Hostnames |
EXCAS081.cuchost.com attachment.cuchost.com autodiscover.cuchost.com cp.cuchost.com mail.cuchost.com webapp.cuchost.com static-ip-250-127-134-202.rev.dyxnet.com |
Domains | cuchost.com dyxnet.com |
Country | Hong Kong |
City | Hong Kong |
Organization | Diyixian.com Limited |
ISP | Diyixian.com Limited |
ASN | AS9584 |
Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2014-4078 | 5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability." |
-608853962 | 2024-04-20T01:25:06.17312725 / tcp
220 EXCAS081.cuchost.com Microsoft ESMTP MAIL Service ready at Sat, 20 Apr 2024 09:24:21 +0800 250-EXCAS081.cuchost.com Hello [172.16.6.8] 250-SIZE 140509184 250-PIPELINING 250-DSN 250-ENHANCEDSTATUSCODES 250-STARTTLS 250-X-ANONYMOUSTLS 250-AUTH NTLM LOGIN 250-X-EXPS GSSAPI NTLM 250-8BITMIME 250-BINARYMIME 250-CHUNKING 250 XRDST SMTP NTLM Info: OS: Windows 8.1/Windows Server 2012 R2 OS Build: 6.3.9600 Target Name: CUCHOST NetBIOS Domain Name: CUCHOST NetBIOS Computer Name: EXCAS081 DNS Domain Name: cuchost.com DNS Tree Name: cuchost.com FQDN: EXCAS081.cuchost.com
Certificate: Data: Version: 3 (0x2) Serial Number: 47:ea:49:b4:7a:ae:ac:b3:4a:37:d0:e6:9d:e5:c1:b9 Signature Algorithm: sha1WithRSAEncryption Issuer: CN=EXCAS081 Validity Not Before: Jan 31 08:24:33 2018 GMT Not After : Jan 31 08:24:33 2023 GMT Subject: CN=EXCAS081 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:e9:7b:04:cb:74:b4:b8:b1:22:5f:3b:3f:3e:db: 4b:1e:54:10:f6:b9:03:bf:7b:83:ea:a5:6a:40:78: f0:08:35:75:ee:b5:36:04:db:77:12:96:2d:17:60: 7a:96:fd:21:0d:8d:da:01:75:55:c6:c3:da:95:58: 58:85:02:ce:e4:c9:3d:45:a7:a4:12:35:cf:8e:5b: 19:f6:36:ad:ae:48:26:cf:01:9f:a5:0a:f1:0f:47: d1:00:a6:48:7f:ba:77:31:81:ab:ad:6f:73:2d:97: f2:61:a4:65:40:42:90:56:1d:30:05:32:cd:24:3d: aa:2e:d1:c4:55:93:3a:f8:45:20:ec:dd:a0:91:7b: a3:3f:58:29:fb:07:b1:33:50:c9:42:53:f2:29:fe: 92:4f:02:30:72:b2:a5:d7:32:4e:a6:0d:bf:23:9c: 05:53:ee:95:e0:ec:32:59:21:37:01:a4:33:f5:a1: 40:2a:4f:de:b4:d5:11:ce:9f:f9:62:42:7f:d3:4d: be:e6:7b:db:05:c4:34:c7:08:89:0f:1e:d1:1e:0a: 3b:7e:e8:9a:ce:e8:10:ce:d3:01:d7:8e:4f:97:03: 97:7c:b1:2b:75:e1:72:d2:03:85:22:72:a2:68:52: 77:a1:12:1d:50:ed:82:f5:4c:77:41:96:a2:77:55: c8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Subject Alternative Name: DNS:EXCAS081, DNS:EXCAS081.cuchost.com X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Basic Constraints: critical CA:FALSE Signature Algorithm: sha1WithRSAEncryption Signature Value: 88:71:64:66:91:54:79:cb:a3:96:8c:f3:a2:9e:0e:c8:fd:0c: 5b:3c:a6:1d:33:6a:60:90:c9:18:2b:a2:9d:1c:11:8e:35:24: e3:64:71:92:b4:44:d4:5d:ea:bb:18:6e:20:89:1a:e9:57:89: 2e:04:dc:fd:01:45:d7:b0:63:6b:68:5f:cb:fa:c1:e4:09:18: e7:89:4c:28:52:ec:60:94:94:80:29:86:26:e9:17:3d:ab:c3: 7c:93:82:01:80:7c:01:1d:39:ff:ae:8e:6c:91:fb:00:d0:ae: d7:c2:b5:bb:b6:73:ef:39:ae:c0:2f:e0:5f:20:66:90:03:d5: f3:6f:bc:e2:c1:48:8e:3d:4f:99:b6:31:ef:35:c4:35:a1:e6: 8c:45:be:33:bf:e6:5f:29:c1:82:c0:57:85:53:3b:c2:12:49: 02:99:e3:de:f8:c7:bb:35:19:29:59:17:df:43:f1:90:93:dd: 10:fe:8e:d9:5c:be:da:6f:74:50:0c:b7:05:0f:b4:f6:75:68: 2d:c7:7c:18:ae:46:35:74:a3:38:5c:55:a2:7b:e8:89:5d:df: a4:a9:a7:7c:f1:9e:69:45:5b:94:6b:f2:d2:a5:cb:a9:51:45: 9a:31:4d:e0:2d:54:8d:ef:18:f6:e8:46:9f:05:69:68:2b:9b: e2:2c:2d:50
741717489 | 2024-04-03T13:45:44.44651680 / tcp
HTTP/1.1 302 Redirect Content-Type: text/html; charset=UTF-8 Location: https://mail.cuchost.com/owa/ Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET Date: Wed, 03 Apr 2024 13:45:43 GMT Content-Length: 152
1557909834 | 2024-04-14T19:27:31.647267110 / tcp
+OK The Microsoft Exchange POP3 service is ready. +OK TOP UIDL SASL PLAIN USER STLS .
Certificate: Data: Version: 3 (0x2) Serial Number: 85:e6:17:a1:0d:b8:4f:b4:a4:1a:e4:58:14:fe:b4:36 Signature Algorithm: sha384WithRSAEncryption Issuer: C=CN, O=TrustAsia Technologies, Inc., CN=TrustAsia RSA OV TLS CA G3 Validity Not Before: Feb 20 00:00:00 2024 GMT Not After : Mar 9 23:59:59 2025 GMT Subject: C=CN, ST=\xE4\xB8\x8A\xE6\xB5\xB7\xE5\xB8\x82, O=\xE4\xB8\x8A\xE6\xB5\xB7\xE9\x98\xB3\xE5\x85\x89\xE4\xBA\x92\xE8\x81\x94\xE4\xBF\xA1\xE6\x81\xAF\xE7\xA7\x91\xE6\x8A\x80\xE6\x9C\x89\xE9\x99\x90\xE5\x85\xAC\xE5\x8F\xB8, CN=mail.cuchost.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b3:87:da:74:bd:0e:2b:50:05:0b:7f:4e:79:10: 68:12:fd:09:01:4c:67:a8:79:35:29:2a:ab:eb:4c: 02:f4:65:e8:c7:9a:bf:5c:f1:9f:42:9e:85:2e:92: 4a:13:0e:a5:1f:46:5f:fe:34:02:4e:6d:c3:82:84: 21:39:eb:ec:67:b8:96:99:19:37:47:84:75:78:ab: 6b:1a:3e:52:df:b8:e1:77:c8:9c:c1:d1:83:f3:69: 9f:4a:86:26:e1:0c:a9:a5:de:f8:a5:b8:3b:32:15: 73:d5:76:15:cb:1b:ec:a1:53:d7:b8:ee:58:17:2b: d5:a3:de:9a:fd:f1:44:79:67:00:05:63:65:f5:17: 48:21:20:08:ca:74:bc:21:c8:0b:f4:e6:8a:0c:b2: 2c:27:d4:8a:c9:5c:1d:4a:66:b5:c4:fb:99:89:b9: c8:a5:e5:cb:07:01:5c:19:83:3e:18:34:b3:01:60: 99:bb:85:c8:09:c5:49:25:e1:95:df:74:5a:db:bc: cd:bd:d6:fd:e1:a5:1e:6b:8d:93:55:2c:64:6b:b6: f4:24:32:9f:85:0c:4e:2d:25:1b:2c:42:96:e2:e4: 8c:f9:bf:c2:0b:f5:65:0d:48:be:ca:e4:63:ee:51: 04:62:ba:07:09:2b:f9:bd:59:13:30:df:a7:76:19: 77:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 40:30:22:8B:8D:2A:32:29:F8:10:21:0D:00:63:5E:45:D3:2C:E0:25 X509v3 Subject Key Identifier: AE:02:17:3A:F8:8A:9D:F0:F5:56:FD:99:DC:7A:6F:9E:E5:38:DD:86 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.49 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.2 X509v3 CRL Distribution Points: Full Name: URI:http://crl.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crl Authority Information Access: CA Issuers - URI:http://crt.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crt OCSP - URI:http://ocsp.trust-provider.cn CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 20 01:08:26.700 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:92:1F:40:D0:5C:71:23:5B:8C:1C:2C: 9E:88:FA:6E:1C:9C:6B:91:2B:23:F0:8B:9D:36:6B:5A: B4:D9:02:A7:71:02:20:3C:FE:1C:6D:A2:87:99:8D:60: 79:01:F2:85:F1:00:9A:CF:19:4E:34:D7:84:A4:E6:C3: F5:14:50:F4:A8:17:0F Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 20 01:08:26.774 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:75:DD:0F:19:AD:0F:98:28:77:05:DF:A6: 17:AD:C3:00:C3:75:1D:C3:EE:29:2D:2A:77:43:BB:27: 4D:E3:29:7E:02:21:00:F8:70:3A:E4:A0:2F:EB:85:F0: 72:F4:AF:FF:B6:B9:35:9F:0C:BE:08:BA:BD:6F:2E:3D: B7:05:D8:43:8C:E8:D0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 20 01:08:26.809 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:53:F9:E5:96:74:C5:F6:54:C9:30:B4:C7: 43:9A:0D:37:D7:5A:85:05:61:50:3D:1A:47:D8:A4:9B: C2:75:E0:DA:02:20:0E:96:B9:6A:21:C7:B6:DF:F3:91: 73:BB:9E:E9:6A:BF:E5:0E:22:BE:EE:A0:AA:CE:84:E4: F6:53:85:15:29:1E X509v3 Subject Alternative Name: DNS:mail.cuchost.com, DNS:attachment.cuchost.com, DNS:autodiscover.cuchost.com, DNS:cp.cuchost.com, DNS:webapp.cuchost.com Signature Algorithm: sha384WithRSAEncryption Signature Value: b1:02:b0:fc:35:02:5b:f0:54:26:b1:28:bb:43:77:f9:0f:7d: 6f:2b:c8:c5:1e:f0:9f:79:0e:8e:0c:fc:0c:7b:7f:e5:d3:ec: 73:ba:5c:62:6a:33:a7:2a:0d:6c:47:4e:16:a8:7d:16:15:c6: 46:25:ab:68:7c:cc:96:d2:25:bd:17:bb:10:c0:b4:6d:32:ca: e6:89:66:7f:6c:25:3f:85:53:03:27:30:1a:d5:d2:7d:08:79: 82:f0:2a:85:d4:b9:93:9a:a2:f0:ee:47:14:fd:73:c3:c6:a1: 86:21:93:fd:15:d0:c3:7d:e0:47:c7:1b:86:81:ec:94:be:db: 01:e5:b5:e0:66:60:ff:7c:b4:20:6b:b7:36:27:dc:8f:e0:0d: 34:c1:a4:cd:a3:3d:83:2e:86:c9:b2:e9:c2:1d:2e:92:d1:19: e8:32:2b:b5:a0:88:ab:7f:74:fb:90:7a:8b:4f:50:b5:75:5c: c5:fa:b3:f9:80:31:cc:1e:c4:a0:fd:81:2c:21:01:43:52:b7: 49:4e:77:1e:7e:b4:30:77:8f:c5:6d:1c:ec:3c:2f:7c:03:74: 55:3b:86:b9:02:ee:cb:32:ba:82:41:38:c3:a4:f2:99:19:a6: a4:34:2a:70:fb:88:38:0a:8c:79:6f:8c:e7:ee:87:1c:cb:9a: 8d:5f:96:91:ba:24:83:c8:8e:ae:b0:d7:ae:3b:a3:53:6b:05: dc:db:e0:09:ff:5d:3f:66:00:9b:d3:cc:d6:da:e2:b8:c2:02: 44:00:b9:fc:fc:67:c8:c9:dc:0a:59:07:00:20:c6:d0:cc:ec: ca:bf:e8:23:00:38:1c:4c:bc:2f:ed:f3:d2:a5:d6:e1:5a:cb: 20:f0:b0:08:56:9a:cf:f2:04:73:e3:12:6f:73:48:b8:b8:e3: dc:33:fa:ec:06:91:00:82:40:a7:cc:d3:25:19:04:0b:cc:c4: 79:15:e5:49:d8:55:91:17:e1:f4:55:bf:43:22:82:27:df:df: 5d:f1:d6:88:35:81
1489525118 | 2024-04-23T22:41:04.169080443 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Tue, 23 Apr 2024 22:41:04 GMT Connection: close Content-Length: 315
Certificate: Data: Version: 3 (0x2) Serial Number: 85:e6:17:a1:0d:b8:4f:b4:a4:1a:e4:58:14:fe:b4:36 Signature Algorithm: sha384WithRSAEncryption Issuer: C=CN, O=TrustAsia Technologies, Inc., CN=TrustAsia RSA OV TLS CA G3 Validity Not Before: Feb 20 00:00:00 2024 GMT Not After : Mar 9 23:59:59 2025 GMT Subject: C=CN, ST=\xE4\xB8\x8A\xE6\xB5\xB7\xE5\xB8\x82, O=\xE4\xB8\x8A\xE6\xB5\xB7\xE9\x98\xB3\xE5\x85\x89\xE4\xBA\x92\xE8\x81\x94\xE4\xBF\xA1\xE6\x81\xAF\xE7\xA7\x91\xE6\x8A\x80\xE6\x9C\x89\xE9\x99\x90\xE5\x85\xAC\xE5\x8F\xB8, CN=mail.cuchost.