Report Overview
Submitted URL
cdn.discordapp.com/attachments/1223429525455638629/1233022414028279828/RMTweaks_Premium_Pack.zip?ex=662c3ddb&is=662aec5b&hm=e81e017f384e5de3445e92c83b7e14d5068fbd95096169f0326e1f2648138610&
IP
162.159.134.233
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 02:59:01
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected
Detections
urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
29
Domain Summary
Domain / FQDN | Rank | Registered | First Seen | Last Seen | Sent | Received | IP |
---|---|---|---|---|---|---|---|
cdn.discordapp.com | 2474 | 2015-02-26 | 2015-08-24 | 2024-04-24 | 643 B | 10 MB | 162.159.133.233 |
Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
Threat Detection Systems
Public InfoSec YARA rules
No alerts detected
OpenPhish
No alerts detected
PhishTank
No alerts detected
mnemonic secure dns
No alerts detected
Quad9 DNS
No alerts detected
ThreatFox
No alerts detected
Files detected
URL
cdn.discordapp.com/attachments/1223429525455638629/1233022414028279828/RMTweaks_Premium_Pack.zip?ex=662c3ddb&is=662aec5b&hm=e81e017f384e5de3445e92c83b7e14d5068fbd95096169f0326e1f2648138610&
IP
162.159.133.233
ASN
#13335 CLOUDFLARENET
File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
10 MB (10265905 bytes)
Hash
d728a4629d0f79b850577de89da5e371
ceab0c80fb3586af1d934899b6834829fc590a65
Archive (337)
Filename | Md5 | File type | ||||||
---|---|---|---|---|---|---|---|---|
1. please be on the correct iso.txt | af755d668183dfe7a26bfd4b95209a22 | ASCII text, with CRLF line terminators | ||||||
2 .help with any tweaks.txt | f5cdd8b1df820dcd07ab17e1bff30406 | ASCII text, with no line terminators | ||||||
3. Pause Updates.url | b911c55b8659e21b7c5bdd7cf1e35253
| Generic INItialization configuration [InternetShortcut] | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
Network Adapter tweaks.PNG | e715941f22083bfb98de9be30c86bfbc | PNG image data, 361 x 452, 8-bit/color RGBA, non-interlaced | ||||||
Network and Sharing Center - Shortcut.lnk | 7cebd3789777f1afc6aee2be58e3cf26 | MS Windows shortcut, Item id list present, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hide | ||||||
Network booster.bat | 9473408f0757be689fcc4c3230176e76 | ASCII text, with CRLF line terminators | ||||||
Network Latency Tweaks.bat | 3c3cd76f19ca6b5f955cc0764e39b60c | DOS batch file, ASCII text, with CRLF line terminators | ||||||
network.reg | 68c658101ef77eafc29fa11fe4be9afa | Windows Registry little-endian text (Win2K or above) | ||||||
Ping Reduction .bat | 117a7ddd4b87528f50661edd37ac87d3 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
DeleteFGfolder.bat | 0f6efce79c850b1bb42ce827b41438ab | ASCII text, with no line terminators | ||||||
Flushdns.bat | b01f41d85d8212a7433f805110837be8 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
Lower ping.bat | 4d22f49b7eb75b79aff6e26c009faac3 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
Remove prefetch.bat | 9c782edc50d7693fa188afc815bf6de4 | ASCII text, with CRLF line terminators | ||||||
Temp Remover.bat | 7f77fa362c72f9a4a04953c68fe3b95e | ASCII text, with no line terminators | ||||||
MUST READ.txt | c4774f52155d7113d873a2d55eb9a78f | ASCII text, with CRLF line terminators | ||||||
Should look like this.jpg | 89ca121bc1e8dcca6300a65ec903e045 | JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:03:09 02:26:21], baseline, precision 8, 800x600, components 3 | ||||||
Fan Curve tweak.PNG | 9e5702a85421569c7efc4cd006077fce | PNG image data, 333 x 611, 8-bit/color RGBA, non-interlaced | ||||||
Disable Fullscreen Optimizations.PNG | c82ed41eaafbeb509e2cfa621e2f2530 | PNG image data, 494 x 386, 8-bit/color RGBA, non-interlaced | ||||||
How to Disable Fullscreen Optimizations.txt | 527c817d0a7f4bec492e9e52149b6a92 | Unicode text, UTF-8 text, with CRLF line terminators | ||||||
-USEALLAVAILABLECORES.PNG | 025c06d7179b6f75e1e5d03a3070e9ae | PNG image data, 1317 x 229, 8-bit/color RGBA, non-interlaced | ||||||
How you get to the settings.PNG | bab0efdf715078cb594685d5f811d3ff | PNG image data, 624 x 22, 8-bit/color RGBA, non-interlaced | ||||||
Riot games game user settings.PNG | 616724fe27cdae919f34ac78e923da6d | PNG image data, 277 x 192, 8-bit/color RGBA, non-interlaced | ||||||
Disable Hardware Acceleration, Overlays _ Startup For Apps.png | 599305c456930fd1b56b1c81778aa214 | PNG image data, 799 x 1827, 8-bit/color RGBA, non-interlaced | ||||||
Verify And Repair Game.png | fa421e82ee7f12810d158d8d8ff4c2b0 | PNG image data, 1725 x 671, 8-bit/color RGBA, non-interlaced | ||||||
How to get in the folder.PNG | 0fec30c01e5c490c0c86767512cb3d59 | PNG image data, 397 x 34, 8-bit/color RGBA, non-interlaced | ||||||
RENDER WORK COUNT.txt | 61d008290d869929a59b4bf020c9678b | ASCII text, with CRLF line terminators | ||||||
What it should look like .PNG | 38d4e9053aafecacda4cade1f37ef9bd | PNG image data, 1396 x 780, 8-bit/color RGBA, non-interlaced | ||||||
Hardware accel.PNG | 4d8bbe27e783f598b579cb3bb1270e0d | PNG image data, 981 x 752, 8-bit/color RGBA, non-interlaced | ||||||
obs audio.PNG | 1b627feb0a90b30dc5070fa48079a5b8 | PNG image data, 977 x 752, 8-bit/color RGBA, non-interlaced | ||||||
