Check an IP Address, Domain Name, Subnet, or ASN

172.68.150.5 was found in our database!

$ whois 172.68.150.5

country·🇺🇸 United States

isp·Cloudflare, Inc.

asn·AS13335

network·Standard

$ sikker risk 172.68.150.5scoring →

confidence

21%Low

first_seen·Mar 17, 2026

last_seen·1h ago

sessions·2

events·2

$ sikker protocols 172.68.150.5

HTTP

2 / 2

$ sikker summary 172.68.150.5

172.68.150.5 has a threat confidence score of 21%. This IP address from United States (AS13335, Cloudflare, Inc.) has been observed in 2 honeypot sessions targeting HTTP protocols. Detected attack patterns include http dotenv file exposure probe, http git repository config exposure probe. First observed on March 17, 2026, most recently active March 25, 2026.

$ sikker behaviors 172.68.150.5catalog →

highHttp Dotenv File Exposure Probe1x

Identifies HTTP GET requests targeting the /.env file, indicating attempts to access exposed environment configuration files commonly containing application secrets such as database credentials, API keys, and service tokens.

highHttp Git Repository Config Exposure Probe1x

Identifies HTTP GET requests targeting /.git/config, indicating attempts to access exposed Git repository configuration files. Successful access may enable repository reconstruction, credential harvesting, or source code disclosure.

$ sikker primitives 172.68.150.5

http_method_get2 http_path_dotenv1 http_path_dotgit_config1

$ sikker related 172.68.150.5

🇺🇸·More threats fromUnited States→AS·More threats fromCloudflare, Inc.→HTTP·More threats targetingHTTP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
172.68.242.41	15%	24
104.23.216.242	15%	9
172.68.213.245	13%	7
104.23.253.60	8%	1
104.23.253.52	15%	9

IP Address	Confidence	Events
198.235.24.243	97%	318
45.61.184.223	99%	8,764
66.240.236.116	100%	2,079
96.0.160.144	87%	24,528
98.89.204.118	81%	895