12

=============================================
Starting portqry.exe -n cms.colt -e 135 -p TCP ...
Querying target system called:
cms.colt
Attempting to resolve name to IP address...
Name resolved to 10.64.2.164
querying...
TCP port 135 (epmap service): LISTENING
Using ephemeral source port

Querying Endpoint Mapper Database...
Server's response:
UUID: 6b5bdd1e-528c-422c-af8c-a4079be4fe48 Remote Fw APIs

ncacn_ip_tcp:cms.colt[3012]
UUID: 12345678-1234-abcd-ef00-0123456789ab IPSec Policy agent endpoint

UUID: 91ae6020-9e3c-11cf-8d7c-00aa00c091be
ncacn_np:cms.colt[\\pipe\\cert]
UUID: 91ae6020-9e3c-11cf-8d7c-00aa00c091be
UUID: 50abc2a4-574d-40b3-9d66-ee4fd5fba076
UUID: 367abb81-9844-35f1-ad32-98f038001003
UUID: 45f52c28-7f9f-101a-b52b-08002b2efabe
UUID: 45f52c28-7f9f-101a-b52b-08002b2efabe
ncacn_np:cms.colt[\\pipe\\WinsPipe]
UUID: 811109bf-a4e1-11d1-ab54-00a0c91e9b45
UUID: 811109bf-a4e1-11d1-ab54-00a0c91e9b45
ncacn_np:cms.colt[\\pipe\\WinsPipe]
UUID: f5cc59b4-4264-101a-8c59-08002b2f8426 NtFrs Service

UUID: d049b186-814f-11d1-9a3c-00c04fc9b232 NtFrs API

UUID: a00c021c-2be2-11d2-b678-0000f87a8f8e PERFMON SERVICE

UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface
ncacn_np:cms.colt[\\pipe\\lsass]

ncacn_np:cms.colt[\\PIPE\\protected_storage]


ncacn_http:cms.colt[3005]
UUID: 12345778-1234-abcd-ef00-0123456789ab
UUID: 12345778-1234-abcd-ef00-0123456789ab
UUID: 12345778-1234-abcd-ef00-0123456789ab
UUID: 12345778-1234-abcd-ef00-0123456789ab
UUID: 12345778-1234-abcd-ef00-0123456789ac
UUID: 12345778-1234-abcd-ef00-0123456789ac
UUID: 12345778-1234-abcd-ef00-0123456789ac
UUID: 12345778-1234-abcd-ef00-0123456789ac
UUID: 12345778-1234-abcd-ef00-0123456789ac
UUID: 12345678-1234-abcd-ef00-01234567cffb
UUID: 12345678-1234-abcd-ef00-01234567cffb
UUID: 12345678-1234-abcd-ef00-01234567cffb
UUID: 12345678-1234-abcd-ef00-01234567cffb
UUID: 12345678-1234-abcd-ef00-01234567cffb
UUID: 1ff70682-0a51-30e8-076d-740be8cee98b
ncacn_np:cms.colt[\\PIPE\\atsvc]
UUID: 378e52b0-c0a9-11cf-822d-00aa0051e40f
UUID: 86d35949-83c9-4044-b424-db363231fd0c
UUID: 86d35949-83c9-4044-b424-db363231fd0c
UUID: 98716d03-89ac-44c7-bb8c-285824e51c4a XactSrv service

UUID: 98716d03-89ac-44c7-bb8c-285824e51c4a XactSrv service

UUID: 201ef99a-7fa0-444c-9399-19ba84f12a1a AppInfo



ncacn_np:cms.colt[\\PIPE\\srvsvc]
UUID: 5f54ce7d-5b79-4175-8584-cb65313a0e98 AppInfo



UUID: fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 AppInfo



UUID: 58e604e8-9adb-4d2e-a464-3b0683fb1480 AppInfo



UUID: 30b044a5-a225-43f0-b3a4-e060df91f9c1
UUID: a398e520-d59a-4bdd-aa7a-3c1e0303a511 IKE/Authip API


UUID: 552d076a-cb29-4e44-8b6a-d15e59e2c0af IP Transition Configuration endpoint



UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name



UUID: f6beaff7-1e19-4fbb-9f8f-b89e2018337c Event log TCPIP

ncacn_np:cms.colt[\\pipe\\eventlog]
UUID: f6beaff7-1e19-4fbb-9f8f-b89e2018337c Event log TCPIP

UUID: 30adc50c-5cbc-46ce-9a0e-91914789e23c NRP server endpoint

UUID: 30adc50c-5cbc-46ce-9a0e-91914789e23c NRP server endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 DHCP Client LRPC Endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 DHCP Client LRPC Endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 DHCPv6 Client LRPC Endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 DHCPv6 Client LRPC Endpoint

