IP Address

83.142.209.41

IPv4 Public
UA UA
Demenin B.V
1,348 Reports
This IP is under Observation Suspicious activity detected - monitor closely
7/10 Threat
55% Confidence
1,348 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Moderate Risk
UA
UA Location
Demenin B.V ISP
1,348 Reports
Honeypot Data Source

Elevated Risk

IP 83.142.209.41, registered in Ukraine and operated by Demenin B.V, is classified as a high-risk address with a threat level of 7 out of 10, primarily linked to email spam distribution and web application reconnaissance activity. The IP has accumulated 1,348 total abuse reports across automated honeypot sensors, making it one of the more frequently reported addresses within recent tracking windows, though its current activity frequency is assessed as minimal at 0 out of 10.

Detection data shows this address was first reported in November 2025 and most recently in April 2026, indicating sustained abuse across approximately five months of observation. The concentration of reports spans 20 distinct automated honeypot sensors, suggesting broad automated detection coverage rather than isolated flagging. Email spam constitutes the dominant threat category with 19 documented instances, while web application probing accounts for a single reported event. Despite the high report volume, the low activity frequency score indicates that the IP may be currently dormant or operating below detection thresholds, which is typical of abuse infrastructure that has been partially blocked or is cycling through targets.

Email spam activity from this address poses concrete risks to organizational infrastructure, as mass unsolicited messages frequently serve as delivery mechanisms for phishing campaigns and malware payloads. The web application probe detected against this IP suggests automated vulnerability scanning behavior, likely attempting to identify exposed services, misconfigured endpoints, or OWASP Top 10 weaknesses such as injection points and file inclusion vectors. The discrepancy between the high total report count and low current activity frequency may indicate that this IP was previously active at scale before receiving broad blocks, though it remains a verifiable threat vector based on historical evidence.

Site operators should implement email authentication protocols including SPF, DKIM, and DMARC to reject unauthorized sending from this address and similar sources. Deploying a web application firewall with rulesets targeting automated scanning patterns will mitigate probing attempts. Rate-limiting incoming connections and implementing fail2ban or equivalent dynamic blocking tools on exposed services provides an additional hardening layer. Continuous monitoring of abuse feeds and blocking repeat offenders from thisASN range remains advisable given the volume and duration of reported activity.

More threatening than 74% of monitored IPs

Threat Categories

Email Spam 29
Web App Attack 1

Technical Details

Email spam involves mass distribution of unwanted emails, often for advertising, phishing, or malware delivery.

Recommended Mitigations

Implement SPF, DKIM, DMARC, and use reputable email filtering services.

Reputable Network

This IP is hosted on a network (ASN 0) with generally good reputation. The ISP Demenin B.V maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 7/10 High
High
Activity Frequency 0/10 Inactive
Confidence Score 55% High Confidence

Confidence History

16. Dec 2025 - 10. Apr 2026
55% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Web App Attack Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
Email Spam Honeypot 75%
10 of 1348 shown

Technical Details

Basic Information

IP Address
83.142.209.41
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class A

Geolocation

Country
UA UA
ASN
Unknown
ISP
Demenin B.V

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
1,348
First Reported
28 Nov 2025
Last Reported
10 Apr 2026, 16:14

Comparative Analysis

How this IP compares to others in our threat intelligence database

74 %

Global Threat Ranking

This IP is more threatening than 74% of all IPs in our database.

Above Average Threat

Global Comparison

Compared against 199,465 reported IPs worldwide

Threat Level 7/10 avg: 5.3 +
Total Reports 1,348 avg: 23 ++

Geographic Comparison

Compared against 682 IPs in UA

Threat Level 7/10 country avg: 5.6 +
Total Reports 1,348 country avg: 145 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,140 threat incidents tracked globally • Last 24h: 19,043 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,446 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,142 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,539 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same country with similar threat profiles.

