start:: CreateRestorePoint: cmd: Net stop wuauserv cmd: schtasks /Delete /TN "\Microsoft\Windows\Defrag\ScheduledDefrag" /F CloseProcesses: Hosts: RemoveProxy: StartRegEdit: Windows Registry Editor Version 5.00 [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ee3f924f-81b6-4f90-b5e2-f44e7e21a9e5}:] "DhcpNameServer"="" EndRegEdit: C:\Users\sweet\AppData\Local\Temp\mat-debug-10132.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10348.log C:\Users\sweet\AppData\Local\Temp\mat-debug-1056.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10588.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10660.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10724.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10752.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10864.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10888.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10948.log C:\Users\sweet\AppData\Local\Temp\mat-debug-10972.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11000.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11044.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11156.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11308.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11572.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11740.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11784.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11872.log C:\Users\sweet\AppData\Local\Temp\mat-debug-11972.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12136.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12256.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12340.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12440.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12496.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12528.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12532.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12544.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12588.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12624.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12732.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12808.log C:\Users\sweet\AppData\Local\Temp\mat-debug-12992.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13036.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13048.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13060.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13188.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13464.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13592.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13612.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13628.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13672.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13676.log C:\Users\sweet\AppData\Local\Temp\mat-debug-13824.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14248.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14264.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14416.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14472.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14680.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14692.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14700.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14736.log C:\Users\sweet\AppData\Local\Temp\mat-debug-14984.log C:\Users\sweet\AppData\Local\Temp\mat-debug-1512.log C:\Users\sweet\AppData\Local\Temp\mat-debug-15320.log C:\Users\sweet\AppData\Local\Temp\mat-debug-15456.log C:\Users\sweet\AppData\Local\Temp\mat-debug-15568.log C:\Users\sweet\AppData\Local\Temp\mat-debug-15788.log C:\Users\sweet\AppData\Local\Temp\mat-debug-1580.log C:\Users\sweet\AppData\Local\Temp\mat-debug-15864.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16056.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16080.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16380.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16468.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16480.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16488.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16532.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16668.log C:\Users\sweet\AppData\Local\Temp\mat-debug-16900.log C:\Users\sweet\AppData\Local\Temp\mat-debug-17020.log C:\Users\sweet\AppData\Local\Temp\mat-debug-17100.log C:\Users\sweet\AppData\Local\Temp\mat-debug-17188.log C:\Users\sweet\AppData\Local\Temp\mat-debug-1744.log C:\Users\sweet\AppData\Local\Temp\mat-debug-1748.log C:\Users\sweet\AppData\Local\Temp\mat-debug-17500.log C:\Users\sweet\AppData\Local\Temp\mat-debug-17528.log C:\Users\sweet\AppData\Local\Temp\mat-debug-17972.log C:\Users\sweet\AppData\Local\Temp\mat-debug-18240.log C:\Users\sweet\AppData\Local\Temp\mat-debug-18276.log C:\Users\sweet\AppData\Local\Temp\mat-debug-18280.log C:\Users\sweet\AppData\Local\Temp\mat-debug-18348.log C:\Users\sweet\AppData\Local\Temp\mat-debug-1988.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2160.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2184.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2224.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2532.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2656.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2824.log C:\Users\sweet\AppData\Local\Temp\mat-debug-2908.log C:\Users\sweet\AppData\Local\Temp\mat-debug-3256.log C:\Users\sweet\AppData\Local\Temp\mat-debug-3340.log C:\Users\sweet\AppData\Local\Temp\mat-debug-3920.log C:\Users\sweet\AppData\Local\Temp\mat-debug-4380.log C:\Users\sweet\AppData\Local\Temp\mat-debug-4612.log C:\Users\sweet\AppData\Local\Temp\mat-debug-4740.log C:\Users\sweet\AppData\Local\Temp\mat-debug-5020.log C:\Users\sweet\AppData\Local\Temp\mat-debug-5304.log C:\Users\sweet\AppData\Local\Temp\mat-debug-5544.log C:\Users\sweet\AppData\Local\Temp\mat-debug-5548.log C:\Users\sweet\AppData\Local\Temp\mat-debug-5576.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6068.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6084.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6132.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6256.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6400.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6652.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6780.log C:\Users\sweet\AppData\Local\Temp\mat-debug-6860.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7184.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7228.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7380.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7392.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7492.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7500.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7528.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7612.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7652.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7668.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7688.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7700.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7744.log C:\Users\sweet\AppData\Local\Temp\mat-debug-7880.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8248.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8260.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8292.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8540.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8572.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8616.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8712.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8736.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8920.log C:\Users\sweet\AppData\Local\Temp\mat-debug-8964.log C:\Users\sweet\AppData\Local\Temp\mat-debug-912.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9180.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9472.log C:\Users\sweet\AppData\Local\Temp\mat-debug-948.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9564.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9568.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9888.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9916.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9972.log C:\Users\sweet\AppData\Local\Temp\mat-debug-9984.log DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Users\sweet\Desktop\kprm_2.15.exe.FriendlyAppName DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Users\sweet\Desktop\kprm_2.15.exe.ApplicationCompany DeleteKey: HKLM\SOFTWARE\Setup unlock: C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\McAfeeIntegrationDriver) C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys unlock: C:\Windows\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_768b84b9afa518ce\mcafeeintegrationservice.exe DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\mcafeeintegrationservice) C:\Windows\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_768b84b9afa518ce\mcafeeintegrationservice.exe C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe DeleteKey: HKLM\SOFTWARE\McAfee DeleteKey: HKLM\SOFTWARE\McAfee.com DeleteKey: HKLM\SOFTWARE\McAfeeOSDetection DeleteKey: HKLM\SOFTWARE\McAfeeStub C:\ProgramData\McAfee C:\ProgramData\mcafeeintegrationservice Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {AE517D7D-A92B-4B94-B224-612F78F2BA59} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {26C7BD08-87D9-4AA5-B51E-372848EE825B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674208 2023-11-30] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {311F256A-8788-4B4A-A014-8D29C5118C35} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-11-30] (Mozilla Corporation -> Mozilla Foundation) C:\Windows\Temp\*.* C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\* C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\* C:\Users\CurrentUserName\Appdata\Local\Temp\*.* C:\Windows\SoftwareDistribution\Download\* C:\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db C:\ProgramData\Microsoft\Windows Defender\Scans\History\Service\*.* StartBatch: del /f /q "%userprofile%\AppData\Roaming\Microsoft\*.dl*" del /f /q "%userprofile%\AppData\Roaming\Microsoft\*.ex*" del /f /q "%userprofile%\AppData\Roaming\Microsoft\*.zi*" del /f /q "%userprofile%\AppData\Roaming\Microsoft\*.sy*" del /s /q "%userprofile%\AppData\Local\Temp\*.*" del /f /q "%userprofile%\AppData\Local\*-gui" del /f /q "%userprofile%\AppData\Roaming\*-gui" rd /s /q "%userprofile%\AppData\Roaming\discord\Cache" rd /s /q "%userprofile%\AppData\Roaming\discord\code cache" rd /s /q "%userprofile%\AppData\Roaming\discord\gpucache" del /s /q C:\Windows\prefetch\*.* del /s /q "%userprofile%\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\*.*" del /s /q "%userprofile%\AppData\LocalLow\Microsoft\CryptnetUrlCache\Metada\*.*" del /s /q "%userprofile%\AppData\Local\Microsoft\Windows\History\*.*" del /s /q "%userprofile%\AppData\Local\Microsoft\Windows\Temporary Internet Files\*.*" del /s /q "%userprofile%\AppData\Roaming\Microsoft\Windows\Recent\*.lnk" For /D %%d In ("%userprofile%\AppData\Local\Mozilla\Firefox\Profiles\*") Do (If Exist "%%d\Cache2" Del /s /q "%%d\Cache2\*.*") del /s /q "%userprofile%\AppData\Local\Microsoft\Edge\User Data\Default\Cache\*.*" For /D %%d In ("%userprofile%\AppData\Local\Thunderbird\Profiles\*") Do (If Exist "%%d\Cache2" Del /s /q "%%d\Cache2\*.*") For /D %%d In ("%userprofile%\AppData\Roaming\Mozilla\Firefox\Profiles\*") Do (If Exist "%%d\Places.Sqlite" Del /s /q "%%d\Places.Sqlite") del /s /q "%userprofile%\AppData\Local\Microsoft\Edge\User Data\Default\History" ipconfig /release ipconfig /renew ipconfig /flushdns ipconfig /registerdns netsh winsock reset netsh advfirewall reset netsh advfirewall set allprofiles state on netsh winhttp reset proxy Endbatch: EmptyTemp: EmptyEventLogs: cmd: chkdsk cmd: Net start wuauserv Reboot: end::