IP Address Inspector

194.25.134.17

The Project Honey Pot system has detected behavior from the IP address consistent with that of a mail server and dictionary attacker. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Lookup IP In: Domain Tools | SpamHaus | Spamcop | SenderBase | Google Groups | Google

Geographic Location Germany (Weiterstadt, Hessen)

First Received From approximately 7 years, 2 months, 2 weeks ago
Last Received From within 2 weeks
Number Received 390 email(s) sent from this IP

Dictionary Attacks 21 email(s) sent from this IP
First Received From approximately 5 years, 6 months, 3 weeks ago
Last Received From within 3 years, 1 month, 2 weeks

Associated Harvesters
79.119.249.123 | H
64.34.174.33 | H
208.66.195.6 | H
67.19.250.26 | H
74.53.243.18 | HC
195.50.215.239 | H
207.58.242.51 | H
74.12.54.158 | H
74.12.44.99 | H
74.12.52.24 | H
64.56.65.65 | H
74.12.59.84 | H
207.112.5.99 | HS
207.112.57.134 | H
70.50.190.123 | H
74.12.47.183 | HSD
65.92.122.214 | H
64.229.238.97 | H
74.12.60.172 | H
74.12.53.58 | H
74.12.58.176 | HS
217.136.230.136 | H
59.172.82.186 | H
72.26.133.189 | H
67.19.114.226 | H
195.229.242.88 | H
195.229.236.245 | HC
65.2.229.108 | H
121.56.28.58 | H
217.117.28.62 | H
58.49.14.193 | H
89.123.6.19 | HS
89.122.29.76 | H
89.123.27.173 | HS
89.122.213.193 | H
89.122.213.128 | H
89.122.16.96 | H
89.122.29.77 | H
89.122.29.61 | H
208.73.12.106 | H
109.203.112.4 | H
216.40.220.18 | H
216.40.220.34 | H
208.66.195.5 | H
202.70.51.178 | HS
207.150.196.56 | HS
89.122.29.79 | H
89.122.224.179 | H
207.150.196.54 | HS
69.77.186.118 | H
209.160.64.186 | HS
207.150.196.51 | HS
66.232.101.78 | HSW
173.45.74.234 | HS
207.150.196.52 | HS
173.45.77.106 | HS
66.235.180.7 | HS
209.160.72.139 | HS
74.208.154.143 | HS
121.56.28.105 | H
207.150.196.49 | HS
115.124.113.133 | HS
173.45.70.178 | HSD
69.46.20.87 | HS
207.150.196.48 | HS
66.232.123.38 | HS
209.160.64.102 | HSD
151.83.150.217 | H
79.45.140.249 | HS
151.82.62.8 | H
151.80.11.162 | HS
79.51.85.97 | H
84.126.241.116 | H
69.224.124.190 | H
174.142.104.81 | HS
IPs In The Neighborhood
194.25.134.8
194.25.134.9
194.25.134.12
194.25.134.16 | S
194.25.134.18 | SD
194.25.134.19 | SD
194.25.134.20 | SD
194.25.134.21 | SD
194.25.134.22 | S
194.25.134.24
194.25.134.46
194.25.134.50
194.25.134.70
194.25.134.72
194.25.134.73
194.25.134.77
194.25.134.80 | SD
194.25.134.81 | SD
194.25.134.82 | SD
194.25.134.83 | SD
194.25.134.84 | SD
194.25.134.85 | SD
194.25.134.86
194.25.134.114
Example Messages Sent From 194.25.134.17
From:
Subject: FINAL NOTIFICATION
From:
Subject: GET BACK TO ME
From:
Subject: Greetings
From:
Subject: Greetings,
From:
Subject: Hello Friend
From:
Subject: Importante
From:
Subject: Gewinn Notifikation
From:
Subject: Re: MY BUSINESS PROPOSAL
From:
Subject: NOTIFICATION OF YOUR FUNDS
From:
Subject: NOTICE ON YOUR PACKAGE REG #: SA335493RDK
From:
Subject: Your chase online access
From:
Subject: Arbeitsangebot vom 13.01.2014 Anzeigennummer WL/80
From:
Subject: Online Arbeitsagentur Arbeitsstellen
From:
Subject: Ihre Zahlung wurde storniert 14.01.2014
From:
Subject: Arbeitsangebot vom 13.01.2014 Kennnummer WT6861997
From:
Subject: Vorschlege in Ihrer Stadt M-82
From:
Subject: =?windows-1251?B?x+Dw4OHu8uDp8uUg7eAg8uXx8ujw7uLg7=?=
From:
Subject: Queridos no Senhor,
From:
Subject: =?windows-1251?B?0SD34PHg7Oggq1N3YXJvd=?=
From:
Subject: Diese Angebote sollten Sie sich anschauen
From:
Subject: Imp
Example User Names Used By 194.25.134.17
User-name: pickerel
User-name: tfwebber
User-name: vbadelia_kayes
User-name: trgene3704
User-name: ovdegarren09
User-name: dfendiraqi
User-name: yatesg427
User-name: loveablesc8
User-name: remedyq62
User-name: guardianchip4550
User-name: nebulouss
User-name: mongolians38
User-name: juliette2
User-name: perrybelowo44
User-name: alphafrederik
User-name: filtratqualifikation
M.Davis15 commented...
Return-path:
Received: from mailout02.t-online.de ([unknown] [194.25.134.17])
by vms172107.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id for x;
Thu, 09 Feb 2012 07:01:44 -0600 (CST)
Received: from fwd02.aul.t-online.de (fwd02.aul.t-online.de )
by mailout02.t-online.de with smtp id 1RvT0L-00005M-2A; Thu,
09 Feb 2012 13:21:37 +0100
Received: from User
(X7-t4eZQQtHZlN45cxPu9Zl9ExFFii3qD9HCh0Lr+7p84t0CQXPLX5eyV+Nmj+C2VI4+1ncTwX@[46.166.157.145])
by fwd02.t-online.de with esmtp id 1RvT08-1WpOgi0; Thu,
09 Feb 2012 13:21:24 +0100
Date: Thu, 09 Feb 2012 04:21:27 -0800
From: "Ban Ki-Moon."
Subject: PAYMENT NOTIFICATION ALERT
X-Originating-IP: [194.25.134.17]
Reply-to: patrickelvis65@yahoo.es
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: multipart/mixed; boundary="Boundary_(ID_QgZ2QavkuHeopABsosP40Q)"
X-Priority: 3
X-MSMail-priority: Normal
X-ID: X7-t4eZQQtHZlN45cxPu9Zl9ExFFii3qD9HCh0Lr+7p84t0CQXPLX5eyV+Nmj+C2VI4+1ncTwX
X-TOI-MSGID: 6fccfc42-19b8-40fd-9dc1-ad1ac53f535d
Original-recipient: rfc822;x
February 09 2012 08:26 AM

M.Davis15 commented...
Return-path:
Received: from mailout02.t-online.de ([unknown] [194.25.134.17])
by vms169127.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id for x;
Tue, 13 Dec 2011 17:59:43 -0600 (CST)
Received: from fwd11.aul.t-online.de (fwd11.aul.t-online.de )
by mailout02.t-online.de with smtp id 1RabN7-0000pA-7f; Wed,
14 Dec 2011 00:02:53 +0100
Received: from User
(SrQkemZGgtx5ZJUo-j6IXUZHzhwFdp2pxXO3hYLfR8TtjDfmiVkHMyNepiNDLcAeeGSyM4JwyN@[46.166.156.134])
by fwd11.t-online.de with esmtp id 1RabMR-14ZD3A0; Wed,
14 Dec 2011 00:02:11 +0100
Date: Tue, 13 Dec 2011 15:02:12 -0800
From: "First Bank Nigeria Plc"
Subject: Read the attached file regarding your unpaid funds.
X-Originating-IP: [194.25.134.17]
Reply-to: rev.jubrilgambari147@postino.net
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: multipart/mixed; boundary="Boundary_(ID_Q8iURrGriqSjnVPS4d0qpw)"
X-Priority: 3
X-MSMail-priority: Normal
X-ID: SrQkemZGgtx5ZJUo-j6IXUZHzhwFdp2pxXO3hYLfR8TtjDfmiVkHMyNepiNDLcAeeGSyM4JwyN
X-TOI-MSGID: f887300c-135d-48b3-8ef5-e6b9a4dada25
Original-recipient: rfc822;x
December 13 2011 05:14 PM

M.Davis15 commented...
Return-path:
Received: from mailout02.t-online.de ([unknown] [194.25.134.17])
by vms172057.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id for x;
Sun, 04 Dec 2011 09:09:55 -0600 (CST)
Received: from fwd04.aul.t-online.de (fwd04.aul.t-online.de )
by mailout02.t-online.de with smtp id 1RXDhK-00089a-Ew; Sun,
04 Dec 2011 16:09:46 +0100
Received: from User
(Tly11TZbwtNti3TOwHlEd3mYw8jNMosiEaXt8OUfaQm475eOEkpi2gT50qUKg+F+yCS5z4t9+E@[184.107.91.136])
by fwd04.t-online.de with esmtp id 1RXDhE-13kt6G0; Sun,
04 Dec 2011 16:09:40 +0100
Date: Sun, 04 Dec 2011 17:05:56 +0100
From: "JPMorgan Chase & Co."
Subject: 1 new security message alert
X-Originating-IP: [194.25.134.17]
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: text/html; charset=Windows-1251
Content-transfer-encoding: 8BIT
X-Priority: 3
X-MSMail-priority: Normal
X-ID: Tly11TZbwtNti3TOwHlEd3mYw8jNMosiEaXt8OUfaQm475eOEkpi2gT50qUKg+F+yCS5z4t9+E
X-TOI-MSGID: 5a596eea-a047-4e77-9351-cb0faf28e990
Original-recipient: rfc822;x
December 04 2011 07:18 AM

J.Woody commented...
SPAM SCAM(Beneficiary Scam)
From: MR B B EBONG anders@wg9us81ye.homepage.t-online.de Germany
Received:
from mailout02.t-online.de (unknown [194.25.134.17]); Wed, 7 Sep 2011 14:24:53 +0000 (UTC)
from fwd15.aul.t-online.de (fwd15.aul.t-online.de ) by mailout02.t-online.de with smtp id 1R1Is8-0001gP-6e; Wed, 07 Sep 2011 16:13:00 +0200
from User (rw+TBcZHgth6aKejCGXjk0cnc8WsDEvDsJutgM50z5mCZhkiUtTPSY9c+q1OdoGAAwHGfAOPoD@[24.94.191.108]) by fwd15.t-online.de with esmtp id 1R1Is1-0Yu6ts0; Wed, 7 Sep 2011 16:12:53 +0200
Reply-To: unionbk.org34.org@gmail.com
Return-Path: anders@wg9us81ye.homepage.t-online.de
Subject: BEST REGARDS
MR B B EBONG,
MANAGING DIRECTOR (UBN)
Our Ref: UBN/FCU/CBX/021/11
Tel: 234-80-26403077
EMAIL:unionbk.org234.org@gmail.com
kfogliano49@aol.com
JANET WHITE
September 07 2011 12:38 PM

J.Woody commented...
SPAM SCAM(Beneficiary Scam)
From: Mary Jones robin@wk0l7682t.homepage.t-online.de Germany
MIME-Version: 1.0
Message-ID: 1R1FlA-2AHuoi0@fwd20.t-online.de
Received:
from mailout02.t-online.de (unknown [194.25.134.17]); Wed, 7 Sep 2011 10:59:01 +0000 (UTC)
from fwd20.aul.t-online.de (fwd20.aul.t-online.de ) by mailout02.t-online.de with smtp id 1R1FlJ-0007Lt-PE; Wed, 07 Sep 2011 12:53:45 +0200
from User (VylZBcZZgtCTFg+dExoRNYcyNiUDlyofr6Xg-1d0ptzL2LtmbEYLViQCqKt8KU+z2mLOodzOek@[220.113.15.21]) by fwd20.t-online.de with esmtp id 1R1FlA-2AHuoi0; Wed, 7 Sep 2011 12:53:36 +0200
Reply-To: maryjonesunoffice@rediffmail.com
Return-Path: robin@wk0l7682t.homepage.t-online.de
Subject: Confirm
Mr. Fedrick Layman on email: fedricklaymanun112@gmail.com
Mrs. Mary Jones.
September 07 2011 04:47 AM

H.User7043 commented...
Spoofed PayPal email from above IP:

Need PayPal Account Information *URGENTLY*
http://www.paypal.com/cgi-bin/webscr?cmd=_login-run

(Above link is camouflaged, translates to:
http://web48.mis48.de/secure/us/ which refers to 85.114.132.156, Germany)
January 03 2011 10:44 PM

F.Prlja commented...
From this ip I got the answer to my question about an auto buy on 7 Jan 2005 . Recently I have proved email header and found not resolvable address and outblaze.com service that all speaks that this ip is used for criminal purposes.
May 13 2008 01:50 AM

Page generated on: September 22 2014 01:49:08 PM
do not follow this link

Privacy Policy | Terms of Use | About Project Honey Pot | FAQ | CloudFlare Site Protection | Contact Us

Copyright © 2004–14, Unspam Technologies, Inc. All rights reserved.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot

contact | wiki | email