The ClamWin scan found a file named si1setup-SI1PRT1-silent.exe but it seems to be a false positive. It is located in C:\Documents and Settings\Owner\Local Settings\TempImages which is a hidden folder and I had to "unhide" folders to see it. In the Properties it shows the digital signature as SearchInOneStep.com - which is some kind of search engine website apparently. My best guess is that this program got onto my machine when I installed a free download from zdnet or cnet or some such free place. My other virus scanners do not show this file as a virus. I think it is safe to just delete it. It is not in my Add Remove list in the Control Panel. Anybody dealt with this one before?

I never heard of it. I did some Googling, however, and found a reference (in Spanish) to a trojan associated with it. You could upload the file to Jotti for a search with 20 AVs. In my book, however, if you didn't ask for it to be downloaded, and it is hidden, it's spyware. If ClamWin caught it, it did its job! Delete it from your computer. Then run a free Microsoft Live One Care safety scan of your computer at https://onecare.live.com/site/en-us/center/cleanup.htm

Since ClamWin isn't a dedicated antispyware program, it can miss a lot of that stuff. If you are not using a dedicated antispyware in addition to ClamWin, get the free Windows Defender from Microsoft--it's pretty good. It isn't updated as often as the paid commercial stuff, and it doen'st bother with cookies (that's okay), but it will catch the bad stuff.

Regards,

OK - thanks for the feedback. My other anti-spyware and AV programs did not detect the file as a threat, so I made a restore point and then deleted the file. Then I ran Registry Mechanic and so far there is no problem. The same TempImages folder also has some Yahoo toolbar setup files in it. They have the Yahoo digital signature in their Properties tab. I use a few programs to clean out junk files, but none of these setup files were detected as junk, so they just sit there. I always hesitate to point at a file and just delete it because I never know if it might be tied into something someplace. If they are merely setup files they should be safe to delete - right?

It should be okay for you to delete setup files. You might want to find out something about the file first, however. I like to put my mouse on the filename and right click and bring up the properties. Most legit programs will have information as to the manufacturer, etc., and they will have good summary information. You can also Google for the filename and see what information is out there about the file.

Regards,