Obs output.PNG | 4571e25a3b97fb61aca80ec55c138efc | PNG image data, 977 x 752, 8-bit/color RGBA, non-interlaced | ||||||
obs video.PNG | 3fed4abfb567306093267d40710764e2 | PNG image data, 985 x 752, 8-bit/color RGBA, non-interlaced | ||||||
Keyboard - Shortcut.lnk | c6674d88c402f1a7e427749537b41a7f | MS Windows shortcut, Item id list present, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hide | ||||||
Keyboard Tweaks.PNG | f6b2a4314c9ece45a3f4602b7f78b1de | PNG image data, 419 x 464, 8-bit/color RGBA, non-interlaced | ||||||
Retch 1000hz.cmd | d0ccf933dcf67f48bdcaa6dcdbf276f0 | ASCII text, with CRLF line terminators | ||||||
Retch 8000hz.cmd | c891d08e5b0a9689e2d8945ea3f7bb81 | ASCII text, with CRLF line terminators | ||||||
Retch Mouse Tweaks 1.reg | 2794cd1b8b3d3ee8e39a6eb713778d97 | Windows Registry text (Win2K or above) | ||||||
Retch Mouse Tweaks 2.reg | 8a6b240342b179e9e4c025f9e1159d13 | ASCII text, with CRLF line terminators | ||||||
Revert to Default.reg | 12e9840860ab18edc1baf7bdd848407d | Windows Registry little-endian text (Win2K or above) | ||||||
Turn OFF mono audio.reg | 2d2af4256d0e51b76b3fef28dfbe63a0 | Windows Registry little-endian text (Win2K or above) | ||||||
Turn ON mono audio.reg | 142e510228784d7e7643c3f12c4f9c44 | Windows Registry little-endian text (Win2K or above) | ||||||
DM etch#0763 For Auido Tweaks.txt | 3de7287a778e3d7ed9e651f8ce8eacfb | Unicode text, UTF-8 text, with no line terminators | ||||||
Sound_Lock_Setup.msi | 95d904f62be86e418de8ad32e683abc0 | Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.1, MSI Installer, Title: Installation Database, Keywords: Installer, MSI, Database, Last Printed: Fri Dec 11 11:47:44 2009, Create Time/Date: Fri Dec 11 11:47:44 2009, Last Saved Time/Date: Fri Dec 11 11:47:44 2009, Number of Pages: 200, Security: 0, Code page: 1252, Revision Number: {41B0A322-D3E0-43B8-99CB-C57E58B9792F}, Number of Words: 2, Subject: Sound Lock, Author: 3 APPES, Name of Creating Application: Advanced Installer 9.6 build 47481, Template: ;1033, Comments: This installer database contains the logic and data required to install Sound Lock. | ||||||
Warzone Audio Tweaks - Copy.txt | 97bb2d0b978e69c918a20f60fe018b73 | ASCII text, with CRLF line terminators | ||||||
10 Delete _Temp_ Files.lnk | 0172d7a6c2810707c634975454c55604 | MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Directory, ctime=Fri Jun 18 20:51:11 2021, mtime=Fri Jul 9 08:02:06 2021, atime=Fri Jul 9 08:02:06 2021, length=8192, window=hide | ||||||
11 Delete Temp Files.lnk | 8a417c65b8b4e1bb661f9a3f53409c28 | MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Directory, ctime=Sat Dec 7 09:14:52 2019, mtime=Fri Jul 9 07:55:41 2021, atime=Fri Jul 9 07:55:33 2021, length=8192, window=hide | ||||||
13 Disk Cleanup (Clean Up System Files).lnk | 052ebe462113c605dc34896953098c6d
| MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Apr 9 13:50:10 2021, mtime=Fri Jul 9 08:06:57 2021, atime=Fri Apr 9 13:50:10 2021, length=320000, window=hide | ||||||
Device Clean up READ ME.txt | 6d35a8d49ea3a5be7f46de658c88d1c0 | ASCII text, with no line terminators | ||||||
DeviceCleanup.exe | f4e269a1089796e13aa541d3dd7569e2 | PE32+ executable (GUI) x86-64, for MS Windows, 6 sections | ||||||
DeviceCleanup.ini | 92bab524ae99d38e7fb3c51979b08b15 | ASCII text, with CRLF line terminators | ||||||
DeviceCleanup.ini | ffbf201cbc7423b9c6879516add1a09a | ASCII text, with CRLF line terminators | ||||||
Retch Cache Cleaner.bat | 471ea57f2300d20d5b8ee99fbf346153
| ASCII text | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
1. Turn Gamebar Off.url | ad8be6d1c424a9642fbe6706dd745fe5
| Generic INItialization configuration [InternetShortcut] | ||||||
10. Remove Startup Apps.url | 3dbe9d9e68c37e7f0ef5741b36324732
| Generic INItialization configuration [InternetShortcut] | ||||||
11. Restart Apps Off.url | bf00a7b582581aca5d8705f8cbb71421
| Generic INItialization configuration [InternetShortcut] | ||||||
12. Sync Your Settings Off.url | 5120bd1982bcc6741ef0a4db17290551
| Generic INItialization configuration [InternetShortcut] | ||||||
13. Disable all of the app permissions.url | dc4fc58e65bd5e328a5912797942ecf3
| Generic INItialization configuration [InternetShortcut] | ||||||
2. Transparency Effects Off.url | 6ff3360c82f49520f3751f0622e9c845
| Generic INItialization configuration [InternetShortcut] | ||||||
3. Pause Updates.url | b911c55b8659e21b7c5bdd7cf1e35253
| Generic INItialization configuration [InternetShortcut] | ||||||
4. Store Update Apps Automatically Off.lnk | 59d17393d35955e7ef5f017738567bf3 | MS Windows shortcut, Item id list present, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hide | ||||||
5. Automatically Update Maps Off.url | 636098a63eb4388958d7c789e0fafa06
| Generic INItialization configuration [InternetShortcut] | ||||||
6 . Disable Hibernate (Run As Admin).cmd | bf00a7b582581aca5d8705f8cbb71421
| Generic INItialization configuration [InternetShortcut] | ||||||
7. Rebuild Performance Counters (Run As Admin).cmd | ce34b00fb9217b954d5423aeddd113a0 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
8. Disable Background Apps.url | c11ad148171fb89dc961e943689659e9
