Various problems, /recycler/ trojan

The problems I've noticed are these:

1.) Viewing hidden files and folders were locked OFF, and changing the setting in Folder Options wasn't permanent. Changing it and opening the options dialog right afterwards showed it labeled 'Do Not View.' (Running either SUPERAntiSpyware or MalwareBytes fixed this, at least currently)

2.) Some programs deny access to running them. 'Windows cannot acces the specified device, path, or file. You may not have the appropriate permissions to access the item.' I'm running on an Admin account, so that shouldn't be happening with things like ComboFix and MGTools, right? No matter what I renamed them, it wouldn't run. It also wouldn't run the MalwareBytes installer, but I had a previous version installed, so I used that in the read and run me. It wouldn't let me run the Rootkit Revealer or Avast! either. (I forgot to try safe mode, but I have to get online at the library, so it's a bit too late right now. I'm going to try again after I get home, but for now I thought I'd post what I have.)

3.) The OnlineArmor logo disappeared from my Welcome screen a while back, I apologize that I can't remember exactly when. Not sure what that means about the program's integrity on my system, but I bet it's not meant to do that.

4. Occasionally, the (optical) mouse cursor will jump around the screen in a random direction. This causes a lot of frustration on programs like Blender3D (that don't ask if you want to save) when it jumps to the close button just as I click, and makes me have to start over.

5.) The computer likes to restart all by itself. It doesn't happen often, but it does happen. There's no freezing or anything beforehand, it just reboots.

6.) Avira has found trojans in the %root%/RECYCLER/ folder of both of my jump drives, and quarantining the files made the drives fail to operate.

I haven't been doing anything outrageous, really, seeing as my infected PC isn't connected to the Internet. I download games and stuff from the library's connection, and bring it to my computer on a jump drive. I don't download off the wall things, just games from the yoyogames community, I save text files of game walkthroughs and things like that, and the occasional picture coming from a trusted friend. I scan pretty much everything with at least Avira AntiVir, but I'll scan things that are a bit more suspicious with both SUPER and Malwarebytes as well. I wish I could still use AVG, but they don't allow manual updates anymore so I was forced to switch to Avira. (Looking now, I see that you have a forum for this. I have a question regarding that. Do I need to download every item in the AVG thread, or just the latest one?)

I have to admit, though, that I didn't read the instructions for running SUPER or MalwareBytes because I've run this check before. I ran a quick scan with SUPER and a full scan with MalwareBytes.

Anyway, I think that's all of it, and I hope there's some solution to each problem, although 2 and 6 are the most bothersome. Thank you for your time and consideration, I will be awaiting your answer.

 

My apologies, but I cannot seem to find the edit post button anywhere.

I started in safe mode and ran ComboFix, but like an idiot, I let the computer restart normally, and CF was blocked from finishing. I rebooted back into safe mode and ran it again, hoping it would fix the problem. Hopefully the CF log has something useful on it.
I also ran MGTools, and have both programs' logs.
As for the trojan problem, the drives themselves are easy enough to clean, just explore the folder instead of executing it and delete the /RECYCLER/ folder as well as the autorun.inf file and you're set. (as far as I am aware.) The computer, on the other hand... Now I have a recycler folder in my D partition of my hard drive, and it's protected. Should I remove it in safe mode, or use something like FileAssassin, or some other course of action?

Remaining logs attached, including the actual version of the mbam log, after the scan was finished completely:

 

See-eff is ComboFix, it evidently created a directory in C:\. I renamed it because I couldn't get it to run. MGTools and ComboFix I have to run in Safe Mode, because of the problems stated in my previous posts.
I'll be back tomorrow, hopefully, with the results from this step. Thank you for the reply and the help.

 

HJT seemed to be successful, there were no error messages or anything. I've never used it before, though, so is the list window supposed to go blank after you click 'fix checked?'

The registry fix was successful.

ComboFix, though, ran fine until the computer rebooted... It actually ran from Windows normally, but was denied when it started back up. Should I run it again from Safe Mode?

The logon screen is also lagging, and has been for about as long as the other problems have been around, I'm guessing.

I tried to install Java, but it said, "Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor." I tried to install it in Safe Mode, and it said "Your Administrator has taken steps to prevent this installation." or something to that effect.

Here's the MGTools log, but I don't have the CF log because it didn't finish.

 

Thanks for your time and help. =)
I really appreciate it.

My only problem left aside from things that are probably software issues since you said you didn't see anything, is the /recycler/ trojan that Avira is detecting. It's put a hidden, protected folder on both my drives and every portable USB drive I have. Is that a software problem, then, since nothing was detected here?

I'll run a few of the extra scanners at the end of the process to see if they can do anything about it, but I'd like to know if there's a definite solution.

Again, thank you for your time, I'm sure you've got lots of other people to deal with.

 

From when I try to run my USB drive? Because it doesn't report anything when I scan normally or when I access the /recycler/ folders on my hard drives.

 

The autorun disable has worked so far to keep it from reinfecting any drives, thankfully, and I'm very grateful for that. But, the folders are still irremovably on my hard drives. Now that I've stopped it from spreading, is there a way to remove the files completely?

I've attached the screenshot for the detection containing the full path. It's only the one for the drive, though, not the same sequence of numbers as the one that's the same on my HDs.

The text file is the files that were in the folder, as well as the long number sequence that was the folder names. C:\ had one folder, 1004, and D:\ had four. All but the 1004 in both C and D have stayed gone, but four folders named d9 - d12 I think have appeared with nothing inside.

 

All right, so one last question:
I need to delete everything in the folders, then immediately empty the recycle bin, and it'll stay gone? Unfortunate that the folders can't be removed...

 

Previously, I tried (unsuccessfully) to remove the folders/files using MalwareBytes' FileAssassin, and they turned into folders with files I hadn't posessed/deleted in them. Also, one of my drives was infected again after I had already run the auto run disable on all my drives and the computer at the same time

Again, thank you for your time, this is probably an annoying task to do all day.

 

Well, one of my USB drives was infected, but it hasn't happened again. I can see the folder and the autorun.ini file, and I can just delete them to fix the drives, but I thought that it was supposed to be unable to do that anymore.
I'll give autoeater a try, as it seems to be exactly what I need. Thank you.