GeneralInformation

Hostnames	gpot.hopto.org gpot.myds.me
Domains	hopto.org myds.me
Country	United Kingdom
City	Rochdale
Organization	YouFibre Limited
ISP	YouFibre Limited
ASN	AS212655

WebTechnologies

JavaScript frameworks

Vue.js

Network storage

Synology DiskStation

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

21 5001 7788 8090 8443

21 / tcp

-1698287702 | 2025-02-08T18:40:02.217618

220 NAS-16 FTP server ready.
530 Login incorrect.
214- The following commands are recognized (* =>'s unimplemented).
   USER    LPRT    MODE    MSOM*   RNTO    SITE    RMD     SIZE    AUTH 
   PASS    EPRT    RETR    MSAM*   ABOR    SYST    XRMD    MDTM    PBSZ 
   ACCT*   PASV    STOR    MRSQ*   DELE    STAT    PWD     MLST    PROT 
   SMNT*   LPSV    APPE    MRCP*   CWD     HELP    XPWD    MLSD    CCC 
   REIN*   EPSV    MLFL*   ALLO    XCWD    NOOP    CDUP    MFMT 
   QUIT    TYPE    MAIL*   REST    LIST    MKD     XCUP    FEAT 
   PORT    STRU    MSND*   RNFR    NLST    XMKD    STOU    OPTS 
214 Direct comments to ftp-bugs@NAS-16.
211- Extensions supported:
 AUTH TLS
 PBSZ
 PROT
 CCC
 SIZE
 MDTM
 REST STREAM
 MFMT
 TVFS
 MLST modify*;type*;unique*;size*;UNIX.mode*;UNIX.owner*;UNIX.group*;
 MLSD modify*;type*;unique*;size*;UNIX.mode*;UNIX.owner*;UNIX.group*;
 UTF8
211 End.

5001 / tcp

297522924 | 2025-01-14T11:48:18.581510

Hashes

hash

1911203275

http.dom_hash

-104915257

http.favicon.hash

163207293

http.html_hash

297522924

http.server_hash

-1340961475

http.title_hash

482030645

NAS-16 - Synology NAS

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 14 Jan 2025 11:48:18 GMT
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self';  connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://*.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://*.googleapis.com https://*.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://*.synology.com https://*.synology.cn http://*.synology.com http://*.synology.cn http://global.synologydownload.com https://global.synologydownload.com; img-src 'self' data: blob: https://*.google.com https://*.googleapis.com http://*.googlecode.com https://*.gstatic.com https://global.download.synology.com; media-src 'self' data: about: https://*.synology.com https://help.synology.cn;  script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://maps.googleapis.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn; style-src 'self' 'unsafe-inline' https://*.googleapis.com;


Synology DiskStation Manager (DSM):
  Version: 7.2.1-69057
  Hostname: NAS-16

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:c3:ac:74:2e:81:83:ee:dc:56:20:56:6f:83:42:55:c8:fe
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Dec 15 12:27:01 2024 GMT
            Not After : Mar 15 12:27:00 2025 GMT
        Subject: CN=gpot.myds.me
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:dc:a0:ed:c1:0d:62:9a:16:40:fe:6f:dc:81:6e:
                    ce:d7:05:2a:8c:f3:10:ec:2e:84:d9:6b:31:b3:5f:
                    86:e2:a7:a9:db:d1:5e:e4:7d:0a:77:1a:ed:c3:6e:
                    0c:01:9a:48:fe:e3:6d:fc:c0:9a:dc:35:74:df:8b:
                    4c:95:a8:50:f4
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A6:A8:E4:C6:50:A8:DF:9D:C6:D2:05:D4:5A:DB:F8:7C:11:CA:2D:3F
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.gpot.myds.me, DNS:gpot.myds.me
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Dec 15 13:25:31.298 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1C:27:62:9A:8C:F2:1D:2D:22:AD:53:C2:
                                CD:BC:6F:11:21:37:B3:D0:20:04:71:A4:F6:89:FD:7B:
                                0A:45:86:B2:02:20:09:B8:2B:66:F7:CA:16:5A:14:FD:
                                65:91:CE:74:C4:E9:66:41:07:81:76:3D:52:84:64:08:
                                84:D9:27:0B:E8:65
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Dec 15 13:25:31.333 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:70:3A:AD:38:17:58:4F:B3:D4:43:64:6A:
                                83:4D:76:7C:B2:CF:4D:18:8D:6E:3D:4B:0D:BA:A9:FF:
                                04:BD:3C:8A:02:20:6F:7D:98:FD:D7:70:94:84:5A:BE:
                                67:54:75:B8:85:80:37:32:CA:3B:7E:54:A5:69:85:2F:
                                A7:7B:B7:BF:04:D5
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:07:06:f9:c1:de:b1:7f:c7:d3:38:45:52:a9:e9:
        11:f6:23:ee:9a:ba:33:57:25:94:b3:fb:36:91:4f:98:23:a3:
        8e:15:c4:f0:77:a1:7b:b2:96:7a:cb:a3:6d:6b:5d:0b:02:31:
        00:d0:bd:c1:ad:bd:e3:4a:45:12:b5:5e:ee:0c:42:d6:be:9f:
        e0:41:ba:97:09:ab:8b:5f:99:33:70:0f:79:7c:7a:90:03:07:
        48:b7:96:b0:b8:b1:4a:b2:8d:11:5f:27:26

CVE-2024-0854

8090 / tcp

1468268583 | 2025-01-27T09:51:10.429064

Hashes

hash

1555648763

http.dom_hash

-2020315810

http.favicon.hash

-1498603229

http.html_hash

1468268583

http.title_hash

-851548415

qBittorrent Web UI

HTTP/1.1 200 OK
cache-control: no-store
connection: keep-alive
content-length: 1671
content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; script-src 'self' 'unsafe-inline'; object-src 'none'; form-action 'self'; frame-ancestors 'self';
content-type: text/html
cross-origin-opener-policy: same-origin
date: Mon, 27 Jan 2025 09:51:05 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block

8443 / tcp

-1161513703 | 2025-02-06T00:26:37.337631

Hashes

hash

1450133582

http.dom_hash

-1830446565

http.html_hash

-1161513703

http.server_hash

1645193486

HTTP/1.0 200 OK
Server: httpd/2.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Date: Thu, 06 Feb 2025 00:26:37 GMT
Content-Type: text/html
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:ca:5f:e7:b3:be:65:85:6d:d3:01:23:bd:a7:b7:b1:60:db
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb  3 09:19:06 2025 GMT
            Not After : May  4 09:19:05 2025 GMT
        Subject: CN=gpot.hopto.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ce:f4:80:ef:a9:cd:c3:94:bf:05:5c:5d:86:08:
                    07:d2:a0:8f:81:58:90:68:45:22:cd:82:57:40:2c:
                    2f:7a:a4:d7:3d:67:44:f1:d0:6a:84:09:f5:c9:06:
                    b6:00:f8:f2:7d:a3:78:34:e1:cc:93:7a:08:5c:89:
                    ab:e9:3b:1d:20:16:3f:1b:bb:96:b6:0a:9d:a9:b6:
                    df:67:c3:7f:1d:f3:44:e7:ce:48:e9:ed:f0:24:4b:
                    5c:7b:b6:d3:f0:72:82:f4:38:d7:75:89:e6:fd:ed:
                    a6:7a:70:ff:23:cb:ae:2e:4b:b9:05:30:f0:9e:26:
                    f1:eb:ca:6b:77:05:36:08:aa:6a:f9:9e:76:6d:2f:
                    9b:55:24:bc:20:fe:8d:6f:53:48:d7:f6:6f:e6:57:
                    12:9e:f6:21:6c:ef:8f:6c:6f:2f:2f:ba:3e:48:cf:
                    21:d9:a9:c4:23:91:70:db:c9:49:9f:eb:21:33:55:
                    a7:27:28:f4:58:24:29:57:19:51:19:c3:05:7f:90:
                    9b:08:00:2b:18:f6:6f:4d:4e:79:61:1f:34:dd:f4:
                    49:db:0c:5b:26:ef:47:50:8a:8b:f1:82:e7:01:25:
                    6b:f0:76:93:45:69:1b:d9:bf:bd:bb:09:e1:67:f0:
                    88:60:e3:41:f3:18:8c:81:35:8e:02:23:eb:3e:17:
                    42:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5A:0A:C2:82:F6:F4:30:AB:26:53:72:6E:84:BD:D6:C3:5E:B3:72:4D
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:gpot.hopto.org
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb  3 10:17:36.163 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:33:07:2D:3D:A2:C0:D0:66:63:99:35:CC:
                                8E:48:8B:BE:D4:C1:F1:04:55:34:F0:F2:59:03:DF:46:
                                01:84:3E:1F:02:21:00:C1:2C:5F:72:A2:A9:69:42:AE:
                                F0:2D:EA:9A:59:0D:08:E3:42:28:8F:CB:0A:E4:6C:BE:
                                E1:E0:1C:06:C0:24:10
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb  3 10:17:36.160 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CF:4C:4D:37:87:3F:16:41:BD:00:59:
                                FF:84:42:BE:E0:EF:B0:86:93:AA:DC:14:5E:10:5B:9C:
                                A6:0A:C4:A8:94:02:21:00:DB:3E:9D:32:7E:91:5B:BA:
                                F9:DB:34:F9:B5:F9:B4:33:CE:8C:9B:D7:4C:88:12:BF:
                                78:39:2A:A1:F2:C4:CD:A5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        c4:74:ec:7f:ef:9a:c3:03:b7:56:be:28:54:8e:30:7d:55:b2:
        70:5b:56:b1:74:bb:05:30:a6:2e:ae:d5:29:b8:4c:f5:05:f5:
        88:11:f1:9f:a7:ae:83:d6:f4:6d:6e:0e:0f:c9:c8:3d:25:3b:
        93:04:ae:17:a3:d5:5f:18:96:6b:79:f8:8d:03:73:3d:2f:bc:
        00:7b:27:57:a8:6e:d0:0a:17:fd:65:a6:95:76:84:32:28:db:
        36:fa:99:92:bb:81:74:2b:f9:5f:d6:fc:f8:99:c7:8d:8e:bb:
        c0:f3:11:4c:f0:e7:6d:6e:c3:0d:6f:67:3b:28:b8:ad:c2:2f:
        e6:b1:9e:e2:c7:0b:43:9a:a7:fc:0e:5c:f3:d2:81:b9:f3:f9:
        31:03:56:cd:b8:35:58:d6:23:28:f1:e7:65:65:b7:5b:e3:f2:
        61:b6:6b:42:75:0e:71:b6:25:84:8a:13:63:b9:47:6c:15:b6:
        67:f6:39:a7:29:71:f5:cd:97:6c:e2:53:82:38:52:4a:d2:95:
        d8:4f:76:30:b8:77:84:b5:9a:4a:0a:0c:85:f6:63:a0:78:32:
        b9:aa:14:eb:4f:75:e9:86:1a:7f:35:db:39:16:e4:1c:8a:81:
        89:d8:f9:6e:bc:06:db:08:d3:a5:77:f1:4d:d8:52:89:c0:b4:
        43:16:e1:60

88.97.252.164

Last Seen: 2025-02-08

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

-1698287702 | 2025-02-08T18:40:02.217618

5001 / tcp

297522924 | 2025-01-14T11:48:18.581510

Hashes

nginx

8090 / tcp

1468268583 | 2025-01-27T09:51:10.429064

Hashes

8443 / tcp

-1161513703 | 2025-02-06T00:26:37.337631

Hashes

ASUS Wireless Router RT-AC86U

Products

Pricing

Contact Us

88.97.252.164

Last Seen: 2025-02-08

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 5001 Latest CVSS

OpenPorts

21 / tcp -1698287702 | 2025-02-08T18:40:02.217618

5001 / tcp 297522924 | 2025-01-14T11:48:18.581510

Hashes

nginx

8090 / tcp 1468268583 | 2025-01-27T09:51:10.429064

Hashes

8443 / tcp -1161513703 | 2025-02-06T00:26:37.337631

Hashes

ASUS Wireless Router RT-AC86U

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-1698287702 | 2025-02-08T18:40:02.217618

5001 / tcp

297522924 | 2025-01-14T11:48:18.581510

8090 / tcp

1468268583 | 2025-01-27T09:51:10.429064

8443 / tcp

-1161513703 | 2025-02-06T00:26:37.337631