| Generic INItialization configuration [InternetShortcut] | ||||||
9. Windows Settings Tweaks.reg | 03daecdea7181d5610390294311c6cb8 | Windows Registry text (Win2K or above) | ||||||
Click Adjust For Best perfomance.lnk | 853eee63544e002b39ca8ab8143ec1e0
| MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Sat Dec 7 09:09:00 2019, mtime=Fri Jul 9 12:08:00 2021, atime=Sat Dec 7 09:09:00 2019, length=84480, window=hide | ||||||
Disable Startup apps.lnk | 74538967214f17b56fd4b51ca0b07142
| MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Apr 9 13:49:34 2021, mtime=Fri Jul 9 08:11:39 2021, atime=Fri Apr 9 13:49:34 2021, length=1213744, window=hide | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
Discord Debloat by Retch.bat | 5c19ef71d8203cbf512d41baf665cdcc | DOS batch file, ASCII text, with CRLF line terminators | ||||||
READ FIRST.txt | 05f607e2b0fc8f367319ec089d8247c1 | ASCII text, with no line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
2.PNG | de6f600d92495ea9859380349ad21684 | PNG image data, 794 x 240, 8-bit/color RGBA, non-interlaced | ||||||
3.PNG | cbdff5aa5febb2c98a56a4b5df87d2be | PNG image data, 1644 x 182, 8-bit/color RGBA, non-interlaced | ||||||
Capture.PNG | a3b2f959f51018e2ba07255206d6e807 | PNG image data, 1639 x 351, 8-bit/color RGBA, non-interlaced | ||||||
Retch SpotifyRemoveLanguages.bat | a0f0457404b5b21de39aff4ee3fd10e9
| ASCII text, with CRLF line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
1. Install Power Plan.cmd | c88ceb06d2be4bc30c11e3e59d963001 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
if command doesnt work use this.txt | c91e29b4be406607ce719aceb842ca2e | ASCII text, with CRLF line terminators | ||||||
Make sure you applied it.PNG | 4f9854cce9702e4101c3e8e8bb43d730 | PNG image data, 1359 x 246, 8-bit/color RGBA, non-interlaced | ||||||
Power Options - Shortcut.lnk | 83d0ba5c28c923052efe9dc976e4e08a | MS Windows shortcut, Item id list present, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hide | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
device manger 1.PNG | da48f1a400c03457f094b371d06f04c8 | PNG image data, 304 x 98, 8-bit/color RGBA, non-interlaced | ||||||
device manger 2.PNG | 97a927609e91073808a7b3e03a79f598 | PNG image data, 373 x 184, 8-bit/color RGBA, non-interlaced | ||||||
how to disbale the system devices.txt | ac7b512f3f1193a25ac236b58f71ce65 | ASCII text, with CRLF line terminators | ||||||
How to turn off power saver mode on usb controllers.txt | 60b9af5c0761bf281f470a388ce0857f | Unicode text, UTF-8 text, with no line terminators | ||||||
Untick Disable powersaving features on usb devices.PNG | 6d71f7f0f8aea21aec50e087b0a60332 | PNG image data, 456 x 476, 8-bit/color RGBA, non-interlaced | ||||||
Disable Hyper Virtualization.bat | c23338019f39e1055ccf293383a76385 | ASCII text, with no line terminators | ||||||
Disable Trusted Platform Module.bat | 33240a52c8f196cc57848cf1a8df3f6b | ASCII text, with no line terminators | ||||||
Disable Windows HPET.bat | 395ea024d39c9d99837a2d144f07e22c | ASCII text, with CRLF line terminators | ||||||
Enable xAPIC (better performance).bat | 85e6a4216f9b3826615a35ed5704da0b | ASCII text, with CRLF line terminators | ||||||
Legacy TSC.bat | a22de620ba3b7943b0b6f49821c31668 | ASCII text, with no line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
Retch Cortana Remover .ps1 | 09c1640e31e32107b657629229dc2e4d | ASCII text | ||||||
0 Startup Delay.reg | 779935e85108952847f0b015b644a368 | ASCII text | ||||||
Add Maximum processor frequency to Power Options.reg | e0193dcd66f6df64fc69d8fbbd288b1c | Windows Registry little-endian text (Win2K or above) | ||||||
csrss.exe Realtime Priority.reg | e743f127411409cc4d9847741c431115 | Windows Registry text (Win2K or above) | ||||||
CursorBlinkRate.reg | ddbd9d63a78f923516b5f152ce6c7f02 | Windows Registry text (Win2K or above) | ||||||
Disable Automatic Maintenance.reg | 42e1688ddadc9f3d53a7fc225bf3a59b | Windows Registry text (Win2K or above) | ||||||
Disable Clear Pagefile at Shutdown.reg | 50d4c3077dc19d56f169c5704bee88b8 | Windows Registry text (Win2K or above) | ||||||
Disable Firefox Updates.reg | 0d48619c6781c35798f9a8e58afad15a | Windows Registry little-endian text (Win2K or above) | ||||||
Disable Hibernation.reg | 062168bf01252dd887bae72709deff15 | Windows Registry text (Win2K or above) | ||||||
Disable Nagles Algorithm.reg | 38405145dc4ccfaba8944a62aa3f75d2 | Windows Registry text (Win2K or above) | ||||||
Disable Network Usage.reg | 4a7d9fbe0c5bd008644fbafdde9e4cfe | Windows Registry text (Win2K or above) | ||||||
Disable NetworkThrottling.reg | 04c33ff4d5f33456363fcf6c9b431cb8 | Windows Registry little-endian text (Win2K or above) | ||||||
Disable Notification Center.reg | b4415910f7660ac87e08c12f150454ad | Windows Registry text (Win2K or above) | ||||||
Disable Power Throttling.reg | 7648619f39a1f30b7ac71f236ba01798 | Windows Registry text (Win2K or above) | ||||||
Disable Prefetcher.reg | 82301a0f9e1011215407f19eb81417dc | Windows Registry text (Win2K or above) | ||||||
Disable Runtime Broker.reg | 6282558102df127f78be1033d52327fa | Windows Registry little-endian text (Win2K or above) | ||||||
