New
#1
Potential Rootkit
Hi, hopefully I've put this in the correct forum section, anyway I've just done a scan on a family members laptop with the latest version of Hitman Pro & its picked up a rootkit infection, the file is amstream.dll located in C:\Windows\System32, I've had a quick look at the file & uploaded it to VirusTotal but it says its clean, this file looks as though it been updated by SP1 as the version is 6.6.7601.17514 don't think that matters but I'm puzzled as to where this infection has come from, the family member's computer it's been detected on has MSE, Comodo Firewall, Malwarebyte & Hitman Pro (The last two are just on demand not paid versions).
Is there anything I can do to determine that it's maybe a FP, I've done a quick scan using MBAM but picked up nothing & I'm on doing a full scan with MSE.
Has anyone else got Windows 7 SP1 & willing to try Hitman Pro to see if they get the message?
I don't wanna touch anything yet in case it's an important system file.
Thanks anyway.
GILLY