IP Address Inspector

ATTENTION
  • This IP has not seen any suspicious activity within the last 3 months. This IP is most likely clean and trustworthy now. (This record will remain public for historical purposes, however.)

194.25.134.17 Spam ServerDictionary Attacker

The Project Honey Pot system has detected behavior from the IP address consistent with that of a mail server and dictionary attacker. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Lookup IP In: Domain Tools | SpamHaus | Spamcop | SenderBase | Google Groups | Google

Geographic Location Germany Germany (Weiterstadt, Hessen)

First Received From approximately 9 years, 3 weeks ago
Last Received From within 4 months, 2 weeks
Number Received 449 email(s) sent from this IP

Dictionary Attacks 24 email(s) sent from this IP
First Received From approximately 7 years, 4 months, 4 weeks ago
Last Received From within 9 months, 2 weeks

Associated Harvesters
67.86.138.59 | HC United States
189.84.27.64 | HS Brazil
207.58.242.51 | H United States
74.12.54.158 | H Canada
74.12.44.99 | H Canada
74.12.52.24 | H Canada
64.56.65.65 | H United States
74.12.59.84 | H Canada
207.112.5.99 | HS Canada
207.112.57.134 | H Canada
70.50.190.123 | H Canada
74.12.47.183 | HSD Canada
65.92.122.214 | H Canada
64.229.238.97 | H Canada
74.12.60.172 | H Canada
74.12.53.58 | H Canada
74.12.58.176 | HS Canada
217.136.230.136 | H Belgium
59.172.82.186 | H China
72.26.133.189 | H United States
67.19.114.226 | H United States
195.229.242.88 | H United Arab Emirates
195.229.236.245 | HC United Arab Emirates
65.2.229.108 | H United States
121.56.28.58 | H China
217.117.28.62 | H Lithuania
58.49.14.193 | H China
89.123.6.19 | HS Romania
89.122.29.76 | H Romania
89.123.27.173 | HS Romania
89.122.213.193 | H Romania
89.122.213.128 | H Romania
89.122.16.96 | H Romania
89.122.29.77 | H Romania
89.122.29.61 | H Romania
208.73.12.106 | H United States
109.203.112.4 | H Great Britain
216.40.220.18 | H United States
216.40.220.34 | H United States
208.66.195.5 | H United States
202.70.51.178 | HS Indonesia
207.150.196.56 | HS United States
89.122.29.79 | H Romania
89.122.224.179 | H Romania
207.150.196.54 | HS United States
69.77.186.118 | H Canada
209.160.64.186 | HS United States
207.150.196.51 | HS United States
66.232.101.78 | HSW United States
173.45.74.234 | HS United States
207.150.196.52 | HSW United States
173.45.77.106 | HS United States
66.235.180.7 | HS United States
209.160.72.139 | HS United States
74.208.154.143 | HS United States
121.56.28.105 | H China
207.150.196.49 | HS United States
115.124.113.133 | HS India
173.45.70.178 | HSD United States
69.46.20.87 | HS United States
207.150.196.48 | HS United States
66.232.123.38 | HS United States
209.160.64.102 | HSD United States
151.83.150.217 | H Italy
79.45.140.249 | HS Italy
151.82.62.8 | H Italy
151.80.11.162 | HSC Italy
79.51.85.97 | H Italy
84.126.241.116 | H Spain
69.224.124.190 | H United States
174.142.104.81 | HS Canada
207.150.196.50 | HS United States
209.160.64.124 | HS United States
115.124.113.132 | HS India
115.124.113.134 | HS India
IPs In The Neighborhood
194.25.134.1 Germany
194.25.134.5 Germany
194.25.134.7 Germany
194.25.134.8 Germany
194.25.134.9 Germany
194.25.134.12 Germany
194.25.134.16 | S Germany
194.25.134.18 | SD Germany
194.25.134.19 | SD Germany
194.25.134.20 | SD Germany
194.25.134.21 | SD Germany
194.25.134.22 | S Germany
194.25.134.24 Germany
194.25.134.32 Germany
194.25.134.33 Germany
194.25.134.34 Germany
194.25.134.46 Germany
194.25.134.50 Germany
194.25.134.57 Germany
194.25.134.70 Germany
194.25.134.72 Germany
194.25.134.73 Germany
194.25.134.76 Germany
194.25.134.77 Germany
194.25.134.80 | SD Germany
194.25.134.81 | SD Germany
194.25.134.82 | SD Germany
194.25.134.83 | SD Germany
194.25.134.84 | SD Germany
194.25.134.85 | SD Germany
194.25.134.86 Germany
194.25.134.96 Germany
194.25.134.97 Germany
194.25.134.110 Germany
194.25.134.114 Germany
Example Messages Sent From 194.25.134.17
From:
Subject: Good afternoon.
From:
Subject: Greetings!
From:
Subject: Hey.
From:
Subject: Hi!
From:
Subject: OFFIZIELLE GEWINNBENACHRITIGUNG
From:
Subject: Good morning!
From:
Subject: Negocio Lucrativo
From:
Subject: scan documenti del 08.10.2015
From:
Subject: Neg
From:
Subject: Z
From:
Subject: Fwd: PROFOMA INVOICE REF NO: 334
From:
Subject: DHL Parcel Arrived 21:00
From:
Subject: Re : PI for new Order
From:
Subject: Helena would know you
From:
Subject: Invitation of your friend Helena!
From:
Subject: How is your search a right person?.
From:
Subject: Please send me photos!
From:
Subject: Discuss with her and see her photos
From:
Subject: Hi my friend. It's Helena!
From:
Subject: Hi stranger.
From:
Subject: Good morning my dear friend
From:
Subject: Nieuwe kenmerken ING Home'Bank 2016
From:
Subject: Comu
From:
Subject: Comu
Example User Names Used By 194.25.134.17
User-name: pickerel
User-name: tfwebber
User-name: vbadelia_kayes
User-name: trgene3704
User-name: ovdegarren09
User-name: dfendiraqi
User-name: yatesg427
User-name: loveablesc8
User-name: remedyq62
User-name: guardianchip4550
User-name: nebulouss
User-name: mongolians38
User-name: juliette2
User-name: perrybelowo44
User-name: alphafrederik
User-name: filtratqualifikation
User-name: mrhcd
M.Davis15 commented...
Return-path:
Received: from mailout02.t-online.de ([unknown] [194.25.134.17])
by vms172107.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id for x;
Thu, 09 Feb 2012 07:01:44 -0600 (CST)
Received: from fwd02.aul.t-online.de (fwd02.aul.t-online.de )
by mailout02.t-online.de with smtp id 1RvT0L-00005M-2A; Thu,
09 Feb 2012 13:21:37 +0100
Received: from User
(X7-t4eZQQtHZlN45cxPu9Zl9ExFFii3qD9HCh0Lr+7p84t0CQXPLX5eyV+Nmj+C2VI4+1ncTwX@[46.166.157.145])
by fwd02.t-online.de with esmtp id 1RvT08-1WpOgi0; Thu,
09 Feb 2012 13:21:24 +0100
Date: Thu, 09 Feb 2012 04:21:27 -0800
From: "Ban Ki-Moon."
Subject: PAYMENT NOTIFICATION ALERT
X-Originating-IP: [194.25.134.17]
Reply-to: patrickelvis65@yahoo.es
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: multipart/mixed; boundary="Boundary_(ID_QgZ2QavkuHeopABsosP40Q)"
X-Priority: 3
X-MSMail-priority: Normal
X-ID: X7-t4eZQQtHZlN45cxPu9Zl9ExFFii3qD9HCh0Lr+7p84t0CQXPLX5eyV+Nmj+C2VI4+1ncTwX
X-TOI-MSGID: 6fccfc42-19b8-40fd-9dc1-ad1ac53f535d
Original-recipient: rfc822;x
February 09 2012 08:26 AM

