Done. Completed quickly, no immediate changes in behavior noticed. Here's the Log File:
# Run at 2/26/2020 3:10:27 PM
# KpRm (Kernel-panik) version 2.7
# Website
https://kernel-panik.me/tool/kprm/# Run by Desk from C:\Users\Lab\Desktop\Malware Check
# Computer Name: WINDOWS-9C6P0DA
# OS: Windows 10 X64 (18363)
# Number of passes: 1
- Checked options -
~ Registry Backup
~ Delete Tools
~ Restore System Settings
~ UAC Restore
~ Delete Restore Points
~ Create Restore Point
~ Delete Quarantines
- Create Registry Backup -
~ [OK] Hive C:\WINDOWS\System32\config\SOFTWARE backed up
~ [OK] Hive C:\Users\Lab\NTUSER.dat backed up
[OK] Registry Backup: C:\KPRM\backup\2020-02-26-15-10-26
- Delete Tools -
## AdwCleaner
[OK] C:\Users\Lab\Desktop\Malware Check\AdwCleaner.exe deleted
[OK] C:\AdwCleaner deleted
## CKScanner
[OK] C:\Users\Lab\Desktop\Malware Check\ckfiles.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\CKScanner.exe deleted
## ESET Online Scanner
[OK] Process esetonlinescanner_enu.exe killed
[OK] C:\Users\Lab\Desktop\ESET Online Scanner.lnk deleted
[OK] C:\Users\Lab\Desktop\Malware Check\esetonlinescanner_enu.exe deleted
[OK] C:\Users\Lab\AppData\Local\ESET\ESETOnlineScanner deleted
## FRST
[OK] C:\Users\Lab\Desktop\NASA Temp\Addition.txt deleted
[OK] C:\Users\Lab\Desktop\NASA Temp\FRST.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\Addition.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\Fixlog.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\FRST-OlderVersion deleted
[OK] C:\Users\Lab\Desktop\Malware Check\FRST.txt deleted
[OK] C:\Users\Lab\Desktop\Malware Check\FRST64.exe deleted
[OK] C:\FRST deleted
- Restore System Settings -
[OK] Reset WinSock
[OK] FLUSHDNS
[OK] Hide Hidden file.
[OK] Show Extensions for known file types
[OK] Hide protected operating system files
- Restore UAC -
[OK] Set EnableLUA with default (1) value
[OK] Set ConsentPromptBehaviorAdmin with default (5) value
[OK] Set ConsentPromptBehaviorUser with default (3) value
[OK] Set EnableInstallerDetection with default (0) value
[OK] Set EnableSecureUIAPaths with default (1) value
[OK] Set EnableUIADesktopToggle with default (0) value
[OK] Set EnableVirtualization with default (1) value
[OK] Set FilterAdministratorToken with default (0) value
[OK] Set PromptOnSecureDesktop with default (1) value
[OK] Set ValidateAdminCodeSignatures with default (0) value
- Clear Restore Points -
~ [OK] RP named Windows Update created at 11/15/2019 01:20:14 deleted
~ [OK] RP named Removed Macrium Reflect Free Edition created at 11/18/2019 18:03:49 deleted
~ [OK] RP named Scheduled Checkpoint created at 12/01/2019 20:48:25 deleted
~ [OK] RP named Windows Modules Installer created at 02/13/2020 21:28:30 deleted
[OK] All system restore points have been successfully deleted
- Create Restore Point -
[OK] System Restore Point created
- Display System Restore Point -
~ [I] RP named KpRm created at 02/26/2020 23:11:18
-- KPRM finished in 84.33s --