15 Related IPs
9.5/10 Avg Threat
97% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
45.88.138.44 8/10
Confidence 100%
Reports 210
ISP Ayosoft Ltd
9 Jun 2026
109.95.33.211 10/10
Confidence 100%
Reports 114
ISP ISP Shtorm LTD
7 May 2026
195.49.128.211 10/10
Confidence 100%
Reports 89
ISP SPD Polyudov Al...
8 Jun 2026
92.60.189.21 10/10
Confidence 100%
Reports 89
ISP WNET TELECOM US...
8 Jun 2026
193.176.251.229 10/10
Confidence 99%
Reports 20
ISP CHP Poddubny Se...
8 Jun 2026
92.113.142.203 10/10
Confidence 97%
Reports 25
ISP IDC Cube
7 Jun 2026
77.83.39.197 10/10
Confidence 96%
Reports 73
ISP Kprohost LLC
9 Jun 2026
91.201.108.198 8/10
Confidence 96%
Reports 27
ISP Lugansk Telepho...
5 Jun 2026
77.83.39.9 10/10
Confidence 96%
Reports 17
ISP Kprohost LLC
11 May 2026
92.63.197.22 10/10
Confidence 94%
Reports 989
ISP FOP Dmytro Nedi...
1 Jun 2026
77.83.39.217 7/10
Confidence 94%
Reports 357
ISP Kprohost LLC
6 Jun 2026
45.144.212.75 10/10
Confidence 94%
Reports 283
ISP Kprohost LLC
6 Jun 2026
77.83.39.227 10/10
Confidence 94%
Reports 239
ISP Kprohost LLC
6 Jun 2026
77.83.39.154 10/10
Confidence 94%
Reports 238
ISP Kprohost LLC
6 Jun 2026
77.83.39.237 10/10
Confidence 94%
Reports 237
ISP Kprohost LLC
6 Jun 2026

IPs with similar threat level and confidence scores.

15 Related IPs
5.3/10 Avg Threat
55% Avg Confidence
2 High Threat
196.251.92.134 7/10
Confidence 55%
Reports 75,414
Location NL NL
14 Oct 2025
155.94.155.105 5/10
Confidence 55%
Reports 19,539
Location US US
7 Sep 2025
213.209.157.165 5/10
Confidence 55%
Reports 11,629
Location DE DE
5 Dec 2025
45.144.212.19 5/10
Confidence 55%
Reports 9,796
Location UA UA
3 Feb 2026
213.209.157.87 5/10
Confidence 55%
Reports 9,465
Location DE DE
16 Dec 2025
213.209.157.54 5/10
Confidence 55%
Reports 7,881
Location DE DE
22 Oct 2025
185.196.11.84 5/10
Confidence 55%
Reports 2,841
Location CH CH
24 Nov 2025
213.209.157.207 5/10
Confidence 55%
Reports 2,510
Location DE DE
2 Dec 2025
78.153.140.207 7/10
Confidence 55%
Reports 2,224
Location GB GB
4 Feb 2026
185.196.11.30 5/10
Confidence 55%
Reports 1,710
Location CH CH
30 Dec 2025
196.251.72.5 5/10
Confidence 55%
Reports 1,619
Location SC SC
6 Nov 2025
213.209.157.154 5/10
Confidence 55%
Reports 1,532
Location DE DE
18 Sep 2025
196.251.83.16 5/10
Confidence 55%
Reports 1,531
Location SC SC
12 Nov 2025
213.209.157.216 5/10
Confidence 55%
Reports 1,498
Location DE DE
14 Dec 2025
213.209.157.201 5/10
Confidence 55%
Reports 1,497
Location DE DE
11 Oct 2025

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "83.142.209.41",
    "threat_level": 7,
    "confidence_score": 55,
    "total_reports": 1348,
    "country_code": "UA",
    "isp_name": "Demenin B.V",
    "asn": "0",
    "first_reported": "2025-11-28 13:02:42",
    "last_reported": "2026-04-10 16:14:44",
    "exported_at": "2026-06-09T08:48:53+02:00",
    "source": "https://reportedip.de/ip/83.142.209.41/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses