JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.235.68.106

111.235.68.106 was found in our database!

This IP was reported 162 times. Confidence of Abuse is 100%: ?

100%

ISP	POWERGRID TELESERVICES LIMITED
Usage Type	Fixed Line ISP
ASN	AS132215
Hostname(s)	111.235.68.106.static-bihar.powertel.in
Domain Name	powergrid.in
Country	🇮🇳 India
City	Patna, Bihar

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.235.68.106

Whois 111.235.68.106

IP Abuse Reports for 111.235.68.106:

This IP address has been reported a total of 162 times from 61 distinct sources. 111.235.68.106 was first reported on May 27th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 factor1	2026-06-22 15:47:25 (5 hours ago)	Fail2ban at churndash Reports Abuse.	Brute-Force Web App Attack
🇩🇪 IloGus	2026-06-22 12:45:24 (8 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇨🇭 4server	2026-06-22 06:52:52 (14 hours ago)	[MonJun2208:52:45.3115372026][security2:error][pid187517:tid187979][client111.235.68.106:0]ModSecuri ... show more [MonJun2208:52:45.3115372026][security2:error][pid187517:tid187979][client111.235.68.106:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"hosting-domain-swiss.ch\"][uri\"/xmlrpc.php\"][unique_id\"ajjbvRRO85lomSztC0kxIAAAANI\"] show less	Hacking Web App Attack
🇫🇷 Lunix	2026-06-22 05:28:18 (15 hours ago)		Brute-Force Web App Attack
🇦🇺 clapper	2026-06-22 05:20:10 (16 hours ago)	(mod_security) mod_security (id:350202) triggered by 111.235.68.106 (IN/India/111.235.68.106.static- ... show more (mod_security) mod_security (id:350202) triggered by 111.235.68.106 (IN/India/111.235.68.106.static-bihar.powertel.in): 5 in the last 600 secs; ID: rub show less	Brute-Force Bad Web Bot
Anonymous	2026-06-22 00:39:34 (20 hours ago)	Fail2ban filtered ...	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-21 22:25:53 (23 hours ago)		Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-21 22:25:07 (23 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-21 16:16:08 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 factor1	2026-06-21 08:18:47 (1 day ago)	Fail2ban at atlas Reports Abuse.	Bad Web Bot
🇬🇧 Greg Poulson	2026-06-21 07:26:05 (1 day ago)	Our website was hit by this DDOS at a rate of 6 in 5 minutes.	DDoS Attack Web Spam Brute-Force
Anonymous	2026-06-21 06:34:36 (1 day ago)	111.235.68.106 - - [21/Jun/2026:08:33:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 ... show more 111.235.68.106 - - [21/Jun/2026:08:33:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/86.0.0.0 Safari/537.36" 111.235.68.106 - - [21/Jun/2026:08:33:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/86.0.0.0 Safari/537.36" 111.235.68.106 - - [21/Jun/2026:08:34:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" 111.235.68.106 - - [21/Jun/2026:08:34:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36" 111.235.68.106 - - [21/Jun/2026:08:34:34 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Mozilla/5.0 (Windows NT 6.2; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇫🇷 Kenshin869	2026-06-21 05:40:01 (1 day ago)	Wordpress unauthorized access attempt	Brute-Force
🇬🇧 andypiper	2026-06-21 01:01:43 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
Anonymous	2026-06-21 00:13:59 (1 day ago)		Bad Web Bot Web App Attack

Showing 1 to 15 of 162 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 191.6.112.44

🇺🇸 172.212.174.123

🇫🇮 147.185.133.85

🇮🇪 146.70.189.243

🇨🇳 106.115.32.214

🇳🇵 103.98.129.247

🇮🇳 103.86.180.10

🇷🇴 92.118.39.205

🇺🇿 84.54.90.51

🇱🇻 81.30.98.62

🇺🇸 65.110.40.23

🇧🇷 20.197.238.124

🇰🇷 220.88.220.59

🇬🇧 217.146.80.123

🇨🇦 209.50.176.105

🇧🇷 190.89.137.107

🇭🇺 176.63.28.208

🇮🇳 167.71.239.213

🇺🇸 167.71.125.9

🇨🇳 125.77.73.145