Report - github.com/raphire/win11debloat/archive/master.zip

Report Overview

Visited public
2024-09-25 13:48:03
Tags
URL
github.com/raphire/win11debloat/archive/master.zip
Finishing URL
about:privatebrowsing
IP / ASN
140.82.121.3
#36459 GITHUB
Title
about:privatebrowsing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-25 09:32:11	1.3 kB	3.6 kB	23.33.119.57
github.com	1423	2007-10-09	2016-07-13 12:28:22	2024-09-25 08:25:48	504 B	3.9 kB	140.82.121.3
codeload.github.com	62359	2007-10-09	2013-04-18 13:49:11	2024-09-25 10:44:07	516 B	90 kB	140.82.121.10
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-25 01:59:50	327 B	887 B	23.33.119.27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
codeload.github.com/Raphire/Win11Debloat/zip/refs/heads/master
IP
140.82.121.10
ASN
#36459 GITHUB

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
89 kB (88885 bytes)
Hash
d9c75a43d146527912ea41fb5be2973d
886a368f930c3bfc57e3273696227ea201aa0f7e
8284fe6982da8698bc827ae58659241a3a9373e8de09fd3b17ec672c66449e5b

Archive (91)

Filename

Md5

File type

FUNDING.yml

ce14b493f9279de26175b9f3b3453b2b

ASCII text

bug_report.md

b2789232920b9e799162eae6da814073

ASCII text

feature_request.md

174545e1d9daff8020525fdd1e020411

ASCII text

.gitignore

818f8b28eb1d4161c8bde709cc846afa

ASCII text

Appslist.txt

e2d74d71498f79bb6077d3b31dec4b72

ASCII text

menu.png

0133a5496dad8797c80c1a3b07476e39

PNG image data, 941 x 241, 8-bit/color RGBA, non-interlaced

Get.ps1

1fade7c6f8d1dbd8f441bdb8bd7d3577

ASCII text

LICENSE

9d25dd634d52d2df35e37b96d32ab0fc

ASCII text

DefaultSettings

b34322052442c31e7d5271b387a3611b

ASCII text

Info

95f800a040c8fe7e342a806b5340aa22

ASCII text

README.md

c3b4dd613e993645da3f36370141e0ee

ASCII text, with very long lines (377)

Align_Taskbar_Left.reg

cc8db3b8ae088278d69da9e9ccde09be

Windows Registry little-endian text (Win2K or above)

Disable_AI_Recall.reg

d15f16bcb329469eb254952724b6120b

ASCII text

Disable_Bing_Cortana_In_Search.reg

67e2d3b682a00fba5c8adb9bc9f92d72

Windows Registry little-endian text (Win2K or above)

Disable_Chat_Taskbar.reg

eb157c5fc82ebf80449058fab3d37676

Windows Registry little-endian text (Win2K or above)

Disable_Copilot.reg

6502598b8e1ad4bcacd908ed36912aea

ASCII text

Disable_DVR.reg

2e315c264d465e1bfb156858dbb3ef40

ASCII text

Disable_Give_access_to_context_menu.reg

962c39a2aa3de109c5ec649775b3bff4

Windows Registry little-endian text (Win2K or above)

Disable_Include_in_library_from_context_menu.reg

2b5716f426d3a45534d680183a6ad4a4

Windows Registry little-endian text (Win2K or above)

Disable_Lockscreen_Tips.reg

37224355bc2add27acb6f4ddf5eb1b56

Windows Registry little-endian text (Win2K or above)

Disable_Share_from_context_menu.reg

278d84f2959c32140b6b4bfcbdb086bc

Windows Registry little-endian text (Win2K or above)

Disable_Show_More_Options_Context_Menu.reg

a8854cdee3bd1f092c99ccceda1f4030

Windows Registry little-endian text (Win2K or above)

Disable_Telemetry.reg

78a899b27a270fa9bc1391d0911d32d4

Windows Registry little-endian text (Win2K or above)

Disable_Widgets_Taskbar.reg

6cedf8389667968cbd5037bda85299ad

Windows Registry little-endian text (Win2K or above)

Disable_Windows_Suggestions.reg

2a20cd4afe08f928d43ce4e4622daf7c

Windows Registry little-endian text (Win2K or above)

Hide_3D_Objects_Folder.reg

5ea09d3af7757a5fd266823e4b061b6e

Windows Registry little-endian text (Win2K or above)

Hide_Gallery_from_Explorer.reg

86b2cb94a2af581bcca19d3e2b870b9e

Windows Registry little-endian text (Win2K or above)

Hide_Home_from_Explorer.reg

9e2c14bfa2b3ce5b9007be8679375ef6

Windows Registry little-endian text (Win2K or above)

Hide_Music_Folder.reg

13fda9e0a5fc6b6196b209c91c2de6f1

Windows Registry little-endian text (Win2K or above)

Hide_Onedrive_Folder.reg

8d34a16ca45fe87b7d9e8716cb318490

Windows Registry little-endian text (Win2K or above)

Hide_Search_Taskbar.reg

2364506cee8ec41acdebc200d41a7584

Windows Registry little-endian text (Win2K or above)

Hide_Taskview_Taskbar.reg

9831308757d475f0a40f7c8f4c733091

Windows Registry little-endian text (Win2K or above)

Hide_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg

a9b0b5a643da4590f4b52559403438da

Windows Registry little-endian text (Win2K or above)

Show_Extensions_For_Known_File_Types.reg

c155212d9623c92e4a53649449affb04

Windows Registry little-endian text (Win2K or above)

Show_Hidden_Folders.reg

f982e116768cb4e6a648fda0a17f3c07

Windows Registry little-endian text (Win2K or above)

Show_Search_Box.reg

c4f1fd2c3a05ba2f7d31ba0e1cf4ca1a

Windows Registry little-endian text (Win2K or above)

Show_Search_Icon.reg

daa2cee22fba06b5101a86a80c1f1282

Windows Registry little-endian text (Win2K or above)

Show_Search_Icon_And_Label.reg

9446c1f8692c8f8b291b1b2ccbbe5f7c

Windows Registry little-endian text (Win2K or above)

Align_Taskbar_Left.reg

a964f38ece0d4965b8209365b17480e2

Windows Registry little-endian text (Win2K or above)

Disable_AI_Recall.reg

a765e55097af77cf792ca240c8359d3d

ASCII text

Disable_Bing_Cortana_In_Search.reg

ff27d80efbef0549e635df9ca3669926

Windows Registry little-endian text (Win2K or above)

Disable_Chat_Taskbar.reg

cc370d71f971148d185dd9e91eecf11d

Windows Registry little-endian text (Win2K or above)

Disable_Copilot.reg

7be93fd3301b63f0eed7c8a9c5859d3c

ASCII text

Disable_DVR.reg

016564d6c05af789b428c3a012e71ab4

ASCII text

Disable_Give_access_to_context_menu.reg

962c39a2aa3de109c5ec649775b3bff4

Windows Registry little-endian text (Win2K or above)

Disable_Include_in_library_from_context_menu.reg

2b5716f426d3a45534d680183a6ad4a4

Windows Registry little-endian text (Win2K or above)

Disable_Lockscreen_Tips.reg

17f47181163ab8746ed3521299b89bf9

Windows Registry little-endian text (Win2K or above)

Disable_Share_from_context_menu.reg

278d84f2959c32140b6b4bfcbdb086bc

Windows Registry little-endian text (Win2K or above)

Disable_Show_More_Options_Context_Menu.reg

697d5b5b12af97cc0f2562837df39342

Windows Registry little-endian text (Win2K or above)

Disable_Telemetry.reg

4f8dff5e114ec30e594dc0f56117db46

Windows Registry little-endian text (Win2K or above)

Disable_Widgets_Taskbar.reg

93d0b09f53461f08c3abd82b3bc6b49a

Windows Registry little-endian text (Win2K or above)

Disable_Windows_Suggestions.reg

139ce452692199f133881cad40080ed9

Windows Registry little-endian text (Win2K or above)

Hide_3D_Objects_Folder.reg

5ea09d3af7757a5fd266823e4b061b6e

Windows Registry little-endian text (Win2K or above)

Hide_Gallery_from_Explorer.reg

f3f17c4d04c853ecd0e4239744838fc8

Windows Registry little-endian text (Win2K or above)

Hide_Home_from_Explorer.reg

77cc217f94ce772ebd4b1b2fa75a85b8

Windows Registry little-endian text (Win2K or above)

Hide_Music_Folder.reg

13fda9e0a5fc6b6196b209c91c2de6f1

Windows Registry little-endian text (Win2K or above)

Hide_Onedrive_Folder.reg

8d34a16ca45fe87b7d9e8716cb318490

Windows Registry little-endian text (Win2K or above)

Hide_Search_Taskbar.reg

60eb59746d7436a0bc5b205979821a0e

Windows Registry little-endian text (Win2K or above)

Hide_Taskview_Taskbar.reg

da4a00284db2c5861ab7bf01c7dad5c9

Windows Registry little-endian text (Win2K or above)

Hide_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg

a9b0b5a643da4590f4b52559403438da

Windows Registry little-endian text (Win2K or above)

Show_Extensions_For_Known_File_Types.reg

f14ad15baf9796167ddc5039cae51a51

Windows Registry little-endian text (Win2K or above)

Show_Hidden_Folders.reg

3d78260dc0faf46f336ea65b3c8b8bdc

Windows Registry little-endian text (Win2K or above)

Show_Search_Box.reg

ac9173aab01297f55fe571b2bc1db0e6

Windows Registry little-endian text (Win2K or above)

Show_Search_Icon.reg

35502c73b3f4573091eb6e6836ce549b

Windows Registry little-endian text (Win2K or above)

Show_Search_Icon_And_Label.reg

24a65469ac06584a3ac780f65ba65ac3

Windows Registry little-endian text (Win2K or above)

Align_Taskbar_Center.reg

8d047ccce6f1df3bbb4af0ff753e1ca6

Windows Registry little-endian text (Win2K or above)

Enable_AI_Recall.reg

1fd76e75a090ba4ac0666962fc0c7764

ASCII text

Enable_Bing_Cortana_In_Search.reg

d07216e2d8e4b97f20ed64682fd6803e

Windows Registry little-endian text (Win2K or above)

Enable_Chat_Taskbar.reg

b990f34e793bc528dfda6d33ef70bf40

Windows Registry little-endian text (Win2K or above)

Enable_Copilot.reg

d56cbb1fb01a7f2b75253a9602b33e6e

ASCII text

Enable_DVR.reg

5687be9593dac844edc96833cc41cdde

ASCII text

Enable_Give_access_to_context_menu.reg

6f99edaf472566ce719c2c63d2a6a536

Windows Registry little-endian text (Win2K or above)

Enable_Include_in_library_to_context_menu.reg

e667468df1d4a121e57fd762ea661f09

Windows Registry little-endian text (Win2K or above)

Enable_Lockscreen_Tips.reg

19d2312e20a0a68f41b80d46655c8f4e

Windows Registry little-endian text (Win2K or above)

Enable_Share_to_context_menu.reg

de7401392a70517068de55449b0d72ed

Windows Registry little-endian text (Win2K or above)

Enable_Show_More_Options_Context_Menu.reg

64e54d947733626f986d4e7db4193725

Windows Registry little-endian text (Win2K or above)

Enable_Telemetry.reg

fa5fd58cf00f5fe8cccd89562e440e0e

Windows Registry little-endian text (Win2K or above)

