LeakIX - Host 121.42.151.124

Host 121.42.151.124

China

Hangzhou Alibaba Advertising Co.,Ltd.
Server accepting anonymous credentials

The server is accepting NTLM anonymous credentials.
This allows for authentication bypass to access the underlying application.
https://blog.leakix.net/2022/03/bypassing-ntlm-auth-over-http/
IP: 121.42.151.124
Port: 10443
URL: https://121.42.151.124:10443
First seen 2023-07-17 20:31
Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199cedf3d4e1ad8368d047d38954a238d658
Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 17763
MsvAvNbComputerName: REPOSITORY
MsvAvNbDomainName: REPOSITORY
MsvAvDNSComputerName: repository
MsvAvDNSDomainName: repository

200 OK
Cache-Control: no-cache,no-store,must-revalidate
Content-Length: 6559
Content-Type: text/html
Date: Mon, 17 Jul 2023 20:31:15 GMT
Etag: "1d50bd102c7959f"
Expires: 0
Last-Modified: Thu, 16 May 2019 18:20:40 GMT
Pragma: no-cache
Server: Microsoft-HTTPAPI/2.0
Set-Cookie: XSRF-TOKEN=9485f603-b864-4338-b416-9721164ba88f; path=/; secure
X-Frame-Options: sameorigin

<!DOCTYPE html>
<html lang="en">

<head>
  <base href="/">
  <meta http-equiv="content-type" content="text/html; charset=UTF-8">
  <meta http-equiv="cache-control" content="no-cache" />
  <meta http-equiv="pragma" content="no-cache" />
  <meta http-equiv="expires" content="0" />
  <meta charset="utf-8">
  <link rel="icon" type="image/x-icon" href="favicon.ico?v=1.0.0">
  <title>Windows Admin Center</title>
  <style>
    #sme-splash {
      position: absolute;
      top: 0;
      bottom: 0;
      left: 0;
      right: 0;
      /* Highest possible z-index */
      z-index: 2147483647;
      background: white;
      color: #000;

      display: -webkit-box;
      display: -ms-flexbox;
      display: flex;
      -ms-flex-wrap: nowrap;
      flex-wrap: nowrap;
      -webkit-box-orient: vertical;
      -webkit-box-direction: normal;
      -ms-flex-direction: column;
      flex-direction: column;
      -ms-flex-line-pack: stretch;
      align-content: stretch;
      -webkit-box-align: center;
      -ms-flex-align: center;
      align-items: center;
      -webkit-box-pack: center;
      -ms-flex-pack: center;
      justify-content: center;
    }

    #sme-splash * {
      margin: 0 0 0 0;
      padding: 0 0 0 0;
      font-size: 15px;
      line-height: 20px;
      vertical-align: baseline !important;
      text-align: center !important;
      font-family: "Helvetica Neue", Helvetica, Arial, sans-serif !important;
      font-style: normal !important;
      letter-spacing: 0 !important;
      font-variant: normal !important;
      font-weight: normal !important;
      text-rendering: auto !important;
      -webkit-font-smoothing: antialiased !important;
    }

    #sme-splash svg {
      margin-bottom: 16px;
      width: 25vw;
      min-width: 225px;
      max-width: 350px;
      transform: rotate(180deg);
      fill: #0067B8;
    }

    #sme-splash h1 {
      margin-bottom: 16px;
      text-align: center;
      font-size: 32px;
      line-height: 40px;
    }


    #sme-splash-progress[value] {
      -webkit-appearance: none;
      appearance: none;
      color: #0067B8;
      margin-bottom: 16px;
      border: 0;
      width: 50vw;
      min-width: 296px;
      height: 8px;
      background-color: transparent;
    }

    #sme-splash-progress::-webkit-progress-bar {
      background-color: transparent;
    }

    #sme-splash-progress::-webkit-progress-value {
      background: #0067B8;
    }

    #sme-splash-progress::-moz-progress-bar {
      background: #0067B8;
    }

    #sme-splash.sme-splash-theme-dark {
      background: #262626;
      color: #fff;
    }

    #sme-splash.sme-splash-theme-dark svg {
      fill: #004881;
    }
  </style>
<link rel="stylesheet" href="styles.5113c9a968791c3b622e.css"></head>