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b3:87:da:74:bd:0e:2b:50:05:0b:7f:4e:79:10: 68:12:fd:09:01:4c:67:a8:79:35:29:2a:ab:eb:4c: 02:f4:65:e8:c7:9a:bf:5c:f1:9f:42:9e:85:2e:92: 4a:13:0e:a5:1f:46:5f:fe:34:02:4e:6d:c3:82:84: 21:39:eb:ec:67:b8:96:99:19:37:47:84:75:78:ab: 6b:1a:3e:52:df:b8:e1:77:c8:9c:c1:d1:83:f3:69: 9f:4a:86:26:e1:0c:a9:a5:de:f8:a5:b8:3b:32:15: 73:d5:76:15:cb:1b:ec:a1:53:d7:b8:ee:58:17:2b: d5:a3:de:9a:fd:f1:44:79:67:00:05:63:65:f5:17: 48:21:20:08:ca:74:bc:21:c8:0b:f4:e6:8a:0c:b2: 2c:27:d4:8a:c9:5c:1d:4a:66:b5:c4:fb:99:89:b9: c8:a5:e5:cb:07:01:5c:19:83:3e:18:34:b3:01:60: 99:bb:85:c8:09:c5:49:25:e1:95:df:74:5a:db:bc: cd:bd:d6:fd:e1:a5:1e:6b:8d:93:55:2c:64:6b:b6: f4:24:32:9f:85:0c:4e:2d:25:1b:2c:42:96:e2:e4: 8c:f9:bf:c2:0b:f5:65:0d:48:be:ca:e4:63:ee:51: 04:62:ba:07:09:2b:f9:bd:59:13:30:df:a7:76:19: 77:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 40:30:22:8B:8D:2A:32:29:F8:10:21:0D:00:63:5E:45:D3:2C:E0:25 X509v3 Subject Key Identifier: AE:02:17:3A:F8:8A:9D:F0:F5:56:FD:99:DC:7A:6F:9E:E5:38:DD:86 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.49 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.2 X509v3 CRL Distribution Points: Full Name: URI:http://crl.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crl Authority Information Access: CA Issuers - URI:http://crt.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crt OCSP - URI:http://ocsp.trust-provider.cn CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 20 01:08:26.700 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:92:1F:40:D0:5C:71:23:5B:8C:1C:2C: 9E:88:FA:6E:1C:9C:6B:91:2B:23:F0:8B:9D:36:6B:5A: B4:D9:02:A7:71:02:20:3C:FE:1C:6D:A2:87:99:8D:60: 79:01:F2:85:F1:00:9A:CF:19:4E:34:D7:84:A4:E6:C3: F5:14:50:F4:A8:17:0F Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 20 01:08:26.774 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:75:DD:0F:19:AD:0F:98:28:77:05:DF:A6: 17:AD:C3:00:C3:75:1D:C3:EE:29:2D:2A:77:43:BB:27: 4D:E3:29:7E:02:21:00:F8:70:3A:E4:A0:2F:EB:85:F0: 72:F4:AF:FF:B6:B9:35:9F:0C:BE:08:BA:BD:6F:2E:3D: B7:05:D8:43:8C:E8:D0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 20 01:08:26.809 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:53:F9:E5:96:74:C5:F6:54:C9:30:B4:C7: 43:9A:0D:37:D7:5A:85:05:61:50:3D:1A:47:D8:A4:9B: C2:75:E0:DA:02:20:0E:96:B9:6A:21:C7:B6:DF:F3:91: 73:BB:9E:E9:6A:BF:E5:0E:22:BE:EE:A0:AA:CE:84:E4: F6:53:85:15:29:1E X509v3 Subject Alternative Name: DNS:mail.cuchost.com, DNS:attachment.cuchost.com, DNS:autodiscover.cuchost.com, DNS:cp.cuchost.com, DNS:webapp.cuchost.com Signature Algorithm: sha384WithRSAEncryption Signature Value: b1:02:b0:fc:35:02:5b:f0:54:26:b1:28:bb:43:77:f9:0f:7d: 6f:2b:c8:c5:1e:f0:9f:79:0e:8e:0c:fc:0c:7b:7f:e5:d3:ec: 73:ba:5c:62:6a:33:a7:2a:0d:6c:47:4e:16:a8:7d:16:15:c6: 46:25:ab:68:7c:cc:96:d2:25:bd:17:bb:10:c0:b4:6d:32:ca: e6:89:66:7f:6c:25:3f:85:53:03:27:30:1a:d5:d2:7d:08:79: 82:f0:2a:85:d4:b9:93:9a:a2:f0:ee:47:14:fd:73:c3:c6:a1: 86:21:93:fd:15:d0:c3:7d:e0:47:c7:1b:86:81:ec:94:be:db: 