{"report_id":"01f422c2-7f28-41f9-a74e-ee4cc8347ed1","version":6,"status":"done","tags":[],"date":"2024-07-18T09:21:05Z","url":{"schema":"http","addr":"github.com/scode18/All-Tweaker/raw/main/tweaks.7z","fqdn":"github.com","domain":"github.com","tld":"com"},"ip":{"addr":"140.82.121.4","port":0,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T09:16:33Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-17 18:12:37","alert_count":0,"request_count":7,"received_data":6212,"sent_data":2289,"comment":"","tags":null,"fingerprints":null},{"fqdn":"github.com","ip":{"addr":"140.82.121.4","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"domain_registered":"2007-10-09","domain_rank":1423,"first_seen":"2016-07-13 12:28:22","last_seen":"2024-07-16 23:55:24","alert_count":0,"request_count":1,"received_data":3572,"sent_data":503,"comment":"","tags":null,"fingerprints":null},{"fqdn":"raw.githubusercontent.com","ip":{"addr":"185.199.109.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2014-02-06","domain_rank":35802,"first_seen":"2014-03-01 08:08:08","last_seen":"2024-07-17 21:47:29","alert_count":1,"request_count":1,"received_data":9176880,"sent_data":514,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"1a6b0779415338f88056f31cfa9a10a8","sha1":"bbce9006980f0028be4f576b5b702e0c2320d23d","sha256":"a96de3bd6a5a7da6f6241fe492c301953e3a5e6932fd50da6f995663f1501793","sha512":"83111c7313a5dea81799a22b14ec2fa3d5ee0eff5b0f6d0006d9640a684b159d1c856ff76470a08847f28fa963d5acab3ea6b9d240742c3b07622e54e2a196ab","magic":"7-zip archive data, version 0.4","size":9175981,"url":{"schema":"https","addr":"raw.githubusercontent.com/scode18/All-Tweaker/main/tweaks.7z","fqdn":"raw.githubusercontent.com","domain":"raw.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.109.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"archive":[{"path":"tweaks/Оптимизация от qqnwr/Registry Tweaks/Win32/READTHISBEFOREAPPLYING.txt","filename":"READTHISBEFOREAPPLYING.txt","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"","size":0,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx's Power Plan.pow","filename":"Adamx's Power Plan.pow","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"MS Windows registry file, NT/2000 or above","size":20480,"md5":"d6add010e5ec95ac4e95ee27fbec4575","sha1":"802d16bea5428bd514e9820f2a1245738d5e3030","sha256":"d3e68a1af9bbb07254b614395a1f6c5dcb07a36d0bbdbab6fe5186bafd27af71","sha512":"5aa3d5ca8f5780d3e3ac8400f3189c51a240edb357d6488eec492ba91fbd7a92d82d53c4bffd470b696f5c63bc5b41de5595c2b2d2b315f23a9e867d4ee12a24","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключите дополнительные ненужные службы.bat","filename":"Отключите дополнительные ненужные службы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1407,"md5":"dc8f8980bd4a53054202cfdb10b0ddd9","sha1":"34b350ffdad2f11fe6cd882ce655503cf21ad7fc","sha256":"fb06120ed804e5a36d1f95d5d04f59aafb2e513ad0bf87ccc3d9ea8049b0a020","sha512":"9e0050fb7ee983fb6e4b05b2f49cc5b259aaa85ffb89bf4ec9fd93c994a67d8c4f4355a56425cc0aa4d5c485035d376552377af6429cd2520be98af4fc2722e7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить SmartSceen и блокировку загрузок.bat","filename":"Отключить SmartSceen и блокировку загрузок.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":518,"md5":"5b80091326ec3d0acb0f2ee41ca5d093","sha1":"b2ec4dd44067e792358401f2e7f7786ce94b7675","sha256":"b450106459e62166efd85913e3af8b11f81dc4de1aca03495b1c75ef5b101b96","sha512":"b3c32f0df705f21dc4fe024cfd74aa136f3cefdd59618d5f29ee5fea9f8044cd7739c962e522f7ef7ee12dce5147f08326fd931d6b5ec413a15129d0dfb03f04","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Adamx/Отключить SmartSceen и блокировку загрузок.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Adamx/Отключить взаимодействие с подключенными пользователями и телеметрию.bat","filename":"Отключить взаимодействие с подключенными пользователями и телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1355,"md5":"010aab4e7c62c367cd20f0e34a7d9019","sha1":"898c43f50e34a72db909f399d9b0f039eb9be887","sha256":"45d6a6825b42e57f733231c09f4e549aac90c0b64da52ae75e2ab2632c5e0c55","sha512":"35db098c0af322fec9fb6e64e9041f7d098acdee60a63d257feb42fe411baa705ed3b2c2add9b8604aa62b72e7dcbec8581ba125f7de7c0148f52e3983af4a23","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","filename":"Отключить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2672,"md5":"beeecd80f4a6defa477d9a22574a6c0b","sha1":"12d31b07033a9ed90a8a4923bba0e6bc8b342e90","sha256":"62a65b69382c6357bcf86d09f20a4802bd4f8d8ab9f04ea052c65f9ac4c755dc","sha512":"c487138c0ed053ae61517586acd1ea2041f92a8a0bd3dea29da66f75a3c34ca69dd2f6512844f473e3bd2ec882a1cd678b7fce7ae9780f6d0865b1fe6adfb571","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Adamx/Отключить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Adamx/Отключить исполняемый файл службы защиты от вредоносных программ.bat","filename":"Отключить исполняемый файл службы защиты от вредоносных программ.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2819,"md5":"98ecb72b7a4e1f99f1dd5363522c8165","sha1":"a9dcd07623db440aaa73dcbfd1d190faa1c86037","sha256":"06f2183d7e8de9c651481bf88460b16861d1431d3accb707697ffe92da432443","sha512":"1295054fdda4b18921690aa3222f81f943920b6b5b8f44dbe7f85cbd03a87574bc5ebfd7a8d90dcf41b1d5732a77048c67ade17a7062ec761802269bdd69686e","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Adamx/Отключить исполняемый файл службы защиты от вредоносных программ.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Adamx/Отключить менеджер загрузки карт.bat","filename":"Отключить менеджер загрузки карт.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":406,"md5":"2d266ac82a73900aa143d3b42c57a148","sha1":"4352650f5400d4c22ccec81db2f87c5c3413d293","sha256":"bf862f3a5181ab9ea06b023fddd91ad61030dce778125fb3b461b3fb594d06f2","sha512":"8371366a989e6eb351a6f26b04445f6b2d2f8e6bd1d97be71b005c11457cb618f44163b6fb5af7b2fad7fb0ddd68e9ef1f07c6509d45b46bdb101c899cc52645","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить службы Bluetooth.bat","filename":"Отключить службы Bluetooth.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":589,"md5":"474afcac26757e60b7e39ef0031868c0","sha1":"cd6b8cf488ca57311fa07c16fdc6151018fa7669","sha256":"0afa0be56abb75987419db19bfdf624103c0c9be5eab726e035d003c9c80a052","sha512":"7bc885c4a40ee20ea0ee49da6151f721a231369d7c1073599d435ffc8111144a736981d4d9b201d49ee1611f3c2dbe7253b5266dcecab2f5eee3765dfcbc791b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить службы Xbox.bat","filename":"Отключить службы Xbox.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":873,"md5":"f2b0cef047eba1ddf77561cfa65be6d3","sha1":"5bfd0fb5e74ffcf3117c7154f904b68cb8d498e0","sha256":"c3263f7b85f41cddb6fe422b36f2f10c008811cc2de596b46be2bfd4279b61a3","sha512":"de874e9a05cce81224e5a929dda35d1cc6196efefbee84afe53bf6e6de8e03288f74205f4a42bf2bd48469ff6d2cc33be342d8c2aa59959a67692cf0cf7c4233","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить службы диагностики и телеметрии.bat","filename":"Отключить службы диагностики и телеметрии.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1355,"md5":"010aab4e7c62c367cd20f0e34a7d9019","sha1":"898c43f50e34a72db909f399d9b0f039eb9be887","sha256":"45d6a6825b42e57f733231c09f4e549aac90c0b64da52ae75e2ab2632c5e0c55","sha512":"35db098c0af322fec9fb6e64e9041f7d098acdee60a63d257feb42fe411baa705ed3b2c2add9b8604aa62b72e7dcbec8581ba125f7de7c0148f52e3983af4a23","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить службы принтера.bat","filename":"Отключить службы принтера.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":582,"md5":"238c5da9c70e65a67b1cb941a2dd01b2","sha1":"d40c2bc4f1536390101ad2e5d80c2a2bc81274b6","sha256":"2999b9c54c7d235bdbca2a93b07f04b9aed10b6e3012c2a54298a6f4a6f51f45","sha512":"3b565b1e34045ac4138ef11d98ad7be934f1f685eb7dae02887933c46411794a661d57a1abbba145b41029cdb5032c872a85d0f97e16a42722884880af8af4b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Отключить средство устранения неполадок Центра обновления Windows.cmd","filename":"Отключить средство устранения неполадок Центра обновления Windows.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":758,"md5":"697d04023f26a7592d72096e554c376b","sha1":"97093da7832a08247c9d24c7688a0603dd873009","sha256":"bc5ab1564c97360e0f5210f94e8982d52d94239499e3d2f865d58147f657457b","sha512":"a4af303296340c5a98c2ef8b07e5237f31d10d1834fcd74632074c4cf239052699f601915365c463e5a31bc5b11610c0fbcdcbd59b35dc3473235dd1ff21608c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Adamx/Принудительно закрыть все процессы и службы(Безопасно).bat","filename":"Принудительно закрыть все процессы и службы(Безопасно).bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":7315,"md5":"0bac31df423846a00afafa41f1674ae7","sha1":"869ec1b758ef3fa0e12b886e8d4e379958c2d492","sha256":"0671a4e2242de594dc5fd486877ab84c8fd18db61e37a99801d9102a5b8be9e4","sha512":"897570d2d085a0ff76d2d20d77ece9fbf727be54dfd457bb9ce82c7dabda4a6f874e2719b8f5894a6b8f68b60bdba46dcd01419cbf451ccb455300ecae644b16","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Amit_v1.pow","filename":"Amit_v1.pow","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"f1ae7b44c0d97e34cc7d97a244664c57","sha1":"fabb12eb70ff54e459cd560a816b36ea7acdfde2","sha256":"e6b397a70b27bc795c262e2a2becc6e47178e91c92eefbe28fcb9ce17f8bd60d","sha512":"f0179a08e9289b1d8f731536389954dd8c21311cbea6d64deaf27ade0d652338a2ec8450ba9fe301fdbc0d7317972011c95b71a9974f66d644aa6069cb6d599c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Amit_v1_lowlatency.pow","filename":"Amit_v1_lowlatency.pow","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"63afe81c94c76e0e1e9727ce8cca716a","sha1":"94c8e7f3b2e0afcc9c35652f341f8f420d82a2ac","sha256":"4da580681e53b0fec3eb79b7d3c792e287f81b4e65662fddf8e7441ed285faec","sha512":"b30528456204a72fb8122bf5a18e58502a5447f69202b0a9fb6c0b35bd41dec9d615cfe2560648be572628e80cb25d60860887621496007cbe56f0beaf7cfd69","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Amit_v2.pow","filename":"Amit_v2.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"e2efa49a5582c5b6f187ec882d5bdc28","sha1":"534136a115a663f8a00f2ba506ff1d885fe4d11a","sha256":"8bc19646feccb3bdcc828f055a3193a2de0e297f285bb435d4a52565f9460253","sha512":"2e7cb1c7b184a9760090db551ea739c82640bddb2d867b06d29d12a3091aa5126e72be9cdc29ca35f1e14106fadab45798189d81b3db554b19d8ea4491358121","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Amit_v2_extreme performance.pow","filename":"Amit_v2_extreme performance.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"38be1e888f183c47d7d194043240dd90","sha1":"58203d476d282b150471e1c6384f8588b430aada","sha256":"de3b52d3f1eac7873b0aa93711dbfa6300e9d04ebf0ce4065b063dc32b2de1df","sha512":"160f8b007213049604f55d6abbfe8e6787184004cdda8ee210e0475d37e301e85f7d64d7be9b2f7fd47440c4039a1c1aa7704cfaefc70cd43286eab987db5d2d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Amit_v3.pow","filename":"Amit_v3.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"ee2efd939946d8e1bea018b555fd2508","sha1":"3396a3586cd84004ab990f24e4e046dbe4d4712a","sha256":"43e55d9bc154e1dc30c30f4f1adf0f46b7c7b31979ef8818929f3b6bf9d3b241","sha512":"52971d72fde186bc1ed6c5a276319e69d186b37e58f8a7b808025c353c58ccf5795bb9dac3f10d74982efe45f88ae569766cbfa95acf0a44cabcc7a56b1bd7a1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Amit_v3_low latency.pow","filename":"Amit_v3_low latency.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"e948e09bd0cc69b1bd7b565cf05466f3","sha1":"1aa1085aeb6953cd7d0df016e76e056d127d5068","sha256":"ed98a09f99e0b46355b6f0044b61fb742ecb4da56be2f1e383a306caa7cf891b","sha512":"b8cc7296bcdc5445504a152a5f6b12491045c2138b1aa5fab7695e38eb3b10d33273f8d916b2af239d9b80ccd5027b6f4603f9218a286347fb7e6da058bf4d09","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Atlas Power Plan.pow","filename":"Atlas Power Plan.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":24576,"md5":"14dc59b5afbf56c0e985d398c4c1c442","sha1":"ddcfd553527f9dffe050a731d34c3a4505bc67a6","sha256":"e337b9ab3ee9e1b560ccdd0f6cad9ed62f88ce20b455cb334a9f924116783131","sha512":"10621cbd7082f1dff0b88c33729cb8388731e3beedde58964ae162306280d94917397312f78b5db8ee688ec225cb5933a19cc66c05494de34151fef0265e8213","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Balanced.pow","filename":"Balanced.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":8192,"md5":"a169ac008e0159314e4eb50e01e9fd47","sha1":"f56177a641713e65feede49fa777416f6e7e57ce","sha256":"768551f6e223c283a1115ed5a0996f83cc8247cbd7be9d5ad7a3e5c41a84b685","sha512":"5253bab77e02770164183192aaba835ca9e9c1763eef92cc941679c56ac9344d75abf6b83e80507f24202019d1d1d01b304e5a0dc19204a96d1c0224f90799e9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Bitsum Highest Performance.pow","filename":"Bitsum Highest Performance.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"ca314461b3de3cd10b52312588c3cf50","sha1":"9db1ce875e986e741ad2f6e51fa5fe643499376c","sha256":"1389abc5d7462031c4f2abcecf58cf5d4c8c5debe2095954a737f88c8b95d9c1","sha512":"7302296eb429a0086505e5090bb80fdfa37afd789feb3d5c6d76cca345afb3752d13c1955955fb29d2fb18828e2f9ec022d65a197ea56191949c9bb8f4bda283","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Выключить автообновление драйверов.bat","filename":"Выключить автообновление драйверов.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":567,"md5":"f342c2c5385d4f03ae18a7b7eda65c09","sha1":"77dfa800c36cc0b627966e309bb5b974e3e9a2d4","sha256":"81675b064a5ff0f5dde1ac1ed094a8be9c3552198db602cc96d84c7ddc53755a","sha512":"849fa25595a89a2a15b755d1bb8747e411903fa37ae3a5a90efc2d866b441cc32ad84e6fb23ec8f9e60f1fcbdb579dd608e68c7c4284965742409d197434822b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Остановить всю работу в фоне для Windows 10.bat","filename":"Остановить всю работу в фоне для Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":51,"md5":"1daed5df4fab2d48563c9980b6e15b8e","sha1":"416ddaeb719ab67b20f05be89ed6640603c39cd4","sha256":"9af3fe27ca4ecc4264705872d5a771e2a4a3c8b28717ef366ebd1b5971cd5dfa","sha512":"e8c69046cb81d01446133a824a974697e91b9d534f624fe7e1b350c04dbfd447b7fe751a37c986f7b11ca270192ee9eef6ec9feffbdf4de2347a17fb8ac3f880","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Остановить всю работу в фоне для Windows 11.bat","filename":"Остановить всю работу в фоне для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":539,"md5":"c2c62f8b90fa7f387bb14b0e8ecf579c","sha1":"d4dcafc721d76f3731bc84d466333a7ad7f0b4dc","sha256":"f5ed7b336e913765ac62c19304038c1a18a777ee1cf8e9ead0e73b1fa36f921f","sha512":"ea5a96878bd5fc85bc85a2dc51a4acad40fec929e973c9d03088419f1baaf6f86711d9c6cc93fc27d6a27723d7b3fd35a597cebc170cbaf953b1431c083ba087","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Отключение Spectre, Meldown, Tsx.bat","filename":"Отключение Spectre, Meldown, Tsx.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":865,"md5":"22a0a534f9946fa17ffc86a3f35e986d","sha1":"3738e3275741cdc51e46b5e315f4115d93ae815a","sha256":"265d9bdc1219bb6f2507921aecd530174116f5b52529dfe1e19ff997708ee282","sha512":"e8dd0c0ec61940342b713b0a4f2f8a1639bbd3b70683abf042c173fa3988c128f59c294bbb32a5a9b31a9efc61524905efae66c66bc35d7c98fafd80a1572013","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Отключить антивирус Windows.bat","filename":"Отключить антивирус Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":2291,"md5":"6c639ad61496e54ab1db5c13cf3c931f","sha1":"316366c140133228367db55fe768464e1b954a39","sha256":"17b71156b6bb7b68a776c9eb522572973b0457a519fbb5632a08a6e169596602","sha512":"7c6a51961e18b9c4b41cda3054c0095d376d9c8256bc7f50d0c00019af3078e51c6bcbc9ffe5f2bbbd4316b9835fc1c22d94f5fec637bc58de7fdfec8f016c1a","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/BoosterX и ios1ph/Отключить антивирус Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/BoosterX и ios1ph/Отключить виджеты для Windows 11.bat","filename":"Отключить виджеты для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":380,"md5":"05a0839fe7958677a764d9da355ed271","sha1":"b1f2b3e99787b5a9c0a2098ab0facc117e20eb29","sha256":"7ebb7879efa3e1a475a50ed7bc3dd3d20c861405da3009b039f0b3209e93a230","sha512":"7b1df3d37b26ed58f4a5514bfe49ee14e9ccefc7b7031ca47f626fa87ce4683eb69db5a3bf550562d550e02cbb9bc4d5e7d6d2c2d87914594c5c7fa55b42ba34","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Отключить карты.bat","filename":"Отключить карты.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":33,"md5":"2a3ab4cdd54cf15362470e7ec6b79375","sha1":"74d9f4a63aa46511ac59d7f106db300dad8ee4ad","sha256":"055ddbecbcc19f62c582a5ad65f489d396cf69b162bcafa777a925e0d9610cd3","sha512":"2a953dc4b5fe281b9c56295469ad18b329b8235bcb6438d74b24e76e167f5b83b46ac80078f3ce55b90aa01bda406fe6605bebe809b851f0d67d306fbb68dc3d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Отключить обновления Windows.bat","filename":"Отключить обновления Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1887,"md5":"767c8e8635f6270a6b6ee2599bde56a8","sha1":"a5338fad10a2daa6fe66fae66839dd49add78eeb","sha256":"489f03d0eea45c0dbebe4fd97aca9ace5172e3b125c5fce6b4be0191d3739343","sha512":"cfa944d4e02027e7b2bea005caf76696acd2e087f43f859d1a9bc16a976583625387abd834bdafb168268e9714959479e86c82138e725d333db158605c6c5a06","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Отключить сбор данных в планировщике.bat","filename":"Отключить сбор данных в планировщике.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2399,"md5":"7190f376e0d6a3975cd207d8be972472","sha1":"eaaefde828a339c346d80dc3340958dd013a9680","sha256":"b85f218e59fe628b062d84876425db5cee8792e333c915087fc666514436aea4","sha512":"2e978b7dc220b9ceeff102a085e48af860a7afced0561ece588646ac11c23cff3bcca73015a761f5e13edaa9d1a76da8fc129ea1666333eabd630c4feaa4ceb4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Отключить телеметрию и прочую хрень.bat","filename":"Отключить телеметрию и прочую хрень.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":4052,"md5":"242a3c7c0d1914953d25d6eb28413e40","sha1":"12dce0473a278156465bfef97caa2714e3edb136","sha256":"1aa88212e786be2c85957613494facf57826e17d71b41e0835d7277551af782c","sha512":"d48ab26f1866d11f41e4e1ca9e1bf63a33625a55360c37b7d264b8100d01f38fc8bb305a1effc794410830f0f46151b2c7f862cfe1eaf42b2ab4606b763ecc99","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/BoosterX и ios1ph/Отключить телеметрию и прочую хрень.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/BoosterX и ios1ph/Отключить триггеры.bat","filename":"Отключить триггеры.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2781,"md5":"a1b036e982e5fbe6cbd423d8570a51b5","sha1":"d3876b8029ea25731f84ad86dbd8c021583938fa","sha256":"c6bbf55304948ace5ced38c7eca3a1a076d069e947728ef7abe153556c1903db","sha512":"88db3d09d3f2e499e67c519be3184a90191fb69de57b2ef9be4dab3f00ac7472dd10d9db4ea4e92eabd464444d7dade0d3cda36719a5b4ddb95ad6d20a3297b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/BoosterX и ios1ph/Удалить телеметрию Nvidia.bat","filename":"Удалить телеметрию Nvidia.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1107,"md5":"2adaebb00c6f75584c458eb23c4ed87c","sha1":"a5992413a73ea426ed67842c7156a1d7975c881e","sha256":"f050ab4c9b0d744d92be7164b7ac3a94b3ae6c95c9f1d3259b0ec52a87af5df1","sha512":"ff070951203977a1b69859daf408355cf30e861c148b6212a4d2118718b9d8e766c9bee6880ad2edde064bfa5558d954a76d11e8315cab38e9bdf42f12962ea7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Calypto.pow","filename":"Calypto.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"f73e446e9ad230852cd70b2cefbad350","sha1":"c22ca0f677d1b0a64d94f6dd996366d738169fc6","sha256":"689a149f62670c7926e82ce004d8870761af084b335921d9e048d22428d70eac","sha512":"7711bf664b6324c522a6c8ebae7c128f3564906f6a46d01267106d7e0e12cf477eaf9a55db70e924cb56b9db7d735ccdc75ba51a5bec64e6f7125b6b70b4db93","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/CPU-MaxPower.pow","filename":"CPU-MaxPower.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":8192,"md5":"aa4f30a02c7c9c5305a2fd43416511ff","sha1":"dbc7e459f1e90124514608f162d2bc317045d927","sha256":"796241b91dc51a616661e36a35ec93c4247ff284ae8e748f0e4a34f259ffa146","sha512":"4d9182fdd9cbd01d0d554a6a6f43bbed8a3d561b8033b05c443fd37369621aa444fd5a95395905f08043d5d1036be4835767d3c69ec555906f06bbcd3152ad5e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/GGOSv0_8_5.pow","filename":"GGOSv0_8_5.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"f96a079bb7874d1593b6c00eaa3d7e4c","sha1":"9461db4d43038506674d72324980466a0d70dffd","sha256":"4d37d4988a9f1657f694ecdf6e914cd8a56c2a7b72d0c0b04596d1a1a48e7d7b","sha512":"efd5890745d8eb22e4b75d327044f66cae9827d4bc05fa0269192fa71d3f500e36308345b44790ed2d90594d92f10ba9cfadbc3a8047795265492fa031f12cdf","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/GGOSv0_8_5_Idle_Enabled.pow","filename":"GGOSv0_8_5_Idle_Enabled.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"3dd86cffbc9ff61b5aa804f811d99dcf","sha1":"63175f464ac9e6e86f323892de2aee65108ae862","sha256":"6fdb5c08bd9e8668554f6d5923987adee992a89e183b7daa0e716d34783ea25c","sha512":"38786aa39e45b9e6b2d275b68905b7755bb18569d6f210d2b1b4da2b93b2ed0e520b1cbabe6d28e88df19f02ae58a734ed315bff88eb30763343f612c5ec3c04","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/High Peformance.pow","filename":"High Peformance.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":8192,"md5":"1fbf4d3656bb46745669595dcd359c38","sha1":"c1489a9cb6781917c768ab3b95c07d1f5f121620","sha256":"1582d277f3063d501b148d3b59498af19fa2b2a59fa47f422582f83ad0105692","sha512":"ec99af5e47916fe921b2dc5c3886f07522a1d91365d349c354e47da60ab395be638cd847509be4859454031ea3021ee79d3026eb08a4dd63b4364285c173e0c7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить Cortana.bat","filename":"Отключить Cortana.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":552,"md5":"f6174d32211e0015f1b32485f417b893","sha1":"9d57b0269b6a26d79e5b3257b5e2455bc3edb2e6","sha256":"e3dbf54854f0ddcadf5b1a505d1e1e5873335e163cd44cc3e8a04bb1ebd73291","sha512":"bf95c8c17ab5351e06c75a73a8bf9aaa0c1e4cce6a38c40408b8a43544e2b094945dbdca1246776ceb062c245aec4809ee98c38783ade3b20667c58cecbf3f22","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить Xbox.bat","filename":"Отключить Xbox.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":199,"md5":"b4b507d16ade642d1221ea044f182477","sha1":"eafc0248bd16cb667e9b82d3e84b981f3c699c1f","sha256":"cb598ee4686f842d4fa81a6b4cf470d9eb281e16182b363c2050d6a5d501c4c8","sha512":"6324ad0fc7d57fa2584e541f4326d722bc6b720adf936d42092f47903a941a4ce24a72084a669ead79b9483eee7a7fabc6a12453937725e8d93b48d789fd3933","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить другое.bat","filename":"Отключить другое.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":2579,"md5":"4be2821dfbe211301d8cd97cf5e2f671","sha1":"c7ed749485916e3b3d249b1eaad0a952b21d5e3d","sha256":"cf24207c9d6d48e28f51fde9eb9e4034d4723379b55b08a1e4e19283ea807338","sha512":"6849c39a1b8874419f9770c307e1ab4a8275586c601b4ce88c2636e7962f41846f72b881ffa06d1e66d0f2b905ad16e66afc254a613a17eb60e249d9b88dba0f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить историю.bat","filename":"Отключить историю.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":561,"md5":"98ae5a7e756b83c52577337200914ec7","sha1":"8177b147f4c3aa2e90fcfd85d65c261a70026d90","sha256":"03e7dc32353874e709bb303aa35bd54a77554e8c70cfbc6e2c7edc727ad7fc0b","sha512":"ea3da33b7842c80c1be03ac218c955252ad39839234df62cc7fc7cb36b279832b4c72fa877b856859e3b252701b85e52181cff2579b45edb78024c91aa919362","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить планы.bat","filename":"Отключить планы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":4052,"md5":"feb5972f6ffdd9ca8ad86bfa6a2a14b1","sha1":"6ddc71fa407837be80a475b078c380c231a4bc96","sha256":"de75d4701eb9e2bef9ade995ad47eec8ccd98bfdeeede34eeeedcbc3911c26a0","sha512":"7a1d8a9ec3794db252a9933e0c12808ba115f03d3791ff4aef9f0ef5ab636a78d46efb94ceefd649c78a2df927fcd3074a1589701b0fe1d1a2d3019d2b72d6e8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить сбор.bat","filename":"Отключить сбор.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":468,"md5":"3dd08c9ac1d74a9587dfa5c4a7781ec3","sha1":"88c21e906947580a70f99cc4dcce952d43f7f8a7","sha256":"f866540a35a582c39a1e8e0fee3b0dde21d601082dd5e18b0b0e5d92391cc38a","sha512":"0ab1ec86961d7cefb63c621022c855b62671326793cc862a78ba9cbbc098b696fb2481e4ceadd4bcf2caf25bfd458ffc8c9bdd83b3bcab151fd7b214676c16a2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить службы.bat","filename":"Отключить службы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":231,"md5":"e51c06e964f7dbfdc6e0ced209f50c9e","sha1":"aa265f4325d2f271e90a34642ffbf7944aba8529","sha256":"d2e3d1b9ca8a2d4f426eeaa891e16fb1e68da4b70fcad3dc9d34a9448680b474","sha512":"9ed34a7d46d7b94cc6a3be6f06465de256e683001aa52ca65782ac4b8463b124b68fbb792e9e04fe6f8a4a79105cb8151f586fc4fd69581332d553e6f7d55c4e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/IT-спец. Денис Курец/Отключить телеметрию.bat","filename":"Отключить телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":61,"md5":"4defea8f5357f2983d9feb538d5df635","sha1":"5d79a1faa7eabfa2043631ec5f4e037ee61817a4","sha256":"e6ccda1728838a279867d985a3fb6b75c8ce098587791f55ddff9749de377d69","sha512":"fed7938d10d955cdec8b3617b2ec07b6d858b57d501681cf5e22050c0954a0c6909364e1dd0f356fc0cdfca38266904a35a32f5c0dd84d7f161f5dc22b6caec7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/MartyFiles/Включить Copilot.bat","filename":"Включить Copilot.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":115,"md5":"7d727e7f1842a26e4b12788aa8cc7917","sha1":"37f3baffe944349d19c161225427858a0a8992bd","sha256":"a671d75947a2e682e2ac5ca20ed268b9a146c2bc9ecbe2638249c709f15bcf5a","sha512":"e0f34078b0b3f33d86274b9880259ec5f80d8b0c470aadcb72cde9a07b848dacd6bbb220049fc7b16bdf5fe931fde111eb39d2a798eb9d2863745bdbc7d9e450","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/MartyFiles/Отключение Cortana.bat","filename":"Отключение Cortana.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1574,"md5":"c692ae72addf8718f7e4fcd0cd1add05","sha1":"5dfe57a650d0b10ee23702b79c6aaaaa1b70a393","sha256":"9bfc7a793631288603ce33ea6d2f4c468771b5f70dab42cde0c036513d001723","sha512":"a2d6e2a691c190c3f249f55a17c29a76bca54f71d50c550c68feb12fb9292c9b81797e66afd872297a93754130a909e134a8838cb16422d42e1e9f4641368b73","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/MartyFiles/Отключить Defender, SmartScreen и Antimalware.bat","filename":"Отключить Defender, SmartScreen и Antimalware.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":1116,"md5":"ec0f6858d2b246242495d712483ec2e6","sha1":"7667d7765402b0dd5ad9b4428d97a168edddab53","sha256":"4b6084b8eb7c92e500cc52dd657607c816c8060a4face1bebe4a4f1997548348","sha512":"e3c23ea0d9f5ad08b22762bc78fff787dcc1cc9119eb25f40f18eecec950e5f0f585a1243350cc4e79c82b9fb7b0b42932a9d43ee0cf0c8880ce5660a5863ce9","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/MartyFiles/Отключить Defender, SmartScreen и Antimalware.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/MartyFiles/Отключить все типы синхронизыции.bat","filename":"Отключить все типы синхронизыции.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1055,"md5":"b7d9c385c61e21ec22ff3b97c2dd8e00","sha1":"45592734b0cb45b53be362dcbcb4e88976a054f2","sha256":"7fed318e9cc8188f2570e414a82a768af4466583a25cda8be74848291098b641","sha512":"351e2f3d1c0a3c78f29df0edf0e769c93617011e88ba479bbb65554141e1042a2ace9f2b2de74fb5e28eaf81608befedd887283bf68a8992532cab444ec3d007","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/MartyFiles/Отключить сбор данных об установленных приложениях.bat","filename":"Отключить сбор данных об установленных приложениях.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":389,"md5":"97ea0d5128852dfb391c9f2d8a24a851","sha1":"38be87c41b560c752c05d24c4de4b116b53a6c43","sha256":"d3726a11d49c4ea53767e5014a177c3f4a3bd316bf26bf047adc53f5d9112c3c","sha512":"9889bc4d7fe6edf4c8363bac809b28031ec44eb47c3b1a5c882729f44b488ad3f828a3d62f19e80e99c5a8bc4c33000fd52ced7cf1704296efadeb08ff414d77","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/MartyFiles/Отключить эксперименты над ПК.bat","filename":"Отключить эксперименты над ПК.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":402,"md5":"ccb4d32849b1925f4c5f33aadbbe217f","sha1":"0056d59c495f96b9bdde3eb6ccdd54b40c5044dd","sha256":"a4cefbb053b63abae8011ca445ff625af44a3f0406a994c98cff3315d0294f33","sha512":"732b3774cf828d4ccffca2200eec1c15c10d294d002fb82652cbae05fe4724f1ca9d6a352f2924a7f77f80cb819ab921d7d56b3b632bb38e3acb374a5de16983","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Muren.pow","filename":"Muren.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":28672,"md5":"f59c827f53046b827744906c6279ef44","sha1":"4498809e31ca7f230eb848068e327efbfac0e474","sha256":"291cca72196ecd6292b69515c28d4c07c017533c40053a25929969acd6aa3f17","sha512":"a3df06a2bddc27a71d7c1418760e898d2a301b4eb94391a12cf3b24bfc181fc58ec8a121b5229ee196309d6d37f674a28114b9df84132e255bb5d3f4eddf9cda","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Muren_Idle_Enabled.pow","filename":"Muren_Idle_Enabled.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":28672,"md5":"89e10fde0db7cc013432d1f6949a02de","sha1":"c938ad25b8b46f8fa912df6eda7391401f4f6040","sha256":"b28855f4951913cad6729b8e8ff8d8439a3703f359ce7f52e03c1a4e8796f497","sha512":"0b65b26c4098155e1ea645a61cb25f5e1fe7ef719bd0e757114a1cec816ead351d8803ad8e886ce85ab14815a3fbd33ee04f8174f2050fac5d417a60be10e87b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/OffScrub03.vbs","filename":"OffScrub03.vbs","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"Unicode text, UTF-16, little-endian text, with CRLF line terminators","size":373314,"md5":"11a87c29beecaf2e6fcd74bb88c76083","sha1":"96cf5c6ac46255b38dfec10ac126abe64f202e4c","sha256":"cb748e2ae6854fdddf6cd4938a991cb23a20125384cfcd2bf4780eb30db6bd84","sha512":"8d3e5738cfbc4d94eba5fbdbd49b2e79f53f34f2773a548380ebeec532dcb6a9fb4600a1ee3447f532fea20bdeef96fb7384924211ba6c2991712ee954dd91ab","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/OffScrub07.vbs","filename":"OffScrub07.vbs","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"Unicode text, UTF-16, little-endian text, with very long lines (1620), with CRLF line terminators","size":397518,"md5":"23fb4cf9f004bbaec151a15079731d7d","sha1":"35ac2dc3c5e761420b713b1d7db3c6bd79ca2518","sha256":"8256b24e8bf4a25601006d6d871a550abfce83b017c79516b32a4974f0cabe83","sha512":"6431618aa1e0c170318b5f29bf0f2b1f3a660c8971277f0ca4a0eb2b7a56f5c60c2cd0d3066e73ebb734cd8d0a169adc7a2f523c2b52aa025f5bb98499bedb58","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/OffScrub10.vbs","filename":"OffScrub10.vbs","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"Unicode text, UTF-16, little-endian text, with very long lines (1620), with CRLF line terminators","size":427494,"md5":"cf83e20b0d1e6c6919be59e956400099","sha1":"f27a325624eb26fbc0024b1b07163457cda0aea1","sha256":"0c4c3a28d1140341c0e393a3b5187582e21ed114cef474bed878616acb46dcae","sha512":"b77f68fd658d83d0286a86b8d0f798301494b7a6c1c22c873a83a20dc9f50c9bb5f0f113b52fa3bb24dfa933dddf9008f8629d3de553e142e2fba7adb8b69049","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/OffScrubc2r.vbs","filename":"OffScrubc2r.vbs","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"Unicode text, UTF-16, little-endian text, with CRLF line terminators","size":291830,"md5":"930dc88edcdde90f7449ca55aa616928","sha1":"e3ae471e645efe2beb61c8d6febe8a1bebf9a2ad","sha256":"570f82344ad7300dd4a2993ad6c3a1abe1987f37254bff708dba1801bfef392c","sha512":"d3f1bcfd409988d366b06563c2c5d27a1c7cdabaf4fc47a6d13d0a54b13931dbf340b1eabf2eeffecd0e982cd563792f6d91d779826657becad989050019ed38","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/OffScrub_O15msi.vbs","filename":"OffScrub_O15msi.vbs","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"Unicode text, UTF-16, little-endian text, with very long lines (1620), with CRLF line terminators","size":402018,"md5":"f3fcd1a9c75b395d2de138cd49edf464","sha1":"7b82e3e8bf28d6ed37b65ff05baa2e7c4c589497","sha256":"f5a3b44a3dfa53c76d68b8401ecdc0f61d1181c0722adbd9544e4876cbf463b3","sha512":"4f9d1581c9ec4a4b39a5fce339a69d72993b4c2bff035e4dfdba14903df47b0a5530391ef408d59733b6eb44077b4ae82d39ea42b865207ab67a4a8aca995b55","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/OffScrub_O16msi.vbs","filename":"OffScrub_O16msi.vbs","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"Unicode text, UTF-16, little-endian text, with very long lines (1620), with CRLF line terminators","size":401952,"md5":"67885a2865e9b277ea5a623b5217782c","sha1":"279c03763d00107ef1eaa5b9f6d6fdfb5074b830","sha256":"c5903cd58467de9bba3614d03d637d002c2a24c6706729e105699b1214f938d1","sha512":"2adb0a1a7586c2416fec9d323c56bed6b6d5cece03a6da3b83a2c3dd2b69b345f84c85ff06dff0a8d343e86119010f8a2cce130e8f00d630cd74b29a903d189e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить Cortana.bat","filename":"Отключить Cortana.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1574,"md5":"c692ae72addf8718f7e4fcd0cd1add05","sha1":"5dfe57a650d0b10ee23702b79c6aaaaa1b70a393","sha256":"9bfc7a793631288603ce33ea6d2f4c468771b5f70dab42cde0c036513d001723","sha512":"a2d6e2a691c190c3f249f55a17c29a76bca54f71d50c550c68feb12fb9292c9b81797e66afd872297a93754130a909e134a8838cb16422d42e1e9f4641368b73","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить «Новости и интересы».bat","filename":"Отключить «Новости и интересы».bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"dc238b0f79e451647930c642f36bfc59","sha1":"53c872a1a315662d29dba549e4eca4aeb7ec0dc7","sha256":"a348da826b0b5ed84b24cd307fab9f435a6bf6b5c5cc3d4aac9ac610ea12a0a2","sha512":"827f786ac8e32452fe494e5043c54679fcb535c541646c3fdd6dda818ea43ca72eb91d72492695c11402933fadc16a85e87bc91a184c33438c6ec582ef12d300","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить безопасный режим Защитника Windows.bat","filename":"Отключить безопасный режим Защитника Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text","size":4737,"md5":"17e7789872663aa72cc0a4fc6eb295c5","sha1":"fc0403ecffda2c0002ca6a08a679db77eeedeb26","sha256":"b4b195a27cd936af02e8b017135528947a40ce6eef235feb84bf89d52df46a89","sha512":"9a4f3e2e51cf89bc92ba01f117d2d3e6af1dba19f16459a60729246269a384a59bd12331aa871fb8e76390c476ef26f513e05a0d9a06ebbd489128bcc4ccbd7a","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Optimizer/Отключить безопасный режим Защитника Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Optimizer/Отключить общий доступ к медиаплееру.bat","filename":"Отключить общий доступ к медиаплееру.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":66,"md5":"a611c25e54a63d76cfd84a4999e1380b","sha1":"0776885c045ed4c0e80c4ac26f4a5df44e3e25de","sha256":"c1158e97f02ce6787ea4cacb78f45fc83ebb919578e52abe9bc8e8eceefea0db","sha512":"9e330e6cc03e5031a7d2a5e6e626294c13a7e179295bbb2cf4e4d0cf772ef8e0c5a532c7412d334c5532264ecf798403662596cee20fd2de02f11a2f26f8c6eb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить общий доступ к файлам.bat","filename":"Отключить общий доступ к файлам.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":82,"md5":"178c65c370b865e8c124830e0996b63e","sha1":"d066376059edd18b9092ac9676f252b598f54ed4","sha256":"0875fd3926cf2ee42ed5adafa38344bc2446926ffd856b832f586d031e045802","sha512":"6ab06fc7518ca3051aa383421ea73971ea65453b27977094653505afd5a9df98ee9a57a0ac682d4154258961c3585f3499df4340c3888e81a501fc2d8c1d60f0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить пограничную телеметрию.bat","filename":"Отключить пограничную телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":856,"md5":"a056335f5593efc6921ac6542f476c4e","sha1":"9aad6d568949077a28fcf458f2a900fce867706a","sha256":"3dfbc6facd4de2e7154c0518c88cbda1a4a2ee83026267969781d2d71f7ee6f1","sha512":"b62c9f66bbed4be2161ddba6232d7148c89d611354d0f33d9562869ec664bd7c52b143328775d442248ee1fe011952a735eedcb06770aa898ebbba4de3ca7332","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить протокол SMBv1.bat","filename":"Отключить протокол SMBv1.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":302,"md5":"78fedee39b14fbc3efa05a60730e75bd","sha1":"066930df7fa3edeb21a1de206ec5b6071344813e","sha256":"05827aa164b62b56e01bf5dc0d91e1230ed2f8fa5b2b63c5fc3ae8a8c860c1a8","sha512":"ae6182cd1b73536472632b8fa6c2f5635325ec93836000c7e66210144bd36cefe569871ac1a4578058f031437a5432d6133d4f2c3bc9b344c645c78f98af0bbd","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить протокол SMBv2.bat","filename":"Отключить протокол SMBv2.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":111,"md5":"031c56c846885b67fce041fe7c8a4015","sha1":"2bb76db4b23a9173c7bf7f38839fd6ba70c95686","sha256":"2af174b8fb70f673171f32cbeec86c1b291a9d68e289eec819280abfff37b567","sha512":"f8de700a03acef21ecd194e1be7c4687e1e4f2289eb5469d6990cf712898cccd75c2a03ce13670afeb93c669734329ba3cec335ef0ac571733660f9daf2f7323","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить рекламу в Проводнике.bat","filename":"Отключить рекламу в Проводнике.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":523,"md5":"12a7d0e08c891c8180581d05dc3bb55b","sha1":"e94d0a732f7a56fe7833f6e8f6f203432036c056","sha256":"95ffeb599866e07fbb6a01071d7351a745aa7c9c1da796288db2882493a7ebbc","sha512":"9af85131c9fa09df9a1c3d8b199dfc5091277140724d42844b5e840bd383037f71630c8183da0c1c9af1ce20b1bdeb35a2bfdbdd86307ad270a1479718bfc140","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить телеметрию Office.bat","filename":"Отключить телеметрию Office.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":4250,"md5":"583669396f5bf0b7f75174065b10410b","sha1":"fe6b9888cc21977fe134578c33cc1b44374613af","sha256":"1d79f901f4a8eac655c90501f3efacd4922ff9f2fe80bfc22a661b292b50b143","sha512":"cfe1fe21b7e7edbe1ab189c9e2aa21cfdd14cddfe5bd58c1a4f64c99089d68593c93f7accc97d6d9814831b044dc13dcebc489eddf240955430af782e70b9d17","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить телеметрию Visual Studio.bat","filename":"Отключить телеметрию Visual Studio.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":677,"md5":"40175ec6ef49b1860bcf621b1fd4da64","sha1":"aa6632d0b0e717129a7f53c54f61838b9d53014e","sha256":"8c98b968eab1e496823e2ac01429b9d6c471360821e2f56a2f43bf06d8eefd34","sha512":"acd8a4653711cd2ec01f53d1e2818b2b0b868615677ea88d831c1e5fd66a32f585736d5681a2860fc215556521545aa5df909f42c0b6c8f305ba0850aea4cec6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить телеметрию Xbox.bat","filename":"Отключить телеметрию Xbox.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text","size":270,"md5":"c8baa99acff3e2517bf6c7e5804ac6dc","sha1":"f66e9fd3803ae013aa69613e0add62455ba13d22","sha256":"9065dddd344dded070c184f26691e0c70824557cf9625a1bf3668b20ad59a83f","sha512":"462f43fa7653ca0041f4ce98541bd3fbd3e9ef0973b0a49a07ba1f99a5329569e188e1875683208431dc4259d54c32a1a54150b8007026b8efea345d8875c942","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Optimizer/Отключить телеметрию.bat","filename":"Отключить телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":5737,"md5":"d3352c58749b66887ede77ef6934380c","sha1":"a6aba8f36baef854ae17df1971cac94d01988cec","sha256":"a6fe3953516d2c5650b388e4dba06ee5b958db0b1d425e4788b07b7b8779bfc7","sha512":"3626b87d95d29abba20628fb473e2e75338c40b0660a4138833f4815ff55abd5c4f08fca2faef72a3b1501936455d6b210536cb74bab99298feabdedd4c97cd3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Power saver.pow","filename":"Power saver.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":8192,"md5":"8d0f0394680894509c46acfe4a6ed493","sha1":"9375f4b3137ddb474a88505394b6d3efc33f9172","sha256":"355e7adf8d34cf0a33202639ffbd51b26894eb113853bf8b4500219585c93477","sha512":"3ba630e3b0f27e5bf718569c4cb0f29122394f6fdbdf1b1bc8bc27fb1a2bb10368b134e434dbc93316cd15a3be8fd0de09d85a63de1ee134f13b24a85dd92b1c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить Cortana.bat","filename":"Отключить Cortana.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":545,"md5":"632d503acfce153cb29e4641d3400d94","sha1":"bb27f6c71b62652936e77f5ef9c5592d00ee0837","sha256":"046748e096f6db10a8981a2d4615febd161615c6226aa29495ee6371cf7aa5d9","sha512":"f5594432d8e94f8b2be3ef170c5437f3cc50281a4bcc3c1fcff970476aa0b812704c43cba5bbc4169f5684491b78f3637b2427ab05558e06b4bb87d12f6f0f5d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить автоматическое обновление Windows.bat","filename":"Отключить автоматическое обновление Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":118,"md5":"3c8f23e43e75558b4e2b0bda347a3503","sha1":"4209716eae42a36d073e1049c69a3e057e42cca9","sha256":"52757ba49ab2967421b27a8f93fa91b4697ecaaf867b724d0329e2482733cefd","sha512":"ebaf7ba77151239aad07c20ba994bea2c7eca88101a03f8f19f308bc670562ab0a39177d02ec525ff77b659c8b953aee99b5bb75ff3faaa1d5797b437459f93b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить ведение истории поисковых запросов.bat","filename":"Отключить ведение истории поисковых запросов.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":110,"md5":"bd1bc5bdb1b1c7416d88e46363c0622d","sha1":"3b6ba3b748ab118f337912530e29ffd5da8cfeab","sha256":"ec6cc0ca0b265c111448f62a31588999cf29b4e67c21dd146406500f39093935","sha512":"a5004d028bdc19cdc8950f9a6c898e2637c43c112608c7c230d69e7ffa56e038928a50eb5bd09bb5409e90d08397b4ca0a52e2ca85136018541d028407f47e0b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить и Xbox сервисы.bat","filename":"Отключить и Xbox сервисы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":188,"md5":"c70f6fcbaf344066c7f29e6b982eb319","sha1":"2f0ecf31efc16229df302709478826fb2ffe74aa","sha256":"c457ad53f81b6d32ca331695dc81a2f755afcd84652a9b91be2f90e09695c4ac","sha512":"9c3ee74b26c9ffaf905f05a39b082ce1581453822788e151bd902e96f0f9f5775ebd5b2cb31aba955321f187c731b87fa27a8093a4e2cfcbf59b642cbf88ac33","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить историю для приложений.bat","filename":"Отключить историю для приложений.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":113,"md5":"2128f4a2fac80bef52e0e09d44963578","sha1":"ea947c03c8b6ddb06298aefb2cfb76723767c178","sha256":"013b2ee3e512df11afef5b389be2054d0f42474356fbb9880cd851e21038f40d","sha512":"c1826247ba6d4d15ce7af81712a392f6cba197e1ce556b13dcf7806e98585c6da9227dfbe9a2754051c9f2e743d46aed8212c268aeeae2de93b1cb5eb3782884","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить потенциально уязвимые службы.bat","filename":"Отключить потенциально уязвимые службы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":218,"md5":"c3f95e8957e7dce2d12ddfa119d4074d","sha1":"cc79ba1463ba587bb4f73b03214ac93920e01c0a","sha256":"1daa87d7de56553b938f5c1e52056d6920b26d74412cff63b8763da5c6351ae4","sha512":"a404ddf2b4a8ce6444f190951c38bf89d54af0de5bfbd7b58f69241ebdf40bcdc6ddda023cbaf3301c84f6d0c0ed63f84e29fd67dca6b823dd22df17f09dd6fb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить сохранение списков последних открытых файлов.bat","filename":"Отключить сохранение списков последних открытых файлов.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":202,"md5":"d060583d4d6127fd8b9a552c627387ea","sha1":"98dc376029c883106276e06a1b2b63f932fc762f","sha256":"6816633fb7829bbc91f88688d4ee81138f3e8e128fe5d71a0053829dadf1c641","sha512":"ee305caeeff98351a03246450966d3f760b96aa6ab23d69fb92878480638130399f4824e249f5c01f2fcfa81209438223f88fbfd545e26915ef2b602b445a077","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Отключить телеметрию.bat","filename":"Отключить телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":3079,"md5":"197ba59428d49b1370c3b3b358602154","sha1":"42dbc65cf636c7a1fff0ed0bfdf782902deb1722","sha256":"22d4f34485f7f057fe465ff7c9d3855bd61644e5bc9797ee8d82376112772044","sha512":"1c107e2959c41fc30496b82e95c5519b4752f50239e22bae2480c121b09bdaabdfcebd5ab802c015291acbd90bef7cbf92f8de449f2e078e68053a520d5d9446","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Очистка файла подкачки.bat","filename":"Очистка файла подкачки.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":235,"md5":"c2313463b5eca52ed58517dc2e13b93a","sha1":"0014beaa92191654696a9ad35e0996fc38ef5e06","sha256":"4571951bbdadc9c1e28dc679edc0c0243a2c3069948bd529a21d48633e1197c6","sha512":"4525e4365c645cc444b6d7a153cd57464b3131c9bb6db23e4c360954972e0cd9a97f91fc83dad3d3d2da083c15ac346ad460c849df0bac8146dc7d38f4b8cd32","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Pulse/Убрать из планировщика запланированные задачи телеметрии.bat","filename":"Убрать из планировщика запланированные задачи телеметрии.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":3999,"md5":"9e51119d14790b0a22dea21860051a26","sha1":"4584a35b7ec83de8e83693457f2fe20314c8705d","sha256":"eec216561bcb2ed058995d1c5d4bbd502a11cc888673a37a1be1bcc853054104","sha512":"da07e37615de6e03ee78379b3ec2de6d1f69a7ad16f0e0f80c3a6d3b06cd9c2aeded1e43c5e3f9c7f953df165201be3ea7c0e17da70d87e4aab636ba2e640891","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/RekOS_Power_Plan.pow","filename":"RekOS_Power_Plan.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"b0dafd937d0d8a096be58ae8691f5ab7","sha1":"7a0931c179e80b53f8206d295404432b83f3392e","sha256":"b581033b2a8a3cc331fb3631a0244da4dfde950cef29bd37f83c93fa4ba2d17a","sha512":"1bf4917ab06151f3c886e6bfa1b0ef51464d656497d2387fc6498cec59fc745a3d16dc55ec2e1494f2cb0a3a135fa71937d99060906b3c94a4b1f1ebc71ec3dc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Telemetry Disabler Ultimate.bat","filename":"Telemetry Disabler Ultimate.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"DOS batch file, ASCII text, with very long lines (1771), with CRLF line terminators","size":93646,"md5":"2b81121dda0276c525ffeaf4e875d309","sha1":"38cb0809743675643877278a8ed9cb7b2eecb2e4","sha256":"02f77a9e05257a7a12da6662e5761bcd531ce8a72319454ad1fbe461f916bb44","sha512":"ef329fb663e2ac2e8688bc16ea65cc60229177cf5811b0f29a879e24284ac9892520fd0b08493f7fee7b0fc683aab01e034a7b2858f38c8220c9468600f7eb80","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Ultra Low Latency Plans.pow","filename":"Ultra Low Latency Plans.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":40960,"md5":"51fd33317ba0692c8f16875bef69303e","sha1":"6bd3b9f11657d254a5b42ee6c3f1bb0c4406f480","sha256":"df24d3f81d0d70d4a1c6d239f204c814ef12991727118e7e03ed8624ce136291","sha512":"3eba68d8b80752622bf6691a1641962e903fb921a367e2be645284caae29d2c5871131cc55a6a3ed92e723c65cc55afe58dc99651224156fd4fde00b6e0d48d2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Unixcorn.pow","filename":"Unixcorn.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"944c255a6ed5cf7b2a8b9140bd582118","sha1":"a710f8a6c61e5180b6fb295e9a0a830058bddb3b","sha256":"953236cbd10a3924e57db7eccd7aef28830fec9515bce2d726fcfd1cd92238d4","sha512":"2cd65e0e6c7a82664fd71b625694796ccc129e599d26ef094eb9d13765844dd70b53cac915bd10d7772849bc2bbdcc7cfd4436fd90a48a05b6d4c5538c7604ac","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Unixcorn_Idle_Enabled.pow","filename":"Unixcorn_Idle_Enabled.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"64f3781cda6f4cf91e42916da2a50121","sha1":"17a282201f7285533de1eb9b38b562c4d05e0d77","sha256":"feeaf68840d4e0b30fc6aae2533ea66497b3c85fb705f7c203a39e99dd4243e2","sha512":"39cba902c2a2dae3588b2042d75be66e05fa3c3598d2af92b6a7d64666d597dc2b48a7de8085b1715ca196668c5c130fd93a04caaabb148c999857294b24e926","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/spy.txt","filename":"spy.txt","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":12734,"md5":"c5bf098b0f63e7a5d11c6dd2a6e3c309","sha1":"adf764bc498a2bd78fce049429c707eb4a1879ef","sha256":"90e67dcb24da5906087d3e55501166f3415e18f7380b8079a2448b126603d935","sha512":"841085558c0e6491fccbdd672ee751564f78d314457a9d7ff2dd7763c624b92f97bb603fb71d4069668b955397b4ca27ec6afc2b717f49d5dea7c567798ef413","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение «журналирования» Событий Windows.bat","filename":"Отключение «журналирования» Событий Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":407,"md5":"7df28318edf0bff64db6c2065f433349","sha1":"50fcb12ad58276758ff1023d2875ab59e4eaa438","sha256":"8646f550d3b773511edb8f411b7047c95a9173109499f879f8f7bf3eb7230a4e","sha512":"b0773775c5cf0f57077e945282e1f2bb25aad5aa1b140374205308acd5e172240ed76e139abfd47c2cfcebe2791b715c8b472043ea5141d36a6fb549a6020166","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение ведения записи поведения пользователя.bat","filename":"Отключение ведения записи поведения пользователя.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":705,"md5":"765bc17be2f6ae30e710e186d584ccb6","sha1":"52c2372678093e25c413770fad8b094d8bafecf6","sha256":"ae41bffdafe7f583c1b44537f0ccb114c36d1aaf78c92e63c5b86515259aae1a","sha512":"e648449403809302bb525c8af094063bce965b25719bf750dfbc3a2fc5fbbe30ce9122755b4ba7651917476940d1fc1ad4927fef3588ca51e5a8c66c73ab3cf8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение всех видов телеметрий Office.bat","filename":"Отключение всех видов телеметрий Office.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":747,"md5":"5d4bcb529bbdd3d4918aa50314246927","sha1":"10deafa4ef83b8f89c9bca2198aca680208ac7b2","sha256":"2541fa00835ab8dc35e6352069c3771504f19a71e93391879a38781f8f2d2ba9","sha512":"99df851cebe3176889f1780fdbddd67fb6c40bf854aa4391d25f43e8616e6fee36c063b65efa46e4b8250a6816905a131f2cbeb41df14efb5b5262570680a9ee","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение всех видов телеметрий Windows.bat","filename":"Отключение всех видов телеметрий Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":786,"md5":"87f77058a3c5a18f5ca57f8509cf0acb","sha1":"d8f77d89567faa38f2052b7efd8db60bc014033f","sha256":"37a21ed5b1229d22e0ad8ea5e661641a374046e4c49976a45a011337b5e345bb","sha512":"6dbc2bd8a2c0732dd5a39711943f0100023d5d33d6f10011a7cdcaa899385a4e112058117f24083c0ae32d1888890455db5a58119df37cc4221fe471751f83fa","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение всех типов синхронизаций Windows.bat","filename":"Отключение всех типов синхронизаций Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":1060,"md5":"aba6294c64137428baf22553233c36e1","sha1":"415be16a6b4c88a5b83ff1f6962298bf0aa51b76","sha256":"b2449206ac397df2218f318b9a49b2d7cdbf70fdf0192a4959dfde882a07dd4d","sha512":"55bfec746c307860d2b5629fe0ffd3cb483523a1fde3200fb9db7712a8e6048ad2ef38a1b9abb72cc0c843e89a3e8e44bf5e73ac3763f8709f2b143ac9c7b810","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение и выпиливание шпионских модулей Microsoft.bat","filename":"Отключение и выпиливание шпионских модулей Microsoft.