Scan
🇺🇸 ISPLtd	2026-06-28 10:38:41 (12 hours ago)	Jun 28 04:38:13 89.31.120.238 TCP SPT=43091 DPT=2096 SYN Jun 28 04:38:33 89.31.120.238 TCP SPT=43107 ... show more Jun 28 04:38:13 89.31.120.238 TCP SPT=43091 DPT=2096 SYN Jun 28 04:38:33 89.31.120.238 TCP SPT=43107 DPT=10000 SYN Jun 28 04:38:40 89.31.120.238 TCP SPT=43107 DPT=8081 ... show less	Port Scan
🇸🇬 Starburst SysOp Team	2026-06-28 09:43:27 (13 hours ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-sin2-2)	Hacking Bad Web Bot
🇪🇸 yvoictra	2026-06-24 17:33:52 (4 days ago)	2026-06-24T19:33:51.339594+02:00 apollo sshd-session[2389529]: Invalid user from 89.31.120.238 port ... show more 2026-06-24T19:33:51.339594+02:00 apollo sshd-session[2389529]: Invalid user from 89.31.120.238 port 36604 ... show less	Brute-Force SSH
🇧🇷 diego	2026-06-24 07:42:21 (4 days ago)	[rede-164-29] (PERMBLOCK) 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr.arpa) has had ... show more [rede-164-29] (PERMBLOCK) 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr.arpa) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇧🇷 diego	2026-06-24 06:41:05 (4 days ago)	[rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr ... show more [rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr.arpa). 11 hits in the last 45 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 24 03:40:14 kernel: [11477951.001809] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=0.0.0.x LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=6828 PROTO=TCP SPT=55068 DPT=9773 WINDOW=1025 RES=0x00 SYN URGP=0 Jun 24 03:40:20 kernel: [11477956.462151] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=143.0.19.45 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=37113 PROTO=TCP SPT=55052 DPT show less	Port Scan
🇧🇷 diego	2026-06-24 05:39:55 (4 days ago)	[rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr ... show more [rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr.arpa). 11 hits in the last 280 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 24 02:38:36 kernel: [11474252.327412] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=0.0.0.x LEN=44 TOS=0x00 PREC=0x00 TTL=240 ID=15425 PROTO=TCP SPT=55068 DPT=22022 WINDOW=1025 RES=0x00 SYN URGP=0 Jun 24 02:38:47 kernel: [11474263.662864] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=143.0.19.43 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=4748 PROTO=TCP SPT=55052 DP show less	Port Scan
🇧🇷 diego	2026-06-24 04:38:36 (4 days ago)	[rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr ... show more [rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr.arpa). 11 hits in the last 205 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 24 01:38:07 kernel: [11470623.833838] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=0.0.0.x LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=52216 PROTO=TCP SPT=55052 DPT=10065 WINDOW=1025 RES=0x00 SYN URGP=0 Jun 24 01:38:09 kernel: [11470625.618798] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=143.0.19.43 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=35647 PROTO=TCP SPT=55068 D show less	Port Scan
🇪🇸 diegocr	2026-06-24 03:47:55 (4 days ago)	Port sweep. 5 failures on 10 minutes	Port Scan
🇧🇷 diego	2026-06-24 03:38:02 (4 days ago)	[rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr ... show more [rede-164-29] Port Scan detected from 89.31.120.238 (AE/United Arab Emirates/238.120.31.89.in-addr.arpa). 11 hits in the last 176 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 24 00:37:07 kernel: [11466964.344796] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=0.0.0.x LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=45969 PROTO=TCP SPT=52241 DPT=6606 WINDOW=1025 RES=0x00 SYN URGP=0 Jun 24 00:37:14 kernel: [11466970.498659] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=89.31.120.238 DST=143.0.19.36 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=16156 PROTO=TCP SPT=52241 DP show less	Port Scan
🇦🇺 specializedtom	2026-06-24 03:35:34 (4 days ago)	Fail2Ban triggered a ban on 89.31.120.238 for postfix-sasl	Phishing Email Spam Spoofing
Anonymous	2026-06-24 03:15:02 (4 days ago)	89.31.120.238 - - [24/Jun/2026:03:15:01 +0000] "\x16\x03\x01" 400 432 "-" "-" ...	Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-06-22 06:38:19 (6 days ago)	1323 packets to ports 11 13 15 17 19 21 22 26 43 53 70 79 80 82 83 84 85 88 90 93 97 102 104 106 110 ... show more 1323 packets to ports 11 13 15 17 19 21 22 26 43 53 70 79 80 82 83 84 85 88 90 93 97 102 104 106 110 111 113 119 122 143 189 190 192 195 264 285 311 314 389 400 440 441 443 444 465 480 500 502 503 513 515 541 548 554 587 593 631 636 646 666 771 785 789 808 809, etc. show less	Port Scan
🇫🇷 sbocquet	2026-06-21 22:19:37 (1 week ago)	Port 443 scanned from 89.31.120.238:57520.	Port Scan
🇫🇷 sbocquet	2026-06-21 21:57:43 (1 week ago)	Port 22 scanned from 89.31.120.238:57520.	Port Scan

Showing 1 to 15 of 372 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.233

🇨🇱 129.222.172.38

🇬🇧 35.203.211.171

🇺🇸 205.209.125.232

🇻🇪 190.103.29.213

🇩🇿 154.255.46.200

🇱🇹 141.98.10.42

🇯🇵 107.155.15.8

🇺🇸 98.122.113.241

🇫🇷 85.217.140.48

🇳🇱 80.82.77.33

🇬🇧 5.226.140.68

🇺🇸 205.210.31.76

🇿🇦 196.61.241.175

🇵🇱 77.65.142.55

🇺🇸 35.145.21.192

🇬🇧 195.234.95.188

🇬🇧 185.216.145.163

🇲🇾 175.143.58.135

🇺🇸 173.239.214.220