LeakIX - Host 137.74.253.250

Host 137.74.253.250

France

OVH SAS

Server accepting anonymous credentials

The server is accepting NTLM anonymous credentials.

This allows for authentication bypass to access the underlying application.

https://blog.leakix.net/2022/03/bypassing-ntlm-auth-over-http/

IP: 137.74.253.250
Port: 80
URL: http://137.74.253.250

First seen 2024-06-20 15:35
Last seen 2024-09-03 20:56
Open for 75 days
- Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427ae44f34ed293b698c24616594
```
Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-98LBFM6FYZF
MsvAvNbDomainName: PD5X
MsvAvDNSComputerName: WIN-98LBFM6FYZF.PD5X.LOCAL
MsvAvDNSDomainName: PD5X.LOCAL
MsvAvDNSTreeName: PD5X.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Thu, 13 Jun 2024 14:08:20 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
```
  Found on 2024-09-03 20:56
Create report

Domain summary

No record

© 2024 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice