Very similar to this were a handful of resellers of resellers in Amsterdam that would totally ignore abuse reports and allow hosting anything. They were half a block from The Hague and an Interpol office. They would get raided a few times a year. I am still unsure how they managed to run for a long time unless they were a honeypot looking for specific targets.
I don't know who was ultimately the upstream reseller or hosting provider. These were all dodgy fly-by-night resellers of resellers that were in the same place. Their CIDR blocks are still active and I still get bad traffic from them. Each CIDR block was swipped out to each reseller.