M.Davis15 commented...
Return-path:
Received: from mailout02.t-online.de ([unknown] [194.25.134.17])
by vms169127.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id for x;
Tue, 13 Dec 2011 17:59:43 -0600 (CST)
Received: from fwd11.aul.t-online.de (fwd11.aul.t-online.de )
by mailout02.t-online.de with smtp id 1RabN7-0000pA-7f; Wed,
14 Dec 2011 00:02:53 +0100
Received: from User
(SrQkemZGgtx5ZJUo-j6IXUZHzhwFdp2pxXO3hYLfR8TtjDfmiVkHMyNepiNDLcAeeGSyM4JwyN@[46.166.156.134])
by fwd11.t-online.de with esmtp id 1RabMR-14ZD3A0; Wed,
14 Dec 2011 00:02:11 +0100
Date: Tue, 13 Dec 2011 15:02:12 -0800
From: "First Bank Nigeria Plc"
Subject: Read the attached file regarding your unpaid funds.
X-Originating-IP: [194.25.134.17]
Reply-to: rev.jubrilgambari147@postino.net
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: multipart/mixed; boundary="Boundary_(ID_Q8iURrGriqSjnVPS4d0qpw)"
X-Priority: 3
X-MSMail-priority: Normal
X-ID: SrQkemZGgtx5ZJUo-j6IXUZHzhwFdp2pxXO3hYLfR8TtjDfmiVkHMyNepiNDLcAeeGSyM4JwyN
X-TOI-MSGID: f887300c-135d-48b3-8ef5-e6b9a4dada25
Original-recipient: rfc822;x
December 13 2011 05:14 PM

