Check an IP Address, Domain Name, Subnet, or ASN

172.69.155.25 was found in our database!

$ whois 172.69.155.25

country·🇵🇱 Poland

city·Warsaw

network·Standard

$ sikker risk 172.69.155.25scoring →

confidence

21%Low

first_seen·Mar 20, 2026

last_seen·1h ago

sessions·3

events·3

$ sikker protocols 172.69.155.25

HTTP

3 / 3

$ sikker summary 172.69.155.25

172.69.155.25 has a threat confidence score of 21%. This IP address from Poland has been observed in 3 honeypot sessions targeting HTTP protocols. Detected attack patterns include http git repository config exposure probe. First observed on March 20, 2026, most recently active March 23, 2026.

$ sikker behaviors 172.69.155.25catalog →

highHttp Git Repository Config Exposure Probe1x

Identifies HTTP GET requests targeting /.git/config, indicating attempts to access exposed Git repository configuration files. Successful access may enable repository reconstruction, credential harvesting, or source code disclosure.

mediumWordpress Urlencoded Auth Probe2x

Identifies HTTP sessions where WordPress authentication is attempted through URL-encoded form credential submission. This pattern is commonly associated with automated login probing, credential stuffing frameworks, or scripted reconnaissance against WordPress admin authentication workflows.

$ sikker primitives 172.69.155.25

http_wp_login_form_urlencoded_credentials_unordered2 http_method_get1 http_path_dotgit_config1

$ sikker related 172.69.155.25

🇵🇱·More threats fromPoland→HTTP·More threats targetingHTTP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
91.218.202.248	81%	2,525
149.86.227.60	95%	4,933
5.188.108.134	35%	199
83.168.90.177	100%	411
95.214.53.99	93%	179