Author Topic: HitmanPro35.sys (Read 5228 times)

justinlee · « **on:** November 17, 2010, 07:23:43 PM »

Installed HitmanPro on my girlfriend's laptop, which is running Vista (32bit). Her avast internet security has picked up HitmanPro35.sys as a suspicious rootkit.

I am running Windows 7 (64bit) and have also installed HitmanPro but my Avast internet security has not picked this up as suspicious.

I downloaded it from a trusted source i.e. CNET. But i have googled and there are rumours that HitmanPro is malware used to steal banking codes. The reason i am beginning to suspect HitmanPro is everytime i use it to scan it seems to give the exact same results.

Is HitmanPro bait software??

Jtaylor83 · « **Reply #1 on:** November 17, 2010, 07:59:06 PM »

I would let avast! ignore that, it's an important driver for Hitman Pro to work. It is only recommended as a second-opinion if malware patches critical system drivers, blocks your ability to open programs, and disables Task Manager.

I suggest MalwareBytes Anti-Malware.

DavidR · « **Reply #2 on:** November 17, 2010, 08:11:04 PM »

If it is considered a suspicious rootkit, then presumably it is running hidden in the background ?

I thought that hitman pro was meant to be on-demand only, or were you running a hitman pro scan at the time ?

Avast isn't the only security application to find something strange about how this is running, http://www.wilderssecurity.com/showthread.php?t=285174.

This one says it runs on boot, http://www.online-armor.com/oasis2/file/surfright/hitman_pro_3/hitmanpro35_sys/2921738, which for something that is meant to be on-demand, why is it loading a hidden driver at boot.

justinlee · « **Reply #3 on:** November 17, 2010, 08:18:56 PM »

I had finished running a scan with it and closed it down then suddenly the Avast warning came up about 5mins later. A lot of people give HitmanPro good reviews but i just find this program a little suspicious. The scan is over all too quickly to be that thorough and the results it gives seem to be quite similar every time it's used. So far all it has found and deleted when i have used it are Tracking Cookies.

I think it is safer to remove this program altogether.

DavidR · « **Reply #4 on:** November 17, 2010, 09:09:00 PM »

The only thing it ever fond on my system were false positives, not that I expected it to find anything anyway.

Considering that it is supposed to be running 5 scanners and cloud in certain circumstances, I would expect it to take much longer than your avast scan. It would entirely depend on exactly what it is scanning and I don't know what that is, as I gave up on it long ago.

essexboy · « **Reply #5 on:** November 17, 2010, 09:23:00 PM »

You need to be carefull with hitmanpro as I am now on my fourth system repair where Hitmanpro has deleted the userinit file because it was infected.. No userinit no boot..

justinlee · « **Reply #6 on:** November 17, 2010, 11:39:00 PM »

I have removed HitmanPro from my system. I would advise people to stay well away from it.

Jtaylor83 · « **Reply #7 on:** November 18, 2010, 07:10:07 AM »

Quote from: justinlee on November 17, 2010, 11:39:00 PM

I have removed HitmanPro from my system. I would advise people to stay well away from it.

Hitman Pro is for second-opinion only. Use MBAM for Anti-Malware removal and MBAM Pro for full protection.

Author Topic: HitmanPro35.sys (Read 5228 times)

justinlee

HitmanPro35.sys

Jtaylor83

Re: HitmanPro35.sys

DavidR

Re: HitmanPro35.sys

justinlee

Re: HitmanPro35.sys

DavidR

Re: HitmanPro35.sys

essexboy

Re: HitmanPro35.sys

justinlee

Re: HitmanPro35.sys

Jtaylor83

Re: HitmanPro35.sys