UUID: d95afe70-a6d5-4259-822e-2c84da1ddb0d
ncacn_np:cms.colt[\\PIPE\\InitShutdown]
UUID: d95afe70-a6d5-4259-822e-2c84da1ddb0d
UUID: 76f226c3-ec14-4325-8a99-6a46348418af
ncacn_np:cms.colt[\\PIPE\\InitShutdown]
Total endpoints found: 72
==== End of RPC Endpoint Mapper query response ====

portqry.exe -n cms.colt -e 135 -p TCP exits with return code 0x00000000.
=============================================
Starting portqry.exe -n cms.colt -e 389 -p BOTH ...
cms.colt
querying...
TCP port 389 (ldap service): LISTENING

Sending LDAP query to TCP port 389...
LDAP query response:
currentdate: 06/24/2018 13:07:30 (unadjusted GMT)

subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=cms,DC=colt
dsServiceName: CN=NTDS Settings,CN=CMSPG-
IN21,CN=Servers,CN=LON01,CN=Sites,CN=Configuration,DC=cms,DC=colt
namingContexts: DC=cms,DC=colt
defaultNamingContext: DC=cms,DC=colt
schemaNamingContext: CN=Schema,CN=Configuration,DC=cms,DC=colt
configurationNamingContext: CN=Configuration,DC=cms,DC=colt
rootDomainNamingContext: DC=cms,DC=colt
supportedControl: 1.2.840.113556.1.4.319
supportedLDAPVersion: 3
supportedLDAPPolicies: MaxPoolThreads
highestCommittedUSN: 20295240
supportedSASLMechanisms: GSSAPI
dnsHostName: cmspg-in21.cms.colt
ldapServiceName: cms.colt:cmspg-in21$@CMS.COLT
serverName: CN=CMSPG-
supportedCapabilities: 1.2.840.113556.1.4.800
isSynchronized: TRUE
isGlobalCatalogReady: TRUE
domainFunctionality: 2
forestFunctionality: 2
domainControllerFunctionality: 7
======== End of LDAP query response ========
UDP port 389 (unknown service): LISTENING or FILTERED

Sending LDAP query to UDP port 389...
LDAP query response:
currentdate: 06/24/2018 13:07:33 (unadjusted GMT)

subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=cms,DC=colt
dsServiceName: CN=NTDS Settings,CN=CMSPG-
namingContexts: DC=cms,DC=colt
defaultNamingContext: DC=cms,DC=colt
schemaNamingContext: CN=Schema,CN=Configuration,DC=cms,DC=colt
configurationNamingContext: CN=Configuration,DC=cms,DC=colt
rootDomainNamingContext: DC=cms,DC=colt
supportedControl: 1.2.840.113556.1.4.319
supportedLDAPVersion: 3
supportedLDAPPolicies: MaxPoolThreads
highestCommittedUSN: 20295246
supportedSASLMechanisms: GSSAPI
dnsHostName: cmspg-in21.cms.colt
ldapServiceName: cms.colt:cmspg-in21$@CMS.COLT
serverName: CN=CMSPG-
supportedCapabilities: 1.2.840.113556.1.4.800
isSynchronized: TRUE
isGlobalCatalogReady: TRUE
domainFunctionality: 2
forestFunctionality: 2
domainControllerFunctionality: 7
======== End of LDAP query response ========
UDP port 389 is LISTENING
portqry.exe -n cms.colt -e 389 -p BOTH exits with return code 0x00000000.

=============================================
cms.colt
querying...
TCP port 636 (ldaps service): FILTERED

=============================================

cms.colt
querying...
TCP port 3268 (msft-gc service): FILTERED

=============================================
cms.colt
querying...
TCP port 3269 (msft-gc-ssl service): FILTERED

=============================================
cms.colt
querying...
TCP port 53 (domain service): FILTERED
UDP port 53 (domain service): LISTENING or FILTERED
Sending DNS query to UDP port 53...
DNS query timed out

=============================================

cms.colt
querying...
TCP port 88 (kerberos service): LISTENING
UDP port 88 (kerberos service): LISTENING or FILTERED

=============================================
cms.colt
querying...
TCP port 445 (microsoft-ds service): LISTENING

=============================================
Starting portqry.exe -n cms.colt -e 137 -p UDP ...
cms.colt
querying...
UDP port 137 (netbios-ns service): LISTENING or FILTERED

Attempting NETBIOS adapter status query to UDP port 137...
NETBIOS name for 10.64.2.164 not found (timeout)

Adapter status query failed.
UDP port: FILTERED
portqry.exe -n cms.colt -e 137 -p UDP exits with return code 0x00000001.

=============================================
Starting portqry.exe -n cms.colt -e 138 -p UDP ...

cms.colt
querying...
UDP port 138 (netbios-dgm service): LISTENING or FILTERED

portqry.exe -n cms.colt -e 138 -p UDP exits with return code 0x00000002.
=============================================
cms.colt
querying...
TCP port 139 (netbios-ssn service): LISTENING

=============================================
cms.colt
querying...
TCP port 42 (nameserver service): FILTERED


12

Uploaded by

Copyright:

Available Formats

12

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

12

Uploaded by

Copyright:

Available Formats

=============================================

Starting portqry.exe -n cms.colt -e 135 -p TCP ...

Querying target system called:

Attempting to resolve name to IP address...

Name resolved to 10.64.2.164

TCP port 135 (epmap service): LISTENING

Using ephemeral source port

UUID: 6b5bdd1e-528c-422c-af8c-a4079be4fe48 Remote Fw APIs

UUID: 12345678-1234-abcd-ef00-0123456789ab IPSec Policy agent endpoint

UUID: f5cc59b4-4264-101a-8c59-08002b2f8426 NtFrs Service

UUID: d049b186-814f-11d1-9a3c-00c04fc9b232 NtFrs API

UUID: a00c021c-2be2-11d2-b678-0000f87a8f8e PERFMON SERVICE

UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface

UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface

UUID: e3514235-4b06-11d1-ab04-00c04fc2dcd2 MS NT Directory DRS Interface

UUID: 98716d03-89ac-44c7-bb8c-285824e51c4a XactSrv service

UUID: 98716d03-89ac-44c7-bb8c-285824e51c4a XactSrv service

UUID: 201ef99a-7fa0-444c-9399-19ba84f12a1a AppInfo

UUID: 201ef99a-7fa0-444c-9399-19ba84f12a1a AppInfo

UUID: 201ef99a-7fa0-444c-9399-19ba84f12a1a AppInfo

UUID: 5f54ce7d-5b79-4175-8584-cb65313a0e98 AppInfo

UUID: 5f54ce7d-5b79-4175-8584-cb65313a0e98 AppInfo

UUID: 5f54ce7d-5b79-4175-8584-cb65313a0e98 AppInfo

UUID: fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 AppInfo

UUID: fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 AppInfo

UUID: fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 AppInfo

UUID: 58e604e8-9adb-4d2e-a464-3b0683fb1480 AppInfo

UUID: 58e604e8-9adb-4d2e-a464-3b0683fb1480 AppInfo

UUID: 58e604e8-9adb-4d2e-a464-3b0683fb1480 AppInfo

UUID: a398e520-d59a-4bdd-aa7a-3c1e0303a511 IKE/Authip API

UUID: a398e520-d59a-4bdd-aa7a-3c1e0303a511 IKE/Authip API

UUID: 552d076a-cb29-4e44-8b6a-d15e59e2c0af IP Transition Configuration endpoint

UUID: 552d076a-cb29-4e44-8b6a-d15e59e2c0af IP Transition Configuration endpoint

UUID: 552d076a-cb29-4e44-8b6a-d15e59e2c0af IP Transition Configuration endpoint

UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name

UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name

UUID: c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 Impl friendly name

UUID: f6beaff7-1e19-4fbb-9f8f-b89e2018337c Event log TCPIP

UUID: f6beaff7-1e19-4fbb-9f8f-b89e2018337c Event log TCPIP

UUID: 30adc50c-5cbc-46ce-9a0e-91914789e23c NRP server endpoint

UUID: 30adc50c-5cbc-46ce-9a0e-91914789e23c NRP server endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 DHCP Client LRPC Endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 DHCP Client LRPC Endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 DHCPv6 Client LRPC Endpoint

UUID: 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 DHCPv6 Client LRPC Endpoint

==== End of RPC Endpoint Mapper query response ====

Starting portqry.exe -n cms.colt -e 389 -p BOTH ...

Querying target system called:

Attempting to resolve name to IP address...

Name resolved to 10.64.2.164

TCP port 389 (ldap service): LISTENING

Using ephemeral source port

LDAP query response:

currentdate: 06/24/2018 13:07:30 (unadjusted GMT)

======== End of LDAP query response ========

UDP port 389 (unknown service): LISTENING or FILTERED

LDAP query response:

currentdate: 06/24/2018 13:07:33 (unadjusted GMT)

======== End of LDAP query response ========

UDP port 389 is LISTENING