Enable_Widgets_Taskbar.reg

5589e051d60fd7c9622ad4470a3c6544

Windows Registry little-endian text (Win2K or above)

Enable_Windows_Suggestions.reg

5e0702d9dabde3cc7ec8126ac908f805

Windows Registry little-endian text (Win2K or above)

Hide_Extensions_For_Known_File_Types.reg

1449af80969551293e4a6c9b7801d94d

Windows Registry little-endian text (Win2K or above)

Hide_Hidden_Folders.reg

176b2e507a58f0a27a545f403d65ef43

Windows Registry little-endian text (Win2K or above)

Show_3D_Objects_Folder.reg

72ae033e461f55fcbc48ee3c5125f804

Windows Registry little-endian text (Win2K or above)

Show_Gallery_in_Explorer.reg

6bea2083120c817afbe34b7f15cd2fd6

Windows Registry little-endian text (Win2K or above)

Show_Home_from_Explorer.reg

cf9b4e6427d5988eb657c14e20330aa8

Windows Registry little-endian text (Win2K or above)

Show_Music_Folder.reg

df20cab41fe31c3f454343fa59432063

Windows Registry little-endian text (Win2K or above)

Show_Onedrive_folder.reg

b70bb74e1a052483500864cf3107f850

Windows Registry little-endian text (Win2K or above)

Show_Taskview_Taskbar.reg

f882701d1cced6b6bfc8da9f0a49aacb

Windows Registry little-endian text (Win2K or above)

Show_duplicate_removable_drives_from_navigation_pane_of_File_Explorer.reg

c72f4e2c7bd56f19cb37cebff23cbcc4

Windows Registry little-endian text (Win2K or above)

Run.bat

b9bf23bbfd25ad541e550ddc9c4ffa27

ASCII text

start2.bin

e03fae93f3903d1d3431e485dd6639f6

data

Win11Debloat.ps1

f0cd617d25e3a27e6545dfa7886aecf5

Unicode text, UTF-8 text

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen
YARAhub by abuse.ch	malware	Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen
YARAhub by abuse.ch	malware	Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen
YARAhub by abuse.ch	malware	Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen

JavaScript (0)

HTTP Transactions (7)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP 23.33.119.57:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 72e206e9b89445fb2fb4031a6abe6169 a18bebfb86a71685bd817c15e348cfb5ea438c72 856f85441e043130f88668be6cf68110187856f17999bddc4332437d383c79b6 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "856F85441E043130F88668BE6CF68110187856F17999BDDC4332437D383C79B6" Last-Modified: Mon, 23 Sep 2024 09:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2282 Expires: Wed, 25 Sep 2024 14:25:39 GMT Date: Wed, 25 Sep 2024 13:47:37 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP 23.33.119.57:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 8561f6c5f82d57ce35075e29e8633aac a37923385834db53ec3f63d0981fa9cc5d8ef548 7f437888e6636785f118d4a7886151268f7bd9de31cbd6164de33e610875ef19 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "7F437888E6636785F118D4A7886151268F7BD9DE31CBD6164DE33E610875EF19" Last-Modified: Wed, 25 Sep 2024 07:17:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4301 Expires: Wed, 25 Sep 2024 14:59:18 GMT Date: Wed, 25 Sep 2024 13:47:37 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP 23.33.119.57:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash b864476fa0457236e163a06e1cad5279 e9acc26214498b6861058be05885f07275075406 55fa8283fbd284a294b1853b35eb0bbbdfd3dd6de3cb3ebf441f0a7f6296d41d HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "55FA8283FBD284A294B1853B35EB0BBBDFD3DD6DE3CB3EBF441F0A7F6296D41D" Last-Modified: Wed, 25 Sep 2024 10:33:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14281 Expires: Wed, 25 Sep 2024 17:45:38 GMT Date: Wed, 25 Sep 2024 13:47:37 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.33.119.57		504 B
URL r10.o.lencr.org/ IP 23.33.119.57:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c5df97c10e9a37c02e8e12b302465464 b0d9b31bb7dd48f11b58e6f1833798e45dc5a862 350fb41eb348dc3b30943b357e089a3cd9dcc9670285c29485ba02a38ebcbc15 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "350FB41EB348DC3B30943B357E089A3CD9DCC9670285C29485BA02A38EBCBC15" Last-Modified: Wed, 25 Sep 2024 02:38:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10886 Expires: Wed, 25 Sep 2024 16:49:03 GMT Date: Wed, 25 Sep 2024 13:47:37 GMT Connection: keep-alive`

