390757128 | 2024-10-28T10:48:55.981442
25 /
tcp
220 cyruslogistics.com ESMTP Merak 7.6.4; Mon, 28 Oct 2024 18:48:53 +0800
250-cyruslogistics.com Hello 1a1go77hs8pl6.net [224.237.27.242], pleased to meet you.
250-ENHANCEDSTATUSCODES
250-SIZE
250-EXPN
250-ETRN
250-ATRN
250-DSN
250-CHECKPOINT
250-8BITMIME
250-AUTH CRAM-MD5 DIGEST-MD5 LOGIN PLAIN
250-AUTH=LOGIN
250 HELP
-553166942 | 2024-10-09T04:54:00.626779
53 /
tcp
-553166942 | 2024-10-24T19:28:58.966303
53 /
udp
2077702064 | 2024-10-29T07:22:29.072392
110 /
tcp
+OK cyruslogistics.com Merak 7.6.4 POP3 Tue, 29 Oct 2024 15:22:14 +0800 <20241029152214@cyruslogistics.com>
+OK Capability list follows
TOP
USER
APOP
EXPIRE NEVER
UIDL
SASL CRAM-MD5 DIGEST-MD5 LOGIN PLAIN
STLS
.
SSL Certificate
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 0 (0x0)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Validity
Not Before: Sep 23 15:58:56 2004 GMT
Not After : Sep 22 15:58:56 2009 GMT
Subject: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:af:44:86:1e:2e:0a:f5:58:80:19:67:2f:2c:9e:
5e:cb:24:19:8c:41:7e:88:26:a0:55:87:77:7f:be:
be:00:08:74:9b:72:ea:6c:f8:10:52:93:6b:fd:a1:
79:e2:9b:d6:b5:55:d8:90:17:18:c5:60:a3:42:aa:
3d:e5:ef:e8:45:0f:d1:79:f4:ce:bb:50:95:10:66:
7c:b6:77:12:02:16:df:44:23:0d:6b:c8:8e:58:ca:
7c:c1:a8:1b:71:79:85:4f:bb:f9:04:e8:4b:c0:40:
ca:79:b6:be:15:67:fa:0b:89:bd:1b:0e:12:f1:b4:
8f:ff:a5:3e:b3:19:49:8a:07
Exponent: 65537 (0x10001)
Signature Algorithm: md5WithRSAEncryption
Signature Value:
56:b2:c3:73:31:6d:3c:09:9e:de:bc:a2:6d:eb:f9:df:a1:4d:
25:32:88:6b:de:32:45:db:28:8a:76:f5:6c:bc:3e:86:c1:bd:
72:ee:8c:52:06:73:21:2d:18:73:ec:7c:23:07:e8:3b:eb:b6:
ba:b2:99:77:f3:0d:77:81:4c:54:ac:7e:52:10:fe:79:8b:fe:
d9:3d:82:c9:9f:69:39:b7:0b:1e:5b:c7:18:e5:67:42:2b:3d:
b8:a9:e9:6d:e2:37:89:de:ac:ac:ba:b6:33:bf:24:35:ce:03:
63:d8:9f:7f:d6:b8:0b:ad:b4:15:8b:e1:39:48:f6:fd:0c:21:
a1:c9
-340177180 | 2024-10-09T02:22:38.147246
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 112.199.115.153:49152
ncalrpc: WindowsShutdown
ncacn_np: \\CYRUSLOGISTICS\PIPE\InitShutdown
ncalrpc: WMsgKRpc083890
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\CYRUSLOGISTICS\PIPE\InitShutdown
ncalrpc: WMsgKRpc083890
ncalrpc: WMsgKRpc086B21
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-c8e709961cc45412da
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
ncalrpc: LRPC-1fd6c081c5e1356d8a
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc086B21
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 112.199.115.153:49153
ncacn_np: \\CYRUSLOGISTICS\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 112.199.115.153:49153
ncacn_np: \\CYRUSLOGISTICS\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncacn_ip_tcp: 112.199.115.153:49153
ncacn_np: \\CYRUSLOGISTICS\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 112.199.115.153:49153
ncacn_np: \\CYRUSLOGISTICS\pipe\eventlog
ncalrpc: eventlog
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 112.199.115.153:49155
ncacn_np: \\CYRUSLOGISTICS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncacn_ip_tcp: 112.199.115.153:49155
ncacn_np: \\CYRUSLOGISTICS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncacn_ip_tcp: 112.199.115.153:49155
ncacn_np: \\CYRUSLOGISTICS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 112.199.115.153:49155
