Report for IP: 194.5.82.152

Threat LevelMEDIUM36/1002 rule types
2 incidents on record · 2 rule types · last seen 2d ago
PTR N/A
Org / ASN AS137409 GSL Networks Pty LTD
Country 🇸🇬 Singapore
City Singapore, North West
Timezone Asia/Singapore

Attack Analysis

🇸🇬 Singapore · Singapore · 137409 · Vpn Consumer Singapore, Republic of Singapore
Drupal: Admin Path Probe
This IP probed Drupal administrative paths and received 4xx errors — a reconnaissance technique to map the CMS structure before a targeted attack. Automated scanners cycle through common admin paths to find unprotected entry points.
Directory Brute-Force (Active Scan)
This IP triggered 10 or more HTTP 4xx errors within 60 seconds — the signature of a vulnerability scanner cycling through wordlists of common admin paths, config files, and endpoints. Tools like Nikto, Dirbuster, and Gobuster produce exactly this pattern.

Reports (2)

Date Severity Description
17 Jun 2026 - 07:16 high Web: Active scan — 10+ 4xx errors in 60s
17 Jun 2026 - 07:16 high Drupal: Admin path probe (4xx)

Related IPs — Same /24 Block (194.5.82.0/24)

194.5.82.107MEDIUM2 reports194.5.82.138MEDIUM1 report194.5.82.109MEDIUM2 reports194.5.82.134MEDIUM1 report194.5.82.135MEDIUM2 reports194.5.82.159MEDIUM2 reports194.5.82.105MEDIUM2 reports194.5.82.170MEDIUM2 reports
Part of EagleEye Intelligence