IP Address

185.191.239.39

IPv4 Public
CH CH
AS264617
GRUPO PANAGLOBAL 15 S.A
725 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
94% Confidence
725 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 5% Most Dangerous
CH
CH Location
GRUPO PANAGLOBAL 15 S.A ASN 264617
725 Reports
Honeypot Data Source

Critical Alert

IP 185.191.239.39 is a critical-risk address with a 10/10 threat level that has generated 725 abuse reports over approximately two months, overwhelmingly linked to automated hacking activity detected by honeypot sensors. The Swiss-hosted IP, operated through AS264617 by GRUPO PANAGLOBAL 15 S.A, presents a severe and ongoing risk due to its sustained, high-frequency intrusion attempts against exposed network services worldwide.

The volume and consistency of reports paint a clear picture of malicious infrastructure: 725 total reports from 20 distinct automated honeypot sensors, with a threat confidence rating of 94 percent, indicates near-certain hostile intent. First reported in January 2026 and continuing through February 2026, this IP has operated at an 8/10 activity frequency, meaning the scanning and attack activity has been near-constant rather than sporadic. All 20 most recent reports categorize the activity as general hacking, confirming a focused campaign of exploitation attempts rather than incidental port scanning. The network assignment to GRUPO PANAGLOBAL 15 S.A, while registered in Swiss address space, suggests the infrastructure may be serving actors regardless of nominal geographic attribution.

The dominant hacking classification encompasses automated vulnerability probing, exploitation of unpatched services, and repeated unauthorized access attempts. With 725 coordinated reports across dozens of honeypot sensors, this IP functions as part of organized reconnaissance or attack infrastructure systematically cataloguing exposed entry points. Such activity typically precedes more targeted breaches or serves as a component of botnet-delivered exploit kits. The consistent pattern of connection attempts indicates the operator is systematically cycling through known vulnerability signatures against every exposed target within reach.

Site operators should block this IP immediately at the network perimeter and implement connection rate-limiting on any internet-facing services to reduce exposure to automated tooling. Deploying defensive tools such as fail2ban or equivalent intrusion-prevention systems can detect and automatically block repeated hacking patterns from sources exhibiting similar behavior. Enforcing strong, unique credentials combined with multi-factor authentication on all accessible services significantly raises the cost of successful compromise. Continuous monitoring of authentication logs for brute-force signatures and maintenance of a strict patch management cycle for exposed software further mitigates the concrete risk this IP represents to vulnerable deployments.

More threatening than 98% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

High-Risk Network Association

This IP belongs to a network (ASN 264617) with elevated threat levels. The ISP GRUPO PANAGLOBAL 15 S.A hosts multiple reported malicious addresses, suggesting systemic security issues or permissive policies.

Network-wide patterns may indicate this is part of a larger malicious infrastructure.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 8/10 High
Confidence Score 61% High Confidence

Confidence History

10. Feb 2026
94% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot x6 75%
Hacking Honeypot x7 75%
Hacking Honeypot x8 75%
Hacking Honeypot x3 75%
Hacking Honeypot x7 75%
Hacking Honeypot x6 75%
Hacking Honeypot 75%
Hacking Honeypot x5 75%
Hacking Honeypot x4 75%
Hacking Honeypot x5 75%
Hacking Honeypot x6 75%
Hacking Honeypot x6 75%
Hacking Honeypot x7 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x2 75%
Hacking Honeypot x3 75%
Hacking Honeypot x6 75%
Hacking Honeypot x4 75%
Hacking Honeypot x6 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot x7 75%
Hacking Honeypot x2 75%
Hacking Honeypot x3 75%
10 of 256 shown

Technical Details

Basic Information

IP Address
185.191.239.39
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
CH CH
ASN
AS264617
ISP
GRUPO PANAGLOBAL 15 S.A

DNS Information

Reverse DNS
gdfdvc.com
PTR Record
Yes
Connection Type
Static

Statistics

Total Reports
725
First Reported
20 Jan 2026
Last Reported
10 Feb 2026, 17:50

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS264617
GRUPO PANAGLOBAL 15 S.A
CH CH

Network Threat Assessment

8/10
This network has a high threat level with significant malicious activity reported across multiple IPs.

Network Statistics

2
Total IPs Monitored
726
Total Reports
363
Reports per IP

Network Context

This IP address belongs to GRUPO PANAGLOBAL 15 S.A (AS264617), which manages 2 IP addresses in our monitoring system. Out of these, 726 have been reported for suspicious activities, resulting in a network-wide threat level of 8/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

98 %

Global Threat Ranking

This IP is more threatening than 98% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 198,673 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 725 avg: 23 ++

Network Comparison

Compared against 2 IPs in ASN 264617

Threat Level 10/10 network avg: 8.0 +
Total Reports 725 network avg: 363 ++
Network GRUPO PANAGLOBAL 15 S.A has overall threat level 8/10