01:e5:b5:e0:66:60:ff:7c:b4:20:6b:b7:36:27:dc:8f:e0:0d: 34:c1:a4:cd:a3:3d:83:2e:86:c9:b2:e9:c2:1d:2e:92:d1:19: e8:32:2b:b5:a0:88:ab:7f:74:fb:90:7a:8b:4f:50:b5:75:5c: c5:fa:b3:f9:80:31:cc:1e:c4:a0:fd:81:2c:21:01:43:52:b7: 49:4e:77:1e:7e:b4:30:77:8f:c5:6d:1c:ec:3c:2f:7c:03:74: 55:3b:86:b9:02:ee:cb:32:ba:82:41:38:c3:a4:f2:99:19:a6: a4:34:2a:70:fb:88:38:0a:8c:79:6f:8c:e7:ee:87:1c:cb:9a: 8d:5f:96:91:ba:24:83:c8:8e:ae:b0:d7:ae:3b:a3:53:6b:05: dc:db:e0:09:ff:5d:3f:66:00:9b:d3:cc:d6:da:e2:b8:c2:02: 44:00:b9:fc:fc:67:c8:c9:dc:0a:59:07:00:20:c6:d0:cc:ec: ca:bf:e8:23:00:38:1c:4c:bc:2f:ed:f3:d2:a5:d6:e1:5a:cb: 20:f0:b0:08:56:9a:cf:f2:04:73:e3:12:6f:73:48:b8:b8:e3: dc:33:fa:ec:06:91:00:82:40:a7:cc:d3:25:19:04:0b:cc:c4: 79:15:e5:49:d8:55:91:17:e1:f4:55:bf:43:22:82:27:df:df: 5d:f1:d6:88:35:81
-1992528118 | 2024-04-11T11:55:49.952068465 / tcp
220 mail.cuchost.com Microsoft ESMTP MAIL Service ready at Thu, 11 Apr 2024 19:55:49 +0800\r\n
1238982152 | 2024-04-19T06:05:04.306408587 / tcp
220 mail.cuchost.com Microsoft ESMTP MAIL Service ready at Fri, 19 Apr 2024 14:04:56 +0800 250-mail.cuchost.com Hello [172.16.6.8] 250-SIZE 140509184 250-PIPELINING 250-DSN 250-ENHANCEDSTATUSCODES 250-STARTTLS 250-AUTH GSSAPI NTLM LOGIN 250-8BITMIME 250-BINARYMIME 250 CHUNKING SMTP NTLM Info: OS: Windows 8.1/Windows Server 2012 R2 OS Build: 6.3.9600 Target Name: CUCHOST NetBIOS Domain Name: CUCHOST NetBIOS Computer Name: EXCAS081 DNS Domain Name: cuchost.com DNS Tree Name: cuchost.com FQDN: EXCAS081.cuchost.com
-269652178 | 2024-04-15T19:17:55.666024993 / tcp
* OK The Microsoft Exchange IMAP4 service is ready. * CAPABILITY IMAP4 IMAP4rev1 AUTH=PLAIN UIDPLUS MOVE ID CHILDREN IDLE NAMESPACE LITERAL+ A001 OK CAPABILITY completed. * ID ("name" "Microsoft.Exchange.Imap4.Imap4Server" "version" "15.0") A002 OK ID completed A003 BAD Command Error. 12 * BYE Microsoft Exchange Server 2013 IMAP4 server signing off. A004 OK LOGOUT completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 85:e6:17:a1:0d:b8:4f:b4:a4:1a:e4:58:14:fe:b4:36 Signature Algorithm: sha384WithRSAEncryption Issuer: C=CN, O=TrustAsia Technologies, Inc., CN=TrustAsia RSA OV TLS CA G3 Validity Not Before: Feb 20 00:00:00 2024 GMT Not After : Mar 9 23:59:59 2025 GMT Subject: C=CN, ST=\xE4\xB8\x8A\xE6\xB5\xB7\xE5\xB8\x82, O=\xE4\xB8\x8A\xE6\xB5\xB7\xE9\x98\xB3\xE5\x85\x89\xE4\xBA\x92\xE8\x81\x94\xE4\xBF\xA1\xE6\x81\xAF\xE7\xA7\x91\xE6\x8A\x80\xE6\x9C\x89\xE9\x99\x90\xE5\x85\xAC\xE5\x8F\xB8, CN=mail.cuchost.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b3:87:da:74:bd:0e:2b:50:05:0b:7f:4e:79:10: 68:12:fd:09:01:4c:67:a8:79:35:29:2a:ab:eb:4c: 02:f4:65:e8:c7:9a:bf:5c:f1:9f:42:9e:85:2e:92: 4a:13:0e:a5:1f:46:5f:fe:34:02:4e:6d:c3:82:84: 21:39:eb:ec:67:b8:96:99:19:37:47:84:75:78:ab: 6b:1a:3e:52:df:b8:e1:77:c8:9c:c1:d1:83:f3:69: 9f:4a:86:26:e1:0c:a9:a5:de:f8:a5:b8:3b:32:15: 73:d5:76:15:cb:1b:ec:a1:53:d7:b8:ee:58:17:2b: d5:a3:de:9a:fd:f1:44:79:67:00:05:63:65:f5:17: 48:21:20:08:ca:74:bc:21:c8:0b:f4:e6:8a:0c:b2: 2c:27:d4:8a:c9:5c:1d:4a:66:b5:c4:fb:99:89:b9: c8:a5:e5:cb:07:01:5c:19:83:3e:18:34:b3:01:60: 99:bb:85:c8:09:c5:49:25:e1:95:df:74:5a:db:bc: cd:bd:d6:fd:e1:a5:1e:6b:8d:93:55:2c:64:6b:b6: f4:24:32:9f:85:0c:4e:2d:25:1b:2c:42:96:e2:e4: 8c:f9:bf:c2:0b:f5:65:0d:48:be:ca:e4:63:ee:51: 04:62:ba:07:09:2b:f9:bd:59:13:30:df:a7:76:19: 77:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 40:30:22:8B:8D:2A:32:29:F8:10:21:0D:00:63:5E:45:D3:2C:E0:25 X509v3 Subject Key Identifier: AE:02:17:3A:F8:8A:9D:F0:F5:56:FD:99:DC:7A:6F:9E:E5:38:DD:86 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.49 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.2 X509v3 CRL Distribution Points: Full Name: URI:http://crl.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crl Authority Information Access: CA Issuers - URI:http://crt.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crt OCSP - URI:http://ocsp.trust-provider.cn CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 20 01:08:26.700 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:92:1F:40:D0:5C:71:23:5B:8C:1C:2C: 9E:88:FA:6E:1C:9C:6B:91:2B:23:F0:8B:9D:36:6B:5A: B4:D9:02:A7:71:02:20:3C:FE:1C:6D:A2:87:99:8D:60: 79:01:F2:85:F1:00:9A:CF:19:4E:34:D7:84:A4:E6:C3: F5:14:50:F4:A8:17:0F Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 20 01:08:26.774 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:75:DD:0F:19:AD:0F:98:28:77:05:DF:A6: 17:AD:C3:00:C3:75:1D:C3:EE:29:2D:2A:77:43:BB:27: 4D:E3:29:7E:02:21:00:F8:70:3A:E4:A0:2F:EB:85:F0: 72:F4:AF:FF:B6:B9:35:9F:0C:BE:08:BA:BD:6F:2E:3D: B7:05:D8:43:8C:E8:D0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 20 01:08:26.809 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:53:F9:E5:96:74:C5:F6:54:C9:30:B4:C7: 43:9A:0D:37:D7:5A:85:05:61:50:3D:1A:47:D8:A4:9B: C2:75:E0:DA:02:20:0E:96:B9:6A:21:C7:B6:DF:F3:91: 73:BB:9E:E9:6A:BF:E5:0E:22:BE:EE:A0:AA:CE:84:E4: F6:53:85:15:29:1E X509v3 Subject Alternative Name: DNS:mail.cuchost.com, DNS:attachment.cuchost.com, DNS:autodiscover.cuchost.com, DNS:cp.cuchost.com, DNS:webapp.cuchost.com Signature Algorithm: sha384WithRSAEncryption Signature Value: b1:02:b0:fc:35:02:5b:f0:54:26:b1:28:bb:43:77:f9:0f:7d: 6f:2b:c8:c5:1e:f0:9f:79:0e:8e:0c:fc:0c:7b:7f:e5:d3:ec: 73:ba:5c:62:6a:33:a7:2a:0d:6c:47:4e:16:a8:7d:16:15:c6: 46:25:ab:68:7c:cc:96:d2:25:bd:17:bb:10:c0:b4:6d:32:ca: e6:89:66:7f:6c:25:3f:85:53:03:27:30:1a:d5:d2:7d:08:79: 