M.Davis15 commented...
Return-path:
Received: from mailout02.t-online.de ([unknown] [194.25.134.17])
by vms172057.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id for x;
Sun, 04 Dec 2011 09:09:55 -0600 (CST)
Received: from fwd04.aul.t-online.de (fwd04.aul.t-online.de )
by mailout02.t-online.de with smtp id 1RXDhK-00089a-Ew; Sun,
04 Dec 2011 16:09:46 +0100
Received: from User
(Tly11TZbwtNti3TOwHlEd3mYw8jNMosiEaXt8OUfaQm475eOEkpi2gT50qUKg+F+yCS5z4t9+E@[184.107.91.136])
by fwd04.t-online.de with esmtp id 1RXDhE-13kt6G0; Sun,
04 Dec 2011 16:09:40 +0100
Date: Sun, 04 Dec 2011 17:05:56 +0100
From: "JPMorgan Chase & Co."
Subject: 1 new security message alert
X-Originating-IP: [194.25.134.17]
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: text/html; charset=Windows-1251
Content-transfer-encoding: 8BIT
X-Priority: 3
X-MSMail-priority: Normal
X-ID: Tly11TZbwtNti3TOwHlEd3mYw8jNMosiEaXt8OUfaQm475eOEkpi2gT50qUKg+F+yCS5z4t9+E
X-TOI-MSGID: 5a596eea-a047-4e77-9351-cb0faf28e990
Original-recipient: rfc822;x
December 04 2011 07:18 AM

J.Woody commented...
SPAM SCAM(Beneficiary Scam)
From: MR B B EBONG anders@wg9us81ye.homepage.t-online.de Germany
Received:
from mailout02.t-online.de (unknown [194.25.134.17]); Wed, 7 Sep 2011 14:24:53 +0000 (UTC)
from fwd15.aul.t-online.de (fwd15.aul.t-online.de ) by mailout02.t-online.de with smtp id 1R1Is8-0001gP-6e; Wed, 07 Sep 2011 16:13:00 +0200
from User (rw+TBcZHgth6aKejCGXjk0cnc8WsDEvDsJutgM50z5mCZhkiUtTPSY9c+q1OdoGAAwHGfAOPoD@[24.94.191.108]) by fwd15.t-online.de with esmtp id 1R1Is1-0Yu6ts0; Wed, 7 Sep 2011 16:12:53 +0200
Reply-To: unionbk.org34.org@gmail.com
Return-Path: anders@wg9us81ye.homepage.t-online.de
Subject: BEST REGARDS
MR B B EBONG,
MANAGING DIRECTOR (UBN)
Our Ref: UBN/FCU/CBX/021/11
Tel: 234-80-26403077
EMAIL:unionbk.org234.org@gmail.com
kfogliano49@aol.com
JANET WHITE
September 07 2011 12:38 PM

J.Woody commented...
SPAM SCAM(Beneficiary Scam)
From: Mary Jones robin@wk0l7682t.homepage.t-online.de Germany
MIME-Version: 1.0
Message-ID: 1R1FlA-2AHuoi0@fwd20.t-online.de
Received:
from mailout02.t-online.de (unknown [194.25.134.17]); Wed, 7 Sep 2011 10:59:01 +0000 (UTC)
from fwd20.aul.t-online.de (fwd20.aul.t-online.de ) by mailout02.t-online.de with smtp id 1R1FlJ-0007Lt-PE; Wed, 07 Sep 2011 12:53:45 +0200
from User (VylZBcZZgtCTFg+dExoRNYcyNiUDlyofr6Xg-1d0ptzL2LtmbEYLViQCqKt8KU+z2mLOodzOek@[220.113.15.21]) by fwd20.t-online.de with esmtp id 1R1FlA-2AHuoi0; Wed, 7 Sep 2011 12:53:36 +0200
Reply-To: maryjonesunoffice@rediffmail.com
Return-Path: robin@wk0l7682t.homepage.t-online.de
Subject: Confirm
Mr. Fedrick Layman on email: fedricklaymanun112@gmail.com
Mrs. Mary Jones.
September 07 2011 04:47 AM

H.User7043 commented...
Spoofed PayPal email from above IP:

Need PayPal Account Information *URGENTLY*
http://www.paypal.com/cgi-bin/webscr?cmd=_login-run

(Above link is camouflaged, translates to:
http://web48.mis48.de/secure/us/ which refers to 85.114.132.156, Germany)
January 03 2011 10:44 PM

F.Prlja commented...
From this ip I got the answer to my question about an auto buy on 7 Jan 2005 . Recently I have proved email header and found not resolvable address and outblaze.com service that all speaks that this ip is used for criminal purposes.
May 13 2008 01:50 AM

Page generated on: July 30 2016 12:07:18 AM
John OrwinJason OrwinJasonJason
rubensaldana808@outlook.com valeriegonzalez749@gmail.com beatrizschulz962@vbwebmail.com tanishacollier247@gmail.com
do not follow this link

Privacy Policy | Terms of Use | About Project Honey Pot | FAQ | CloudFlare Site Protection | Contact Us

Copyright © 2004–16, Unspam Technologies, Inc. All rights reserved.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot

contact | wiki | email