ncacn_np: \\CYRUSLOGISTICS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\CYRUSLOGISTICS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\CYRUSLOGISTICS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLEE5584A40F2A94C37B6B57B7EE30F
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
provider: gpsvc.dll
ncalrpc: IUserProfile2
ncalrpc: LRPC-1fd6c081c5e1356d8a
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 112.199.115.153:49154
ncalrpc: samss lpc
ncalrpc: dsrole
ncacn_np: \\CYRUSLOGISTICS\PIPE\protected_storage
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncalrpc: LRPC-bcae3a5a5a017a2c0e
ncacn_np: \\CYRUSLOGISTICS\pipe\lsass
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncacn_np: \\CYRUSLOGISTICS\PIPE\W32TIME_ALT
ncalrpc: W32TIME_ALT
ncalrpc: LRPC-d5ff38e696819132f4
ncalrpc: OLE264E306EE7CB4584A6A0D784FFA7
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-d5ff38e696819132f4
ncalrpc: OLE264E306EE7CB4584A6A0D784FFA7
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-6457faddb1411213f1
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-6457faddb1411213f1
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-6457faddb1411213f1
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
annotation: Spooler function endpoint
provider: spoolsv.exe
ncalrpc: spoolss
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
annotation: Spooler base remote object endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
annotation: Spooler function endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
50abc2a4-574d-40b3-9d66-ee4fd5fba076
version: v5.0
protocol: [MS-DNSP]: Domain Name Service (DNS) Server Management
provider: dns.exe
ncacn_ip_tcp: 112.199.115.153:49156
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
annotation: IPSec Policy agent endpoint
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-449f63044ef02f959e
ncacn_ip_tcp: 112.199.115.153:49163
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 112.199.115.153:49163
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 112.199.115.153:49171
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-f85ba4f8362cc021a0
ncalrpc: LRPC-f85ba4f8362cc021a0
ncalrpc: LRPC-f85ba4f8362cc021a0
ncalrpc: LRPC-f85ba4f8362cc021a0
754968718 | 2024-10-27T08:27:56.352335
465 /
tcp
220 cyruslogistics.com ESMTP Merak 7.6.4; Sun, 27 Oct 2024 16:27:23 +0800
250-cyruslogistics.com Hello g828pi5szu8yt4v.net [224.237.27.242], pleased to meet you.
250-ENHANCEDSTATUSCODES
250-SIZE
250-EXPN
250-ETRN
250-ATRN
250-DSN
250-CHECKPOINT
250-8BITMIME
250-AUTH CRAM-MD5 DIGEST-MD5 LOGIN PLAIN
250-AUTH=LOGIN
250 HELP
SSL Certificate
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 0 (0x0)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Validity
Not Before: Sep 23 15:58:56 2004 GMT
Not After : Sep 22 15:58:56 2009 GMT
Subject: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:af:44:86:1e:2e:0a:f5:58:80:19:67:2f:2c:9e:
5e:cb:24:19:8c:41:7e:88:26:a0:55:87:77:7f:be:
be:00:08:74:9b:72:ea:6c:f8:10:52:93:6b:fd:a1:
79:e2:9b:d6:b5:55:d8:90:17:18:c5:60:a3:42:aa:
3d:e5:ef:e8:45:0f:d1:79:f4:ce:bb:50:95:10:66:
7c:b6:77:12:02:16:df:44:23:0d:6b:c8:8e:58:ca:
7c:c1:a8:1b:71:79:85:4f:bb:f9:04:e8:4b:c0:40:
ca:79:b6:be:15:67:fa:0b:89:bd:1b:0e:12:f1:b4:
8f:ff:a5:3e:b3:19:49:8a:07
Exponent: 65537 (0x10001)
Signature Algorithm: md5WithRSAEncryption
Signature Value:
56:b2:c3:73:31:6d:3c:09:9e:de:bc:a2:6d:eb:f9:df:a1:4d:
25:32:88:6b:de:32:45:db:28:8a:76:f5:6c:bc:3e:86:c1:bd:
72:ee:8c:52:06:73:21:2d:18:73:ec:7c:23:07:e8:3b:eb:b6:
ba:b2:99:77:f3:0d:77:81:4c:54:ac:7e:52:10:fe:79:8b:fe:
d9:3d:82:c9:9f:69:39:b7:0b:1e:5b:c7:18:e5:67:42:2b:3d:
b8:a9:e9:6d:e2:37:89:de:ac:ac:ba:b6:33:bf:24:35:ce:03:
63:d8:9f:7f:d6:b8:0b:ad:b4:15:8b:e1:39:48:f6:fd:0c:21:
a1:c9
576636853 | 2024-10-26T09:15:32.321083
993 /
tcp
* OK Merak 7.6.4 IMAP4rev1 Sat, 26 Oct 2024 17:15:10 +0800
* CAPABILITY IMAP4rev1 AUTH=CRAM-MD5 AUTH=DIGEST-MD5 AUTH=LOGIN AUTH=PLAIN SORT THREAD-ORDEREDSUBJECT UIDPLUS QUOTA ACL NAMESPACE
A001 OK CAPABILITY Completed
A002 BAD No such command as "id"
A003 BAD No such command as "unknowncmd"
* BYE IMAP4rev1 Server terminating connection
A004 OK LOGOUT Completed
SSL Certificate
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 0 (0x0)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Validity
Not Before: Sep 23 15:58:56 2004 GMT
Not After : Sep 22 15:58:56 2009 GMT
Subject: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:af:44:86:1e:2e:0a:f5:58:80:19:67:2f:2c:9e:
5e:cb:24:19:8c:41:7e:88:26:a0:55:87:77:7f:be:
be:00:08:74:9b:72:ea:6c:f8:10:52:93:6b:fd:a1:
79:e2:9b:d6:b5:55:d8:90:17:18:c5:60:a3:42:aa:
3d:e5:ef:e8:45:0f:d1:79:f4:ce:bb:50:95:10:66:
7c:b6:77:12:02:16:df:44:23:0d:6b:c8:8e:58:ca:
7c:c1:a8:1b:71:79:85:4f:bb:f9:04:e8:4b:c0:40:
ca:79:b6:be:15:67:fa:0b:89:bd:1b:0e:12:f1:b4:
8f:ff:a5:3e:b3:19:49:8a:07
Exponent: 65537 (0x10001)
Signature Algorithm: md5WithRSAEncryption
Signature Value:
56:b2:c3:73:31:6d:3c:09:9e:de:bc:a2:6d:eb:f9:df:a1:4d:
25:32:88:6b:de:32:45:db:28:8a:76:f5:6c:bc:3e:86:c1:bd:
72:ee:8c:52:06:73:21:2d:18:73:ec:7c:23:07:e8:3b:eb:b6:
ba:b2:99:77:f3:0d:77:81:4c:54:ac:7e:52:10:fe:79:8b:fe:
d9:3d:82:c9:9f:69:39:b7:0b:1e:5b:c7:18:e5:67:42:2b:3d:
b8:a9:e9:6d:e2:37:89:de:ac:ac:ba:b6:33:bf:24:35:ce:03:
63:d8:9f:7f:d6:b8:0b:ad:b4:15:8b:e1:39:48:f6:fd:0c:21:
a1:c9
578159079 | 2024-10-05T09:54:35.025883
995 /
tcp
+OK cyruslogistics.com Merak 7.6.4 POP3 Sat, 05 Oct 2024 17:54:09 +0800 <20241005175409@cyruslogistics.com>
+OK Capability list follows
TOP
USER
APOP
EXPIRE NEVER
UIDL
SASL CRAM-MD5 DIGEST-MD5 LOGIN PLAIN
.
SSL Certificate
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 0 (0x0)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Validity
Not Before: Sep 23 15:58:56 2004 GMT
Not After : Sep 22 15:58:56 2009 GMT
Subject: C=CZ, ST=Czech Republic, L=Prague, O=IceWarp Ltd., CN=IceWarp Ltd./emailAddress=info@icewarp.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:af:44:86:1e:2e:0a:f5:58:80:19:67:2f:2c:9e:
5e:cb:24:19:8c:41:7e:88:26:a0:55:87:77:7f:be:
be:00:08:74:9b:72:ea:6c:f8:10:52:93:6b:fd:a1:
79:e2:9b:d6:b5:55:d8:90:17:18:c5:60:a3:42:aa:
3d:e5:ef:e8:45:0f:d1:79:f4:ce:bb:50:95:10:66:
7c:b6:77:12:02:16:df:44:23:0d:6b:c8:8e:58:ca:
7c:c1:a8:1b:71:79:85:4f:bb:f9:04:e8:4b:c0:40:
ca:79:b6:be:15:67:fa:0b:89:bd:1b:0e:12:f1:b4:
8f:ff:a5:3e:b3:19:49:8a:07
Exponent: 65537 (0x10001)
Signature Algorithm: md5WithRSAEncryption
Signature Value:
56:b2:c3:73:31:6d:3c:09:9e:de:bc:a2:6d:eb:f9:df:a1:4d:
25:32:88:6b:de:32:45:db:28:8a:76:f5:6c:bc:3e:86:c1:bd:
72:ee:8c:52:06:73:21:2d:18:73:ec:7c:23:07:e8:3b:eb:b6:
ba:b2:99:77:f3:0d:77:81:4c:54:ac:7e:52:10:fe:79:8b:fe:
d9:3d:82:c9:9f:69:39:b7:0b:1e:5b:c7:18:e5:67:42:2b:3d:
b8:a9:e9:6d:e2:37:89:de:ac:ac:ba:b6:33:bf:24:35:ce:03:
63:d8:9f:7f:d6:b8:0b:ad:b4:15:8b:e1:39:48:f6:fd:0c:21:
a1:c9