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":425,"md5":"69b494c7aeda6aa71c187bb5a5e0cd9e","sha1":"cf83b6837164993643ef0dc81ec2f786f2f702de","sha256":"1dc67e04a87ce4028330a784b64a1d77e4f3044fbd3a1f7cfae57f66e343538d","sha512":"47ba8d133cb66632f284d71bb35f6221af2bcfee0ccb0e9af0e8386ab0b95308c4fa8f3bb240438e6bd1cbff2f80cdc0b2b46255b659b95d6eee531a6ccdc19d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение определения местоположения пользователя.bat","filename":"Отключение определения местоположения пользователя.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":659,"md5":"ae8f6f59395b783e9dc5aea94fa524be","sha1":"7b54deecf8c5978e64417ab18eabcff57540bc86","sha256":"140aa2f178689ce11c53fb93504d0800c841e27e9199015d3f9fc4fa811da3da","sha512":"96b41d2ece01a57942ed4ac8a29f5539e8ab5cced8bf2d48e31ab6fbe551a3f5a495af1c928427ee0bc325c0fb1bc4b16c9aa8271b6126a1c57c6b7684a56da6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение проверки обращений через «Обратную связь».bat","filename":"Отключение проверки обращений через «Обратную связь».bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":605,"md5":"220eb42393218d2eb55b5eb747dee2c5","sha1":"8ae54f66955afd05ca2a1f63b00086e0e1eac12b","sha256":"ef2a8d7f379c89b65a63d8121867a4ec7fae39339ed56fbc5e2886fa12f1cb3d","sha512":"daa2103564605280c932af69ec0359dd3a7fa23290e9aa424b46a89956a3258a1564540ddd7637978240af8a64f41e480240cfabb9f7422f6a9128af94ec6af7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение рекламного идентификатора и рекламы.bat","filename":"Отключение рекламного идентификатора и рекламы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":515,"md5":"bde4e8fc0d9db904ed4e2fe4b3d58121","sha1":"891dc1fd01e5d959e1330a96d04583a4c365fd5b","sha256":"97ba54c799c767460c10d2aecaa06a2ed8696fe3e49eb62ad099fb5e76e86bd5","sha512":"3196e01a0952e51e31b4786e23e06b998d16b3ee5f8d5f769c47e20316a57dec06fe4a9e06962c510c632370a546d42223b04d6752da584c74d48a71ebc98fd9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение сбора данных об установленных приложениях.bat","filename":"Отключение сбора данных об установленных приложениях.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":389,"md5":"97ea0d5128852dfb391c9f2d8a24a851","sha1":"38be87c41b560c752c05d24c4de4b116b53a6c43","sha256":"d3726a11d49c4ea53767e5014a177c3f4a3bd316bf26bf047adc53f5d9112c3c","sha512":"9889bc4d7fe6edf4c8363bac809b28031ec44eb47c3b1a5c882729f44b488ad3f828a3d62f19e80e99c5a8bc4c33000fd52ced7cf1704296efadeb08ff414d77","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение сбора данных через события планировщика.bat","filename":"Отключение сбора данных через события планировщика.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":1093,"md5":"8850f2302b38a172f5393b43f0003f16","sha1":"c87937684598c9bb3a91ab3d84f01893879a6cbf","sha256":"7d35f5099c8301a38b7f4960d88625432a5e5a6bb869f35da976a30cce0896c0","sha512":"85277e3f19a0f8f2e6377ab36f1700d83b51c787c7cebdba867e5717ec1ed6b38cd314399fba61381667132de42f33c8bae0e2ac5afb052e230dc84f7241d96e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение сбора и отправки данных рукописного ввода.bat","filename":"Отключение сбора и отправки данных рукописного ввода.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":626,"md5":"3640cce2d3aff91fb818cf63686537ba","sha1":"c12812b4a2b544cc79f3d24e53c33ca6d98f4f3d","sha256":"cee346519ba38b335853f8869e0e50e9b3d66176aa087e84d381f4527a5420a6","sha512":"64b2f2c08508db82b467341b91220f9a5ca6d9b7715f9a56fb5c9e7f7efa43f3fad6ec29ecbd3b400cbc28219d384979866d92767c802c0a7f38ef27893c6796","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение сбора статистики использования приложений.bat","filename":"Отключение сбора статистики использования приложений.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":750,"md5":"4e35f4f0863ca906b6e7f12bf94b02c7","sha1":"550d539566c6e209fa40e71a57078feec8ede862","sha256":"30549ec40f3a4883fc12d35d7c76a3d17fd09205fe4fe2f066d2824d9066f4e4","sha512":"4c7b5b17cdd917f4469fb803d69e58403dff44361dfb5616735e89d2fb08722925a6cc1081367827f69b5bd586da149bac68d84abcb59cb2b2b27f715be6d6f6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение сетевого доступа к доменам сбора данных.bat","filename":"Отключение сетевого доступа к доменам сбора данных.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":1173,"md5":"1d42d30d935a99735bcbab70c4ecf8a3","sha1":"068eb31843a26f18f7c5a00d9f5cb6163926e50a","sha256":"0a98e5a9287321699ce4c4e60c682e78e2308e606b2ab1f742758f87781af98a","sha512":"914d1e8e3b35123b0ff099dc18a2c47fb35c7ad5f9e62122719b02cb00d7785e0a44b36c62474f912cbf03fe201e0f9ba8d3e837ed49a39bc4c1c070bd270c9a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение скрытого мониторинга системы.bat","filename":"Отключение скрытого мониторинга системы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":377,"md5":"d6847946db4dcbde300067ea526febab","sha1":"2bc49663a1b16193a81fbf4466407d953e1f2c45","sha256":"9d47b15591d657fb8c228b69b12648020c532f41fe8a1073e01fb41bfcea92cc","sha512":"6727b43381baa6b031b0eb740f1b8198509472b8e43a579e87a7ae05ab5166b699d3bc9927bf15e6d633b67e97504b4e2039d1db5861a0f91e16f73fc9efaeea","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение скрытого фонового обновления синтеза речи.bat","filename":"Отключение скрытого фонового обновления синтеза речи.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":384,"md5":"9aa5b832b96bc41bca008d1bd83b4a55","sha1":"1140b260d36cba76076b397ef6d5cfec1a77a243","sha256":"858555ad2de971590b46a32efc0d922416e23c0b1d8bfe79f371fa234cd37a98","sha512":"33d47836041165f93ac7bf96c3a5a4bcf45958d44695f6dc014b74caf53aedf9f3e5f229771157239b1b6433bc9971b17d77b9a64fc7d1a92370da03affe1d73","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение телеметрии NVIDIA.bat","filename":"Отключение телеметрии NVIDIA.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":459,"md5":"5ae6ab97db6edfe442ff176ed08b336b","sha1":"c3324cb1f056954b286e5fa95f8cc0dd1f551c30","sha256":"e10cbb8956046fb9f0929238a9c90618bd0637b326b7ece36cefe71fcda7e156","sha512":"abf99784b64ef26b37a06285d8cabb0b559714db22e1929a7c728160af751aa36f99d79a50e5546216174e1ac818c960a49c7c1ef45c5b3b90fccec71951c79c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Win 10 Tweaker/Отключение удалённых экспериментов над ПК.bat","filename":"Отключение удалённых экспериментов над ПК.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":402,"md5":"ccb4d32849b1925f4c5f33aadbbe217f","sha1":"0056d59c495f96b9bdde3eb6ccdd54b40c5044dd","sha256":"a4cefbb053b63abae8011ca445ff625af44a3f0406a994c98cff3315d0294f33","sha512":"732b3774cf828d4ccffca2200eec1c15c10d294d002fb82652cbae05fe4724f1ca9d6a352f2924a7f77f80cb819ab921d7d56b3b632bb38e3acb374a5de16983","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Windows 10 ALL version activator.bat","filename":"Windows 10 ALL version activator.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with very long lines (323), with CRLF line terminators","size":1884,"md5":"74b97f4b21c7b790c104c7855221e36e","sha1":"5367d5f330c00ac592a242d148b122b2b9cee7b7","sha256":"37eceadbe03214db91af78829c2c0100e51aee66a3bf4102cc3bad1a295883ef","sha512":"3c98ec710696559c1ba4ab36192b55a050fd7c6c6de8abf007f90847c3f3efc36cbb29acf33028f537a852415be8b070e87bb80136ec7d4fb5ba25a2aebf308a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Windows 11 ALL version activator.bat","filename":"Windows 11 ALL version activator.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with very long lines (322), with CRLF line terminators","size":967,"md5":"037b40225c7efe543c2f893d0596701a","sha1":"457b6303682343a9d44085c7c14d71bbccd3c06b","sha256":"975e87dfa0bc5fb303496a7e13eb6c6d06114d514423e4831a0c2868a00170fc","sha512":"71f8787972d24dcd2b55e4c6c90c78b8f5b918df7fc368212cf7506733bf22a11797a92a42711194b7373735a49de2e62b0d887aef1089504e9ffce0a6f3f827","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Windows Vista - Server 2022 Activation.cmd","filename":"Windows Vista - Server 2022 Activation.cmd","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":3744,"md5":"a29d69af7740e43c0c82d018becf0186","sha1":"6a38c56d9fa3ef5edbe2d1a438f2b4585a1b29c2","sha256":"bd3ab98af8b065674ee1a76c058dc407af54bc688fda155830a986c4fa2cedfe","sha512":"dd87a8fb087097ddb0271bab950d49ea933e5d01af86bd953e803e8bde9d038bab5b1314f23fda22d3b5820a9ca1afd35caf820ad6167d323d93a6f284b69f06","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Блокировать нежелательные веб узлы в файл hosts.bat","filename":"Блокировать нежелательные веб узлы в файл hosts.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":18330,"md5":"f9f13736a49c9fc59519ba6aa0d509c1","sha1":"105c392ec286016007feb11ee4ce2286b46c9d3e","sha256":"fd1ad25e44e55c1c23283cfab7df85ba94e0e2c021cef28cefa672e1f0b6d3a1","sha512":"e9aaf0e208c7051efa508fae497522e2bc1ef3c6e9702e6e964c7dc89fafdb8016d5fae9d30b293300f3388cc0df3a5ca57aed940d1573ed2b048895d4180690","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Блокировка портов (безопасность).bat","filename":"Блокировка портов (безопасность).bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":1046,"md5":"554720496a092d298055bbab795eae57","sha1":"693a7c2b021b28dfc873ed7eaf0d606cb5780abd","sha256":"7a8ff6a22ecdbe520e40dbd5bd08547c864e457491ccd400a687efc00de5674e","sha512":"e53750fca07993d4fb9933acafc5e8352ec306fa7d44206d8dd343fdd3a7b4e026f4f0ce06f7e69c6480358adcd22132f136c7b642772865f0b11bf7121c690e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Добавление правил брандмауэра. Блокировка нежелательных IP адресов.bat","filename":"Добавление правил брандмауэра. Блокировка нежелательных IP адресов.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":26818,"md5":"ddfdbf8a8fb206c4b3fe3e217a58dc37","sha1":"2410a8f6079bccfdb77d76098f27293f8f9a82a3","sha256":"cc6eb13f16a7bac9e66bd22fce2123e31e5c2430b90b939a2313b2d3bb08d762","sha512":"9c5b3c5ca1814b87ee0aa5a52e4ca0b1793c0b521f460aa702b960b38ccb1b527217406bd3a3e08ca79ebb8000536d0c5b6855a3c7e7654aae2603ccb589e340","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить биометрическую службу Windows.bat","filename":"Отключить биометрическую службу Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":72,"md5":"01fbd3c75f69304052be5850d2dc79e8","sha1":"7539560c46d53d756596202a37c58b5cfd97dc02","sha256":"a9303e2cf22e4dfd94628f57038c53928a9ac4ded5c3695f7011d252c99a324e","sha512":"a0bce994a818aa36eb1ff8b45f72abb58ad8350b3cbaaa808bc2839e1d41d51ab669593da8c4e79431fece1ecbeabe089f16f330fb203c2c7c4da5f514797773","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить все службы Xbox.bat","filename":"Отключить все службы Xbox.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":497,"md5":"2a20f5b012120b6b80fe37b87dd205e7","sha1":"0ee2753b584c4eaf9f3064e966817c37abc23dc8","sha256":"05a20b959461fdba8ce61782efefc3cb92c88cbcb5d03ff9d45b19cb321f4398","sha512":"f7aecabd6aa173fc6af0942334c4f894988711b254041689e213298b465294c4e6020f3c41ed06a0d0945f2cbaad8414b2bf8871a34ff9a4590a660299abf907","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить камеру.bat","filename":"Отключить камеру.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":81,"md5":"e862a25461674d88f9a2a069628ea59c","sha1":"d5228d3b4f9dee49afafd89ca98212c6a12be2c4","sha256":"375d5e54c466feb12d8dda1599b4b28425c07e017be92679bbaef242eeb11cfe","sha512":"b223ed842f35c34cdf0d4024058441ca69f71458281cbe301b9b130a1caec3fd292f144ad4f6fc97af93b978e3c7667291bcc24339df27273a41cefa7720d1a4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить нежелательные свойства Windows.bat","filename":"Отключить нежелательные свойства Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":427,"md5":"558c8ae4042044929f4c45cdff839778","sha1":"78d8c44d1c54fa44dc0df3abe0b68155116304f6","sha256":"e11172aef3de30f52473469e7629605afc6916f7f39868a6f06e1ae82c777e7c","sha512":"f348f319d18bcace9afe2180372f62b26c5939553127eb226a9f065bcfa9de54007aef7be789700630b20abf30cb5143ce3734a15aa15363ac66e19a0af7d21b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить обслуживание сенсорной клавиатуры и панели рукописного ввода.bat","filename":"Отключить обслуживание сенсорной клавиатуры и панели рукописного ввода.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":102,"md5":"6b3a13ebd673bd80984b3719858be40a","sha1":"2dc2b1dd38d956f51a089369e75ce2823156e59a","sha256":"ad547aa04f917abf86081badc751b135e00bfc73a8ca6d9b481537d4c2e358f2","sha512":"b45c00a9c60413f676a4abdfc99c7e44b7adf10f6f848f01eab657a1a0e603bfa62af60068352bef22015e168ece30a249bf770f931718ff8d83d2ed2a897cfa","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить поиск в Windows.bat","filename":"Отключить поиск в Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":66,"md5":"ec74fe971e7ca0af64467eec229807b7","sha1":"b8d8485345bbdad1c5bb5cc6cf9d46e99493ced1","sha256":"1aed6e0430c83b0db07dad00dbf3df3fb5b467e445c1e8c9c49c28c6879e16c5","sha512":"9338cb5916c1090d899dab45c20bd11632f1b4434c7cbe50ff2d2655ba0e7a5998e030079c6cdf63a065c407c4393c1dea3a6b991016f3ffa52f106ecccaed52","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить протокол SMB (общий доступ к файлам и принтерам).bat","filename":"Отключить протокол SMB (общий доступ к файлам и принтерам).bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":437,"md5":"4256a182c204b236b934e6267e7f8036","sha1":"f5629fe36235c9723a40db4859e8bfe73a379135","sha256":"e2445318760979dd2ea9e25a0be4b9cd8c9b6fb7ff06c931eb0483885999c1fd","sha512":"74f1cd99079f8b7d3f146f33b02d8ff796d1a03f89f2c01756002cf8d5e54ff1211114abf36e054bb6347a81d54b75409020f0e96050bf47acbccbc2f6d4ecc3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить розничную демонстрационную услугу.bat","filename":"Отключить розничную демонстрационную услугу.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":78,"md5":"f80ccbd541a482c66260d38848d1e18b","sha1":"190e42b34b0a28b9e0e90d8785dece50db5da3d5","sha256":"be4bb652e7c687f2dfa9bc5099a6949164948140bfc370694faa7471687bd447","sha512":"99e5631122224a2b7cbb4f036e7b564bb1e802488ff94c0b6b43911694d35a9ca719362d1f6af942991e518d296ab05e0e1da14f0854b45f0a83cc63db357877","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу Bluetooth.bat","filename":"Отключить службу Bluetooth.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":472,"md5":"0a571b6d8fc4104a436345d32b802997","sha1":"bfab984a377a683c10ab83924959cecef00c5aef","sha256":"cc3e78ba4d68b960240dc33ce072ddb506bd67a92c12648ddd57b0ba4c9dec9b","sha512":"ebecc7be895a100ae8c9a8cc55026aec11291b0cf7e8bec016bcdc6ee024a7c9ae4bad0e83abbf1f30854148f7ceecfb2a51888b5bb32da536c0827c5e70d3ea","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу Windows Update.bat","filename":"Отключить службу Windows Update.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":72,"md5":"f72fcb12f96dad14fdfa59df8a3fd5f1","sha1":"8847bdf8f88af3ff7a0db1390f3bdcff5e58d2cb","sha256":"51bfaff6b69ff604ea6cef58f96c448618ffa40a2296e590e287648b4d4d0a89","sha512":"130df4b8ea18d5bdb0f11aa62cb530ed74b110755dedc839f4d7c5c868e2fe1fedc4c96e47eefa86d99c7c014fea50bbd5061858d60bf2573932afc35aa9d892","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу геолокации.bat","filename":"Отключить службу геолокации.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":63,"md5":"d38829aebbfaed309bc533993f918f43","sha1":"27fd2a034a0e417c75bf689d02ed9dcdc6429f3a","sha256":"6e3478732c471a0d57b3dfdb3a8cac37851bf8f312187493c811c435441ad45f","sha512":"6fbd45ea67d08ac30fce40a1fa0b2966f60091d4b517c7df27cf624f9b869b25b890e5b87d9c57a9e136fc6d750cd6282ddd9e0cae10736317d31a95d5677e29","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу менеджера скачанных карт.bat","filename":"Отключить службу менеджера скачанных карт.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":78,"md5":"8a63912fcbb435ad9ebc9db9e1fa74d4","sha1":"57cbfc99818874caf2d03c2471fad8392edb4383","sha256":"2c2220e232607663b07357f5938930611e79bacdb10563298e21df4fcc2f885f","sha512":"e0372a378f37751d78dd06e85be364d057c873f7d3c43fcfcc042b24eb012fe8fa4d1cedc1e08c0f3b2148bd7d68edc9699abd7cf96b2ec9be0839780aefd911","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу общего доступа к проигрывателю Windows Media по сети.bat","filename":"Отключить службу общего доступа к проигрывателю Windows Media по сети.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":87,"md5":"54f22c6904f06877a1f5bf529cf66c7b","sha1":"321484cb56f309ea1b730098c995e07a8a77b831","sha256":"720ff9a4ccd2d7fb967c97602ed3054780c95d7523c2d3c219f7a2202440de13","sha512":"4990544fa913d7fbc406e4ddba54a2673ba8345df70a64b7570a2855cf187c642a61ab2847795cb793e4dcbd7b2cba4430091cac122134819c78048695e21272","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу помощника по совместимости программ.bat","filename":"Отключить службу помощника по совместимости программ.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":66,"md5":"6e2a1e7ef9c4b8aba82fcc0c87832196","sha1":"024f3cafed0a917eed1f57568b326a46de225f6e","sha256":"7822e61ca3edaada7c8c0011ed615b61354d86c52eb3d408c5e14497277da3e4","sha512":"69eff8e51848d0c32d3203572b4aea737710a88d1c28a7f4df1a3afb9e59edbc24efff5f5d29803281e90ddc69d83c44a4d53059814553af67ed01f02041d85c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу предварительной оценки Windows.bat","filename":"Отключить службу предварительной оценки Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":63,"md5":"5aa6fb20375c33e9f992250cae50c211","sha1":"144a3958e5e87269e8a5e34c38150dcd3d7aab5f","sha256":"93fd80d1a96d9319f5b74e75b2ebafb3bd5638ec4728e1e4849c12c39c428953","sha512":"baf5be530232a61134055b4803c2676bd508d809351dd652fa61b99bb1a84122c9d5107f8c07c0ddfbea4f61023053ea8cccbb868bdb4ce35a8aac308a8b0a81","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу родительского контроля.bat","filename":"Отключить службу родительского контроля.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":75,"md5":"d2a49cc42d88a1b27415d822e1597d7c","sha1":"f8c6fc42363bcb0b107059252e80462bab2fb0ee","sha256":"6c6bafdd634cb5904d7db212734ab31ad94ba0bc9a837f3ed8c8e1e829cc8806","sha512":"c2e1e516967c651654848830d07b0de0d6a7acd4df4695e8b633603567cc191c0fa961e8180f457e9ef863d77874b73badbcba71e020cbc59e5e64bd774ca522","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу удаленного реестора.bat","filename":"Отключить службу удаленного реестора.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":90,"md5":"d6861bcc91ebb3b9b501ed39255b5571","sha1":"4b8a7b663822ef439dbde9155cad3adfaa52deb2","sha256":"b7962b5fb8d2b14dcf98ad8f68af66c29cc9464cd8b1cf7c846eb09f76cf8f19","sha512":"3e4dbb4035076e2be4ce550cba6a841d4cd68f8044fab898168841928a1ebcd08024616507e176e285328bc0120f0690b727e7ac94de45a08bca3356cc45f7cd","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить службу управления корпоративными приложениями.bat","filename":"Отключить службу управления корпоративными приложениями.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":75,"md5":"b564234c639735128ddad24eb55fb910","sha1":"6f2bd12fa18d66967950e250fcf9f7eab34f21eb","sha256":"9d5711c6253399fc04247cbc252d55ff5820fdbf199600c8c12fd1e6c5c9ff9c","sha512":"273fc5f494024003e554b4b50e77c7b511e4246b77ae4accfb403a5620b7a4cfc2034bff17726681a6fe0bd54ca4b4ec55a1569e22b6a29dd8242cffdad499db","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Отключить Центр безопасности.bat","filename":"Отключить Центр безопасности.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":66,"md5":"7dea3a916956330eb2bc48308f4150d4","sha1":"ff70d527f4a3b7b4f42ad19de49b8890c5dbaa8b","sha256":"c90abad25f28c280454bde8e3320eef1955ad91a351741d46db6cc13c1fe4469","sha512":"ad1df825f335b918960de2f38b857b4d5694469db0990d8363b1a45ab3651f959d03e08cd9c7726d8010982388d02bc5ac1883158d6384531759e6befc267491","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/windowser/Приватность Windows 10.bat","filename":"Приватность Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, Unicode text, UTF-8 text, with very long lines (330)","size":112748,"md5":"444248536783ff0ed0c1c71921404293","sha1":"d7d460ca3aaa8932dbc775c10b85c8c6a47ef375","sha256":"eca3302bc355ce8eb733eee3c4da8de0a4ad7db0d93ebdd46d28e8822d1fb328","sha512":"7956fed256a513e2a9af4d5878e738ca16ac9ce4040f6e3d578372761216c17ef19a8a0d8441c9e4d6b1d2822e713912592f9d641f4d3e5fc2ee8b5147befdac","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/windowser/Приватность Windows 10.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/windowser/Удалить шпионские службы от windowser.bat","filename":"Удалить шпионские службы от windowser.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":1947,"md5":"20a52bef40ba2859d206a67dee431e11","sha1":"ab80335085f72511f6948ae44b92dae209d61bb4","sha256":"584e17a2e18e73dfb1f615b0040ec1d812d045ee6384ccf418ac5c9904e7d0c9","sha512":"dad20cd174d3fd56d52bb623edf903ea947ca529892b883b268157e8d0ee84a396d313fce751bb5bc1640cce82eca655a2af5adf16754cef5f252861caa31d39","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Work/Icon.ico","filename":"Icon.ico","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","size":427853,"md5":"d68d999abad3383fb678657d5626c05c","sha1":"ed8b7627451bef648976e93e44f92432def9648d","sha256":"5764a2b4b38460c0af11e7b4afe5a74e8e028220e089cb9a55f9726d3ec8a11e","sha512":"3419acb96629a7eae24bfac2afa54fe90a707557639e36d120a45a6c12a59033eb0e7081b177d86a597c884f5347c7261abc381adab8c7cf8f28eb38722af97f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Zoyata.pow","filename":"Zoyata.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"3783bbb25736b4e1d53a8d59e891cc72","sha1":"45cb9db37c8df972b650aba828d2411ba32c1d66","sha256":"59b66ae1b73713fd5fddcf0046c701a964e85dcbcb8852bfa52909b74d59e6b0","sha512":"993d10020c73615e14d6524767ee19fb4e6a9728c3c2ad6d0ec080a92645a0b74f0cd3bb1390627dc860a045ea9dd594968426b97980a691a3ece7a8ad826977","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Zoyata_Low Latency.pow","filename":"Zoyata_Low Latency.pow","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"8f7965f2af349e6bdfc5191f03271890","sha1":"45b2739686f3533af1b34d61e397fe8de7833de6","sha256":"4d41b52f7da5c5f69f909b723a9d0165ce5512ac2bf4ebc5a4f5310f5431c385","sha512":"8cc702c1469443f2d43d4c06134d6c64cb9445c5e9a81959ff91e6d214ed3e1b407fd0e74f958f9b406e61c6bbef31bc3257c74ecbee1ddfda7de3db6f352973","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Активатор Windows.cmd","filename":"Активатор Windows.cmd","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":160649,"md5":"d4203d810e6121faefe8dc7b2cf8fd14","sha1":"61742072755a3ff0bde61512b82632d34ccb05b3","sha256":"67250e71977b8ad36e91dd505409b36e434e6a68b3c000deca0b9f6ae5a4bb21","sha512":"afae74f0284babc8271a98822dbb5959ef8852c1ef7022bbe48cc30b1edd808f751357d2e3c9e18a35b846d44e210554ac8418373ab28c940c5f91be98a332cf","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Бесплатно поддержать автора (зарегаться в sharem по реф. ссылке).bat","filename":"Бесплатно поддержать автора (зарегаться в sharem по реф. ссылке).bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":40,"md5":"6b4c56943e09c103c2089a09454e2351","sha1":"4587d42c9b37a67afbb5f10af2a8e044e48bc7bc","sha256":"f405c4f5485beffcff5d8651f4e8df3e8934ebc438db1891993f3e660ca2ef20","sha512":"4d90e139a894f53b3d58f4386d5fe2a3c9767b133120dde50e23653eed624ff7b05c81730280fe384701e13e2b86d9f7f760f7975ceebd6e09ace99569a2ed6f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Бесплатно поддержать автора (посмотреть рекламу).bat","filename":"Бесплатно поддержать автора (посмотреть рекламу).bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":54,"md5":"2c958a0bc1aee54a65a62c53487dea1d","sha1":"7ef4d871df6803abf1bacfc023a30d2c3fd97b47","sha256":"aec7ac93520bd66245efe3648afe940873fbe830743125ad3f9e17656deb7f99","sha512":"e53bfea25478abd2ef4eb4358152da9e6096a1361ed900391cb555100a119c3ee990a4c0fc39978007c458063d67f13c1e4b24ad88f9e0c1cdd9818811ee76ce","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Браузеры/Cent Browser.bat","filename":"Cent Browser.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":168,"md5":"2808f94ed2651639324e8861cabdbd09","sha1":"0b51f0b29702292fde773a0a6b93de3d52ec68a0","sha256":"6a895052a988cb6d7067dc11429544b792b9e1607320c556a84d202c53b10c8d","sha512":"fae70a84182d8e6c4689d9068836bdc2254b6d96846a71edfd071e8d22827f685bb27f96d6d36d26c4038fbea90ae64cf3dc390aa5e105abf52dbf4be47e822d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Браузеры/Thorium.bat","filename":"Thorium.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":178,"md5":"34cf5f54e6a38c1d22ed244007d5a08a","sha1":"42a04c5f21c9a4862dfac9550e2471d4a1eda847","sha256":"0cc66199cfc3efcbe2948533b3930cea97f5ffd50da48b3ed1ed3fe5669795a6","sha512":"835c82ee4eaa1d0f5da8df003cf355bea06a82b0b0d54a2a3ce92a41ca5ea038aa3c10fa78b841efc320feacb31bb93991fbcaa9cf7f5bcaf56fdbaadbd9d452","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Вернуть все службы.bat","filename":"Вернуть все службы.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":23347,"md5":"31e72133fb3726be8eb32d07b406478e","sha1":"cb5457ee660549ba67f17a11650adc11b213de12","sha256":"8a13cf354ae5e1b90c6ccdfd521e5bd33948c6f575a8509acbf37c3037f02860","sha512":"8ad80ef6f7f66b92d70c738ec0d8bcf6fe1f9a7e9e9ff4206f329be09cc21e0ee098e96f04bdc558268dec287bae3b4412ac1c12261db8ea53728f3f3bd3b26e","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Вернуть все службы.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Вернуть пункт Главная.bat","filename":"Вернуть пункт Главная.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":296,"md5":"34a36da69963257790d23c3c12b2a4ad","sha1":"ac2cf53c3be8db7f632e2c010b42b9e2273a9e1d","sha256":"659b8d8127178e08f5d22099c07127958ca4b3e5e90b9667dca93f37a4902bbf","sha512":"0a2fe6e1527a8f1db3c530a3ade119c8523d0b0dbc1b5be7ad89e02578b0e76cf456ed93dbca50387fe3f649902e46c03fe4e9224422aa974264bd4003ff636f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Включить гибернацию.bat","filename":"Включить гибернацию.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":14,"md5":"e87f746bae91daa613bd76d1f8c703fc","sha1":"9a029df977bb91a89e5487df136f46a60733f2d8","sha256":"9e1fd6bcb358b42e6133843be3993206f9a5a75d90cc8262c7de8151fa132226","sha512":"cc7cffbf53ed62672f5316372154a179f0fa0d9bd8cef69a57e734020eb83857594a251e62602c20b3df5e5dd093d6251ce84dd9e4a979fe96c808c4560747e7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Включить зарезервированное хранилище.bat","filename":"Включить зарезервированное хранилище.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":53,"md5":"38fbe22b9f5bc824cf318299a7c1157f","sha1":"09b1c11f827bd8125fb72765a834f0f361f8bfdc","sha256":"e201c973ea003e4c832b329a54017bd5d1bbac7aaa080e81cf1004d83a3b66ef","sha512":"244219ea4fa9af6e195565f75a08de7d391f2f9c1db7082e7d285f07b293fbad615c289e582abc458580283b21edc9849743f99c8185efc9955b097c3e7d3e6c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Включить обновления Windows 10.bat","filename":"Включить обновления Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":1704,"md5":"374953154b9d2f992fc70757e04110af","sha1":"7da05577d2305a89f8055f4fd5359caac76c3233","sha256":"17fcd60e19b24fc81bbdfdca5cf18c248a932589c18438bf816d8f6448b08cd0","sha512":"d4226d4f294c4b7eccbebb6b992bcc2f7968469c8e66fc9e81324a6210825771d5deffac1f565eaa9bd48e1717bfbb95815cd1f5603fbb2040b324dca105d7ca","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Включить обслуживание HDD SSD.bat","filename":"Включить обслуживание HDD SSD.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":623,"md5":"754da5fd9f4384ad471737172c1ad411","sha1":"bff3559cbaeb93c1217c18f26b1a89c384953796","sha256":"3253758d14e15511e2c0c92570dcc1d4d45b5bb0925a04ce9c04ab4b862104d1","sha512":"e7428a8d3ee56ffb1c0eaf382661a351f83cd52404a9926bd815fda6928c8d77de8036f9a008bc7d192ce6a1b6ca9c1caa6bc1ed77e5f3ce2ee2f0fbb2bc7a36","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Включить секунды в трее.bat","filename":"Включить секунды в трее.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":411,"md5":"2300ee036ad02e9675c032bd9f7aa8fc","sha1":"c1fa68798fd892c374333744784eca14b7abe62a","sha256":"ec62d9cdf60a80231a210c20a9a498d825c02aaceb85f548b35c587abab1c771","sha512":"c9171cb34bd66721fbcca7191648ec9f0f573fe1a2cf31959c89ac3dad31e4252e6e48ee11462e5fbf7622bfc9bea9277b562521dc053383e99297ce195e7c1e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Возврат приложений от Microsoft.ps1","filename":"Возврат приложений от Microsoft.ps1","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":128,"md5":"7cb8395edf761fd544eab2e4c0071e6a","sha1":"50396622e71051834381f107a04650a7c7ab7b49","sha256":"93263d99db59b7f895a374a4131f270634f239279f241fcf9795570a18c35b07","sha512":"43797fdb8fbb591ac0fc6161e9cc02182982f099a8074259a48ea98c1cc0cd1360fcc2ad5fa762afda7b23e67b8e85cae7b1a863754aef0978b45418d699657d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Восстанавливать окна папок.bat","filename":"Восстанавливать окна папок.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":126,"md5":"3025954158b7782f4c6daf7b6fe8836f","sha1":"fdc230bab2d8ff8e846d46dd167aefcc60a1071f","sha256":"ce31d310d5f854d0de5e03ad7334362be23ef36d9d052f577a47ae4de939b739","sha512":"3442b2aa890a6b0d845c7b3b452e5a87e9251947c4ba7ad1213446d7e5c8edc56b0cdc2c69c976a69870f521d26e2e3db38c67252d82de6fc265053339a5434b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Восстановление стрелок с ярлыков.bat","filename":"Восстановление стрелок с ярлыков.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":722,"md5":"729c921dbb6aeba202947703adf79109","sha1":"61b1359ebaeec36de104dcac4fa22b8294811ca2","sha256":"d1c81e908490150ee5316b48a9b792bfad3c26d2b292fe873b53bc5b2e391ca0","sha512":"a81c411fdde921230294404739e2ba94de25d5f0c7ae400aedd37df97041e24c4d069767271f0e210a317d9967711266fbd86ce94e91fa3b9e9fa70bf9e404e1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Все твики O\u0026O ShutUp10++.bat","filename":"Все твики O\u0026O ShutUp10++.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":34723,"md5":"b56cb5be17b5c7216eb173b77243b578","sha1":"c565cdbbcc899be5d3992f49219870f17034d528","sha256":"938e4ad485c131168bb27628435993fd8e7c93bbca6fde6e353c14e71370c91e","sha512":"4f7526c4f0723cc50fc24790eb7f3458ca5d563021d6cdfe0e0678e388cb487726c3a061a951c831f8eb23d37734a26639f59042da5b71e637a425313081c8d0","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Все твики O\u0026O ShutUp10++.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Выйти из All Tweaker.bat","filename":"Выйти из All Tweaker.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":33,"md5":"f0542847047b4ace3cdc26d66f6fc683","sha1":"65b3e7821608e228c837f7e165ea70189d10a750","sha256":"e3d8fcc17a03d087bb7c48b119c9d2f121522cd65446766e967b0d20adbf79cb","sha512":"909d14700e92f5083f10cc1e1cc7659facecd5abfa3ed5ad054b84aa1547a7cf7f277674bc7324dc22e5cc89aa782580e01433f21d5c940f576ab204f94e1be8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Выключение гибернации.bat","filename":"Выключение гибернации.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":598,"md5":"dc5fef7777d6315eb95c26c077eb654f","sha1":"f04d45dc4d792dcf2cf31ae4ca076f84dac0bfbe","sha256":"b0fb8203617c408a899a198641f13a0e89a6df924847ecaff6a9efd375d16726","sha512":"5f7fa9e46d1d98fa4daea79df268910ca5e761c810640457d4e4dd439c9488b215093c48498975d85a4d1d35a478a5e7cf827d6c17995f34393c1f2e068e67f8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Выключить секунды в трее.bat","filename":"Выключить секунды в трее.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":411,"md5":"38b1728966aaff66393c3c21e82d5bae","sha1":"0a5dc7870be7d8b1429d44a48765a17f28045c1d","sha256":"10bf30fa1efa4f9d96392a3c03d120c5104b72d235086cd679743bc05c815d66","sha512":"990cd1fa7e44027828c0d410fe94a9e3271fca8261b9219f8a9cd90111fb0013b78ace916c3f099e73f9d5a1a36169f5be8f84fb4d138906d026b47efc725cb6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Добавить высокую производительность.bat","filename":"Добавить высокую производительность.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with no line terminators","size":84,"md5":"31c9354a501470c3bfd995e41976a480","sha1":"5e26f960ed8ef975cbf84800b2bb83afb39cc449","sha256":"a3b3d7804990832c57fa14cd31f772d50f5cf93d1fa39dd31d31c16ff86d77b5","sha512":"a9e94b83431410d902b417b2910369ed981754ee7835ab8b36454bcaa14aaee379f1e5effe4ca2fa7d94fce278f915e1281a3a2b628ef7c5e21cce858cb0266e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Добавить энергосбережение.bat","filename":"Добавить энергосбережение.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with no line terminators","size":84,"md5":"9121108a74f6dc2c750681a152d14564","sha1":"12d326487ad9c0df8d08ed25ce9086525db1f2fc","sha256":"7aceb74620865ff4bede97da22499b39d2c7936a2dbd8dc82e912e48f5104045","sha512":"13887ac4c991568f5cc4eb50d2c3b454f4e07e61c0f6190ae0888e3c06b66fee30bd3434a924d1b64e2e9e68eaa9e8c9f26973faaa9d0a1f1b02d9fcc8ed3e93","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Добавление пункта Быстрый доступ.bat","filename":"Добавление пункта Быстрый доступ.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":385,"md5":"496c6cfbc60dbc52751281fb9f0b4f81","sha1":"1e6d4d219e434b0f8321e0a195c5ee7a92c31223","sha256":"7e40491f588e95b18a808527f23d759663d6876a6f895e1d89ffe496ee9da882","sha512":"bcd528cff0c0fd1dccb7d19b0126ba1534c2c73d929f851bb3c8be1cc4277b1d9b604029349696ee5a1e6c328151dbfd5a9cce2d17b53942f8c1d80775e05b53","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Fortnite нормальные приоритеты.bat","filename":"Fortnite нормальные приоритеты.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":412,"md5":"e6145df54bb68daed507d71df35a76b3","sha1":"2ceef3a144a480ea8c03101409c4ea28345c9bf5","sha256":"6e66b95c0f97ca24c42974f63b63e115b8567a8e5f8d503d25a8d63523c6fb76","sha512":"55585e6904d51684267ab504e5eeecf118844b5642b38990d7ce6ff54684a68920cb6fbd22e5630039043a19d41dcbe7aec7e3770514cb78190cb062e5e10bc8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Ultimate Optimization.bat","filename":"Ultimate Optimization.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with very long lines (503), with CRLF line terminators","size":22499,"md5":"5855398ccc93d1b8449a90e42bdc7950","sha1":"824cdc96cd905581a2efcf6df539222aa1b12d5c","sha256":"5cb2ebea56fca397b6d57098e57d82a1e24bb1ef6dafa437f27dd6a28788d924","sha512":"6360f1540d1deaf1d0f7a9ebddf52a0bed8afd7a100e2a29cf0b332630050adcde2331c597de78f4a0600db27ed37a2283f0ad1e24497a0adb2e8dc97ef971d2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Windows 10 Debloater (Advanced).cmd","filename":"Windows 10 Debloater (Advanced).cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":2836,"md5":"9c7a338c8b145186109f1d9dad1b5f8f","sha1":"3ad3586318b3df8dc64be4cf41716e11e71ce7e4","sha256":"b7bd982055a66bbd8b7a20fbdc0d4d799d2d461148606e200489b1021c8ac171","sha512":"411082cbe51adb76d7d899c1034ed201c492602a7e92e29f145d75aace9f3bcc604b40c1487a4ea86561a8f060fa734db9164b507c95a3beb8ff54803de4cad8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Windows 10 Debloater.cmd","filename":"Windows 10 Debloater.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with very long lines (649), with CRLF line terminators","size":15540,"md5":"b6d1063f218830bb3884ef1a4f9cf9e6","sha1":"c5c825c520e390f9e9e4c5d78df0aad233deddf6","sha256":"137885c8952c1634d1387db7b7717d121f54ff20df825b6ae1b800ea89f4885a","sha512":"0cb26b206dbc879f9876f35251dc2c411e509261c117747cff7feb2bdbddae4a7a598a0e9cd618c75cd85d49295e02f165920a4ce92f2b51f08a739f8703ae71","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Windows 10 Driver Disabler.cmd","filename":"Windows 10 Driver Disabler.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with very long lines (987), with CRLF line terminators","size":9371,"md5":"41609e5d6a57421d40969aa2db891c21","sha1":"176d87f893e0d09da7df401e46b061fefc9f683e","sha256":"6496d8dd95f279912c6b9255a169d4486d1d1e4e91ea765fcddb610404c5cd5a","sha512":"2e3e2870c9187dd82ecf2c2e76b649cdf005656133590c9c1beeabbdffe32248a55148a3cff3f7f0c400789db6fad2368cae1924dc6f761fdc6df87a3f285033","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Windows 10 Driver Disabler.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Windows 10 Service Disabler.cmd","filename":"Windows 10 Service Disabler.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with very long lines (677), with CRLF line terminators","size":9632,"md5":"99cdcf592d368c2e9eec2918eaf98f6a","sha1":"537ecbbc2e1e08c87461629d4fcb13e75c5fbecb","sha256":"a8d394785c73946fabb5cf0a98bc9b195d3b7db9406cabc6fa0d9ff6bb412f3c","sha512":"dd7b33c0a6bb3273fa993d3f0cec65eeca6651ff6239c0ac254eb7860b046a00bb4e87f1cb7d1223c056e3e8b491c2a8aea2f0441cd6a65b2b7d39ea840fe2d7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Включить зарезервированное хранилище.bat","filename":"Включить зарезервированное хранилище.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":57,"md5":"3dede5bf537154d8e14f5c935f9faea5","sha1":"0d2b8316e0d6513fb61cd010305b76832f4999a9","sha256":"31dc442b1a69a24ecc02a185eaaaa3ed6fb46bbd0cdf975cfe81f1092a1af418","sha512":"ef4cefd232eefa14fcae91fcafc6160cac4deaefcd6deec0a93548d9c4c65a6f6c2cfde0ff273c074bd2364eb68d69ea96b5ededb1201dd145a662c715b19f28","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Восстановить счетчики производительности.cmd","filename":"Восстановить счетчики производительности.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":123,"md5":"6db990dcd035696de17b31d9629f1bcb","sha1":"4cee2c18f5d24f5e54980cf796034c6188fc2ccc","sha256":"cc3b4bc680d19c35301de9c77b3bda1bcd075957f7e39b7dd9d81650c7775200","sha512":"b92f2a26cfbb5aea621964b7a69b6e7ef1ce5fa729e4d1a5f054c0226d99ede5f1ed6b33d5295f6ebfcf5702c95a521c70a8d80e5aa87bcc9068e153928219bf","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Выключить автообновление драйверов.bat","filename":"Выключить автообновление драйверов.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":567,"md5":"f342c2c5385d4f03ae18a7b7eda65c09","sha1":"77dfa800c36cc0b627966e309bb5b974e3e9a2d4","sha256":"81675b064a5ff0f5dde1ac1ed094a8be9c3552198db602cc96d84c7ddc53755a","sha512":"849fa25595a89a2a15b755d1bb8747e411903fa37ae3a5a90efc2d866b441cc32ad84e6fb23ec8f9e60f1fcbdb579dd608e68c7c4284965742409d197434822b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Выключить режим гибернации.bat","filename":"Выключить режим гибернации.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":288,"md5":"4b495aa5b53c692cc0e156227c3e6390","sha1":"a5b2eb5fa56f610c4956f6cdb3af2dc56d9da082","sha256":"3d92c75a032c153346ab3ad359ab83d174122831bf7b38f742bc5c554144ac1f","sha512":"5f778ee4bb3d228e2f17c272dbee3a17b499b097b62aacb88b79db077b9f6b585a42a1edf7159d979ee3565ada3b7ce8ee40f5cba81d1385be2ad24bd5bc40f8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Выключить службы.bat","filename":"Выключить службы.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":24520,"md5":"abacd656a5936c04715c5f4f87ddaccc","sha1":"9e4cc55dfbd360b9aa839b429902dc93c2400dd5","sha256":"ded758f190fd1cad352a53103969d6ee6d9f01b1846f8278753dc9a2d1b1a68f","sha512":"4d8b6dfb9b3676aa854aba46bcf62028e29755bb1a785235f05805c6688269f5cc10bd468b351f424599b1e1d616e05f0d1ece5f6a2c4cd935bf1c6ecc95d0ef","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Выключить службы.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Глобальное отключение FSO и GameBar.bat","filename":"Глобальное отключение FSO и GameBar.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":2136,"md5":"c170ab3a37c847bfb3c99b979d9de1af","sha1":"0965d5eaa8224ee0e1c45dc57b4ea1376643c215","sha256":"ac6df7fc2f5850b6f748a27cd46976061e84021504c70aa22e73e5c8df78830f","sha512":"71445506b52834aeacb816486feec4a63147d1aaa14b64100237ff057865136a9a2b08f57d72f607a3c18657fccf4e5e106a77afd8642dd1aa91226f75ce8ad4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Максимальная производительность.bat","filename":"Максимальная производительность.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":84,"md5":"2d907eaa0e5dcad3a04cdb9fa115a48e","sha1":"6103a5c628d3a9cc45d6e4a24b4d528e22487faa","sha256":"5f094f10ee39b989fa286336ab61ff9d7fac4b1cf65a6475e124636de1ecfe77","sha512":"0ac933bbd6c421b732c2ca1f6257fd2c6f71b8711169f18feb1f606f9cf763b0aa4c602fd6cc46ae0935d818c5a79b71bb8918fa2dc0469f1fc6235acd6ffdd5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Меньшая задержка ввода и более плавный игровой процесс/16 Hex – самый гладкий.bat","filename":"16 Hex – самый гладкий.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"4c80e03d2cc3a43f31d7f56f00788b04","sha1":"4f221c0802607e3ad4096d753b211bb585680149","sha256":"f2b3fd9e715234d7c426ec4bf13e9f4f2e01a8cee045c4e9c6b18c13af2e24a1","sha512":"066e3490cdd1e93e0bc8ae733bd85ec839a1252150d00d8ac5d6f0fe57f2ebd6dc6fb40faf299790405719f819a21441578ddeb52f90dc22ad81089cc1a38f80","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Меньшая задержка ввода и более плавный игровой процесс/25 Hex – Баланс.bat","filename":"25 Hex – Баланс.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"bd66527b5101f18f4208f6fe3c653869","sha1":"2397725625f43e76a65b467fd4114a9faeba96d5","sha256":"b23604778cebd2a2987c70e0164cac4422c742b68c7da63a95ed0dd974c56fba","sha512":"1bbf0597672fc6cff4079306e7425fc333259a30cfaf8ad3434704cc1c68cad76b122b1ae4729132fa1352152a11118592be2577e67463fd080f3c9d65530340","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Меньшая задержка ввода и более плавный игровой процесс/28 Hex — самая низкая задержка ввода.bat","filename":"28 Hex — самая низкая задержка ввода.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"15218aa346e3ef37b22fbdb6057fc234","sha1":"a8464e92a04fe2e9bf7212ca7b4ba839e62641eb","sha256":"428721c630790c2a5eb7e07428c37b8d05dacc7eabc2b459402fe64d24c77db0","sha512":"5de05fef81f9bb59b991ee7cc8de791d6d38658ef5338fac00c2908b3e1a4db7c3d72c92315a7eedf37f9fc688f09703e7fb66f9ddd70f851061407978b104a7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Меньшая задержка ввода и более плавный игровой процесс/По умолчанию — 26 Hex (приоритет программ).bat","filename":"По умолчанию — 26 Hex (приоритет программ).bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"28f748e2ad6e798c1f3cd55c8081d8cc","sha1":"bea69d924ee02676fda886c8e7f99d4f72aba3a3","sha256":"ebe9a4832c253af40a82ede7d7a7f35b051d8c7d93240808c0257e7b2199b5b0","sha512":"96f6059798044fb633418beb68bdc86a8fb3113af6f1a4ebcdf765b23cb7f73f7ba3b88adfe6590a3c72942d0ef2e4574be5e5cd6dd87efc6d63b0130671058f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Настройки задержки BCD от Adamx.cmd","filename":"Настройки задержки BCD от Adamx.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":260,"md5":"f051842084387b475b360c0c637c6462","sha1":"2bc4e8133fb0c128fd80184bcfad9e063afec367","sha256":"653b8b424078192c20922069ec42b5c5791149adeec056805b704ae4717b74c2","sha512":"975f52f07d26b28a50cca814ccafa9c4a1e1827d55f34b43f6faa316c84f9da86719db925469434d796ad9492995327446952dd62d44f6405ffb4053ca107b8f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Оптимизация Windows c Github.bat","filename":"Оптимизация Windows c Github.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":87807,"md5":"0b14e305d2d63c85815d1b6c1d05b93c","sha1":"c0d6bc053af01b0d20a27090711cb8dfa36c4830","sha256":"98496e03e36bcbb58dd3e059e0ddef717efd07ba83c47e0c05acaff062600cfa","sha512":"9fb4cf05f69168f1d4f00badaab10577b35552ea58407c8ba8fd07ae1df9163311de99dfc2282d64f652f19ccb60852e76fe196d6b63400eac1552528854f699","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Оптимизация Windows c Github.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Оптимизация мыши.bat","filename":"Оптимизация мыши.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":3246,"md5":"95e88b7725947b47d6b1f55f5315c2ed","sha1":"65eb874813164444778baf62b1a0a4c265e6a0e6","sha256":"f6a8387caca498582c85ec84083313593e3993ddecaa30dd5eb246287185928c","sha512":"26fc05da680fb7c2bb3ba930da620302a7879b161f9aadcb692347952dfbeedc24a5e62041cfcb5c1b40aea2e02e8d1656c1c11bd87a5a8d82cf650c9b36fd39","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Оптимизация приоритетов Windows.bat","filename":"Оптимизация приоритетов Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":4423,"md5":"958720fd7baab848917cec002dcfae61","sha1":"80cf451a18d77894d25f11bfe46d0a376beadb10","sha256":"3dbf6c15bd6d6944aff3c24b2b7cc79cd0eb7cbf57aacd3c05d38bcd9f4eb7c9","sha512":"241d13f4a16867252b037895460c35a8981bd68c125b90f66d73bfaf0bec75354cbb7c93e60bfd7e77fb54be59102f878bb9143f3b8a0e946f1062f835a71473","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Оптимизация редактирования BCD.cmd","filename":"Оптимизация редактирования BCD.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":2150,"md5":"80e9ef7e30cd1db27ed20c262865895a","sha1":"81fee236fb4cdecc4bc2fb65c2ed29dfc42ef43d","sha256":"ae56cdf8253a80d21bc52f3cc0be04beca1f145157695b8f1d1ec5c9ea4f4719","sha512":"9170c22da028b50baa5d3af3da22827c221e836f913a63ceee8e732f255ab6ed5982b1353de15dd67c478d6ec50dd9711e9f3b97c6014633ac760a3c23ea9633","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Оптимизация сети.ps1","filename":"Оптимизация сети.ps1","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with very long lines (344)","size":7497,"md5":"0bddbfd92c2fb1c698c7766c4fd192ae","sha1":"57471e1cdeee88479506c2c418bb764a9a8c7016","sha256":"9422d05dd00a2457ab567ef63225e6fc20e29ac20477d19776fa2754f8a9fbe3","sha512":"584ed7998d2be431b61e98b68a4fa3917482169893aee7fe617d63f0297efc72e27e200bf9132519d44cd467d10e3e424069161a411a0d370d827d34250642ac","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Оптимизация управления памятью.bat","filename":"Оптимизация управления памятью.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2880,"md5":"cf5b8fb0670ed3921e77a40621b9bc35","sha1":"5aa9184090b078f25c28cd611189d8c1bbbaff51","sha256":"5e24a03ed951738bff7b950fa6baad44877c3ea57db0f472afc28342570abcd5","sha512":"5397bb6f7897c7963c99d1d7d3fe6832946b1550a3f39ffa31b0c90a8e036e773bc4b19be6b619ebcf9749726df2b8f86a939597b131372ec9cfbdf6e7ffe546","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Оптимизируйте все настройки Windows от Adamx.bat","filename":"Оптимизируйте все настройки Windows от Adamx.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with very long lines (1028), with CRLF line terminators","size":8468,"md5":"e478d3fe09d409ac12f21ed134dba1f5","sha1":"dbdb1a1f7c31d0fe298a596aa5b4d851a49f2da6","sha256":"8a6b4dc6f54e608a7dcbcc06f5fcac11b096b039d723b64890921ab0feb706e4","sha512":"690c2fdacff7082faa4269f6b48cf256d9d008a9d9c9fa5d3f2c977e93a55133a3bf1b4d4e7c3a7a5ba96b74659f3aa23fab415a3333ad82bb733ac0157e58ed","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Оптимизируйте все настройки Windows от Adamx.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Остановить всю работу в фоне.bat","filename":"Остановить всю работу в фоне.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":263,"md5":"577d31aad25288af131fa1ff69b29137","sha1":"fab11f165a3e7c983f3c06afafbce7df186ac308","sha256":"49455266c305b501558cdfb97e5c7aafef09572440390d883cc7b0d7ce09fa01","sha512":"9c5093419086d603eec35ce84e7eeafdf5bdf4d0e1b539753a9be5ff7a4c0a297ad4c04cf66698615bcdb677c434264b7d28f661c654534e560350c9b6816b3c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключение резерва 20% CPU для фоновых процессов.bat","filename":"Отключение резерва 20% CPU для фоновых процессов.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":543,"md5":"e30464ee77940d821f1f51af77b156a7","sha1":"0b01d70b490c55869ed54f1fb06d9518cac8c579","sha256":"e4717950349a4d9a91b2e0f8a117cc7c5a820fc5cdb21cae9ce16f91c8dd4c63","sha512":"fa1793cf3c4d9d7c006d70623c03f03011b45fde5a3378fcc34e72461c922185be5841bf4981adb88be6ea5c0e6c945d63e801f7eec1c8b29f9b61841bdba190","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключение службы Windows 10.bat","filename":"Отключение службы Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":5303,"md5":"c2506cde6a69e17da7186305170e9b41","sha1":"cea59822f8b89571612a710ac1221b5441fe034e","sha256":"0bd0e248017055bb32ac64a7b92ffa8d93ed37f7818fe8dc58311bea6490aa97","sha512":"9acc5fb1cfc33b04b9e3ae3667c90c11a86fb60263ebe7877bc70da7a9400ea49f3b63370e2128c5cbaf045b7b42ba542c37ba88b0d4d89d5a9d2a24e9bdf0cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключите ненужные драйверы Windows 10.bat","filename":"Отключите ненужные драйверы Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":3398,"md5":"a71daeedde984da0515599f8dfc01969","sha1":"51c0c44519a50c24dcd9a6e4ab1c86b6f8a02e44","sha256":"86943ddc8201b5bc8b7b74f555d2d7a2dbae2d44dc96a4d89caeea9c30892839","sha512":"72f75d3d494aa142d894283806f524420021d981db0ac16878cf4fa6dafb1c01166c0c74844b15a556afdeca32fedb1dea11c5b1c8ab5262cfaf52d1a48e9339","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключите ненужные службы.cmd","filename":"Отключите ненужные службы.cmd","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":28378,"md5":"a36d6ebe6735860a313d77cb7862c92d","sha1":"193016f704cd66babf1c880cab0385ba33f2a908","sha256":"998fdc70a2d64b79675428828b3c10e3cbf4cb3e5d1368bdbee40db94a9fec23","sha512":"dcc461126513507322c6d7c62e5c0a7f195ce17ed704d223ac6644c876bf279e2936aa2c3381f1db38af12485f877f21bce3a0774c39a97c62a9b2995d530411","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Отключите ненужные службы.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Отключить BitLocker.bat","filename":"Отключить BitLocker.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"Unicode text, UTF-8 text, with CRLF line terminators","size":46,"md5":"28a60ee2f4f7baa8a1ddcc85c3185e7e","sha1":"d3b12a8da5aa651642cdb2c40632887468661d61","sha256":"9fdd216601156b4390b4479b7ce4f588418ab91e4b07c71a36368eb1314ccee9","sha512":"58e716f3e290e8e6f930dab3292676016902990acb11c0580b2884c2c22b026a6dbb17a23bbaeb70ac0b6ff3489978956c6f51f9a460cbe980afcbe5898550ad","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить Ease Of Access.bat","filename":"Отключить Ease Of Access.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":656,"md5":"bf93aa67554759baf4bc234ddb64b89b","sha1":"0929fd1124f86892a41691d2155f9c3304dc2fc2","sha256":"9e961d4b5ebc70c513d7c0ad7e743fbd4ca7d4e4e95ac05da620e4b5fdcedd60","sha512":"c9490bbad9abbfc17d4b33ebcc01aaa234d2bd15682863ad0e659f30bf0a1dea2ce02242926473243cfc62184e8dedceda21f4600d0906341234269e162008a0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить Game Bar.bat","filename":"Отключить Game Bar.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":716,"md5":"a6bd9deeb9a33edd5705849801af50ba","sha1":"1add82bf45e1f5f396c728b28f4d199323c64e01","sha256":"47b81f9cd84c3db85c85d4279eaf36def5d7456bec2f61323efc2725176ae3d1","sha512":"c98707ab05672a8f85ac9aec4ebc35eebec5afb41564080d68055b0ea186dfb32ceb32e3c8aa82ddfc517103f2b366fedab461b4cf7c5c8af4d3861457b64d25","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить HPET, ST_DT.bat","filename":"Отключить HPET, ST_DT.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":212,"md5":"5a4fc20d908a23a57b2a4aa3ce5714f9","sha1":"7b661c3b6bef40fcafcd287b2746337f256c2fc1","sha256":"3e29b5c1809b499508f993fc6941622298fa4062406bedf21c598407d7ee1010","sha512":"9a79a2d1b11b4aa7b8c6ab47029d7813e610fe913d108a4bbf052ab88e5457258878131fd1330c404a870b95c1d74fb5313258f26576b73977a2db8de7d55c49","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить HPET.bat","filename":"Отключить HPET.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, Unicode text, UTF-8 text, with CRLF line terminators","size":394,"md5":"b8ed6e2b5ee1521dc65e36d6679a47ce","sha1":"ee64365ae9da76eed1dc2450699294f2729610db","sha256":"725bbf48d0c307cc96d8ceba3dc52ef2c19ff47a1b29129b1f1261d073909c83","sha512":"7994ba57101c0a9205a478bd820320247b4364be748e202448d52c23be7aee771be433d290cd01fc976a152cbbbf98883277abf225774238f7030b13f9c2d5a8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить зарезервированное хранилище.bat","filename":"Отключить зарезервированное хранилище.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":54,"md5":"74312f38dead36c4ee9398f6df976533","sha1":"90cee772f4e57ef08817a36e774c8e50e7f1f9b5","sha256":"6d7bbcb7c0ac67861c59c6e8828275a4ee9cb9a1c1b2778c8c6f67229ba49082","sha512":"2e309a0d8c3af917c921fc31cb85b5a3f3679a450cf55608f728c82dae7b1b488f65d50e5a85824bda47a4ef31867fdafdf7e743b5c7b72b07b787eb20d49a6c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить Защитник Windows.bat","filename":"Отключить Защитник Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2193,"md5":"431b44c442f25df9e6a62e1c461a521e","sha1":"0b74406d923e04d7b4258e3022ca011c13ce81fb","sha256":"d7c3606761d938221ec0f18739df05d104d22c3de4222e3623fcfa09df14d017","sha512":"8fbc927d540fb0caac3cd9c0be4848deb2a581476708833a3b45f7924f5377989275e2d93a2d9833773bc5931599807463cabd4e1b93d9a7eec26297c98741a4","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Отключить Защитник Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Отключить отслеживание и телеметрию Windows.bat","filename":"Отключить отслеживание и телеметрию Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1054,"md5":"4be83706d465f411d2f01ff6814607cf","sha1":"42139dc1e2499150db1f9c8fdee1f6224a2908dc","sha256":"3080d9bdb4fc4b90e0342c8a66f56ebe1a57fd6f729b7e1f88b7b9e092bc7164","sha512":"33cddad29eda6dc73a1834d8c651645e14433711fa66a637894ed401ddb62addff8123545bf098b1eda46b09801a427f786c79801cc1c0fe382f6b97f7e62718","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить полноэкранную оптимизацию Fortnite.bat","filename":"Отключить полноэкранную оптимизацию Fortnite.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":884,"md5":"35fdd8afc1dd1442b68f0f321f13cb67","sha1":"66986b61922320b0a993041be358bd44635f649c","sha256":"7ad3cc4788b6ea61f4f5b2703538be68fec9b7d1ca47bdcb1a4e1cd930a8c668","sha512":"18e0ff4fcb47f7169fb635a547928fd525791fcbf325574af46e939686aedef53cf678f2e7ac6ae1082fb8fcc8314a48839e50918cfcdff6df19407369335955","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить предварительную выборку.bat","filename":"Отключить предварительную выборку.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":877,"md5":"ee2969f6a96c0a2943941160cb3c5975","sha1":"b2ff32fc5796098dbcb3fd171f2aedcbf3fc8213","sha256":"542f0f588d1cb9b636ef2fe402abe7acd4832f4c6659658bbd6ba1da8cc6b025","sha512":"06de889e7b49b3138bdf17fb767ff083a542db965c0b06575554220e419207a5765273db4b43157ba70089ebd2a718728e024c5f3d077ea3a51305de111ebda7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить работу приложений в фоновом режиме.bat","filename":"Отключить работу приложений в фоновом режиме.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":539,"md5":"c2c62f8b90fa7f387bb14b0e8ecf579c","sha1":"d4dcafc721d76f3731bc84d466333a7ad7f0b4dc","sha256":"f5ed7b336e913765ac62c19304038c1a18a777ee1cf8e9ead0e73b1fa36f921f","sha512":"ea5a96878bd5fc85bc85a2dc51a4acad40fec929e973c9d03088419f1baaf6f86711d9c6cc93fc27d6a27723d7b3fd35a597cebc170cbaf953b1431c083ba087","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить регулирование мощности.bat","filename":"Отключить регулирование мощности.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":624,"md5":"49bab89f4ece3518afb42f92025b4ac1","sha1":"4a8ea3d024a61dde75677cee027144680085fea0","sha256":"4568dc0473d224d060be98f86e4d862ac89f3b081075631c6617e6063b5af0dd","sha512":"3acc24bf2c3d9031cb791aa69a3f0c4ebfc42a6c5c18c8ec1dc2e54708048ab8bc8b29a3dcb1ec75e05f39ff5229f323bc42008b0bd9c869645b7accbb6c320a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить службу менеджера скачанных карт.bat","filename":"Отключить службу менеджера скачанных карт.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":78,"md5":"8a63912fcbb435ad9ebc9db9e1fa74d4","sha1":"57cbfc99818874caf2d03c2471fad8392edb4383","sha256":"2c2220e232607663b07357f5938930611e79bacdb10563298e21df4fcc2f885f","sha512":"e0372a378f37751d78dd06e85be364d057c873f7d3c43fcfcc042b24eb012fe8fa4d1cedc1e08c0f3b2148bd7d68edc9699abd7cf96b2ec9be0839780aefd911","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить службы от EverythingTech.cmd","filename":"Отключить службы от EverythingTech.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":10428,"md5":"10432ebd57ac7be5050b6365afcf4eb8","sha1":"934f7f2265d2faf58ef2c66416a995faa88082dc","sha256":"183039fcbea7839dc98fa1379f2d79413957c3f7d9e020ba92a084fc6b429afb","sha512":"647d6e35d41ba474efe498f9eb27a18e99b236c2b3ed84c98afc55250801d91a75fe8579c17200aacbdbed67f03e594f2746b0c10c08316ca4b86ed2778c233a","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Отключить службы от EverythingTech.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Отключить телеметрию Браузеров.cmd","filename":"Отключить телеметрию Браузеров.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":14176,"md5":"33aac25c6ca785a98e9d84b3cb7dbf26","sha1":"d7f5487ec9cde60bfbf365256eec2cf4b1761894","sha256":"7e189bbecbcfd9db0a82aeb346061eda549216e965cce73f9777ac453c75135f","sha512":"352b58b16162e7b7382cd2648a15a6f22b19ea629acb328b418fd9e497dedd0f7a53806b6ed86eedc4223fb66d36ee78e4789f8984ee43a26ee741d64f922b59","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить триггеры.bat","filename":"Отключить триггеры.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2781,"md5":"a1b036e982e5fbe6cbd423d8570a51b5","sha1":"d3876b8029ea25731f84ad86dbd8c021583938fa","sha256":"c6bbf55304948ace5ced38c7eca3a1a076d069e947728ef7abe153556c1903db","sha512":"88db3d09d3f2e499e67c519be3184a90191fb69de57b2ef9be4dab3f00ac7472dd10d9db4ea4e92eabd464444d7dade0d3cda36719a5b4ddb95ad6d20a3297b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить файл гибернации.bat","filename":"Отключить файл гибернации.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":15,"md5":"ef0a8f7a49e074ecbf431d2caa329fda","sha1":"18b5f10684e438aa68a8c25a60f019660273c096","sha256":"55732a43ae77495784606d8f5c5ca39b074d540a50a1ebd60db79635f50a6173","sha512":"04c2394eb24f2b0f657e46b3aeb4c4f506736cf1caed113752ba7fa9f164048ec0975d9229905e45e9d5ea2d9f3a3443017e8e5e8c51796df3ef3f84b686c9d0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить экран блокировки.bat","filename":"Отключить экран блокировки.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":391,"md5":"ad40677d82b5f9278a8cf9db13f895b4","sha1":"24272b994cb46232cd8376643bb12bd3fe288bfd","sha256":"e7c062a7a44a64b206ae688ee44fcbe692f1d06a15762704e7ca9aa503628a33","sha512":"87cd98faa8bb30368747baed0ff48ff1765ea6150778cc0af5e3a9c7893bae978edf9e719a8c9e2ee60646d656bae206e7d1d3ee3222ae98714eafb6bff4498c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отключить эксперименты над ПК.bat","filename":"Отключить эксперименты над ПК.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":402,"md5":"ccb4d32849b1925f4c5f33aadbbe217f","sha1":"0056d59c495f96b9bdde3eb6ccdd54b40c5044dd","sha256":"a4cefbb053b63abae8011ca445ff625af44a3f0406a994c98cff3315d0294f33","sha512":"732b3774cf828d4ccffca2200eec1c15c10d294d002fb82652cbae05fe4724f1ca9d6a352f2924a7f77f80cb819ab921d7d56b3b632bb38e3acb374a5de16983","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Открывать pow файлы.bat","filename":"Открывать pow файлы.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":613,"md5":"46a21f25324aabf02cbd2c236f00714e","sha1":"12dc7b35841bad1d3ce87766d51330d288754523","sha256":"90f185970d5ec92f816569b940989f514866e251d2d914df09a31602bbb177fd","sha512":"e1901aba68bbcdb7d91e542e10237b6481935e62464b4ff18bc32300d2660e4ce22171dc22da28307b2baad0b70338f3d48120dad6992f79ee81b292d19cbd2c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Отобразить скрытые пункты Электропитания.bat","filename":"Отобразить скрытые пункты Электропитания.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1208,"md5":"09ce098bc8a74d22395b07386514d931","sha1":"7d6520e03a14cdd73bd72cc65a5ab3de64bfe434","sha256":"1117dfb0547ac78bc7efcef5e646ee35a9096bb6d6419dd6a8d0de3e8676c230","sha512":"73ada4313e72ef8891f59ce9f395a65715ccf50e83dc36a9f7defa9f57c2093c3bcc355be0a856f4577e6b5677731b003293d11d02c4a7604f96b61bfa7174b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Полное отключение Центра уведомлений.bat","filename":"Полное отключение Центра уведомлений.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":397,"md5":"480bc8df4ac387028e0c0843d54345df","sha1":"101b0ac840f8741c73112fae18403c218144a59d","sha256":"ebc7259a044acb51a0c73942bfcc514416511ce350317e2b4129a11c0e7c29d0","sha512":"256b7265fd4e9082468a1fae4c0fc980429bdc8e8b83692561305674f97bac269becaaabbde9bda382985ce32b56df9ead5fb532bbe984572fd0abf41d85c717","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Порог разделения SvcHost.cmd","filename":"Порог разделения SvcHost.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":5597,"md5":"0302486ba2bc20c766fe6f8ea86b357d","sha1":"e4d6807fa1b1ce4193d364309c654ebd143be1bd","sha256":"ab2b03695f7dbed9f9291af11558d2ca9cf3a84798abd82203b102e6b8b0fac7","sha512":"9006692fab5d8310afe2ec91b144ecbcfd6dd79da0fa91fe9a77cec88b4858e7043933733d03e7a489cddf841d39fbd52b01edb9695e796965d7d6e034687efb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Приватность от Adamx.cmd","filename":"Приватность от Adamx.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":17465,"md5":"5103a6d654b4aa412124d18071659c82","sha1":"b27b062ff277eb82bce384d15c6a2a6b2369eae3","sha256":"e9a759e2d929e4918035a7a62129d992f0f3de7835cb56f17b4766732a6a77e6","sha512":"69f6a78c8303df7f2ae2fecd1471b3d4df4c30cb1a39b07693ab861cfec2abdcb401cc9a7ea90875a3044cad87d13ccda0c353a6aefaeb335539bfdc755a10ac","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Приватность от Adamx.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Приватность от windowser.cmd","filename":"Приватность от windowser.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":51154,"md5":"c21481d24265b6d809a7f7b474148477","sha1":"f228d952aa547ac0513e73292bc11bd2c5aea370","sha256":"4d2b1a33019bf03c6bfaddb01172cd4614cf89448da5fb9d9fd255de5c3de90d","sha512":"89a1ef724978303fbf45fa08efb14c13cbce46fc1e445c6c7aae4e23b5d315342086b17adc4591d7cc382c4ab126b660b86b9c8cb746711b4165e8d5a35585d6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Проверить сжатие системы.bat","filename":"Проверить сжатие системы.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":24,"md5":"e678610682b5cf1e38712f662abcac2d","sha1":"038e4dd03b472d3dbb3cb4cd72dfda47356e9fc5","sha256":"013ff61fee8a2d4d3229d01f44c81683ff86c15e1dbb5c23654606c21c457de2","sha512":"d700c420a6aacefd6339d10983bb804ca561568b94c012fcb3af12bb7c6c6e69dae58660f64c7e196dad3d52526275ebae9ee71e2ba89092ff9edb4864a48398","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Расширенная оптимизация DWM.bat","filename":"Расширенная оптимизация DWM.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2959,"md5":"cb7848062ad4e786e23d293b1265ffe3","sha1":"a295d2c46c28d8dede5d1a9cd6f98655c07a4935","sha256":"77b61a8afc96d345794a55f390f770c82c9a343b256096f96ede453fffc1a04b","sha512":"e9a31dca353145297ed8832ba0a993996889ba757cb587b6b1836a566332524ea61a8cbbe57e2e6b14e3759eeda7616222208a0ee523607c824a00b0e142bd23","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Расширенная оптимизация GameDVR.bat","filename":"Расширенная оптимизация GameDVR.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with very long lines (1348), with CRLF line terminators","size":2810,"md5":"500a3c861865b4a418262ac974154fa2","sha1":"901f08fe7bcefb5787a5f074aed752077dbbe3f2","sha256":"d5deb5ffad2983950e56912baae2294380fc00b88e8de7c1ab256310e23fa403","sha512":"c91668c47b2243617bd6c84de54d6d553155e0718fda09be7e45bd1eeb1c15c338c38b963ef0d153be05fbaf0df0e158ec1155af62b48e2fb3c6605e256606b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Регулирование сети.bat","filename":"Регулирование сети.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":455,"md5":"f1773b663b50ca1aaaa90ad0dd653f41","sha1":"19d8b8d6f42a3259b98177d5a9b7e0992697bd7c","sha256":"9e9f27426255f9852fe3b25b05b931c013295fc8ed59d54f857f7a916f6518cf","sha512":"f7218320b5e9d833b9f52c89b77b005a9359ac91ed7a0ad16d5d48da811cca910b515632599843f377a7e84781fdde999fb0411fbd5f5d1b1b86f1f01dadb84e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Сжать систему.bat","filename":"Сжать систему.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":25,"md5":"38520fea02f410dbb593c29ec7be3efb","sha1":"ec2588f0d5ab1f476d4fa4717e124af4d481a5f4","sha256":"788325a017b183058fefd15da3a45f4ffcf75bf047c6b59a421ec704bf4750db","sha512":"24381c1931aac45476d745feeb465d33608f6dcc659a442e54fe4091df196db7c3581a53257056d13b60e94653120df86500abace420a4bf7369d8cce2042662","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Службы от garbuzilia.bat","filename":"Службы от garbuzilia.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":14572,"md5":"d237d2c0ab3917c4eef69f47e8b96b5f","sha1":"7bc7298b784e62dbfde089a9fa9477010ba4009d","sha256":"9d2bbc3749fa10989fbb5ef127fa69e095803d5f511ff4343d4530f87952da98","sha512":"7d90b42cd4f3606d91ec1415579f67de09fa7553d4282894077504b91aa06dc6b140d67bf22ef71da415cbe5c0e3502c062f6b01fd2b4430fa1d5494172683de","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Старое меню питании для Windows 10.bat","filename":"Старое меню питании для Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ISO-8859 text, with CRLF line terminators","size":203,"md5":"68a6d0bbe0b26eccfffb45f7f50d76cc","sha1":"8bb4062c192f8d509a0ee2cec59e5391766d584d","sha256":"6301cbaa4a08d14e68cc17d527ae860804c1efb7235db29b8314784e07a740a1","sha512":"44c97c10b5dc6a573dc7b5f8c7ea03333b547773393d774cb20a74290469e3edf63f434448fd5663c72ba62b43daab9734963a163c616f23d3552e367436f41b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Твики от garbuzilia.bat","filename":"Твики от garbuzilia.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with very long lines (1348), with CRLF line terminators","size":25627,"md5":"906286a9ef4eb70a66208f131c104a51","sha1":"0a8beb0f1bdf30af202684ea89d3aca64eb46a8e","sha256":"3de6ec679b11c9e2afd5725f11dbe4495200ec041f95cc3326241449a2abbc77","sha512":"2beb78ce5416804731b1fbe09668719b23f797f27f5b0b73e2d0bd4a6e80d3fb973c89ecd41916b64dc11f31b58836dc5cf64aac6eba9f29f6dbd450699643ca","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Твики от garbuzilia.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Другая оптимизация/Твики реестора от Adamx.bat","filename":"Твики реестора от Adamx.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":3168,"md5":"ea7d0e01a8ece03f94b22e10d34742a9","sha1":"0541385259d3af0983caf80d435d5bb36a9447f1","sha256":"5a65a8a8e67ffbed3cd0cb692dbe845d7972c052edeabf15038b9fcc1a9e25da","sha512":"0795182fec711a6588aad77e39bf39ddd3f5fcecd69fe6a73bee4f14f32e3200c4cb91784ff2aa9ee46a9ae1bb9998a590bdfc33352afeeeeeea8902d7f7f08f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Убить DWM.cmd","filename":"Убить DWM.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":459,"md5":"0a61a9403655c184bd528126f16dfbc1","sha1":"09585b04fdba5cd07e86d60c733f4a928c05c04d","sha256":"b27ef818dece06cce39737d9b1fec08e2621ae94fc61cce1b758f9193ecf6fdb","sha512":"dbb2a154380cfaed8fa8805d17c7e270c52f760b6777bd6d55c81eb24cc65a731e5a5695a30da3dfeac9a9c3cb1419661a3314a3d693f774aebb4283e0d8d969","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Убрать Input Lag.bat","filename":"Убрать Input Lag.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":258,"md5":"be62e0d34648313c5b0d14e46705779f","sha1":"684aa2cd06d8c83ce09be1d28c18a1ee84465072","sha256":"0f07d60d209eb787e9d0c48a95ac1aa2d7ce8659d40ac3c30ee3b337ec14b066","sha512":"e744828fac0f179b2d3c818c273b72bfb63b0b386d34572a21fa6486d5ec2577dbe0a2ed2e8acfb169c175243c94ba032b174d539579eb80540983ed0014611d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Убрать задержку появления контекстного меню.bat","filename":"Убрать задержку появления контекстного меню.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":360,"md5":"7b5f892b1e2e5667e77a034e04eb45a5","sha1":"45d3e2dd8d3ed1684c046650f23ce6c1e8005043","sha256":"fac5dc573df2ad73632216640216377086be4bd70651000dc34ffa2a5ab4e69e","sha512":"5d790ba4d4f393fe62c9b6c4a7e507f58bfd2538ebefc3c372146416e0c0eb95c71216f0ba70ad1f6dbdde59ab9f31a8b41d44ea29be3efc72d1d003dc29d364","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Увеличение системного кэша.bat","filename":"Увеличение системного кэша.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":550,"md5":"690aa91a927bc5c5ce669f30a55be31c","sha1":"02a30d27cf0b794765520b1248ad12a8adef0f29","sha256":"1d0b05dc6292174165a51a6b393e27a1c40d6e65f09e9043af7c623a0193d652","sha512":"745a3055bb4b45ff918fbed8b3f0099882427fffe59683a8bb473316affd3c24a3211be8a6d9421ab14c7904eb108ba26c9d3edaeacb6b5a0aac5b87b79c5c36","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Удаление временных файлов и файлов предварительной выборки.cmd","filename":"Удаление временных файлов и файлов предварительной выборки.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":276,"md5":"c970c4bca1675ba1567d1da5aa18ac06","sha1":"1dab321bbdce1b3edc92e5c4b25b2b31f62b1407","sha256":"ec5dc4ded9e9df9de52aee65fb8fe21de68ee0e30049f78a5ec64b5aaf63a37b","sha512":"6fc099696230759033ba1488f61b8dd301eb4cf22bce81a5908b3e1e62591d3f35079a11c955454097bbc8dbb6e5974a6e8ad7d8982eece2e9fab6dcbfd2d8d2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Удалить вредоносные UWP приложения.cmd","filename":"Удалить вредоносные UWP приложения.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":1310,"md5":"2bc5e700eb2ec382473ab34563411b3b","sha1":"34ce6fd973e5ef6201651877e5f33ef03bc350e7","sha256":"bfc87e461f6edd9538a55915d0a11e15636c1215519fada8f1223c314b915864","sha512":"557080877d7da001eb148ff6ee3f28e1405302ddbab8dd755692ed4dda97cfd0f400e5ee65a99bcda0507ae9e9b47f090c827a3cc5427645185d6b03832750ab","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Удалить основные приложения Microsoft.bat","filename":"Удалить основные приложения Microsoft.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":8068,"md5":"93676788643c04ce8e9ca6d1ab18ce90","sha1":"9117efd981119e30b5337902238a5fb1121baf84","sha256":"4651ce4e3be6c91159bd2bcc250861d950bc5856d4ffc8d8b5326415a8484f5f","sha512":"357eff07b7e3cba80832b33eff29777f6ebf58b54d7a0e62a26405090ef9c776b200e05788a2cab4d1478234738df727a0cadc23c2a0778e56d92c27555933be","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Удалить файлы конфигурации Fortnite в Appdata.bat","filename":"Удалить файлы конфигурации Fortnite в Appdata.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":232,"md5":"f4a12f1339656993efdd95271cb5c786","sha1":"779818ab0ebccf186dc19783dc6e0ebec741acce","sha256":"18e68cacebd96c2f26a455c50b9726d40e5c73e09c3f1d3f99df202d6c86bdc9","sha512":"e12b5bc6755735c306d116c015d4461623d11cf5fc3bee09318fd37af93b1b3389225019284137290dfd071874e032c7a4f262ea361a5758ac7c2bc6346bcbd1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Удалить файлы предварительной выборки.bat","filename":"Удалить файлы предварительной выборки.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":28,"md5":"b69a48ce667f099a73c2d1940afba75a","sha1":"d18331edf0a61e014e836eed2dd2336459dd9501","sha256":"986633b92299d2465c7e43301ac3efe1f8798ffcff5d92da82dc5d1a35c9009d","sha512":"a3fb84999be274db83f519bfb3fd2b0016964869c84b76ec51c2a4d4e8a31f466de836045e9a1ff03d98a7f405ae2b4ca41a6d4f82d15afde4c4d110bd58caed","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Уменьшение времени отключения процессов и показа меню.bat","filename":"Уменьшение времени отключения процессов и показа меню.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":802,"md5":"bef5cf71e45fac0ad7250bf69651e758","sha1":"6982654ee90971c6af1329b8152c5e558145bca9","sha256":"0c627bb709c312d177249abe2d3bbb7b5458708e0b1ba2354d76c059fff99817","sha512":"fd62d97702f58914af6e4ad653ce046a5f21fdb9068ae4673a07dc074c6aa2619fea9a5b81fad4f558bbae24abf13b67a01a51887affe1fae7e103d8e71dabaa","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Уменьшить задержку запуска приложений из автозагрузки.bat","filename":"Уменьшить задержку запуска приложений из автозагрузки.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":396,"md5":"46aa2f7fb42655f534e8303baef9a767","sha1":"34002f0552e1112f25f1cbe52b2c3394632a36ec","sha256":"9a0415a7279c5e6273e4d924a75e3121876233d25b0ba33ee8563221999bf1ba","sha512":"26152e2c4eaa6e2f47fe9fd15e57af587cbfea0eaa5019c93a70569846f69707d20752f11e3a62da4860d2581d41ae9ccf330dcb3e8bf8c2ddc4b6e6f43d0017","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Уменьшить размер файла гибернации.bat","filename":"Уменьшить размер файла гибернации.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":25,"md5":"9b89b042135281303046d97e9694c99c","sha1":"22638c977d057ef39d509c91bbd2474e37c6cdb8","sha256":"2d6880ee1ca82a71fb6d4332d95c900b530e585b8421ace748a17b444ad7a587","sha512":"d1c50ffb9bd5a0f95eff26180ee5b5ff84995fd7d4ce2258e50132c86d5c4a0851e8f5dcffed884cab7c07b66bafdf30d1cb6dc2548a28d70de600f15db29379","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Ускорение появления превью на панели задач.bat","filename":"Ускорение появления превью на панели задач.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":359,"md5":"ad679a2103c7a65e4d38b6c641cfa291","sha1":"c401cdfceef5beaae65114a8c72cb4e37f25a04c","sha256":"cc2238d6dac388574534449074b0eab48fead6a823dd345829db36543c83f953","sha512":"8a744350b189865cf99e8ce547b094988f3befc463f15815bbee9212db0a1091f651a0438621c18fd2afb64422b1414ca66951bfbcfd96fdc2b42014beaf52f3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Ускоренное мерцание курсора.bat","filename":"Ускоренное мерцание курсора.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":363,"md5":"c1877a48223de2e288d2876a9025c9e4","sha1":"df99c6b9cf3bfbc90b015f3242e8d1f076336b5e","sha256":"8469418ad1ffcf3b56d745356329e7cb6bfb70f8c747f8af8c4533ec1d245c87","sha512":"23c4c9c25ed117931d27aef8aa45763b143c358c74443c003624aa19e7f550f1a669dce8f8fcd58f668138e992717dbd19a244764d3bf30bd4cb8d1867c7a3a1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Ускорить ввод с Клавиатуры.bat","filename":"Ускорить ввод с Клавиатуры.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":965,"md5":"9ff634c38627ca6479e3bba2fff610e0","sha1":"8217e14979aae9a1206af316b9b006ca2ab1ae96","sha256":"f4d5d0de2eea0c653e4e98dd401ac1fcc0ba628db7b421ca1ae02aa9c99e8fb6","sha512":"a312e77ab4d03696445fb189284c4f280791263997e6375581a9687929e8dacd8ffd708cbb64edbc36235f7157573cfe42703ad7c2abd59c62eca0130504d685","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Ускорить запуск Windows.bat","filename":"Ускорить запуск Windows.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":406,"md5":"f102e15f3a3e938c4118969c3bd82e1a","sha1":"f1273b3d893b7cc7e1903ae21ac957c86e84053c","sha256":"bbaaa155bf97613a59df91de7821473bbe40cf1082069e47920006695a38250a","sha512":"c593d02d8194b5fc2f5cd9436b9a0dc4c66774b38521ad30e8129717c5b2ca604e55403daac7c7d49f9dea383bdab5a152d5b30c03413e4ee6cbbca6fdabee1c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Другая оптимизация/Ускорить открытие папок.bat","filename":"Ускорить открытие папок.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":154,"md5":"5688392ab8e8a54bc3f5edfc14c3862d","sha1":"5c1c886bdc7cdb091c1083d65aca9d91b37462f2","sha256":"3d6d985d24ad8ad0862e81f2ef4c533df4b087fc23dfb6b7bd67c02cd5aceaf9","sha512":"b89aa3c3edd10c0ebeb913480ffe0039a58550f2c651583ac624db1cbe87717ce643a20754334db13ccd9abffac9ef5ae1ef91c403e9f25be8fc9d45c5df044a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запретить Windows 10 восстановить себя от Windows Update.bat","filename":"Запретить Windows 10 восстановить себя от Windows Update.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":1228,"md5":"d648ffc51d4531a14005ead4cfd40c30","sha1":"5d555b72f605f5e77fada2d11188a55bae7e7bd7","sha256":"6b2b26c29ba92f9ccca74168da7dffc2e9ebe0d38439fb648719f687f2023b61","sha512":"c02588debf9006163b5c473809d62b8b80d8922124382216545806da9d3207cbb39f8fe962f36a82178f9f5c5dd7799720f44574636dd41ef977409665b7e753","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запуск меню очистки.bat","filename":"Запуск меню очистки.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":19,"md5":"98434e577526ce339ebc12df67439a26","sha1":"0679341a3643456ae04ac900849a429baf4ea570","sha256":"488241a16cfd7499bee216b12128cd188a30b2647d1783b848b42fa4099ae259","sha512":"a6d1c2901366fc32f817049d7551d3f57fce9d66e1a27bf448a25c9f2298be31118eea41ead74e351eeda44ed2025920fddda80b154789b4675012995c69ed9c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запуск очистки.bat","filename":"Запуск очистки.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":19,"md5":"1e5a849298487ecc12eb084a0596d48d","sha1":"1bc16dd0ed27fe16c198b208f9e97e719928bb32","sha256":"f362258ce4b3ae71a18c917a20c68aa2a0b610488f4260f84f3edc812ab1ea01","sha512":"ead95a54633524cd1db34a728d3e3ba7eb9910183eda19b13d1303d539f7d944d371792f92dc2b3d75f0d7fdff1cf9bc0b54b8f356c63ba1868855e7c58945e0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если Visual Studio не Устанавливается - Ошибка на этапе загрузки.bat","filename":"Запусти если Visual Studio не Устанавливается - Ошибка на этапе загрузки.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":352,"md5":"85899eb429fccb71a10571b29eb9ab39","sha1":"b0f3072516f47825b0ccc2f2a352f786ccebe3ac","sha256":"20023566c345f202101ccceb44786c8c71b1c5a7d22d134ef3fdc7e345aeda2b","sha512":"2add98178800b67897d6798d794612ddeeb2693412c06106d86bb7e8f3b3c40db45dd11056ffb9d4b5f0e6f4032fc840be111a4b406b552b13091b71c70aa1bc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если игры, в которых есть Античит - Не запускаются.bat","filename":"Запусти если игры, в которых есть Античит - Не запускаются.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":354,"md5":"6b559488e376d8d4a0946a379b72d05f","sha1":"ec92cd46dd9f6ce47bc0c5b2532c91df771d6049","sha256":"f6c637129539019fdcf094b00831d6fa4110e7a69c867533ef3dba13ade5d32e","sha512":"251de4a200c8f5d435647c718248297f02815c7f93824557bc32d25387ec536e80c3f94d4172a5b794d9d408e46c132ead046b4b4ae1bf94511f18ccd2dd27de","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если медленно открываются проги или игры.bat","filename":"Запусти если медленно открываются проги или игры.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":388,"md5":"6ea8229231e86f07695073b7896b6c72","sha1":"8ffef5841fe9f0653662e5f370867c68e6d3b2bf","sha256":"b26f0e98b30d39adcb82c993939b5ff33c985bf449e5a3a4c64b6583bd09abd1","sha512":"179cf3bd4bef57634a8ba633667c91af13930c2580587dda792d93806e052bf19c907d8495d993e36d87cde846b801f6f84e38f5ddedd1f990d4fea177ac9601","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не запускается GTA V RAGE MP.bat","filename":"Запусти если не запускается GTA V RAGE MP.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":112,"md5":"a8b4bbd0070fb61ab84a7045748b551a","sha1":"12e135f8d8a4d67b36bbccc9bd5b8442048ab69b","sha256":"63c343966c401ffc02f4a3bc333ee523bc0b69f55585d512877f657ff6110a48","sha512":"d574fde6662841a687a78c911d49bb18f504caef7996dfce4ead1fdde81d72f36216c9e41edc3834c7bd220d9ccdead9026ca2d190606e1a10152c1fd0afc096","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает Bluetooth.bat","filename":"Запусти если не работает Bluetooth.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":1007,"md5":"299d68ea0bfca07e9ed040b872d5f09f","sha1":"93c4420485c5f7119fa4ed59f32097512302c42a","sha256":"16a0e14a87f1241f35ad5e667be79e7314364d385816d32622869202f65d5517","sha512":"2a7d2ecd7fcdcbba78da725228dd77b4aa9ef9c927304d528a4d80ac34b7c4b09de74d795ed175486bd47950a3211f730c1dc1ecbbc36431dbac4c48b63e8c5b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает Store.bat","filename":"Запусти если не работает Store.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with very long lines (522), with CRLF line terminators","size":7537,"md5":"d4c43a9933eead55d6a53e488f9bc8c6","sha1":"6debbda2670d44748b905c2a1b021db81b347453","sha256":"0219ff79bcdc756af368a6d26e4d8dea3f85fd70f3a959a67c095e2fadc59dd2","sha512":"ccd2c0791eb0f9fd84143dd591abc728f5efbf241478b3c01dc58a26585bde88249761852ab25275c3e64ef9b09edf2a655e7f850228c14a39eca5f6c25ab15d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает VPN.bat","filename":"Запусти если не работает VPN.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":389,"md5":"154356f0944529206519705ad79a1fbc","sha1":"c4d0c4a5aca7c383f7a6cabf12e39155d3df30be","sha256":"848b41710495c0635b53484e57db9d2e2eb694f5a8d1dd0c733873c9b44bbbab","sha512":"b962d68596cccd7f8368876eaf8204ee95086c95597b847bd70742ac4a3dd772dc4d0880c6f18ab761960aadaa8d732c9c316b689976f84379a9551cf9895ca3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает Антивирус Винды или Брандмауер.bat","filename":"Запусти если не работает Антивирус Винды или Брандмауер.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with very long lines (522), with CRLF line terminators","size":9662,"md5":"f9b7531717b97849d7c3cf09c733f322","sha1":"5a3611a143a0b4b5f58c6f30b651d6fd98ef4c00","sha256":"c5e6f35b837474e61c0db4f781912104eab21dafe3660094c22fdbc8c3a14a27","sha512":"b0edf7d2124682e138e9b7b91c12a40964d202964270d7ff82e4014007c21c61a1976ce1041aed8dbf7df6f1bfeafafccf9d3e6cc2e2b3eb30bfd54d54fb7bc9","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Запусти если не работает Антивирус Винды или Брандмауер.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Запусти если не работает буфер WIN + V.bat","filename":"Запусти если не работает буфер WIN + V.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":467,"md5":"4adc3833909968a654871cd9703a68e1","sha1":"5a493facad0bbd9d8a52be8ba35d28b502dbe1c3","sha256":"c9f8b857d3f054a4a1c936b50a955a9968396d5d683089a1e3557ba867e32ed2","sha512":"232afd069fb3054237d83ea0c21ad7c2b4bd6971f796730ea3a6f91d2a880f6cfe6495c30e3257c3c8ffb4e4296736566a86dbe07638ddf454492fe044b66de5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает дефрагментация.bat","filename":"Запусти если не работает дефрагментация.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":390,"md5":"b138f2f95698f0a1f8dc6c2d7c21d016","sha1":"ebeddf7f1febc388ee43fbaa8fd6ac875227bcd2","sha256":"924513b256ce9f2eaaa23951b4f615f0ce8048356deca294766f5a8f45af7dad","sha512":"04185cb21e85060e4503b454c8d725274986937fecd451265bc6e8f5cbe92efa25916cada61998aee5ad4e35ae6dfd1d1f0943ce56dbc050af127667ecbd4697","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает или не устанавливается панель Nvidia.bat","filename":"Запусти если не работает или не устанавливается панель Nvidia.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with very long lines (522), with CRLF line terminators","size":7876,"md5":"d748e40e11962d21030c92881ceeaea7","sha1":"ab1a7b636fde79c2fa6ed1c06278bb2fd3c4676b","sha256":"c3dc258090f98375a53680aa1b9f3a02b05b104b46cba6868d863871ac640562","sha512":"310c941267fc77ba6682fa6a167f95df7f1c383c6f8f061754be5d40f9cf1b0dc6991e859c0d015bc7d06836f38d9d6feff70d451010a71d56935733ee4356d8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает принтер.bat","filename":"Запусти если не работает принтер.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":896,"md5":"ca860f06948896b8e61b2649c34af9d3","sha1":"9b07b2265d95b9aa3eca8d535e41bcb2b9745a2c","sha256":"72cfd1dedcc72139077529cd16e554b6e393dcfff67d711226b222787f5c07d5","sha512":"d22fe668db328ae547a616c0981a1e52b54905e63ec6cce9f4716c01477215faddc08db70972cd5524f471fd96c8e9f002b7b8024f23f3d00ce2324ad5e544ac","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работает Управление дисками.bat","filename":"Запусти если не работает Управление дисками.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":902,"md5":"d31c0104078197c090fa3861224cddd4","sha1":"4cc34b30a976a2b9ae7888190f07f083ab46240c","sha256":"9253af6dc0cc8f198bac022d995b6097de4577bee445200a67854513014a2876","sha512":"4d4488e24e47093a83c200e313a9618740fabb3c7280c72a5a36b6392b36e1fac88c1e568170554d24470bb465f29babfd9ac81b7bee8e5d06de9a121b27df83","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работают скрипты.bat","filename":"Запусти если не работают скрипты.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":396,"md5":"0cec604fa8680fd5511a5a9950eeafeb","sha1":"2c3323ed797c2b6868e834c0c84db3cca87f7624","sha256":"fb60cc145f6925f646fac6c251d8aecec48241fce27e28688fb8704432894b24","sha512":"f1ecf0cffc4cddb43ca58ba057f9b481d29a78e8a28b5c3cc11c2ed55d6db0bec1e7bf4e4593598c9317a8ce62b7f201b2917981754fce6484ce6904dcb05ff4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если не работают уведомления.bat","filename":"Запусти если не работают уведомления.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1939,"md5":"8cda9899432a21d84bc20289b0a76a0b","sha1":"aac5bf1fc0dbd46be68f91770aafa0d0abd39ff4","sha256":"e96be333285963a5f17715dbc4e578cd12dc4d46656877b857e019d914d99c83","sha512":"bd03769e1df55055142ab1f16ad317bcb49f10316e60e4427a9a2e8cdbbe162852e0ed7efadbbbc6aabd8145e00bdc99c9138647faa9a1082c3226a60067d93b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если поменялся интерфейс окон W7.bat","filename":"Запусти если поменялся интерфейс окон W7.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":352,"md5":"2f7d178ff4f96a55614f29467f151638","sha1":"f5e9fef65a9f237b7359d2febfd097c5f552cdef","sha256":"51504a991e8135653d2ab8d08e20b1a132874bc8db3fd61fc1aa54762deb4ecf","sha512":"3db3dbfb6c8e050ab53cf653aa51ba302cf6801a99c90d8dfeb865c500328b2fee044f8d64d07aa62fc3c07442edeadca262d8ea153a57a1231cd47c5c6bc54e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если пропала иконка Сети - Нельзя зайти в поиск по Wi-Fi.bat","filename":"Запусти если пропала иконка Сети - Нельзя зайти в поиск по Wi-Fi.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":415,"md5":"86ea5572535bfffc371a4f378e696740","sha1":"716be9be22db99638a5fb33cb5812b94e61f80e9","sha256":"c423c95dfa61b16dc9460c54d0552fe35f068a89973879e2425853f918b2deac","sha512":"ef9641413d355708e579d74b82cb64f48d52f542fbca88952c46faafdceab79bd996b3a1d609283b5cd50c5ebe71c5553ea6fa4e9c83b31078e916a0430a0623","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если просел ФПС на AMD.bat","filename":"Запусти если просел ФПС на AMD.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":522,"md5":"4af2d8905a3d28a019e81cab91bcff79","sha1":"49252bd7352f6ce5a08a6537e139b40d772a79d6","sha256":"0b64a64d9393090e9b40825d7128ab4dde72b6db6e6a3dbf1655da43f67290b8","sha512":"9d3fbfaca82d860d93e08d54107b135de04824c821993ac4882794bc234ea57f9039e907aceb6d70d5ace78a2e5d6aaafce93c9eaaac8fb8e1613ab8ba1484c3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если просел ФПС, скачет вар на слабых ПК.ps1","filename":"Запусти если просел ФПС, скачет вар на слабых ПК.ps1","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"Non-ISO extended-ASCII text, with CRLF line terminators","size":5707,"md5":"8a6d050a3732c6b2861cc10cf6804eeb","sha1":"fc212105ecde5ec52579e1f6a094638c88c405f1","sha256":"c75646d1b10ba6f7f40327ec39d245a014b2195144289d511f27eeb3059c361a","sha512":"210e69676d3fbab0ecc07f31f443ebecaa6310281f67f6b06da4c89c71270b30abab4a1025af8ce6e6e61590f5b0e776c5e57b9b95bab16f6973c94343df8a9e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если слетают драйвера после перезагрузки.bat","filename":"Запусти если слетают драйвера после перезагрузки.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":1627,"md5":"33ca60be979764bda8f5f06a26c7e4ac","sha1":"ee08b6ce40c12ddff4b176b0c272e3111d719141","sha256":"a62050b86d468f3edcb2e8534721c0ecf174c668ee86f71ebd5eee02326ffcba","sha512":"44d26fbf35ea6deb9ab52a9d802ce46fe97cbe058cd3410fb843424161fe75e938b8288bc6baeba8731122465d8c5f044e3743742f4d48399d20f14710f9930a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Запусти если хочешь вернуть функционал горячих клавиш громкости.bat","filename":"Запусти если хочешь вернуть функционал горячих клавиш громкости.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":353,"md5":"5aaeb28182c54391fe8f613731ab9ada","sha1":"e5101d6a1f33f6ded7efa2244e460ff1aade40d3","sha256":"b85142359717bdf85c12fb3110980118e8cd1b98043398e6c6e8b26799d32713","sha512":"91503c9321b487d7dc2a7b965f6eb8f1882b405307e77f18f35f98630cd76a5df6e63a6185d7965033798b2f74d9f5f85891640cb42f2dd3bcfcb1f318adc513","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Игровые платформы/Battle.net.bat","filename":"Battle.net.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":156,"md5":"b352865ec13b45d31e119e24f738c075","sha1":"29f7da54b75b58073b4bbf5c34a11278e2a89361","sha256":"9303f7d02b21838268f89253961401eafc70f5522ba81b111b33b2028bef97a6","sha512":"14064be019e60974191760617f2ff3e426255b5b248058f20c93bdcdda9d8147587e24793dea92c22db26103ace3aabb58a28d42a130f58536ead816f29b387e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Игровые платформы/Epic Games Launcher.bat","filename":"Epic Games Launcher.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":179,"md5":"ce2525ee8c29f051d73d17170f151eb3","sha1":"4e2171c782990712ea28ca2c497d65deb7d649cc","sha256":"2540e8f89bb12596a3bc5c0f6fa3cae023d2cb4b41846a1f833bf64c5e808ed7","sha512":"de514051af617318389c57e6b8a05ec0cd6620a106c19385857ee5c1b31cd6cd4a54eb127e95614a4194bbb1e10a875e8f39563242ebc2549b5faae7f679d4a9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Игровые платформы/Origin.bat","filename":"Origin.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":143,"md5":"2c4af43ee9f80ace66b5329342a3b96a","sha1":"2ece053933d7b03efab15e9185b433eb5cfdbf83","sha256":"ceea5f1354a0b0128e62d87ae916b07faa52aa8e5077306b1d212a4ae58c28b3","sha512":"0cc210d8698160c74b10c0b549bf38d4202ecc3be8deb5602da5ffdf00408e4c040269f01b9f71326f1a76d96e55e129e431664b054ba5788066484945e45c34","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Игровые платформы/Steam.bat","filename":"Steam.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":111,"md5":"d42527c2129a842dc80d2c127bd75d77","sha1":"33ae5a39a4be9d132f5b661da6b0e0eff3dce4b6","sha256":"8a4908185aca3848aedc62decf287a5877313c84e26a85de5ccc49e76116b11b","sha512":"db4b61fba074cb86ac8b0b731b8a2f9119c4c73f3110b837c7843b1119477f670cef86aa302c8c3eeae56f323c7f66a16dc91dcb25415cf78efda956dbe01532","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Игровые платформы/Ubisoft Connect.bat","filename":"Ubisoft Connect.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":138,"md5":"8d0d68f7b8f61d7feee13305c01debfc","sha1":"7aa3667cd14e3d8fc3763c5e539d099d6833e66f","sha256":"059a55fd59162b1e54a605b0196576a3ac3148349d6b5af79717a6bc2a096327","sha512":"e121604a1b62e135d0127980f4fee8585f7c195ee4ebd1ea9f23c348ec794a8f2f41773a26b2f10a779ad5bd9b3a007d9be7093cd7b0492b2a31626cd7e21061","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Импортировать копию реестра от studfile.net.bat","filename":"Импортировать копию реестра от studfile.net.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":228,"md5":"2d6385d7b5b326aab0d5f46ce4898bb7","sha1":"373b2747f99209b9427bfae50b0456c63fa86300","sha256":"262fbbf8a6ba3ee4ef370f9ef8884ef003f96a0a59c8fa4468f66b2742ad3b84","sha512":"bb12741487037354c44b752c33a171da5337a41fa3e873c4a0c09ace265b7cb5072d742f273a20ae9b05d768defbc7210997e89750a86db1fb6a60f38d8c61fc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Командная строка на Рабочем столе.bat","filename":"Командная строка на Рабочем столе.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":631,"md5":"1e0c43bbd4e69c6a5f837e0add506d4c","sha1":"749f0395f5283353158080b53e2208806b54b513","sha256":"45bb7b6ce29d6ceac6855c03fa0078ca6215c2a1cb5f4b1e0584cb6f50655314","sha512":"620c6aeb3c393e77bb03fbbe1f9eaa8402f7dea08cef730f37dcbc58125e778aa6eea57bdd707414fdd5740ce68d7120c3486529e575f3c2d43b02c39ad3f362","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Командная строка на Рабочем столе.reg","filename":"Командная строка на Рабочем столе.reg","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"Windows Registry text (Win2K or above)","size":229,"md5":"ef0229650538a706b5e64ebf0828a913","sha1":"64010531b8499dabe40b0f816aba57fdd3bffd55","sha256":"0f823ac63b165e66f0493836410aa49971a5f73cafa70837e14b04b12678ce3f","sha512":"eab1b799ae964091090f11e494960fcd1cf6575eaf14df20ec896e19f9d7511f0eac1887fca8745a0db8efc90dab79a73f7bffe6dc4ed34cab3247dd353ccfcc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Стать владельцем и получить полный доступ - Shift.bat","filename":"Стать владельцем и получить полный доступ - Shift.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":3463,"md5":"d4fac570bcb3bd34b04dac9dcf93096c","sha1":"bfac1fa695fa2205a5b8cc077509040d62519a6f","sha256":"38efb38c23326a2d44626fdde57e2c860ae53270b762ccb7ed1ee20444f1b989","sha512":"e32833e1af8ab91a45e07ec6a7b147eab6e82e2fdc151bf04936deb67cbf4d47cab24a4d0f901c269b0572aaacca6f1ba8cbfc0450a5743240264fcf3e7f3ecf","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Стать владельцем и получить полный доступ - Shift.reg","filename":"Стать владельцем и получить полный доступ - Shift.reg","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"Windows Registry text (Win2K or above)","size":1730,"md5":"6e6e6c0ebdd800fe7b8d69092fc1d987","sha1":"8adb0f703bd8a6d97e89b103b07562540e61590d","sha256":"d3075b1ea533b83b71e944f59d437888ef63b024f0143f9f39cfa438eb6832f9","sha512":"b2bcec6b4f97933eae24a99fb843966bbffcb83e9b8a1467685a54d25c7215adce8827fd7b5d06a6b1edb6ac1036a3eab8740236e449086f2a46186a59771269","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Стать владельцем и получить полный доступ.bat","filename":"Стать владельцем и получить полный доступ.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":3106,"md5":"3759eeeeee2ad992b389d6a1596f5dcc","sha1":"792b64641af32e3291f4b010cc784668eed26a8e","sha256":"4072458be578a5d4ed3434b89fb4940da90f279afbaa9084cc2bbfc089d2794a","sha512":"d48e45dc4594ab85ac941f0f8a4705b802ed03ebb3bea5ddf814f5565d0df1b5a238e509ec4e2b1a4a186887b94e7bd9bfa5119f37760fe8d71127adbe962a9a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Стать владельцем и получить полный доступ.reg","filename":"Стать владельцем и получить полный доступ.reg","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"Windows Registry text (Win2K or above)","size":1670,"md5":"e7cb13b71c807f956338fa5cc17c3299","sha1":"164d0354f50e0d0381b9c7337725c1234f288d25","sha256":"9fc4a505f6f52a49696d6f5e923bd97b53816c88dc80a0740e1a8b7574df540b","sha512":"9e841fd5b0efcba3e308514304dda5fe077ce21f2644b7434c1d7a599e3850d3a76cc358f5de28e8cc2af5bebddd6e458d58b1d271034a859161d0ff1b7f10b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Удалить командная строку на Рабочем столе.bat","filename":"Удалить командная строку на Рабочем столе.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":56,"md5":"5fc37bfa973cab267ad58eb31c140c3a","sha1":"da6d8fe5b6fa954a6d3289cfcbf73d0448c49770","sha256":"3cde47dabc62d9659d7a7381be0fc2421d00b43f89ff914fd33e46dfe81d4ae3","sha512":"45e7023e6c5f39973e737126c64eab9f3e44aba44a59d6be6466c96bf9e06b87f3a7cccd44e8c462669fcac9abcfe45ff4e770ae0f6cd73db79097233fd65fdb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Удалить командная строку на Рабочем столе.reg","filename":"Удалить командная строку на Рабочем столе.reg","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"Windows Registry text (Win2K or above)","size":90,"md5":"d4814aefbe2603bc9aa6a1f4ad69734f","sha1":"583c72e82c857b75cf29ea3d391332c966197c9c","sha256":"0b1c48c453368ad3ca6e628436ca029c6ae111dfc4895ab14f70be49c8b380cd","sha512":"b69b2b50ffbf68c3f9f3216e9a30d5805fdcc87e89c2936a086d5e2ed00786a595bafe4965b60f855f8d908dcc88ba9edad6ddd030dd297f155b68eb5ba654b1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Удалить содержимое папки - Shift.bat","filename":"Удалить содержимое папки - Shift.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":764,"md5":"670d8cc613d12201fc5e0f9d7f36f579","sha1":"d05e2fc548462f60e13356554c0f9025235f2a41","sha256":"ff107be462aca3a005c1e43991680311102f3579b6e91983b67dbe37740d19d7","sha512":"b81ca7dab4e9b1f2f4ad1b47145cf64a0bbe5ad8158616b4c471d57c5f9d74baea884983b96d537ec83b741e2f0d3b077777275aec329feb694d0b8ffa39c2c6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Удалить содержимое папки - Shift.reg","filename":"Удалить содержимое папки - Shift.reg","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"Windows Registry text (Win2K or above)","size":321,"md5":"211b12b8b524b91a179e2305e2b367e8","sha1":"8cdc37b3712aeb429e4acce39d384d48e920477f","sha256":"a356f400e1f319472eee96bfc449f93196b72b977fa2192fa619c25ce695fee0","sha512":"bf2d0aa9c3e2a24a425911ee79feafbf1267ecf30759691e840a4f567c78327645348fcd8fcf3b0276c57216a5aa656253448fe94ed214edc33f359569c85b7a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Удалить содержимое папки.bat","filename":"Удалить содержимое папки.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":662,"md5":"19756eb912d513d13dcae0f9fd52e93d","sha1":"072b4ad3243ee1d6c5b1ec27c402e5519bfc5803","sha256":"8486edf6ff75d392234c63841a743a94024a59c6e3c46aa92ffa5a494de049e6","sha512":"f670ea6fceb4b5cec80ff04b8c1335a0b14de0cfb3fc6c6356ab42fbdf8040d9e546d63b25c3f1b4a7a4c3f194921594bef187be76d5639f5e05bfed560d7748","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Контекстное меню/Удалить содержимое папки.reg","filename":"Удалить содержимое папки.reg","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"Windows Registry text (Win2K or above)","size":306,"md5":"610ffcde36e5df49b6fa169c64d73825","sha1":"11577ae6d893dd0f22bea1233117524643d5a21c","sha256":"16e93084a30ff0fd03ac874cac3b8eda4b778da5a289413f6dd41478134a5679","sha512":"6f31463b81c45ac5151fb2fb3489f14a6a905c1b7d39e1197da488810dcc7efc667078baa5c1d2e8652fc0cbaf44763223d4c39390503716098258975d27cc15","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Максимальная производительность.bat","filename":"Максимальная производительность.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with no line terminators","size":84,"md5":"382d7276a825f97139b5bd72814594d9","sha1":"f0bc0016295fbfc4a08f56d5929d76c8425736f1","sha256":"e3499c0b80860d2f014796c9316d8c0a6bc1894c6b5988f85ea0186e265e772e","sha512":"5e90da1fc9ecea159bdddaf3df51abef79c40710a838cb0752efa2bdaae800c8d827af345bbf41ea5be9d8658c68eb4b5c3b2e6095e310bbbb923f99f7292379","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Обновить All Tweaker.bat","filename":"Обновить All Tweaker.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":100,"md5":"da7cfe66ea1de3f56104c9785d670adb","sha1":"43aa3d7d39bb5dcfd8e7e3e593645480d9c941d5","sha256":"370ec002e9c02055d24c7629d212579e0779ab57138ce46fa7c89b48db1f7725","sha512":"588f10d8a267000710d5cb904c2f4dcd3e81f4cf3ee3708aa6ab95067c97ca2853ddc1423e068851c28ba823d965c14c8840fbfcccfa06bcb8552373d9083456","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Обновить Windows без перезагрузки.bat","filename":"Обновить Windows без перезагрузки.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":874,"md5":"2aa2875776a0f953050348d30f75077d","sha1":"9290e61fdc0c94e19f7f5e8d56c75d9d495dbb90","sha256":"cdbdc16811d340b30d84c6c2a9f419764804b741b9522d9fd254648a2b74f547","sha512":"a61e0a14c89b15dd28e099f35161c9c9a45515fbd50881fa4f2d736a1c313b1cc7b780674060cd806e30bcfe49b6fe5f4b17912c00dcbfb17a128c68919e983f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Обновить и перезагрузить Windows.bat","filename":"Обновить и перезагрузить Windows.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":92,"md5":"b6f521c7ff3f4459c3896b2591fa5910","sha1":"816786110a7837af9359a96f5b8e0e20828723fb","sha256":"eb5c6f97e1c5fc9ee93b3893602263af41e22a096563234b35874e4d05159446","sha512":"3574988fe69b2c743cc3687ec0f4ad84093332664283254bed9e15af369e2a1b6bfead1fcc34b73c45ad241d55e48869b5b8160b6f2ed3c8e17d3a0ba5c0fffe","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Обновление Windows - получать только непосредственно от Microsoft.bat","filename":"Обновление Windows - получать только непосредственно от Microsoft.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":241,"md5":"28d2c1b2be3bd3140162ed1eab5c5e2c","sha1":"098f88d0379aa8b69947ca14f8f13163d571b8a8","sha256":"bb2824d708a624e6ea3c3a99edb823cd1220ab72033b9ce9a33bf317b2e82657","sha512":"74971b36abb9645c7f456eaf6b2914c86997bb46142cc4f22942ce3dc1460adaea0ed8cde076c271a1605ec8f729d664c062868873ab14fd59317549196d35bf","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Обычная перезагрузка в Безопасный режим.vbs","filename":"Обычная перезагрузка в Безопасный режим.vbs","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":376,"md5":"d7530fec60e49472f12d62fc17d46513","sha1":"c8d7ff8c44e03a185041dc69d421c551e50ca19d","sha256":"ab01e29e927adebbb6acac122450f94654b1c2b52fc6fc076a8f362a4f617cab","sha512":"bacc7d2879a28e07b8373e5774a123bee58ace33859b288e663c38a26086f0c9afdd8eefce9aa8fbd29facda47e2b3b3ca154b2b761baa994800753278880a3a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Обычная перезагрузка.vbs","filename":"Обычная перезагрузка.vbs","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":376,"md5":"733965904be0fba6002e707604c3c745","sha1":"d30f9ee39002a00ddf0b6111fb0828e30b96c6f0","sha256":"c214274a55cde5f1d0671002afc21cf13df8655c00d098f2976a80a63ba98c01","sha512":"5aba3295109966cef413797f89471455ecb8ec17504bf896caf8425dd3feac290f9656acf4f660f0f698f72322df016a0a74853a253e10fed0935c0d1cdc1e13","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Включить зарезервированное хранилище.bat","filename":"Включить зарезервированное хранилище.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":57,"md5":"3dede5bf537154d8e14f5c935f9faea5","sha1":"0d2b8316e0d6513fb61cd010305b76832f4999a9","sha256":"31dc442b1a69a24ecc02a185eaaaa3ed6fb46bbd0cdf975cfe81f1092a1af418","sha512":"ef4cefd232eefa14fcae91fcafc6160cac4deaefcd6deec0a93548d9c4c65a6f6c2cfde0ff273c074bd2364eb68d69ea96b5ededb1201dd145a662c715b19f28","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Включить файл гибернации.bat","filename":"Включить файл гибернации.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":14,"md5":"e87f746bae91daa613bd76d1f8c703fc","sha1":"9a029df977bb91a89e5487df136f46a60733f2d8","sha256":"9e1fd6bcb358b42e6133843be3993206f9a5a75d90cc8262c7de8151fa132226","sha512":"cc7cffbf53ed62672f5316372154a179f0fa0d9bd8cef69a57e734020eb83857594a251e62602c20b3df5e5dd093d6251ce84dd9e4a979fe96c808c4560747e7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Отключить зарезервированное хранилище.bat","filename":"Отключить зарезервированное хранилище.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":54,"md5":"74312f38dead36c4ee9398f6df976533","sha1":"90cee772f4e57ef08817a36e774c8e50e7f1f9b5","sha256":"6d7bbcb7c0ac67861c59c6e8828275a4ee9cb9a1c1b2778c8c6f67229ba49082","sha512":"2e309a0d8c3af917c921fc31cb85b5a3f3679a450cf55608f728c82dae7b1b488f65d50e5a85824bda47a4ef31867fdafdf7e743b5c7b72b07b787eb20d49a6c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Отключить файл гибернации.bat","filename":"Отключить файл гибернации.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with no line terminators","size":15,"md5":"ef0a8f7a49e074ecbf431d2caa329fda","sha1":"18b5f10684e438aa68a8c25a60f019660273c096","sha256":"55732a43ae77495784606d8f5c5ca39b074d540a50a1ebd60db79635f50a6173","sha512":"04c2394eb24f2b0f657e46b3aeb4c4f506736cf1caed113752ba7fa9f164048ec0975d9229905e45e9d5ea2d9f3a3443017e8e5e8c51796df3ef3f84b686c9d0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Стандартное мерцание курсора.bat","filename":"Стандартное мерцание курсора.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":363,"md5":"e562ae4a4d4cdbc28b1bf13db2b2483a","sha1":"3d928e4fd0b7e36292d25634dce2b638b9fd8641","sha256":"aa4edc3a4c0dcacc4c4b48f75522027f74b1bffd67b760dfedaac09f541021fb","sha512":"c44ef47e5ba5885e6e9b93f7b65ae0995427eac4ffc47ee85951f9553ac9215e96f70ffff16abe4229dce587cf878ca5f697dccee90cab24c9439568ea44fa3c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Ускорение частоты мерцания курсора.bat","filename":"Ускорение частоты мерцания курсора.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":363,"md5":"c1877a48223de2e288d2876a9025c9e4","sha1":"df99c6b9cf3bfbc90b015f3242e8d1f076336b5e","sha256":"8469418ad1ffcf3b56d745356329e7cb6bfb70f8c747f8af8c4533ec1d245c87","sha512":"23c4c9c25ed117931d27aef8aa45763b143c358c74443c003624aa19e7f550f1a669dce8f8fcd58f668138e992717dbd19a244764d3bf30bd4cb8d1867c7a3a1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация MartyFiles/Ускорить запуск Windows.bat","filename":"Ускорить запуск Windows.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":406,"md5":"f102e15f3a3e938c4118969c3bd82e1a","sha1":"f1273b3d893b7cc7e1903ae21ac957c86e84053c","sha256":"bbaaa155bf97613a59df91de7821473bbe40cf1082069e47920006695a38250a","sha512":"c593d02d8194b5fc2f5cd9436b9a0dc4c66774b38521ad30e8129717c5b2ca604e55403daac7c7d49f9dea383bdab5a152d5b30c03413e4ee6cbbca6fdabee1c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Cleanup/Delete Log Files.cmd","filename":"Delete Log Files.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":51,"md5":"fe6269312a5acb279c81fd4e9c07706b","sha1":"61fd269f2fe171ec3a1351105a4d55de88d322b9","sha256":"263796601565da182d06a1ceefde01a91f81dbf698fb2f2fe82f5ef2a858c643","sha512":"6fdbaed31112138769e146e633be3074505a9905e05c8d4646e10e576cd89774503b678cf3b2fff3600bc03329c682d0dea408830eae569459c1621446dc0add","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Cleanup/Delete Temporary Files.cmd","filename":"Delete Temporary Files.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":276,"md5":"28f482a3a59bd431e6437c4e3b24331f","sha1":"083b5214ba0099e1d952990dd2ceb9cb755216e2","sha256":"036d70f53708ed49388f07d0d3f8eda85fbad9ee025c50e6719a331348f9238c","sha512":"6c291b9ebffe281a5d14a16b2ded4178f7f33c5f4b4eb35680cd9587a072e33e7ce64a4a3868a63e4314e6c4023d6db2f2996392070e7ddd98f1c572eac53b26","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Cleanup/Delete Windows Update Cache.cmd","filename":"Delete Windows Update Cache.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":156,"md5":"3fff6672caa88aa36c2f678172763297","sha1":"8fa103c8f3f1b856c60618f52bf67a997daefccf","sha256":"d8db1819aa1cc8f7de051b87ba63f1ffc6f9abdb87f663ab4ea38fccade67e8f","sha512":"d208d92e6df879b60de0415354b68a7f09d7e91382d109352de05e310fe525a58fa08e9557e5ce9c8f0b2d53cbd377541d4b3ca44a71cd6005a9d9e0a5c02793","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Cleanup/desktop.ini","filename":"desktop.ini","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"Windows desktop.ini","size":73,"md5":"04d10bd743d7bcfdb7e1649135965e67","sha1":"4e6b69c05e31ae2248cd6511b7876e786ccbefc7","sha256":"a077b087a9eeef06700cad8b73d5e16bd4889a516dffc5226562c1f190d79390","sha512":"50fea3b444d23e4b097e9dc5fb0aa12533c51e657f4aeefad931e666f78d4366899507349ff6c4370423678614d4e7759b3ab84effff85943678b9bb7cfad78d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Cleanup/dfrgui.lnk","filename":"dfrgui.lnk","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"MS Windows shortcut, Has Description string, Has Working directory, Icon number=0, ctime=Mon Jan  1 00:00:00 1601, mtime=Mon Jan  1 00:00:00 1601, atime=Mon Jan  1 00:00:00 1601, length=0, window=hide","size":1158,"md5":"984017c5e100f7245d3508df5f8c5adf","sha1":"dfd361c597cb72008eafe3f55b95a9d59aaaa51f","sha256":"da4598c4c25b914e5f17432c0fe17a00ed74b55d66cfd48289edb2a85c935853","sha512":"bd49be6cd22bd9bca387f57e91ce44c6a25a348ec5eb57203dc346299e527442d2949c22bb13331e9620c17a5c9f2fe9fca1f07638737cdd8a9f4121456af44b","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable artefacts in shortcut (LNK) files.","trigger":"tweaks/Оптимизация от qqnwr/Cleanup/dfrgui.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies executable artefacts in shortcut (LNK) files.","fingerprint":"f169fab39da34f827cdff5ee022374f7c1cc0b171da9c2bb718d8fee9657d7a3","first_imported":"2021-12-30","id":"3SSZmnnXU0l4qoc9wubdhN","last_modified":"2021-12-30","rule":"EXE_in_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}}]}},{"path":"tweaks/Оптимизация от qqnwr/Cleanup/Disk Clean-Up.lnk","filename":"Disk Clean-Up.lnk","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"MS Windows shortcut, Item id list present, Points to a file or directory, Has Working directory, Archive, ctime=Fri Sep 29 13:41:40 2017, mtime=Sun Aug 30 23:57:34 2020, atime=Fri Sep 29 13:41:40 2017, length=219648, window=hide","size":1275,"md5":"8172d2831d0d58778c97ef7714c1751c","sha1":"24f1624cc6f54985b0a3f0316aa5765dc7b0f33c","sha256":"d72a9f657775c40069585a6e618aa184ecacac785280e55da2579a056e8ccbfc","sha512":"db74d62efe16f25d7d9754901006ff6edb33676966b6bc66e95a0cd52bf1fe1c179153673b1ae82a055c66568ecc6bd3796037cdcf85573a813458952ffbe460","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable artefacts in shortcut (LNK) files.","trigger":"tweaks/Оптимизация от qqnwr/Cleanup/Disk Clean-Up.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies executable artefacts in shortcut (LNK) files.","fingerprint":"f169fab39da34f827cdff5ee022374f7c1cc0b171da9c2bb718d8fee9657d7a3","first_imported":"2021-12-30","id":"3SSZmnnXU0l4qoc9wubdhN","last_modified":"2021-12-30","rule":"EXE_in_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}}]}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/3. Remove Power Saving Features On USB Devices.bat","filename":"3. Remove Power Saving Features On USB Devices.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":1180,"md5":"adc3a53e44dad373d8ae93fac28b99c3","sha1":"51c1a3a4cc7929ab97cdfb2b2163ae23855748f0","sha256":"120380d12209ab864d70f7db009d5e73dc4d7572f3a117b3186ffa8e1a3dadf1","sha512":"8528be3e7dc11f7544bf1d7ca3cb5db1b79d747f380b75e9374d7a94047aacf78b636fb5e268a85fe9b0515ada41eb1cc2824ab394696e4a30aa7e7e839c9165","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/4 Disable Memory Compression.cmd","filename":"4 Disable Memory Compression.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":65,"md5":"a64d3a4c1d61344273de4e3f2dd3b652","sha1":"245859a286db226f15a0c8c51c9b71f31ea1b79a","sha256":"6f4b8912c0f77f2e589e8fed98246680bdd01a442f91729ce15ee812b8f4d50e","sha512":"e564799596d11b71590569f8c7b31fe7446cabc2dc6bc423308edf7ad2fcb74cbc621891cc594a6b2ebc8320600d0ca2530e92042477246914c55f369d2856cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/6 Turn Off Auto Windows Updates.cmd","filename":"6 Turn Off Auto Windows Updates.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":839,"md5":"74e1ce6469babf8255f96a244d0d07b3","sha1":"58e16af379de9bc96e98f8ba08272f4522690ce5","sha256":"23e3fd9ae063cae3c4722c97ac7945b455729fab1d90e7cb1ceff9b7356ec21c","sha512":"360c59ab96edb47540db74104482e1de7238db56b59fadd62c996b3e852ad90f9f348486fd109ed699c3911d13f16d78a8c3afca2e59517091c9c64c790ebce2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/Disable HIPM _ DIPM, HDD Parking.bat","filename":"Disable HIPM _ DIPM, HDD Parking.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":599,"md5":"3d42a1761e2d0acca609626228706d2d","sha1":"03c4ec827c37a3930d8541eed0fc6fd6763d59e7","sha256":"ddd7bab4cfe8ddde80628e8513ad9caab5d0a08bb858a0730bc9f8fea7bc3358","sha512":"eec61727062e20b091560eb1ca1d8fd245f60d837b114054e01d2048859a060de49d8db13334899d1a25cc8314ee9bf3dfe690e6ad3fba7f396b8f7cb8b184ce","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/Disable IoLatencyCap.bat","filename":"Disable IoLatencyCap.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":497,"md5":"276f547ecaf945b1e74d05bb42351614","sha1":"31bc9618c67f38e6ac42330ff6b7f8d37848b919","sha256":"2bdd7f228d308ba930e06b436d0523d3a4cec248c7ae692045e92153a99ff683","sha512":"ab4ad5102e6ef02f8673441ee98add0e5a2c5702ab8ea30df9a181c6b0f200a359ea45f1f297066e9c40a155b92c2c3ed06780e0ee4ae16805f104ce813b1958","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/Disable StorPort Idle.bat","filename":"Disable StorPort Idle.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":190,"md5":"3748031aa41d22cb2a13acf467322463","sha1":"1b449c976bd74e12ec2f225146338415f325a13c","sha256":"15b36ea42bbd1692172c7c4e87b9f45e5de5431523da27fa2c43cfa853a735d5","sha512":"4925a9583ce95526806dc9a085842317884e2f1598826d35acbe573664bbd3431bbb3f0894ebb72a159ca2fe3b1eb4f1f7224447ca4121588067138decff6de2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/Disable USB Idle.bat","filename":"Disable USB Idle.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"ASCII text, with CRLF line terminators","size":843,"md5":"8c943666e3610881a893599b91c2c437","sha1":"d101c21a9bc60bb60ddc8864ae6344b10e1323cb","sha256":"a0b8e7dad496ce34017845a161fad3e0e82d18f6478132335bdd8138941fc1d7","sha512":"8cb5e55357bc1789578818c8fe192a6461934790761fe74cb92dc5fcba4829b4419d70fe97e65109e883eecca1ddff6b4dc33cf1f46f1e6f95e33804ce2e46cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/FSE and Game Bar off.bat","filename":"FSE and Game Bar off.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1729,"md5":"4ba02c9f38bcf7472e7d20d01edb9035","sha1":"9500b831a16501ec0f3e8d5024e55d6a413b6574","sha256":"cfa8fc9f9495eff7055bf09b553a8ec2af446a2d32f018d48aec70839fed7d9c","sha512":"a5a13d1195a19411c918d3fc907ee38ddd7b1a4a4ecc4fbee094befa87929b22c7ccb9fbf920230d4c4ae2b362f41236d32b7e2ce7599b70750a71a77cee3291","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/CMD Tweaks/Latency Tweaks.cmd","filename":"Latency Tweaks.cmd","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":239,"md5":"1eb1669c91112fab0766aeea5f4f43ef","sha1":"8068512b42fcdddb5582ff3fb4a3396a61300be6","sha256":"fb86894d253a11de0ffb86ff2895e15cd302923c05f9769b53bca0075e28b1bb","sha512":"dbb083131fd1ccec7909670339874e8c7994685a2fbdff2b9dac07aab3ef3a1b4aeb3c75b22e0fbfcc42e620919682afdec091919d58dc16bb475cf304c4d1e8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Registry Tweaks/DisablePageCombining.REG","filename":"DisablePageCombining.REG","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"Windows Registry little-endian text (Win2K or above)","size":338,"md5":"3c612884f1a3ead96a2881d1ac1ebb9a","sha1":"198b6ce0ccd29c742b7f36d585d5ed0d28bf43a8","sha256":"4d886b1cc37e7830c1c85ab34020bb63781d459e759225f12ba38ef24ce96862","sha512":"c35c6a73bcaae1a259f0949c679fe939a968c74d7d8d9fe9a6df9525c3ee39067ca8dc8d9de04d1e3c8e84da9a689ad92055d39eb332718306914f473aa2e9f8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Registry Tweaks/Paging Drivers To SSD (Disable).REG","filename":"Paging Drivers To SSD (Disable).REG","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"Windows Registry little-endian text (Win2K or above)","size":570,"md5":"bdbc10bb25d0608c4f8d5bac98f9a134","sha1":"ecf9e8ca88734a2d9d6dc76f2e6fab19a7239b9f","sha256":"511f31daa6144ff3335f18b4aaa28f6fc9984ce9adc7f3c54da0521b3856e138","sha512":"faade3fce57d82190388b974177be10a90748404fd7bf500a7aa15ef2321f87ab7601081e43367f042e01e8c84cb9058750a6ce39298958c12b7f9e416a51037","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Unwanted Services/# Revert Folder/Отменить - Отключить нежелательных служб от Adamx.bat","filename":"Отменить - Отключить нежелательных служб от Adamx.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"Unicode text, UTF-8 text, with CRLF line terminators","size":715,"md5":"81793b4ae2b8d3bb27600ede45a6aeae","sha1":"38b184a1c25d7ba4fe7e20be8baa9a4c74732829","sha256":"82f452dcae686a62919c7e2b7bfb928388f061e47faadd4e0a3aad106202e975","sha512":"60f53e5d47068cd0602d40b613b37e3f99a4e7706c2bb6b21b17c5ff4c62c1128b7a19ab508228a09456976d887450e2ce97cb46b2d7df793523eb03f247b2d8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Unwanted Services/PowerRun.ini","filename":"PowerRun.ini","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"Unicode text, UTF-16, little-endian text, with CRLF line terminators","size":3232,"md5":"b825cf2ec2f2d8b4083475dd76bb6df8","sha1":"063f2fcc0b268927ef96e97a43e35c486beeef96","sha256":"d181ce52516f1688550b1a093661cd409a93d03a1a89a553bfa18328194c21f7","sha512":"e1fdf3f5be92d791bff8242261448b5bf6859037b2293c500b1326c57515646e2ebd9197ecb5d59aa9212e8d65eb7a2e5702c3ca7f3931230cd9ef9905f40c72","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Оптимизация от qqnwr/Unwanted Services/PowerRun.ini","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Оптимизация от qqnwr/Unwanted Services/Отключение нежелательных служб от Adamx.bat","filename":"Отключение нежелательных служб от Adamx.bat","modified":"","Modified":"2024-07-18T07:32:42Z","magic":"Unicode text, UTF-8 text, with CRLF line terminators","size":582,"md5":"cb588d2dd868a33024f87e482817e8b8","sha1":"a39f3cd4c2d742466ce338b98b733257095c5651","sha256":"16b63e49dd73078afe421d97b9dbda7ca890d35cc50a41304189571960a07b24","sha512":"7262103b3b163b81de6872632e99bd13ee76c50cdc66021ef265cec64a4cfb43ee3afe6718365f13f9fe0291c19e92ec24c71a9a5821663b94db52a78f384a69","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Clear Last Used Files and Folders.ps1","filename":"Clear Last Used Files and Folders.ps1","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":180,"md5":"5dbcb1c9b5458046db9899e080a0957c","sha1":"bf211f4d34254e05c0cb0349ad4ef45f27028359","sha256":"9d148276e7bbedfd397315815f48425d01280f13db5f3c17ca0b1c0f90d12f79","sha512":"f75f12c46b49b68e5f0b9f31d719d29d09966f50f44a98f27c1263914590ea6af2b0f749da52107f10aacbc4c478e2c6ffbfa51887649bb035bb5797821e3429","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Debloat Windows","filename":"Debloat Windows","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with very long lines (349)","size":3125,"md5":"fe027363edd3aa71c6a4ae0ecb7ceaae","sha1":"2061b9af054ca1f1903797b270439db656d54dff","sha256":"2152bdd73176e7152a02b79170fe193e0f036b91373f8781937df67247561de0","sha512":"180d0305529edfbe8b18f1627ba3a1212605c703cdd574dfb7dde020209a0fd049effa873aaa9912526501a66ae2fee5d5c9e47aee624b3962d21e6582f105af","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Disable Cortana","filename":"Disable Cortana","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":659,"md5":"6323e777a8add8e0c94bf73b29c7e493","sha1":"0a19c7a21c7f66ab97c3582fbf54c8627b9c5c19","sha256":"5f094ae62d81cd7b7a049d3193802ccf58cbdc738df285c95ff5cbb73b4876d7","sha512":"67a6c08278a06c2c2dcc24f2a2d2dae82372f9c369a82892fb2cb6f88fe4ef48a12006d530b199748fd7ad81b2aabafd59db7cabc8f0c9b18be967f78a1655f5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Disable Last Used Files and Folders View.ps1","filename":"Disable Last Used Files and Folders View.ps1","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":637,"md5":"a89cd270851a8b1ef9d645a018b1b8f7","sha1":"0e8ef7d5edba0a8ad2acca033d4a1f2199075f7f","sha256":"63a2fa69b2ad719f963ea52e573e9777eb66552ea4a618416f19745a234d13b5","sha512":"b8537608716c3b7c48820ce1456818557b032b6b5e7e421ab538131d4b8639bcdb9e796ad48f203a2b9824a803236f3b15152eeacad5e93d2feda651805817c7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Enable Cortana","filename":"Enable Cortana","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":662,"md5":"9c87d755ea8c3d89c465044a67c1d3f5","sha1":"6f6e2ce809065e33a64978dca110e14b1f6aa0cf","sha256":"3a936c1812c16b8843b55a8e48458261438da509738362827be33b9fdb44a9e3","sha512":"355ad2b64758daa22ee85f16bebac87021353d3c946d366c8a6c87d9fc87cccbfc4471053864d75795eaa80b6f3271d1a4c2988a18e565ee91ddba072b229058","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Enable Edge PDF","filename":"Enable Edge PDF","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":1137,"md5":"a0dd2989216296ab355273ed0ccff2cd","sha1":"91b10bb2a6c91bd1a39d6f0b2900d64a2c4af97b","sha256":"c7f7911e4d75fbb0579c219313f5852764e055fe0f0e7ae4577a717ea6f7886e","sha512":"d74d89e622696eb095c96f3af1f6a9540dace27a51248bd828d49775750619e246d32d35f7d0b328da1cc1808a8c8aaf83daa7ef5e3f12bcd1c79d75eebbd59b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Fix Whitelisted Apps","filename":"Fix Whitelisted Apps","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":851,"md5":"beb720e264a818ec1c8523b6de24d705","sha1":"6b4059c08b4289dc1bec0922505c72543bceb806","sha256":"f9998bfb7dc3fde2df313e7e37d22cbea956cfdd4938bc06d27752974e9c67b8","sha512":"1c60d1a007cc53478833a7525164fbe3fe70fa6b0455654ee20beda334e79c55883408bdc2b7b7aca8d6125d3b0b85ad3f4d55f66296ebb09bc526bebb095f9f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Protect Privacy","filename":"Protect Privacy","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":6183,"md5":"0204760e129c125d3b6432e3c55bfbcc","sha1":"ad7b33518d69488709d3b7718d829976b5b47564","sha256":"3c1e5367ac277eeedddfc67b0c350900f6e60251779bb8d4f5c262c4019ec42f","sha512":"0a243955f9a68c93880a084d7a8883f9885c38d85423746e4d1e06e0b4a27f8224754be790471c1018a25eaf7ecbdc896b67b6a79bbb4a675bc8f28b12f7ff6d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Remove Bloatware RegKeys","filename":"Remove Bloatware RegKeys","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":3021,"md5":"dba98a6eeda78832880bce9452fb2524","sha1":"cc56bab9082fc80abaf108385712736e1ea50ea3","sha256":"6f04f74e2f2aae8d8ae8413b514a719b9b8a68d7a1580b93d717a477f539c1d5","sha512":"e6b28f033bd5c00482ff11d8d5d8367b46d64b9975cda448e15f5b295e220c8ca329a7e9ffba1221132b1bade655bc34edee356115949ae5d8aa090118d3f7c8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Revert Changes","filename":"Revert Changes","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":5363,"md5":"5c45c8bfe0a137468c9933131f22ed6e","sha1":"ee241539e37679654b3e1a2ae867cd42eee4e134","sha256":"b346d069ce67865979dd979952e2ed148716807015038634247b810c927191dc","sha512":"d03de33688f75464d82231c7fda10e168ea9e1f0c55b9b1cc22b878d68836557d82e293cad062c334cdde889f0e933242e2ee1227b95cfbd1d5bc52c243e679b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Set Explorers LaunchTo Computer.ps1","filename":"Set Explorers LaunchTo Computer.ps1","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":372,"md5":"3919c1c974d775c4765127f2fdecfeb6","sha1":"26354b7626f90271f123a5d1ac211a926c791239","sha256":"f1028c19c2a5cbf132048a3306277434e965c5fadc8046eefe7c9f423debecf9","sha512":"a10d6b14a5932dfc6b9c4f1d94d18e8bd6cb1e255071cd0c091dd7a2d288c69dc4964025a248527ce31aed02c68c8b4fee40d1f995c2ad7d0cf3438cc5304b15","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Stop Edge PDF","filename":"Stop Edge PDF","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":1214,"md5":"09f3f884027577977c62455b0846322d","sha1":"d4fb17261030b7d75fd51ccd2922724b988be8b5","sha256":"02a5b62d5d10a47cd9f5fbcf703ac518b205aa29714ca5b970627829f6519d28","sha512":"0ae55b8cc1e8da0c6eaff2d59ac90ecdec3164e1b129c9f36bca7d5cc5841e3cd58881216d4c9aff1ab161944aa0281ddd471115dcc54b571b6f703eba08d00c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Uninstall OneDrive","filename":"Uninstall OneDrive","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":1472,"md5":"46e679e781dee63a08d02fe10d4873e2","sha1":"f4c305bd4b0b3eff86033c796d2e0f00894a9b32","sha256":"b953da06b98d28e173d4c948a8b0efcc47c709df86204b1f897b86257dc97960","sha512":"a48a8b7f2db4f42461582a577a296ea08d604f01c76ea65cf220b1c7a676f449070e71da0eb353a0d99e435219e6fb1b06b0e6e252de3ec81854f2a160a1c0f6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Individual Scripts/Unpin Start","filename":"Unpin Start","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with very long lines (323)","size":2239,"md5":"504e226ab05186cfdb1c29fc6d0d0114","sha1":"4389b0d6c6ce0d6acd91a6261bd8d358fd90f8e6","sha256":"186823f7d920b3e88e2a056ad3cd2fd0181e814cd7e6c1aa09a8d8699fedd96d","sha512":"5fd702a0459783c453d0beef86696c477894091c698e53b0c812c29e580cf354a5878408aeaa1438d34038fd7e5d83dd43034b2951f79a5699440065603b4514","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/LICENSE","filename":"LICENSE","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":1071,"md5":"cf304f6797b76bfa034add3daa2f6505","sha1":"65460b267fedc3d9988eb519e385f17c25f8e335","sha256":"17d563b2932c28c1ec5ff45c1f6e648ffb688fe6b8d59aa292ba5608e6ed9f15","sha512":"6900ebda0a50da8ca692d61f0af6455e140ec934216ba618d9d8c0e7e3106d498e10f7be3674b6a016f385a27e669b22a98d29e2d8aef8257f0f1bb4907948ef","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/README.md","filename":"README.md","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (498)","size":9866,"md5":"ee6847670bf1e67de62ed373ea019650","sha1":"bcb7fae9d449af848f447f2eebe61dc51e60e3ab","sha256":"0f17930cb435d859dae8b649a55d14ee3d176dff46ff92bab04e671463f0d40b","sha512":"8d5363bf675a417cfefc3bed83d9f262e4d614e357524125eac6269983aef155997e020e87d6161cd7386a5b22c38183c0019567c3f3c96bef8e9dda0a74801b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Windows10Debloater.ps1","filename":"Windows10Debloater.ps1","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with very long lines (323)","size":46087,"md5":"e84164b9be1944cfd7729edd01e74f28","sha1":"97577a7279440aaf78d8108a16b4c79d362be35e","sha256":"1ef65a7261688353a137f6d06911dfc259f8abe6fa3f759874f48e6bed1ab181","sha512":"1c1420116bafe49687928473858170ca409cc33f73f281a1093410a93a53e016518986434c4debd3da11a4c3d0d20a5df0348875eba9ef54e7f6b4c670eecaad","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Windows10DebloaterGUI.ps1","filename":"Windows10DebloaterGUI.ps1","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with very long lines (323)","size":76621,"md5":"649d10fa05868f4712337307884c29d1","sha1":"75c1901ce167ae9e386d2f5402346ec010bc901b","sha256":"80ebb7f0d1992a20f8710d4a75b3756615a3729c11b3eb136e5b39aacccbcdbe","sha512":"ed597db2728d339139560735cec0feece440aa12a204da023e456a44b13bd6a01f3bcef2bf847f97363b82fe7150839fcba9a3cf34427efa42fd8352f4717ea5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Windows10Debloater-master/Windows10SysPrepDebloater.ps1","filename":"Windows10SysPrepDebloater.ps1","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":13812,"md5":"3d56c588928342950272321a094cf584","sha1":"6ef95df59cec64d4cf01dafd1f57f3208f1fa365","sha256":"7c1a5b07c08cdfc24501b42c03cdd15e9044eebb1566a9615a8e851319354895","sha512":"207fde856e6ea91b3ec26d6a2d6512d184ac231a5242845a9809d611f2fcd523e4a14af947d8de8fd4c4bf203763ceab6a61425cdfb99c502febdfc0ec3a66fc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• CPU Optimization Pack/Очиститель кэша.bat","filename":"Очиститель кэша.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text","size":824,"md5":"e2fbcd78616b832508ffb6e49cf0fcca","sha1":"76c2296cc861cfd8c5705336367c343b70971a4f","sha256":"0385bb87ad46c487ab5e92b57b0a6295cf382a8eca90cf149a96c7050c2017bf","sha512":"302b5ad18d9641717396d091592cf682999004f127be97475242621b946f578ce02fdc107117e8dd4ab71ca2c7da251bd6604468f6b9a08f779acf2ac46776b6","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• CPU Optimization Pack/Очиститель кэша.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• FPS Pack/Command Tweaks/BCD Tweaks.cmd","filename":"BCD Tweaks.cmd","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":248,"md5":"1b068411e7c53932a108b2944a5f7a91","sha1":"2a48ea269e333f7111ba0094a0680a624242df4e","sha256":"472c10e6edde52f0ec5f3bcff9293cc71753dbc9314f5424957243827d69f43e","sha512":"c416ee9f086d689c69d7818d07ecb87939d10105bdca470f35e0ce89dfb2733b1091400966fcc566b23ad3e14519342a8a312f48cf9532764c8f0b44b23b34d2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• FPS Pack/Command Tweaks/Disable Process Mitigation.bat","filename":"Disable Process Mitigation.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with very long lines (1018), with CRLF line terminators","size":1150,"md5":"468a3f716d83a557f3ab4e3e894ed888","sha1":"4a77b9f7deb982c0e5323d28d0bbb8e4b6e3f121","sha256":"6b400b9de96a4d391af3e5b391970d24dca6c94adb1113f38234ae0885f2df26","sha512":"1badb9a62d1ac087e2aa870402c5b5ad901c79a5012603cd45bb0d33265a583ef707cfbcddc5979975ab548eba702c47a841e347bbf79ea3884bf8a73afdafd0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• FPS Pack/Command Tweaks/Driver Tweaks/HDD Tweak.bat","filename":"HDD Tweak.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":84,"md5":"cce47c04a9818fd63c65df0f7c6acffa","sha1":"c8fdfab04c0cba415c460cacc77897d6aefa92b6","sha256":"442e71283062e51fbda39083014950e899e06d4131c882c8165eb365b8064a1d","sha512":"d34c434242af3705b6b3f9530a3de32e3b3cc202eb2bc68bb251ccadbaee564f0719febdf97a6389c60d5bfd18c8e1e3cb5e5fc83333a10969fc64e1587f7939","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• FPS Pack/Command Tweaks/Driver Tweaks/SSD Tweak.bat","filename":"SSD Tweak.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":84,"md5":"faa46f16a6eac4c8f646a0dd1fc2cec9","sha1":"d5025357a6b0ba3636a15d970bcbcc04c4bf069e","sha256":"43141b3c348090028ff78b60b195991b5b1ecded09f4d60756408aa80f9adc96","sha512":"c54e943a23b5dbcefc729f3ffffac5836debb1d5bde9803b48f53d22c0635f06c7b15ee9fb942a436392162beff5b7514513e4de17f16f79572d39fc79752234","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• FPS Pack/Command Tweaks/Remove RuntimeBroker.bat","filename":"Remove RuntimeBroker.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":85,"md5":"e88205f876177e3df22a22b349fb443f","sha1":"4af8e739ad0ecc3185d8233d96957240fd05525f","sha256":"c17df8b2a37198f2efb8c95c921d2c9ea49ca1dc0bdb4217e99a207ebdd529ac","sha512":"faeaaf8b315105b7a3469ba39eddd700d949a4ab271ab5cf6f36a6049b95247d00804bd3d3a3e893e1598ea09f1c1887a27c6b68111e11c0b9a2e3db4e2ed86c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/increase_opengl_buffer.bat","filename":"increase_opengl_buffer.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":198,"md5":"5bd4bba5d871b1f3a5ea9ffdbbc724d4","sha1":"62a7d95058d0fb9ff52b98523573a7e5f8b406ce","sha256":"11b0655993b4c3310698bbc099d196a76598d63e33baf6da26c81d37157db28b","sha512":"5320a40a2a49cbb340fd2a3eb7209cb7a8af07ddeb48e4e7c096eceacf1f724050c6da5f46583d6624e6bedeea7e4f37e2bbe525c5ac182fe87c6b60a859ed3c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/opengl.bat","filename":"opengl.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2062,"md5":"2490531c2a383140074760b0491ca4fe","sha1":"4936c362417526284a6fa259ba730422631d46d1","sha256":"1fc66ceba41ddf759e98944364a43842878ba531e42cda0f57ea1584f42a90d7","sha512":"08febf47771d878d5883ad3c918cf6602fea1636ddda58b924d4de6a8a9c9151f2c5ef299bfcd124b933bfc9190bb61984f671166c349aa8d0437910babc89a7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/opengl2.bat","filename":"opengl2.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":104,"md5":"1bdc192db9d14738d96e138dcd322327","sha1":"ada40f2924a5b2ed6e1127e1771bd462971a663e","sha256":"13fe59da8c1c64caa7656ca36a8ac9f5b18d354c33bb6b66bbfbabce1e4ef498","sha512":"695237914e7a436153d13a314dadb0706369775a4f71f2e6db6bc6a546ed6c185b510af5260a24529586db7272f60b89aa844ed756e59f1123d0bb6cadecb4a0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/OpenGL_buffer (2).bat","filename":"OpenGL_buffer (2).bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":576,"md5":"106c8af6577d22de007f434edea0048c","sha1":"dc0f77de962fdfc53beac5aaab7d9248589a537f","sha256":"f4e7d0e3b20b8aa501d63c93ce7b2729512204325934bdc5a88554608045262b","sha512":"957bbaa60249b42bc4c0e30468cb0845fa96084652e7cf75fb26acedfda97e6b41308635396984464c48213df41796de6b1186a3bd012b7991e29fbfdea0866e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/opengl_buffer.bat","filename":"opengl_buffer.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":562,"md5":"fa7b9f4702966695b125b36405776f3a","sha1":"6ea15dcf1ed6d0f834c60e88d6c88f8adb0b2bbc","sha256":"7aa21ff198e2e971b367a8303a0572215023451e3e49e24aa47bf4af80608a9b","sha512":"4caefadedaf7ec23c8e8a2836cb356de25cee9d7dc814b2b3e5b9de189c67b9d2d04daa86b118104c7201120e56cdbb95397515f5db3149652920ec87ef3713e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/opengl_buffer_2mb.bat","filename":"opengl_buffer_2mb.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":551,"md5":"df3a4fc88fdb9f189abc213aa1040714","sha1":"56740561fdaf494770b2779760bb08321ab3b3f3","sha256":"7de3de2c9e8ccc243e2ab922c91959304aa534171d3d2f967d3802b0c64e249d","sha512":"f9b731ba54fde67227aa40aa053d61e8fd79c0fa0d1909ca8ee5adb51f8b02e750423e5926d442c31207f5088bdd105ecaf2ce7799a9e619011d0acc186b503f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• OpenGLbat/opengl_max_buffer_4mb.bat","filename":"opengl_max_buffer_4mb.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":562,"md5":"471bc1b326904e883d8b6ee9f1d6e57e","sha1":"e617bc60f04527b4b4b4bd56aff957e9b6ff8b58","sha256":"85d123a3a0d55d05af7b3bbb88914a7ebeca6bbb32aa212b34f51a016589b754","sha512":"e0b6781508d88de07e9146d27cfa6012cd7a3a930bcf89480a41b3d5c23517734078e2a5eb41e0b820d0c73b4d312b935958e5a4e48b75f2c3782b4d74af5982","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/1) W10 Отключение HPET.cmd","filename":"1) W10 Отключение HPET.cmd","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":166,"md5":"422d6d73df6d0053b764b4a9994e3da9","sha1":"9e8e5f1e0a131c168130735a03d12825cd5e23fc","sha256":"af0c9a0c3e91e1abd8f2d9ac84566b2676fea9460ac3482785de3c046a616d51","sha512":"ba387c44c27c6925d6ed6b02a517f1da545301918b8c67504154ebd96ab1460bf39555c8545fb6b670ab7cd3cd5bc2c81815f6062c9cde2c3035a984cae541b1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/3. Remove Power Saving Features On USB Devices.bat","filename":"3. Remove Power Saving Features On USB Devices.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":1180,"md5":"adc3a53e44dad373d8ae93fac28b99c3","sha1":"51c1a3a4cc7929ab97cdfb2b2163ae23855748f0","sha256":"120380d12209ab864d70f7db009d5e73dc4d7572f3a117b3186ffa8e1a3dadf1","sha512":"8528be3e7dc11f7544bf1d7ca3cb5db1b79d747f380b75e9374d7a94047aacf78b636fb5e268a85fe9b0515ada41eb1cc2824ab394696e4a30aa7e7e839c9165","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/4 Disable Memory Compression.cmd","filename":"4 Disable Memory Compression.cmd","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":65,"md5":"a64d3a4c1d61344273de4e3f2dd3b652","sha1":"245859a286db226f15a0c8c51c9b71f31ea1b79a","sha256":"6f4b8912c0f77f2e589e8fed98246680bdd01a442f91729ce15ee812b8f4d50e","sha512":"e564799596d11b71590569f8c7b31fe7446cabc2dc6bc423308edf7ad2fcb74cbc621891cc594a6b2ebc8320600d0ca2530e92042477246914c55f369d2856cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/BCDEdit Tweaks.cmd","filename":"BCDEdit Tweaks.cmd","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":90,"md5":"8fb4daf9de9d35aa1824b6b946f42006","sha1":"197cc1f77ac633a36b058efaab3c5b055e834e78","sha256":"65d59f04ed85426c3f8c10d87526ade925064ca23e3bbed3480b8c9d4d0da2fc","sha512":"36f0ff554aeb56774afa3c301ab642e496ddd1b6db3f575e7a29657ee01d05701224162ebffd90a1dabd3b817cb5e83847be18bd74dec51459e3bb4fb0581ec2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/Disable HIPM _ DIPM, HDD Parking.bat","filename":"Disable HIPM _ DIPM, HDD Parking.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":599,"md5":"3d42a1761e2d0acca609626228706d2d","sha1":"03c4ec827c37a3930d8541eed0fc6fd6763d59e7","sha256":"ddd7bab4cfe8ddde80628e8513ad9caab5d0a08bb858a0730bc9f8fea7bc3358","sha512":"eec61727062e20b091560eb1ca1d8fd245f60d837b114054e01d2048859a060de49d8db13334899d1a25cc8314ee9bf3dfe690e6ad3fba7f396b8f7cb8b184ce","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/Disable IoLatencyCap.bat","filename":"Disable IoLatencyCap.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":497,"md5":"276f547ecaf945b1e74d05bb42351614","sha1":"31bc9618c67f38e6ac42330ff6b7f8d37848b919","sha256":"2bdd7f228d308ba930e06b436d0523d3a4cec248c7ae692045e92153a99ff683","sha512":"ab4ad5102e6ef02f8673441ee98add0e5a2c5702ab8ea30df9a181c6b0f200a359ea45f1f297066e9c40a155b92c2c3ed06780e0ee4ae16805f104ce813b1958","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/Disable StorPort Idle.bat","filename":"Disable StorPort Idle.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":190,"md5":"3748031aa41d22cb2a13acf467322463","sha1":"1b449c976bd74e12ec2f225146338415f325a13c","sha256":"15b36ea42bbd1692172c7c4e87b9f45e5de5431523da27fa2c43cfa853a735d5","sha512":"4925a9583ce95526806dc9a085842317884e2f1598826d35acbe573664bbd3431bbb3f0894ebb72a159ca2fe3b1eb4f1f7224447ca4121588067138decff6de2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/Disable USB Idle.bat","filename":"Disable USB Idle.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":843,"md5":"8c943666e3610881a893599b91c2c437","sha1":"d101c21a9bc60bb60ddc8864ae6344b10e1323cb","sha256":"a0b8e7dad496ce34017845a161fad3e0e82d18f6478132335bdd8138941fc1d7","sha512":"8cb5e55357bc1789578818c8fe192a6461934790761fe74cb92dc5fcba4829b4419d70fe97e65109e883eecca1ddff6b4dc33cf1f46f1e6f95e33804ce2e46cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/FSE and Game Bar off.bat","filename":"FSE and Game Bar off.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1729,"md5":"4ba02c9f38bcf7472e7d20d01edb9035","sha1":"9500b831a16501ec0f3e8d5024e55d6a413b6574","sha256":"cfa8fc9f9495eff7055bf09b553a8ec2af446a2d32f018d48aec70839fed7d9c","sha512":"a5a13d1195a19411c918d3fc907ee38ddd7b1a4a4ecc4fbee094befa87929b22c7ccb9fbf920230d4c4ae2b362f41236d32b7e2ce7599b70750a71a77cee3291","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Optimization BAT and CMD/Отключить триггеры.bat","filename":"Отключить триггеры.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2790,"md5":"1108a945699a0d4dea254d17c03ae4d8","sha1":"53c485918a8a44916dc3bf5e35af4e1d1d36a4c7","sha256":"6a7e8310851530191bdecfbc30f8f60a79a8127beed96a9e51aad99861e4c123","sha512":"924422e091974a232f987029d08b45a26f0e07c2e05c37d203cd2478d62fddbdaf7f18a3a0ad8abe09e3ddc8bb3bbef20e9a88f3e741c00b278d3f4c95c782cd","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/1 Delete Temporary Files.bat","filename":"1 Delete Temporary Files.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":896,"md5":"f328553b8f311dbd20b98e26bc76783b","sha1":"307188c6078fc70dac1542e4a8ff5a6b5c67b9a8","sha256":"bfda67ec02a792a6c6dba218cd7356410ba82bf90af9811b41016c9ae118225e","sha512":"82b420f64df9e0bcfdfa64a7a8d06a3735475de2214eac92532c7b05d3a08059182dfdf819948ae4611fd3bc95e33876df14b0abf2e2b22cb8379f3cd247fae1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/2 Disable Prefetch.bat","filename":"2 Disable Prefetch.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":895,"md5":"8b75c288abdc3e6aa63031e60ca03dcb","sha1":"b16767fdeccaa03b029a64b341e9aaefaa3be39a","sha256":"50a4c12f5341950f4bc0096670bde104a43b33ca304868389f037637e4aa2a11","sha512":"40729dfb287f33f12ee2bdd374b388c60f34e68eb92fa7e2407ee425f472dd243b819c048799ea7caca96f9ad7e3cb6f3f74554a0e46be919c7f93976d43004a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/3 Delete Prefetch Files.lnk","filename":"3 Delete Prefetch Files.lnk","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Directory, ctime=Fri Dec  4 07:19:22 2020, mtime=Fri Dec  4 07:23:13 2020, atime=Fri Dec  4 07:19:33 2020, length=8192, window=hide","size":1099,"md5":"d86318fbd015ba9bf85eaf4f315ff8dc","sha1":"f4ea6674ee05b5eb9fb6682b26e0958f5e0a288a","sha256":"3c57418dca3182ca3e2ecbfc1843a6282c6f87cf0f28bee34f85689172903273","sha512":"9a07ea33018c2a9c5ab2dbab84f3e6ae2b95474cdbf278ca56598aa3b6fdbbb6be7eec8061ee6d798587a7e9ef73c6577f47bf17e37d09eef7dbf4317ab19b05","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/3 Delete Prefetch Files.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","fingerprint":"4b822248bade98d0528ab13549797c225784d7f953fe9c14d178c9d530fb3e55","first_imported":"2021-12-30","id":"2ogEIXl8u2qUbIgxTmruYX","last_modified":"2021-12-30","rule":"Long_RelativePath_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}}]}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/4 Disk Clean-Up.lnk","filename":"4 Disk Clean-Up.lnk","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Archive, ctime=Fri Sep 29 13:41:40 2017, mtime=Sun Aug 30 23:57:34 2020, atime=Fri Sep 29 13:41:40 2017, length=219648, window=hide","size":1371,"md5":"c55847413ad9bc79a6e319166bf5430b","sha1":"b1d8963a0c891e17af115e9c785ea26893c7106f","sha256":"082ad7940bd4002167eb58f55d8bcd073d2f72b29d83ff64c752feeeaa45b881","sha512":"386bb17894a8cd3ee0e9d5813cd29560ecf263e5e9717f11cad0636ae4979815acad235330e4f3e8ece9b121a3b5caa239ba754d1323bb1a81a28b5c6a1d5cc6","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable artefacts in shortcut (LNK) files.","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/4 Disk Clean-Up.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies executable artefacts in shortcut (LNK) files.","fingerprint":"f169fab39da34f827cdff5ee022374f7c1cc0b171da9c2bb718d8fee9657d7a3","first_imported":"2021-12-30","id":"3SSZmnnXU0l4qoc9wubdhN","last_modified":"2021-12-30","rule":"EXE_in_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/4 Disk Clean-Up.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","fingerprint":"4b822248bade98d0528ab13549797c225784d7f953fe9c14d178c9d530fb3e55","first_imported":"2021-12-30","id":"2ogEIXl8u2qUbIgxTmruYX","last_modified":"2021-12-30","rule":"Long_RelativePath_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}}]}},{"path":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/If the batch file isn_t working.txt","filename":"If the batch file isn_t working.txt","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with CRLF line terminators","size":622,"md5":"555b21dd824d7c145cc3ece80e207529","sha1":"6cf12b8794460b32001753b18f1ea5de48fd4f20","sha256":"7c1d5cc26fcf756842605e6d5999a7cc7c963c60791170a4e3a65727873edda7","sha512":"85f3fee8e55842fb5f21851d49bf3a77314d6d17c8742123bd00124bdb87456af277ad18dcc58430a426fd2a333994ef545b4a1fda82d89ad2affe98402b6b6b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация/Dism++.bat","filename":"Dism++.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Unicode text, UTF-8 text, with CRLF line terminators","size":608,"md5":"cddc5168f26f9ecd911dab02d6ddf91f","sha1":"2bc0cf30072d4864609eb99aaf89e0e4a258c29b","sha256":"1b14fc36a2a645a5981e009844630e08606cad2bb1c2197c13a4a731209a1057","sha512":"af9d9e0a53ad67dfb683f77e3bcdd0310116bdfe30d0b72f1978d60cfa9ebeb4d92e517fcdb294126be59acf16c45668943298cba0fdb7d17ee425330d8d1843","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизация/Mem Reduct.bat","filename":"Mem Reduct.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":143,"md5":"039811672be1a998c1bb7d8f335977fd","sha1":"587be9c39d2b59e4dcf99c5def7c8c316b14b139","sha256":"bb214abc83a2c76eb0e6802b17c978c02f7d11e6d074118eee63ce622d8253d5","sha512":"91c48f43d10bfd79414242ecf07a5b18c07604b2d4aa492096b1045bc05e88b14a641dd7acbe7efa619ca503e753d0016ab58c75d95a244d781b69fc03ece563","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Оптимизировать и удалить телеметрию Google Chrome.bat","filename":"Оптимизировать и удалить телеметрию Google Chrome.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":943,"md5":"88fcd6078ac11e460a29c9566b51edcb","sha1":"a72e1af724dab32434730ae328cc300376ac0f56","sha256":"99cb33bfc6d8df265b674a7befb83a3c3ff3b66721159d1c8fe074e824c8e2a9","sha512":"986d46d28d089248330974c89b96b2b98fa58867bd3a4ae05f553ce3bf83065367a9d66fff87f8366905acbed0c278c408406f45041076e905ad15e445e921f7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/W10 Старое меню питании.bat","filename":"W10 Старое меню питании.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":479,"md5":"f6282729126d434c387c7059b20ba45a","sha1":"b1a7d9a3d8d0e412164700784ad7c1d7507e27ef","sha256":"82ba83080a57bc0b00a98b8c1f003ae52530f70e2ceed1690e92636df799f596","sha512":"91f80a2c545aa78cc4d0b110da5c0ee9d3cdd8ff09939eb94d7aa38108ee8fba35def447351c7efa96d682b0c936ca69a34da6df4cc5ffe137dc5f907c15f7cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Включить GameMode.bat","filename":"Включить GameMode.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":44,"md5":"a892cbcd03d75f5ea82a87578a7bdfe6","sha1":"13918e8955b04a6c026a231c9efb82a402e6f5b4","sha256":"821bc91220a381f8982de384be6a5a55127c1ab05062e9d949c6411a214c38bf","sha512":"d470e9ef4a6243a87dea52b0647ca313e2481b7fdedce3f6b6e2d664678d61937aa83b2e0ccffdfdbb2273b6ce09f6784d546fa826865f630276be645c7ebc1e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Включить TRIM.bat","filename":"Включить TRIM.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"ASCII text, with no line terminators","size":41,"md5":"89575dcf0cf0af18b99e08dc47c1535e","sha1":"66fe171bd52e7d6d897fde8216e7c17a644bcf2a","sha256":"e73c1dd99b39820c8019dd9aac58f4847a8ce6c5fac7fccf307a3c07d9b255b1","sha512":"4443566a8fe4f813a8e546ad94f9b015934304bde84b3bb758348e7c1eb02af4c3d8b40f5ac9353ad91b5cafeb980a2553bb6b6b31c148ded688d55d2f234b4b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Включить VBS.bat","filename":"Включить VBS.bat","modified":"","Modified":"2024-07-18T07:32:43Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":440,"md5":"1dafa3df741ee334265e12ca66ffb6b4","sha1":"05f38e94e16f30f9a4ed32291eacea081c4291e8","sha256":"9322a24f1647a6c35d3fe1c92f68b255f3f637b5cdcbfacedc83eb363ebbd867","sha512":"356defa1cc6702ec4591f2f190b68bd82c94da35fec833c316f77d9737b3f9274c0967548bc0cfafab1fdbd9d693f5cf089be705c1c9285d2fe0d567b974b1e2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключение гибернации.bat","filename":"Выключение гибернации.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":598,"md5":"dc5fef7777d6315eb95c26c077eb654f","sha1":"f04d45dc4d792dcf2cf31ae4ca076f84dac0bfbe","sha256":"b0fb8203617c408a899a198641f13a0e89a6df924847ecaff6a9efd375d16726","sha512":"5f7fa9e46d1d98fa4daea79df268910ca5e761c810640457d4e4dd439c9488b215093c48498975d85a4d1d35a478a5e7cf827d6c17995f34393c1f2e068e67f8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключение залипания клавиш.bat","filename":"Выключение залипания клавиш.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":915,"md5":"51a9676989076f7b2457d589e9c728cc","sha1":"b3b086b77f2350d9893c28043dc246d01fe34907","sha256":"ecab0c25dbd7d388ae9ab543e274303b62c93c82116ee786a1b77e88eb41bc3c","sha512":"c8e5a02988be18656d2c2f69c7ce11f873c0c5b048cd76bf398ca9ff5850bd8ec6d6947ed2d2bce46a05557d02a21d1b40504ce82f92eb10ae42f6055612fd73","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключить FSO и GameBar.bat","filename":"Выключить FSO и GameBar.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":2136,"md5":"c170ab3a37c847bfb3c99b979d9de1af","sha1":"0965d5eaa8224ee0e1c45dc57b4ea1376643c215","sha256":"ac6df7fc2f5850b6f748a27cd46976061e84021504c70aa22e73e5c8df78830f","sha512":"71445506b52834aeacb816486feec4a63147d1aaa14b64100237ff057865136a9a2b08f57d72f607a3c18657fccf4e5e106a77afd8642dd1aa91226f75ce8ad4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключить sysmain.bat","filename":"Выключить sysmain.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":409,"md5":"034dc88553c88161dc6a99f71e351b80","sha1":"7a25e119828c3c6cf40319fc7ba5db758cdcbba6","sha256":"203d7728b225155f9ed77f84809b946c30a1c7b8cae9406bce3d7b818d2f6fb4","sha512":"07f37d0e7c5fca482c7dc3ed73d58b8d91d82027b41465cbf6b84590e0da82cff2673a4c2adf0d3fc873ebde9468e604d89ac2dd0cf84202cac600ee4714ea7a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключить автостарт программ.bat","filename":"Выключить автостарт программ.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":42,"md5":"4d8e9331b62202c78cedbb665e254755","sha1":"1f46147d141e5314a2079683dfed6badb6003dd3","sha256":"070d132e360e720bf9f8377cfad2ee9d46c96ea06c5ab45cd7a49f4f9e69cde4","sha512":"c3756f6b6d4f76115865637cda429567264aa42cfd05bbbbbc44282540014a813934fce2447e03b6d5a7e107f0feafb50fe1360fbd07a550c5bf9b7ce1591e14","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключить прозрачность.bat","filename":"Выключить прозрачность.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":35,"md5":"4d40971d8b648de91e5ffa2722b30c27","sha1":"12f305b7f8459b4e2078a5a62704510a5f775cf4","sha256":"6add6030ba15f214326040436c0bc3e8d456e74f18bc38ffb71a2d73b6817117","sha512":"2e0e128732f61e620a2d7d27de6e8584a5321e3df0f7a1cf5233382b38c2569066408c6fe81d67e1b07bf02103a0f5f26a81c498ad46107afba6867f1c2a3f9b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Выключить уведомления защиты.bat","filename":"Выключить уведомления защиты.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":42,"md5":"3737a26696ef48d9aa01f18317f030c7","sha1":"a2752dab3f01b53cc9cfa6c5be5a6b0a4f58fb7c","sha256":"65e3d5a32456ba9c23a6b4bca6dee4640b78401a6494255e4b8108a4d7e14a42","sha512":"f5911b3c5627ad94c301ca1b2ec3d7fdcf115ac7f8e639202733c929a57ac5d061507e99e81a44e3018ff054d0f701734b4100980b0c014deafccd7d6cf6ee57","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Максимальная производительность.bat","filename":"Максимальная производительность.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ASCII text, with no line terminators","size":84,"md5":"382d7276a825f97139b5bd72814594d9","sha1":"f0bc0016295fbfc4a08f56d5929d76c8425736f1","sha256":"e3499c0b80860d2f014796c9316d8c0a6bc1894c6b5988f85ea0186e265e772e","sha512":"5e90da1fc9ecea159bdddaf3df51abef79c40710a838cb0752efa2bdaae800c8d827af345bbf41ea5be9d8658c68eb4b5c3b2e6095e310bbbb923f99f7292379","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Обновить Windows без перезагрузки.bat","filename":"Обновить Windows без перезагрузки.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ASCII text, with CRLF line terminators","size":874,"md5":"2aa2875776a0f953050348d30f75077d","sha1":"9290e61fdc0c94e19f7f5e8d56c75d9d495dbb90","sha256":"cdbdc16811d340b30d84c6c2a9f419764804b741b9522d9fd254648a2b74f547","sha512":"a61e0a14c89b15dd28e099f35161c9c9a45515fbd50881fa4f2d736a1c313b1cc7b780674060cd806e30bcfe49b6fe5f4b17912c00dcbfb17a128c68919e983f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Остановить всю работу в фоне  для Windows 10.bat","filename":"Остановить всю работу в фоне  для Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":51,"md5":"1daed5df4fab2d48563c9980b6e15b8e","sha1":"416ddaeb719ab67b20f05be89ed6640603c39cd4","sha256":"9af3fe27ca4ecc4264705872d5a771e2a4a3c8b28717ef366ebd1b5971cd5dfa","sha512":"e8c69046cb81d01446133a824a974697e91b9d534f624fe7e1b350c04dbfd447b7fe751a37c986f7b11ca270192ee9eef6ec9feffbdf4de2347a17fb8ac3f880","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Остановить всю работу в фоне для Windows 11.bat","filename":"Остановить всю работу в фоне для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":539,"md5":"c2c62f8b90fa7f387bb14b0e8ecf579c","sha1":"d4dcafc721d76f3731bc84d466333a7ad7f0b4dc","sha256":"f5ed7b336e913765ac62c19304038c1a18a777ee1cf8e9ead0e73b1fa36f921f","sha512":"ea5a96878bd5fc85bc85a2dc51a4acad40fec929e973c9d03088419f1baaf6f86711d9c6cc93fc27d6a27723d7b3fd35a597cebc170cbaf953b1431c083ba087","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключение Spectre, Meldown, Tsx.bat","filename":"Отключение Spectre, Meldown, Tsx.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":865,"md5":"22a0a534f9946fa17ffc86a3f35e986d","sha1":"3738e3275741cdc51e46b5e315f4115d93ae815a","sha256":"265d9bdc1219bb6f2507921aecd530174116f5b52529dfe1e19ff997708ee282","sha512":"e8dd0c0ec61940342b713b0a4f2f8a1639bbd3b70683abf042c173fa3988c128f59c294bbb32a5a9b31a9efc61524905efae66c66bc35d7c98fafd80a1572013","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить HDCP для ноутов.bat","filename":"Отключить HDCP для ноутов.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":345,"md5":"129167a3ba3c7c2359884a6f7ad9f858","sha1":"c0696b2977a663cb22e5527f9751e79ca5a82a70","sha256":"b4411eeb726a4e07b19bd92270f68520228040b01df43262b926c3946a804bc0","sha512":"537ed2329027297bc34eeb5ce24b25c24ff3e6976d083d30d8462621bb524703742e66bd3def2720c177aa9fd530e8235b94f10ef5a6fe451d7ba4ab81fb0364","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить HDCP для ПК.bat","filename":"Отключить HDCP для ПК.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1536,"md5":"07a3280b835c9920bcb746ede89ad5c4","sha1":"4f5ce29ebb19a971220f6a43ce0dc7d9b6e58829","sha256":"054c023969cb6222a3a3f9cfdf1eaa80b06ec2285bf0b4b20b64c8fbd576c30f","sha512":"6a146d4bcddc22b0ffa26c29a9b6eff3dbb6dd397b1b4abbfc66e9a46ebc78667e3343c4126703e4af9ccf623a78fecd359fde65a9f6ac2e797bf96076767eac","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить UAC и smartscreen.bat","filename":"Отключить UAC и smartscreen.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":594,"md5":"53b4a412cd6ae67e1e9ea53809907504","sha1":"a7825505bce781bdfce69cc888152bc0a101f345","sha256":"be24c69dbd8f71fa250a01a9efa69ad55fac4942eb94eff2c4b09df12be3d231","sha512":"7f309bdc19a9305911f043b0c70f4579300c800da0d230530371554fa10059da5f3dafce005d8b1a93a5b00775acceeba5c2e6246eeaa05d1aa94f9cdfeea8ba","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить VBS - W11.bat","filename":"Отключить VBS - W11.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":440,"md5":"1dafa3df741ee334265e12ca66ffb6b4","sha1":"05f38e94e16f30f9a4ed32291eacea081c4291e8","sha256":"9322a24f1647a6c35d3fe1c92f68b255f3f637b5cdcbfacedc83eb363ebbd867","sha512":"356defa1cc6702ec4591f2f190b68bd82c94da35fec833c316f77d9737b3f9274c0967548bc0cfafab1fdbd9d693f5cf089be705c1c9285d2fe0d567b974b1e2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить антивирус Windows.bat","filename":"Отключить антивирус Windows.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":2291,"md5":"6c639ad61496e54ab1db5c13cf3c931f","sha1":"316366c140133228367db55fe768464e1b954a39","sha256":"17b71156b6bb7b68a776c9eb522572973b0457a519fbb5632a08a6e169596602","sha512":"7c6a51961e18b9c4b41cda3054c0095d376d9c8256bc7f50d0c00019af3078e51c6bcbc9ffe5f2bbbd4316b9835fc1c22d94f5fec637bc58de7fdfec8f016c1a","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Основная оптимизация/Отключить антивирус Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Основная оптимизация/Отключить брандмауер.bat","filename":"Отключить брандмауер.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":55,"md5":"e77fa2a31b43d9ee6d09e1eade378ede","sha1":"b942d8c9ead45710f37c8161d0230b4562a87c9f","sha256":"9e7848d3994a4147c27041066c92f76141c67e52ddc472c1e6b0ca4da760760a","sha512":"798be589c5bfd4b992d50c36f31841d69fdc7b7eb9d4208e3f701297d6e840345cf619832d09a746f89b0f713a8b1a6310b3238aeda9c215be0da8e9f0ddd501","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить виджеты для Windows 11.bat","filename":"Отключить виджеты для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":380,"md5":"05a0839fe7958677a764d9da355ed271","sha1":"b1f2b3e99787b5a9c0a2098ab0facc117e20eb29","sha256":"7ebb7879efa3e1a475a50ed7bc3dd3d20c861405da3009b039f0b3209e93a230","sha512":"7b1df3d37b26ed58f4a5514bfe49ee14e9ccefc7b7031ca47f626fa87ce4683eb69db5a3bf550562d550e02cbb9bc4d5e7d6d2c2d87914594c5c7fa55b42ba34","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить карты.bat","filename":"Отключить карты.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":33,"md5":"2a3ab4cdd54cf15362470e7ec6b79375","sha1":"74d9f4a63aa46511ac59d7f106db300dad8ee4ad","sha256":"055ddbecbcc19f62c582a5ad65f489d396cf69b162bcafa777a925e0d9610cd3","sha512":"2a953dc4b5fe281b9c56295469ad18b329b8235bcb6438d74b24e76e167f5b83b46ac80078f3ce55b90aa01bda406fe6605bebe809b851f0d67d306fbb68dc3d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить оптимизацию доставки.bat","filename":"Отключить оптимизацию доставки.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ASCII text, with CRLF line terminators","size":84,"md5":"c0fa4f48294ec31738656887c067d190","sha1":"6cc6bf69049881f16c89fb169a33f9472f1fd143","sha256":"fc556a4f95049985f72ceb8e8ef4b915ae83c4154da38f4d3ecb0d62aba026ef","sha512":"6c2605874a1317a6daab420edf3e627e07bedf4e5a99f072e19a12aed4722f7b3f10a7e34df2d37f3047a224ea5a9584df6ffd81f8decf56132a3fe35523a7e3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить сбор данных в планировщике.bat","filename":"Отключить сбор данных в планировщике.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2399,"md5":"7190f376e0d6a3975cd207d8be972472","sha1":"eaaefde828a339c346d80dc3340958dd013a9680","sha256":"b85f218e59fe628b062d84876425db5cee8792e333c915087fc666514436aea4","sha512":"2e978b7dc220b9ceeff102a085e48af860a7afced0561ece588646ac11c23cff3bcca73015a761f5e13edaa9d1a76da8fc129ea1666333eabd630c4feaa4ceb4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Отключить телеметрию и прочую хрень.bat","filename":"Отключить телеметрию и прочую хрень.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":4052,"md5":"242a3c7c0d1914953d25d6eb28413e40","sha1":"12dce0473a278156465bfef97caa2714e3edb136","sha256":"1aa88212e786be2c85957613494facf57826e17d71b41e0835d7277551af782c","sha512":"d48ab26f1866d11f41e4e1ca9e1bf63a33625a55360c37b7d264b8100d01f38fc8bb305a1effc794410830f0f46151b2c7f862cfe1eaf42b2ab4606b763ecc99","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Основная оптимизация/Отключить телеметрию и прочую хрень.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Основная оптимизация/Открыть параметры быстродействия.bat","filename":"Открыть параметры быстродействия.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":62,"md5":"995df00e4368fa50fbe80e0427deda94","sha1":"1c91efa03b6893374ae7417780c7026e940d4dd9","sha256":"dce499dd470af79723e6a50f6bb89c2d8f119447948e498f9d1b70050b483fc5","sha512":"f39fb3d3c82605f8b7c42062369ac68191ae371bee8244ce8dd6f2b7391c8cc1b2a62c79d133e66246e0bae5647d10b943c120ed2dd3699f68f45825aabe8699","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Открыть Электропитание.bat","filename":"Открыть Электропитание.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":55,"md5":"8246da8cb43328be4f39835e3de89ee8","sha1":"47eb190e9bf41ba259f9c771b9b40365df5779e9","sha256":"ee1fc8afac76f32ec6aab87e959e89e4162cf4b40fbb3869ca2a810b2cd5a2ed","sha512":"8429b05ea44392828c3c567a660eb29cacc69d7b8e929503f86d383ac85f816195cc2facf9d490a235119b18152062b280a2d83786f3d6046e7a96ec9ebe89fc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Показывать все иконки в трее.bat","filename":"Показывать все иконки в трее.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":81,"md5":"0837ee7aa20f9740c5918333372b7024","sha1":"9143dbb4a6de2a3a64a202efaec5fbfb47fa2314","sha256":"5f50864cb0eb810aabe7d927c35c423902820d83f5a7d58e35b73e2b77265c03","sha512":"435c85358b6f123e57d5e62c83d34e0685bcc2e25fc26459d2ec6ab26874bff7dea48a94416f73daa48b3d2f7f5bbdb76475b221267865072629dcda950c082a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Старое контекстное меню для Windows 11.bat","filename":"Старое контекстное меню для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":503,"md5":"66f203a10da8a25e10e9813ec9474a7a","sha1":"feb6eb3f6ba78e843b3b9f709a6018da8f5b7ddd","sha256":"fdfd720045963f68561c16df65882d14465c5199d84acdea9b8570e5ae6273c2","sha512":"ba8867016b053a360551afa3ce12a0289c2fe43a977e8da4d0416a1867c5262e7b0fda4c754443ca6b2dc7975e6a1ad739f8cb3121c77ebeabc35ffe30cb8a5d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Удалить высокую производительность.bat","filename":"Удалить высокую производительность.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ASCII text, with no line terminators","size":75,"md5":"81804a41a6788d8120724de1c2ff5ad7","sha1":"e7b4798e3c0196a8d241f758dc9ffd46456501da","sha256":"974f1f1e8f4ca4662a3f8e5e3609d9946f370428f5e4444947d58148f0509c15","sha512":"6e46d4ab183fd2ce03d80e8466972a782bdd263e141f0d7ab1a30963b65f077d5e7785fadc825698132b30341bc83670e97a98a8c083a8f2e856d6aca6d123e7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Удалить скачанные файлы обновлений Windows.bat","filename":"Удалить скачанные файлы обновлений Windows.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":52,"md5":"4487729a1b809233de0fd832294c1a55","sha1":"909c241f79791a57f166e3e00c8a9e064e1501ee","sha256":"2c21979c20f8872d9e0f9c694ce783cef85666dadc3a616fe0b6c001772847ad","sha512":"be2427169c104ea490c682d3f9fc9ec4459611b261eb75c54d74d3e24e3dbf5ff7370e5029ce47f4ca535e7774bee050dd230240836935b46c550b38dfcaf013","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Удалить телеметрию Nvidia.bat","filename":"Удалить телеметрию Nvidia.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1107,"md5":"2adaebb00c6f75584c458eb23c4ed87c","sha1":"a5992413a73ea426ed67842c7156a1d7975c881e","sha256":"f050ab4c9b0d744d92be7164b7ac3a94b3ae6c95c9f1d3259b0ec52a87af5df1","sha512":"ff070951203977a1b69859daf408355cf30e861c148b6212a4d2118718b9d8e766c9bee6880ad2edde064bfa5558d954a76d11e8315cab38e9bdf42f12962ea7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Основная оптимизация/Удалить энергосбережение.bat","filename":"Удалить энергосбережение.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ASCII text, with no line terminators","size":75,"md5":"cfd9cf70508ae536b5d33ee306413fcb","sha1":"a334b6e0370653e46614e3ab5b59c7132704ee8d","sha256":"409950959818243013ffb403dc971bcaac6a73dac9635adfa2ff127bfdf37d74","sha512":"57c7765bdfc352168a2f0b7aa3b5c6f8734d777e68a632a8c7ef7c1582367e53c258f4642e1f2e11acb3c37644264f7b0bc94c1be00fb5a55b79cf51cdc1e159","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить ClearType.bat","filename":"Отключить ClearType.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":2709,"md5":"4f2f520b9d96288b330da71390f23039","sha1":"afbd8d378fe72f728e96e4aed8bf4de233c6b453","sha256":"dfcdedd76f4e1d45d660cda26414ebf8a843c0b0a1bfb5d52639beb082a346d7","sha512":"e7f6cf5386da2211f11e087106e1c5822c29e09be2bb2bce0eddc98c8a724e6c36d6edbf1693093101f7fadbfbb42164da16d300b2c992ec13420bb3b2c0b6da","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить Defender, SmartScreen и Antimalware.bat","filename":"Отключить Defender, SmartScreen и Antimalware.bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with CRLF line terminators","size":1116,"md5":"ec0f6858d2b246242495d712483ec2e6","sha1":"7667d7765402b0dd5ad9b4428d97a168edddab53","sha256":"4b6084b8eb7c92e500cc52dd657607c816c8060a4face1bebe4a4f1997548348","sha512":"e3c23ea0d9f5ad08b22762bc78fff787dcc1cc9119eb25f40f18eecec950e5f0f585a1243350cc4e79c82b9fb7b0b42932a9d43ee0cf0c8880ce5660a5863ce9","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отключить Defender, SmartScreen и Antimalware.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отключить UAC и smartscreen.bat","filename":"Отключить UAC и smartscreen.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":1377,"md5":"fc1df8e15386c2adb61d79c314175f97","sha1":"621c8fed01cc78ab0b3164fa6bbaa2961a29dcaf","sha256":"6746732d9ab1b90f530b1a11f919d91fc63a052cb057d8970203a954db30f570","sha512":"1c854447b77c914594c440e5d43c48f8e99aa5ce5e44f3d658b541d70f96b01d4d299a31fe4afbcb35cc632fa00eb00ff4de28081c508f4311f189a2aa9d75ca","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить автоматическое обновление Windows.bat","filename":"Отключить автоматическое обновление Windows.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":118,"md5":"3c8f23e43e75558b4e2b0bda347a3503","sha1":"4209716eae42a36d073e1049c69a3e057e42cca9","sha256":"52757ba49ab2967421b27a8f93fa91b4697ecaaf867b724d0329e2482733cefd","sha512":"ebaf7ba77151239aad07c20ba994bea2c7eca88101a03f8f19f308bc670562ab0a39177d02ec525ff77b659c8b953aee99b5bb75ff3faaa1d5797b437459f93b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить гибернацию.bat","filename":"Отключить гибернацию.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":15,"md5":"ef0a8f7a49e074ecbf431d2caa329fda","sha1":"18b5f10684e438aa68a8c25a60f019660273c096","sha256":"55732a43ae77495784606d8f5c5ca39b074d540a50a1ebd60db79635f50a6173","sha512":"04c2394eb24f2b0f657e46b3aeb4c4f506736cf1caed113752ba7fa9f164048ec0975d9229905e45e9d5ea2d9f3a3443017e8e5e8c51796df3ef3f84b686c9d0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить зарезервированное хранилище.bat","filename":"Отключить зарезервированное хранилище.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":54,"md5":"74312f38dead36c4ee9398f6df976533","sha1":"90cee772f4e57ef08817a36e774c8e50e7f1f9b5","sha256":"6d7bbcb7c0ac67861c59c6e8828275a4ee9cb9a1c1b2778c8c6f67229ba49082","sha512":"2e309a0d8c3af917c921fc31cb85b5a3f3679a450cf55608f728c82dae7b1b488f65d50e5a85824bda47a4ef31867fdafdf7e743b5c7b72b07b787eb20d49a6c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить обновления Windows 10.bat","filename":"Отключить обновления Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":3566,"md5":"b237272e7ea5150aacd58a9a6dad7ae0","sha1":"c4d225976ca28271bd6fd3bd76f255f0f34d3ba9","sha256":"0fd1b745b20f0ff32a3a1f75e188287f52eda5cfaf4d6a4adf05ed4ff6f17b01","sha512":"58c981fa3c2e6101e2ac6566669808c7b4bca2bdff29779d21c5964a2f8b0b24b0d406880fd25d20f47b028389eb1338833b08210c3981dd04f8e2d7009fb15d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить обновления Windows от ios1ph.bat","filename":"Отключить обновления Windows от ios1ph.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1887,"md5":"767c8e8635f6270a6b6ee2599bde56a8","sha1":"a5338fad10a2daa6fe66fae66839dd49add78eeb","sha256":"489f03d0eea45c0dbebe4fd97aca9ace5172e3b125c5fce6b4be0191d3739343","sha512":"cfa944d4e02027e7b2bea005caf76696acd2e087f43f859d1a9bc16a976583625387abd834bdafb168268e9714959479e86c82138e725d333db158605c6c5a06","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить службу Windows Update.bat","filename":"Отключить службу Windows Update.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":72,"md5":"f72fcb12f96dad14fdfa59df8a3fd5f1","sha1":"8847bdf8f88af3ff7a0db1390f3bdcff5e58d2cb","sha256":"51bfaff6b69ff604ea6cef58f96c448618ffa40a2296e590e287648b4d4d0a89","sha512":"130df4b8ea18d5bdb0f11aa62cb530ed74b110755dedc839f4d7c5c868e2fe1fedc4c96e47eefa86d99c7c014fea50bbd5061858d60bf2573932afc35aa9d892","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Microsoft Edge.bat","filename":"Отключить телеметрию Microsoft Edge.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":3441,"md5":"ea208263241a73777ed3f38173f85fd4","sha1":"ece3620df1b3e47636f3df0552db8a7b4f701795","sha256":"019e1f3936d16b54897b976a97d3272df4e5a2efa6fa2d92f604629cd8263935","sha512":"9fc9af0af245ae856a0023acfb89f3c39333c8ad0bc9f30407671a1882d8237976898508f1d3887b3c984b204c059ce3a536a81ec7c6d288dec689e8a895d812","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Mozilla Firefox.bat","filename":"Отключить телеметрию Mozilla Firefox.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":314,"md5":"fdf54bcaf73cf5e48d2d7288f2159172","sha1":"e2013edd32dfd043001c81d84929a3235028443e","sha256":"db237c9688c30d5a57daf6dc0dabe42b7fb6d5e77a68ea72e6c2956f772895f3","sha512":"f503b5e11e85d9126b36b9a048b582c923b217d0d5eb256014f968f06c75ba6e29dd478adda8c1388f324db0fc4fb19f5ab6993aafa0ac9019389da205049cd7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Браузеров.cmd","filename":"Отключить телеметрию Браузеров.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":14176,"md5":"33aac25c6ca785a98e9d84b3cb7dbf26","sha1":"d7f5487ec9cde60bfbf365256eec2cf4b1761894","sha256":"7e189bbecbcfd9db0a82aeb346061eda549216e965cce73f9777ac453c75135f","sha512":"352b58b16162e7b7382cd2648a15a6f22b19ea629acb328b418fd9e497dedd0f7a53806b6ed86eedc4223fb66d36ee78e4789f8984ee43a26ee741d64f922b59","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Браузеров/Оптимизировать и удалить телеметрию Google Chrome.bat","filename":"Оптимизировать и удалить телеметрию Google Chrome.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":943,"md5":"88fcd6078ac11e460a29c9566b51edcb","sha1":"a72e1af724dab32434730ae328cc300376ac0f56","sha256":"99cb33bfc6d8df265b674a7befb83a3c3ff3b66721159d1c8fe074e824c8e2a9","sha512":"986d46d28d089248330974c89b96b2b98fa58867bd3a4ae05f553ce3bf83065367a9d66fff87f8366905acbed0c278c408406f45041076e905ad15e445e921f7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Браузеров/Отключить телеметрию Microsoft Edge.bat","filename":"Отключить телеметрию Microsoft Edge.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":3441,"md5":"ea208263241a73777ed3f38173f85fd4","sha1":"ece3620df1b3e47636f3df0552db8a7b4f701795","sha256":"019e1f3936d16b54897b976a97d3272df4e5a2efa6fa2d92f604629cd8263935","sha512":"9fc9af0af245ae856a0023acfb89f3c39333c8ad0bc9f30407671a1882d8237976898508f1d3887b3c984b204c059ce3a536a81ec7c6d288dec689e8a895d812","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Браузеров/Отключить телеметрию Mozilla Firefox.bat","filename":"Отключить телеметрию Mozilla Firefox.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":314,"md5":"fdf54bcaf73cf5e48d2d7288f2159172","sha1":"e2013edd32dfd043001c81d84929a3235028443e","sha256":"db237c9688c30d5a57daf6dc0dabe42b7fb6d5e77a68ea72e6c2956f772895f3","sha512":"f503b5e11e85d9126b36b9a048b582c923b217d0d5eb256014f968f06c75ba6e29dd478adda8c1388f324db0fc4fb19f5ab6993aafa0ac9019389da205049cd7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию Браузеров/Отключить телеметрию Яндекс Браузера.bat","filename":"Отключить телеметрию Яндекс Браузера.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":108,"md5":"12a925bad4ebdcb2d8e14addf8950830","sha1":"ae78968c0245c5361dc91993f8f2b763c037adab","sha256":"01ec8a15aaa117c3bc77cd6e9d8d582eec412a2a1a721c34a0fda2e0ba8cca73","sha512":"f203c5300839d0e346678adced94eb27f13f21519c9c215213b27cb5e16fa27f6b41dbcdd16a8fa538440da40407b69488b4f07236d0fce097fe282ae2ff1837","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отключить телеметрию полностью.bat","filename":"Отключить телеметрию полностью.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"Non-ISO extended-ASCII text, with CRLF line terminators","size":219758,"md5":"606d7d3fd8b346a1a9920f9236251277","sha1":"86883de482520b27444521c3c8470ea974ba78fa","sha256":"03e3dcec7bd998748f0ee5346c4618e0918d90fc327b5cf7abfef6e2fecb1212","sha512":"f67719709bc1bfc87b853601dc95d6f8c295521a6eb81eeb70ea66e2e97a669f3df15cc9e607505e689217c02b216720307d85e3f7397a9794d328a54054b572","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отключить телеметрию полностью.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отключить телеметрию Яндекс Браузера.bat","filename":"Отключить телеметрию Яндекс Браузера.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":108,"md5":"12a925bad4ebdcb2d8e14addf8950830","sha1":"ae78968c0245c5361dc91993f8f2b763c037adab","sha256":"01ec8a15aaa117c3bc77cd6e9d8d582eec412a2a1a721c34a0fda2e0ba8cca73","sha512":"f203c5300839d0e346678adced94eb27f13f21519c9c215213b27cb5e16fa27f6b41dbcdd16a8fa538440da40407b69488b4f07236d0fce097fe282ae2ff1837","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Открывать pow файлы.bat","filename":"Открывать pow файлы.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":613,"md5":"46a21f25324aabf02cbd2c236f00714e","sha1":"12dc7b35841bad1d3ce87766d51330d288754523","sha256":"90f185970d5ec92f816569b940989f514866e251d2d914df09a31602bbb177fd","sha512":"e1901aba68bbcdb7d91e542e10237b6481935e62464b4ff18bc32300d2660e4ce22171dc22da28307b2baad0b70338f3d48120dad6992f79ee81b292d19cbd2c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Открыть Электропитание.bat","filename":"Открыть Электропитание.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":55,"md5":"8246da8cb43328be4f39835e3de89ee8","sha1":"47eb190e9bf41ba259f9c771b9b40365df5779e9","sha256":"ee1fc8afac76f32ec6aab87e959e89e4162cf4b40fbb3869ca2a810b2cd5a2ed","sha512":"8429b05ea44392828c3c567a660eb29cacc69d7b8e929503f86d383ac85f816195cc2facf9d490a235119b18152062b280a2d83786f3d6046e7a96ec9ebe89fc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/.Дефолт 100.bat","filename":".Дефолт 100.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":462,"md5":"0be4d51a4f460a86df80017fb11a7ca5","sha1":"485f47bc564f67a16c2eabe789bdcc5104873939","sha256":"f05f2d9df2ffad9e0c176927721918b55b2445bd3764d2761c784197bb90ea76","sha512":"e729bc29c7d915fcd07696f6c3229b73e8b64a95e623e589c096431a04cdf0ff9c9a068f6a84edcab0c93d7037160924efab8a1037c7f2cb53cf7e87e4b3553e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 10.bat","filename":"Keyboard Data Queue 10.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"8a3fdfcc3aeb358d79c8047bd2b982a9","sha1":"7a01497a8af9f6a3eddecdc2053ae1482850d87a","sha256":"e10c0c838a0f222b9f0f1df352099a419bf163e93015540ced6e82166d8d91a0","sha512":"1a66f40d2aefb56b9323accffd88ffd45a443233657c86d60e3f262ca6d8b4eb77df731993634060f472516cc6ef7c9136f67954c732caff16a7181e836caa0e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 20.bat","filename":"Keyboard Data Queue 20.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"3773968a18c44007544bafbc31c070e5","sha1":"bdff372ec96f93e971f5f960b8e02fa5b71ffe2d","sha256":"9854ff9a5e920d3d077224ce003261b8669d336adc1079bf1b8632d9f6b8da16","sha512":"239576cc6f1b7bdc5af1e910201059d3dc95243f01aaac8fe35ec6ba3c3c48220091ab3ac75e2b3a29b938a2c6669f17b83c6daca75de0559bc63ad8944fbdfa","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 30.bat","filename":"Keyboard Data Queue 30.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"812fbd71da883ce232c4b691d07ad543","sha1":"808c76c390e06ed29990db94c3a5aaa7fb1cc08e","sha256":"a82e0519701f42798927a875371aa20b9db617995d013f29889607dca8d90e61","sha512":"c951acce1d178af1def2842af68f74ad28fe6252d58bc433e5dd71f738cea30fae2dfd4f30e9bac8dcd66413ebf8dfac372cc958627b319b454aaefd8ff120d0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 40.bat","filename":"Keyboard Data Queue 40.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"dc446f3059093f51b1d633c0a842285a","sha1":"e7b07616429aa65cefd5960b1190084cbd387c82","sha256":"e4380015ec91a4885fa9747037b8a1430d9ec03845197d3fa5da9c78da802670","sha512":"7618925c4e56cc32f0aa5f059f121eb049b7691ba79d67b89e97ecb862c370f2047ec3162cde8941923a45479ffee7339b1da3de4616a3865e35f91bbea306ba","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 50.bat","filename":"Keyboard Data Queue 50.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"8d77e62b92797152b2c5c5a829592f5d","sha1":"2d7e7336542a78306d8efd7fb046c411bedd55b6","sha256":"ad2474e54e8a30b5c7573cae13dc4b8958d32a62fd0789ca9f3d51f296062221","sha512":"77589811b2f6c6291cd474a3846a8bb3e73954e1a27eabf7b8ab7e2c6d996656d3927c285102980fb1407eca27ca081d0f38cd9441d1b5d88e957905d2ffb592","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 60.bat","filename":"Keyboard Data Queue 60.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"49247835c6463a1bcb761bded6734c90","sha1":"c1b7c5c67f9df4c862b698489f21315d0d966e72","sha256":"5a0d86c5604e489466cb714e98b237f7fb738a299cffcffa61e307267d3abea4","sha512":"3d82b472ccd3e2817ce041c272bee36e3526c11f57bf1a0a7bc9b5451e43f9b85355e0ff1f6787e8520380e54b56a487259951df8d7c51547be56b2c62799176","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 70.bat","filename":"Keyboard Data Queue 70.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"25759c228cabfd45eb2061cce5fbf8cd","sha1":"bddbb3e8773b707304537611f3d81111ad3a6802","sha256":"25bfbdd65cf08cc254ddae1144e8abcda45f1f820ecbce3c48540264e506fd01","sha512":"ad0a595a6d5dc3c7ce4c84cae40ed37a7476118cec6b4b332e95b5075a096766bf5be09f17d1fe353d96a2f685b4060f001709a9f38751079d36e3a67da400b4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 80.bat","filename":"Keyboard Data Queue 80.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"bcd192fdc434725ca8a552b6c17143ff","sha1":"e70a65b6b2583d5a3ef752007004c6cd1e121a6c","sha256":"06111ea0e3974cea5e391acd48d8055e121348ec16214bc6319967ebe9a68483","sha512":"33955a04738880b80d541d5437a5f780a2e4d4a6f298241408ef676b40f2fe61c23e574a31c3d1a0fb273f0d91c57200b41fb2fd86003b5fd91b84bfe9f635b9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size клава/Keyboard Data Queue 90.bat","filename":"Keyboard Data Queue 90.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"e562d01d202233a9ebd50ffa4c5f27e5","sha1":"2fbb6fcb8f3f08944dc09d15e0a0c490ce16382a","sha256":"b8b5aa5935a147351268579dec8a9e9f368a90de50469a75516957d416683151","sha512":"2b541c6d4eb3cbf4b1fe66a3659b9b75474525d017c3f312f6b8c8884b7512184818374baa3baf50ddb07a1078848c67e0232e5a690dd8d97f01351f8740c01d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/.Дефолт 100.bat","filename":".Дефолт 100.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":459,"md5":"1e49ebf0c7038f8f822010bdfbc72f4e","sha1":"3925cd8c12088d5097774d3550171583b5bc4963","sha256":"d98afa0dea3ff0f2c8089b9db4d4a09489621cb8e7dfa5174b3cbb7f0b4ca70c","sha512":"af5fd7df1435f0e7f2c1ba42e61b3ab403c795a730a3a22786b2491c8eb9ce4e0fcebf1a0259b0e3c79bcc44e33fd5fb5ab3d58ee73ad167d872bf8378e7af10","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 10.bat","filename":"Mouse Data Queue 10.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"664e2d8ab5c2755b460b3602a1d81578","sha1":"549f37818429b6f5f8ad53c6cf8405bdc60ccbd2","sha256":"b4e72acf2b1d412289b34f0b4bd155f685eb67d20ed8fef1cb9253c0241229ac","sha512":"3950f4c10bf7f7862e914793b06be700e0cdec7b5eee4609e015b8dc075ba97c959c689764edfbf3cf857fc179fa2e90dc8a27cb524870adf13ad14444cade6e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 20.bat","filename":"Mouse Data Queue 20.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"203500bda3e53b7b0ac3d7ec17b2d000","sha1":"a705c580a92b843997b70f0a648f97ebd39f9805","sha256":"61f1731a4f59e9f590b777e9d7539ea6be13150c3c1075ef9f3c57ac22f50a53","sha512":"2922ce11965c101769de140735380a5c08d8ad498430c6ce815fc5e18734061601caa119bacf98715799a48b6439fa89fa443a8763bd41134bf17752f0dfac48","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 30.bat","filename":"Mouse Data Queue 30.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"6a6c4be05f3f57c305cf9d436b35514e","sha1":"f8ae4a94119aeb38fa5ec7f8f457cb2b85236323","sha256":"de7a67871d9bd76789b865bed573aaec1adabcf40ae83103254ef0ae606403a7","sha512":"10fcb2f5a86a99501c3ca4ca4472ce8b5462ded1b11f8ac028d1a2746599971b4863ddbd247a6316c8ff0e25b10407a87ee9f955197ec76ba646c01de6d34ab8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 40.bat","filename":"Mouse Data Queue 40.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"662c8051a361152a39564787ba26fb31","sha1":"66aef420961930a5d447acaa2887ab20a04bd67a","sha256":"44038781ce2bda84652a373c2bd4e191408904cb1df936c8c6e871f7848119ac","sha512":"d4cac56c658421b2885c839a7ace7a28653636f2890671bcf82720a05c0b30999857bc3c22dafd2a7100efeeeb6cdfc67bf40e6b9fc5956a74f8ad78f23b7973","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 47 (~900 bytes).bat","filename":"Mouse Data Queue 47 (~900 bytes).bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"ae414247827527033bfd0d0ad32286a7","sha1":"646b8031169e21ca933f9b104334c68ea4f4a3a7","sha256":"6280b480323c7fc236bb9d27780fbcb171a6de28bd37ef6e5cb6649a038b448c","sha512":"c4080004748a02a843d96c342fff4195d09cef3459b5518992fc28114ef9e12f0031e849cd5fa8da5fbb1907b209aff880513788ea3fd844ba9e75cf3bb51a50","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 50.bat","filename":"Mouse Data Queue 50.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"05ce7181b889fc881294520b1bd6040a","sha1":"cf150dfe4ef7a5ba8a03d381e0ac634ed28d6c78","sha256":"e59b8b534f5cb063c3607706c0b4a100e301f22ba57f89776764fae6c935b38e","sha512":"66a086481cf40afbe02f67cd5f5ff4d56b2eb6cffe4a8227aa21858eaff687bfe27888d43768a1d4e0d9c8de5dcc77a9a92496db5d671fffb84f70295fe7651b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 54 (ios1ph recommended).bat","filename":"Mouse Data Queue 54 (ios1ph recommended).bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"f8faf36f5a20e24370e483c237936131","sha1":"b0c23a42ed7fc5709d81c09bc0fb7d9b41ab67ff","sha256":"f3596c4596010856aebc48d6b4b42b30793b6dfae7481801801e90d9c833adc0","sha512":"f01a329191cf258e99c1b9c82edb5f196952400ab708c4fded9c05d80149997a75ebfeb5a978d3220c9667cd362a6eedec30ed205fe94c46ceff9d39b4ec95b0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 60.bat","filename":"Mouse Data Queue 60.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"1146ffc3baea1a821b1e6bb644c24ec3","sha1":"0a49e86da216144bf2e041e62e6def0c800e222c","sha256":"e54af88d8950c73d0daae82234dc03ddaa8aab0028fa24b99047e1a8a231fc17","sha512":"f330c5df8c7aa638aaf99efe9f09502177479e4ea43121bc268884aa8f22ad3f1c937a5ef31688f6912f4a7f4050d7c69c961f0a963245226b4a1953b85265dd","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 70.bat","filename":"Mouse Data Queue 70.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"ae414247827527033bfd0d0ad32286a7","sha1":"646b8031169e21ca933f9b104334c68ea4f4a3a7","sha256":"6280b480323c7fc236bb9d27780fbcb171a6de28bd37ef6e5cb6649a038b448c","sha512":"c4080004748a02a843d96c342fff4195d09cef3459b5518992fc28114ef9e12f0031e849cd5fa8da5fbb1907b209aff880513788ea3fd844ba9e75cf3bb51a50","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 80.bat","filename":"Mouse Data Queue 80.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"3a3ac94fa7c5343c20f90e1a2ded9c2e","sha1":"7fa54a343fa55ef90fbafb1580217673e192df3a","sha256":"19c242553cbcac801478440e0d8368724922c3459dbf693e3bb648f7d300c378","sha512":"fe23c4f8ee63730e8a7f0010f32cea5e6362cfb0333474aead76768a06ebe76ca406a674cc71702841773b104bc8ead1965ef73c8a9ba822175087c3bb125f73","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Data Queue Size мышь/Mouse Data Queue 90.bat","filename":"Mouse Data Queue 90.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":400,"md5":"1d381333af572450cd660475ed65d370","sha1":"6cd3be5633b1284255aba26fccc11055d6422f88","sha256":"9c78f16d107068fbe2e012a82bbef1445d5ba8308581a237598a144d8d3d10ec","sha512":"37428b242904fc4322ef3d56f6ddd35801375a9ef5267eeaf7bdc70093f8b9900a42d67388908abfa4f64d84535b99b849dd3de135192babb6c4fa6a5d7aab8c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Desktop tweaks.bat","filename":"Desktop tweaks.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":804,"md5":"185e0a3c643aff5173532c9cc457819c","sha1":"44a003c44ee98f7f4c5da6c6fb7af69f301d4ccc","sha256":"b0c9d3ee8887af8c38b4b1b0e8d3266ef8dbb56d78fe85200a8f66acb790c31f","sha512":"9fa386c94acaff3f147078afda8b97722e09de524720af12c987c8ddc4b080d346a5cd8d9c23163f4e8220a2109c5db12a206f74ec3fbbed50e23fe5bac27cf0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/System Responsiveness.bat","filename":"System Responsiveness.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":543,"md5":"e30464ee77940d821f1f51af77b156a7","sha1":"0b01d70b490c55869ed54f1fb06d9518cac8c579","sha256":"e4717950349a4d9a91b2e0f8a117cc7c5a820fc5cdb21cae9ce16f91c8dd4c63","sha512":"fa1793cf3c4d9d7c006d70623c03f03011b45fde5a3378fcc34e72461c922185be5841bf4981adb88be6ea5c0e6c945d63e801f7eec1c8b29f9b61841bdba190","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Вернуть все службы.bat","filename":"Вернуть все службы.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":23347,"md5":"31e72133fb3726be8eb32d07b406478e","sha1":"cb5457ee660549ba67f17a11650adc11b213de12","sha256":"8a13cf354ae5e1b90c6ccdfd521e5bd33948c6f575a8509acbf37c3037f02860","sha512":"8ad80ef6f7f66b92d70c738ec0d8bcf6fe1f9a7e9e9ff4206f329be09cc21e0ee098e96f04bdc558268dec287bae3b4412ac1c12261db8ea53728f3f3bd3b26e","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Вернуть все службы.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Вернуть новое контекстное меню для Windows 11.bat","filename":"Вернуть новое контекстное меню для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":366,"md5":"a6d6bd47cc499c91b258083f646ebf31","sha1":"355ae42502883f3830f530fc6949f16e59556b9a","sha256":"b5ecf5ed7e940b02d34db84e7a422fb078068105c907f81ffc2a4409b0e456ed","sha512":"f14939706bd14a7660e7261a6e68f35a3f7fc0b561d8c793884bd55f3a08f026de225e6629236e858034d56686e49671368fd85b068ad948bddf779752d34fc9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Вернуть новое меню электропитании.bat","filename":"Вернуть новое меню электропитании.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":440,"md5":"5351eec775ff092133f89ec1cb0a2e5d","sha1":"75b46b8927f9e9b561b0e155ec13525032dd7d0c","sha256":"02843efb8ac992e886fa68474055b9449d19c036a6bcc0ccf2df4a8ac5172fcd","sha512":"5eed6cfb5d8bcb4300fb14e9b13268638c7ca02c2ef7e7fcd1933bb500ce9c7748cb6d1dd51fcac45f9ece907be8968adb31ad528f0f2ef9b51453e860b0d54e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить FSO и GameBar.bat","filename":"Включить FSO и GameBar.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1890,"md5":"bb2539beb935bd56b6414cda0d5f389f","sha1":"a9104bddb3f711e598ae6c12087cfd74aea51e21","sha256":"b098870b9cb65e4c9652e5a2a033fdc11bf4c374d9b2b90bd127ba687f049095","sha512":"fafe29cb45d445a47aa0543cf21a52285799255d6cf173d58104e2c6deef73e1c38bb4a20aedd5863a8dbabf37ea419e05474fbc3a1de22773143a8c2d2d7848","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить HDCP для ноутбуков.bat","filename":"Включить HDCP для ноутбуков.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":244,"md5":"be0f9c4a318ada159ad49ddc9fa1b260","sha1":"03e61cf18b6357498b02542b5f2ea0f6fb83cbf5","sha256":"343213330f6a595bc1249b1f81ab6598c8bb161760c57aad2f33e006166cd574","sha512":"6b3a8dfa3709cb77d8279a5f47ad47cf5f5aa46469e58296c43accc325b763d79e9bf97af2ef63abee3a64d04cb6f0c2d993aed5c2e8bfb5e70ba4485c6fe8a8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить HDCP для ПК.bat","filename":"Включить HDCP для ПК.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":1389,"md5":"63a8fa8e4ed34987c968dc476f2a6ad4","sha1":"f23578a2642980095771f058b9752b8c44454a05","sha256":"ef21c2d03d8354fd92d603fa1773dfe32e02bf0a4a76c3c5fea18a163d66daf9","sha512":"6743f2b717bebc44d64308057a0dd1e40b65523958471ed5aac4d76a426c06ac8dccfebeb6913c0c6beb89d8347b8280e57ee0b53c03c6555e6c83a8e3a43531","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить SmartSceen и блокировку загрузок.bat","filename":"Включить SmartSceen и блокировку загрузок.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":518,"md5":"9bc475c32f7e839d8b9b7d5e9deb1311","sha1":"7ca5f51c3980be728b27e08e23fe047711c7bdb3","sha256":"b52ab78f509edfd57238afb882b5106bf4157d5462069543c65949dfe5e2f439","sha512":"347854744926058480624a333863e222cf9b46f41da5e7f5b3ff1b1774bc4c6c85e29986107bde2210b8c38bee18f1d2ea64d0409787c9f8ac36d95242713796","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить SmartSceen и блокировку загрузок.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Включить Spectre, Meldown, Tsx.bat","filename":"Включить Spectre, Meldown, Tsx.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":900,"md5":"3bb2861207e072551c74611209521337","sha1":"8d5d130b9528fd5d9b6ff83ec78cf34617eea225","sha256":"1365fbf6c8fb2b2b5359298afe3ac1e8b0db08110103feb9a694f1b110adbbd0","sha512":"f48bd8385d4c25c44f3ab63163c596a63d2da0ff82cf00334c1760855c20585fe56cba50efabec8097d4b767a99604189b0890c69a7064dfaf7c21cef2dac4e7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить VBS.bat","filename":"Включить VBS.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":440,"md5":"1dafa3df741ee334265e12ca66ffb6b4","sha1":"05f38e94e16f30f9a4ed32291eacea081c4291e8","sha256":"9322a24f1647a6c35d3fe1c92f68b255f3f637b5cdcbfacedc83eb363ebbd867","sha512":"356defa1cc6702ec4591f2f190b68bd82c94da35fec833c316f77d9737b3f9274c0967548bc0cfafab1fdbd9d693f5cf089be705c1c9285d2fe0d567b974b1e2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить автообновление.bat","filename":"Включить автообновление.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":623,"md5":"77dca8b0b75edfa6194c3f65ea57bfe5","sha1":"e743b100d5044cf0520b6e3ab4104a5160d6a5d6","sha256":"f9c53480abebb90cfbfde2b2e24f0f533c648909e03c16963077f7380b886476","sha512":"37f1d07cf5572938a0677b0999ccca8f7ce45a697675770bcd543c48e7094cd2c044693fec15f5bfe9f47ec340dc53990a2c881b5b69159bfbcf5a9273cae674","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить автообновления store.bat","filename":"Включить автообновления store.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":540,"md5":"3fcacca34690fb0afb3a066c1752c53e","sha1":"f2050d1a1effb9fd0620cfce1f4f3b855c3c11b7","sha256":"1fd61af0f50a64a211aadd5a3b52926d96ffb76385fc336295b35e9a3b3dead6","sha512":"b07389941664be091de4f0ff8db4c5ea1aeeb3e826f39e8012e66d3db23ca325425ec6156d7d3847f6699209b4cdeab2cdd5c4d2b5a732297021d1995ecb9b79","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить антивирус Windows.bat","filename":"Включить антивирус Windows.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":2461,"md5":"155949620f35f99267f091cc6712db43","sha1":"224ddc8e54af3f2dbc1b1e9feea7974c33544f90","sha256":"1274f6b9b1f42ba91eae4ef96495804016c87ddead6e856e25d38541cfa4c033","sha512":"65539d1bf100568a0e8444c08abe174ba572a525af847fc97425aef21d5ccff916efead13d44e035fb2622c68073c53b174b658aa9ba44fa3b3c9c743417d04a","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить антивирус Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Включить безопасный режим Защитника Windows.bat","filename":"Включить безопасный режим Защитника Windows.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text","size":3306,"md5":"a4c38cb81bb4a356fcd87a73aaab8d3b","sha1":"cf316a818664b9990587edb9ddd5ae5490312fd8","sha256":"e99350e2e118ee556fbdd296ce356c648304f38fb37711284f94bcd59fef85bd","sha512":"0aebe8a96da3d316e39e1ce6f38792c5652c2aaae1dea685da49eba233ddc0eeba195610f00f85fca6bdd8a9b5f540675a3a246bf55ee9f043b90507923e6528","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить безопасный режим Защитника Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Включить брандмауер.bat","filename":"Включить брандмауер.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":55,"md5":"e77fa2a31b43d9ee6d09e1eade378ede","sha1":"b942d8c9ead45710f37c8161d0230b4562a87c9f","sha256":"9e7848d3994a4147c27041066c92f76141c67e52ddc472c1e6b0ca4da760760a","sha512":"798be589c5bfd4b992d50c36f31841d69fdc7b7eb9d4208e3f701297d6e840345cf619832d09a746f89b0f713a8b1a6310b3238aeda9c215be0da8e9f0ddd501","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить взаимодействие с подключенными пользователями и телеметрию.bat","filename":"Включить взаимодействие с подключенными пользователями и телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1348,"md5":"09d3cb45183fef4d3b7a0a53530cf211","sha1":"b0c058c3b729d28390cde8f40de6aba4190cd610","sha256":"1346caf36fb9e6158fb3dd8c4d56c369e909ef9f9236432284d936d74ed67f1d","sha512":"cc9d5723dba9a4d4b22f3d23ea7ec404a58932f37557abc5ef800cbf273fdf6e37d6fee454cab960fffca292c27cf2f11812d13f410fef6b423fbb678b1e09ea","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить виджеты для Windows 11.bat","filename":"Включить виджеты для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":418,"md5":"c49e4c0436ba57121c1ae373f19ca005","sha1":"137cb4d37a7d18cb4253573929fd66b14953186e","sha256":"eabb59fef34b706d356b5b826abc500ffe5722feb59154bfab67d9c8c699dd24","sha512":"4bd9a00a0ac6b34d17f662b5b77a7c72bbe729bb6cd2935bdb149f8d3b70d55c9bd37d2fbffe05cc77e8ded6ab66d14292cd01fe37f265ee11f668b74e9199e3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить гибернацию.bat","filename":"Включить гибернацию.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":598,"md5":"0b2a67c7e3d24f183cb5a4821aca3e92","sha1":"616f4f9630ccdd032296573fcf349079ce73409b","sha256":"81f32c14390d34fa43c071ab0d06b7aa5042dfd4656411f8de598aa893bac718","sha512":"f2a9f634d36830954ba83ec6e034e3948f3ec16b2851ea8517ae93488ee41a19083a2b626b239f366197b8ae7eb0726201384871e7b60ac7731a6a34675e2ff8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить дополнительные ненужные службы.bat","filename":"Включить дополнительные ненужные службы.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1540,"md5":"83fbc3b74c3fc5b4bb91495eb10dc178","sha1":"19094da7a9e962fc843c7b88188a70d4d1d25f6e","sha256":"8bf00739161a27c6eab2ab858b31e204537ed5202116f09094adf75e84991206","sha512":"15a01a7024c024b42313b278933eeffa56dcaf069f96ca58cdb603daaa1dfae41bac0346678a57152170153b7839244a26f0a5a4aa3d3c83d0e322020f4f3ed1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить задачи.bat","filename":"Включить задачи.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":4922,"md5":"74e7d1ac5d38153a983e6d35386b16b9","sha1":"c05771f7e25173512bc01cdebc265f03e0877bc4","sha256":"1c92b70baf5687e48baae3d09cad37a4f749123d26415777debad113370112f1","sha512":"658ce764e54d26e56cff1b67bc168184282f05acb4ed125de896119f9961f66ed5abe60d132a3388226e4a92e6b541dbca86cdc5e559fad2de6853d3083c682f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","filename":"Включить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2842,"md5":"4ea14fff89fb1cc7fe4880b771960c9e","sha1":"e36f19889738bb94110cb89f5e88b88e68307e73","sha256":"5a0b02adab2e5afbfea55df2882c4e048093bf4f5c2c412d0ece7e6b7bfc1f92","sha512":"d7adaaa9a3553d71ed6b5ee85a51c2e526d62100120526770746531939dc7d9c4e7d0259cdf8dfdb79895e67750b5443c3619eb7f5371e4bbf61f6aa1ab05363","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Включить Защитника Windows.bat","filename":"Включить Защитника Windows.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2426,"md5":"48830e271c083b78518455db4da24e4c","sha1":"0511f9af3faac02705e565ffafc94e1078279885","sha256":"69bd9c6872122f7fa543b70a96f29cde188f3d89c9aea77081b1201b72571265","sha512":"087b2f10d334c8a19ce97bf822862b512e54f69f239b2bae3c8cbf5c16fcaeb8316e5f70e18d7925f5becd197dbe914e81d67b9c81a0b38b792cec398c53fcb7","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить Защитника Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Включить исполняемый файл службы защиты от вредоносных программ.bat","filename":"Включить исполняемый файл службы защиты от вредоносных программ.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2723,"md5":"87d27e2829c87adb66e68fc0efceb26d","sha1":"a3c899b18186e65b574ff719908b005cfe80759e","sha256":"740bc6bdf1851bf4226182cb19278929ccb7bdb269faa305041a8a590107ead9","sha512":"067744413d9c11cc59c05055c5cc32ff4800a8c7337af8b87e4cc7b876feeacbcba8019bea88d37cc9155ad959ad6b40fe239ba1c20884c950e5ab87528cefba","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить исполняемый файл службы защиты от вредоносных программ.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Включить менеджер загрузки карт.bat","filename":"Включить менеджер загрузки карт.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":406,"md5":"bf724afa0e0714fef51bc7d0d3d6835d","sha1":"1c4ec3dc4f863c15bb3416c13c51593d3b2c3990","sha256":"491fb325c53677cf18ada2b00f3e841cf897fcbf94f46ca959663f5dd007d63d","sha512":"f90245c56f2e9deee1d8853069bab4c69569b2c9f43d05d19694c68667eee406474a3024dbf58bda9820a9ceff9a81b125b7d27e07f51765af77f41a79b2e1e4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить нежелательных служб от Adamx.bat","filename":"Включить нежелательных служб от Adamx.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"Unicode text, UTF-8 text, with CRLF line terminators","size":715,"md5":"3bf5831b8ac7074aa2364d90951f3b8a","sha1":"fedca8a4d638bb43ec3bb187f79aa20d23c55410","sha256":"2a7ace9c3556315aa96fb0a7e96c07607abef0860817544e1e1dc7241277ad0b","sha512":"ab5f737793bc75322ce3217729b3114bc71d3bdb637b879fe5926269658b8c91b5d7b71572dcc39d21adc6d9e7ba43359bf30157a65a5fd95c1f9c7c468b6a58","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить обновление Windows.bat","filename":"Включить обновление Windows.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1811,"md5":"3da5f11f706511117ee25d3ea3c5dab1","sha1":"86ed8a33ee82cbd49aebed0083ca207ce9125790","sha256":"064b6416bc57a1121502a5202e82d5763b8694a4a3364eafb83226f3b34928fe","sha512":"8e54282d8e662e155fa4a5c81922523fd3261e01b879bbf65e8943da6229079e39295f35936d8f13175f5e0cc60270f82e5dfbe00740505952fb367a11c6e4d3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить обслуживание HDD SSD.bat","filename":"Включить обслуживание HDD SSD.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":623,"md5":"754da5fd9f4384ad471737172c1ad411","sha1":"bff3559cbaeb93c1217c18f26b1a89c384953796","sha256":"3253758d14e15511e2c0c92570dcc1d4d45b5bb0925a04ce9c04ab4b862104d1","sha512":"e7428a8d3ee56ffb1c0eaf382661a351f83cd52404a9926bd815fda6928c8d77de8036f9a008bc7d192ce6a1b6ca9c1caa6bc1ed77e5f3ce2ee2f0fbb2bc7a36","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить общий доступ к файлам.bat","filename":"Включить общий доступ к файлам.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with no line terminators","size":83,"md5":"778a8166ed0ac91fb1ba373332d39252","sha1":"526099aa61b457b14f05ebb76d07086488858c72","sha256":"3b58c023700c07ee2873a677007d55a6990376d86c5b877aa304374663b4b44c","sha512":"ff5b6d2aa8dedc649e2d908d33ec0968bd33ef1dd8d68cbf5e7c9b078a9c8efacdf2424fa729e3a167f850a7f2947dbab2fecfd70d0bef338727f43ba12b52c0","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить протокол SMBv1.bat","filename":"Включить протокол SMBv1.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":186,"md5":"1322fdab595d8074999d1c67215622c1","sha1":"89666d70b838e635b8820a0e3e8bdb6bac63b286","sha256":"3f373164eacbe00a7f05c949466e8b48268b5d10773a994e063a8de65e5ca5f8","sha512":"a710a123b4a97aec7de6a731b1ba3b5a9083d3222804d1217eaa82f0fae2cd9c64f0d92a5a08c0ddf1a6ade8d13e8cb01fc400a13442f978e16b97d7d7297b2b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить работу программ в фоне для Windows 11.bat","filename":"Включить работу программ в фоне для Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":671,"md5":"b7e866b76808d3d60e2b629954b4219a","sha1":"01bb2006e253a4d03cab7ece77ab7e59496e67b9","sha256":"1754a5be8b7719b4b48bea24ac224b88f425de35f6968a96a7ea90fee6289ea6","sha512":"1e27a1f41b67b95166f9904ca38cac0031de1a70680a579342326142cccb65770725390e08661efded2e44017d0669a7515ce99818fa7f5d2aca0bc21f091f4e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить работу программ в фоне.bat","filename":"Включить работу программ в фоне.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":393,"md5":"504276fcf54347b85e4d8ba5d692eea0","sha1":"abc79cf4de125fd19e0d7cfbb9c4e360135a4ddb","sha256":"4f046dbb143c58db58de638d1f67a9f2218b7f1698796a1d022315055f10913a","sha512":"f84db814345416148569e86d1361f3e0a0185d2bd9a2cb259d1076580d0802b5dd11126e449fb2f76037facb7ca364d45e546c79074a17ca79826d26795cf771","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить сетевого доступа к доменам сбора данных.cmd","filename":"Включить сетевого доступа к доменам сбора данных.cmd","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":1090,"md5":"6bac72a9ae3f94dfcf66c109bfaa3fc5","sha1":"7a947687aff4da5d9612652a0ffd7b2991477111","sha256":"de8f4ace9bb8a971ca5e3f1ec1aa30c93dee48c2c9c53892638b61a130d92122","sha512":"0df675f586e6de4f823f38fd372ed0e89e7a6f453301dd1e826ade32649cd7f209ff8864699ad8f85ff149e947ee074305670bc881879fe4fb030307d5428dd2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить службы Bluetooth.bat","filename":"Включить службы Bluetooth.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":573,"md5":"74cd4272c6c94528d237b76414af6e4e","sha1":"87a4d22ac76e2daac72cab1ee66f0b0bd3caf92c","sha256":"7574c28fe9dbe568a8f7a77815dacd7572e111498cba36c675cf1792bea83dae","sha512":"f7e0a0619cf973ad06d08ea7e00422d299578af8183d770f72d938613e78b70704627f4d339677a0818cd6607b65ace2ddd0c7914ac1f646f17dce7fd01ba6d5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить службы Xbox.bat","filename":"Включить службы Xbox.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":869,"md5":"3638fd7b2465d02d17cf0e395af36fcf","sha1":"31a4fe6846b70f4d34fea0830d03bfd3d712597e","sha256":"9432af93b740236b6183b8a57121c3ddc5e2040a9659791988f9666720e228d0","sha512":"190532dced3da2f085e77f364798bcd3dbee6df90e709d6e4db571cfec7ba0f152f32dfd3df5d59a21d70c82536a3ced5517663f63f9716cc45adbc7a42da0dc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить службы принтера.bat","filename":"Включить службы принтера.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":581,"md5":"947cd53f2f4e203437636badb1c49e1c","sha1":"ae212cab2dbda8be0960900a8889d068a2ab50fe","sha256":"38c13e270439c76110827afb82c2de119d8515e6e7cafe03ff92c61308b58523","sha512":"ea2fd53f9bcde88f9684b0947e85d5df16aceb231e5fa39aa964153bc7cb7241dda6bcd6c3e0ad4ade649742eb863e0d5b9e301c43d88fff1d5e19cc01e2a9b6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить телеметрию Office.bat","filename":"Включить телеметрию Office.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":3913,"md5":"ac6843814f6bae4d789618fdf92f6b05","sha1":"3f19bf88e915c2b5540a83f98bd2d7c65ba0f950","sha256":"11ec299ebc6fbcd217a45ed7d6037d7719b8bfaaaff38c63b487735ae4e5a937","sha512":"678b976cca0eacdd170d3a6f3be495fe4284c1f71ba0fdf29370630dacf5b6206fd939b39d8c7e4ba7f758603dc046a5d7a73f15d8d431aae8aa5228ad544ca5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить телеметрию Xbox.bat","filename":"Включить телеметрию Xbox.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text","size":145,"md5":"4fa741bb1a25d123c33c9b31f278199e","sha1":"02369505ff3fb2af47fc85e912ba9ae4b8e14952","sha256":"6586f991879ff309db21fab4536996376722b7fa6dba163552ea96b3e2e74d81","sha512":"34b822155c3d8920ba47c13d17b5b3448b045209abe059a268d5c7725772974f8683e065bd728b78c3451bc89a8f311bd1c051e505df30a07db682193a37da3e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить телеметрию.bat","filename":"Включить телеметрию.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"ASCII text, with CRLF line terminators","size":2618,"md5":"4700fe640f1a6bd4a966095fd30d68c3","sha1":"04a5a9adac324c342f5252c0e918a0dff8b44c55","sha256":"71c1f51369f77ee8c61d26d672b674b633fb3d33a5957bccc8577d73ca8ebb5d","sha512":"882b7ef37515497bec5a6227b5acfd0258adc5f4fd66fd34ce4868d2927de7080a95326afefed4708eea031f8a1197ad0b5344ff882b2fa1059bc4ff345e0be6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить триггеры.bat","filename":"Включить триггеры.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2772,"md5":"4cbb4178e430b0093d40f04326b4e45b","sha1":"9e46b538a046a3c31b976d40757a033ee4e420ca","sha256":"19cae4d4bfa00d6f5746e3ca7e2cbd01560b3facd9d773ed9292ab85d96764d4","sha512":"815b7970b15a70a5603e6dcb303eca4cbc55328ebf9560d19282f56bfa88097ed528724f02da20d2bba72472f5d112652c7f3b18125e6df3090c75c3de552971","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Включить троттлинг.bat","filename":"Включить троттлинг.bat","modified":"","Modified":"2024-07-18T07:32:46Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":463,"md5":"54a77969ad1c4c8f488aeac8e066a17d","sha1":"a7ec685a9516923911f3feeedbb2c0ccfa3fbdd4","sha256":"7ed9850d0e29ea47f0b50fb97965c219b1cf81c76340594d6c727e79fe03921e","sha512":"1f8accab35f473760c73c7d6c074619a9037def67672f41d4d62dc3897f9d6ece447fd57368edf540fd981d606e822ba4ae0a31393354a2356adc4b6ab7b2a8a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Выключить GameMode.bat","filename":"Выключить GameMode.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":371,"md5":"d830d8c0e88f1f01333d2534ffe69c5c","sha1":"f13c20de62cdc2abcf4955b11c7225cee831e5b2","sha256":"d1a8b96c44d74fdffb015a9301cb982a5d8ab47eec975ab0dbc6dde6e1757123","sha512":"606dc1c1d0ce325973d28ba32c2d09d4c8175c609785af9ab8df90977e31105c21a531fcb88daa299acacf55fbeee28e6feb10259fd05ff42c436a7f23f43ecb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Выключить Large System Cache.bat","filename":"Выключить Large System Cache.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":441,"md5":"6a2624091d22c21c99e331dde5ee9d83","sha1":"733b0ed6afe43c32735ffe7d41e6827cb7bf27b8","sha256":"4bb7dac142649e144759617f41938eb8061e0fc5d0c1cf3b4fb9409a9167056f","sha512":"4da2865c22a369dc307a6e6d32678f5e748550e35b2363c675e42a2c9bef9fd3d9f627ea20d7f58eeafbcdcb6f0d7bafe8dac4ca95379f9c2e022db8ed86ff1d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Выключить ускоренный ввод с Клавиатуры.bat","filename":"Выключить ускоренный ввод с Клавиатуры.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":938,"md5":"2fc99e805263b1e8c894daba5ff619af","sha1":"b8008a027d9ac73479df734293ef460705a07d42","sha256":"cee4e473c4c5d97436c6d324d9e97395bda0313fa09fdcd7d80e316788d1f5b2","sha512":"081e0d17f85c4fbe0b4f1aa0501454e88c4a2db96951ea5afa09be79b0ddfa57bc8dce31e58b8d4d72a13518b581074ba4b1983222f42ac711a320d5e2288530","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Дефолт службы win 10 11.bat","filename":"Дефолт службы win 10 11.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":23368,"md5":"4daac071f88687aa06a8512d8abc7c77","sha1":"31283120ce25a59e00b215bc692792e5a7e52c12","sha256":"73406148ee229d91ceb686c03f79162aa5d187a1b7a927a7d8b0c4c9c6560da7","sha512":"326da650b547284194d78cb60932fb605db65dcf009b60330a1c0fc0899c4cc28cea6a9cab60da6481bd88c810e8b34137f896f7ca593a85ac94068635df6256","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Дефолт службы win 10 11.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Отмена/Добавить высокую производительность.bat","filename":"Добавить высокую производительность.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with no line terminators","size":84,"md5":"31c9354a501470c3bfd995e41976a480","sha1":"5e26f960ed8ef975cbf84800b2bb83afb39cc449","sha256":"a3b3d7804990832c57fa14cd31f772d50f5cf93d1fa39dd31d31c16ff86d77b5","sha512":"a9e94b83431410d902b417b2910369ed981754ee7835ab8b36454bcaa14aaee379f1e5effe4ca2fa7d94fce278f915e1281a3a2b628ef7c5e21cce858cb0266e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Добавить высокую производительность.ps1","filename":"Добавить высокую производительность.ps1","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with no line terminators","size":62,"md5":"e3d0363f182b34b8dc19aebb13e73312","sha1":"188fe0d5bde3e9125d514fe43ef73b7df0540f80","sha256":"819b72bae20304be223edbd5d87f63ef408b75d00ddbb195eba2941f0478881d","sha512":"4ba03015e076be8379bee4c9cda4e0b8bc805500112a64baa04acb265d206043ec28aa9831c25a853d5e8aeb666a16893ccef9154416ff900af6a4acf6e2c37b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Добавить энергосбережение.bat","filename":"Добавить энергосбережение.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with no line terminators","size":84,"md5":"9121108a74f6dc2c750681a152d14564","sha1":"12d326487ad9c0df8d08ed25ce9086525db1f2fc","sha256":"7aceb74620865ff4bede97da22499b39d2c7936a2dbd8dc82e912e48f5104045","sha512":"13887ac4c991568f5cc4eb50d2c3b454f4e07e61c0f6190ae0888e3c06b66fee30bd3434a924d1b64e2e9e68eaa9e8c9f26973faaa9d0a1f1b02d9fcc8ed3e93","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Добавить энергосбережение.ps1","filename":"Добавить энергосбережение.ps1","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with no line terminators","size":62,"md5":"e378dc19157824649effcba2a5020b5c","sha1":"285c497640102024ee65a5c5e36adbdf2279c8d1","sha256":"01646426930353c5e2a0cb5d57f772910132f383e12d41e18ef80bd902fccc45","sha512":"b2bd59b96d8b9a63cf0ae2fa38e533b41a90e5a27b993e1acc358e097ec7d94ff1318929c8598b941eb71f05b8f5e7812fa27ce630f48f7b61c9398bdcb75c00","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Если скачет пинг (NetworkThrottling).bat","filename":"Если скачет пинг (NetworkThrottling).bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":455,"md5":"f1773b663b50ca1aaaa90ad0dd653f41","sha1":"19d8b8d6f42a3259b98177d5a9b7e0992697bd7c","sha256":"9e9f27426255f9852fe3b25b05b931c013295fc8ed59d54f857f7a916f6518cf","sha512":"f7218320b5e9d833b9f52c89b77b005a9359ac91ed7a0ad16d5d48da811cca910b515632599843f377a7e84781fdde999fb0411fbd5f5d1b1b86f1f01dadb84e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Качество фона 80.bat","filename":"Качество фона 80.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":454,"md5":"2edb18aef6487d2606f294f2bce1c39b","sha1":"2e131012e1eb700bd32de72cf0f72295971c30e7","sha256":"8ae9b91aaa42b00ed1c0ac2714d79fef9b6d3425c39128e2ce213fa7f8ff9137","sha512":"dd8b83424eae2a491ee9424cdf5ad18ab0d426cb989f3b71ed6e7369fc53c1ab1bfa7c347536badc2080c083f623f74b2a29f07fe41a26b6ca597490a484e8c5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Отменить оптимизацию реестора от EverythingTech.bat","filename":"Отменить оптимизацию реестора от EverythingTech.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":5021,"md5":"424bc8f40c3e70fdf1ac2019693a9414","sha1":"cad3761b5b96e7c5c985b727d139891218d4912b","sha256":"99a195f167674f18c5e70c3d8614257316e150e77f91258455f6014ccbd5e9de","sha512":"d5dc03b62e1bfb4b31116f0a74947adebe34184a7ccd44f8e339de68be47a9c85ac0514abce397863ea312588376ae61a45917d7a3f437116a9b5b9f74ed6486","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Удалить оптимизацию при входе.bat","filename":"Удалить оптимизацию при входе.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":199,"md5":"27265ea7b21bca50185cd826b1e6c5eb","sha1":"7b0f778c022a8e8bcc73c3ec880e1e474bfc8b96","sha256":"9598b1f8a9be02d039c292b5156b08a09ff5f64c02015e64350241fdb79220ef","sha512":"0355d57d6c5bba545b1ffb18e787b679d30c00d8e847713aee93734125a6d90b49423f35b582364dc0b7f825dd5aba1311931eb4fa31dd55c2c572f2cd0be7b4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отмена/Ускорить завершение работы.bat","filename":"Ускорить завершение работы.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":541,"md5":"6186cfaa65f47c877ba4e41c00f9f246","sha1":"ec9ba52735b60db001faaec81ae4a529b0939064","sha256":"7f1883aa05823b1808061e4a9f02ab85c0fd0782b397c7d181bea6a7ecb46ca8","sha512":"e9e61612421e9d6f25e2b2fae9c99af3e60919ce2887433a0636dc66cd169d6f10fd795cc136b3363482f0fd2d312fb7aba46689d649990a608fcc91149b8c52","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отменить сжатие системы.bat","filename":"Отменить сжатие системы.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":24,"md5":"990a3d0b67847651103d234bb47e7caf","sha1":"ca4779183769873ef275955d44a985943c510a9f","sha256":"84cc3aa7adfe8632ed56361db71d10e904ec16fd0d806258944abb277f6bfafd","sha512":"eb86da51299bc448f6c2bdeb6671e0b86edca776a962814ca75ba305b4719c790a45c3dcf1a9b713432d01ee22c27e3f6a4cba45bc570233915da55107e69a1c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Отобразить скрытые пункты Электропитания.bat","filename":"Отобразить скрытые пункты Электропитания.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1208,"md5":"09ce098bc8a74d22395b07386514d931","sha1":"7d6520e03a14cdd73bd72cc65a5ab3de64bfe434","sha256":"1117dfb0547ac78bc7efcef5e646ee35a9096bb6d6419dd6a8d0de3e8676c230","sha512":"73ada4313e72ef8891f59ce9f395a65715ccf50e83dc36a9f7defa9f57c2093c3bcc355be0a856f4577e6b5677731b003293d11d02c4a7604f96b61bfa7174b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистить Windows v2.0.bat","filename":"Очистить Windows v2.0.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":1319,"md5":"49ffa0909acdf5cc050cafcc0ae395fa","sha1":"be2b222a0599e76dd6bb66a732ec2303f0f9cd08","sha256":"f8ce0040c865befadf7b0de533d66cf8814a41b7c9539491216bce5043c452fd","sha512":"85deb4d633b48c1436dc91b91a2d398496b82b8ce16885b68419629242d0051d176a201be8483033c84248c4cd97c6d30cfbbf04c12ec2f7aebc9437f1c5f510","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистить Windows.bat","filename":"Очистить Windows.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":1319,"md5":"49ffa0909acdf5cc050cafcc0ae395fa","sha1":"be2b222a0599e76dd6bb66a732ec2303f0f9cd08","sha256":"f8ce0040c865befadf7b0de533d66cf8814a41b7c9539491216bce5043c452fd","sha512":"85deb4d633b48c1436dc91b91a2d398496b82b8ce16885b68419629242d0051d176a201be8483033c84248c4cd97c6d30cfbbf04c12ec2f7aebc9437f1c5f510","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистить автозапуск в реестре.bat","filename":"Очистить автозапуск в реестре.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":105,"md5":"7799e228a0507c0a92ffb978d5caa5a4","sha1":"7903a25f8145a5fa515fcf942b22cc6b8cb8943d","sha256":"ee97b09b0cbbb5644e4961e90d86a3deaed1bdede58dd3ec93bfb2ca3fc1fd1c","sha512":"70f151d2425bd0b76bf5c7b3ec578610d99e5b4eb863d24801e3d4dc59439762294b792c2a24a21d9bc1e90fa9b7d8d549cdc1590f7c8fcebf1e0992d10777ed","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистить временные файлы и кэш иконок.bat","filename":"Очистить временные файлы и кэш иконок.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":780,"md5":"79117837955c7db4ea64e56df5830632","sha1":"8631d935977e3415d161270836f769749fefd09d","sha256":"9b67b2147308669e97285c1ab4d7dbc97f3278d6682d4b9c78a66787811901a4","sha512":"55e8df6e1968490211a30986a87ba09ea25804637eded4de83c40271c8aa83010f0a017dc7c6f959fd6663021c1b3d98de77b0bdaf89eedc2eeba63eeaf98dd7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистить кэш.bat","filename":"Очистить кэш.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text","size":818,"md5":"f84f46f3d89f0e4e7aeb79b55048fe51","sha1":"077ec57e65b8bb160300f133dbc9b0c76a9dacf2","sha256":"8f042b3b11b31de0822c4aaf9d94e9848330d4d2fd42c284ba5cc9d2d0f16886","sha512":"e609a7a76324a7fd13c7847d0fae7eedd100721dcc3eac266669e88a7368745ee739572809c9460cc8a987686eb9d45338da4bcd4677c3028b6d13841b08d4c1","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Очистить кэш.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Очистка загрузок.bat","filename":"Очистка загрузок.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Unicode text, UTF-8 text, with CRLF line terminators","size":168,"md5":"6107f7a5ab3c6badf03e9b90758af8ac","sha1":"7d12513c1a000322091ae1f83a277d21c9bb5ac0","sha256":"05503417339e4fd3ede80892ae1ebbdc056dec447f8698c7d033f2adfead0782","sha512":"f47f62b9af8d2c5fe46891bb34a6299eb0a9288e3ad827a90db08932d45f17297c66e3eaa199fec00698462ac99a33b05df43c11441043bd3997396f33d713af","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка и оптимизация дисков.bat","filename":"Очистка и оптимизация дисков.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":84,"md5":"0cef47cbd34975135d6dfbe62722368d","sha1":"679340aff1285bfdd6300398bbb38d92be6b4a38","sha256":"54d14e7a4a5d3b1bd91fa69a296cb96f364d251f53f9f7e99d4443967e8c8d4f","sha512":"b1e07329630066d1ed3388db2bafd7f27c10bef8b8cde48e448caee11535546dba217078bfb86c8c2cfc3c334ae593e3ea18087ded3f82098d1a7ba48b84aa0d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка кэша обновлений.bat","filename":"Очистка кэша обновлений.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":239,"md5":"33a83a2c559351ffee4ba201ff390860","sha1":"18279de20b332dde484d2ba51c1329d0b928f9ff","sha256":"a788abcb3be661d8381853ba042fadbf00becefa14aa748a2c88375ba6064b56","sha512":"ff604802e62c2140b390b44bc62eb65b6667bd2959ef91624b12c81c90e590288a553d88f15ec964dfb5509ce4ba3f4b26c6b4df1ac0717f86c1504d2ea6d6de","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка от Igromanoff.bat","filename":"Очистка от Igromanoff.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Unicode text, UTF-8 text, with CRLF line terminators","size":1415,"md5":"b533eec7b5981a0c495696fc4bd8bfb0","sha1":"2ef7ecd2c50e8ce44b90d23fed3c1862247eb461","sha256":"f9e86fe44ea37510d54ae8d08790b5ec6a7b951f66cd4237c0c9dd0d0ebc7d17","sha512":"390d6ee8941f5c93007914401afc5992d4f2995fcc5270e34db073a35910d40834b0804185cabbfabb1687ab02e1a78b7bef902b18928693504a0381bf95cbe2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка папок Temp.bat","filename":"Очистка папок Temp.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":261,"md5":"c4cb3f6cd98927a89a50fe85f32412dd","sha1":"c226422273bd996f1c146d5ab6fc4e298363b630","sha256":"6b77eaec8c781c34413d660020b88409c97fa7d322ac0be60ffd7dc488d08c5a","sha512":"54a599c82f9851d5546d1a3cae28531ca00aebdc6c9c889e1ea6202cfba8d83f75745c8afcb94150d5432f3f4559237d5ccd1cc0e4abaedd47f62d4b0a96e09c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка рабочего стола.bat","filename":"Очистка рабочего стола.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Unicode text, UTF-8 text, with CRLF line terminators","size":296,"md5":"51123f651a6645995c80463cebb26996","sha1":"fc6e8740941ab12ea3d141a4753d691f1de9bd80","sha256":"9c8a57cc4659818a0e85bcbcb245b3b8f022062a8db6e0f777dfa02989168f05","sha512":"ff6f5f460e696379f3a0efcc16f92eb26037200edcf3b6ff7c5262a5853b06fdf1c6b6fe9d766f85718887e41778a83b4356c0ff3d2e0d8240d304f14dadb4f5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка файла подкачки.bat","filename":"Очистка файла подкачки.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":235,"md5":"c2313463b5eca52ed58517dc2e13b93a","sha1":"0014beaa92191654696a9ad35e0996fc38ef5e06","sha256":"4571951bbdadc9c1e28dc679edc0c0243a2c3069948bd529a21d48633e1197c6","sha512":"4525e4365c645cc444b6d7a153cd57464b3131c9bb6db23e4c360954972e0cd9a97f91fc83dad3d3d2da083c15ac346ad460c849df0bac8146dc7d38f4b8cd32","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Очистка хранилища WinSxS.bat","filename":"Очистка хранилища WinSxS.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":132,"md5":"d1a28487e813d5dc5a761b97531eaad5","sha1":"c640d2de606613d70b3fabb18cfd819d7ef47d16","sha256":"9eca80f5bb97d2403ddcb39625bb4c0e27c23322fb315474090bff8f9487b496","sha512":"5686df35f02f38f902c20c447892e418cebb38aec080eb8bf1d4ad642489213286bc1b6e9aa81ffa421e1cab1630e7ac65cbd103c74ad20fc52b8539e3b39f1d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Перезагрузка в Безопасный режим с поддержкой CMD.vbs","filename":"Перезагрузка в Безопасный режим с поддержкой CMD.vbs","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":450,"md5":"08049add6510b253f75e6fa17c2f9244","sha1":"f56a40a6222236c1036e152739b9d0186c623d73","sha256":"d7d9ca706d6fb3cde2eb25e850f94d9e9e330af58444f6ef569d5fbd54c4cd4c","sha512":"928272544c18641ffdf32ae615ee4c803d39e9261a0f5e7d97eeb81570cc5f10ef1f0215220cd596c5fb489e3bb6fe9b0f8bdca5f24e729870617e2a28270481","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Перезагрузка в Безопасный режим с поддержкой Сети.vbs","filename":"Перезагрузка в Безопасный режим с поддержкой Сети.vbs","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":376,"md5":"5207331f31ecd4f8cef33b34d1f771a5","sha1":"45a0a5b6c402a83c5c6362a50cb25c06eccb1a7e","sha256":"b7f7c7b916c66024e4f2613b611979679cf7e90f5ab2f7046afedb126c30f321","sha512":"5949a43b03360389441b74a27a251375956e43e4e48f902cfb8604382a2dac19a4309c99603cda3da7277927f0cf3b0e3eb90e8f7239f24373a03bd914517dd1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Поддержать автора (Boosty).bat","filename":"Поддержать автора (Boosty).bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":38,"md5":"d311856543ee2c6402508419a68f6878","sha1":"be996af93d1994da326653e0b98d3edadc37f30d","sha256":"f08f24eba03581136c5dccc3b5acfa9793dd6042cc510770f075b8ac9f29513b","sha512":"9c874160333aab3ee9aed826151264cd9803c907c5a2a5a3795ef9124ed7155074cb6a4b75c4befe59c9279eb8d93ca47a9961233a69f7fa803388a52d6a2eac","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Показывать все иконки в трее.bat","filename":"Показывать все иконки в трее.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with CRLF line terminators","size":114,"md5":"72b89fb28aacda0bd164059c733e3f77","sha1":"d3153fbea33d0dc20649c25f50b69121490ff2ae","sha256":"03a4ce869c28ff8da043c9e2d3466888be8ca8110ee0d3a1d58bc8148ec98737","sha512":"7d39aefe66817a53d1be05a79e2284a84407a724a1e7b9f80a2aecf148fccae388e4d29d889dddb5b1d6da35d56900f2f2388b5efeb33a107e9006431cee5960","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность и отпимизация от Flibustier.bat","filename":"Приватность и отпимизация от Flibustier.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"Non-ISO extended-ASCII text, with CRLF line terminators","size":58904,"md5":"687da205637d830ce99c1bf9056a98cf","sha1":"6ed4e6949b25b6b1ece28ef6507a32ba128c1fe6","sha256":"16f42b6581a62ca38470bd2d5980aceb93db0f7745164af1f8118fcad4aaf66a","sha512":"d5a4b265eb0b3cce4215cf8c572706e76a69a328d7723f32c613607e1e3f92ee72495bcf634b532983cc673b433c8d1f5e46ac8dd5bec1c034940d0d468b3776","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность и отпимизация от Flibustier.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Приватность и отпимизация от ReviOS.bat","filename":"Приватность и отпимизация от ReviOS.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"Unicode text, UTF-8 text, with CRLF line terminators","size":31519,"md5":"66bbd55dd1e9e491d5230990d87354f5","sha1":"a4d42767923906d1b3bec35a0667a7e14091ee93","sha256":"08a227d4c85f3b0354dd4c856e5a6994c7be130b5e0398848fba8edb383c71e3","sha512":"53dbc7b2a3f472a1add67bdc0d95852ea9f40e11196a9199aa0f48d4da3950d0491201a651275ebf117ed8c82db88506f2d71daad6d79d145075f976bc3db9e6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность от Adamx.cmd","filename":"Приватность от Adamx.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":17465,"md5":"5103a6d654b4aa412124d18071659c82","sha1":"b27b062ff277eb82bce384d15c6a2a6b2369eae3","sha256":"e9a759e2d929e4918035a7a62129d992f0f3de7835cb56f17b4766732a6a77e6","sha512":"69f6a78c8303df7f2ae2fecd1471b3d4df4c30cb1a39b07693ab861cfec2abdcb401cc9a7ea90875a3044cad87d13ccda0c353a6aefaeb335539bfdc755a10ac","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от Adamx.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Приватность от BoosterX и ios1ph.cmd","filename":"Приватность от BoosterX и ios1ph.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"Non-ISO extended-ASCII text, with CRLF line terminators","size":16190,"md5":"70d86316c50f5eec75780b8b81fa201f","sha1":"d1bab131af6728f323848efcac59842550d22f26","sha256":"62e53f8566cd9c1797551f1874fdda7a8ba811420b7ab58697e9ea0138cd10da","sha512":"2c39e09b4719269765b3a1b3254edd0f969893f2342c58d73f6f38874aa7513ba0a7c7cb29ef5f9b2c5b57adb7f2ee77354df974160da2f4f026d4f4bcc56368","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от BoosterX и ios1ph.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Приватность от IT-спец. Денис Курец.cmd","filename":"Приватность от IT-спец. Денис Курец.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","size":8719,"md5":"3560fca848e57d16ee4d9787eb6165ce","sha1":"692a93f930731bc7181e728f8a4008ba40123c9e","sha256":"2434c1a2e5a6c504f7495fecb02a892671460b4b341d15c2c58451c217aa2cee","sha512":"8cedfba283b041b8c14b387dd739c820de71af7a2ed848ef4bccf849f623a7de5210c983846a0370625b08f0e4bc963ab47dd372cb8c952ce5181a84323015e5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность от Optimizer.cmd","filename":"Приватность от Optimizer.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":18512,"md5":"247b65936650e510b6febbd4f6211844","sha1":"3c2fa7b01c3fc5d9c3fe0e6af9eb1ce78f701134","sha256":"adbaf816e95dbd2c27bbad5479571bba5590888d2df1ec7f4d7504c9a31be7d1","sha512":"f7fc8343f44a9850dd402736915dd08c08eb75ac441b8fd0ed6e113155822021be73b16fc57a0a58a93ffb0eb129c69b44915a5c471b6ea9521ca20162fe6bfe","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от Optimizer.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Приватность от Pulse.cmd","filename":"Приватность от Pulse.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":8827,"md5":"dc9fdbaed95d9dd56f1ab2d116db444f","sha1":"40c64d5bd605624a6d0287b96a8c1f00b462902c","sha256":"6cab9ef2bdeeb763e0caa177ee17dca829b47d3b6c642f4ab62918d2805b8a58","sha512":"660f375de1666f332be2948027449b8862798b05ed897109f695067791abf5bece7f90f14f1b2091d4b3a01d8306d1b2a9f79cfd57b212d8e5c9fd8875dce4cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность от Win 10 Tweaker.cmd","filename":"Приватность от Win 10 Tweaker.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"ASCII text, with CRLF line terminators","size":21408,"md5":"0971553eb05f14b076b8d3f973f37ae9","sha1":"8aa11b9ec629a40bdffe9fd3c28e8afec4615d9e","sha256":"1f702e5389530ce249b6844ffe9eb3ee3c36a0ed866d3733636011fbab9a8e9b","sha512":"95ae7e0745ad1dc243197f52100c583dc04ec0c4ae3787c4ec50e492b678e210f6072a9d7d61713af5f1d46e98a680ab708faedc1cb1cd4d83b93fed7ff0d57a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность от windowser.cmd","filename":"Приватность от windowser.cmd","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"DOS batch file, Unicode text, UTF-8 text, with very long lines (330), with CRLF line terminators","size":165319,"md5":"8aae7cc5c250d202a88967d110db7628","sha1":"f71834c074ad412bb85034a44f74d129887049c2","sha256":"321644b814697d5df7c869aad770261caf8ca823a214bd5200c7055490cb1519","sha512":"106feb30fabbba185a2dc2adb26680633d6513d5f02788f6f84e5ec6b96338c11e09109140a98d865e21486b558dbdc75b84813fe8af2696c90ec9514aaefba0","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от windowser.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Приватность от WPD.bat","filename":"Приватность от WPD.bat","modified":"","Modified":"2024-07-18T07:32:40Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":8049,"md5":"fe1d5f1ed0695ff4c35eac4785648d16","sha1":"bd0a654fd3225ab4a18aa0cdbef6e18cee84ec72","sha256":"48a0409ba6c3fc648267fcd79707a2f49d71aa42ff2318ceeec75d4b9a2eeb7b","sha512":"be36279ee463b85541216076bfd03c07849b052ccf86ea1343c4903b5421ae453f5b83ec778c8172d7f43251c30bac20e0e650e0b855595e0c9c261d99619b76","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность/O\u0026O ShutUp10++.bat","filename":"O\u0026O ShutUp10++.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":130,"md5":"3f530a92750d0b13ad27c7a80eca5563","sha1":"508a8e0ce31c29237e0dc5c315cdd9ac6ddef92a","sha256":"70d1284363e94a209d055e02746c1802275aa2a66634210dcc7ccced7b314d46","sha512":"ed58cbcd54562bb5e85c2c223bcab96d8be083cbbc1af9707738c1a2c44cb70dac0f651f83d91c93e54273cad20a87e2bc1f25e189205af3de42a4236f293df2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность/Psiphon VPN.bat","filename":"Psiphon VPN.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":130,"md5":"c7a57d0cc200a083f0ebaca4ad702e46","sha1":"a271c2e1795b620b707d20fc58b4b0cc515ec19c","sha256":"921f720c3e89ce64eca1fe1a7b143c1919cf7a2f231be15f8048afc8e0907015","sha512":"0747ff29c07b7eaa89fdd12b80fab300a8bfd1983fbf3a5d64e5304b3265b2008a697cb17b1b5d45e4e44d18b588a428b4e5754982cde0008f3b7d3ac7066b09","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность/SimpleDnsCrypt.bat","filename":"SimpleDnsCrypt.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":138,"md5":"6c0af414a21ee5310c7ec60c40fc4095","sha1":"86050d96f30f37872361906df4243e6d68a8497f","sha256":"3d81fdfd4d37340dae9b01e89d2a2431f6ffd553976bee1b3543657f48ebed65","sha512":"012bc6e617f311bbae2bed12168770d6466213344110ec0b26a0ca975d104a26d8daa5e27be3bfb4ecd8164becc45d6d849370dce06babb1818c5c11f102848e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность/simplewall.bat","filename":"simplewall.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":147,"md5":"d393a71a654de55d8bce2678d22aae21","sha1":"b9ff669c8205feb709539cb5b2a6473c51c71eca","sha256":"517faa8d467ee396ff25d2e02ec1a727a4b51e48e8bcd63ceccbfb48b600e24e","sha512":"35be7aafce012c90d339bb490d053bb590e133124a3e1e5f2fb9d12d596fa65cd2d6c3b149eab9a434375181c26dde622f86ca1f3a12e41abff9e5cfc707a7a4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность/smsniff.bat","filename":"smsniff.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":94,"md5":"f086ac48aac0426720bb454e9e6f50e2","sha1":"8b06696a59ac929df8901bb0cd040894dd31d39a","sha256":"b1cee8f5222b8e68ffcd944dea549eb04c11dd74a815bd312700103e733ee7cd","sha512":"5c3eaccd3cd0ab9cb1f7addf87e1e54f8200906f0cee94e67952884198fc9b3c106f85f04600d775360d27bd98bec024e3fca485797dfebae5845ce824f18af1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Приватность/W10Privacy.bat","filename":"W10Privacy.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":130,"md5":"6abb505cdc573e6a743239ecdb321c24","sha1":"fdf229da41be0fb6780fc783acd13108bb3812f4","sha256":"8f5ef7682fbeb4290b13e8ab92c118da7f78e71d809abf2d2bbb960f45faf61e","sha512":"068451fe5a40dd00b8cb687866c768e0ddb4132386b47d29e643044c4308ab93091407358d4b870f0b77970cd73c969f2177644df795719e53b20a0572f82262","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Проверить сжатие системы.bat","filename":"Проверить сжатие системы.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":24,"md5":"e678610682b5cf1e38712f662abcac2d","sha1":"038e4dd03b472d3dbb3cb4cd72dfda47356e9fc5","sha256":"013ff61fee8a2d4d3229d01f44c81683ff86c15e1dbb5c23654606c21c457de2","sha512":"d700c420a6aacefd6339d10983bb804ca561568b94c012fcb3af12bb7c6c6e69dae58660f64c7e196dad3d52526275ebae9ee71e2ba89092ff9edb4864a48398","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Программы для общения и стриминга/Discord.bat","filename":"Discord.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":124,"md5":"fdc6ec4cea0cea51609452ca411d9178","sha1":"2b12f956c8a75aa652a36de88226ab5df8c7c1d8","sha256":"6a20729ee7217a0d591f41f4a2a7621e7563ef676f71a13685ca992904455c54","sha512":"dcfc95308e796bfb1bed0a97a40004d6e1792ccf8fba877a2150bb93af15e4f106d530d1972b456bfbea2e6111e031a925a9cd5689fe6e897e13b45ecc411051","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Программы для общения и стриминга/OBS Studio.bat","filename":"OBS Studio.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":153,"md5":"46fb94de8f0461884fb34c5bae5f34a5","sha1":"4711a9776719ea4526d65a195ce7aa0dd9209516","sha256":"da9b4b872e14fe981361e07ab5633fff618282d005cc06e51f3b5584ad40266a","sha512":"7a8e68f9106420cd0c67d94a959c8f7c9eb725c2473bdca16c3871d633e42de4b1b94ee86ff2f94a1397d9bb3b2c5f4691cd4ca31ca7bb4e650a1c1ceac3acd6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Программы для общения и стриминга/Twitch.bat","filename":"Twitch.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":28,"md5":"ed81e0e9d448ec03d3dd4cfd52643c34","sha1":"7fd3671d15678e2e3e2f9b174d59443637c8b892","sha256":"8fcbe6caa9e56285fd84534f690b7efa1b150bbd8663463201f611048d1004bf","sha512":"5feb773a4b1293d999ecd0e72c663cb00dfa431365937711a9add6f77786c2e07f9f3bd2f422738986bb43ecca93cc81d37097d55ba35ddc82a7bb5a780b580f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Рекомендуемые и условныетвики O\u0026O ShutUp10++.bat","filename":"Рекомендуемые и условныетвики O\u0026O ShutUp10++.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":32637,"md5":"5ad1d3a734fba13865868533f0e8bfb2","sha1":"18dc0c0c00882d131338571113033e41a7824e97","sha256":"59b1c8b769f92a64abba1718e01b27e7d0f4e6d642619439728e405c07f75eff","sha512":"0ebc7db8784a9dd00aa803ac1449dce7f770b1f3ab77aa6d052d14c3a8d43cf7afbb3ea776c4fe329425563f6d48e0d9093e051e3a4bd2cc848a6c9247f82ca4","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Рекомендуемые и условныетвики O\u0026O ShutUp10++.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Рекомендуемые твики O\u0026O ShutUp10++.bat","filename":"Рекомендуемые твики O\u0026O ShutUp10++.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":17773,"md5":"999812a645695cb8bea3548f666b2afd","sha1":"ac918b1f727074e44fdf0978b545bc9ddaaab9a8","sha256":"384b6aadec1a9463d825c21a5a34c1168d78de6d18ccaeb28a67e64cf0bb47f7","sha512":"6342934765e3a11a91ab179686568927172333262e91017904fcb575693d6a202fe73d875fcdb06a84c460e6179d1dfacb6b52019cfe9492359c040772831865","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Рекомендуемые твики O\u0026O ShutUp10++.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Сбросить счетчик изображений.bat","filename":"Сбросить счетчик изображений.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":393,"md5":"8bf00c700acd92c762380d32bd8deea7","sha1":"55d8b59d50cfc66a468d0f7f2c9e134db8e76b46","sha256":"19d9a7dc65b0d72c1a52cbf500e342c686a246c809eb6cba7fb9c81538338792","sha512":"ba84dd5debdd2a00c034da2134827ba0581878969ecb4de862a7fd24ba8a38b4d42b1a8bd4af229853310c47a4a222fbfed0df10ce2645f2ad05daa5b10f03bd","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Сделать бэкап служб.vbs","filename":"Сделать бэкап служб.vbs","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ISO-8859 text, with CRLF line terminators","size":2303,"md5":"a36d3128322ec51bbc6f560b0f7e9e71","sha1":"b069a886e3102beaa2fc85e0a2039ad6c7fb1173","sha256":"5fdbdeea908beef1421eba54eb078934b8044c49644dceb30d74e0ef0f9abf72","sha512":"5558dd634121cb0a4228bcbcb7eb52584f10f964724d8feb45127822f0a801b829f39c117a2f418804e46afff04952ed9f236d9444e3b4e739fb158a6b7ce5d4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Сделать копию реестра от studfile.net.bat","filename":"Сделать копию реестра от studfile.net.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":276,"md5":"ed6112c354084dc4b4ffb5891960f54f","sha1":"dd84d88c3d614bd5694a6b47cfc9f2e740b4675d","sha256":"0c7246e88d52dad954b18c8c3e958473bf0af091d96b567311eb990e804e222c","sha512":"8878c6966d03de3e23f5c8bd2a94c7ba62cb62321b1bb5d54449cd37e905801fb183632f82a3778975b798665f53d7480211aab4ec9a5dad31d98cbc4be8b8fa","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Сделать копию реестра от Роджера Роуленда.bat","filename":"Сделать копию реестра от Роджера Роуленда.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with CRLF line terminators","size":167,"md5":"371bc87d8f61cf9339b7a74e662a18b7","sha1":"b4bacb24b40706a9784bfeaacaae8024fa999718","sha256":"d0ab7f5309f580a2c830902e6a4016e29fb6a6b7574ab3d83066e180847dd070","sha512":"26a921acea8bcd948ff552d57e38e4f0b8ccf6e9a7beff31c9e42dcebd839bb6e5d9a29a909c4115cc3c6847d80208c7e844dc94fccd05a3503f27ecee720801","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Секретные темы Windows 11.bat","filename":"Секретные темы Windows 11.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":124,"md5":"3f3b46e7e80cefb4be3bc00674ae047d","sha1":"017c51f9d463340a59d814e3df400cad72efc855","sha256":"eb74931b9d5a154e5e1ad3d0dbd0a34663255e2be4835bb49866b7f295c721fd","sha512":"c35660017805bb9e088be6cff39a28c305af74ee7a131bee9e6fc07e608e88190d7e8f0ec487ae79067440da03cd289464de98c632c6fd760f883ff1f5b0915d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Серый цвет выделения.bat","filename":"Серый цвет выделения.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":449,"md5":"2f002970c68be2af265bc3a1746db91a","sha1":"d6c02513320cca94d300f7d9258b3b3cc06293e8","sha256":"148c52de2b8a4d3c03581121705c9ed1276633e1794e729df1b617fd5fbf1db8","sha512":"284719c3515e4f3079152befb0250904af46255bd9b103c893dcbfcf414bc7802c6152d39e85b8358ab5fa291655ccbd0c9e7ae5101bd06dfc5fca2a87800f8d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Сжать систему.bat","filename":"Сжать систему.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":25,"md5":"38520fea02f410dbb593c29ec7be3efb","sha1":"ec2588f0d5ab1f476d4fa4717e124af4d481a5f4","sha256":"788325a017b183058fefd15da3a45f4ffcf75bf047c6b59a421ec704bf4750db","sha512":"24381c1931aac45476d745feeb465d33608f6dcc659a442e54fe4091df196db7c3581a53257056d13b60e94653120df86500abace420a4bf7369d8cce2042662","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Стандартное мерцание курсора.bat","filename":"Стандартное мерцание курсора.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":363,"md5":"e562ae4a4d4cdbc28b1bf13db2b2483a","sha1":"3d928e4fd0b7e36292d25634dce2b638b9fd8641","sha256":"aa4edc3a4c0dcacc4c4b48f75522027f74b1bffd67b760dfedaac09f541021fb","sha512":"c44ef47e5ba5885e6e9b93f7b65ae0995427eac4ffc47ee85951f9553ac9215e96f70ffff16abe4229dce587cf878ca5f697dccee90cab24c9439568ea44fa3c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Стандартные кнопки Свернуть, Развернуть и Закрыть.bat","filename":"Стандартные кнопки Свернуть, Развернуть и Закрыть.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":473,"md5":"30f960949ee2ae140bb20ecefa03f5e9","sha1":"4cc79ab89cfcbc3c3380e9b81235d4af35013c10","sha256":"c72042eb4717c9ccef8f74dd6345da43dbc9fb4ef62f98b522d5d6d25e8fe736","sha512":"4736ee0886c2d7e81666621269eed1daeb7076c3ab046a3810def5a51bc5372f94c1362ee75bd25404cf3c3b4072294f67cb85cae10eb5d6b68d0c5a6207cda5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Стандартный цвет выделения.bat","filename":"Стандартный цвет выделения.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":451,"md5":"b46e4c8cf4e201ec23dfa8bf0e4619c4","sha1":"661efa0b2071c261ad72568cc0301bed4e121a73","sha256":"03d945e566077b994c229cd82f1de20fff9f4332c6a728c1d8bc21a1f9657530","sha512":"3398757ce9c33170498246804137f648c9d29367e6da5c8d1e69ae4b5f16b51cad50b951f77530eaa4a625f9bc9a3e43b4a87ada28e1c1fd39c50cbf3feec5bc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Старое меню питании для Windows 10.bat","filename":"Старое меню питании для Windows 10.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ISO-8859 text, with CRLF line terminators","size":203,"md5":"68a6d0bbe0b26eccfffb45f7f50d76cc","sha1":"8bb4062c192f8d509a0ee2cec59e5391766d584d","sha256":"6301cbaa4a08d14e68cc17d527ae860804c1efb7235db29b8314784e07a740a1","sha512":"44c97c10b5dc6a573dc7b5f8c7ea03333b547773393d774cb20a74290469e3edf63f434448fd5663c72ba62b43daab9734963a163c616f23d3552e367436f41b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Твикеры/BoosterX 2.bat","filename":"BoosterX 2.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":152,"md5":"e34cb640e99d037c0bf462db4531cac6","sha1":"6e6b438010b5ba93524779d40fc30425c8f95631","sha256":"5b0eaf49ae93f1f36a043d40baca6bab5060ad8cc173df1ccae02fe528774ed3","sha512":"f4c5c098e822e530975ae49fda6eca509ea5ae8eca1472a4a8194c09a6304d692b6519a656e2ff025d12da3079c11b739ada002cc477549f16f6015f6beb03ae","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Твикеры/BoosterX.bat","filename":"BoosterX.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":133,"md5":"3bc6bd839b15bf65cf512e33a93b4eb8","sha1":"a094cfa46784df1744922e2c83c6529790d2c327","sha256":"4b8bba37f90a402a4762785453d62fbe0f4a412c76f45166793d1afe74850029","sha512":"e0e07daf3c316d701939e73080bded9ec4178a5da8ac5012ce45d1853a93cfbccffc7d5fbc457211100c9dda1fb70afd81ecb70c5747b466737ae55f5cd06c60","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Твикеры/Optimizer.bat","filename":"Optimizer.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":128,"md5":"ad7df9a46b358df20390fa77f407a97f","sha1":"163b10c01330046d41573ffd5222a43455b87eb2","sha256":"1003075d4d3fdb5557cebbccd5529ed0f46c007676e2118506a152fed0e7c3a2","sha512":"59c8eba09925049e7b50e241794ba9f0d0593e521d3d652f7e999c5593087e7bae2422428ad77e2c9d6d3072178d953d369d0d2c67740c609c052986c6ed941c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Твикеры/Win 10 Tweaker.bat","filename":"Win 10 Tweaker.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":140,"md5":"5f922a871b3ce7f411d1c902aa9f181f","sha1":"f8ca943caadb09973b1c03f82ebcf9cb5a958892","sha256":"15eff9ce60d45c42819d08b143e6286dc3275c0547c17fdc8df00a1dae5a6937","sha512":"189439cf9c889f61757bec0f13f0261303a8dc83f84db1f4d92ed2e5ee2e5b73eb86fbcba99cd92b830f9ebd83aca627f15b0868b4835599a46f5bb7f03b3f70","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Твикеры/WinCry.bat","filename":"WinCry.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":113,"md5":"8dba2128c7e8263d251d30369f7169da","sha1":"53e648b081e8e2c13233be7bb2b461443da9c747","sha256":"0728d76409821de89b95228ab4e4ca1db0aeeee5cda039f9d491defbaf91e49d","sha512":"487059ae01f6f429cad52c0458ce3d70cfce40514c9de0c3185c78de9c876747978cb80a61c7047e1c9ba50d40b70fec0ec52b72784e9198c4aff43a3aa2be2c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Терапия после обновлений винды.bat","filename":"Терапия после обновлений винды.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ISO-8859 text, with CRLF line terminators","size":11442,"md5":"fc7fb783af5a9d80bf6d0f35c87ef740","sha1":"b1274a52605323b7d66f5cfc76fa4e50318ee0d4","sha256":"6bae2621b7ab68b9e774bdc70068b27057e64a3bb4f5acb06b940a3235485706","sha512":"558820d89914976145bf6de1221e6e3f05243e49e168657a4d0da9fe5deff1a33c510cc7095598c3b4fa1a782cef57ff61497dc4cb1d401c9527ca75b281dd46","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Терапия после обновлений винды.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Терапия после обновлений винды/Выключить автообновление драйверов.bat","filename":"Выключить автообновление драйверов.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":567,"md5":"f342c2c5385d4f03ae18a7b7eda65c09","sha1":"77dfa800c36cc0b627966e309bb5b974e3e9a2d4","sha256":"81675b064a5ff0f5dde1ac1ed094a8be9c3552198db602cc96d84c7ddc53755a","sha512":"849fa25595a89a2a15b755d1bb8747e411903fa37ae3a5a90efc2d866b441cc32ad84e6fb23ec8f9e60f1fcbdb579dd608e68c7c4284965742409d197434822b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Терапия после обновлений винды/Отключить UAC и smartscreen.bat","filename":"Отключить UAC и smartscreen.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":594,"md5":"53b4a412cd6ae67e1e9ea53809907504","sha1":"a7825505bce781bdfce69cc888152bc0a101f345","sha256":"be24c69dbd8f71fa250a01a9efa69ad55fac4942eb94eff2c4b09df12be3d231","sha512":"7f309bdc19a9305911f043b0c70f4579300c800da0d230530371554fa10059da5f3dafce005d8b1a93a5b00775acceeba5c2e6246eeaa05d1aa94f9cdfeea8ba","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Терапия после обновлений винды/Отключить обновления Windows.bat","filename":"Отключить обновления Windows.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1887,"md5":"767c8e8635f6270a6b6ee2599bde56a8","sha1":"a5338fad10a2daa6fe66fae66839dd49add78eeb","sha256":"489f03d0eea45c0dbebe4fd97aca9ace5172e3b125c5fce6b4be0191d3739343","sha512":"cfa944d4e02027e7b2bea005caf76696acd2e087f43f859d1a9bc16a976583625387abd834bdafb168268e9714959479e86c82138e725d333db158605c6c5a06","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Терапия после обновлений винды/Отключить оптимизацию доставки.bat","filename":"Отключить оптимизацию доставки.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":84,"md5":"c0fa4f48294ec31738656887c067d190","sha1":"6cc6bf69049881f16c89fb169a33f9472f1fd143","sha256":"fc556a4f95049985f72ceb8e8ef4b915ae83c4154da38f4d3ecb0d62aba026ef","sha512":"6c2605874a1317a6daab420edf3e627e07bedf4e5a99f072e19a12aed4722f7b3f10a7e34df2d37f3047a224ea5a9584df6ffd81f8decf56132a3fe35523a7e3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Терапия после обновлений винды/Отключить сбор данных в планировщике.bat","filename":"Отключить сбор данных в планировщике.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2399,"md5":"7190f376e0d6a3975cd207d8be972472","sha1":"eaaefde828a339c346d80dc3340958dd013a9680","sha256":"b85f218e59fe628b062d84876425db5cee8792e333c915087fc666514436aea4","sha512":"2e978b7dc220b9ceeff102a085e48af860a7afced0561ece588646ac11c23cff3bcca73015a761f5e13edaa9d1a76da8fc129ea1666333eabd630c4feaa4ceb4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Терапия после обновлений винды/Отключить телеметрию и прочую хрень.bat","filename":"Отключить телеметрию и прочую хрень.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":4052,"md5":"242a3c7c0d1914953d25d6eb28413e40","sha1":"12dce0473a278156465bfef97caa2714e3edb136","sha256":"1aa88212e786be2c85957613494facf57826e17d71b41e0835d7277551af782c","sha512":"d48ab26f1866d11f41e4e1ca9e1bf63a33625a55360c37b7d264b8100d01f38fc8bb305a1effc794410830f0f46151b2c7f862cfe1eaf42b2ab4606b763ecc99","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Терапия после обновлений винды/Отключить телеметрию и прочую хрень.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Терапия после обновлений винды/Отключить триггеры.bat","filename":"Отключить триггеры.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2781,"md5":"a1b036e982e5fbe6cbd423d8570a51b5","sha1":"d3876b8029ea25731f84ad86dbd8c021583938fa","sha256":"c6bbf55304948ace5ced38c7eca3a1a076d069e947728ef7abe153556c1903db","sha512":"88db3d09d3f2e499e67c519be3184a90191fb69de57b2ef9be4dab3f00ac7472dd10d9db4ea4e92eabd464444d7dade0d3cda36719a5b4ddb95ad6d20a3297b2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Тесты режимов электропитания.bat","filename":"Тесты режимов электропитания.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with no line terminators","size":37,"md5":"54144f39bb4c52ecd3127e243baf4e12","sha1":"87a09dbd5a4a5bad7168d1c05b391fa7574646db","sha256":"c329fdfee542db616729fc180bc8845727c964059b6cad3a7f8b0343743e1312","sha512":"8bc8a4500736ecccbb76b3921198be9e2c539b2c1096d1b826b20d98a830d9500dde4755eeb34f2274521840ef041db4a47f44de84095c869e0817e457f337b9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Торрент-клиенты/Deluge.bat","filename":"Deluge.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":129,"md5":"767c4f5b395f81f11d1163040c306b2c","sha1":"f37af7993a6acc8a157c12c8b5dc47cf298a693a","sha256":"3d1ca0af5ffd2528e3a7c4ce64d1cb7f7d989ecdf9f28e2bd9ac229b0891f37c","sha512":"57f4b5a9edfb3d05580809304b473eed89e75d8027c7b269a81c9a45d4f31f94e8f94cf9c79ce6b5325ff8f5888f77210c5c6b34e3fe92176630e7681523354f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Торрент-клиенты/qBittorrent.bat","filename":"qBittorrent.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with CRLF line terminators","size":333,"md5":"35c4c26b8771d17f726f67b63f2ffe56","sha1":"93ce661e1b2266406ad67fef0569f231862fbcef","sha256":"5017e1b2d4a8c85a2a36c1c91c3118b044960ecfc5f1cba715663fe6b5ba683c","sha512":"3ff454ba76e872112f282535a252220a62be475cde104589b9094d47cca9c0624f6a54cdb26efbe90a46d2671d7a14ce613b73d9faeef9397ea569953a826b58","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Убрать пункт Главная.bat","filename":"Убрать пункт Главная.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":294,"md5":"a60be8439d85b0a389120134cad59d7e","sha1":"1b487ad7c28e0ee982693d14fd2597e26b259091","sha256":"11b15fa9f4fb4c3cd21f445121ffcfcbb6002e3a10c02d922637c3653a821fee","sha512":"f66fcd807461f85a725d42cc077e113ab3ba2ee97a125cda146e6f00475249c81eed06ffa77b2e8819249ffa10b2bc0b4ce32f49665c3fd94782246243163e92","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Desktop tweaks.bat","filename":"Desktop tweaks.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":802,"md5":"bef5cf71e45fac0ad7250bf69651e758","sha1":"6982654ee90971c6af1329b8152c5e558145bca9","sha256":"0c627bb709c312d177249abe2d3bbb7b5458708e0b1ba2354d76c059fff99817","sha512":"fd62d97702f58914af6e4ad653ce046a5f21fdb9068ae4673a07dc074c6aa2619fea9a5b81fad4f558bbae24abf13b67a01a51887affe1fae7e103d8e71dabaa","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Keyboard Data Queue 50.bat","filename":"Keyboard Data Queue 50.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":403,"md5":"8d77e62b92797152b2c5c5a829592f5d","sha1":"2d7e7336542a78306d8efd7fb046c411bedd55b6","sha256":"ad2474e54e8a30b5c7573cae13dc4b8958d32a62fd0789ca9f3d51f296062221","sha512":"77589811b2f6c6291cd474a3846a8bb3e73954e1a27eabf7b8ab7e2c6d996656d3927c285102980fb1407eca27ca081d0f38cd9441d1b5d88e957905d2ffb592","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Large System Cache.bat","filename":"Large System Cache.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":550,"md5":"690aa91a927bc5c5ce669f30a55be31c","sha1":"02a30d27cf0b794765520b1248ad12a8adef0f29","sha256":"1d0b05dc6292174165a51a6b393e27a1c40d6e65f09e9043af7c623a0193d652","sha512":"745a3055bb4b45ff918fbed8b3f0099882427fffe59683a8bb473316affd3c24a3211be8a6d9421ab14c7904eb108ba26c9d3edaeacb6b5a0aac5b87b79c5c36","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Mouse Data Queue 54 (ios1ph recommended).bat","filename":"Mouse Data Queue 54 (ios1ph recommended).bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":435,"md5":"491d31f6eae696dab793c1cece96ac04","sha1":"0147a13611bce5bf29639477451d4116944d1656","sha256":"fc5a484367e47b8a52b3e667d827f96d514cb020ecb7fcbadd74251ca62328db","sha512":"551a60040c1dff0d2e9b753ad06cf2818566d39db1de18a2ce54c1082d27b1ca574d7a7ff49d1ad4043ad35d746ebd9f9285d64c7b97785acbda31033c56d16b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/NetworkThrottling.bat","filename":"NetworkThrottling.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":455,"md5":"f1773b663b50ca1aaaa90ad0dd653f41","sha1":"19d8b8d6f42a3259b98177d5a9b7e0992697bd7c","sha256":"9e9f27426255f9852fe3b25b05b931c013295fc8ed59d54f857f7a916f6518cf","sha512":"f7218320b5e9d833b9f52c89b77b005a9359ac91ed7a0ad16d5d48da811cca910b515632599843f377a7e84781fdde999fb0411fbd5f5d1b1b86f1f01dadb84e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/startup/startup.bat","filename":"startup.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Unicode text, UTF-8 text, with CRLF line terminators","size":1238,"md5":"633876220639b1810417d3a91c69f850","sha1":"c251c4fba0cd71c2537a5e382cf86be25500ea7b","sha256":"56c0ddf1fcc8dd5c7a2a80267a93671f0a75b1820b7792854d6e4b0bf4331312","sha512":"b4f435e0215099b69246da451dd1154b58c9a7402c6318013fb26354cd1d238fd860fa7a7720c350c289a3c8890531449ca8b52db30f390c33dea573a7ccf412","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/System Responsiveness.bat","filename":"System Responsiveness.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":543,"md5":"e30464ee77940d821f1f51af77b156a7","sha1":"0b01d70b490c55869ed54f1fb06d9518cac8c579","sha256":"e4717950349a4d9a91b2e0f8a117cc7c5a820fc5cdb21cae9ce16f91c8dd4c63","sha512":"fa1793cf3c4d9d7c006d70623c03f03011b45fde5a3378fcc34e72461c922185be5841bf4981adb88be6ea5c0e6c945d63e801f7eec1c8b29f9b61841bdba190","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Более жесткая уборка.bat","filename":"Более жесткая уборка.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":25460,"md5":"918b13d7f67491d1be12393b63ffb39f","sha1":"8277e99eafd177a994175c71dadc2a1f0337c526","sha256":"c7126930fa7bdb74504b514b23b7f6c306daf6b09f22dec87d2dd88d33e0b0ea","sha512":"8583813aa71cde3e8c3505cc90772d1388a671857d46d3f17e6a250e8e6180d26f0e3a00216a2424f7857e4e10bc286165ed7fed8f4b2599831315bf35c6dbc7","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Углубленная оптимизация/Более жесткая уборка.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Углубленная оптимизация/Выключить службы брандмауера.bat","filename":"Выключить службы брандмауера.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":949,"md5":"6a167c87f872f096c8a8c10ffd790495","sha1":"5a8d275d1f41ad4abe7d7e03874bb6abde01f85d","sha256":"5d353727ea50175fda6057039bc68443b70e464faec9e6e06386260eda6b4f0d","sha512":"1475ea8673d5e0c2f08758b26e3fc3781255947ab177f193b9c2e758352ae431fec2aefedff847b634c8c97905642d4655b41938c4cbab5a4e7d12d94b6bf707","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Вырубить обслуживание HDD SSD.bat","filename":"Вырубить обслуживание HDD SSD.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":796,"md5":"509cd57cec19dfb8b75444ff56951fbb","sha1":"3b9d4d7c45aef311fa86d92ae208d5c3ba7f3527","sha256":"a939ce22851269c851afb841cbb11eadea08292ec082679b17346c3dfce80d87","sha512":"45608781702e4fbf495c94e6d4047001898aa16434ebe94f1b4afc66fa1aeb25abea280183f1791a1498753546a0ba466af5278deafe60c2e66d8cf2df4403b7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Качество фона 100.bat","filename":"Качество фона 100.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":454,"md5":"2edb18aef6487d2606f294f2bce1c39b","sha1":"2e131012e1eb700bd32de72cf0f72295971c30e7","sha256":"8ae9b91aaa42b00ed1c0ac2714d79fef9b6d3425c39128e2ce213fa7f8ff9137","sha512":"dd8b83424eae2a491ee9424cdf5ad18ab0d426cb989f3b71ed6e7369fc53c1ab1bfa7c347536badc2080c083f623f74b2a29f07fe41a26b6ca597490a484e8c5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Отключить автообновления store.bat","filename":"Отключить автообновления store.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":493,"md5":"f8bec07f1893003c240766b274bf5e75","sha1":"a4323d21bdfacece5f40cd8c95869a820777f8d1","sha256":"bc01b6fe8ce86a020864b8c457923c48813d05ac42887fe99cc84f535640d4b3","sha512":"98bda17b2037b7bc71ac21025af1e040928933cfeddce13ee5cc579bc895bfe4ddffc42061371fce564f47585c7da5ddfab2bbb6dd830865a9b355378d862c97","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Отключить обновления Windows.bat","filename":"Отключить обновления Windows.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":1887,"md5":"767c8e8635f6270a6b6ee2599bde56a8","sha1":"a5338fad10a2daa6fe66fae66839dd49add78eeb","sha256":"489f03d0eea45c0dbebe4fd97aca9ace5172e3b125c5fce6b4be0191d3739343","sha512":"cfa944d4e02027e7b2bea005caf76696acd2e087f43f859d1a9bc16a976583625387abd834bdafb168268e9714959479e86c82138e725d333db158605c6c5a06","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Отключить триггеры.bat","filename":"Отключить триггеры.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":2785,"md5":"0038a1a081ca96dbd771e100be880807","sha1":"33117bd804394ffc37b4e2a2bcd0bd19d755cf39","sha256":"bf73f81120b0f21a119f4cbb8beea62ce0f452f03424847ac390405d440c66b7","sha512":"86cca02f82a7ae7c62eb17d1c16b5c1e09048203c2c32b57f07fbc9da8609fbfa671696bf36bb2773436b7b47664d1750d59b7ad21137074878eb58bd6c893ff","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Открывать pow файлы.bat","filename":"Открывать pow файлы.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":613,"md5":"46a21f25324aabf02cbd2c236f00714e","sha1":"12dc7b35841bad1d3ce87766d51330d288754523","sha256":"90f185970d5ec92f816569b940989f514866e251d2d914df09a31602bbb177fd","sha512":"e1901aba68bbcdb7d91e542e10237b6481935e62464b4ff18bc32300d2660e4ce22171dc22da28307b2baad0b70338f3d48120dad6992f79ee81b292d19cbd2c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Открыть Электропитание.bat","filename":"Открыть Электропитание.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":55,"md5":"8246da8cb43328be4f39835e3de89ee8","sha1":"47eb190e9bf41ba259f9c771b9b40365df5779e9","sha256":"ee1fc8afac76f32ec6aab87e959e89e4162cf4b40fbb3869ca2a810b2cd5a2ed","sha512":"8429b05ea44392828c3c567a660eb29cacc69d7b8e929503f86d383ac85f816195cc2facf9d490a235119b18152062b280a2d83786f3d6046e7a96ec9ebe89fc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Amit_v1_lowlatency.pow","filename":"Amit_v1_lowlatency.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"63afe81c94c76e0e1e9727ce8cca716a","sha1":"94c8e7f3b2e0afcc9c35652f341f8f420d82a2ac","sha256":"4da580681e53b0fec3eb79b7d3c792e287f81b4e65662fddf8e7441ed285faec","sha512":"b30528456204a72fb8122bf5a18e58502a5447f69202b0a9fb6c0b35bd41dec9d615cfe2560648be572628e80cb25d60860887621496007cbe56f0beaf7cfd69","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Amit_v2_extreme performance.pow","filename":"Amit_v2_extreme performance.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"38be1e888f183c47d7d194043240dd90","sha1":"58203d476d282b150471e1c6384f8588b430aada","sha256":"de3b52d3f1eac7873b0aa93711dbfa6300e9d04ebf0ce4065b063dc32b2de1df","sha512":"160f8b007213049604f55d6abbfe8e6787184004cdda8ee210e0475d37e301e85f7d64d7be9b2f7fd47440c4039a1c1aa7704cfaefc70cd43286eab987db5d2d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Amit_v3_low latency.pow","filename":"Amit_v3_low latency.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"e948e09bd0cc69b1bd7b565cf05466f3","sha1":"1aa1085aeb6953cd7d0df016e76e056d127d5068","sha256":"ed98a09f99e0b46355b6f0044b61fb742ecb4da56be2f1e383a306caa7cf891b","sha512":"b8cc7296bcdc5445504a152a5f6b12491045c2138b1aa5fab7695e38eb3b10d33273f8d916b2af239d9b80ccd5027b6f4603f9218a286347fb7e6da058bf4d09","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Atlas Power Plan.pow","filename":"Atlas Power Plan.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":24576,"md5":"14dc59b5afbf56c0e985d398c4c1c442","sha1":"ddcfd553527f9dffe050a731d34c3a4505bc67a6","sha256":"e337b9ab3ee9e1b560ccdd0f6cad9ed62f88ce20b455cb334a9f924116783131","sha512":"10621cbd7082f1dff0b88c33729cb8388731e3beedde58964ae162306280d94917397312f78b5db8ee688ec225cb5933a19cc66c05494de34151fef0265e8213","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Bitsum Highest Performance.pow","filename":"Bitsum Highest Performance.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"ca314461b3de3cd10b52312588c3cf50","sha1":"9db1ce875e986e741ad2f6e51fa5fe643499376c","sha256":"1389abc5d7462031c4f2abcecf58cf5d4c8c5debe2095954a737f88c8b95d9c1","sha512":"7302296eb429a0086505e5090bb80fdfa37afd789feb3d5c6d76cca345afb3752d13c1955955fb29d2fb18828e2f9ec022d65a197ea56191949c9bb8f4bda283","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Calypto.pow","filename":"Calypto.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"f73e446e9ad230852cd70b2cefbad350","sha1":"c22ca0f677d1b0a64d94f6dd996366d738169fc6","sha256":"689a149f62670c7926e82ce004d8870761af084b335921d9e048d22428d70eac","sha512":"7711bf664b6324c522a6c8ebae7c128f3564906f6a46d01267106d7e0e12cf477eaf9a55db70e924cb56b9db7d735ccdc75ba51a5bec64e6f7125b6b70b4db93","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/GGOSv0_8_5_Idle_Enabled.pow","filename":"GGOSv0_8_5_Idle_Enabled.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"3dd86cffbc9ff61b5aa804f811d99dcf","sha1":"63175f464ac9e6e86f323892de2aee65108ae862","sha256":"6fdb5c08bd9e8668554f6d5923987adee992a89e183b7daa0e716d34783ea25c","sha512":"38786aa39e45b9e6b2d275b68905b7755bb18569d6f210d2b1b4da2b93b2ed0e520b1cbabe6d28e88df19f02ae58a734ed315bff88eb30763343f612c5ec3c04","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Muren_Idle_Enabled.pow","filename":"Muren_Idle_Enabled.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":28672,"md5":"89e10fde0db7cc013432d1f6949a02de","sha1":"c938ad25b8b46f8fa912df6eda7391401f4f6040","sha256":"b28855f4951913cad6729b8e8ff8d8439a3703f359ce7f52e03c1a4e8796f497","sha512":"0b65b26c4098155e1ea645a61cb25f5e1fe7ef719bd0e757114a1cec816ead351d8803ad8e886ce85ab14815a3fbd33ee04f8174f2050fac5d417a60be10e87b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Unixcorn_Idle_Enabled.pow","filename":"Unixcorn_Idle_Enabled.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"64f3781cda6f4cf91e42916da2a50121","sha1":"17a282201f7285533de1eb9b38b562c4d05e0d77","sha256":"feeaf68840d4e0b30fc6aae2533ea66497b3c85fb705f7c203a39e99dd4243e2","sha512":"39cba902c2a2dae3588b2042d75be66e05fa3c3598d2af92b6a7d64666d597dc2b48a7de8085b1715ca196668c5c130fd93a04caaabb148c999857294b24e926","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Режимы электропитания/Zoyata_Low Latency.pow","filename":"Zoyata_Low Latency.pow","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"8f7965f2af349e6bdfc5191f03271890","sha1":"45b2739686f3533af1b34d61e397fe8de7833de6","sha256":"4d41b52f7da5c5f69f909b723a9d0165ce5512ac2bf4ebc5a4f5310f5431c385","sha512":"8cc702c1469443f2d43d4c06134d6c64cb9445c5e9a81959ff91e6d214ed3e1b407fd0e74f958f9b406e61c6bbef31bc3257c74ecbee1ddfda7de3db6f352973","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Рекомендованные службы 2.bat","filename":"Рекомендованные службы 2.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":825,"md5":"c652ba7ffff2403dcb7b0d4e3c055302","sha1":"5a9d5213763f89541b24b229b28ebc2b018f2971","sha256":"d6e2062b77dff5d57345ec8ae7dcb118d1f54b6ec90c720efcec76089cbc33b1","sha512":"ac53f8b75d35c3eccf5db8822de59b6394a370e5e65528754c62755aa4658139549a3075e80793adeb3af8ff0c0bdabb51d6653d7ba824c219a1fd7bf5a90eea","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Рекомендованные службы.bat","filename":"Рекомендованные службы.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":17169,"md5":"5b4123a22fd99dea65464438b3f4eb83","sha1":"54eec23fbac7e71ccb2f6e998950a7b28be1b6e2","sha256":"a8e3877c76ffe060e2e0a8854e3cc1090a29c5ccd974b056dc25db753dfa84f2","sha512":"5f5786b3879d4f8210bc123f3afa8abe01df430d397a68e59ace8d4b27e8e6b4b9ce187109f041cea5f4d386f1280bfa97433e9caeefb4e7bd40e115b3785525","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Сделать бэкап служб.vbs","filename":"Сделать бэкап служб.vbs","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ISO-8859 text, with CRLF line terminators","size":2303,"md5":"a36d3128322ec51bbc6f560b0f7e9e71","sha1":"b069a886e3102beaa2fc85e0a2039ad6c7fb1173","sha256":"5fdbdeea908beef1421eba54eb078934b8044c49644dceb30d74e0ef0f9abf72","sha512":"5558dd634121cb0a4228bcbcb7eb52584f10f964724d8feb45127822f0a801b829f39c117a2f418804e46afff04952ed9f236d9444e3b4e739fb158a6b7ce5d4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Тесты режимов электропитания.bat","filename":"Тесты режимов электропитания.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ASCII text, with no line terminators","size":37,"md5":"54144f39bb4c52ecd3127e243baf4e12","sha1":"87a09dbd5a4a5bad7168d1c05b391fa7574646db","sha256":"c329fdfee542db616729fc180bc8845727c964059b6cad3a7f8b0343743e1312","sha512":"8bc8a4500736ecccbb76b3921198be9e2c539b2c1096d1b826b20d98a830d9500dde4755eeb34f2274521840ef041db4a47f44de84095c869e0817e457f337b9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Ускорить завершение работы.bat","filename":"Ускорить завершение работы.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ISO-8859 text, with CRLF line terminators","size":541,"md5":"6186cfaa65f47c877ba4e41c00f9f246","sha1":"ec9ba52735b60db001faaec81ae4a529b0939064","sha256":"7f1883aa05823b1808061e4a9f02ab85c0fd0782b397c7d181bea6a7ecb46ca8","sha512":"e9e61612421e9d6f25e2b2fae9c99af3e60919ce2887433a0636dc66cd169d6f10fd795cc136b3363482f0fd2d312fb7aba46689d649990a608fcc91149b8c52","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Установить оптимизацию при входе.bat","filename":"Установить оптимизацию при входе.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":681,"md5":"11d36a0109bea2c52ec1f247cb9c0d0b","sha1":"071d55bb072261d9570d7f7ad69dc44e4f11a9b1","sha256":"bd77600849ab445a7a2e8d0c83a71604c49f0efb4110003713f3e83087a4c734","sha512":"b63d2e9a940536301bd7d0c403c484fa16a34db75e7b07436b9b6fbde5e332aeede4f678acadf959f24e246616984021a4ec41e66594c8faaaa2938838658e0f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Восстановить всё.bat","filename":"Восстановить всё.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1082,"md5":"6dccf4e3933753c91f8656a868a4d39b","sha1":"7c92855e8246f340fd556699472dcaaff9951abf","sha256":"d8a02b2f81c0e8112f94016eefb9eab25c2c877d95206edb8902cb0fb1a041cc","sha512":"da6b6ca538a4f9bf3765c2a2b0f0ca8beb36a2f9cf82dec7e3a191d5dca5050bf6ade084dfb2543bb38bdcd929976a70d9c8ed64b2e6c9402e425bfd96772c85","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Видео.bat","filename":"Удалить Видео.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":415,"md5":"8c333f020aca1cdf503fc3eaf566c173","sha1":"ae336a0c5370262f58af12de21da7237015d6826","sha256":"d53eab70dab4e60344bf0a923a206a22961bcece5f7568280efaa328be64831e","sha512":"26b9c68d72ee74b94d53815cee9ca31a0ae1f9666abbcc3bdbde7c5bcd8c70232b938d16893310bbcdd897ca768d45799676c3f8eb4cc9b60b326c0da74db39b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить всё.bat","filename":"Удалить всё.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1100,"md5":"f7a18052239cc13012aade5f03f55680","sha1":"f52a93d9cedb89c55ea16b57f25ffa0b916df93d","sha256":"2f2bb658e8e306c48bbfa2bdac9837d0a52e26a9ffbd62cdb9469bd083e5f8b3","sha512":"2cef465bc9afd2372aff6f71b2b991b74be4de6aeb429521bea1a67e120963faa5808ebe313744f576432ebe570eec673a5af51c1c703369c8fdee2df5a1b8c5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Документы.bat","filename":"Удалить Документы.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":415,"md5":"32d8dc1dbaeb75597e426fad94411616","sha1":"6b6c86870ef7c6ee4dd9eed7a2f388702d292c77","sha256":"66a6f426898a31d29511f837d386a19423daee53e4444c7b60df195ea03d177b","sha512":"288153195358075374951ac9f8c1affac18f1a35b63bdbe9cd6fbe856351dcd6d1e0facb00b0904a4b51a86721654d7859fa10e9bee458a756a1fe771dbe311c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Загрузки.bat","filename":"Удалить Загрузки.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":415,"md5":"16547d5bdf5542163f1da95d6828a475","sha1":"2a31967a04d93691c1b6a7cf38ad4e2c259a19c3","sha256":"01a2325005e688620d55f68001f73e76e17bd34689d847be625faae81821109c","sha512":"84c5f744ce6a28488d96d4ce69a83bfece8e0cc6b65902761394b26fb6b187ced2f5705bb08aa6b32db0716bbc62b4529e31971ef14ceade876dc0d2e76937db","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Изображения.bat","filename":"Удалить Изображения.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":415,"md5":"28b5d2618ec79768fbe064133cda29d1","sha1":"fc918d5a6a60757bf3156b3a2e01ead6f22e04f2","sha256":"b1c8ea00872a029c3bdd67f6d3ab66dcdd90195df0ba0fcf9b83c8ea48522308","sha512":"24c0d8048664a713de10158e17d7d682e38c060143476670cb52dddca389102b9238d6660d409702d6a1334bfc8ecdee79ba16dac12894882ec5a49e8825d33a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Музыка.bat","filename":"Удалить Музыка.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":415,"md5":"10bdb0ac6ab3109de491d486920f9418","sha1":"e5274d54d5384eaa6e2fdfcf4f021784f671765e","sha256":"e3b5c8d69780a7b4a24b835bdcfe214f9cbeed313cacc38da8da1f63b393194b","sha512":"e8086700bfa8c095d5e9aee7e73ef7c82d1f6fb7d4b631c2e7356cdd531ff45f04edf6daab0919c9420fc2a5d4d3f70722756b53123b45753387679307a5c617","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Объемные объекты.bat","filename":"Удалить Объемные объекты.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":286,"md5":"9b9875b7864231874e8c17d4cf79baa1","sha1":"7e0a911d7383499726321e1a7088c93a2f740fde","sha256":"0b7723da049336fd184e5a1d6c4d539d60c5d3b7d25c5540f7c142edd88fc46c","sha512":"eabe70e25034fa77a125b74f9ddce31680ec0b96985e793db6d5d8a5d7005d6bae53683986e06bec00a5ccee0d05a4d93cb824d1372827e2ae1accb632e66c67","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить папку Объемные объекты.bat","filename":"Удалить папку Объемные объекты.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":36,"md5":"307624e276925b256ebee87fe37cca15","sha1":"aaeca5c51174787435ae1432a1595394d7786aea","sha256":"172ace04384479efa8262353210de6b90c9b9e0c66b1ed95776a664b71645f15","sha512":"4e2005c6263c13704e60cac8420c9580ed1b48b36e5cd8c79c28555f53989f4e5aad5b359f85842595f6eeb305722e941f60d5520b6223b988a16351b861e836","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление папок из Этот компьютер/Удалить Рабочий стол.bat","filename":"Удалить Рабочий стол.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":415,"md5":"47512f91f7424444258864dee2235187","sha1":"b218569909cca9ba99ff50ed27a4a3bd6c84a737","sha256":"cbd41ced9ed9b7045c9943f928c63d51290284e9b2ada50cfcd751f264540aa8","sha512":"77de527a57a6e47ef410ad2752701a2d029617b7ddf8f45a78ab0c7da18afb795dec83e80dc866b9019e853952435ae45eb45f1a04c1426aef7c20ba3de5c0ec","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление пункта Быстрый доступ.bat","filename":"Удаление пункта Быстрый доступ.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":385,"md5":"6fd33adfafcee5093dcdd4a210e213b3","sha1":"5a5465dcf2ceb330e734d2e8d2860fd9417f55f2","sha256":"0e9443715846767161bd9a006c2f691d0a3dfcb03f6628cfa27baeb80b06f0bc","sha512":"a4419413b5acb86769f99363f3422a86f282f19a982869bfe12eda9b07c52c8b8bcc187ddd144a8fe16c657f17f1c5b5a681a000a4f5c11e7dd9af84494e21d4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление стрелок с ярлыков.bat","filename":"Удаление стрелок с ярлыков.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":196,"md5":"11b4dd1b40660eca859d682fc206ed5c","sha1":"bec84d48d3ffba9dbd2d834d436c1c545833722e","sha256":"1f9d9600f6edc77e0f8cab45ba13247a2beb13df198846a558fab2c1b25c4df2","sha512":"d8b81d8d00103f312cda5a2074ef1bf3437575a21a0c3ae64c73395cc804745752103dad9124aae46a5ecc903850a8c17bbbe5a1ddd7946bcb38e2cb7f891251","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление файла (CompatTelRunner.exe) телеметрия Windows.bat","filename":"Удаление файла (CompatTelRunner.exe) телеметрия Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":132,"md5":"f99fbe11d346fb342f74bfaad388adeb","sha1":"c0ab642cc984aac5dfbabc6e21de96707ba6878a","sha256":"8250b698d454c22a29914e35ea72a68ea2a014bee1f3724cacf45445d52783a4","sha512":"0c36f30b61b813103a4a1899dd5bc0197cf40babfc62f6ead1da20f5b7c00bc9e2d3e35b5cc6394ead955d6f4bef4434c700c29720b3dd9c63753c02b8d4b980","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удаление файла (mobsync.exe) синхронизация Windows.bat","filename":"Удаление файла (mobsync.exe) синхронизация Windows.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with CRLF line terminators","size":131,"md5":"386e879fa0c99e669642acb4b205b2cc","sha1":"130e899b8cd3d7b13fbdcee25717441d21b67027","sha256":"108be6f8a129f92d0f8c9528b9c48e099beacaaceb62c97dc131d6f3e9a376e1","sha512":"fe1132d1b896720b3f4f420b2be4d5342852adec1104e6d0b44a2e3be786c9e026df764e84473f607f1179252e29fea27eb20a9448277cf4f8b217c2a8847536","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить 3D Builder.ps1","filename":"Удалить 3D Builder.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":48,"md5":"11121ad9465776c6a8dff27c2c738614","sha1":"dbe4fb4e07be57e5c045e472b0a553271698fb83","sha256":"22e5edab986e2f586d5348aebd733998aa2aeb7ffb16b2889c4bff66e8e4554f","sha512":"6907e123ef3a7592b5b5aba710f04be389595ceda212c3440c20e94824506990a5edf2f93f88c8b8c46662eb237f4b7b356d610a315d14e0c10c221657fdd989","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Bing Sports.ps1","filename":"Удалить Bing Sports.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":49,"md5":"aa042c21446e41f08f558db0631d0674","sha1":"bbe97a984733f000f310815bdfcd88c6dab953b2","sha256":"3f20c6d6c412df1091c2d833f89f7c3396d678a2a87a9d0da1eab47cde53e5f8","sha512":"b547e04d65395916d0574d5bd7abffb72bfaeeb41038be6ef159b2db1857c7c703de49f6a74dae0e76dbf098dfc78df393689e0d4417ba1b7b155a2b1ca4e9fe","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Cortana.ps1","filename":"Удалить Cortana.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":62,"md5":"f6e21d2179607c236d5662f5d9e40beb","sha1":"2466769557b5c5a97223f898727d087e05a5a0a2","sha256":"25c29c3c431f7ae9af6ea882314e04f0984247e48c6a8129f1d780e5ae1d2a8e","sha512":"8d6c809a98d98b77ae96e83069e90023d919ba056680400166a383f9445408d2e04de35f62939ab6eafe7c5f239bcdb34f8e1757ef10f24b3433acb11fb52e62","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Groove Music.ps1","filename":"Удалить Groove Music.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":48,"md5":"8f6cba932edf4964c45648b7f5f1d73e","sha1":"38ba27b5aaa78b564db9917e024ad4e8eaa556ba","sha256":"8425c41b23b78722361e723de0b8e9db0f809e4cbd899fa2a60ab562b047bd33","sha512":"9d589b1bdc72d8de3ebeb966d658ad26bd7a176b60cfae10084ffb7f80711d70f17e25619643eadb9ae1073caafea75992c67580369d6f025f692711062d2aec","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Internet Explorer.ps1","filename":"Удалить Internet Explorer.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with CRLF line terminators","size":155,"md5":"e520fea22a357114c2c422006e697d6c","sha1":"fec1bcaf70e6f5b56ca708b0a565dac6c6545aec","sha256":"0952600ff3830f9033d2744a34cc823bdd16124f6467bd2e59a68001ce1a77f1","sha512":"1bba5b569b2efd6ee0e19df56d1b15239199bb6a1c1b7108517d0be954fdb306b351c3412fe94e7ccbbd7eb59b53d08a5dbae02eff95a1d28577e9ba8d32b012","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Microsoft Edge Appx.bat","filename":"Удалить Microsoft Edge Appx.bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":1122,"md5":"96a5e97a90bf5b38aacde54b7cb45ffa","sha1":"e02a9998da79ae004e508d2ff0f5a69273ecf3bd","sha256":"c92bf3989bb15c252daf05399658abd39a2bf9dbd01568680ebe31e2ed603230","sha512":"48327643a988872dc10dac107dec68e55740e7064b8296652c106086ebc39af0b436a4c6f67c7b878e4ca1460f48fecf226cd6e786ac9762d5eeee926a8ec532","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Microsoft Office от Darren White.ps1","filename":"Удалить Microsoft Office от Darren White.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"Unicode text, UTF-8 (with BOM) text","size":65250,"md5":"63a4c2537265f88e0896830ad7a573fa","sha1":"000fe36d71fbe77cd086bf4098dcd35357037276","sha256":"ca1b1b8f816f37f51071ee32dcac3db0a18ff27d7ea32e137dab60c6693f612c","sha512":"18a57b4e06408be71f40a0b8b7ee896165739741c3afa2ef7459439fa84cb142578b0a88c88f2b37a4d6ffecc968dcbf80c150f3aa3ea4ea94314ac83211667c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Microsoft Office.ps1","filename":"Удалить Microsoft Office.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":48,"md5":"749de0f8b0546cd359186e8bdc7ca5ad","sha1":"bf808a0eb9de7e0123af7abac6c5acf9c3f46da3","sha256":"0bb570a9303f92952ab14b48f042bedd0131d859cb9cac6616c46a13ae561654","sha512":"4059944f64b7af3331f49bc8f3f236d55f2d49b8cc95622beb63eb480061985ca59c70f5596be2718b38ec8598a03f39f981ff356b1c5b6e65ddc69c2e3b901b","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Mobile Plans.ps1","filename":"Удалить Mobile Plans.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":59,"md5":"fc7e8aeb9d76dff2253451c2c33cf940","sha1":"67f239b84dbef9708fde397d774eb82300147242","sha256":"f2ba3177bd7172422c42f6106b67ab6e1ca316451980df6537228946623b14bd","sha512":"e19ddfef2d35e57c76bcfa2858547cf7f4a1a4ce418b5a3b8184a1c440b9c24b84e1e88d7f084f8a964d2670aa0a3de78989bd16824ecdb960f3ce0d73e3d7a5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить OneDrive.bat","filename":"Удалить OneDrive.bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"DOS batch file, ASCII text","size":892,"md5":"a6979378aaa9dd7a714e62942992799d","sha1":"b5087fe85102e1693e0699f89f911ead1bef9a8b","sha256":"fd9dd989edfb8e9088b250c4d808bf6278c25626b8b76d7bd57f79a9605893bf","sha512":"6295c13357563eca8671f59ab10ededc61d23abd86de68a2816003eb650215955a96e94e26493761b062f07084fd6b0754ce2011c66202ed04bd6b1414b4de65","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Paint 3D.ps1","filename":"Удалить Paint 3D.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":56,"md5":"05a743307b0e12efbcf0ab7b159e087d","sha1":"00766849afba41e016aed876a1c098bde9894964","sha256":"a6bd427e42928daa09d0bd696ff22d7042f3e2144ff72a61bc47f8e1768320d9","sha512":"d6c2501b708875ef0adcdd7919673b4f18e82bfef486c9fd29c72b518dc4498584affa2855e1f4ca4754826c1c067d6d3c88f6a2653f6f4c159031de4a213487","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Print 3D.ps1","filename":"Удалить Print 3D.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":56,"md5":"c912abd3df4f401a8d5d6d2caa47a1d6","sha1":"3e35993fca146ce32011e671c4a794a2507cd107","sha256":"55393b124603986dcb55c8588a5eb7e38d52536dda3297d5217d56a615e5d3a6","sha512":"97d54e61cf0c68c738fc87781554bc80dbf786b48628777a053c3efc3d7f05b88948502fbdc2b03faaee06bba9128b640223d5c08848b4dfa7c982b00d8bb62d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Windows Defender (DefenderKiller).bat","filename":"Удалить Windows Defender (DefenderKiller).bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"data","size":72625,"md5":"a5125b71047580438afc580cfc091026","sha1":"1da3e18ed91c29e3dce4c6c83d9b1e37f6f0518d","sha256":"df9046b6cc8e41a350c9d0d9020e90f3e5c2b7e1ab8f9fd4fe9b2a1796e3775c","sha512":"99e26d5eb2a343911a00017e0725fe576897bb3afaa0e8bdf6a2c74b17b7546836778fc1f696c5530f56be20a90ca1955a4e02d233e2040bd0ca3cf5e2f5f14b","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить Windows Defender (DefenderKiller).bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Удалить Windows Defender от MartyFiles.bat","filename":"Удалить Windows Defender от MartyFiles.bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"Non-ISO extended-ASCII text, with CRLF, NEL line terminators","size":24753,"md5":"e2183043ab16d5597c8883ae952ad204","sha1":"f8dc608c01953aab6227178040dfc5fe0c0de029","sha256":"1f49d735db06aa3b3c53f57d35b2a0b727ef36c6cbe4df2cab8468428d27a2d6","sha512":"edc75df04b1da7451280d3762407cabfab8509c4ab45716a7fce4b64b3ec288a0703c9db85265a325ff2f8ef79332b9d092973fb666dee6a00a5d733ad411410","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить Windows Defender от MartyFiles.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Удалить Xbox App.ps1","filename":"Удалить Xbox App.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":46,"md5":"f7440a19b38b693ec9ac99643f7679eb","sha1":"a11b2fe6227a6c01314056f036563a8e4cd84896","sha256":"5cc5c6de674c47578ec01cc8d71cdd42f8738ea44025ff74a5c71462df315998","sha512":"2ba27f2c22018fd58aebcd1b0e7df93fd2001a6ca277ab0b0438a5009c96d32dfc585b20db33bc3b1a5b8117f9704d09a4591d6cf497eb0a7f7f2cf70a86dc19","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Xbox Bar.ps1","filename":"Удалить Xbox Bar.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":66,"md5":"a495ffff141683529eeda4b2d19d35ea","sha1":"081db4b12a6ab8424006ca2891947ca7daf2ac9b","sha256":"137ad6552c0a04a72cd6f22f09b4ef81dbbcd82c5e8f24873e5e7218c300ef88","sha512":"88c959ced3923a86f9094cfd49075af4aaae88f5b81c6093ada7553098f51b8e55e768dcdd2dd4cbe872f86d28fe58ea4fb6bae98857df1daffdc59f24e04e11","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Xbox Game Speech.ps1","filename":"Удалить Xbox Game Speech.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":72,"md5":"9b44020fc4f4d3e6b3c594ebf26ecd42","sha1":"86b52e148c0bbb39bbeb1bead7fe4517a9ed5364","sha256":"62c578e5729896f7e5903234d6fc0979baeef451fbc7b3dbeec9eb8a33f1307d","sha512":"cbfe9dc806847274d11da65a41246a03367fe99c66d68f5e442d8bffeebf1bb4a89b61704eab03e5c6546078135b5a46f777fdb9aadec06e4c6e88ff4f2a982f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Будильники и часы.ps1","filename":"Удалить Будильники и часы.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":52,"md5":"8150acfb0c1a8e8d46112fe1505777ea","sha1":"11c5a1206eb75d5d85b240ea41a1a10db56e8364","sha256":"183ec0fcf55b1f90076d7b4225bf566f66b2f8676d1322804e20c740f4b0ef27","sha512":"8c1a5cd3ea5bb8a93acdd230c41e26bdc22f97cea4aec9fc51e30521fb6ed820e1d13766f8860a5fa5aab174de3b8647bc58c1cee8dfa8c00eb95eb9708d4c9c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Ваш телефон.ps1","filename":"Удалить Ваш телефон.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with CRLF line terminators","size":111,"md5":"b1404a89bde4c60757b4cbcbf908e335","sha1":"c1ebd0acf8fcf76069c43fcb2f7258ee13db1a4e","sha256":"22e7dcb3a48cea871b90f16da3b7429039c2a9b54502d1bb2473c31a226bf5fe","sha512":"7b6f187df19bd25e99492ab1a99d84b4492ecd807f89b6f622e54e593d1d4a26146dab054e953d91ee89fb3c0136897d08ff71eee43d40c96df2fb93f2337c12","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить вредоносные UWP приложения.cmd","filename":"Удалить вредоносные UWP приложения.cmd","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with CRLF line terminators","size":1310,"md5":"2bc5e700eb2ec382473ab34563411b3b","sha1":"34ce6fd973e5ef6201651877e5f33ef03bc350e7","sha256":"bfc87e461f6edd9538a55915d0a11e15636c1215519fada8f1223c314b915864","sha512":"557080877d7da001eb148ff6ee3f28e1405302ddbab8dd755692ed4dda97cfd0f400e5ee65a99bcda0507ae9e9b47f090c827a3cc5427645185d6b03832750ab","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить временные файлы от Adamx.cmd","filename":"Удалить временные файлы от Adamx.cmd","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":271,"md5":"b8e3721ca2e8e16a6ae36c0e7404ab1e","sha1":"7ba3ccf82b97908cdb583555823e8a9b57ead5a1","sha256":"eb11b9fbdc2eed57b751cf93a9fe83a008d44549eef507838147de0a8be1e03c","sha512":"c60830e690f61c53bb23b373f6debaf29d3f0034dc283a075465cdee77b57304697591e28c0b5d3b15addbe91261a38f6841142b6eaeb5c5ff41efe2acb64cbe","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить временные файлы.bat","filename":"Удалить временные файлы.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":878,"md5":"22a3d808a0da29950b4ce3426ac852cf","sha1":"9ef9a72df8e38175375f7c4eed2af086aec4ef6e","sha256":"e7ed97ec09a606cd3b851e99abb42957c079aee6d1a56b038a4eeab39c23325f","sha512":"cfa78656e92bc4eb9adb3801edf4f2e450c0a4110fe3010e9d07522b8830555654395b048cccb34ddcae1b973005a30c8527db6d5d4e2e01502822786d3df763","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить все приложения Microsoft.bat","filename":"Удалить все приложения Microsoft.bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"data","size":91330,"md5":"ade0199d8e79f0b060547091905230e7","sha1":"28d8dc10b41ac452246c5d13513104e11e4d0425","sha256":"74ee620d5e450a1fcbe3f8a11e171e3b8597f03fc6107f39b71df4fd46ccde99","sha512":"305ebd54d5d1bd27ca3c6031b1887699831f5084d39ecfc6ef195d42ae0969ca279b18940292183aced2fa2b16c030ea0ffa3e843fca70274ce73be768b4482e","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить все приложения Microsoft.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Удалить высокую производительность.bat","filename":"Удалить высокую производительность.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with no line terminators","size":75,"md5":"81804a41a6788d8120724de1c2ff5ad7","sha1":"e7b4798e3c0196a8d241f758dc9ffd46456501da","sha256":"974f1f1e8f4ca4662a3f8e5e3609d9946f370428f5e4444947d58148f0509c15","sha512":"6e46d4ab183fd2ce03d80e8466972a782bdd263e141f0d7ab1a30963b65f077d5e7785fadc825698132b30341bc83670e97a98a8c083a8f2e856d6aca6d123e7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Деньги.ps1","filename":"Удалить Деньги.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":50,"md5":"96897f6208d9ad9cc52a5bc4daaa377f","sha1":"83bbfdb4794d708830a7cee166f90045877b8bce","sha256":"16b86b3941f7e94e06e215dc048b4ee38c8107a349186a4cd4317330dce0f312","sha512":"6c1e8217d3d8b9ae788f590a1381aaec2268467cad8fe0e2fe5979a38130e51c1abbf72db47c9ce69a7d4234aec05104947106e0b79435151aaf4b3c4be12898","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить дубликаты дисков.bat","filename":"Удалить дубликаты дисков.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"ASCII text, with CRLF line terminators","size":234,"md5":"6c303c824cd89cf05d838eb5de889980","sha1":"7ce0e0d0aa6617763f1cf7fb9b7f04d3fe5d56ba","sha256":"f2c6dd86344e425f23aaddf288b2d31229555f1cd56697a8e95febdadb4df6c0","sha512":"a2a1dd385effcab4d181a5dd20909664e83b47b2fe07ad0e75cac911f1005ed303f4bc48e55a809c7e26f76bb5139c425753b97e63c4d6e8464827fa82d7c58e","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Записки.ps1","filename":"Удалить Записки.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":69,"md5":"5981f0a180115c3864f4354e31912bf4","sha1":"82d7efd9276e948129d06cd8630c5e3215726ce3","sha256":"72801a803ff748e7f7bf079ea47e096ae53c29c4b6731f1074772f84bb9b6f71","sha512":"42ccccb0dad8c8188da55a486c552c83d944e7a470d8b3f76d562ad29e388e5120d1429b7d12bfbed3d8cb3a8acb74072386102b8d84a7c5b8c6f4394103b487","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Запись голоса.ps1","filename":"Удалить Запись голоса.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":52,"md5":"d65aec52176a981dea7a6045b07b14b0","sha1":"b149bcdfe24d49e3b97aede2927ad1c7e1135f20","sha256":"7f22b6673dff0124ebf2b8ea9e4026ceba90d71ace78b3f4e395a6e0d3548455","sha512":"1ec041bab301d079896db4ba4ccc64de945e2cda2f1cc71978cd2f49b7ca4080c3ef14ad25f336f132c2e4e492d1837130c281bfe50aca54d8e7c340e3c46ada","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить и другие приложения Metro.bat","filename":"Удалить и другие приложения Metro.bat","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with CRLF line terminators","size":2188,"md5":"3a8c9b032388273ab0bc6e6905a8d2e0","sha1":"c71b1010b9ad78304836fdf27aea0e889abadf34","sha256":"fc54cb558e45eefbb6435955312b1b3d05352e17c7f62271c4a16f0089d4a533","sha512":"539461f62d810c738a5a6a4d4591151d00a54d9d5e0b4f09a53b5a01f5c19b182d6e0632f18b4c5588c379c2c56d195e4098aab0a6f7fcf25b698b2a7b3bc24a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Калькулятор.ps1","filename":"Удалить Калькулятор.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":56,"md5":"688d5882048ab35eb0cc7282f651e383","sha1":"cad2d65dec767bc0f3175c3af731cb7f4430603e","sha256":"c9f044fe093d15891d18dabb8be9738e3ccc1ab0c0a49b24d597ac66dc4ac6d8","sha512":"1031188deb7e626e7fbde522c89507b3a487b9a9646ca17c11710edcb8da78e7b0c46df62bf4779abf433dd451df77b5487febecd2ef78a61355f12dadbd7263","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Камера.ps1","filename":"Удалить Камера.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":52,"md5":"0e65b55805155d8fa0c729d8713e4f6c","sha1":"7cd2371a87cce29fc3e579352faed076fa2c9d7b","sha256":"688baac20687b113a643a07ca6b0ab3e68225fdadbef03b49b41ce68e739d12a","sha512":"eb9a8d114043bbb1dfa51b0d38c5b91e38c49f910d6220003d5abe0b41692680c0259d42603f3a98460063e87e75160cd2662a2bc17155c27870c5d92740178d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Карты.ps1","filename":"Удалить Карты.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":50,"md5":"08c43755d6149b28a0eeaec69f9f4f01","sha1":"d0f7d8c74d0c73579a7ecf66488612b8b020c794","sha256":"e5396dce8222a369f633a775ecad442156bff0b89d3ad2f96df831025a3b27bf","sha512":"6bdf6541b7b0a880a51422e8647cc1657f160ba30eeced355e256af20ef6aed04262da07b76b6bdcc893988367888c776166e241bae4b7eea7e75ebf37cf2a3f","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить кеш Центра обновления Windows.cmd","filename":"Удалить кеш Центра обновления Windows.cmd","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":151,"md5":"d68b23be3d4f267243a9b4944c04b029","sha1":"73856f7651f94d69f4350e6148c43d50d4fe7811","sha256":"9ae170577be032277b44519eb5e79766183c54d81b5930174aa2ecae16cc23ea","sha512":"adcd49e8ef4a798c9f4cc6aa90895dfc4811ca17c49971aa2bc1959b92749ccf8145dac844a18d1c546b71532841c8a7f3f33fb84ad72e53635d943d97d1a924","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Кино и ТВ.ps1","filename":"Удалить Кино и ТВ.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":48,"md5":"fc0784125f341ed6afe31741b9b0b3e6","sha1":"b6aa9d5a9d220cc760415ec37b229061774361a2","sha256":"49a6316fe4869a3af90ee3d0150fa8e0abfcedef79542c1519f32eb349601d78","sha512":"4f1ec7f339fd7af92da95716e7b35ba1596110851674a48eec4c1219cf808c52b3b56999cf5a58ebccc2f541635568d472b9b21b5092f9877c3446f228328fcd","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить лог файлы.cmd","filename":"Удалить лог файлы.cmd","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":46,"md5":"404bf1d97926ccb3fdf0484360272840","sha1":"724acdd7d2f22a015a65a50adb1f69a003131479","sha256":"36bc316984d4b75b638e1834fc7ee512ad4e44be1fae59b6f481ecdb08f14935","sha512":"5826bde343ee4601b5c76d4f127d7b0a7de00fae5bd7c968b57114329e01040244c473fc89ee4aa475fc427dd447b17417bd0eb658bbb38efce028f0b0f9f1fe","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Люди.ps1","filename":"Удалить Люди.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":45,"md5":"44fb2d76ff062be37fbb6fe8a153037e","sha1":"228c690ce2f4d906380b4f40f7e8001bd437b802","sha256":"115803f4d839d356ed0961955b9092068721d60b80580c739ea2b5d1d92b1691","sha512":"a5d9e939f2ff34c70fffa0dc6bc45ef64b7363b2d24b4d53d5defac668093e4ac171f4ee97e1fd8711c9b54888b012467ed93ca506ba4665fa644dcb6b3844d3","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Набросок на фрагменте экрана.ps1","filename":"Удалить Набросок на фрагменте экрана.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":61,"md5":"01d689fe5588841056eada2e29c98001","sha1":"8b60897ed194e71be59498650e13d211354e72aa","sha256":"0882da924c6eebe56efa00a52b9b3a6923a39b63ef0a02275546f5576ed8978f","sha512":"cca435229599817ad0bb63208ad4aff9eb847103ab7a6a452d6e368a0f1e4afeba2e36303104c88f6d0ac2416f170d2355281c794d9288688b8fad0798663a36","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Начало.ps1","filename":"Удалить Начало.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":49,"md5":"ed6792542b928f0cda54547b5e684b9c","sha1":"82d5cfa7432b234449db91ce879cdee0c8054b6e","sha256":"0191fa098749cfd827fc49b455dfd3419e02aeaf41b49203a27098259b7d1452","sha512":"81d31bf14b34d6d6e0bda7232582c2f56e857bf82b91d5a6f319ffbab2ee74e11437d16eae40f0475de7d57067ac4c49ced6c1910f694348d646a9ea6dd8ba59","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить основные приложения Microsoft.ps1","filename":"Удалить основные приложения Microsoft.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with CRLF line terminators","size":8068,"md5":"93676788643c04ce8e9ca6d1ab18ce90","sha1":"9117efd981119e30b5337902238a5fb1121baf84","sha256":"4651ce4e3be6c91159bd2bcc250861d950bc5856d4ffc8d8b5326415a8484f5f","sha512":"357eff07b7e3cba80832b33eff29777f6ebf58b54d7a0e62a26405090ef9c776b200e05788a2cab4d1478234738df727a0cadc23c2a0778e56d92c27555933be","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Портал смешанной реальности.ps1","filename":"Удалить Портал смешанной реальности.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":68,"md5":"53fa3270e33d1d73919dae5302215514","sha1":"ea163d2add940f0c7165aaaf771b89e7272bf75f","sha256":"52552d42c23253a1d7301a8fb1daddc9877382884a9e49e8ed1e2da0369e5a9b","sha512":"605facc7c5cd868516651e24ac802c77099cf4658b5da9a9942d6745c2204d1da22d16192d7709af9d46f5ed7b092883f641ddacf06eb9db43fcd6a1e7fc1f14","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Почта и Календарь.ps1","filename":"Удалить Почта и Календарь.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":64,"md5":"116e644b41be7d528d5333e3ad02a459","sha1":"b2ff56b0fb10b6c6ceba5b9255863ad15d9713ae","sha256":"890f6e0ef25c44028ae0b0d6b547fd743c79d26da69f397c9afe509eb1f905a2","sha512":"240ab2a8c5bc25349c69321931e9dd987628d4421218375bc5d36d31e0a1167adce23344e56654560f69efb12a1dff1729ff2e7b2ad7a4c38b472fefbdd02b37","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить протокол SMBv1.bat","filename":"Удалить протокол SMBv1.bat","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"ASCII text, with no line terminators","size":94,"md5":"77daa67f464b1e350ab052eca95f7b54","sha1":"a3f90315a80f3b2ec3afab41afd47a0eacb33047","sha256":"568c2d293c577eeada49643e5cc53a7a0b2bc0dcf7df2fb55d999b79553381e4","sha512":"8046f8f5c9ab9c79cd67f7db7897329193d7a8bdb37854de382c4f0d7eda7c59d8595a054e57688858b825ba1eef7c307f94608c40853b47c30b2e1cda7059c5","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Расширение для изображений HEIF.ps1","filename":"Удалить Расширение для изображений HEIF.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":67,"md5":"28db8c7048b3998c0ce9074b7743b4c4","sha1":"0d2a06e44b25ff370f55730b9c15295f5a9f880b","sha256":"e6eefdb7e1bcfc24904b951ffafa123877bf347c6473f0dc2c8cb88aab3a78e9","sha512":"e89b0da8bea5f5fd53f2b4e967088e68a0b35b69d10722ef90e156576d74d8d21e55de1b1d447ef0d8437b6c2af609bca9d868969b9f6e119a3bdca0674d81df","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Расширение для изображений Webp.ps1","filename":"Удалить Расширение для изображений Webp.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":67,"md5":"5c0e8f145aaee4faac5f499feaa44471","sha1":"833c03f82597a2aba7b1763923ad56ba2f8b1eff","sha256":"d93066a4545e90e8f2e2cd12da10034524accebd71a4819630773dbc8ece9a9a","sha512":"c59198672b5d4100dfc2f1bafe8222dce5ecd0f8150f10f938bf26123be11ea865c2364466931a5192fda4cfdfd821a56555c64220a260905f8bcd28f2c5d308","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Расширение для интернет-мультимедиа.ps1","filename":"Удалить Расширение для интернет-мультимедиа.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":67,"md5":"7ff79798dcd78e9744c8520029b9304a","sha1":"76a5af908ae6b84af3e61465c74b304db4e60a21","sha256":"986a9fc2d5e971c1ea56d50c4632654cf5e73a6405970c7cb0a4166bc5a2499e","sha512":"6c35e570328a3d2e1db2c05f3776b7cdf4e8e2c4ccd67344c09648a4bd76ffdada878cd6a46ff1d44c4c5f8f7632209a38823f32aca287864184e46f60ccc859","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить скачанные файлы обновлений Windows.bat","filename":"Удалить скачанные файлы обновлений Windows.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":52,"md5":"4487729a1b809233de0fd832294c1a55","sha1":"909c241f79791a57f166e3e00c8a9e064e1501ee","sha256":"2c21979c20f8872d9e0f9c694ce783cef85666dadc3a616fe0b6c001772847ad","sha512":"be2427169c104ea490c682d3f9fc9ec4459611b261eb75c54d74d3e24e3dbf5ff7370e5029ce47f4ca535e7774bee050dd230240836935b46c550b38dfcaf013","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Советы.ps1","filename":"Удалить Советы.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":58,"md5":"866225e304274f939c6be66cac02612f","sha1":"bdda044d1868371d51244dba5f3a19e612aad375","sha256":"dd7511c29fdc4d7c77c36286dfe2b13a0987c2ef127752dd63b86e9496fab7af","sha512":"e4fbce9c076fc4208abfef00d71d523dd4285b2d2d555c741d05c725b234d6d938b2749956b658fb3e647b3c8e155bf10e3c71109f1212bf6667e32e54409147","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить средство 3D-просмотра.ps1","filename":"Удалить средство 3D-просмотра.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":66,"md5":"407c9ee27cbee4c395e06bf919e0b370","sha1":"748c733d355556be0b3f9873b04003cc38783a54","sha256":"5dc334e6f2d4d01e0008021341d7d9494853aa4bb44beefbd73617eeec3cdb7a","sha512":"01e407df748bb290cfa167e79f74dbffcfceff13bf99d9fce4b6ac3b9b9d198d659e9fd01e053dd52dd02e58535f1833880305765b6a61068184c44ff2bb33cb","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Техническая помощь.ps1","filename":"Удалить Техническая помощь.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":56,"md5":"afae088ac0d3fa437af8e5ce1327f146","sha1":"bda321604230d1587e8e334e1740e878e1ee4f6c","sha256":"c76fc6997dd08a1f82a6fdbbd7914dc6c2e94b6c6a2430d3851731df6a94fefb","sha512":"89e0b6b262a05e37dc088ff8b0e98f21010f0b6d0ff2685b116563a33c4f470515c8b9ac3c507119a9ecf2da8f9f198091d7be2933e0dfbcc9af79046695e039","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Фотографии (Майкрософт).ps1","filename":"Удалить Фотографии (Майкрософт).ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":45,"md5":"13f61eebf2767edafdd0973a564cfc45","sha1":"1cfae54cffd320ad9443f13f4e7ff4605be8b138","sha256":"6edb13ca3a3eba646a5927cceff4e282df4d72c9f2ac40d93423fd4944079d3f","sha512":"5bc92aceb80a96fe77bf2d12d277128fcfcc152f91f9a188c21d8b19eb8788cbe86b9afe20553a50363065b2cc62a49bdbe345f7047fe564f5d13d10bbd8bef8","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить Центр отзывов.ps1","filename":"Удалить Центр отзывов.ps1","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"ASCII text, with no line terminators","size":47,"md5":"d0b131ee595c41b388cba09bfec9d914","sha1":"76a3152d3f3880c51a5f59f40a2024ed93014e37","sha256":"0e582b3f3bde29235a09cb41abf15ae75736620049b97a3e96a346234a499b09","sha512":"b1da9d1074c4f24ea4eeb7b1524ec821ce99f1074d7945a1a5df0242c98546b359efc1ba25a46663d286297a50ee2afc67b7efeec4c94166c6affb9140295e9a","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Удалить энергосбережение.bat","filename":"Удалить энергосбережение.bat","modified":"","Modified":"2024-07-18T07:32:50Z","magic":"ASCII text, with no line terminators","size":75,"md5":"cfd9cf70508ae536b5d33ee306413fcb","sha1":"a334b6e0370653e46614e3ab5b59c7132704ee8d","sha256":"409950959818243013ffb403dc971bcaac6a73dac9635adfa2ff127bfdf37d74","sha512":"57c7765bdfc352168a2f0b7aa3b5c6f8734d777e68a632a8c7ef7c1582367e53c258f4642e1f2e11acb3c37644264f7b0bc94c1be00fb5a55b79cf51cdc1e159","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Улучшить командную строку.bat","filename":"Улучшить командную строку.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":2146,"md5":"831c298ccfe5be5366d3f0f9356241c4","sha1":"484252a90f1ee629171a57786c7fee1deba5b356","sha256":"0edb618ebf6685d38c572ca8bb38eaf69c0df9841078e8d14399b4cdb71c1da1","sha512":"e67233d5f5d175c434f99958e580e579bacc44c92299b7bc656ad1f2d7df1412d23af3fc3f3e0d615c5f73a78c6969cc0fb08eda43c03cc2c8acd58c8cb72eb4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Уменьшить кнопки Свернуть, Развернуть и Закрыть.bat","filename":"Уменьшить кнопки Свернуть, Развернуть и Закрыть.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":473,"md5":"a2641823f2b8c80e8c80bc8b9b3e3a6f","sha1":"f007442dfa2dfdd7336c17e69d164d3a5d05a5c0","sha256":"f9652344aed0ec8a0f6b8ba4ecf6c87689acd102dff0cc01318888cece9dfdf9","sha512":"e0da831a42efa8dc667d67f90cc2d77855ced3f440fcec3395106a4d6eacf5f1b1d24af4d6d9c45956478f240f3a8d3e8ee9c87b486259314f9ab35c9558274c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Уменьшить размер файла гибернации.bat","filename":"Уменьшить размер файла гибернации.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text, with no line terminators","size":25,"md5":"9b89b042135281303046d97e9694c99c","sha1":"22638c977d057ef39d509c91bbd2474e37c6cdb8","sha256":"2d6880ee1ca82a71fb6d4332d95c900b530e585b8421ace748a17b444ad7a587","sha512":"d1c50ffb9bd5a0f95eff26180ee5b5ff84995fd7d4ce2258e50132c86d5c4a0851e8f5dcffed884cab7c07b66bafdf30d1cb6dc2548a28d70de600f15db29379","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Ускорение частоты мерцания курсора.bat","filename":"Ускорение частоты мерцания курсора.bat","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":363,"md5":"c1877a48223de2e288d2876a9025c9e4","sha1":"df99c6b9cf3bfbc90b015f3242e8d1f076336b5e","sha256":"8469418ad1ffcf3b56d745356329e7cb6bfb70f8c747f8af8c4533ec1d245c87","sha512":"23c4c9c25ed117931d27aef8aa45763b143c358c74443c003624aa19e7f550f1a669dce8f8fcd58f668138e992717dbd19a244764d3bf30bd4cb8d1867c7a3a1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор чистка 1.bat","filename":"Хардкор чистка 1.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text","size":903,"md5":"6db114d4b901662652feca3f47def59b","sha1":"0456e1b94f9cc9afbc6536df7eb4cfe8622569d1","sha256":"7d77f44136755d1c583bb717d621853f99a6e337a2cb51020f1222ba3c83f3ab","sha512":"b04b8d0efa549cdda38c65e707f6e670509d217a544abeed07625223e84478d8cc2678eda67b34dd93cb7d6d7a48792b8a5911af9b821b621ad03a31a742f054","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор чистка 1.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Хардкор чистка 2.bat","filename":"Хардкор чистка 2.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text","size":903,"md5":"7f01f9b2839a39f4c8bdcf3df505ae46","sha1":"9946ef78297e5c1f32e80ebd58460e2b5c2c2970","sha256":"3a57750e700cc4cd92f2bc32aeace3d0361e83c6411dabb9848272ba98cf79de","sha512":"8fc17f630b3e8a1728b821eb1eefb175393f35515db253133f784cbe6dd12cef889ed012f1f6439346ada77d5ede148301f686e45ceea92fc2d4219b4edf2946","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор чистка 2.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Хардкор чистка 3.bat","filename":"Хардкор чистка 3.bat","modified":"","Modified":"2024-07-18T07:32:48Z","magic":"ASCII text","size":903,"md5":"7f01f9b2839a39f4c8bdcf3df505ae46","sha1":"9946ef78297e5c1f32e80ebd58460e2b5c2c2970","sha256":"3a57750e700cc4cd92f2bc32aeace3d0361e83c6411dabb9848272ba98cf79de","sha512":"8fc17f630b3e8a1728b821eb1eefb175393f35515db253133f784cbe6dd12cef889ed012f1f6439346ada77d5ede148301f686e45ceea92fc2d4219b4edf2946","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор чистка 3.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Amit_v1.pow","filename":"Amit_v1.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"f1ae7b44c0d97e34cc7d97a244664c57","sha1":"fabb12eb70ff54e459cd560a816b36ea7acdfde2","sha256":"e6b397a70b27bc795c262e2a2becc6e47178e91c92eefbe28fcb9ce17f8bd60d","sha512":"f0179a08e9289b1d8f731536389954dd8c21311cbea6d64deaf27ade0d652338a2ec8450ba9fe301fdbc0d7317972011c95b71a9974f66d644aa6069cb6d599c","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Amit_v2.pow","filename":"Amit_v2.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"e2efa49a5582c5b6f187ec882d5bdc28","sha1":"534136a115a663f8a00f2ba506ff1d885fe4d11a","sha256":"8bc19646feccb3bdcc828f055a3193a2de0e297f285bb435d4a52565f9460253","sha512":"2e7cb1c7b184a9760090db551ea739c82640bddb2d867b06d29d12a3091aa5126e72be9cdc29ca35f1e14106fadab45798189d81b3db554b19d8ea4491358121","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Amit_v3.pow","filename":"Amit_v3.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"ee2efd939946d8e1bea018b555fd2508","sha1":"3396a3586cd84004ab990f24e4e046dbe4d4712a","sha256":"43e55d9bc154e1dc30c30f4f1adf0f46b7c7b31979ef8818929f3b6bf9d3b241","sha512":"52971d72fde186bc1ed6c5a276319e69d186b37e58f8a7b808025c353c58ccf5795bb9dac3f10d74982efe45f88ae569766cbfa95acf0a44cabcc7a56b1bd7a1","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Calypto.pow","filename":"Calypto.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"a0f70ec788c7ec8f91d70cf8eaf594df","sha1":"6a7bb003b8e754741fce1b67c56ac24a6b99864b","sha256":"e9e2a83bb632f72b0c675d1c2f3edac919fb54e97a7ea0a62092ac7210c763de","sha512":"b69579cb85702fc7f101f82fcbbda4715db1d94ff9fb42ade246705320b88d4cb73e297ee54b7494aa9b05e47baf71184e0286710c9003c4e58bad82d5fc8ba6","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/GGOSv0_8_5.pow","filename":"GGOSv0_8_5.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":12288,"md5":"f96a079bb7874d1593b6c00eaa3d7e4c","sha1":"9461db4d43038506674d72324980466a0d70dffd","sha256":"4d37d4988a9f1657f694ecdf6e914cd8a56c2a7b72d0c0b04596d1a1a48e7d7b","sha512":"efd5890745d8eb22e4b75d327044f66cae9827d4bc05fa0269192fa71d3f500e36308345b44790ed2d90594d92f10ba9cfadbc3a8047795265492fa031f12cdf","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Muren.pow","filename":"Muren.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":28672,"md5":"f59c827f53046b827744906c6279ef44","sha1":"4498809e31ca7f230eb848068e327efbfac0e474","sha256":"291cca72196ecd6292b69515c28d4c07c017533c40053a25929969acd6aa3f17","sha512":"a3df06a2bddc27a71d7c1418760e898d2a301b4eb94391a12cf3b24bfc181fc58ec8a121b5229ee196309d6d37f674a28114b9df84132e255bb5d3f4eddf9cda","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/RekOS_Power_Plan.pow","filename":"RekOS_Power_Plan.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"b0dafd937d0d8a096be58ae8691f5ab7","sha1":"7a0931c179e80b53f8206d295404432b83f3392e","sha256":"b581033b2a8a3cc331fb3631a0244da4dfde950cef29bd37f83c93fa4ba2d17a","sha512":"1bf4917ab06151f3c886e6bfa1b0ef51464d656497d2387fc6498cec59fc745a3d16dc55ec2e1494f2cb0a3a135fa71937d99060906b3c94a4b1f1ebc71ec3dc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Unixcorn.pow","filename":"Unixcorn.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"944c255a6ed5cf7b2a8b9140bd582118","sha1":"a710f8a6c61e5180b6fb295e9a0a830058bddb3b","sha256":"953236cbd10a3924e57db7eccd7aef28830fec9515bce2d726fcfd1cd92238d4","sha512":"2cd65e0e6c7a82664fd71b625694796ccc129e599d26ef094eb9d13765844dd70b53cac915bd10d7772849bc2bbdcc7cfd4436fd90a48a05b6d4c5538c7604ac","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Адские режимы электропитания/Zoyata.pow","filename":"Zoyata.pow","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS Windows registry file, NT/2000 or above","size":16384,"md5":"3783bbb25736b4e1d53a8d59e891cc72","sha1":"45cb9db37c8df972b650aba828d2411ba32c1d66","sha256":"59b66ae1b73713fd5fddcf0046c701a964e85dcbcb8852bfa52909b74d59e6b0","sha512":"993d10020c73615e14d6524767ee19fb4e6a9728c3c2ad6d0ec080a92645a0b74f0cd3bb1390627dc860a045ea9dd594968426b97980a691a3ece7a8ad826977","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Выключить службы 2.bat","filename":"Выключить службы 2.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":825,"md5":"c652ba7ffff2403dcb7b0d4e3c055302","sha1":"5a9d5213763f89541b24b229b28ebc2b018f2971","sha256":"d6e2062b77dff5d57345ec8ae7dcb118d1f54b6ec90c720efcec76089cbc33b1","sha512":"ac53f8b75d35c3eccf5db8822de59b6394a370e5e65528754c62755aa4658139549a3075e80793adeb3af8ff0c0bdabb51d6653d7ba824c219a1fd7bf5a90eea","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Обязательно прочитай.txt","filename":"Обязательно прочитай.txt","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ISO-8859 text, with CRLF line terminators","size":641,"md5":"c4c14ac8cc4f45aa153325840e27fa21","sha1":"e4c0bf8768413282c295f33efbeffc37ce0c06c5","sha256":"9ef47705d26f86a0198b413e20c871ef569d1854e7c1954b1637579fe7de3b3a","sha512":"07a7f5ffe1aea063ce7921f5ae8cbbe85221b4672ce2d55c0316dc2f157e59c058446fdd0bd4c0ca78ff338a4e9e95296d863158ba4a58f1889ebb66d655ddae","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Отключить устройства разом.bat","filename":"Отключить устройства разом.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, Non-ISO extended-ASCII text, with CRLF line terminators","size":3499,"md5":"ed2a6362b444f9942e025d09019d4dd9","sha1":"b0d3f65750875c3a7c5581c815be1adba217fbbe","sha256":"088d33bda78659208fce884701b632a56607966307913ddf7537fb79f986b204","sha512":"17b57a549ddd036eac5fa7fa028f49ba3022817f30fb96b2f3b919552ce5461de7ce7f69a2e622f910486053f3e7edae4f9390bcf3f4d159513720ab5965fb6d","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Открыть Электропитание.bat","filename":"Открыть Электропитание.bat","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":55,"md5":"8246da8cb43328be4f39835e3de89ee8","sha1":"47eb190e9bf41ba259f9c771b9b40365df5779e9","sha256":"ee1fc8afac76f32ec6aab87e959e89e4162cf4b40fbb3869ca2a810b2cd5a2ed","sha512":"8429b05ea44392828c3c567a660eb29cacc69d7b8e929503f86d383ac85f816195cc2facf9d490a235119b18152062b280a2d83786f3d6046e7a96ec9ebe89fc","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Сделать бэкап служб.vbs","filename":"Сделать бэкап служб.vbs","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"ISO-8859 text, with CRLF line terminators","size":2303,"md5":"a36d3128322ec51bbc6f560b0f7e9e71","sha1":"b069a886e3102beaa2fc85e0a2039ad6c7fb1173","sha256":"5fdbdeea908beef1421eba54eb078934b8044c49644dceb30d74e0ef0f9abf72","sha512":"5558dd634121cb0a4228bcbcb7eb52584f10f964724d8feb45127822f0a801b829f39c117a2f418804e46afff04952ed9f236d9444e3b4e739fb158a6b7ce5d4","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Смертельная очистка планировщика от AtlasOS.bat","filename":"Смертельная очистка планировщика от AtlasOS.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":4973,"md5":"27272e0063fed2deb336e5aa7f3af5e4","sha1":"d151c71be8d5de3b920f13df6738b4545a1412f8","sha256":"7c44f8adbba7372e7b50720bcdd311a41fac8de398f80d9d2d033a0eef1bdb42","sha512":"7a7808ad3b0beddf81d0ad350c745fcdb185d855c2f007074d0ed417e232fc416f0edb97d6b77ce3c1cc791532bc1c420259eaa6493ab7f76c11a6b9f624b7b7","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Тесты режимов электропитания.bat","filename":"Тесты режимов электропитания.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text, with no line terminators","size":37,"md5":"54144f39bb4c52ecd3127e243baf4e12","sha1":"87a09dbd5a4a5bad7168d1c05b391fa7574646db","sha256":"c329fdfee542db616729fc180bc8845727c964059b6cad3a7f8b0343743e1312","sha512":"8bc8a4500736ecccbb76b3921198be9e2c539b2c1096d1b826b20d98a830d9500dde4755eeb34f2274521840ef041db4a47f44de84095c869e0817e457f337b9","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/интернет батник.bat","filename":"интернет батник.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"DOS batch file, ASCII text, with CRLF line terminators","size":495,"md5":"f96325c95416b206bd079074887161d7","sha1":"0285f0b741403ba9381bc8c4781c2e383c9c1a60","sha256":"c3a88af24017e9f4a1a6188d3071a75aee36bdda176b4cf6355e6ff2c4bc3b59","sha512":"21695e36bc93d2156061bfcb0c40c51661d3808ab9898f3b6281315abab335f3ed7c6ea08da5e6a94e185aa7309e1c03f864bda4855bb55f221a334ed978f0a2","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 1.bat","filename":"чистка 1.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text","size":903,"md5":"6db114d4b901662652feca3f47def59b","sha1":"0456e1b94f9cc9afbc6536df7eb4cfe8622569d1","sha256":"7d77f44136755d1c583bb717d621853f99a6e337a2cb51020f1222ba3c83f3ab","sha512":"b04b8d0efa549cdda38c65e707f6e670509d217a544abeed07625223e84478d8cc2678eda67b34dd93cb7d6d7a48792b8a5911af9b821b621ad03a31a742f054","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 1.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 2.bat","filename":"чистка 2.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text","size":903,"md5":"7f01f9b2839a39f4c8bdcf3df505ae46","sha1":"9946ef78297e5c1f32e80ebd58460e2b5c2c2970","sha256":"3a57750e700cc4cd92f2bc32aeace3d0361e83c6411dabb9848272ba98cf79de","sha512":"8fc17f630b3e8a1728b821eb1eefb175393f35515db253133f784cbe6dd12cef889ed012f1f6439346ada77d5ede148301f686e45ceea92fc2d4219b4edf2946","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 2.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 3.bat","filename":"чистка 3.bat","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"ASCII text","size":903,"md5":"7f01f9b2839a39f4c8bdcf3df505ae46","sha1":"9946ef78297e5c1f32e80ebd58460e2b5c2c2970","sha256":"3a57750e700cc4cd92f2bc32aeace3d0361e83c6411dabb9848272ba98cf79de","sha512":"8fc17f630b3e8a1728b821eb1eefb175393f35515db253133f784cbe6dd12cef889ed012f1f6439346ada77d5ede148301f686e45ceea92fc2d4219b4edf2946","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 3.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}}]}},{"path":"tweaks/TI.exe","filename":"TI.exe","modified":"","Modified":"2024-07-18T07:32:47Z","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 6 sections","size":27328,"md5":"80454e70784f1ddb0c91d41469e2498d","sha1":"2f3f04ef670895de12cdfbae17c9d427e7caa97a","sha256":"a3e0ba70ba908de8a75825c3a1ff36147e02c686280993c2caa8a9a6968764b0","sha512":"709ed0fc9e2520a5beb57379e90be12cac680060b4c72ff50e9d9897f3a4d7a57f84b9be04b78974e6f6b73cda7202bfc617835cee3011eed7f0ee6f5e82edf7","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-17","alert":"Scan result 1/72","trigger":"a3e0ba70ba908de8a75825c3a1ff36147e02c686280993c2caa8a9a6968764b0","verdict":"suspicious","severity":"","comment":"suspicious - 1/72","link":"https://www.virustotal.com/gui/file/a3e0ba70ba908de8a75825c3a1ff36147e02c686280993c2caa8a9a6968764b0","meta":null}]}},{"path":"tweaks/Work/cecho.exe","filename":"cecho.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (console) Intel 80386, for MS Windows, UPX compressed, 3 sections","size":26112,"md5":"e783bc59d0ed6cfbd8891f94ae23d1b3","sha1":"47fe9045da4b1be2a52d80c0b3cf790e04d29108","sha256":"5c1211559dda10592cfedd57681f18f4a702410816d36eda95aee6c74e3c6a47","sha512":"d09fc6574359a5df8885b035a8d05c4743d58f56fee3ffc2cc4fd7c3beec93c8994cd1f296b99a2f0f17b13ec7b03415912f49e13f5d1541839878f6bc498020","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-10","alert":"Scan result 6/73","trigger":"5c1211559dda10592cfedd57681f18f4a702410816d36eda95aee6c74e3c6a47","verdict":"suspicious","severity":"","comment":"suspicious - 6/73","link":"https://www.virustotal.com/gui/file/5c1211559dda10592cfedd57681f18f4a702410816d36eda95aee6c74e3c6a47","meta":null}]}},{"path":"tweaks/Work/cmdow.exe","filename":"cmdow.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, 8 sections","size":88576,"md5":"ddd12566b99343b96609afa2524ecec3","sha1":"8fef2c2bc87ef7d135296fdb4cf9ecd9c0322d55","sha256":"767b877e735c425bf05c34683356abfde4070b092f17a4741ea5ac490611f3de","sha512":"b11a36b25b5c34cd86c367c4003f76f360965fdbc67ca1f30afec3a744d419c03d70ade2423ad6a1d2858561f732db9f1d1a279a37b045f8a5faa9c53dbe30bd","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-17","alert":"Scan result 35/73","trigger":"767b877e735c425bf05c34683356abfde4070b092f17a4741ea5ac490611f3de","verdict":"malicious","severity":"","comment":"malicious - 35/73","link":"https://www.virustotal.com/gui/file/767b877e735c425bf05c34683356abfde4070b092f17a4741ea5ac490611f3de","meta":null}]}},{"path":"tweaks/Work/ConX.exe","filename":"ConX.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32+ executable (console) x86-64, for MS Windows, 6 sections","size":28160,"md5":"dfb96dd6de6bfc60e1d5ddd78acfd428","sha1":"88e7f7ea42d93ba65ff39938ef55e8e6438a679e","sha256":"d8b96857fdfc45442a55daa61e5478e3386be6567eacfd7ab2406047f589ed10","sha512":"c16a24664c1fdfdd3a20b98dfc1d8502b0444753c1315f3d4a7a39c98dcb83e9703c6d648fbddc8ee6a8fb3dfe2b61067ad1bcc71cb8b4d0b3157ba5ab140e5d","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-05-18","alert":"Scan result 1/73","trigger":"d8b96857fdfc45442a55daa61e5478e3386be6567eacfd7ab2406047f589ed10","verdict":"suspicious","severity":"","comment":"suspicious - 1/73","link":"https://www.virustotal.com/gui/file/d8b96857fdfc45442a55daa61e5478e3386be6567eacfd7ab2406047f589ed10","meta":null}]}},{"path":"tweaks/Work/FuckDefender.exe","filename":"FuckDefender.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, 6 sections","size":435717,"md5":"7445db9a68e0e19604200f516debb040","sha1":"3341005e582db2fe8964e132ee27bd1f235b1426","sha256":"d398b18db6c05422d551ad6a599fabb0f37cd7c329b7fd4944238917e88f58a3","sha512":"f7339031a7f7aefea4ce52b9b8f789fc2cf666b5da820a7a4d6ecc30df0f190d47b5a5c300b6b7c3ce7e7eda2bbc8c55c97fbf0bcba2fca8ae58530df82a5883","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detects an SFX archive with automatic script execution","trigger":"tweaks/Work/FuckDefender.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"Xavier Mertens","date":"2023-05-17","description":"Detects an SFX archive with automatic script execution","rule":"SelfExtractingRAR","yarahub_author_email":"xmertens@isc.sans.edu","yarahub_author_twitter":"@xme","yarahub_license":"CC0 1.0","yarahub_reference_link":"https://isc.sans.edu/diary/rss/29852","yarahub_reference_md5":"7792250c87624329163817277531a5ef","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"bcc4ceab-0249-43af-8d2a-8a04d5c65c70"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Malpedia's yara-signator rules","scan_date":"2024-07-18","alert":"Detects win.xorist.","trigger":"tweaks/Work/FuckDefender.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/malpedia/signator-rules","meta":{"author":"Felix Bilstein - yara-signator at cocacoding dot com","date":"2023-07-11","description":"Detects win.xorist.","info":"autogenerated rule brought to you by yara-signator","malpedia_hash":"42d0574f4405bd7d2b154d321d345acb18834a41","malpedia_license":"CC BY-SA 4.0","malpedia_reference":"https://malpedia.caad.fkie.fraunhofer.de/details/win.xorist","malpedia_rule_date":"20230705","malpedia_sharing":"TLP:WHITE","malpedia_version":"20230715","rule":"win_xorist_auto","signator_config":"callsandjumps;datarefs;binvalue","tool":"yara-signator v0.6.0","version":"1"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-15","alert":"Scan result 49/74","trigger":"d398b18db6c05422d551ad6a599fabb0f37cd7c329b7fd4944238917e88f58a3","verdict":"malicious","severity":"","comment":"malicious - 49/74","link":"https://www.virustotal.com/gui/file/d398b18db6c05422d551ad6a599fabb0f37cd7c329b7fd4944238917e88f58a3","meta":null}]}},{"path":"tweaks/Work/LGPO.exe","filename":"LGPO.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (console) Intel 80386, for MS Windows, 5 sections","size":481144,"md5":"fdf6c1f114a0fd2a144a6a126206461c","sha1":"bacfef8c102b1791ebe3229324cdf75da3171952","sha256":"0c97f29543418b30340c4ff5d930d31e6196dd59c2cc74b6b890fa7b90c910c7","sha512":"9d941f1bb73c999f7f3c54f20a673fc4bc0342ba1d5c43e271e70f67294a63253878f8ab412e5b6ec39468e556c37dadeff0c167b22dd1bb675eca93d4e2cbce","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Work/nhmb.exe","filename":"nhmb.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, 5 sections","size":416768,"md5":"c1f1df31f4fd9faea0ce161d5b813256","sha1":"d4bd3e06c75d5b77a8de32eaf973539f9f6ee588","sha256":"702b9ea3a65c8aa6a6c14188e05b0d7e841237f7e9096836b75b6e3016fb10ef","sha512":"0c9382d6e333f759bc6658c554de056f07ba2766d47028aee7602fd1dbedaa1e4e86acd6e967e248db2867fd37883d4f437960276275e0c63b4baa8f4e94ea37","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"files - file ~tmp01925d3f.exe","trigger":"tweaks/Work/nhmb.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"The DFIR Report","date":"2021-02-22","description":"files - file ~tmp01925d3f.exe","hash1":"10ff83629d727df428af1f57c524e1eaddeefd608c5a317a5bfc13e2df87fb63","reference":"https://thedfirreport.com","rule":"cobalt_strike_tmp01925d3f","score":"80","yarahub_license":"CC0 1.0","yarahub_reference_md5":"1c6ba04dc9808084846ac1005deb9c85","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58ae3b15-154e-47e9-a24c-c8b885a4cd55"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-04","alert":"Scan result 2/74","trigger":"702b9ea3a65c8aa6a6c14188e05b0d7e841237f7e9096836b75b6e3016fb10ef","verdict":"suspicious","severity":"","comment":"suspicious - 2/74","link":"https://www.virustotal.com/gui/file/702b9ea3a65c8aa6a6c14188e05b0d7e841237f7e9096836b75b6e3016fb10ef","meta":null}]}},{"path":"tweaks/Work/nircmd.exe","filename":"nircmd.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 5 sections","size":119296,"md5":"5ed4728caa339c2a7479102f0c04c087","sha1":"20cd453fcac9d9960b0076715d985a55784a6b53","sha256":"7160db2b7a6680480e64f0845512d203a575f807831faf9a652aaef0988f876c","sha512":"a521eac0d54fbfb9726fad3fafcd7779d455ca46e065a3eafc1a7883961b061550bab8e93ce576904b6c6b2d25cf129ff3d2437ed26a6033ac7c0b4c628dc865","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-13","alert":"Scan result 1/74","trigger":"7160db2b7a6680480e64f0845512d203a575f807831faf9a652aaef0988f876c","verdict":"suspicious","severity":"","comment":"suspicious - 1/74","link":"https://www.virustotal.com/gui/file/7160db2b7a6680480e64f0845512d203a575f807831faf9a652aaef0988f876c","meta":null}]}},{"path":"tweaks/Work/NSudoLC.exe","filename":"NSudoLC.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32+ executable (console) x86-64, for MS Windows, 6 sections","size":161280,"md5":"e8d3152fbb5c7e8d585ca3adb6caa9a0","sha1":"b0178a9d58978661e6b8d955096bc2df9d6d42a8","sha256":"9e166d334ecc9814e42ecce759c3fa30f350d0aaef68a67cc77e04258be69722","sha512":"97429c0d86e4761abda8067308f63c9bb2cfb9331599ca02204293c77ede18e6df6317764f4cb0d4da932471e039bdb0fd47cb79d055648e6da1519841ba1960","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-06-06","alert":"Scan result 2/73","trigger":"9e166d334ecc9814e42ecce759c3fa30f350d0aaef68a67cc77e04258be69722","verdict":"suspicious","severity":"","comment":"suspicious - 2/73","link":"https://www.virustotal.com/gui/file/9e166d334ecc9814e42ecce759c3fa30f350d0aaef68a67cc77e04258be69722","meta":null}]}},{"path":"tweaks/Work/TI.exe","filename":"TI.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 6 sections","size":27328,"md5":"80454e70784f1ddb0c91d41469e2498d","sha1":"2f3f04ef670895de12cdfbae17c9d427e7caa97a","sha256":"a3e0ba70ba908de8a75825c3a1ff36147e02c686280993c2caa8a9a6968764b0","sha512":"709ed0fc9e2520a5beb57379e90be12cac680060b4c72ff50e9d9897f3a4d7a57f84b9be04b78974e6f6b73cda7202bfc617835cee3011eed7f0ee6f5e82edf7","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-17","alert":"Scan result 1/72","trigger":"a3e0ba70ba908de8a75825c3a1ff36147e02c686280993c2caa8a9a6968764b0","verdict":"suspicious","severity":"","comment":"suspicious - 1/72","link":"https://www.virustotal.com/gui/file/a3e0ba70ba908de8a75825c3a1ff36147e02c686280993c2caa8a9a6968764b0","meta":null}]}},{"path":"tweaks/Другая оптимизация/pssuspend.exe","filename":"pssuspend.exe","modified":"","Modified":"2024-07-18T07:32:41Z","magic":"PE32+ executable (console) x86-64, for MS Windows, 6 sections","size":321704,"md5":"fbe9e863c6e46f75bfaba674e3ba0cda","sha1":"3dfa82b8884d2bbc7b43f6f9787da51a38fa57b6","sha256":"e93ddd9ed564b7f6532cd5b94cdce73067d8ebad8a5ce9373a6f839c7050780f","sha512":"4f28f1e891a141fb67a9666cc9ab71c1574dc7d7dfc035d6b97a32c25823ee5b0c3af53841057ead7980ba4fa34be8142841b42170915224533064b0bb2e6ee7","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-06-06","alert":"Scan result 1/73","trigger":"e93ddd9ed564b7f6532cd5b94cdce73067d8ebad8a5ce9373a6f839c7050780f","verdict":"suspicious","severity":"","comment":"suspicious - 1/73","link":"https://www.virustotal.com/gui/file/e93ddd9ed564b7f6532cd5b94cdce73067d8ebad8a5ce9373a6f839c7050780f","meta":null}]}},{"path":"tweaks/Сделать бэкап как bat.exe","filename":"Сделать бэкап как bat.exe","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"MS-DOS executable","size":7743,"md5":"fc53a5456ce124eaf3b03b151b40ece4","sha1":"9850fe210f986d07470a3a457d911fdd0cd1e86a","sha256":"125fd1b71a01f5e537bfc7d6a8d7a5df90cac7a6431eb0719cbc48e5e4775fab","sha512":"673dd646985e19d26fad3d299bf73f1ed315973f9196d0ffd4c02a4f2b5f29411e776ddbc4a6682634ff80bd0dca39039effd1f9a78621f6d8269befb0ec0d97","alerts":{"urlquery":null,"analyzer":null}},{"path":"tweaks/Углубленная оптимизация/Autoruns.exe","filename":"Autoruns.exe","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 6 sections","size":857648,"md5":"eac74ff3a98f5716dc938372f0ef4811","sha1":"e06ee67fb99c5a65ca80c50aee395ae233d5d9e0","sha256":"fc67dc529e812a6b1a29368aa9219ebdd0d523f429ccd5cc1161b9ac0d6b8ef9","sha512":"a7e734a61a474cb027f447339d348764f2c987be1f0ab177480c3874352865367eec46deed1c60585ebaf1287c0d2a24688d22d82e653f675cfa03e47071fc65","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Углубленная оптимизация/Autoruns.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}}]}},{"path":"tweaks/Углубленная оптимизация/MSI Mode Tool.exe","filename":"MSI Mode Tool.exe","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections","size":29696,"md5":"4bebf572a365d0e6726e4e74bb678fb9","sha1":"e603c9612e6a65b8c819a0f3cec52d32c920ee5a","sha256":"ca4356cf2a4019b773d6342cfd291cd5c2e5e8f7e4c1cb3b6771cef67006bec1","sha512":"8af5cea6005407cf253ba4dfbee48bab4a31541c6bf2929e27466325553af3d6ec9589e1533bd98ccc8f0612dee87ecdc33631cf32577d0a48e6ea6833dbc170","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-02","alert":"Scan result 1/74","trigger":"ca4356cf2a4019b773d6342cfd291cd5c2e5e8f7e4c1cb3b6771cef67006bec1","verdict":"suspicious","severity":"","comment":"suspicious - 1/74","link":"https://www.virustotal.com/gui/file/ca4356cf2a4019b773d6342cfd291cd5c2e5e8f7e4c1cb3b6771cef67006bec1","meta":null}]}},{"path":"tweaks/Углубленная оптимизация/Сделать бэкап как bat.exe","filename":"Сделать бэкап как bat.exe","modified":"","Modified":"2024-07-18T07:32:44Z","magic":"PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections","size":7680,"md5":"dd674e061c1d657cdb1e05b38b32e046","sha1":"48375098c65205e0054b4184f9cd91c1040f69b6","sha256":"c6dc6e66418c2493e69fadf49c87849da42981f57b2b707fc38bb53374c64b79","sha512":"da1c49a8b597603d4b72fc432775bc362dfb8983d53778a0ee5e7a9e9d6adcd59225a1206b98a71d029033662520de3b2f7fbe30fd59419156335644e00b88c9","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-03-25","alert":"Scan result 1/72","trigger":"c6dc6e66418c2493e69fadf49c87849da42981f57b2b707fc38bb53374c64b79","verdict":"suspicious","severity":"","comment":"suspicious - 1/72","link":"https://www.virustotal.com/gui/file/c6dc6e66418c2493e69fadf49c87849da42981f57b2b707fc38bb53374c64b79","meta":null}]}},{"path":"tweaks/Удалить Microsoft Edge и WebView.exe","filename":"Удалить Microsoft Edge и WebView.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (console) Intel 80386, for MS Windows, 5 sections","size":8068000,"md5":"1d966f5a33ae6612e313c6dd6913c25c","sha1":"117434104215609d07ef50ee39c12fa6f29fa093","sha256":"b6fab3f62e29a08e0ca648b84a99e8144e80e320c626175e995d9b1ac78d7b1f","sha512":"5967a2b6da51631f1d5bd18025f94a21a6f1e1237bb5fcd35788464801e2b8828a0c4cf603e2cd88beeba6bb9d9a14a61e0dfe02033f0ead51d7d28dcc06a5e3","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable converted using PyInstaller.","trigger":"tweaks/Удалить Microsoft Edge и WebView.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"MALWARE","creation_date":"2020-01-01","description":"Identifies executable converted using PyInstaller.","fingerprint":"ae849936b19be3eb491d658026b252c2f72dcb3c07c6bddecb7f72ad74903eee","first_imported":"2021-12-30","id":"6Pyq57uDDAEHbltmbp7xRT","last_modified":"2021-12-30","rule":"PyInstaller","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-14","alert":"Scan result 27/73","trigger":"b6fab3f62e29a08e0ca648b84a99e8144e80e320c626175e995d9b1ac78d7b1f","verdict":"malicious","severity":"","comment":"malicious - 27/73","link":"https://www.virustotal.com/gui/file/b6fab3f62e29a08e0ca648b84a99e8144e80e320c626175e995d9b1ac78d7b1f","meta":null}]}},{"path":"tweaks/Удалить Microsoft Edge.exe","filename":"Удалить Microsoft Edge.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (console) Intel 80386, for MS Windows, 5 sections","size":8067809,"md5":"617d4acc4a59d7b042276eff21c8f637","sha1":"f6558807cb58ade6d024b34f45e8b5680a23dc81","sha256":"a9272268e017eced810788b465dd4ce90e4b58e9500a84b382956146b3ff07d3","sha512":"e473e0a962deb1630b0824b2578336bbb297b4db0f03a81fc239c88067181d3b2026e12bd4d3aaab0a3057fc98a80780de08a7ada39b96d299d3bf654d38f1fc","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable converted using PyInstaller.","trigger":"tweaks/Удалить Microsoft Edge.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"MALWARE","creation_date":"2020-01-01","description":"Identifies executable converted using PyInstaller.","fingerprint":"ae849936b19be3eb491d658026b252c2f72dcb3c07c6bddecb7f72ad74903eee","first_imported":"2021-12-30","id":"6Pyq57uDDAEHbltmbp7xRT","last_modified":"2021-12-30","rule":"PyInstaller","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-06-10","alert":"Scan result 19/64","trigger":"a9272268e017eced810788b465dd4ce90e4b58e9500a84b382956146b3ff07d3","verdict":"malicious","severity":"","comment":"malicious - 19/64","link":"https://www.virustotal.com/gui/file/a9272268e017eced810788b465dd4ce90e4b58e9500a84b382956146b3ff07d3","meta":null}]}},{"path":"tweaks/Удалить Windows Defender (Fuck Windows Defender).exe","filename":"Удалить Windows Defender (Fuck Windows Defender).exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, 6 sections","size":437368,"md5":"24ea3acb5854a1709d41e48584837508","sha1":"ee3563b47f1adfef60dc4037f183cb6f0268b0b6","sha256":"7d52b688745af81f138fc15b48ed91ea3ec9775a53bbdf2c77b212e80377a346","sha512":"bd0a3b4290e90207c3c457ddf4196d4905820f0beace7351b4d9a2f157ef610a61c404e939192083100b690d0c2c4cb86f31043723fab0ca172fcab2f6438ae2","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detects an SFX archive with automatic script execution","trigger":"tweaks/Удалить Windows Defender (Fuck Windows Defender).exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"Xavier Mertens","date":"2023-05-17","description":"Detects an SFX archive with automatic script execution","rule":"SelfExtractingRAR","yarahub_author_email":"xmertens@isc.sans.edu","yarahub_author_twitter":"@xme","yarahub_license":"CC0 1.0","yarahub_reference_link":"https://isc.sans.edu/diary/rss/29852","yarahub_reference_md5":"7792250c87624329163817277531a5ef","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"bcc4ceab-0249-43af-8d2a-8a04d5c65c70"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Malpedia's yara-signator rules","scan_date":"2024-07-18","alert":"Detects win.xorist.","trigger":"tweaks/Удалить Windows Defender (Fuck Windows Defender).exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/malpedia/signator-rules","meta":{"author":"Felix Bilstein - yara-signator at cocacoding dot com","date":"2023-07-11","description":"Detects win.xorist.","info":"autogenerated rule brought to you by yara-signator","malpedia_hash":"42d0574f4405bd7d2b154d321d345acb18834a41","malpedia_license":"CC BY-SA 4.0","malpedia_reference":"https://malpedia.caad.fkie.fraunhofer.de/details/win.xorist","malpedia_rule_date":"20230705","malpedia_sharing":"TLP:WHITE","malpedia_version":"20230715","rule":"win_xorist_auto","signator_config":"callsandjumps;datarefs;binvalue","tool":"yara-signator v0.6.0","version":"1"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2023-05-28","alert":"Scan result 38/70","trigger":"7d52b688745af81f138fc15b48ed91ea3ec9775a53bbdf2c77b212e80377a346","verdict":"malicious","severity":"","comment":"malicious - 38/70","link":"https://www.virustotal.com/gui/file/7d52b688745af81f138fc15b48ed91ea3ec9775a53bbdf2c77b212e80377a346","meta":null}]}},{"path":"tweaks/Удалить Windows Defender от Vlado.exe","filename":"Удалить Windows Defender от Vlado.exe","modified":"","Modified":"2024-07-18T07:32:49Z","magic":"PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections","size":856064,"md5":"95b856d5e9c71c37844154b1d21c95ff","sha1":"da7fc1d570e283744eebc3f0b100fd87d050d716","sha256":"5a3a883668e02cb98d99e2444381e2af5a2b1f4be7d03dee1e7a41d5bb58739e","sha512":"765288c5edf37b47a803e567fa04c0afe195c1bd437f97082007b290eece14b5be61309a6831be1b1cd73118f77405f0fa86ccb65bf80f2b421501fc38801f37","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить Windows Defender от Vlado.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detects an SFX archive with automatic script execution","trigger":"tweaks/Удалить Windows Defender от Vlado.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"Xavier Mertens","date":"2023-05-17","description":"Detects an SFX archive with automatic script execution","rule":"SelfExtractingRAR","yarahub_author_email":"xmertens@isc.sans.edu","yarahub_author_twitter":"@xme","yarahub_license":"CC0 1.0","yarahub_reference_link":"https://isc.sans.edu/diary/rss/29852","yarahub_reference_md5":"7792250c87624329163817277531a5ef","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"bcc4ceab-0249-43af-8d2a-8a04d5c65c70"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Malpedia's yara-signator rules","scan_date":"2024-07-18","alert":"Detects win.xorist.","trigger":"tweaks/Удалить Windows Defender от Vlado.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/malpedia/signator-rules","meta":{"author":"Felix Bilstein - yara-signator at cocacoding dot com","date":"2023-07-11","description":"Detects win.xorist.","info":"autogenerated rule brought to you by yara-signator","malpedia_hash":"42d0574f4405bd7d2b154d321d345acb18834a41","malpedia_license":"CC BY-SA 4.0","malpedia_reference":"https://malpedia.caad.fkie.fraunhofer.de/details/win.xorist","malpedia_rule_date":"20230705","malpedia_sharing":"TLP:WHITE","malpedia_version":"20230715","rule":"win_xorist_auto","signator_config":"callsandjumps;datarefs;binvalue","tool":"yara-signator v0.6.0","version":"1"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2023-05-12","alert":"Scan result 44/70","trigger":"5a3a883668e02cb98d99e2444381e2af5a2b1f4be7d03dee1e7a41d5bb58739e","verdict":"malicious","severity":"","comment":"malicious - 44/70","link":"https://www.virustotal.com/gui/file/5a3a883668e02cb98d99e2444381e2af5a2b1f4be7d03dee1e7a41d5bb58739e","meta":null}]}},{"path":"tweaks/Хардкор/devmanview/devmanview.exe","filename":"devmanview.exe","modified":"","Modified":"2024-07-18T07:32:45Z","magic":"PE32+ executable (GUI) x86-64, for MS Windows, 5 sections","size":166776,"md5":"33d7a84f8ef67fd005f37142232ae97e","sha1":"1f560717d8038221c9b161716affb7cd6b14056e","sha256":"a1be60039f125080560edf1eebee5b6d9e2d6039f5f5ac478e6273e05edadb4b","sha512":"c059db769b9d8a9f1726709c9ad71e565b8081a879b55d0f906d6927409166e1d5716c784146feba41114a2cf44ee90cf2e0891831245752238f20c41590b3f5","alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"files - file ~tmp01925d3f.exe","trigger":"tweaks/Хардкор/devmanview/devmanview.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"The DFIR Report","date":"2021-02-22","description":"files - file ~tmp01925d3f.exe","hash1":"10ff83629d727df428af1f57c524e1eaddeefd608c5a317a5bfc13e2df87fb63","reference":"https://thedfirreport.com","rule":"cobalt_strike_tmp01925d3f","score":"80","yarahub_license":"CC0 1.0","yarahub_reference_md5":"1c6ba04dc9808084846ac1005deb9c85","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58ae3b15-154e-47e9-a24c-c8b885a4cd55"}}]}}],"alerts":{"urlquery":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Adamx/Отключить SmartSceen и блокировку загрузок.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Adamx/Отключить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Adamx/Отключить исполняемый файл службы защиты от вредоносных программ.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/BoosterX и ios1ph/Отключить антивирус Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/BoosterX и ios1ph/Отключить телеметрию и прочую хрень.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/MartyFiles/Отключить Defender, SmartScreen и Antimalware.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Optimizer/Отключить безопасный режим Защитника Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/windowser/Приватность Windows 10.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Вернуть все службы.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Все твики O\u0026O ShutUp10++.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Windows 10 Driver Disabler.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Выключить службы.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Оптимизация Windows c Github.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Оптимизируйте все настройки Windows от Adamx.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Отключите ненужные службы.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Отключить Защитник Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Отключить службы от EverythingTech.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Приватность от Adamx.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Другая оптимизация/Твики от garbuzilia.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Запусти если не работает Антивирус Винды или Брандмауер.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable artefacts in shortcut (LNK) files.","trigger":"tweaks/Оптимизация от qqnwr/Cleanup/dfrgui.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies executable artefacts in shortcut (LNK) files.","fingerprint":"f169fab39da34f827cdff5ee022374f7c1cc0b171da9c2bb718d8fee9657d7a3","first_imported":"2021-12-30","id":"3SSZmnnXU0l4qoc9wubdhN","last_modified":"2021-12-30","rule":"EXE_in_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable artefacts in shortcut (LNK) files.","trigger":"tweaks/Оптимизация от qqnwr/Cleanup/Disk Clean-Up.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies executable artefacts in shortcut (LNK) files.","fingerprint":"f169fab39da34f827cdff5ee022374f7c1cc0b171da9c2bb718d8fee9657d7a3","first_imported":"2021-12-30","id":"3SSZmnnXU0l4qoc9wubdhN","last_modified":"2021-12-30","rule":"EXE_in_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Оптимизация от qqnwr/Unwanted Services/PowerRun.ini","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• CPU Optimization Pack/Очиститель кэша.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/3 Delete Prefetch Files.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","fingerprint":"4b822248bade98d0528ab13549797c225784d7f953fe9c14d178c9d530fb3e55","first_imported":"2021-12-30","id":"2ogEIXl8u2qUbIgxTmruYX","last_modified":"2021-12-30","rule":"Long_RelativePath_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable artefacts in shortcut (LNK) files.","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/4 Disk Clean-Up.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies executable artefacts in shortcut (LNK) files.","fingerprint":"f169fab39da34f827cdff5ee022374f7c1cc0b171da9c2bb718d8fee9657d7a3","first_imported":"2021-12-30","id":"3SSZmnnXU0l4qoc9wubdhN","last_modified":"2021-12-30","rule":"EXE_in_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","trigger":"tweaks/Оптимизация от qqnwr/Оптимизация Windows/• Очистка/4 Disk Clean-Up.lnk","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"INFO","creation_date":"2020-01-01","description":"Identifies shortcut (LNK) file with a long relative path. Might be used in an attempt to hide the path.","fingerprint":"4b822248bade98d0528ab13549797c225784d7f953fe9c14d178c9d530fb3e55","first_imported":"2021-12-30","id":"2ogEIXl8u2qUbIgxTmruYX","last_modified":"2021-12-30","rule":"Long_RelativePath_LNK","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Основная оптимизация/Отключить антивирус Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Основная оптимизация/Отключить телеметрию и прочую хрень.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отключить Defender, SmartScreen и Antimalware.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отключить телеметрию полностью.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Вернуть все службы.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить SmartSceen и блокировку загрузок.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить антивирус Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить безопасный режим Защитника Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить Защитник (включая исполняемый файл службы защиты от вредоносных программ).bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить Защитника Windows.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Включить исполняемый файл службы защиты от вредоносных программ.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Отмена/Дефолт службы win 10 11.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Очистить кэш.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность и отпимизация от Flibustier.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от Adamx.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от BoosterX и ios1ph.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от Optimizer.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Приватность от windowser.cmd","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Рекомендуемые и условныетвики O\u0026O ShutUp10++.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Рекомендуемые твики O\u0026O ShutUp10++.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Терапия после обновлений винды.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Терапия после обновлений винды/Отключить телеметрию и прочую хрень.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Углубленная оптимизация/Более жесткая уборка.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить Windows Defender (DefenderKiller).bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить Windows Defender от MartyFiles.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить все приложения Microsoft.bat","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор чистка 1.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор чистка 2.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор чистка 3.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 1.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 2.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2024-07-18","alert":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","trigger":"tweaks/Хардкор/Уменьшить количество svhost и другие твики/чистка 3.bat","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Florian Roth (Nextron Systems)","date":"2017-07-23","description":"Detects Windows eventlog cleaner used in Operation Wilted Tulip - file clrlg.bat","hash1":"b33fd3420bffa92cadbe90497b3036b5816f2157100bf1d9a3b6c946108148bf","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","reference":"http://www.clearskysec.com/tulip","rule":"WiltedTulip_Tools_clrlg"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detects an SFX archive with automatic script execution","trigger":"tweaks/Work/FuckDefender.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"Xavier Mertens","date":"2023-05-17","description":"Detects an SFX archive with automatic script execution","rule":"SelfExtractingRAR","yarahub_author_email":"xmertens@isc.sans.edu","yarahub_author_twitter":"@xme","yarahub_license":"CC0 1.0","yarahub_reference_link":"https://isc.sans.edu/diary/rss/29852","yarahub_reference_md5":"7792250c87624329163817277531a5ef","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"bcc4ceab-0249-43af-8d2a-8a04d5c65c70"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Malpedia's yara-signator rules","scan_date":"2024-07-18","alert":"Detects win.xorist.","trigger":"tweaks/Work/FuckDefender.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/malpedia/signator-rules","meta":{"author":"Felix Bilstein - yara-signator at cocacoding dot com","date":"2023-07-11","description":"Detects win.xorist.","info":"autogenerated rule brought to you by yara-signator","malpedia_hash":"42d0574f4405bd7d2b154d321d345acb18834a41","malpedia_license":"CC BY-SA 4.0","malpedia_reference":"https://malpedia.caad.fkie.fraunhofer.de/details/win.xorist","malpedia_rule_date":"20230705","malpedia_sharing":"TLP:WHITE","malpedia_version":"20230715","rule":"win_xorist_auto","signator_config":"callsandjumps;datarefs;binvalue","tool":"yara-signator v0.6.0","version":"1"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"files - file ~tmp01925d3f.exe","trigger":"tweaks/Work/nhmb.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"The DFIR Report","date":"2021-02-22","description":"files - file ~tmp01925d3f.exe","hash1":"10ff83629d727df428af1f57c524e1eaddeefd608c5a317a5bfc13e2df87fb63","reference":"https://thedfirreport.com","rule":"cobalt_strike_tmp01925d3f","score":"80","yarahub_license":"CC0 1.0","yarahub_reference_md5":"1c6ba04dc9808084846ac1005deb9c85","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58ae3b15-154e-47e9-a24c-c8b885a4cd55"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Углубленная оптимизация/Autoruns.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable converted using PyInstaller.","trigger":"tweaks/Удалить Microsoft Edge и WebView.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"MALWARE","creation_date":"2020-01-01","description":"Identifies executable converted using PyInstaller.","fingerprint":"ae849936b19be3eb491d658026b252c2f72dcb3c07c6bddecb7f72ad74903eee","first_imported":"2021-12-30","id":"6Pyq57uDDAEHbltmbp7xRT","last_modified":"2021-12-30","rule":"PyInstaller","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public InfoSec YARA rules","scan_date":"2024-07-18","alert":"Identifies executable converted using PyInstaller.","trigger":"tweaks/Удалить Microsoft Edge.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/bartblaze/Yara-rules","meta":{"author":"@bartblaze","category":"MALWARE","creation_date":"2020-01-01","description":"Identifies executable converted using PyInstaller.","fingerprint":"ae849936b19be3eb491d658026b252c2f72dcb3c07c6bddecb7f72ad74903eee","first_imported":"2021-12-30","id":"6Pyq57uDDAEHbltmbp7xRT","last_modified":"2021-12-30","rule":"PyInstaller","sharing":"TLP:WHITE","source":"BARTBLAZE","status":"RELEASED","version":"1.0"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detects an SFX archive with automatic script execution","trigger":"tweaks/Удалить Windows Defender (Fuck Windows Defender).exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"Xavier Mertens","date":"2023-05-17","description":"Detects an SFX archive with automatic script execution","rule":"SelfExtractingRAR","yarahub_author_email":"xmertens@isc.sans.edu","yarahub_author_twitter":"@xme","yarahub_license":"CC0 1.0","yarahub_reference_link":"https://isc.sans.edu/diary/rss/29852","yarahub_reference_md5":"7792250c87624329163817277531a5ef","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"bcc4ceab-0249-43af-8d2a-8a04d5c65c70"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Malpedia's yara-signator rules","scan_date":"2024-07-18","alert":"Detects win.xorist.","trigger":"tweaks/Удалить Windows Defender (Fuck Windows Defender).exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/malpedia/signator-rules","meta":{"author":"Felix Bilstein - yara-signator at cocacoding dot com","date":"2023-07-11","description":"Detects win.xorist.","info":"autogenerated rule brought to you by yara-signator","malpedia_hash":"42d0574f4405bd7d2b154d321d345acb18834a41","malpedia_license":"CC BY-SA 4.0","malpedia_reference":"https://malpedia.caad.fkie.fraunhofer.de/details/win.xorist","malpedia_rule_date":"20230705","malpedia_sharing":"TLP:WHITE","malpedia_version":"20230715","rule":"win_xorist_auto","signator_config":"callsandjumps;datarefs;binvalue","tool":"yara-signator v0.6.0","version":"1"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","trigger":"tweaks/Удалить Windows Defender от Vlado.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"iam-py-test","date":"2022-11-19","description":"Detect files disabling or modifying Windows Defender, Windows Firewall, or Microsoft Smartscreen","false_positives":"Files modifying Defender for legitimate purposes, files containing registry keys related to Defender (i.e. diagnostic tools)","rule":"Disable_Defender","yarahub_author_twitter":"@iam_py_test","yarahub_license":"CC0 1.0","yarahub_reference_md5":"799a7f1507e5e7328081a038987e9a6f","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"1fcd3702-cf5b-47b4-919d-6372c5412151"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"Detects an SFX archive with automatic script execution","trigger":"tweaks/Удалить Windows Defender от Vlado.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"Xavier Mertens","date":"2023-05-17","description":"Detects an SFX archive with automatic script execution","rule":"SelfExtractingRAR","yarahub_author_email":"xmertens@isc.sans.edu","yarahub_author_twitter":"@xme","yarahub_license":"CC0 1.0","yarahub_reference_link":"https://isc.sans.edu/diary/rss/29852","yarahub_reference_md5":"7792250c87624329163817277531a5ef","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"bcc4ceab-0249-43af-8d2a-8a04d5c65c70"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Malpedia's yara-signator rules","scan_date":"2024-07-18","alert":"Detects win.xorist.","trigger":"tweaks/Удалить Windows Defender от Vlado.exe","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/malpedia/signator-rules","meta":{"author":"Felix Bilstein - yara-signator at cocacoding dot com","date":"2023-07-11","description":"Detects win.xorist.","info":"autogenerated rule brought to you by yara-signator","malpedia_hash":"42d0574f4405bd7d2b154d321d345acb18834a41","malpedia_license":"CC BY-SA 4.0","malpedia_reference":"https://malpedia.caad.fkie.fraunhofer.de/details/win.xorist","malpedia_rule_date":"20230705","malpedia_sharing":"TLP:WHITE","malpedia_version":"20230715","rule":"win_xorist_auto","signator_config":"callsandjumps;datarefs;binvalue","tool":"yara-signator v0.6.0","version":"1"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"YARAhub by abuse.ch","scan_date":"2024-07-18","alert":"files - file ~tmp01925d3f.exe","trigger":"tweaks/Хардкор/devmanview/devmanview.exe","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"The DFIR Report","date":"2021-02-22","description":"files - file ~tmp01925d3f.exe","hash1":"10ff83629d727df428af1f57c524e1eaddeefd608c5a317a5bfc13e2df87fb63","reference":"https://thedfirreport.com","rule":"cobalt_strike_tmp01925d3f","score":"80","yarahub_license":"CC0 1.0","yarahub_reference_md5":"1c6ba04dc9808084846ac1005deb9c85","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58ae3b15-154e-47e9-a24c-c8b885a4cd55"}},{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-18","alert":"Scan result 39/60","trigger":"a96de3bd6a5a7da6f6241fe492c301953e3a5e6932fd50da6f995663f1501793","verdict":"malicious","severity":"","comment":"malicious - 39/60","link":"https://www.virustotal.com/gui/file/a96de3bd6a5a7da6f6241fe492c301953e3a5e6932fd50da6f995663f1501793","meta":null}]}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:23.324359028Z","timestamp":1721294423324,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"15D10FABB92098E81E218740AE04059FE6340C321EE70325DB46F6C9CB7AD817\"\r\nLast-Modified: Thu, 18 Jul 2024 07:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=18126\r\nExpires: Thu, 18 Jul 2024 14:22:29 GMT\r\nDate: Thu, 18 Jul 2024 09:20:23 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"91a50ba757c5ca46c896205a21d87a49","sha1":"0b48953a685631845a7034c8948077de0e60de80","sha256":"15d10fabb92098e81e218740ae04059fe6340c321ee70325db46f6c9cb7ad817","sha512":"9dc3e69a9de4f4acb12fa7ac9a5508ce095f2b0c1a297271ce5d59e94871f36c834e377ba43ca5b4e248b274f574892b3d854d3c7d72c1c47e92e46db6d8f05c","ssdeep":"","tlshash":"def00e95509c7f02ebf220136de8c30c5a247de91c4026f230e85ac2fe047fa89cc989","first_seen":"2024-07-18T11:09:46Z","last_seen":"2024-08-19T16:31:59.348725Z","times_seen":23544,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:23.325538977Z","timestamp":1721294423325,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"C695CCD93D9E45C8D7B4B08201A3FE45221658531FA0A54F778DADCC2479399E\"\r\nLast-Modified: Thu, 18 Jul 2024 07:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=20447\r\nExpires: Thu, 18 Jul 2024 15:01:10 GMT\r\nDate: Thu, 18 Jul 2024 09:20:23 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c746d0145c03aa7156aa6a21d8cd2d41","sha1":"8fb7cb950f28012e8bf42cf02c7598862c66e21f","sha256":"c695ccd93d9e45c8d7b4b08201a3fe45221658531fa0a54f778dadcc2479399e","sha512":"c03f2b8bd05783fefdbdf7395156eee21d60c91a976ebf63ce640e5758fce8cd67896a7502f68cda9b591d7564096b6f20cf15d102c317b22c9c9c9fc6e2fd99","ssdeep":"","tlshash":"b9f0c04509d43a4096a22d0668f9d25c6e602ea5905a10a751d001f67c01f9dc684209","first_seen":"2024-07-18T11:04:06Z","last_seen":"2024-08-19T16:32:01.991715Z","times_seen":27719,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:23.762799182Z","timestamp":1721294423762,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"A951EDC9FCE6D26583509ABA1A0D759172986DA854406DC2041F25DCA4EB6798\"\r\nLast-Modified: Mon, 15 Jul 2024 19:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11579\r\nExpires: Thu, 18 Jul 2024 12:33:22 GMT\r\nDate: Thu, 18 Jul 2024 09:20:23 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c827d32609521c1e56829aac4640ab87","sha1":"f6721b2c6abc469be2b70d165a58c75d5637408d","sha256":"a951edc9fce6d26583509aba1a0d759172986da854406dc2041f25dca4eb6798","sha512":"02500521f2e5e787d1ead7f0ef3af3606b89efb0bad488293e2e36bf2cad3fbdc8896cbea14f8db1e0be428d80fbcc8ee291149e332399ae23e90450228a1a29","ssdeep":"","tlshash":"7af005530579ac7027a2112198e6e5485f11e594299176d4a4a05bd2b850faec1d4055","first_seen":"2024-07-16T02:32:54Z","last_seen":"2024-08-19T16:50:23.638036Z","times_seen":23210,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:24.019696148Z","timestamp":1721294424019,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"E4E3975A941C93FDA56279B3918D81448B74CD06D2A2BD0280DBCF8E58712C1D\"\r\nLast-Modified: Mon, 15 Jul 2024 19:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9502\r\nExpires: Thu, 18 Jul 2024 11:58:46 GMT\r\nDate: Thu, 18 Jul 2024 09:20:24 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d69acaa73161ea261cea420c9548c854","sha1":"1f7cab04c4264ca503bb3e2d8f1d838c226f35c2","sha256":"e4e3975a941c93fda56279b3918d81448b74cd06d2a2bd0280dbcf8e58712c1d","sha512":"4dd16d8d3f21a825b909dcce1868f395cff80c9ae6beab41af9501f63db71cfcfc3a6bd6ebcac649c8c2a1e34f2fb326894ec76ce2d041919fdb6a0e3cfc6645","ssdeep":"","tlshash":"39f005869dddfe9013b11a3a2df8e0407a207e9c24013ce128d442f3784479b55c4084","first_seen":"2024-07-15T23:12:50Z","last_seen":"2024-08-19T16:51:12.402895Z","times_seen":24412,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"github.com/scode18/All-Tweaker/raw/main/tweaks.7z","fqdn":"github.com","domain":"github.com","tld":"com"},"ip":{"addr":"140.82.121.4","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-18T09:20:23.944Z","timestamp":1721294423944,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"github.com","organization":""},"issuer":{"commonName":"Sectigo ECC Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 07 Mar 2024 00:00:00 GMT","end":"Fri, 07 Mar 2025 23:59:59 GMT"},"fingerprint":{"sha1":"E7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0","sha256":"FD:6E:9B:0E:F3:98:BC:D9:04:C3:B2:EC:16:7A:7B:0F:DA:72:01:C9:03:C5:3A:6A:6A:E5:D0:41:43:63:EF:65"}}},"request":{"raw":"GET /scode18/All-Tweaker/raw/main/tweaks.7z HTTP/1.1\r\nHost: github.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: GitHub.com\r\ndate: Thu, 18 Jul 2024 09:20:24 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With\r\naccess-control-allow-origin: \r\nlocation: https://raw.githubusercontent.com/scode18/All-Tweaker/main/tweaks.7z\r\ncache-control: no-cache\r\nstrict-transport-security: max-age=31536000; includeSubdomains; preload\r\nx-frame-options: deny\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nreferrer-policy: no-referrer-when-downgrade\r\ncontent-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com/v1/engines/github-completion/completions *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/\r\ncontent-length: 0\r\nx-github-request-id: D46E:98D59:90692:9264F:6698DE57\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-29T17:58:32.740449Z","times_seen":15879964,"resource_available":true,"data":null}},"time_used":483,"timings":{"blocked":98,"dns":1,"connect":19,"send":0,"wait":281,"receive":0,"ssl":80},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raw.githubusercontent.com/scode18/All-Tweaker/main/tweaks.7z","fqdn":"raw.githubusercontent.com","domain":"raw.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.109.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-18T09:20:24.330Z","timestamp":1721294424330,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 15 Mar 2024 00:00:00 GMT","end":"Fri, 14 Mar 2025 23:59:59 GMT"},"fingerprint":{"sha1":"97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28","sha256":"09:01:0C:CE:9B:72:21:55:C7:E6:86:B0:77:39:D3:D2:DC:06:05:DE:A1:A4:98:4A:0B:96:5E:18:77:77:26:B5"}}},"request":{"raw":"GET /scode18/All-Tweaker/main/tweaks.7z HTTP/1.1\r\nHost: raw.githubusercontent.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=300\r\ncontent-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox\r\ncontent-type: application/octet-stream\r\netag: W/\"f914f8db2ec34b8a08fd76fbe936c524ef36f7c42cc3ff5e254a7207d8078c59\"\r\nstrict-transport-security: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-frame-options: deny\r\nx-xss-protection: 1; mode=block\r\nx-github-request-id: 0AAA:375BA5:1556BD9:165FB2C:6698DE57\r\naccept-ranges: bytes\r\ndate: Thu, 18 Jul 2024 09:20:25 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410022-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1721294424.412825,VS0,VE722\r\nvary: Authorization,Accept-Encoding,Origin\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-fastly-request-id: 0f3bdb4959af21ccc8410e5b41a68daf463c1391\r\nexpires: Thu, 18 Jul 2024 09:25:25 GMT\r\nsource-age: 1\r\ncontent-length: 9175981\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":9175981,"size_decoded":9175981,"mime_type":"application/octet-stream","magic":"7-zip archive data, version 0.4","md5":"1a6b0779415338f88056f31cfa9a10a8","sha1":"bbce9006980f0028be4f576b5b702e0c2320d23d","sha256":"a96de3bd6a5a7da6f6241fe492c301953e3a5e6932fd50da6f995663f1501793","sha512":"83111c7313a5dea81799a22b14ec2fa3d5ee0eff5b0f6d0006d9640a684b159d1c856ff76470a08847f28fa963d5acab3ea6b9d240742c3b07622e54e2a196ab","ssdeep":"196608:jOs/fgIAzkBOnc9Bb/6V10zxkUXuHCwwRs301os0cfif5zyoEs:iife4UnmJ6V4kquihAHcfg5ztP","tlshash":"1096332b53b70f9add0265b7034f43f5d79004aa78482f86af06ab51ddae104217e6bf","first_seen":"2024-08-19T16:31:49.558737Z","last_seen":"2024-08-19T16:31:49.558737Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1608,"timings":{"blocked":64,"dns":1,"connect":27,"send":0,"wait":748,"receive":731,"ssl":34},"alerts":{"ids":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2024-07-18","alert":"Scan result 39/60","trigger":"a96de3bd6a5a7da6f6241fe492c301953e3a5e6932fd50da6f995663f1501793","verdict":"malicious","severity":"","comment":"malicious - 39/60","link":"https://www.virustotal.com/gui/file/a96de3bd6a5a7da6f6241fe492c301953e3a5e6932fd50da6f995663f1501793","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:27.27740122Z","timestamp":1721294427277,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5\"\r\nLast-Modified: Mon, 15 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=5625\r\nExpires: Thu, 18 Jul 2024 10:54:10 GMT\r\nDate: Thu, 18 Jul 2024 09:20:25 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c5fe3e5860e9afb843ae32b8f349f4c7","sha1":"78e8faf3194e82bcb4fed0d89bd1989501dd8d2a","sha256":"806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5","sha512":"1e80d291789f67623d0eb9439be426d1cc104dad8ef2b8232867acbf54cf674da7b86e8f38445b6daf1ed41fa274d5a200b7f506de746d664ed6bc5dcbf98718","ssdeep":"","tlshash":"0ef005c314d3fdc16a5235067cd5d13c1e177eb930c648d435a401c37c51faa92c444c","first_seen":"2024-07-16T00:27:25Z","last_seen":"2024-08-19T16:50:37.2767Z","times_seen":25480,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:27.27856103Z","timestamp":1721294427278,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5\"\r\nLast-Modified: Mon, 15 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=5625\r\nExpires: Thu, 18 Jul 2024 10:54:10 GMT\r\nDate: Thu, 18 Jul 2024 09:20:25 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c5fe3e5860e9afb843ae32b8f349f4c7","sha1":"78e8faf3194e82bcb4fed0d89bd1989501dd8d2a","sha256":"806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5","sha512":"1e80d291789f67623d0eb9439be426d1cc104dad8ef2b8232867acbf54cf674da7b86e8f38445b6daf1ed41fa274d5a200b7f506de746d664ed6bc5dcbf98718","ssdeep":"","tlshash":"0ef005c314d3fdc16a5235067cd5d13c1e177eb930c648d435a401c37c51faa92c444c","first_seen":"2024-07-16T00:27:25Z","last_seen":"2024-08-19T16:50:37.2767Z","times_seen":25480,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-18T09:20:27.279640424Z","timestamp":1721294427279,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5\"\r\nLast-Modified: Mon, 15 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=5625\r\nExpires: Thu, 18 Jul 2024 10:54:10 GMT\r\nDate: Thu, 18 Jul 2024 09:20:25 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c5fe3e5860e9afb843ae32b8f349f4c7","sha1":"78e8faf3194e82bcb4fed0d89bd1989501dd8d2a","sha256":"806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5","sha512":"1e80d291789f67623d0eb9439be426d1cc104dad8ef2b8232867acbf54cf674da7b86e8f38445b6daf1ed41fa274d5a200b7f506de746d664ed6bc5dcbf98718","ssdeep":"","tlshash":"0ef005c314d3fdc16a5235067cd5d13c1e177eb930c648d435a401c37c51faa92c444c","first_seen":"2024-07-16T00:27:25Z","last_seen":"2024-08-19T16:50:37.2767Z","times_seen":25480,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}