madjik@prism:~ 10 $ swaks --to sriccio@xxx.com --from "madjik@xxx.com" --header "Subject: Test mail" --body "This is a test mail" --server mail03.xxx.com --port 587 --timeout 40s --auth NTLM --auth-user "madjik@xxx.com" --auth-password <redacted> -tls 
=== Trying mail03.xxx.com:587...
=== Connected to mail03.xxx.com.
<-  220 mail03.xxx.com xxx Mail Server; Sun, 23 Feb 2020 02:46:05 +01:00; Your IP: 94.103.97.100
 -> EHLO prism
<-  250-mail03.xxx.com Hello [94.x.x.x]
<-  250-SIZE 52428800
<-  250-AUTH LOGIN CRAM-MD5 NTLM
<-  250-STARTTLS
<-  250-8BITMIME
<-  250-DSN
<-  250 OK
 -> STARTTLS
<-  220 Start TLS negotiation
=== TLS started with cipher TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256
=== TLS no local certificate set
=== TLS peer DN="/OU=Domain Control Validated/OU=GoGetSSL Wildcard SSL/CN=*.xxx.com"
 ~> EHLO prism
<~  250-mail03.xxx.com Hello [94.x.x.x]
<~  250-SIZE 52428800
<~  250-AUTH LOGIN CRAM-MD5 NTLM
<~  250-8BITMIME
<~  250-DSN
<~  250 OK
 ~> AUTH NTLM
<~* 535 Authentication failed
*** No authentication type succeeded
 ~> QUIT
<~  221 Service closing transmission channel
=== Connection closed with remote host.

=== TLS started with cipher TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256
=== TLS no local certificate set
=== TLS peer DN="/OU=Domain Control Validated/OU=GoGetSSL Wildcard SSL/CN=*.xxx.com"
 ~> EHLO prism
<~  250-mail03.xxx.com Hello [x.x.x.x]
<~  250-SIZE 52428800
<~  250-AUTH LOGIN CRAM-MD5 NTLM
<~  250-8BITMIME
<~  250-DSN
<~  250 OK
 ~> AUTH LOGIN
<~  334 VXNlcm5hbWU6
 ~> bWFkamlrQGFyZWExMy5jb20=
<~  334 UGFzc3dvcmQ6
 ~> QW5nZWwxOTk4ISE=
<~  235 Authentication successful
 ~> MAIL FROM:<madjik@xxx.com>
<~  250 OK <madjik@xxx.com> Sender ok
 ~> RCPT TO:<sriccio@xxx.com>
<~  250 OK <sriccio@xxx.com> Recipient ok
 ~> DATA
<~  354 Start mail input; end with <CRLF>.<CRLF>
 ~> Date: Sun, 23 Feb 2020 02:52:43 +0100
 ~> To: sriccio@xxx.com
 ~> From: madjik@xxx.com
 ~> Subject: Test mail
 ~> Message-Id: <20200223025243.029859@prism>
 ~> X-Mailer: swaks v20181104.0 jetmore.org/john/code/swaks/
 ~> 
 ~> This is a test mail
 ~> 
 ~> 
 ~> .
<~  250 OK
 ~> QUIT
<~  221 Service closing transmission channel
=== Connection closed with remote host.

sriccio@prism:~ 28 $ telnet mail03.xxx.com 587
Trying 94.103.96.141...
Connected to mail03.xxx.com.
Escape character is '^]'.
220 mail03.xxx.com xxxMail Server; Sun, 23 Feb 2020 08:39:08 +01:00; Your IP: 94.103.97.100
EHLO prism
250-mail03.xxx.com Hello [94.103.x.x]
250-SIZE 52428800
250-AUTH LOGIN CRAM-MD5 NTLM
250-STARTTLS
250-8BITMIME
250-DSN
250 OK
AUTH NTLM
535 Authentication failed

[2020.02.23] 08:39:08.284 [94.103.x.x][4394992] Country code: CH
[2020.02.23] 08:39:08.284 [94.103.x.x][4394992] IP in whitelist
[2020.02.23] 08:39:12.987 [94.103.x.x][4394992] cmd: EHLO prism
[2020.02.23] 08:39:12.987 [94.103.x.x][4394992] rsp: 250-mail03.xxx.com Hello [94.103.x.x]250-SIZE 52428800250-AUTH LOGIN CRAM-MD5 NTLM250-STARTTLS250-8BITMIME250-DSN250 OK
[2020.02.23] 08:39:18.643 [94.103.x.x][4394992] cmd: AUTH NTLM
[2020.02.23] 08:39:18.643 [94.103.x.x][4394992] Authentication failed - ntlm start
[2020.02.23] 08:39:18.643 [94.103.x.x][4394992] rsp: 535 Authentication failed
[2020.02.23] 08:44:23.284 [94.103.x.x][4394992] rsp: 421 Command timeout, closing transmission channel
[2020.02.23] 08:44:23.284 [94.103.x.x][4394992] disconnected at 23.02.2020 08:44:23

telnet mail.smartertools.com 587
Trying 66.172.30.61...
Connected to mail.smartertools.com.
Escape character is '^]'.
220 mail.smartertools.com
ehlo
250-mail.smartertools.com Hello [94.103.x.x]
250-SIZE
250-AUTH LOGIN CRAM-MD5 NTLM
250-STARTTLS
250-8BITMIME
250-DSN
250 OK
auth ntlm
535 Authentication failed

2020.04.08 08:27:39.133 [CLIENTREMOTEIP][39266409] rsp: 220 SM_HOST
2020.04.08 08:27:39.133 [CLIENTREMOTEIP][39266409] connected at 2020-04-08 08:27:39
2020.04.08 08:27:39.133 [CLIENTREMOTEIP][39266409] Country code: PL
2020.04.08 08:27:39.148 [CLIENTREMOTEIP][39266409] cmd: EHLO CLIENT_NAME
2020.04.08 08:27:39.148 [CLIENTREMOTEIP][39266409] rsp: 250-SM_HOST Hello [CLIENTREMOTEIP]250-SIZE 104857600250-AUTH LOGIN CRAM-MD5 NTLM250-STARTTLS250-8BITMIME250-DSN250 OK
2020.04.08 08:27:39.148 [CLIENTREMOTEIP][39266409] cmd: STARTTLS
2020.04.08 08:27:39.148 [CLIENTREMOTEIP][39266409] rsp: 220 Start TLS negotiation
2020.04.08 08:27:39.367 [CLIENTREMOTEIP][39266409] cmd: EHLO CLIENT_NAME
2020.04.08 08:27:39.367 [CLIENTREMOTEIP][39266409] rsp: 250-SM_HOST Hello [CLIENTREMOTEIP]250-SIZE 104857600250-AUTH LOGIN CRAM-MD5 NTLM250-8BITMIME250-DSN250 OK
2020.04.08 08:27:39.383 [CLIENTREMOTEIP][39266409] cmd: AUTH NTLM TlRMTVNTUAABAAAABQQAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==
2020.04.08 08:27:39.383 [CLIENTREMOTEIP][39266409] Authentication failed - ntlm start
2020.04.08 08:27:39.383 [CLIENTREMOTEIP][39266409] rsp: 535 Authentication failed
2020.04.08 08:27:39.398 [CLIENTREMOTEIP][39266409] disconnected at 2020-04-08 08:27:39