JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.30.129.71

5.30.129.71 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 42%: ?

42%

ISP	Emirates Integrated Telecommunications Company PJSC (EITC-DU)
Usage Type	Fixed Line ISP
ASN	AS15802
Domain Name	du.ae
Country	🇦🇪 United Arab Emirates
City	Dubai, Dubai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.30.129.71

Whois 5.30.129.71

IP Abuse Reports for 5.30.129.71:

This IP address has been reported a total of 7 times from 6 distinct sources. 5.30.129.71 was first reported on June 18th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 grassau.com	2026-06-19 00:26:00 (5 hours ago)	(wordpress) Failed wordpress login from 5.30.129.71 (AE/United Arab Emirates/Dubai/Dubai/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 23:56:53 (5 hours ago)	(mod_security) mod_security (id:240335) triggered by 5.30.129.71 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240335) triggered by 5.30.129.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 19:56:48.206656 2026] [security2:error] [pid 16626:tid 16626] [client 5.30.129.71:13677] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 5.30.129.71 (+1 hits since last alert)\|zerotaxlab.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "zerotaxlab.com"] [uri "/xmlrpc.php"] [unique_id "ajSFwCt8Uaw6rmwjXTK1swAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-18 21:51:47 (7 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-18 21:51:35 (7 hours ago)	Fail2ban filtered ...	Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 21:22:32 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 5.30.129.71 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:240335) triggered by 5.30.129.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 17:22:27.491557 2026] [security2:error] [pid 16801:tid 16801] [client 5.30.129.71:42088] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 5.30.129.71 (+1 hits since last alert)\|mirai-labo.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mirai-labo.com"] [uri "/xmlrpc.php"] [unique_id "ajRhkw_V4317Ptgv79UaxwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-06-18 20:54:31 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 5.30.129.71 (AE/United Arab Emirates/-): 5 in t ... show more (mod_security) mod_security (id:240335) triggered by 5.30.129.71 (AE/United Arab Emirates/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
Anonymous	2026-06-18 20:50:38 (8 hours ago)	[redacted] 5.30.129.71 - - [18/Jun/2026:22:49:55 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jet ... show more [redacted] 5.30.129.71 - - [18/Jun/2026:22:49:55 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 5.30.129.71 - - [18/Jun/2026:22:50:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 5.30.129.71 - - [18/Jun/2026:22:50:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" [redacted] 5.30.129.71 - - [18/Jun/2026:22:50:26 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" [redacted] 5.30.129.71 - - [18/Jun/2026:22:50:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)" ... show less	Hacking Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 190.181.101.197

🇺🇸 205.210.31.96

🇺🇸 194.187.179.8

🇨🇦 168.138.90.7

🇺🇸 104.207.36.46

🇫🇷 92.222.229.126

🇳🇱 89.21.67.188

🇳🇱 89.21.67.131

🇯🇴 185.193.176.121

🇻🇳 165.99.16.135

🇸🇬 143.198.203.76

🇺🇸 20.42.104.13

🇳🇱 193.25.217.247

🇧🇷 187.51.212.130

🇮🇳 182.79.170.180

🇺🇸 172.236.126.127

🇺🇸 162.216.150.119

🇮🇳 152.58.189.184

🇮🇹 151.78.129.189

🇺🇸 96.8.116.34