82:f0:2a:85:d4:b9:93:9a:a2:f0:ee:47:14:fd:73:c3:c6:a1: 86:21:93:fd:15:d0:c3:7d:e0:47:c7:1b:86:81:ec:94:be:db: 01:e5:b5:e0:66:60:ff:7c:b4:20:6b:b7:36:27:dc:8f:e0:0d: 34:c1:a4:cd:a3:3d:83:2e:86:c9:b2:e9:c2:1d:2e:92:d1:19: e8:32:2b:b5:a0:88:ab:7f:74:fb:90:7a:8b:4f:50:b5:75:5c: c5:fa:b3:f9:80:31:cc:1e:c4:a0:fd:81:2c:21:01:43:52:b7: 49:4e:77:1e:7e:b4:30:77:8f:c5:6d:1c:ec:3c:2f:7c:03:74: 55:3b:86:b9:02:ee:cb:32:ba:82:41:38:c3:a4:f2:99:19:a6: a4:34:2a:70:fb:88:38:0a:8c:79:6f:8c:e7:ee:87:1c:cb:9a: 8d:5f:96:91:ba:24:83:c8:8e:ae:b0:d7:ae:3b:a3:53:6b:05: dc:db:e0:09:ff:5d:3f:66:00:9b:d3:cc:d6:da:e2:b8:c2:02: 44:00:b9:fc:fc:67:c8:c9:dc:0a:59:07:00:20:c6:d0:cc:ec: ca:bf:e8:23:00:38:1c:4c:bc:2f:ed:f3:d2:a5:d6:e1:5a:cb: 20:f0:b0:08:56:9a:cf:f2:04:73:e3:12:6f:73:48:b8:b8:e3: dc:33:fa:ec:06:91:00:82:40:a7:cc:d3:25:19:04:0b:cc:c4: 79:15:e5:49:d8:55:91:17:e1:f4:55:bf:43:22:82:27:df:df: 5d:f1:d6:88:35:81
1107593961 | 2024-04-18T17:13:56.611855995 / tcp
+OK The Microsoft Exchange POP3 service is ready. +OK TOP UIDL SASL PLAIN USER .
Certificate: Data: Version: 3 (0x2) Serial Number: 85:e6:17:a1:0d:b8:4f:b4:a4:1a:e4:58:14:fe:b4:36 Signature Algorithm: sha384WithRSAEncryption Issuer: C=CN, O=TrustAsia Technologies, Inc., CN=TrustAsia RSA OV TLS CA G3 Validity Not Before: Feb 20 00:00:00 2024 GMT Not After : Mar 9 23:59:59 2025 GMT Subject: C=CN, ST=\xE4\xB8\x8A\xE6\xB5\xB7\xE5\xB8\x82, O=\xE4\xB8\x8A\xE6\xB5\xB7\xE9\x98\xB3\xE5\x85\x89\xE4\xBA\x92\xE8\x81\x94\xE4\xBF\xA1\xE6\x81\xAF\xE7\xA7\x91\xE6\x8A\x80\xE6\x9C\x89\xE9\x99\x90\xE5\x85\xAC\xE5\x8F\xB8, CN=mail.cuchost.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b3:87:da:74:bd:0e:2b:50:05:0b:7f:4e:79:10: 68:12:fd:09:01:4c:67:a8:79:35:29:2a:ab:eb:4c: 02:f4:65:e8:c7:9a:bf:5c:f1:9f:42:9e:85:2e:92: 4a:13:0e:a5:1f:46:5f:fe:34:02:4e:6d:c3:82:84: 21:39:eb:ec:67:b8:96:99:19:37:47:84:75:78:ab: 6b:1a:3e:52:df:b8:e1:77:c8:9c:c1:d1:83:f3:69: 9f:4a:86:26:e1:0c:a9:a5:de:f8:a5:b8:3b:32:15: 73:d5:76:15:cb:1b:ec:a1:53:d7:b8:ee:58:17:2b: d5:a3:de:9a:fd:f1:44:79:67:00:05:63:65:f5:17: 48:21:20:08:ca:74:bc:21:c8:0b:f4:e6:8a:0c:b2: 2c:27:d4:8a:c9:5c:1d:4a:66:b5:c4:fb:99:89:b9: c8:a5:e5:cb:07:01:5c:19:83:3e:18:34:b3:01:60: 99:bb:85:c8:09:c5:49:25:e1:95:df:74:5a:db:bc: cd:bd:d6:fd:e1:a5:1e:6b:8d:93:55:2c:64:6b:b6: f4:24:32:9f:85:0c:4e:2d:25:1b:2c:42:96:e2:e4: 8c:f9:bf:c2:0b:f5:65:0d:48:be:ca:e4:63:ee:51: 04:62:ba:07:09:2b:f9:bd:59:13:30:df:a7:76:19: 77:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 40:30:22:8B:8D:2A:32:29:F8:10:21:0D:00:63:5E:45:D3:2C:E0:25 X509v3 Subject Key Identifier: AE:02:17:3A:F8:8A:9D:F0:F5:56:FD:99:DC:7A:6F:9E:E5:38:DD:86 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.49 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.2 X509v3 CRL Distribution Points: Full Name: URI:http://crl.