<body>
  <div id="sme-splash">
    <svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 2048 2048"
         enable-background="new 0 0 2048 2048" xml:space="preserve" role="img" aria-labelledby="sme-splash-header">
      <g>
        <path d="M896 1024H826Q783 1024 744 1021T670 1004T603 966T546 896H256V768H512V640H256V512H512V256H0V1920Q0 1947 10 1970T37 2010T78 2038T128 2048H896Q923 2048 946 2038T986 2011T1014 1970T1024 1920V1246Q964 1211 930 1152T896 1024ZM256 1664H768V1792H256V1664ZM2048 768V0H640V768Q640 795 650 818T677 858T718 886T768 896H1024V1024Q1024 1051 1034 1074T1061 1114T1102 1142T1152 1152H1536Q1563 1152 1586 1142T1626 1115T1654 1074T1664 1024V896H1920Q1947 896 1970 886T2010 859T2038 818T2048 768ZM1152 1024V896H1536V1024H1152ZM1920 512V640H1792V768H1664V640H1024V768H896V640H768V512H896V384H1024V512H1664V384H1792V512H1920Z">
        </path>
      </g>
    </svg>
    <h1 id="sme-splash-header">Windows Admin Center</h1>
    <progress id="sme-splash-progress" role="progressbar" max="100" value="0" aria-valuenow="0" aria-valuemin="0" aria-valuemax="100"
              tabindex="0" aria-labelledby="sme-splash-message"></progress>

    <p id="sme-splash-message"></p>
  </div>
  <sme-root style="display: none"></sme-root>

  <script>
    /** BEGIN LOCALIZED STRING INJECTION **/
		var localeStrings = {"cs-CZ":{"initializing":"Starting Windows Admin Center..."},"de-DE":{"initializing":"Starting Windows Admin Center..."},"en-US":{"initializing":"Starting Windows Admin Center..."},"es-ES":{"initializing":"Starting Windows Admin Center..."},"fr-FR":{"initializing":"Starting Windows Admin Center..."},"hu-HU":{"initializing":"Starting Windows Admin Center..."},"it-IT":{"initializing":"Starting Windows Admin Center..."},"ja-JP":{"initializing":"Starting Windows Admin Center..."},"ko-KR":{"initializing":"Starting Windows Admin Center..."},"nl-NL":{"initializing":"Starting Windows Admin Center..."},"pl-PL":{"initializing":"Starting Windows Admin Center..."},"pt-BR":{"initializing":"Starting Windows Admin Center..."},"pt-PT":{"initializing":"Starting Windows Admin Center..."},"ru-RU":{"initializing":"Starting Windows Admin Center..."},"sv-SE":{"initializing":"Starting Windows Admin Center..."},"tr-TR":{"initializing":"Starting Windows Admin Center..."},"zh-CN":{"initializing":"Starting Windows Admin Center..."},"zh-TW":{"initializing":"Starting Windows Admin Center..."}};
		/** END LOCALIZED STRING INJECTION **/
    // localize initial message
    var messageElement = document.getElementById('sme-splash-message');
    var defaultLocale = 'en-US';
    var storageLocaleSet = localStorage.getItem('localeSet:@msft-sme/shell');
    var localeId = storageLocaleSet ? storageLocaleSet.id || defaultLocale : defaultLocale;
    let strings = localeStrings[localeId];
    messageElement.innerText = strings ? strings.initializing : 'Initializing Application';

    // apply current theme
    var splash = document.getElementById('sme-splash');
    var progress = document.getElementById('sme-splash-progress');
    let theme = localStorage.getItem('msft.sme.shell-assetManager-theme');
    if (theme) {
      splash.classList.add(`sme-splash-theme-${theme}`);
      progress.classList.add(`sme-splash-theme-${theme}`);
    }

  </script>
<script type="text/javascript" src="runtime.a8be246288247905060f.js"></script><script type="text/javascript" src="polyfills.1520726e66aebabb5940.js"></script><script type="text/javascript" src="scripts.3504d83063b72ee8ddc9.js"></script><script type="text/javascript" src="main.e2b3dcee202d21df3115.js"></script></body>

</html>
Found on 2023-07-17 20:31
Create report
Domain summary

No record