JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.102.10.253

82.102.10.253 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 0%: ?

ISP	iomart Hosting Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS20860
Hostname(s)	h82-102-10-253.host.redstation.co.uk
Domain Name	iomart.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	Reading, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.102.10.253

Whois 82.102.10.253

IP Abuse Reports for 82.102.10.253:

This IP address has been reported a total of 74 times from 24 distinct sources. 82.102.10.253 was first reported on July 27th 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-09-19 16:21:51 (8 months ago)	(mod_security) mod_security (id:210740) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.c ... show more (mod_security) mod_security (id:210740) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 19 12:21:45.709750 2025] [security2:error] [pid 22103:tid 22103] [client 82.102.10.253:45130] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|gunsforukraine.com:443\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "gunsforukraine.com"] [uri "/"] [unique_id "aM2DGVKMfynkRzFgrtlFmwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2025-09-15 22:45:07 (8 months ago)	F2B - Malicious activity detected. URL Probing.	Hacking Bad Web Bot Web App Attack
🇩🇪 bescared	2025-09-13 02:34:18 (8 months ago)	F2B - Malicious activity detected. URL Probing.	Hacking Bad Web Bot Web App Attack
🇫🇷 Murazaki	2025-09-12 22:02:57 (8 months ago)	82.102.10.253 - - [12/Sep/2025:20:13:36 +0200] "CONNECT lemmy.balamb.fr:443 HTTP/1.1" 500 170 "-" "- ... show more 82.102.10.253 - - [12/Sep/2025:20:13:36 +0200] "CONNECT lemmy.balamb.fr:443 HTTP/1.1" 500 170 "-" "-" "-" ... show less	Hacking
🇺🇸 TPI-Abuse	2025-09-08 10:55:01 (9 months ago)	(mod_security) mod_security (id:217210) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.c ... show more (mod_security) mod_security (id:217210) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.co.uk): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 08 06:54:54.111974 2025] [security2:error] [pid 7213:tid 7213] [client 82.102.10.253:51218] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./](?::\\\\d+)?)?/[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S])?\|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?\|options \\\\)\\\\s+[\\\\w\\\\./]+\|get /[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line\|\|james.ahlstrom.name:443\|F\|4"] [data "CONNECT james.ahlstrom.name:443 HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "james.ahlstrom.name"] [uri "/"] [unique_id "aL61_u3yG2bcwBI6iDuwygAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2025-09-03 15:50:38 (9 months ago)	Blocked by UFW (TCP on 46534) Source port: 80 TTL: 52 Packet length: 52 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 46534) Source port: 80 TTL: 52 Packet length: 52 TOS: 0x00 This report (for 82.102.10.253) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 CommanderRoot	2025-08-30 18:33:12 (9 months ago)	Invalid HTTP request flood	DDoS Attack Web Spam
🇩🇪 Packets-Decreaser.NET	2025-08-30 11:23:03 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇳🇱 exxos	2025-08-16 19:03:01 (9 months ago)	HTTP1.x attacks	DDoS Attack
🇸🇪 Johan Finn	2025-08-15 16:58:49 (9 months ago)	malicious activity, botnet	Web App Attack
🇺🇸 TPI-Abuse	2025-08-15 05:28:35 (9 months ago)	(mod_security) mod_security (id:210831) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.c ... show more (mod_security) mod_security (id:210831) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 15 01:28:27.469436 2025] [security2:error] [pid 21964:tid 21964] [client 82.102.10.253:58790] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/usage_202508.html"] [unique_id "aJ7Fe04N_UOQ1v-o5h94qAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-12 12:28:04 (9 months ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
🇳🇱 exxos	2025-08-10 02:03:01 (9 months ago)	HTTP1.x attacks	DDoS Attack
🇺🇸 TPI-Abuse	2025-08-09 20:53:44 (9 months ago)	(mod_security) mod_security (id:217210) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.c ... show more (mod_security) mod_security (id:217210) triggered by 82.102.10.253 (h82-102-10-253.host.redstation.co.uk): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 09 16:53:38.063608 2025] [security2:error] [pid 18030:tid 18030] [client 82.102.10.253:45128] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./](?::\\\\d+)?)?/[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S])?\|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?\|options \\\\)\\\\s+[\\\\w\\\\./]+\|get /[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line\|\|www.kitebeach.com:443\|F\|4"] [data "CONNECT www.kitebeach.com:443 HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.kitebeach.com"] [uri "/"] [unique_id "aJe1UtsxD4g5lDckUIhtIAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 exxos	2025-07-27 22:13:22 (10 months ago)	http-no-verb	Hacking

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 201.103.214.31

🇷🇺 109.194.108.203

🇺🇸 108.181.253.233

🇺🇸 91.230.168.179

🇳🇱 64.89.162.58

🇨🇭 52.101.186.110

🇺🇸 18.189.74.1

🇻🇳 14.161.3.240

🇯🇵 8.216.8.160

🇬🇧 188.240.59.44

🇧🇷 177.85.247.230

🇨🇳 120.211.30.240

🇷🇴 92.118.39.62

🇫🇷 91.231.89.108

🇺🇸 91.230.168.61

🇺🇸 91.230.168.46

🇷🇺 83.246.133.16

🇺🇸 74.235.121.114

🇺🇸 64.62.197.74

🇮🇪 63.33.200.234