IP:
162.223.192.11
Country/Region:
United States of America 
City:
Los Angeles
Organization:
AS-COLOAM
ISP:
-
ASN:
21769
Last update time:
2025-08-29 11:00:00
Domain(0):
Component Layer:
Unassigned Component:
162.223.192.11:135
\x05\x00
\x03\x10\x00\x00\x00\x18\x00\x00\x00\x01\x00\x00\x00\x04\x00\x01\x05\x00\x00\x00\x00
ServerAlive2:
IP1: mail1
IP2: 10.10.73.11
IP3: 162.223.192.11
IP4: 2002:a2df:c00b::a2df:c00b
NTLMSSP:
Target_Name: MAIL1
Product_Version: 6.1.7601 Ntlm 15
OS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1
NetBIOS_Domain_Name: MAIL1
NetBIOS_Computer_Name: MAIL1
DNS_Domain_Name: mail1.surgeservers.net
DNS_Computer_Name: mail1.surgeservers.net
System_Time: 2025-08-29 03:05:39 +0000 UTC
DCERPC Dump:
d95afe70-a6d5-4259-822e-2c84da1ddb0d (wininit.exe):
- NCACN: 162.223.192.11:49152
- NCALRPC: WindowsShutdown\x00
- NCACN: \\MAIL1\x00\\PIPE\InitShutdown\x00
- NCALRPC: WMsgKRpc04AE60\x00
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 (dhcpcore.dll):
- NCALRPC: dhcpcsvc\x00
- NCALRPC: dhcpcsvc6\x00
- NCACN: 162.223.192.11:49153
- NCACN: \\MAIL1\x00\\pipe\eventlog\x00
- NCALRPC: eventlog\x00
98716d03-89ac-44c7-bb8c-285824e51c4a (srvsvc.dll):
- NCACN: 162.223.192.11:49154
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
7ea70bcf-48af-4f6a-8968-6a440754d5fa (nsisvc.dll):
- NCALRPC: LRPC-09bb3f211d2e79ceaa\x00
- NCALRPC: OLE3E706042C7114F1DB69DCAD24979\x00
2fb92682-6599-42dc-ae13-bd2ca89bd11c (mpssvc.dll):
- NCALRPC: LRPC-9b2f175f8345133e49\x00
4a452661-8290-4b36-8fbe-7f4093a94978 (spoolsv.exe):
- NCALRPC: spoolss\x00
367abb81-9844-35f1-ad32-98f038001003 (services.exe):
- NCACN: 162.223.192.11:49156
30adc50c-5cbc-46ce-9a0e-91914789e23c (nrpsrv.DLL):
- NCACN: 162.223.192.11:49153
- NCACN: \\MAIL1\x00\\pipe\eventlog\x00
- NCALRPC: eventlog\x00
30b044a5-a225-43f0-b3a4-e060df91f9c1 (certprop.dll):
- NCACN: \\MAIL1\x00\\PIPE\srvsvc\x00
- NCACN: 162.223.192.11:49154
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
378e52b0-c0a9-11cf-822d-00aa0051e40f (taskcomp.dll):
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
24019106-a203-4642-b88d-82dae9158929:
- NCALRPC: LRPC-422ba51496cfae5a49\x00
ae33069b-a2a8-46ee-a235-ddfd339be281 (spoolsv.exe):
- NCALRPC: spoolss\x00
76f226c3-ec14-4325-8a99-6a46348418af (WinLogon.exe):
- NCALRPC: WindowsShutdown\x00
- NCACN: \\MAIL1\x00\\PIPE\InitShutdown\x00
- NCALRPC: WMsgKRpc04AE60\x00
- NCALRPC: WMsgKRpc04B161\x00
- NCALRPC: WMsgKRpc1F599E3193\x00
a398e520-d59a-4bdd-aa7a-3c1e0303a511:
- NCACN: 162.223.192.11:49154
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
1ff70682-0a51-30e8-076d-740be8cee98b (taskcomp.dll):
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
86d35949-83c9-4044-b424-db363231fd0c (schedsvc.dll):
- NCACN: 162.223.192.11:49154
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
dd490425-5325-4565-b774-7e27d6c09c24 (bfe.dll):
- NCALRPC: LRPC-9b2f175f8345133e49\x00
7f1343fe-50a9-4927-a778-0c5859517bac (wkssvc.dll):
- NCACN: \\MAIL1\x00\\PIPE\wkssvc\x00
- NCALRPC: DNSResolver\x00
3473dd4d-2e88-4006-9cba-22570909dd10 (winhttp.dll):
- NCACN: \\MAIL1\x00\\PIPE\W32TIME_ALT\x00
- NCALRPC: W32TIME_ALT\x00
- NCALRPC: LRPC-09bb3f211d2e79ceaa\x00
- NCALRPC: OLE3E706042C7114F1DB69DCAD24979\x00
12345678-1234-abcd-ef00-0123456789ab (spoolsv.exe):
- NCALRPC: LRPC-13bbdb565855a7fc95\x00
