Hiya Rockford
Things are going from bad to worse
Haven't done the on line scan yet
Since last night antivir has started to detect a whole myriad of trojans, in all different locations. As soon as I close a warning box another new one comes up in front before I can write down the name of the one underneath!
The point is that the scan froze before it finished. I will have another go but before I do please advise whether I should close Antivir before I do the scan, as during the scan AntiVir keeps popping up the warning boxes and asking whether I should delete, move, quarantine, allow etc. I supposedly had the control programme closed during this scan, but the boxes came up anyway. The other thing is, when the warnings come up, during the scan, which options should I take, move, delete, quarantine, allow? etc.
Finally when this whole thing is over, what should I do about the fact that AntiVir hasn't provided a solution to the Trojan problen?
Best Wishes
Benliner

Howdy,

During the online scan deactivate the active Guard and let the online scan autoclean. After that we will continue with the rest.

hiya
Had 2 more goes at scanning today but it froze, 2nd time was after it scanned all the C:/ files, scanning something else called wialog It stopped there, and all I did was hit the start button and close it again, (By mistake) and the browser screen went white and stayed like that for an hour. Will have another go tomorrow and won't touch anything and find out a bit more about the page it stops at. Time to go to work now, will keep posted. Thanks for your help
Benaround

Hi Benaround!
Could you please check if you have a file "HTPATCH.EXE" in your WINDOWS directory. If yes, please rename this to e.g. HTPATCH.ORG and retry. We have reports that this tool (it's part of a SiS chipset driver) somehow freezes AntiVir. Unfortunately we can not reproduce this so far.

Hello Tosal
I couldn't find this file, but I hope I was looking in the right place, do you mean in My Computer>Hard drive>windows? It wasn't there, and to make sure I did a search for HTPATCH and found nothing. But anyway, I haven't had a problem with AntiVir freezing at any time, the problem is that it keeps detecting the trojans, and when I click on delete, they get detected again immediately after. Now since I ran several of the spyware and cleanup programs, as recommended, the problem has gradually eased off, I'm not getting so many detections, the problem seems to be clearing up as mysteriously as it started, but I am still unable to run housecall on line scan. I still have some unwanted startup routines as well but I'll sort them out in time, I also have to work out why Ad Aware freezes on me.
Waiting for result of my Hijack this scan as well.

Hi benaround!
Probably you've got a trojan or backdoor which hooks the system by a so called Winsock Layered Service Provider (LSP).
Download LSPFIX from this site: http://www.aboutlyrics.com/Software/Download/LSPFix.php
in the Internet and start it. If it displays a Dll at the right side of it's pane this could be the cause of your problems.
First, make sure you have a backup of all you data (!!!) and then allow the program to fix it.

Another possibilitiy is a so called Browser Helper Object. This guys hook your IE or Windows Explorer so it's difficult to get rid of them. Again: make sure you have a backup of all you data before you do anything!

Run Regedit and check the following keys:
1.
HKLM\SOftware\Microsoft\Internet Explorer\Extensions.
You should see a number of subkeys and on the right pane the name of this stuff. On my computer I have 2:
"Sun Java Console" and "Windows Messenger". Both are ok. If another one look suspicious remove the complete subkey, e.g. something like: {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
2.
HKLM\Software\Microsoft\Windows\Current Version\Explorer\Browser Helper Objects\
You'll see again a number of sub keys like {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}. Now search for each item in the following key:
HKCR\CLSID
If you've found one, check the default value of it's subkey InProcServer32. It point to a Dll. If this Dll is not origin MS or unknown, you should delete the key in Browser Helper Objects.
After this you should restart the system.
Hope this helps.

And as my personal opinion: do NOT use MS Internet Explorer when exploring the Internet. Use e.g. Opera, Mozilla or Firefox. But avoid IE!

@Tosal,

An HJT log is being looked at, along with other scan results.

@benaround,

wait to do/remove anything until littleeagle tells you what to do for now.