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crl Authority Information Access: CA Issuers - URI:http://crt.trust-provider.cn/TrustAsiaRSAOVTLSCAG3.crt OCSP - URI:http://ocsp.trust-provider.cn CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 20 01:08:26.700 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:92:1F:40:D0:5C:71:23:5B:8C:1C:2C: 9E:88:FA:6E:1C:9C:6B:91:2B:23:F0:8B:9D:36:6B:5A: B4:D9:02:A7:71:02:20:3C:FE:1C:6D:A2:87:99:8D:60: 79:01:F2:85:F1:00:9A:CF:19:4E:34:D7:84:A4:E6:C3: F5:14:50:F4:A8:17:0F Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 20 01:08:26.774 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:75:DD:0F:19:AD:0F:98:28:77:05:DF:A6: 17:AD:C3:00:C3:75:1D:C3:EE:29:2D:2A:77:43:BB:27: 4D:E3:29:7E:02:21:00:F8:70:3A:E4:A0:2F:EB:85:F0: 72:F4:AF:FF:B6:B9:35:9F:0C:BE:08:BA:BD:6F:2E:3D: B7:05:D8:43:8C:E8:D0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 20 01:08:26.809 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:53:F9:E5:96:74:C5:F6:54:C9:30:B4:C7: 43:9A:0D:37:D7:5A:85:05:61:50:3D:1A:47:D8:A4:9B: C2:75:E0:DA:02:20:0E:96:B9:6A:21:C7:B6:DF:F3:91: 73:BB:9E:E9:6A:BF:E5:0E:22:BE:EE:A0:AA:CE:84:E4: F6:53:85:15:29:1E X509v3 Subject Alternative Name: DNS:mail.cuchost.com, DNS:attachment.cuchost.com, DNS:autodiscover.cuchost.com, DNS:cp.cuchost.com, DNS:webapp.cuchost.com Signature Algorithm: sha384WithRSAEncryption Signature Value: b1:02:b0:fc:35:02:5b:f0:54:26:b1:28:bb:43:77:f9:0f:7d: 6f:2b:c8:c5:1e:f0:9f:79:0e:8e:0c:fc:0c:7b:7f:e5:d3:ec: 73:ba:5c:62:6a:33:a7:2a:0d:6c:47:4e:16:a8:7d:16:15:c6: 46:25:ab:68:7c:cc:96:d2:25:bd:17:bb:10:c0:b4:6d:32:ca: e6:89:66:7f:6c:25:3f:85:53:03:27:30:1a:d5:d2:7d:08:79: 82:f0:2a:85:d4:b9:93:9a:a2:f0:ee:47:14:fd:73:c3:c6:a1: 86:21:93:fd:15:d0:c3:7d:e0:47:c7:1b:86:81:ec:94:be:db: 01:e5:b5:e0:66:60:ff:7c:b4:20:6b:b7:36:27:dc:8f:e0:0d: 34:c1:a4:cd:a3:3d:83:2e:86:c9:b2:e9:c2:1d:2e:92:d1:19: e8:32:2b:b5:a0:88:ab:7f:74:fb:90:7a:8b:4f:50:b5:75:5c: c5:fa:b3:f9:80:31:cc:1e:c4:a0:fd:81:2c:21:01:43:52:b7: 49:4e:77:1e:7e:b4:30:77:8f:c5:6d:1c:ec:3c:2f:7c:03:74: 55:3b:86:b9:02:ee:cb:32:ba:82:41:38:c3:a4:f2:99:19:a6: a4:34:2a:70:fb:88:38:0a:8c:79:6f:8c:e7:ee:87:1c:cb:9a: 8d:5f:96:91:ba:24:83:c8:8e:ae:b0:d7:ae:3b:a3:53:6b:05: dc:db:e0:09:ff:5d:3f:66:00:9b:d3:cc:d6:da:e2:b8:c2:02: 44:00:b9:fc:fc:67:c8:c9:dc:0a:59:07:00:20:c6:d0:cc:ec: ca:bf:e8:23:00:38:1c:4c:bc:2f:ed:f3:d2:a5:d6:e1:5a:cb: 20:f0:b0:08:56:9a:cf:f2:04:73:e3:12:6f:73:48:b8:b8:e3: dc:33:fa:ec:06:91:00:82:40:a7:cc:d3:25:19:04:0b:cc:c4: 79:15:e5:49:d8:55:91:17:e1:f4:55:bf:43:22:82:27:df:df: 5d:f1:d6:88:35:81