IP Address

195.3.222.78

IPv4 Public
PL PL
AS201814
MEVSPACE sp. z o.o.
316 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
62% Confidence
316 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
PL
PL Location
MEVSPACE sp. z o.o. ASN 201814
316 Reports
Honeypot Data Source

Extreme Threat

IP 195.3.222.78 is a high-risk address operated by MEVSPACE sp. z o.o. in Poland (AS201814) that has been associated with 316 confirmed hacking reports during January 2026, representing a severe threat to any exposed network services. The address received a maximum threat score of 10 out of 10, indicating automated honeypot sensors detected sophisticated intrusion activity consistent with vulnerability exploitation and unauthorized access attempts.

Security monitoring systems logged 316 independent abuse reports attributed to this single IP address over a compressed timeframe in January 2026, with all 20 recent reports consistently categorizing the activity as hacking behavior detected by automated honeypot sensors. Despite the address originating from a Polish commercial network provider, the volume and consistency of malicious activity patterns detected suggests the infrastructure is either compromised or deliberately deployed for hostile reconnaissance and exploitation attempts against targeted systems worldwide.

The dominant threat classification of hacking encompasses a broad spectrum of intrusion methodologies, including vulnerability scanning, credential brute-forcing, and exploitation of unpatched services running exposed ports and protocols. This IP address poses a concrete risk to any publicly accessible service, particularly Secure Shell daemons, remote administration interfaces, and web applications with authentication mechanisms that could be targeted for unauthorized access or lateral movement within compromised networks.

Site operators should immediately block this IP address at the network perimeter and implement defensive tools such as fail2ban to automatically ban repeated offenders matching known attack signatures. Organizations should ensure all exposed services run current security patches, enforce strong authentication with multi-factor authentication where possible, and maintain active network monitoring to detect and respond to scanning or exploitation attempts originating from high-threat IP addresses in real time.

More threatening than 90% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Reputable Network

This IP is hosted on a network (ASN 201814) with generally good reputation. The ISP MEVSPACE sp. z o.o. maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 60% High Confidence

Confidence History

23. Jan 2026 - 24. Jan 2026
62% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot x6 75%
Hacking Honeypot x7 75%
Hacking Honeypot x7 75%
Hacking Honeypot x6 75%
Hacking Honeypot x7 75%
Hacking Honeypot x7 75%
Hacking Honeypot 75%
Hacking Honeypot x13 75%
Hacking Honeypot x12 75%
Hacking Honeypot x7 75%
Hacking Honeypot x4 75%
Hacking Honeypot x7 75%
Hacking Honeypot x7 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot x12 75%
Hacking Honeypot x7 75%
Hacking Honeypot 75%
Hacking Honeypot x13 75%
Hacking Honeypot x5 75%
Hacking Honeypot x11 75%
Hacking Honeypot x5 75%
Hacking Honeypot x7 75%
Hacking Honeypot x21 75%
Hacking Honeypot x5 75%
Hacking Honeypot x15 75%
Hacking Honeypot 75%
Hacking Honeypot x6 75%
Hacking Honeypot x13 75%
Hacking Honeypot x3 75%
10 of 316 shown

Technical Details

Basic Information

IP Address
195.3.222.78
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class C

Geolocation

Country
PL PL
ASN
AS201814
ISP
MEVSPACE sp. z o.o.

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
316
First Reported
20 Jan 2026
Last Reported
24 Jan 2026, 12:24

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS201814
MEVSPACE sp. z o.o.
PL PL

Network Threat Assessment

3/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

82
Total IPs Monitored
22,821
Total Reports
278.3
Reports per IP

Network Context

This IP address belongs to MEVSPACE sp. z o.o. (AS201814), which manages 82 IP addresses in our monitoring system. Out of these, 22,821 have been reported for suspicious activities, resulting in a network-wide threat level of 3/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

90 %

Global Threat Ranking

This IP is more threatening than 90% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,597 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 316 avg: 23 ++

Network Comparison

Compared against 98 IPs in ASN 201814

Threat Level 10/10 network avg: 7.7 +
Total Reports 316 network avg: 226 +
Network MEVSPACE sp. z o.o. has overall threat level 3/10

Geographic Comparison

Compared against 850 IPs in PL

Threat Level 10/10 country avg: 5.4 ++
Total Reports 316 country avg: 31 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,273 threat incidents tracked globally • Last 24h: 18,965 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,457 20.5%
  2. 02
    IN
    India IN
    29,090 15.5%
  3. 03
    CN
    China CN
    26,027 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,143 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,543 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,670 2.5%
  10. 10
    NL
    Netherlands NL
    4,357 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
9.7/10 Avg Threat
84% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
95.214.55.226 10/10
Confidence 96%
Reports 19
Location PL PL
2 Jun 2026
195.3.222.218 10/10
Confidence 94%
Reports 780
Location PL PL
28 Jan 2026
193.34.212.123 10/10
Confidence 94%
Reports 134
Location PL PL
9 Jun 2026
45.141.233.195 10/10
Confidence 94%
Reports 56
Location BG BG
11 May 2026
194.180.48.181 10/10
Confidence 94%
Reports 21
Location DE DE
24 May 2026
185.16.39.100 10/10
Confidence 94%
Reports 18
Location PL PL
1 Jun 2026
94.26.88.32 10/10
Confidence 92%
Reports 52
Location BG BG
7 Jun 2026
149.86.227.40 7/10
Confidence 91%
Reports 178
Location PL PL
6 Jun 2026
195.3.220.103 7/10
Confidence 91%
Reports 16
Location PL PL
21 May 2026
95.214.52.233 10/10
Confidence 86%
Reports 3,597
Location PL PL
2 Jun 2026
146.19.24.212 10/10
Confidence 79%
Reports 232
Location PL PL
18 Dec 2025
185.16.39.52 10/10
Confidence 79%
Reports 230
Location PL PL
16 Dec 2025
195.3.223.33 10/10
Confidence 79%
Reports 35
Location PL PL
21 Dec 2025
149.50.114.248 10/10
Confidence 79%
Reports 25
Location PL PL
17 May 2026
149.86.227.60 10/10
Confidence 76%
Reports 167
Location PL PL
6 Apr 2026
194.180.49.174 10/10
Confidence 75%
Reports 134
Location BG BG
27 Nov 2025
194.180.49.176 10/10
Confidence 74%
Reports 202
Location BG BG
24 Nov 2025
109.205.211.84 10/10
Confidence 74%
Reports 150
Location AZ AZ
24 Nov 2025
149.50.108.114 10/10
Confidence 74%
Reports 23
Location PL PL
23 Nov 2025
109.205.211.4 10/10
Confidence 74%
Reports 21
Location AZ AZ
18 Mar 2026

IPs from the same subnet range, likely same network segment.

2 Related IPs
8/10 Avg Threat
50% Avg Confidence
1 High Threat
High-risk network: Majority of related IPs are flagged
195.3.222.218 10/10
Confidence 94%
Reports 780
Location PL PL
28 Jan 2026
195.3.222.84 6/10
Confidence 6%
Reports 1
Location PL PL
19 Feb 2026

IPs from the same country with similar threat profiles.

15 Related IPs
9.7/10 Avg Threat
95% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
89.25.230.156 10/10
Confidence 100%
Reports 19
ISP Play
6 May 2026
31.179.197.26 10/10
Confidence 99%
Reports 36
ISP Play
8 Jun 2026
57.128.214.48 8/10
Confidence 97%
Reports 51
ISP OVH SAS
28 Feb 2026
57.128.225.99 10/10
Confidence 97%
Reports 20
ISP OVH SAS
8 Jun 2026
193.106.245.20 10/10
Confidence 96%
Reports 91
ISP Play
12 May 2026
95.214.55.226 10/10
Confidence 96%
Reports 19
ISP MEVSPACE sp. z ...
2 Jun 2026
195.3.222.218 10/10
Confidence 94%
Reports 780
ISP MEVSPACE sp. z ...
28 Jan 2026
193.34.212.123 10/10
Confidence 94%
Reports 134
ISP MEVSPACE sp. z ...
9 Jun 2026
151.115.48.199 10/10
Confidence 94%
Reports 68
ISP Scaleway S.a.s.
8 Jun 2026
185.241.208.27 10/10
Confidence 94%
Reports 29
ISP 1337 Services GmbH
27 May 2026
185.16.39.100 10/10
Confidence 94%
Reports 18
ISP MEVSPACE sp. z ...
1 Jun 2026
151.115.91.20 10/10
Confidence 94%
Reports 15
ISP Scaleway SAS
3 Jun 2026
217.173.193.12 8/10
Confidence 93%
Reports 51
ISP Opole University
4 May 2026
57.128.237.234 10/10
Confidence 93%
Reports 36
ISP OVH SAS
26 May 2026
54.38.52.18 10/10
Confidence 92%
Reports 155
ISP OVH SAS
8 Jun 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.7/10 Avg Threat
62% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
185.11.61.151 10/10
Confidence 62%
Reports 3,569
Location RU RU
31 Jan 2026
167.86.74.173 7/10
Confidence 62%
Reports 3,271
Location DE DE
20 Jan 2026
62.149.25.72 10/10
Confidence 62%
Reports 3,180
Location UA UA
9 Mar 2026
125.163.139.181 10/10
Confidence 62%
Reports 3,148
Location ID ID
22 Jan 2026
193.22.146.182 8/10
Confidence 62%
Reports 2,704
Location DE DE
6 Feb 2026
185.243.5.75 10/10
Confidence 62%
Reports 2,500
Location HK HK
29 May 2026
138.197.71.145 10/10
Confidence 62%
Reports 2,121
Location US US
20 Jan 2026
142.202.191.102 10/10
Confidence 62%
Reports 2,118
Location US US
13 Feb 2026
64.188.91.243 10/10
Confidence 62%
Reports 2,084
Location US US
3 Mar 2026
172.81.63.125 10/10
Confidence 62%
Reports 1,846
Location US US
12 Feb 2026
185.132.187.58 10/10
Confidence 62%
Reports 1,484
Location BE BE
27 Jan 2026
212.56.40.202 10/10
Confidence 62%
Reports 1,228
Location US US
23 Jan 2026
159.223.239.42 10/10
Confidence 62%
Reports 1,188
Location NL NL
21 Jan 2026
95.214.54.147 10/10
Confidence 62%
Reports 1,133
Location PL PL
30 Jan 2026
206.189.98.110 10/10
Confidence 62%
Reports 1,096
Location NL NL
19 Jan 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "195.3.222.78",
    "threat_level": 10,
    "confidence_score": 62,
    "total_reports": 316,
    "country_code": "PL",
    "isp_name": "MEVSPACE sp. z o.o.",
    "asn": "201814",
    "first_reported": "2026-01-20 10:58:30",
    "last_reported": "2026-01-24 12:24:28",
    "exported_at": "2026-06-09T10:03:00+02:00",
    "source": "https://reportedip.de/ip/195.3.222.78/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses