IOC Radar
IPMediumSignal 76/100

139.177.194.152

Location
CanadaCanada
Toronto, Ontario
ASN
AS63949
Linode
First Seen
Apr 17, 2026
Last Seen
May 30, 2026
Apr 17
First Seen
50d ago
May 30
Last Seen
6d ago
15
Reports
source reports
76%
Confidence
medium
Found in 15 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
76%
Signal Score
76 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryCACanada
RegionToronto, Ontario
ASNAS63949
OrganizationLinode

Feed Intelligence Summary

15 reports76% confidence
15
Source reports
76%
Confidence score
Category tags
abuseactive scanapacheapache attackerbad reputationbad web botbotnetbotnet activitybrute forcebrute force attackerbrute-forcebruteforcecacanadacowriedigital oceandionaeaexploitexploitation activityfatthackingindicatorinjection activitymalicious ipmirainetworknorth americap0fportscanresearchedscanscannerscannerssensor-taggedservice scansql injectionsshtannertargeting databasetcptpotvulnerability scanvulnerability-exploitationvultrweb app attack

Activity Timeline

1 total obs
May 30May 30

Threat Activity Heatmap

· Peak: 2026-05-30
Less
More
Mon
Wed
Fri
Jun
·
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
76
SIGNAL
Signal Score
76%
Confidence
15
Reports
First seenApr 17, 2026
Last seenMay 30, 2026
GeolocationCA
CountryCanada
LocationToronto, Ontario
ASNAS63949
OrgLinode
Coords43.6532, -79.3832

VirusTotal

Not checked

WHOIS

description
Score: 85/100. Labels: abuseipdb:brute-force, abuseipdb:critical, abuseipdb:ddos, abuseipdb:exploited-host, abuseipdb:hacking, abuseipdb:port-scan. Attacker IP 139.177.194.152 observed using HTTP client fingerprint 'HTTP Client: Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);' 2 times when connecting to db1lapetro between 2026-04-17 06:55 and 2026-04-17 06:55 UTC.
raw
Akamai Technologies, Inc. LINODE-US (NET-139-177-176-0-1) 139.177.176.0 - 139.177.207.255 Linode LINODE (NET-139-177-192-0-1) 139.177.192.0 - 139.177.207.255

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 month ago · Last seen 6 days ago
Appeared in 15 threat reports