The SAS scan is flagging a copy of the malware which is found in your system restore folder.
System restore is a process whereby you can reset the PC to an earlier time which often removes infection. In this case if you were to use that process it would only reinfect you. The folder's contents are inactive at the moment so as we can now say that you are clean we will clear up the mess and with it the system restore folder will be emptied.
Uninstall ComboFix
Remove Combofix now that we're done with it.
- Disable any realtime antivirus or antispyware programs.
- Please press the Windows Key and R on your keyboard. This will bring up the Run... command.
(For Vista/Windows 7 please click Start -> All Programs -> Accessories -> Run) - Now type in Combofix /Uninstall in the runbox and click OK. (Notice the space between "Combofix" and "/")
- Please follow the prompts to uninstall Combofix.
- You will then receive a message saying Combofix was uninstalled successfully once it's done uninstalling itself.
OTC Clean-Up
Download and Run OTC
We will now remove the tools we used during this fix using OTC.
- Download OTC by OldTimer and save it to your desktop.
- Double click icon to start the program. If you are using Vista, please right-click and choose run as administrator
- Then Click the big button.
- You will get a prompt saying "Being Cleanup Process". Please select Yes.
- Restart your computer when prompted.
These processes will set a new system restore point and the SAS scan should no longer come up with that file.
------------------------------------------------------------------------------------------------------------------------
Here's some advice on how you can keep your PC clean
Update your AntiVirus Software
It is imperative that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out. If you use a commercial antivirus program you must make sure you keep renewing your subscription. Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.
Make sure your applications have all of their updates
It is also possible for other programs on your computer to have security vulnerability that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector and Calendar of Updates.
Install an AntiSpyware Program
A highly recommended AntiSpyware program is SuperAntiSpyware. You can download the free Home Version. or the Pro version for a 15 day trial period.
Installing this or another recommended program will provide spyware & hijacker protection on your computer alongside your virus protection. You should scan your computer with an AntiSpyware program on a regular basis just as you would an antivirus software.
Finally, here's a treasure trove of antivirus, antimalware and antispyware resources
That's it Suzi1951, happy surfing!
Cheers.
m0le