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 (SYSNTFY.dll):
- NCALRPC: LRPC-678a4d4299ac9c3d2d\x00
- NCACN: \\MAIL1\x00\\PIPE\srvsvc\x00
- NCACN: 162.223.192.11:49154
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 (dhcpcore6.dll):
- NCALRPC: dhcpcsvc6\x00
- NCACN: 162.223.192.11:49153
- NCACN: \\MAIL1\x00\\pipe\eventlog\x00
- NCALRPC: eventlog\x00
f6beaff7-1e19-4fbb-9f8f-b89e2018337c (wevtsvc.dll):
- NCACN: 162.223.192.11:49153
- NCACN: \\MAIL1\x00\\pipe\eventlog\x00
- NCALRPC: eventlog\x00
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 (spoolsv.exe):
- NCALRPC: spoolss\x00
12345778-1234-abcd-ef00-0123456789ac (samsrv.dll):
- NCACN: 162.223.192.11:49155
- NCALRPC: samss lpc\x00
- NCALRPC: dsrole\x00
- NCACN: \\MAIL1\x00\\PIPE\protected_storage\x00
- NCALRPC: protected_storage\x00
- NCALRPC: lsasspirpc\x00
- NCALRPC: lsapolicylookup\x00
- NCALRPC: LSARPC_ENDPOINT\x00
- NCALRPC: securityevent\x00
- NCALRPC: audit\x00
- NCALRPC: LRPC-8c35aa2e7197b6444b\x00
- NCACN: \\MAIL1\x00\\pipe\lsass\x00
12e65dd8-887f-41ef-91bf-8d816c42c2e7 (WinLogon.exe):
- NCALRPC: WMsgKRpc1F599E3193\x00
552d076a-cb29-4e44-8b6a-d15e59e2c0af (iphlpsvc.dll):
- NCACN: 162.223.192.11:49154
- NCACN: \\MAIL1\x00\\PIPE\atsvc\x00
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 (mpssvc.dll):
- NCALRPC: LRPC-9b2f175f8345133e49\x00
f763c91c-2ab1-47fa-868f-7de7efd42194:
- NCALRPC: RdvVmAllowListRpc\x00
- NCALRPC: OLE4EE55E50BD534A84B945E5CE2553\x00
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 (schedsvc.dll):
- NCALRPC: senssvc\x00
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
2eb08e3e-639f-4fba-97b1-14f878961076:
- NCALRPC: OLE2E0B3E7C6E79443289130DE8EFA4\x00
- NCALRPC: IUserProfile2\x00
906b0ce0-c70b-1067-b317-00dd010662da ([MS-CMPO]: MSDTC Connection Manager:):
- NCALRPC: LRPC-09cd9cc166db02c277\x00
220 mail1.surgeservers.net
250-mail1.surgeservers.net Hello [*.*.*.*]
250-SIZE 31457280
250-AUTH LOGIN CRAM-MD5
250 OK
502 Command not implemented
* OK IMAP4rev1 SmarterMail
A001 BAD Command does not exist or is not implemented
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 130
Content-Type: text/html; charset=utf-8
Location: /Login.aspx
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=4cv43355lhfknh55aeqqau55; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Tue, 26 Aug 2025 17:08:45 GMT
162.223.192.11:49154
\x05\x00
\x03\x10\x00\x00\x00\x18\x00\x00\x00\x01\x00\x00\x00\x04\x00\x01\x05\x00\x00\x00\x00
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 130
Content-Type: text/html; charset=utf-8
Location: /Login.aspx
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=bz4mu0m1wwhf1x45nmojosig; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Mon, 25 Aug 2025 02:10:37 GMT
HTTP/1.1 400 Bad Request
Connection: close
Content-Length: 334
Content-Type: text/html; charset=us-ascii
Date: Sat, 23 Aug 2025 08:26:53 GMT
Server: Microsoft-HTTPAPI/2.0
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02 \x08\x00\x02\x00\x00\x00
Flag: PROTOCOL_HYBRID
Target_Name: MAIL1
Product_Version: 6.1.7601 Ntlm 15
OS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1
NetBIOS_Domain_Name: MAIL1
NetBIOS_Computer_Name: MAIL1
DNS_Domain_Name: mail1.surgeservers.net
DNS_Computer_Name: mail1.surgeservers.net
System_Time: 2025-08-22 17:48:47 +0000 UTC