Geographic Comparison

Compared against 395 IPs in CH

Threat Level 10/10 country avg: 5.5 ++
Total Reports 725 country avg: 45 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

186,446 threat incidents tracked globally • Last 24h: 18,583 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,320 20.6%
  2. 02
    IN
    India IN
    28,851 15.5%
  3. 03
    CN
    China CN
    25,960 13.9%
  4. 04
    BR
    Brazil BR
    10,202 5.5%
  5. 05
    DE
    Germany DE
    7,128 3.8%
  6. 06
    SG
    Singapore SG
    6,451 3.5%
  7. 07
    ID
    Indonesia ID
    5,496 2.9%
  8. 08
    RU
    Russia RU
    4,690 2.5%
  9. 09
    PK
    Pakistan PK
    4,632 2.5%
  10. 10
    NL
    Netherlands NL
    4,350 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

1 Related IPs
6/10 Avg Threat
28% Avg Confidence
2a0a:20c0:f001:81:4498:fcff:febf:cefb 6/10
Confidence 28%
Reports 1
Location CH CH
14 Feb 2026

IPs from the same country with similar threat profiles.

15 Related IPs
9.3/10 Avg Threat
95% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
104.244.79.40 8/10
Confidence 98%
Reports 29
ISP FranTech Solutions
7 Jun 2026
209.99.185.195 10/10
Confidence 98%
Reports 14
ISP SKN Subnet & Te...
27 May 2026
185.196.11.208 8/10
Confidence 97%
Reports 48
ISP Global-Data Sys...
28 Feb 2026
185.196.11.160 8/10
Confidence 97%
Reports 18
ISP Global-Data Sys...
27 Feb 2026
179.43.139.58 10/10
Confidence 94%
Reports 2,282
ISP Private Layer INC
8 Jun 2026
179.43.186.223 10/10
Confidence 94%
Reports 525
ISP Private Layer INC
14 May 2026
178.83.200.2 10/10
Confidence 94%
Reports 410
ISP Private Customer
20 May 2026
179.43.134.114 10/10
Confidence 94%
Reports 229
ISP Private Layer INC
2 Jun 2026
178.83.200.3 8/10
Confidence 94%
Reports 173
ISP Private Customer
20 May 2026
186.190.215.90 10/10
Confidence 94%
Reports 24
ISP GTHost
5 Jun 2026
89.145.167.242 10/10
Confidence 94%
Reports 20
ISP Akenes SA
8 Jun 2026
35.216.254.237 10/10
Confidence 94%
Reports 18
ISP GOOGLE
5 Jun 2026
20.203.168.197 8/10
Confidence 93%
Reports 11
ISP Microsoft Corpo...
26 May 2026
37.120.213.13 10/10
Confidence 92%
Reports 36
ISP M247 Europe SRL
4 Jun 2026
45.59.113.162 10/10
Confidence 92%
Reports 35
ISP RouterHosting LLC
5 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.7/10 Avg Threat
94% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
193.32.162.28 10/10
Confidence 94%
Reports 5,435
Location RO RO
25 May 2026
51.68.207.118 10/10
Confidence 94%
Reports 5,214
Location FR FR
8 Jun 2026
185.246.128.133 10/10
Confidence 94%
Reports 5,079
Location SE SE
8 Jun 2026
185.233.247.245 8/10
Confidence 94%
Reports 3,686
Location TR TR
6 Jun 2026
49.12.27.102 10/10
Confidence 94%
Reports 3,548
Location DE DE
8 Jun 2026
128.199.240.7 10/10
Confidence 94%
Reports 3,512
Location SG SG
25 May 2026
162.55.119.195 10/10
Confidence 94%
Reports 3,404
Location DE DE
30 Apr 2026
66.132.172.165 10/10
Confidence 94%
Reports 3,310
Location US US
8 Jun 2026
66.132.172.162 10/10
Confidence 94%
Reports 3,307
Location US US
8 Jun 2026
66.132.172.175 10/10
Confidence 94%
Reports 3,297
Location US US
8 Jun 2026
66.132.172.164 10/10
Confidence 94%
Reports 3,292
Location US US
8 Jun 2026
66.132.172.167 10/10
Confidence 94%
Reports 3,285
Location US US
8 Jun 2026
66.132.172.171 10/10
Confidence 94%
Reports 3,274
Location US US
8 Jun 2026
66.132.172.160 8/10
Confidence 94%
Reports 3,254
Location US US
8 Jun 2026
66.132.172.161 10/10
Confidence 94%
Reports 3,252
Location US US
8 Jun 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "185.191.239.39",
    "threat_level": 10,
    "confidence_score": 94,
    "total_reports": 725,
    "country_code": "CH",
    "isp_name": "GRUPO PANAGLOBAL 15 S.A",
    "asn": "264617",
    "first_reported": "2026-01-20 22:28:34",
    "last_reported": "2026-02-10 17:50:57",
    "exported_at": "2026-06-08T22:40:26+02:00",
    "source": "https://reportedip.de/ip/185.191.239.39/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses