52.168.16.227:20000 (tcp/http/tls) - last seen on 2024-11-21 at 08:35:22 UTC
-
- IP
- 52.168.16.227
- Network
- 52.160.0.0/11
- Domain(s)
- cloudapp.net
- Device
-
<enterprise field>: device.class
- Operating System
- Microsoft Windows
- HTTP Title
- Bad Request
- ASN
- AS8075
- Organization
- MICROSOFT-CORP-MSN-AS-BLOCK
- Protocol
- http Cert not expired http
- Source
- datascan
-
- Operating System
- Microsoft Windows
- Product
- Microsoft HTTPAPI 2.0
- CPE(s)
-
<enterprise field>: cpe
-
- Issuer Common Name
- AME Infra CA 05
- Subject Common Name
- 1d7f0077-4f00-4fc7-966f-29b28f6b1e7b.gwt.cloudapp.net
- Subject Alt Name
- azuregateway-1d7f0077-4f00-4fc7-966f-29b28f6b1e7b-e64f6d72bf3b.gwt.cloudapp.net
- SHA256 Fingerprint
- 2b532895f6eac37b94767451ba091908be32d203bd19d355adcb750dc9d4b7fd
- Validity Not Before
- 2024-10-17T02:04:50Z
- Validity Not After
- 2025-10-12T02:04:50Z
This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.
-
- Data MD5
- ab7ec59c257a6ef4d994483c583b818c
- HTTP Header MD5
- 5f8987fc4ee9770a3292cd04557b2dbf
- HTTP Body MD5
- 779df2c90c98bc5e3cb4127ecf04909e
-
HTTP/1.1 400 Bad Request Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Thu, 21 Nov 2024 08:35:21 GMT Connection: close Content-Length: 326 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"> <HTML><HEAD><TITLE>Bad Request</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD> <BODY><h2>Bad Request - Invalid Verb</h2> <hr><p>HTTP Error 400. The request verb is invalid.</p> </BODY></HTML> -
{ "@category" : "datascan", "@timestamp" : "2024-11-21T08:35:22.000Z", "app" : { "extract" : { "domain" : [ "w3.org" ], "hostname" : [ "www.w3.org" ], "url" : [ "http://www.w3.org/TR/html4/strict.dtd" ] }, "http" : { "bodymd5" : "779df2c90c98bc5e3cb4127ecf04909e", "bodymmh3" : -640633908, "headermd5" : "5f8987fc4ee9770a3292cd04557b2dbf", "headermmh3" : -941712642, "title" : "Bad Request" }, "length" : 505 }, "asn" : "AS8075", "ca" : "false", "city" : "Washington", "country" : "US", "cpe" : "<enterprise field>: cpe", "cpecount" : "<enterprise field>: cpecount", "data" : "HTTP/1.1 400 Bad Request\r\nContent-Type: text/html; charset=us-ascii\r\nServer: Microsoft-HTTPAPI/2.0\r\nDate: Thu, 21 Nov 2024 08:35:21 GMT\r\nConnection: close\r\nContent-Length: 326\r\n\r\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\"\"http://www.w3.org/TR/html4/strict.dtd\">\r\n<HTML><HEAD><TITLE>Bad Request</TITLE>\r\n<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=us-ascii\"></HEAD>\r\n<BODY><h2>Bad Request - Invalid Verb</h2>\r\n<hr><p>HTTP Error 400. The request verb is invalid.</p>\r\n</BODY></HTML>\r\n", "datamd5" : "ab7ec59c257a6ef4d994483c583b818c", "datammh3" : 1596030123, "device" : { "class" : "<enterprise field>: device.class" }, "domain" : [ "cloudapp.net" ], "extkeyusage" : [ "serverAuth", "clientAuth" ], "fingerprint" : { "md5" : "b7fe4eba2a9cfc4d4ccfe3db7d2e317a", "sha1" : "1fc5d846319598828fca7d6fe3f952538bbd28de", "sha256" : "2b532895f6eac37b94767451ba091908be32d203bd19d355adcb750dc9d4b7fd" }, "geolocus" : { "asn" : "AS8075", "continent" : "NA", "continentname" : "North America", "country" : "US", "countryname" : "United States", "domain" : [ "microsoft.com" ], "isineu" : "false", "latitude" : "37.09024", "location" : "37.09024,-95.712891", "longitude" : "-95.712891", "netname" : "MSFT", "organization" : "Microsoft Corporation", "subnet" : "52.168.0.0/16" }, "host" : [ "1d7f0077-4f00-4fc7-966f-29b28f6b1e7b", "azuregateway-1d7f0077-4f00-4fc7-966f-29b28f6b1e7b-e64f6d72bf3b" ], "hostname" : [ "1d7f0077-4f00-4fc7-966f-29b28f6b1e7b.gwt.cloudapp.net", "azuregateway-1d7f0077-4f00-4fc7-966f-29b28f6b1e7b-e64f6d72bf3b.gwt.cloudapp.net" ], "ip" : "52.168.16.227", "ipv6" : "false", "issuer" : { "commonname" : "AME Infra CA 05" }, "keyusage" : [ "digitalSignature", "keyEncipherment" ], "latitude" : "38.7095", "location" : "38.7095,-78.1539", "longitude" : "-78.1539", "node" : { "country" : "<enterprise field>: node.country", "groupid" : "<enterprise field>: node.groupid", "id" : "<enterprise field>: node.id", "physicalcountry" : "<enterprise field>: node.physicalcountry" }, "organization" : "MICROSOFT-CORP-MSN-AS-BLOCK", "os" : "Windows", "osvendor" : "Microsoft", "port" : 20000, "product" : "HTTPAPI", "productvendor" : "Microsoft", "productversion" : "2.0", "protocol" : "http", "protocolversion" : "1.1", "publickey" : { "algorithm" : "rsaEncryption", "length" : 2048 }, "reason" : "Bad Request", "seen_date" : "2024-11-21", "serial" : "7c:05:ba:16:41:99:2b:7a:04:4c:ad:7a:fc:00:00:05:ba:16:41", "signature" : { "algorithm" : "sha256WithRSAEncryption" }, "source" : "datascan", "status" : 400, "subdomains" : [ "gwt.cloudapp.net" ], "subject" : { "altname" : [ "azuregateway-1d7f0077-4f00-4fc7-966f-29b28f6b1e7b-e64f6d72bf3b.gwt.cloudapp.net" ], "commonname" : "1d7f0077-4f00-4fc7-966f-29b28f6b1e7b.gwt.cloudapp.net" }, "subnet" : "52.160.0.0/11", "tag" : "<enterprise field>: tag", "tld" : [ "net" ], "tls" : "true", "transport" : "tcp", "validity" : { "notafter" : "2025-10-12T02:04:50Z", "notbefore" : "2024-10-17T02:04:50Z" }, "version" : "v3", "wildcard" : "false" }