www.ashampoo.com/ashampoo_winoptimizer_26_sm.exe
302 Found 566 B URL User Request GET HTTP/1.1 www.ashampoo.com/ashampoo_winoptimizer_26_sm.exe
IP
Certificate IssuerSectigo Limited
Subjectwww.ashampoo.com
Fingerprint12:FD:C6:5A:FE:C7:34:AB:F2:FD:0F:33:27:26:F9:29:3C:8C:2B:C6
ValidityThu, 27 Apr 2023 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 47763470f9fb85d5de85776491b99283
130831f203099e34a2e531cdcb919e6afefe60e9
290314fd8340911b27b3efd68a43a847ae5fcaaca75a16a202bcbdd6215a0349
GET /ashampoo_winoptimizer_26_sm.exe HTTP/1.1
Host: www.ashampoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 06 Nov 2023 19:40:49 GMT
Server: Apache
Strict-Transport-Security: max-age=31556926
Cache-Control: no-cache, private
Location: https://cdn1.ashampoo.net/ashampoo/6706/ashampoo_winoptimizer_26_26.00.19_sm.exe
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImI0ekRtR2l6S0F3YU81Q1kzYUFTQmc9PSIsInZhbHVlIjoiZjVsaXI0SEtMd1UzL2Vaajl1bWpCNEo1aC9RdUMvL3lYYXBvZGptWVBFNUg5d0toUmkvSlNJTjUrK0E5U0xLVUhXM2JxTmR3SUk5N1RDcldNNWdsdURJQllSay9vZ2lMNEU5RHlJTVg3RTdRUFpuV1czK2xDTC94UmpOS3RMWUIiLCJtYWMiOiI4YzY3NzVhNGFjOTlmNzJmYjM1OGRmZDY2MGVlZWQ1MTcxYmViZWJhOGU2NDU3ZDAyM2RmMjU3M2Q4ZTE1MmQzIiwidGFnIjoiIn0%3D; expires=Mon, 06 Nov 2023 21:40:49 GMT; Max-Age=7200; path=/; samesite=lax
ashampoo_session=eyJpdiI6IkRCU3BscERTbmZreW5WRDZWMVYzZXc9PSIsInZhbHVlIjoiejh5Nzd0QjQ2TkZFUG96TzZDMzZZeDFVcUlNbHdFQmxBY001WHNBUElGa01oWFpicDBPMnFCZGRoTUtTN3EvWFBXemZ4TXp3S2NBNm5MLzRHODNjcEI4ZWw0TklNbDU2RkFITjJrNld3MUVXam1LVEFlaXVBTTFlQk5SRFQvblUiLCJtYWMiOiI5ZWEyZGUzNmU2YzFhNGNmMzAwNzBlN2RiZjZjNDZkOTdkYTE4YjQ0Nzc4MzIyZWZkZTRlYmNmOTMwZTBiMTQ4IiwidGFnIjoiIn0%3D; expires=Mon, 06 Nov 2023 21:40:49 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Access-Control-Allow-Origin: *
Content-Security-Policy: frame-ancestors 'self' https://*.ashampoo.com https://*.cms.test
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
cdn1.ashampoo.net/ashampoo/6706/ashampoo_winoptimizer_26_26.00.19_sm.exe
200 OK 29 MB URL User Request GET HTTP/2 cdn1.ashampoo.net/ashampoo/6706/ashampoo_winoptimizer_26_26.00.19_sm.exe
IP
Certificate IssuerAmazon
Subject*.ashampoo.net
Fingerprint91:F0:B0:BD:BF:9C:EA:41:7F:38:38:19:89:BA:3D:CB:E8:53:06:DE
ValiditySun, 15 Oct 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File type PE32 executable (GUI) Intel 80386, for MS Windows\012- data
Size 29 MB (29122520 bytes)
Hash 0953e2d0f6b935d9c6a93442aeb517d0
ac28308cce27e580fa686f078d4646eb91deb60e
af69517ffd5d356d1ae768fb6347e005310d2ac97aa83f0640537f1a80514aaf
Analyzer Verdict Alert VirusTotal suspicious
GET /ashampoo/6706/ashampoo_winoptimizer_26_26.00.19_sm.exe HTTP/1.1
Host: cdn1.ashampoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 29122520
date: Mon, 06 Nov 2023 19:40:51 GMT
last-modified: Mon, 06 Nov 2023 08:55:05 GMT
etag: "0953e2d0f6b935d9c6a93442aeb517d0"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dKJVLW71uAi6BJ3hc0BijllXnqwcNizOcn58J7Y2IL-ftEN-8KXSzA==
X-Firefox-Spdy: h2
18.197.209.74
143.204.55.125