JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 71.6.238.197

71.6.238.197 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 15%: ?

15%

ISP	Root Evidence, Inc
Usage Type	Data Center/Web Hosting/Transit
ASN	AS10439
Hostname(s)	rootevidence.com
Domain Name	rootevidence.com
Country	🇺🇸 United States of America
City	San Diego, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 71.6.238.197

Whois 71.6.238.197

IP Abuse Reports for 71.6.238.197:

This IP address has been reported a total of 11 times from 4 distinct sources. 71.6.238.197 was first reported on March 31st 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 BerHav	2026-06-04 20:17:46 (17 hours ago)	8: port=888 client is trying to connect by TLS, not allowed for this port.	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 19:57:47 (18 hours ago)	7: port=888 Binary protocol request-> l%00%0B%00%00%00%00%00%00%00%00%00	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 19:37:47 (18 hours ago)	6: port=888 Binarycommand starting with 0: %00%00%A4%FFSMBr%00%00%00%00%08%01@%00%00%00%00%00%00%00% ... show more 6: port=888 Binarycommand starting with 0: %00%00%A4%FFSMBr%00%00%00%00%08%01@%00%00%00%00%00%00%00%00%00%00%00%00%00%00@%06%00%00%01%00%00%81%00%02PC NETWORK PROG show less	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 19:17:47 (18 hours ago)	5: port=888 client is trying to connect by TLS, not allowed for this port.	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 18:57:47 (19 hours ago)	4: port=888 client is trying to connect by TLS, not allowed for this port.	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 18:37:47 (19 hours ago)	3: port=888 Binarycommand starting with 0:	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 18:17:47 (19 hours ago)	2: port=888 Binary protocol request-> %1E%00%06%01%00%00%01%00%00%00%00%00%00%07version%04bind%00%00 ... show more 2: port=888 Binary protocol request-> %1E%00%06%01%00%00%01%00%00%00%00%00%00%07version%04bind%00%00%10%00%03 show less	Port Scan IoT Targeted
🇳🇱 BerHav	2026-06-04 17:57:47 (20 hours ago)	1: port=888 Binary protocol request-> %80%00%00(r%FE%1D%13%00%00%00%00%00%00%00%02%00%01%86%A0%00%01 ... show more 1: port=888 Binary protocol request-> %80%00%00(r%FE%1D%13%00%00%00%00%00%00%00%02%00%01%86%A0%00%01%97\|%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%0 show less	Port Scan IoT Targeted
🇩🇪 filstal.org	2026-05-06 05:21:01 (4 weeks ago)	Automated security scan or exploit attempt detected by Fail2Ban	Bad Web Bot Web App Attack
🇯🇵 VXG-NET	2026-04-22 19:12:36 (1 month ago)	port=1524, indicator_type=scan	Port Scan
🇳🇱 Roderic	2026-03-31 05:38:29 (2 months ago)	(bind) bind triggered by 71.6.238.197 (US/United States/-/-/rootevidence.com/[redacted])	DNS Poisoning

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2400:cb00:658:1000:bd95:364a:8537:cdb9

🇳🇱 185.242.226.18

🇸🇪 92.112.217.235

🇳🇱 85.121.127.153

🇧🇬 80.72.81.20

🇸🇬 45.39.73.117

🇨🇦 45.39.13.198

🇺🇸 17.132.70.160

🇷🇴 2.57.121.112

🇲🇦 196.117.1.156

🇬🇧 195.96.139.228

🇲🇽 187.140.5.12

🇲🇽 177.245.224.146

🇵🇱 143.20.97.121

🇺🇸 129.121.75.86

🇻🇳 123.31.110.74

🇬🇧 107.181.132.183

🇮🇹 93.92.78.76

🇷🇺 89.22.242.38

🇬🇧 81.19.219.224