Explorer.exe gets shutdown by Hitmanpro.alert

[M811]

I downloaded a game installer from a suspicious source , then got infected couple days ago with tons of adware and trojans.And after that I went into panic mode and tried to download keygen for Malwarebytes Premium which i regret.Even I ran a scan on it and MBAM found : DontStealOurSoftware.exe or something like that.After I run that I knew it was a mistake my computer went nuts started downloading and installing stuff by itself.It felt like well deserved punishment from MBAM , lol.

I was able to clean my pc from the initial symptoms , however I am not still convinced that my pc is clean due to the issue after running Adwcleaner.I typed ''netsh winsock reset'' on cmd.exe and now my internet is working on startup.But on every startup Hitmanproalert says it blocked an attack.And my concern is after my hitmanpro.alert trial ends , I wont be able to access internet.

 

[M811]

not its working

Sorry for doublepost.I meant ''now'' its working.Also I think my uploads didnt work , so here they are.

 

[TwinHeadedEagle]

Hello,

Fix with Farbar Recovery Scan Tool

This fix was created for this user for use on that particular machine.

Running it on another one may cause damage and render the system unstable.

​

Download attached fixlist.txt file and save it to the Desktop:

Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

• Right-click on
  
  icon and select
  
  Run as Administrator to start the tool.
  (XP users click run after receipt of Windows Security Warning - Open File).
• Press the Fix button just once and wait.
• If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
• When finishes FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

 

[M811]

issue persists.I was able to see a command prompt briefly at the start before the hitmanpro notification.how can i get rid of this thing? sometimes screen stays black even tho it says its blocked.

 

[TwinHeadedEagle]

Can you show me what HitmanPro blocks?

 

[M811]

its in my second post.Thats the event log hitmanpro.alert creates automatically on every start.

 

[TwinHeadedEagle]

Open MalwareBytes again

• Click the Settings tab, in the left panel choose Protection and tick Scan for rootkits.
• Click the Scan tab, choose Threat Scan is checked and click Start Scan.
• If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
• Upon completion of the scan (or after the reboot), click the Reports tab.
• Double-click the Scan Log.
• At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.

 

[M811]

I remember I checked scan for rootkits before I start all the mbam scans but here it is again as you requested.

 

[M811]

Wrong log sorry.Also I forgot to mention that , ESET 10 found 4 threats when MBAM tried to access them( So its not in mbams log) , so I exported those too.Here they are.

By the way the issue is still there.

 

[TwinHeadedEagle]

How is your computer behaving now?

 

[M811]

As I said issue is there.What I mean is on every startup HPA blocks an attack still(which is my main problem other than some adware/bitcoinminer).And I cant see what it is from default startup applications.And scans dont find any registry error.I had some adware/trojan also but I removed most of them and uninstalled chrome(Using Opera which is fine).Will reinstall chrome now and let you know.Apart from that my computer is fine.However when my HPA trial ends , the inital thing I mentioned will mess up my pc for sure.What would you recommend me to do now ?

 

[M811]

@publicenemy I already post it in the second post of the thread.Its called event1.txt.Well actually , I can test it if its FP by starting without HPA.I will let you know.

 

[TwinHeadedEagle]

This is not the first time that HitmanPro has some weird detection. I would contact their support for an explanation.