	github.com/raphire/win11debloat/archive/master.zip	140.82.121.3	302 Found	0 B
URL User Request GET HTTP/2 github.com/raphire/win11debloat/archive/master.zip IP 140.82.121.3:443 ASN #36459 GITHUB Certificate IssuerSectigo Limited Subjectgithub.com FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0 ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /raphire/win11debloat/archive/master.zip HTTP/1.1 Host: github.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found server: GitHub.com date: Wed, 25 Sep 2024 13:47:38 GMT content-type: text/html; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With location: https://codeload.github.com/Raphire/Win11Debloat/zip/refs/heads/master cache-control: max-age=0, private strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: no-referrer-when-downgrade content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/ content-length: 0 x-github-request-id: D1A0:FC125:20F27A2:2166A4E:66F41479 X-Firefox-Spdy: h2

	codeload.github.com/Raphire/Win11Debloat/zip/refs/heads/master	140.82.121.10	200 OK	89 kB
URL User Request GET HTTP/2 codeload.github.com/Raphire/Win11Debloat/zip/refs/heads/master IP 140.82.121.10:443 ASN #36459 GITHUB Certificate IssuerSectigo Limited Subject.github.com Fingerprint0D:F6:EC:50:FA:ED:AE:6E:13:AF:82:94:52:F7:11:1B:0A:CF:7C:20 ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT File type Zip archive data, at least v1.0 to extract, compression method=store Size 89 kB (88885 bytes) Hash d9c75a43d146527912ea41fb5be2973d 886a368f930c3bfc57e3273696227ea201aa0f7e 8284fe6982da8698bc827ae58659241a3a9373e8de09fd3b17ec672c66449e5b HTTP Headers GET /Raphire/Win11Debloat/zip/refs/heads/master HTTP/1.1 Host: codeload.github.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK access-control-allow-origin: https://render.githubusercontent.com content-disposition: attachment; filename=Win11Debloat-master.zip content-length: 88885 content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox content-type: application/zip cross-origin-resource-policy: cross-origin etag: W/"e8b2690462b67ade9fc5f183b87f707a5d41dfa7d70a339a213a667906ea0b7b" strict-transport-security: max-age=31536000 vary: Authorization,Accept-Encoding,Origin x-content-type-options: nosniff x-frame-options: deny x-xss-protection: 1; mode=block date: Wed, 25 Sep 2024 13:47:38 GMT x-github-request-id: 0620:2F57B1:156A07:17BEED:66F4147A X-Firefox-Spdy: h2

	r11.o.lencr.org/	23.33.119.27		504 B
URL r11.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c16a3fe398c09ad4d309c60911d6a6b6 dc1148076d45d128cb6d0780ac0467aeba0902e9 5bd5f6cc031865b327cd4987c09f2266f9b994cc967eb6cf75bab5a58bcb7230 HTTP Headers `POST / HTTP/1.1 Host: r11.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "5BD5F6CC031865B327CD4987C09F2266F9B994CC967EB6CF75BAB5A58BCB7230" Last-Modified: Wed, 25 Sep 2024 02:39:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5593 Expires: Wed, 25 Sep 2024 15:20:52 GMT Date: Wed, 25 Sep 2024 13:47:39 GMT Connection: keep-alive`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (91)

Detections

JavaScript (0)

HTTP Transactions (7)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers