142.173.10.207 — Windstream Communications LLC, US — Medium (54%)

Check an IP Address, Domain Name, Subnet, or ASN

142.173.10.207 was found in our database!

Confidence Level

54%

Medium?

Geolocation

🇺🇸

United States

ISPWindstream Communications LLC

ASNAS7029

Activity Timeline

First seenMar 4, 2026, 10:27 PM

Last seen14h ago

1Sessions

1Events

Protocol Breakdown

HTTPS

1 / 1

142.173.10.207 has a moderate threat confidence level of 54%, originating from United States, on the Windstream Communications LLC network (7029). It has been observed across 1 sessions targeting HTTPS, with detected attack patterns including https dotenv environment file exposure probe, First observed on March 4, 2026, most recently active March 4, 2026.

Behaviors

Classified behavioral patterns observed

Https Dotenv Environment File Exposure Probe

high1x

Identifies an HTTPS request targeting a .env file in the web root or application directory. Access attempts to /.env indicate automated scanning for exposed environment configuration files that may contain application secrets, database credentials, API keys, or cloud tokens. This probe is commonly associated with opportunistic internet-wide scanning for misconfigured web deployments.

Primitives

Individual actions observed

Https Path Dotenv1

Related Threats

Explore related threat intelligence

🇺🇸More threats fromUnited States ASMore threats fromWindstream Communications LLC HTTPSMore threats targetingHTTPS { }Browse allAttack Patterns

WHOIS Lookup

IP Address	Confidence	Events
71.29.43.74	31%	92
173.185.140.69	37%	126
69.40.148.120	95%	101
75.91.89.101	56%	4
75.88.149.154	31%	3

IP Address	Confidence	Events
134.122.28.88	94%	362
15.204.144.239	99%	5,429
40.124.186.100	68%	141
209.222.101.54	100%	40,346
173.239.218.88	88%	592