Disable Spectre and Meltdown.reg | 359edaeade78066708c8091214651726 | Windows Registry text (Win2K or above) | ||||||
Disable Superfetch.reg | 3ab106347f4c7e9f34c32e6ed1e4e1dd | Windows Registry text (Win2K or above) | ||||||
DisableNetBT.reg | 6d7e327e1e24178fd6ebb9c7f6c0972b | Windows Registry little-endian text (Win2K or above) | ||||||
Do this if you have 16gb Ram .reg | ffdf200411c966acec75b96b695d7b56 | Windows Registry text (Win2K or above) | ||||||
Do this if you have 8GB RAM .reg | e542e49702da5264a78221f01ae94d51 | Windows Registry text (Win2K or above) | ||||||
Fix Slow Loading Windows Icons.reg | 42a92cd37f3043290820b339fad7cdc0 | Windows Registry little-endian text (Win2K or above) | ||||||
Copy paste in a admin powershell.txt | 177b8b93ba2f434ffcf1395302434de4 | ASCII text, with CRLF line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
1. COPY AND PASTE INTO WINDOWS POWERSHELL.txt | 3f781e2e0ea936c9dc01b4f1dc5bf606 | ASCII text, with CRLF line terminators | ||||||
3. MORE INFO.PNG | 2d0b9c60ff1df088715b53355f14cc6f | PNG image data, 873 x 708, 8-bit/color RGBA, non-interlaced | ||||||
4. Windows update.PNG | a95ea8ae0a7fec3b3ce87f2daf0712a5 | PNG image data, 803 x 683, 8-bit/color RGBA, non-interlaced | ||||||
HOW TO APPLY.txt | 3687294f1822dc3c2b709fcb3b13ab28 | ASCII text, with CRLF line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
Retch Debloat.reg | e13008dd9f7896db250981bf2cde8fbc | ASCII text | ||||||
Retch Low Latency.reg | 9aef87c1686c13aa8fd0dca0aaea8b37 | Unicode text, UTF-8 (with BOM) text | ||||||
Retch Windows 10.reg | c2d99aa272fe5c9b89c9794c9b849abd | ASCII text | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
1. READ FIRST.txt | a8837fd407673175576064e3f594922d | ASCII text, with CRLF line terminators | ||||||
1..PNG | 80977fb1f45470bec832b71ed29306b0 | PNG image data, 694 x 404, 8-bit/color RGBA, non-interlaced | ||||||
2..PNG | f654b86c11f2e578b640f879fdbc3c5c | PNG image data, 753 x 437, 8-bit/color RGBA, non-interlaced | ||||||
desktop.ini | 017884bbd19177d432efcf6cf211249f | Windows desktop.ini | ||||||
System Configuration.lnk | e2f96ce62194dba72fe2689c3f97b50d
| MS Windows shortcut, Has Description string, Has Relative path, Icon number=-128, ctime=Mon Jan 1 00:00:00 1601, mtime=Mon Jan 1 00:00:00 1601, atime=Mon Jan 1 00:00:00 1601, length=0, window=hide | ||||||
ButtonExtended.dll | d45cab94cfb2d3dd1b7bbad86090e896
| PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
1..PNG | 0ec013e51a5a7397585f3afec5af3afd | PNG image data, 881 x 605, 8-bit/color RGBA, non-interlaced | ||||||
2 make sure your on privacy.PNG | 84ffacf55f4326542f24e0a06ee1fe24 | PNG image data, 873 x 604, 8-bit/color RGBA, non-interlaced | ||||||
3..PNG | 2c2f9691c981da81204998d74be4228b | PNG image data, 876 x 606, 8-bit/color RGBA, non-interlaced | ||||||
4..PNG | ac81e43c3bcda8414c4b6981523b1b1f | PNG image data, 884 x 605, 8-bit/color RGBA, non-interlaced | ||||||
Read Me First.txt | a0af49b80631107f6d3c277562f0d107 | ASCII text, with very long lines (315), with CRLF line terminators | ||||||
Ultimate Windows Tweaker 4.8.exe | dfd18eabcfa63ce63fdbebe4673e99c8
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
UWT Homepage.url | 2d98d02e794606f540235133d238fdfa | MS Windows 95 Internet shortcut text (URL=<https://www.thewindowsclub.com/ultimate-windows-tweaker-4-windows-10>), ASCII text, with CRLF line terminators | ||||||
Intel Bios Tweaks.txt | a61aa3cba41dfa6b2021a50372199727 | ASCII text, with CRLF line terminators | ||||||
Ryzen Bios Tweak.txt | 7636016f3eb762656833223d913f1db5 | ASCII text, with CRLF line terminators | ||||||
DDU AMD.PNG | 239b6188a69dad78b0374110e098a799 | PNG image data, 804 x 637, 8-bit/color RGBA, non-interlaced | ||||||
DDU NVIDIA.PNG | e0a60003c83e5a4c16ad0fabebd1e2f8 | PNG image data, 871 x 691, 8-bit/color RGBA, non-interlaced | ||||||
THEN CLICK CLEAN AND RESTART.txt | 1943f8baee38fd91ca15e291d7f0128e | ASCII text, with no line terminators | ||||||
Display Driver Uninstaller.exe | 46d8e3c337d1c31874cca8902980bc1d
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
Display Driver Uninstaller.pdb | 926278d8b4c8d2beeca1dc88d81d36e7 | MSVC program database ver 7.00, 512*1347 bytes | ||||||
Issues and solutions.txt | 4d29ce16237fec3a3bace44eda19ab56 | ASCII text, with very long lines (360), with CRLF line terminators | ||||||
Licence.txt | d62627392a6d2bf8db15a23fea269840 | ASCII text, with very long lines (1119), with CRLF line terminators | ||||||
Readme.txt | b799724d8655de1ed86c7e45ac96c33b | ASCII text, with CRLF line terminators | ||||||
classroot.cfg | 7f92472092a396a1172e3d3cd081e944 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | 79fa1eefc1f6529437462c2e03149643 | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | 1c1cdec6fd5a350b837eed0385394084 | ASCII text, with CRLF line terminators | ||||||
driverfilesKMAFD.cfg | d70453f20b7bf4a2af60b7b5f79913c3 | ASCII text, with CRLF line terminators | ||||||
driverfilesKMPFD.cfg | 7e80b69945687a2becded6b8439025b8 | ASCII text, with CRLF line terminators | ||||||
driverfilesKMPFD.cfg.bak | 89155d0f824d7e89a4b22c7dd6ad08f1 | ASCII text, with CRLF line terminators | ||||||
interface.cfg | d26ff4c7bd788d176463bd1534d0d0b1 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | e0323af9edeeca54100c97cd1e165570 | ASCII text, with CRLF line terminators | ||||||
services.cfg | 61b412f8d921bcfed4ce1f937b54537d | ASCII text, with CRLF line terminators | ||||||
classroot.cfg | 847adb4983192d4ad0f016bf2dc807f8 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | d2680ec1ab7efb102f302c0db6102a5c | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | d98c765de58d56ea14ed6a25380718ae | ASCII text, with CRLF line terminators | ||||||
interface.cfg | f37b89fa3b54bf60d0b5ad875a6650d8 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | 79c5137620a6a4280f9fd7ef02c185fe | Unicode text, UTF-8 text, with CRLF line terminators | ||||||
services.cfg | 6a97e3c4d2c7434f27f6b86986850a41 | ASCII text, with CRLF line terminators | ||||||
_For translators - ReadMe.txt | 6d9d18c1dc410770e9d1a057bea52ad0 | exported SGML document, ASCII text, with CRLF line terminators | ||||||
Arabic.xml | a609fd1decf2716812ea274c098551cd | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Bulgarian.xml | 5ca9e8a92efe8049fbb375ca04541dd7 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Chinese (Simplified).xml | 4079269c80a37096e68cbad2596d013c | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Chinese (Traditional).xml | 9ca5886a864378ea2e67187ce1dd3af6 | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Czech.xml | c87468bbaeb0a8bc5ce8b7248e9b7e56 | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Danish.xml | 70181b67855c113a5531b984c23c450d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Dutch.xml | 7c148833448dc4109db68f49d94af82e | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
English.xml | 137862353a4340c713e603fd8df31674 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Finnish.xml | 7b67c5896bf70d4947e91a0fbcba4bb8 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
French.xml | 7ddbdf0f4469be126761583351b4af1f | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
German.xml | 4fe579dc3b8e3761e97acfce643b97f5 | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Greek.xml | d048ec5409a00e87c16008c5f089283c | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Hebrew.xml | b59535080454462cd8eb577c24612f0d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Hungarian.xml | 3c228d0850477a7e0813b5d2369cbc66 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (339), with CRLF line terminators | ||||||
Italian.xml | b997ec2a4a4170c083a183431352a52e | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Japanese.xml | 47eccb6e75d5608fc6b930f2d3586d09 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Korean.xml | a674533a2dfe94311e8635e441070953 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Macedonian (Latin).xml | 0b12f4af582d715f0b7bf4f1248537d2 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Persian.xml | 2258d90d93212e96f7d341e18906f7b7 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Polish.xml | 907d0af6af22877f1035d366c547554d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Portuguese.xml | 8405a1486974ff7d407f0a489cd5d3d4 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
PortugueseBrazil.xml | fc638d287a297db1c66c10bbb5318e8c | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Russian.xml | 2d80682c64528e40f7150cb462d9db40 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Serbian (Cyrilic).xml | d1d88cacce57c90bfebec145e95a0538 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Serbian (Latin).xml | 358d404248c473cb3cd427d69f621398 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Slovak.xml | bee7a7a02a604c4f07867213e252f6eb | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Slovenian.xml | 9fb4c554b38a0e1e43b059551de8f834 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Spanish (Spain).xml | d34359f6009d1a46f9e56dc1356e867d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Spanish.xml | dc1d550b6a6f47c6cdeb99d4d0fc87ae | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Swedish.xml | 3041dcf2a74c55e93ba94addd7bb612e | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Thai.xml | 6d2222c55da575d7abebbc55e285a441 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Turkish.xml | 126585e4af2671e49612c9f814a3eb28 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Ukrainian.xml | cca3df10bc741661fc4bfcbc5d77db4e | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
classroot.cfg | d7fab3164fde0b1924f84293394df562 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | 16d865022bbd28664dc9f61606013edb | ASCII text, with CRLF line terminators | ||||||
clsidleftoverGFE.cfg | f6ae6e324d72fdedda1b4ddd1a6d5f5c | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | 0b987a2a7aa2bc52bdbfa5a48d8533d4 | ASCII text, with CRLF line terminators | ||||||
gfedriverfiles.cfg | 43fac7b38ab53d187b3deedf944b6b38 | ASCII text, with CRLF line terminators | ||||||
gfedriverfiles.cfg.bak | 12a30255609faea656a55d41a114928c | ASCII text, with CRLF line terminators | ||||||
gfeservice.cfg | 176c639e73c5322b5c954d00ff4ecc8a | ASCII text, with CRLF line terminators | ||||||
interface.cfg | cc56bfeeb973557fdffb2a24c4ee5864 | ASCII text, with CRLF line terminators | ||||||
interfaceGFE.cfg | 841a76da4775ed6f28e72bc218bcdf5d | ASCII text, with CRLF line terminators | ||||||
nvbservice.cfg | 6e3751c83f06bbb971adc5ff4b420cd0 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | 943450da8c97bb2c766e8e8eed8de3e5 | ASCII text, with CRLF line terminators | ||||||
services.cfg | d9d1a34ab6d497e3e1c3fbccf2f3096c | ASCII text, with CRLF line terminators | ||||||
classroot.cfg | d9ee1341fb5df6225cdbb65a2eb64533 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | dd42b235270f8372537dc57f4737a156 | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | ce4e9e76c44aa5509a2821cd530dc435 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | 0a02d5f2b50c4ffe1931b74e47beed66 | ASCII text, with no line terminators | ||||||
services.cfg | f2459d1381fda7c97bdb2ba1805872f4 | ASCII text, with CRLF line terminators | ||||||
AMD_Registry.reg | cd94522b53eb3f7217930fddeae6e109 | Windows Registry text (Win2K or above) | ||||||
AMD SOFTWARE TWEAKS.PNG | ca7620f25276d4962cbbced067f4e2f0 | PNG image data, 529 x 619, 8-bit/color RGBA, non-interlaced | ||||||
Best Drivers .txt | f0b3a60dfb6b3505d09617b09fd80297 | ASCII text, with CRLF line terminators | ||||||
Optimize Display settings.PNG | 56c701bd293eb69b3a377a8bd6241f71 | PNG image data, 863 x 493, 8-bit/color RGBA, non-interlaced | ||||||
DDU AMD.PNG | 239b6188a69dad78b0374110e098a799 | PNG image data, 804 x 637, 8-bit/color RGBA, non-interlaced | ||||||
DDU NVIDIA.PNG | e0a60003c83e5a4c16ad0fabebd1e2f8 | PNG image data, 871 x 691, 8-bit/color RGBA, non-interlaced | ||||||
THEN CLICK CLEAN AND RESTART.txt | 1943f8baee38fd91ca15e291d7f0128e | ASCII text, with no line terminators | ||||||
2022-12-16__17-47-39_DDULog.xml | e3de589a354065a9850c22b4689ac16f | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
2022-12-16__18-14-33_DDULog.xml | 52d2a709a62521080baf8fa29965b914 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Display Driver Uninstaller.exe | 46d8e3c337d1c31874cca8902980bc1d
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
Display Driver Uninstaller.pdb | 926278d8b4c8d2beeca1dc88d81d36e7 | MSVC program database ver 7.00, 512*1347 bytes | ||||||
Issues and solutions.txt | 4d29ce16237fec3a3bace44eda19ab56 | ASCII text, with very long lines (360), with CRLF line terminators | ||||||
Licence.txt | d62627392a6d2bf8db15a23fea269840 | ASCII text, with very long lines (1119), with CRLF line terminators | ||||||
Readme.txt | b799724d8655de1ed86c7e45ac96c33b | ASCII text, with CRLF line terminators | ||||||
classroot.cfg | 7f92472092a396a1172e3d3cd081e944 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | 79fa1eefc1f6529437462c2e03149643 | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | 1c1cdec6fd5a350b837eed0385394084 | ASCII text, with CRLF line terminators | ||||||
driverfilesKMAFD.cfg | d70453f20b7bf4a2af60b7b5f79913c3 | ASCII text, with CRLF line terminators | ||||||
driverfilesKMPFD.cfg | 7e80b69945687a2becded6b8439025b8 | ASCII text, with CRLF line terminators | ||||||
driverfilesKMPFD.cfg.bak | 89155d0f824d7e89a4b22c7dd6ad08f1 | ASCII text, with CRLF line terminators | ||||||
interface.cfg | d26ff4c7bd788d176463bd1534d0d0b1 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | e0323af9edeeca54100c97cd1e165570 | ASCII text, with CRLF line terminators | ||||||
services.cfg | 61b412f8d921bcfed4ce1f937b54537d | ASCII text, with CRLF line terminators | ||||||
classroot.cfg | 847adb4983192d4ad0f016bf2dc807f8 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | d2680ec1ab7efb102f302c0db6102a5c | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | d98c765de58d56ea14ed6a25380718ae | ASCII text, with CRLF line terminators | ||||||
interface.cfg | f37b89fa3b54bf60d0b5ad875a6650d8 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | 79c5137620a6a4280f9fd7ef02c185fe | Unicode text, UTF-8 text, with CRLF line terminators | ||||||
services.cfg | 6a97e3c4d2c7434f27f6b86986850a41 | ASCII text, with CRLF line terminators | ||||||
_For translators - ReadMe.txt | 6d9d18c1dc410770e9d1a057bea52ad0 | exported SGML document, ASCII text, with CRLF line terminators | ||||||
Arabic.xml | a609fd1decf2716812ea274c098551cd | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Bulgarian.xml | 5ca9e8a92efe8049fbb375ca04541dd7 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Chinese (Simplified).xml | 4079269c80a37096e68cbad2596d013c | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Chinese (Traditional).xml | 9ca5886a864378ea2e67187ce1dd3af6 | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Czech.xml | c87468bbaeb0a8bc5ce8b7248e9b7e56 | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Danish.xml | 70181b67855c113a5531b984c23c450d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Dutch.xml | 7c148833448dc4109db68f49d94af82e | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
English.xml | 137862353a4340c713e603fd8df31674 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Finnish.xml | 7b67c5896bf70d4947e91a0fbcba4bb8 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
French.xml | 7ddbdf0f4469be126761583351b4af1f | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
German.xml | 4fe579dc3b8e3761e97acfce643b97f5 | XML 1.0 document, Unicode text, UTF-8 text, with CRLF line terminators | ||||||
Greek.xml | d048ec5409a00e87c16008c5f089283c | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Hebrew.xml | b59535080454462cd8eb577c24612f0d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Hungarian.xml | 3c228d0850477a7e0813b5d2369cbc66 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (339), with CRLF line terminators | ||||||
Italian.xml | b997ec2a4a4170c083a183431352a52e | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Japanese.xml | 47eccb6e75d5608fc6b930f2d3586d09 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Korean.xml | a674533a2dfe94311e8635e441070953 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Macedonian (Latin).xml | 0b12f4af582d715f0b7bf4f1248537d2 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Persian.xml | 2258d90d93212e96f7d341e18906f7b7 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Polish.xml | 907d0af6af22877f1035d366c547554d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Portuguese.xml | 8405a1486974ff7d407f0a489cd5d3d4 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
PortugueseBrazil.xml | fc638d287a297db1c66c10bbb5318e8c | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Russian.xml | 2d80682c64528e40f7150cb462d9db40 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Serbian (Cyrilic).xml | d1d88cacce57c90bfebec145e95a0538 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Serbian (Latin).xml | 358d404248c473cb3cd427d69f621398 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Slovak.xml | bee7a7a02a604c4f07867213e252f6eb | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Slovenian.xml | 9fb4c554b38a0e1e43b059551de8f834 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Spanish (Spain).xml | d34359f6009d1a46f9e56dc1356e867d | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Spanish.xml | dc1d550b6a6f47c6cdeb99d4d0fc87ae | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Swedish.xml | 3041dcf2a74c55e93ba94addd7bb612e | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Thai.xml | 6d2222c55da575d7abebbc55e285a441 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Turkish.xml | 126585e4af2671e49612c9f814a3eb28 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
Ukrainian.xml | cca3df10bc741661fc4bfcbc5d77db4e | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
classroot.cfg | d7fab3164fde0b1924f84293394df562 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | 16d865022bbd28664dc9f61606013edb | ASCII text, with CRLF line terminators | ||||||
clsidleftoverGFE.cfg | f6ae6e324d72fdedda1b4ddd1a6d5f5c | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | 0b987a2a7aa2bc52bdbfa5a48d8533d4 | ASCII text, with CRLF line terminators | ||||||
gfedriverfiles.cfg | 43fac7b38ab53d187b3deedf944b6b38 | ASCII text, with CRLF line terminators | ||||||
gfedriverfiles.cfg.bak | 12a30255609faea656a55d41a114928c | ASCII text, with CRLF line terminators | ||||||
gfeservice.cfg | 176c639e73c5322b5c954d00ff4ecc8a | ASCII text, with CRLF line terminators | ||||||
interface.cfg | cc56bfeeb973557fdffb2a24c4ee5864 | ASCII text, with CRLF line terminators | ||||||
interfaceGFE.cfg | 841a76da4775ed6f28e72bc218bcdf5d | ASCII text, with CRLF line terminators | ||||||
nvbservice.cfg | 6e3751c83f06bbb971adc5ff4b420cd0 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | 943450da8c97bb2c766e8e8eed8de3e5 | ASCII text, with CRLF line terminators | ||||||
services.cfg | d9d1a34ab6d497e3e1c3fbccf2f3096c | ASCII text, with CRLF line terminators | ||||||
classroot.cfg | d9ee1341fb5df6225cdbb65a2eb64533 | ASCII text, with CRLF line terminators | ||||||
clsidleftover.cfg | dd42b235270f8372537dc57f4737a156 | ASCII text, with CRLF line terminators | ||||||
driverfiles.cfg | ce4e9e76c44aa5509a2821cd530dc435 | ASCII text, with CRLF line terminators | ||||||
packages.cfg | 0a02d5f2b50c4ffe1931b74e47beed66 | ASCII text, with no line terminators | ||||||
services.cfg | f2459d1381fda7c97bdb2ba1805872f4 | ASCII text, with CRLF line terminators | ||||||
Settings.xml | e72d44d9dd957715fe1fb6350b121cd8 | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
1. Downnload 457.51.txt | 9672462ee39dc6ee9066f619b09264c0 | ASCII text, with CRLF line terminators | ||||||
nvidiaProfileInspector.exe | 558d93591de6e81f1dd0a799c71fd6ad
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
RMTweaks 457.51 custom.nip | e99858cb554517a06c581f616dea33eb | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
20-30 series Gpus use - 466.77.txt | 6c0dcc3c2db28362a8d3b1d4eadabef1 | ASCII text, with no line terminators | ||||||
1 Read . .txt | 4ca673c7e3aa62b0cdd41393f0a5d7f2 | ASCII text, with no line terminators | ||||||
nv 1.PNG | be50cb73d9ca73c129399fc7626e101a | PNG image data, 597 x 690, 8-bit/color RGBA, non-interlaced | ||||||
nv 2.PNG | e1a334959340147aa02431772e7b7bc7 | PNG image data, 613 x 738, 8-bit/color RGBA, non-interlaced | ||||||
nv 3.PNG | ff4c3885b2c8cb80d99b9d15bfb5e467 | PNG image data, 650 x 699, 8-bit/color RGBA, non-interlaced | ||||||
nv 4.PNG | 7f4fcccfb6ca5031dff6107b959caaad | PNG image data, 662 x 719, 8-bit/color RGBA, non-interlaced | ||||||
NVCleanstall_1.13.0.exe | 7f797f8d4c8c8ac04051550886b2acff
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
WARZONE ONLY DRIVER !.txt | 4fd94dbb709080d65d63d1c7a33f5188 | ASCII text, with CRLF line terminators | ||||||
Retch Gpu Tweaks.reg | 11f0a4e4e13ee60dc3fb8d8505711601 | ASCII text, with CRLF line terminators | ||||||
Unhide SILK Smoothness.reg | c58ab76eba9be0c786b77db3255d7a8f | Windows Registry text (Win2K or above) | ||||||
msi mode.PNG | cf237a50c3489c5230452f68e7bd8bde | PNG image data, 1005 x 68, 8-bit/color RGBA, non-interlaced | ||||||
MSI_util_v2.exe | dbd2194b7a5b38636edf7112ebc6fe91
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
Read First.txt | 0d8ef5bc59943f3d11174d3eb5ad6958 | ASCII text, with CRLF line terminators | ||||||
1. control panel settings.png | 0bf7fecea526b573e6aea4824b206cd7 | PNG image data, 624 x 335, 8-bit/color RGBA, non-interlaced | ||||||
2. control panel settings.png | 32213fba480c0464907b8558aa1f477f | PNG image data, 525 x 285, 8-bit/color RGBA, non-interlaced | ||||||
3. control panel settings.png | 15fe0bfbfb6406db8912be3019e163c1 | PNG image data, 478 x 73, 8-bit/color RGBA, non-interlaced | ||||||
4. No Scaling.png | 2bdac810c2a9d2a56757a7ce36d6773a | PNG image data, 932 x 717, 8-bit/color RGB, non-interlaced | ||||||
5. physX.PNG | 8d5621e8fcc54145969c817f8a68abc6 | PNG image data, 809 x 835, 8-bit/color RGBA, non-interlaced | ||||||
Click this for help.txt | abe46764ab75fe93143aaa10bc43ca83 | ASCII text, with no line terminators | ||||||
nvidiaProfileInspector.exe | 558d93591de6e81f1dd0a799c71fd6ad
| PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections | ||||||
RMTweaks custom.nip | e99858cb554517a06c581f616dea33eb | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | ||||||
1. Step 1.PNG | a00b8b6cc3caab0fbebcbf9d18337ebc | PNG image data, 496 x 483, 8-bit/color RGBA, non-interlaced | ||||||
2. STEP 2.PNG | 47cc7077feb5f89d801eef901167e465 | PNG image data, 504 x 494, 8-bit/color RGBA, non-interlaced | ||||||
CLICK HERE - intPolicy_x64.exe | 5822ec470c53cbe47747e42458059957 | PE32+ executable (GUI) x86-64, for MS Windows, 5 sections | ||||||
Once you completed the 2 pictures click ok and done at the bottom.txt | a1aa71b56a06143c40c08cf5c5fcecda | ASCII text, with no line terminators | ||||||
Disable Scaling.bat | 692916cbac48b3958d98a350a9341fe3 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
Force P0-State.bat | 9ebdc56b5431a571be65637279a17928 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
Remove ECC.bat | c8d3d3a03794297802aeca5e2dcc9f73 | DOS batch file, ASCII text, with CRLF line terminators | ||||||
Remove Nvidia Telemetry.bat | fa69c3a9a160f21a3ed9b165363774aa | ASCII text, with CRLF line terminators | ||||||
Unrestricted Clock Policy.bat | 69c045081af667121e7a66064d6cb82a | DOS batch file, ASCII text, with CRLF line terminators | ||||||
Enable to Profile 1.PNG | 31c648be7057653801972e208f3d8501 | PNG image data, 636 x 476, 8-bit/color RGBA, non-interlaced | ||||||
Ram bios tweaks.txt | fb3798e5c7e05ccbdfd12880b9db4819 | ASCII text, with CRLF line terminators | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators | ||||||
Ram Tweaks.bat | 87bf33ac910d64ab17e87599e030b39a
| Generic INItialization configuration [InternetShortcut] | ||||||
Retch Mem page drivers.bat | aa036ae305fa577bacef9763ea85e2ab | ASCII text, with very long lines (443) | ||||||
RUN ALL COMMANDS IN ADMINISTRATOR ( RIGHT CLICK THE COMMANDS THEN CLICK RUN IN ADMINISTRATOR ).txt | a358e7755e1c770fc857e5beca092e41 | ASCII text, with no line terminators |
Detections
Analyzer | Verdict | Alert |
---|---|---|
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public InfoSec YARA rules | malware | Identifies executable artefacts in shortcut (LNK) files. |
Public Nextron YARA rules | malware | Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
Public InfoSec YARA rules | malware | Identifies executable artefacts in shortcut (LNK) files. |
Public InfoSec YARA rules | malware | Identifies executable artefacts in shortcut (LNK) files. |
Public InfoSec YARA rules | malware | Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path. |
YARAhub by abuse.ch | malware | Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen |
Public InfoSec YARA rules | malware | Identifies executable artefacts in shortcut (LNK) files. |
Public InfoSec YARA rules | malware | Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path. |
Public Nextron YARA rules | malware | Detects ConfuserEx packed file |
YARAhub by abuse.ch | malware | Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen |
YARAhub by abuse.ch | malware | Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen |
Public Nextron YARA rules | malware | Detects possible shortcut usage for .URL persistence |
VirusTotal | suspicious |
JavaScript (0)
HTTP Transactions (1)
URL | IP | Response | Size | |||||||
---|---|---|---|---|---|---|---|---|---|---|
cdn.discordapp.com/attachments/1223429525455638629/1233022414028279828/RMTweaks_Premium_Pack.zip?ex=662c3ddb&is=662aec5b&hm=e81e017f384e5de3445e92c83b7e14d5068fbd95096169f0326e1f2648138610& | 162.159.133.233 | 200 OK | 10 MB | |||||||
Detections
HTTP Headers
| ||||||||||