IP Address Inspector

134.157.0.129

The Project Honey Pot system has detected behavior from the IP address consistent with that of a mail server and dictionary attacker. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Geographic Location	France (Ile-de-France)

First Received From	approximately 14 years, 5 months, 4 weeks ago
Last Received From	within 2 months, 2 weeks
Number Received	112 email(s) sent from this IP

Dictionary Attacks	94 email(s) sent from this IP
First Received From	approximately 17 years, 6 months, 3 weeks ago
Last Received From	within 15 years, 5 months, 4 weeks

Associated Harvesters
69.46.20.87 \| HS
115.124.113.134 \| HS
172.68.142.228 \| Se
208.66.195.9 \| H
183.17.63.115 \| HS
132.232.42.174 \| H
91.121.106.104 \| HS
80.241.219.181 \| H
113.78.65.24 \| H
173.45.70.178 \| HSD
66.232.101.78 \| HSW
58.255.183.30 \| H
69.164.218.254 \| H
75.125.47.162 \| HSDW
113.69.165.235 \| HS
195.229.236.245 \| HC
89.122.29.77 \| H
66.235.180.7 \| HS
89.122.213.193 \| H
86.34.4.118 \| HS
207.150.194.26 \| HS
74.208.154.143 \| HS
209.160.64.124 \| HS
207.150.196.55 \| HS
109.163.231.144 \| H
195.1.61.193 \| H
207.150.196.53 \| HS
203.82.79.103 \| HSD
75.125.52.146 \| H
207.182.133.106 \| HSD
69.77.186.118 \| H
66.232.123.38 \| HS
115.124.113.132 \| HS
207.150.196.50 \| HS
174.142.104.81 \| HS
216.40.222.50 \| H
207.150.196.49 \| HS
207.150.196.51 \| HS
207.150.196.48 \| HS

IPs In The Neighborhood
134.157.0.0
134.157.0.1
134.157.0.144 \| SD
134.157.0.145 \| S
134.157.0.152 \| S
134.157.0.153 \| S
134.157.1.63

Example Messages Sent From 134.157.0.129

Subject: Hallo

Subject: Hej

Subject: Re: Hallo

Example User Names Used By 134.157.0.129

User-name: asd

User-name: dwcyua

User-name: lswyoest2000

User-name: kicharminghelfritz

User-name: acbelia_depperschmidt

User-name: acbrookshaw4618

User-name: acalec.d.maginnis

User-name: asconcertlatia

User-name: sefinedrawngathering25

User-name: trdelcieamoriello

User-name: hsaloofcelia

3 comment(s) - Comment on this IP | Collapse All

K.Wilson11 commented...

Western Union fraud attempt, no way is this IP clean.
May 27 2014 05:42 AM

K.Wilson11 commented...

Received: from shiva.upmc.fr (shiva144.upmc.fr [134.157.0.144])
by shiva.jussieu.fr (8.14.4/jtpda-5.4) with ESMTP id s4R8bfc0004220
; Tue, 27 May 2014 10:37:55 +0200 (CEST)
Received: from courriel.upmc.fr (courriel5.reseau.jussieu.fr [134.157.0.196])
by shiva.upmc.fr (8.14.4/jtpda-5.5pre1) with ESMTP id s4R8ZwWS039128
; Tue, 27 May 2014 10:36:01 +0200 (CEST)
X-Ids:144
Message-Id:
X-CIds:courriel5
Received: from [172.20.10.3] ([113.210.133.193]) (authentified, mech=PLAIN)
by courriel.upmc.fr (8.14.5/jtpda-5.5pre1) with ESMTP id s4R8Yu4r062359 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
; Tue, 27 May 2014 10:35:46 +0200 (CEST) (envelope-from wumt@upmc.fr)
Content-Type: multipart/alternative; boundary="===============1302247309=="
MIME-Version: 1.0
Subject: Transaction #: WUMT-MY7910****/2014!!!
To: wumt@upmc.fr
From: WESTERN UNION
Date: Tue, 27 May 2014 16:35:35 +0800
Reply-To: fleewumt@qq.com
May 27 2014 05:41 AM

H.Ramsdell commented...

x-store-info:4r51+eLowCe79NzwdU2kR3P+ctWZsO+J
Authentication-Results: hotmail.com; sender-id=temperror (sender IP is 134.157.0.129) header.from=ro@ipgp.fr; dkim=none header.d=ipgp.fr; x-hmca=none
X-Message-Status: n:0:n
X-SID-PRA: UK INTERNATIONAL DRAW HEADQUATERS
X-DKIM-Result: None
X-AUTH-Result: NONE
X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtHRD0yO1NDTD00
X-Message-Info: UE3EDmqd942DD/FiOVRVjis/Dyf9mmIuk2syrh6fRGFs7ra/PW5OyEhwOZI8/K+pBv+A5PvxV6or7p2GHjOXlCDW4Ru2vT6d+nKkLBHzK3PcuQaN/VVa0CDxP25jxr7Fj84QAfICllU=
Received: from shiva.jussieu.fr ([134.157.0.129]) by SNT0-MC3-F42.Snt0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900);
Mon, 13 Feb 2012 22:47:22 -0800
Received: from mailhost.ipgp.fr (mailhost.ipgp.fr [194.254.225.2])
by shiva.jussieu.fr (8.14.4/jtpda-5.4) with ESMTP id q1E6lDtD096842
; Tue, 14 Feb 2012 07:47:13 +0100 (CET)
X-Ids:164
Received: from informatix.ipgp.fr (informatix.ipgp.fr [10.0.11.7])
by mailhost.ipgp.fr (8.13.1/jtpda-5.4) with ESMTP id q1E6lBNr071223
; Tue, 14 Feb 2012 07:47:11 +0100 (CET)
Received: from 113.211.52.72
(SquirrelMail authenticated user roy)
by informatix.ipgp.fr with HTTP;
Tue, 14 Feb 2012 07:47:12 +0100 (CET)
Message-ID:
Date: Tue, 14 Feb 2012 07:47:12 +0100 (CET)
Subject: Ref No: UK/9420X2/68
From: "UK INTERNATIONAL DRAW HEADQUATERS"
Reply-To: garry.whit14@yahoo.com.hk
User-Agent: SquirrelMail/1.4.15
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Bcc:
Return-Path: ro@ipgp.fr
X-OriginalArrivalTime: 14 Feb 2012 06:47:22.0960 (UTC) FILETIME=[814C3500:01CCEAE4]
February 14 2012 05:19 AM

Page generated on: May 08 2024 03:19:36 AM

Please note: being listed on these pages does not necessarily mean an IP address, domain name, or any other information is owned by a spammer. For example, it may have been hijacked from its true owner and used by a spammer.

Want to keep this IP address off your website? Start taking advantage of http:BL.

If you are the owner of this IP address, you can whitelist it by connecting to this page from the IP itself (or from an IP within /24). Alternatively, the IP will be auto excused after 90 days of no activity.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot