JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 128.185.204.30

128.185.204.30 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 58%: ?

58%

ISP	BHARTI-AIRTEL
Usage Type	Fixed Line ISP
ASN	AS9498
Domain Name	airtel.in
Country	🇮🇳 India
City	Kolkata, West Bengal

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 128.185.204.30

Whois 128.185.204.30

IP Abuse Reports for 128.185.204.30:

This IP address has been reported a total of 46 times from 26 distinct sources. 128.185.204.30 was first reported on October 11th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 hobeika.fr	2026-06-13 13:04:49 (1 week ago)	2026-06-13T15:04:48.944506+02:00 tigrou postfix/submission/smtpd[4012471]: warning: unknown[128.185. ... show more 2026-06-13T15:04:48.944506+02:00 tigrou postfix/submission/smtpd[4012471]: warning: unknown[128.185.204.30]: SASL PLAIN authentication failed: authentication failure, [email protected] ... show less	Brute-Force
Anonymous	2026-06-13 05:30:49 (1 week ago)	SMTP AUTH 128.185.204.30 (SMTP_LOGIN_ATTEMPT)	Brute-Force
🇮🇹 Progetto1	2026-06-13 03:01:02 (1 week ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
Anonymous	2026-06-07 04:32:10 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇸🇰 EVISION	2026-06-06 10:51:43 (2 weeks ago)	Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporti ... show more Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting ID: 9MIpY2R46rwQwCALeMOXRsAWAm1O7SW5 show less	Port Scan Hacking Brute-Force
Anonymous	2026-06-04 10:00:35 (2 weeks ago)	6x Postfix SASL LOGIN authentication failed	Brute-Force
🇨🇭 Origon	2026-06-04 09:12:50 (2 weeks ago)	postfix-non-smtp-command - IP: 128.185.204.30 - time="2026-06-04T11:12:49+02:00" level=info msg="(5 ... show more postfix-non-smtp-command - IP: 128.185.204.30 - time="2026-06-04T11:12:49+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/postfix-non-smtp-command by ip 128.185.204.30 (IN/9498) : 4h ban on Ip 128.185.204.30" module=db show less	Email Spam
Anonymous	2026-06-02 07:57:29 (2 weeks ago)	Port scan and brute force attack	Port Scan Brute-Force
🇧🇷 ICS Labs	2026-05-23 14:26:23 (4 weeks ago)	ICS Labs identified 128.185.204.30 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇫🇷 UM3	2026-05-20 23:03:44 (1 month ago)	Exim Auth Failed	Brute-Force
🇩🇪 filstal.org	2026-05-20 22:11:51 (1 month ago)	CrowdSec-Report: crowdsecurity/postfix-non-smtp-command	Email Spam Brute-Force
🇩🇪 Admins@FBN	2026-05-18 21:03:06 (1 month ago)	Threat Host blocked...	Hacking Web Spam Email Spam
🇬🇧 cg-design.co.uk	2026-05-16 14:25:46 (1 month ago)	128.185.204.30 (IN/India/-), 10 distributed imapd attacks on account [redacted]	Brute-Force
🇺🇸 oukat	2026-05-13 06:31:33 (1 month ago)	Dovecot credential brute-force/auth-failed activity against mail service. Observations from this log ... show more Dovecot credential brute-force/auth-failed activity against mail service. Observations from this log: 1; total reported failed auth attempts: 1; services: submission-login x1; latest method: PLAIN; latest sanitized event: Login aborted: Connection closed: SSL_read failed: error:0A000119:SSL routines::decryption failed or bad record mac, error:0A000139:SSL routines::record layer failure (auth failed, 1 attempts in 3 secs) (auth_failed): user=<redacted>, method=PLAIN, rip=128.185.204.30, lip=10.10.10.44, TLS: SSL_read failed: error:0A000119:SSL routines::decryption failed or bad record mac, error:0A000139:SSL routines::record layer failure show less	Brute-Force
🇩🇪 FeG Deutschland	2026-05-11 04:22:01 (1 month ago)	Mail: - login with unknown user - bruteforce	Brute-Force

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 211.149.216.91

🇺🇸 181.215.65.110

🇲🇾 160.250.92.50

🇳🇱 91.92.40.7

🇩🇪 64.89.163.78

🇨🇳 47.111.234.74

🇳🇱 45.148.10.121

🇳🇱 45.148.10.36

🇵🇱 45.134.212.94

🇩🇪 31.77.129.211

🇺🇸 20.169.107.113

🇺🇸 20.9.87.223

🇨🇳 118.196.4.132

🇨🇳 114.221.136.195

🇨🇭 107.189.8.181

🇺🇸 107.152.44.215

🇱🇹 81.30.98.158

🇩🇪 69.5.169.173

🇪🇬 41.43.70.122

🇬🇧 35.203.211.248