JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.253.208.102

104.253.208.102 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 12%: ?

12%

ISP	Subnet Digital LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202015
Domain Name	subnetdigital.com
Country	🇺🇸 United States of America
City	Plano, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.253.208.102

Whois 104.253.208.102

IP Abuse Reports for 104.253.208.102:

This IP address has been reported a total of 6 times from 2 distinct sources. 104.253.208.102 was first reported on April 4th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 bsoft.de	2026-06-18 15:18:08 (1 day ago)	104.253.208.102 - - [18/Jun/2026:17:18:06 +0200] "GET /robots.txt HTTP/1.1" 301 169 "-" "Googlebot"	Bad Web Bot Web App Attack
🇨🇭 4server	2026-05-19 09:56:12 (1 month ago)	[TueMay1911:56:06.4675032026][security2:error][pid4049711:tid4049951][client104.253.208.102:0]ModSec ... show more [TueMay1911:56:06.4675032026][security2:error][pid4049711:tid4049951][client104.253.208.102:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"www.r102.ch\"][uri\"/\"][unique_id\"agwztjTk-EmvqOuYSokxuwAAAFA\"] show less	Hacking Web App Attack
🇨🇭 4server	2026-04-08 18:50:08 (2 months ago)	[WedApr0820:50:05.2733002026][security2:error][pid2946403:tid2946424][client104.253.208.102:0]ModSec ... show more [WedApr0820:50:05.2733002026][security2:error][pid2946403:tid2946424][client104.253.208.102:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"www.r102.ch\"][uri\"/\"][unique_id\"adajXcujOfvF057TGpOsGwAAABI\"] show less	Hacking Web App Attack
🇨🇭 4server	2026-04-07 19:20:14 (2 months ago)	[TueApr0721:20:07.0794142026][security2:error][pid1943287:tid1943302][client104.253.208.102:0]ModSec ... show more [TueApr0721:20:07.0794142026][security2:error][pid1943287:tid1943302][client104.253.208.102:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"www.r102.ch\"][uri\"/\"][unique_id\"adVY58orxRM4rhOk8i7FfAAAAEk\"] show less	Hacking Web App Attack
🇨🇭 4server	2026-04-06 08:50:13 (2 months ago)	[MonApr0610:50:07.8350282026][security2:error][pid2532431:tid2532439][client104.253.208.102:0]ModSec ... show more [MonApr0610:50:07.8350282026][security2:error][pid2532431:tid2532439][client104.253.208.102:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"www.r102.ch\"][uri\"/\"][unique_id\"adNzvw0DY5gkTBKiC1tw_wAAAIE\"] show less	Hacking Web App Attack
🇨🇭 4server	2026-04-04 21:20:10 (2 months ago)	[SatApr0423:20:04.1653722026][security2:error][pid2934680:tid2934684][client104.253.208.102:0]ModSec ... show more [SatApr0423:20:04.1653722026][security2:error][pid2934680:tid2934684][client104.253.208.102:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"www.r102.ch\"][uri\"/\"][unique_id\"adGAhM-wiN-5KmLpNU6BGAAAAMA\"] show less	Hacking Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 2001:448a:b090:aea0:c565:2fbd:f2ba:3ac

🇧🇷 201.91.237.206

🇲🇽 187.192.86.153

🇨🇳 223.100.248.244

🇺🇸 209.50.168.85

🇳🇱 195.178.110.188

🇭🇺 193.68.57.43

🇨🇳 175.175.147.138

🇵🇰 175.107.32.186

🇺🇸 124.198.131.76

🇸🇬 114.119.144.29

🇨🇳 112.86.225.80

🇧🇩 103.76.46.152

🇺🇸 100.24.119.120

🇺🇸 64.62.197.93

🇨🇳 14.103.127.234

🇺🇸 13.89.124.220

🇬🇧 2a06:4880:6000::7d

🇰🇷 211.106.137.135

🇰🇷 165.154.52.159