Loading... is in Amsterdam, Netherlands is known for DDOS, directory harvest, firewall alert, hacking.

The report has been created on Oct 04, 2015 10:07:50
The IP address belongs to LeaseWeb B.V. ISP in Amsterdam (Noord-Holland, 07), Netherlands (52.3499984741 and 4.91669988632). The hostname is oosterlooduiven.eu.
Netherlands (Kingdom of the Netherlands, NLD) is a High income: OECD country in Europe & Central Asia. The currency is Euro.
As of Oct 04, 2015 10:07:50 we have 9 complaint(s) about Based on our records, the has been involved in DDOS, directory harvest, firewall alert, hacking, etc.

IP Address Country:  Netherlands (NL)
IP Address Region:07 Noord-Holland
IP Address City:Amsterdam
IP Postal Code
IP Address Area Code0
IP Metro Code0
IP Address Latitude:52.3499984741
IP Address Longitude:4.91669988632
IP Address ISP: LeaseWeb B.V.
IP Address Proxy:
IP Address Host:oosterlooduiven.eu
Map is loading...

If is causing you trouble (doing SPAM, brute-force, DOS attack, phishing, or other fraud), you can report the abuser right here!

We have 9 complaints about

Anonymous user from in Indonesia
>1 year agoMy Security detect it as something dangerous - in DDOS
"This is weird, battlecruiser.6scan.com trying to find many page that I don't have it, if They're coming, my server is going down."
>3 years agoConstantly attempting to hack site - in Hacking
"Constantly attempting to hack site. Constantly attempting to hack site. Constantly attempting to hack site. Constantly attempting to hack site. Constantly attempting to hack site"

Anonymous user from in Switzerland
>3 years ago95.211.58.114 - in Hacking
"attempting to log in, send strange requests, scanning whole site, I believe its doing all...spam, brute-force, dos attack, phising. Seems really dangerous and its driving me crazy
attempting to find files
happening everyday

Anonymous user from in Poland
>3 years ago? - in Directory Harvest
"WordPress Firewall has detected and blocked a potential attack!
Web Page: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Warning: URL may contain dangerous content!
Offending IP: [ Get IP location ]
Offending Parameter: dwn_file = ../wp-rss.php
This may be a "Directory Traversal Attack."


Anonymous user from in United States
>3 years agoWordPress Attach - in Directory Harvest
"To many 401 error searches. Seem looking for infected plugins to exploit. The attack is happening almost everyday but the systems blocks it. Wold be nice to block complete this IP."

Anonymous user from in
>3 years agohack my word press site. Thousen of pages uploaded... - in Hacking
"it has uploaded 3500 pages (and it continue)...it add .php files into themes directory (htaccess and other files)...this guy should be killed as faster as possible i think...."

Anonymous user from in Australia
>3 years agoHacking attempt from IP - in Hacking
"Someone from the IP address
has been attempting to log in to my WordPress
website http://mel.monovee.com. (I have traced
this IP address to leaseweb.com but that appears
fraudulent as well.)

They attempted to modify the readme.html (which has
been deleted) and also attempting to run a script on
the home page.

Please investigate this for me, as my site was infected
last week (and deactivated), and just recently cleaned up
and reactivated.

A.K. Bartolazo"

Anonymous user from in Sweden
>3 years agoSeems like a hacking/phishing attempt - in Hacking
"Hitting my site dozens of times a minute[battlecruiser.6scan.com]
Full Browser ID: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1
Location: Netherlands Amsterdam, Netherlands
HTTP Headers:
ACCEPT image/png,image/*;q=0.8,*/*;q=0.5
USER_AGENT Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1
X_VARNISH 1862663493

Anonymous user from in Greece
>3 years agoAttempt to hack my site - in Firewall Alert
"Hello. I have several messages per day from my firewall plugin that i have installed on my website that through this ip is trying to hack my site. Please do something. Thanks!"


[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to ' -'

inetnum: -
netname: LEASEWEB
descr: LeaseWeb
descr: P.O. Box 93054
descr: 1090BB AMSTERDAM
descr: Netherlands
descr: www.leaseweb.com
remarks: Please send email to "abuse@leaseweb.com" for complaints
remarks: regarding portscans, DoS attacks and spam.
country: NL
admin-c: LSW1-RIPE
tech-c: LSW1-RIPE
mnt-by: OCOM-MNT
source: RIPE # Filtered

person: RIP Mean
address: P.O. Box 93054
address: 1090BB AMSTERDAM
address: Netherlands
phone: +31 20 3162880
fax-no: +31 20 3162890
abuse-mailbox: abuse@leaseweb.com
nic-hdl: LSW1-RIPE
mnt-by: OCOM-MNT
source: RIPE # Filtered

% Information related to ''

origin: AS16265
remarks: LeaseWeb
mnt-by: OCOM-MNT
source: RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.9.3 (WHOIS3)

Other DDOS, Directory Harvest, Firewall Alert, Hacking Complaints

1 days  ago France5.135.1.84"HackAttack: [Trojan Scan]"
1 days  ago Canada208.88.196.74"HackAttack: [SPI:Illegal connection state attack]"
1 days  ago India103.31.144.5"HackAttack: [SPI:Illegal connection state attack]"
1 days  ago India27.106.17.94"HackAttack: [SPI:Illegal connection state attack]"
1 days  ago Finland185.26.48.184"HackAttack: [SPI:Illegal connection state attack]"
1 days  ago Finland185.26.48.184"HackAttack: [SPI:Illegal connection state attack]"
2 days  ago China61.160.213.108"Printer hacking"
2 days  ago Finland185.26.48.184"HackAttack: [SPI:Illegal connection state attack]"
3 days  ago Japan43.229.53.62"[Abuse] Attack ssh server"
3 days  ago Korea, Republic Of42.82.104.204"HackAttack: [SPI:Illegal connection state attack]"