GeneralInformation

Hostnames	powercmc.com 5d.a3.39a9.ip4.static.sl-reverse.com
Domains	powercmc.com sl-reverse.com
Country	Brazil
City	São Paulo
Organization	SoftLayer Technologies, Inc.
ISP	SoftLayer Technologies Inc.
ASN	AS36351

WebTechnologies

Security

HSTS

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-41742	NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.
CVE-2022-41741	NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its termination or potential other impact using a specially crafted audio or video file. The issue affects only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.

OpenPorts

80 443

706953128 | 2024-04-30T01:45:37.431165

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.23.1
Date: Tue, 30 Apr 2024 01:45:36 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://169.57.163.93/

-1535838328 | 2024-05-01T22:59:42.759857

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.23.1
Date: Wed, 01 May 2024 22:59:42 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 781
Connection: keep-alive
accept-ranges: bytes
cache-control: public, max-age=0
content-security-policy: default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"30d-18f13f76720"
last-modified: Thu, 25 Apr 2024 06:35:32 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:58:2d:99:9b:26:92:53:63:be:de:37:ed:1e:53:d5:0a:5e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 19 04:51:44 2024 GMT
            Not After : May 19 04:51:43 2024 GMT
        Subject: CN=powercmc.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d6:d1:93:ac:51:64:71:dc:df:8f:fa:83:e9:ac:
                    13:d5:15:8d:d6:dc:da:8f:07:70:ea:68:41:05:df:
                    5d:dc:f4:55:0b:dd:05:78:4c:53:0a:25:0f:03:ec:
                    4e:dc:07:d6:31:ce:ae:d9:ec:c1:1b:e3:f6:36:9d:
                    26:5f:59:c4:0c:67:a7:28:0c:dc:66:37:ef:06:e9:
                    80:97:0a:32:9d:29:e5:9f:f6:ab:b4:31:4d:ec:59:
                    36:f3:03:38:81:1e:0d:c7:6e:68:ec:7b:04:09:b0:
                    df:48:78:3a:43:af:36:cb:05:6a:7e:61:c8:82:41:
                    45:09:f3:4e:b6:54:bb:32:ae:de:a8:9a:26:e8:d2:
                    ef:d3:33:51:90:a1:62:a3:4b:8d:66:e5:5a:70:bf:
                    f4:ae:e9:90:67:06:0a:a6:6f:70:86:0c:0d:0b:d1:
                    75:aa:d2:4b:ce:5e:50:33:ba:09:fd:d6:d2:cf:f7:
                    bd:7c:62:b8:71:f4:fe:56:0d:db:5a:81:4f:1a:13:
                    dd:3d:e7:eb:d4:89:ee:cc:29:06:71:54:a2:d6:54:
                    82:da:40:b9:a2:12:56:83:4d:ec:8a:a9:16:cf:3c:
                    ed:e3:5b:d3:42:a8:37:2f:34:81:77:c3:38:6e:01:
                    ea:99:11:83:22:55:32:aa:5c:24:0e:6e:48:1c:ba:
                    6a:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BA:11:2D:D9:E9:FA:35:39:4E:52:83:F4:55:BF:3E:8D:6B:39:5C:9C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.powercmc.com, DNS:powercmc.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 19 05:51:44.594 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2F:81:85:8A:7D:A8:19:1C:24:BB:15:45:
                                AD:BB:97:26:92:F1:9A:C3:15:32:EC:B9:61:6A:35:E3:
                                14:00:5B:B2:02:20:0D:D5:14:EF:68:0F:D4:C1:A1:8B:
                                A1:0C:F0:6E:03:8D:F7:55:EF:97:15:98:78:56:60:0C:
                                52:FC:2B:F4:A9:BD
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb 19 05:51:44.603 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8B:44:BF:ED:99:D0:89:AA:57:E3:82:
                                1F:04:E7:F3:57:4C:DE:73:05:89:7D:9F:A2:1F:C0:2B:
                                D3:C4:49:69:AB:02:21:00:87:D1:2D:B8:73:CC:AE:2A:
                                93:44:7B:DF:39:06:0E:CD:57:F9:D6:16:C0:C6:01:BA:
                                D9:30:E9:2E:DE:8B:FA:99
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9e:8f:ca:04:fb:51:b7:06:1c:d0:4b:e2:2e:82:7c:5b:e5:56:
        49:de:f3:0c:3e:95:1d:9e:5a:7a:19:13:99:9c:64:ea:33:34:
        2b:d8:bd:1d:c0:ed:94:1a:8c:f6:b3:49:38:9e:f1:9d:d3:71:
        3d:17:60:bb:97:f9:b8:36:4d:2f:57:5e:50:44:4a:f3:14:3d:
        98:e6:6d:12:0c:75:e6:1e:d7:a9:5f:cd:86:4e:7d:66:21:95:
        1e:3c:29:27:b1:f4:29:a5:cf:d8:2b:64:2e:e3:03:69:8b:f6:
        70:be:31:1e:f7:b5:7f:b6:16:df:e0:d5:c1:61:e9:f4:ea:35:
        62:24:60:20:e5:21:30:70:de:d0:8c:37:ce:29:f8:32:4b:3d:
        30:16:5e:4a:66:9d:d1:40:db:10:f6:74:72:61:aa:2a:d0:bf:
        16:67:cf:d8:47:17:7c:30:36:c3:75:2a:5a:50:3f:b0:0a:77:
        59:53:9b:3b:40:1d:b5:0b:50:e4:ca:f4:43:de:1d:cb:8c:85:
        78:ad:5f:0b:93:91:51:43:1d:e5:e2:7a:b5:b7:95:11:f4:c7:
        e7:48:8a:01:70:e4:66:04:7c:09:f8:34:41:da:04:3c:e2:48:
        fa:96:3f:55:9c:d9:41:22:0e:f1:04:48:bc:82:9e:a9:ef:cc:
        68:11:94:96

169.57.163.93

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

706953128 | 2024-04-30T01:45:37.431165
80 / tcp

nginx1.23.1

-1535838328 | 2024-05-01T22:59:42.759857
443 / tcp

nginx1.23.1

Products

Pricing

Contact Us

169.57.163.93

Last Seen: 2024-05-01

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

706953128 | 2024-04-30T01:45:37.431165 80 / tcp

nginx1.23.1

-1535838328 | 2024-05-01T22:59:42.759857 443 / tcp

nginx1.23.1

Products

Pricing

Contact Us

706953128 | 2024-04-30T01:45:37.431165
80 / tcp

-1535838328 | 2024-05-01T22:59:42.759857
443 / tcp