The virus re-emerges every time I reboot the computer.
Avast and MBAM are able to detect and either delete or quarantine infected files, but only on a temporary basis.
Would be glad for assistance in this matter.
did you just use a infected USB drive ?
and Your Malwarebytes was not updated when you did the scan…always update before you start a scan as they release around 10 updates a day. Your database is 5 days old
and you only have to run quick scan to remove activly running malware
You will need to uninstall Trend micro using the tool here http://esupport.trendmicro.com/solution/en-us/1056551.aspx
Could you attach the combofix log please
No chance.
Sorry for that, just forgot to click the update button 
Trend Micro uninstalled.
ConboFix log is attached herewith.
Could you attach a screenshot of the alert please
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
Run OTL
[*]Under the Custom Scans/Fixes box at the bottom, paste in the following
https://dl.dropbox.com/u/73555776/OTL_Fix.GIF
:Commands
[CREATERESTOREPOINT]
:OTL
@Alternate Data Stream - 12 bytes -> C:\Users\Mulder\Documents:{934CE399-357A-44B6-A788-06D723734D3B}
:Commands
[resethosts]
[emptytemp]
[Reboot]
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
Done.
The new OTL log is attached.
Is avast still alerting ? If so could you attach a screenshot
Not since the last reboot.
At the same time lots of .tmp files containing the virus have emerged in My Documents folder (as detected by MBAM during a disk scan). The system, however, works much better than yesterday, for example.
But, as mentioned above, avast is silent.
I’ll update in case something comes on.
Could you post the last MBAM report please … I believe that it was the ADS causing the problem
Sure, here it goes.
Everything has been quiet ever since…
Could you run MBAM one more time please to see if they have gone for good
Well, seems clean.
If all is well tomorrow let me know and I will tidy up
The thing showed up again the same way. Avast blocks the threat and a number of .tmp files emerge, although the total amount is less than before.
I missed the exact point when Avast alerted, so I unfortunately can’t attach a screenshot…
Lets check for autoruns … Run this just on the main drive
Download MCShield to your desktop and install
It will initially run a scan and show the result as a toaster by the system clock
Then in the control centre select scanner and tick unhide items on flash drives
https://dl.dropbox.com/u/73555776/mcshield%20unhide.JPG
Plug in the drive and McShield will start a scan
Then get the log which will be here :
Start > all programs > MCShield > logs > all scans
And post that
Here it is.
By the way, here comes the screenshot of a threat block.
OK it looks like cyberlink is trying to do something it shouldn’t. Plus the folder is not in the location where it should be. Were you running this programme at the time ?
No, I wasn’t.
Besides, it’s only an example of a detected threat. There were more at the same time (see new enclosure as an example).
The thing in common is that the threats are created by the same process and are found in the same folder.
Also might be worth mentioning: after I run an Avast scan of the Users folder and try to move the infected files to the virus chest the program refuses to do so with the following error report: “Virus chest server is not running. RPC communication failed. (2147422219)”