Brian: Auto Protect is enabled under Virus & Spyware Protection - Auto Protect (tab), but I can't see any mention of email auto protect - is that something different? Where do I check that setting?
In answer to your other question, the file types it picks up are .tmp and .xls. I have just searched in Outlook for .tpm (found nothing) and .xls. I saved all the .xls attachments to a folder, and ran the most in depth and invasive search I could from SEP and it found nothing at all.
TORB: SEP is detecting new instances of W97M.Downloader several times a minute. Sometimes it deletes them, but most times it quarantines them. See attached screen shot for more info.
So to summarise, are you guys suggesting that all these instances which are being detected are coming from one source, and that should be in an email attachment (in the form of a Word, Excel, or Powerpoint file)? And do if I can locate that email and delete it then that will be the end to this?