Loading...

95.211.58.114 is in Amsterdam, Netherlands

95.211.58.114 is known for DDOS, directory harvest, firewall alert, hacking.

The report has been created on Nov 27, 2014 21:54:17
The IP address 95.211.58.114 belongs to LeaseWeb B.V. ISP in Amsterdam (Noord-Holland, 07), Netherlands (52.3499984741 and 4.91669988632). The hostname is battlecruiser.6scan.com.
Netherlands (Kingdom of the Netherlands, NLD) is a High income: OECD country in Europe & Central Asia. The currency is Euro.
As of Nov 27, 2014 21:54:17 we have 9 complaint(s) about 95.211.58.114. Based on our records, the 95.211.58.114 has been involved in DDOS, directory harvest, firewall alert, hacking, etc.

95.211.58.114

IP Address Country:  Netherlands (NL)
IP Address Region:07 Noord-Holland
IP Address City:Amsterdam
IP Postal Code
IP Address Area Code0
IP Metro Code0
IP Address Latitude:52.3499984741
IP Address Longitude:4.91669988632
IP Address ISP: LeaseWeb B.V.
Organisation:
IP Address Proxy:
IP Address Host:battlecruiser.6scan.com
Map is loading...

If 95.211.58.114 is causing you trouble (doing SPAM, brute-force, DOS attack, phishing, or other fraud), you can report the abuser right here!



We have 9 complaints about 95.211.58.114


Anonymous user from 180.253.120.103 in Indonesia
>8 months agoMy Security detect it as something dangerous - in DDOS
"This is weird, battlecruiser.6scan.com trying to find many page that I don't have it, if They're coming, my server is going down."
>2 years agoConstantly attempting to hack site - in Hacking
"Constantly attempting to hack site. Constantly attempting to hack site. Constantly attempting to hack site. Constantly attempting to hack site. Constantly attempting to hack site"

Anonymous user from 92.107.200.95 in Switzerland
>2 years ago95.211.58.114 - in Hacking
"attempting to log in, send strange requests, scanning whole site, I believe its doing all...spam, brute-force, dos attack, phising. Seems really dangerous and its driving me crazy
attempting to find files
happening everyday
"

Anonymous user from 83.29.224.152 in Poland
>2 years ago? - in Directory Harvest
"WordPress Firewall has detected and blocked a potential attack!
Web Page: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Warning: URL may contain dangerous content!
Offending IP: 95.211.58.114 [ Get IP location ]
Offending Parameter: dwn_file = ../wp-rss.php
This may be a "Directory Traversal Attack."

"

Anonymous user from 38.123.104.44 in United States
>2 years agoWordPress Attach - in Directory Harvest
"To many 401 error searches. Seem looking for infected plugins to exploit. The attack is happening almost everyday but the systems blocks it. Wold be nice to block complete this IP."

Anonymous user from 2.224.221.250 in
>2 years agohack my word press site. Thousen of pages uploaded... - in Hacking
"it has uploaded 3500 pages (and it continue)...it add .php files into themes directory (htaccess and other files)...this guy should be killed as faster as possible i think...."

Anonymous user from 60.242.196.155 in Australia
>2 years agoHacking attempt from IP 95.211.58.114 - in Hacking
"Someone from the IP address
95.211.58.114
has been attempting to log in to my WordPress
website http://mel.monovee.com. (I have traced
this IP address to leaseweb.com but that appears
fraudulent as well.)

They attempted to modify the readme.html (which has
been deleted) and also attempting to run a script on
the home page.

Please investigate this for me, as my site was infected
last week (and deactivated), and just recently cleaned up
and reactivated.

Sincerely,
A.K. Bartolazo"

Anonymous user from 81.227.120.16 in Sweden
>2 years agoSeems like a hacking/phishing attempt - in Hacking
"Hitting my site dozens of times a minute

95.211.58.114[battlecruiser.6scan.com]
Full Browser ID: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1
Location: Netherlands Amsterdam, Netherlands
HTTP Headers:
ACCEPT image/png,image/*;q=0.8,*/*;q=0.5
USER_AGENT Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1
X_VARNISH 1862663493
HOST
CONNECTION close"

Anonymous user from 85.73.99.113 in Greece
>2 years agoAttempt to hack my site - in Firewall Alert
"Hello. I have several messages per day from my firewall plugin that i have installed on my website that through this ip is trying to hack my site. Please do something. Thanks!"

WHOIS for 95.211.58.114

[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to '95.211.58.0 - 95.211.58.255'

inetnum: 95.211.58.0 - 95.211.58.255
netname: LEASEWEB
descr: LeaseWeb
descr: P.O. Box 93054
descr: 1090BB AMSTERDAM
descr: Netherlands
descr: www.leaseweb.com
remarks: Please send email to "abuse@leaseweb.com" for complaints
remarks: regarding portscans, DoS attacks and spam.
country: NL
admin-c: LSW1-RIPE
tech-c: LSW1-RIPE
status: ASSIGNED PA
mnt-by: OCOM-MNT
source: RIPE # Filtered

person: RIP Mean
address: P.O. Box 93054
address: 1090BB AMSTERDAM
address: Netherlands
phone: +31 20 3162880
fax-no: +31 20 3162890
abuse-mailbox: abuse@leaseweb.com
nic-hdl: LSW1-RIPE
mnt-by: OCOM-MNT
source: RIPE # Filtered

% Information related to '95.211.0.0/16AS16265'

route: 95.211.0.0/16
descr: LEASEWEB
origin: AS16265
remarks: LeaseWeb
mnt-by: OCOM-MNT
source: RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.9.3 (WHOIS3)

Other DDOS, Directory Harvest, Firewall Alert, Hacking Complaints

13 hr 40 min  ago Poland91.237.69.17"HackAttack: [Trojan Scan]"
14 hr 55 min  ago United States208.67.222.222"Microsoft TMG reporting All ports Scan "
16 hr 18 min  ago China121.205.150.163"Angry man"
21 hr 7 min  ago India117.201.15.250"HackAttack: [Trojan Scan]"
21 hr 11 min  ago Turkey37.247.97.139"HackAttack: [SPI:Illegal connection state attack]"
1 days  ago Romania95.77.168.192"HackAttack: [Trojan Scan]"
1 days  ago Sweden213.89.131.35"HackAttack: [Trojan Scan]"
1 days  ago Sweden213.89.131.35"HackAttack: [Trojan Scan]"
1 days  ago Sweden213.89.131.35"HackAttack: [Trojan Scan]"
1 days  ago Poland94.23.90.126"HackAttack: [Net Bus Scan]"