23mb for analisys

[marcelo.petal]

Hi there! I speak from Brazil, so I have some files to
analysis by experts, avast does not detect is very
difficult to remove it, because it creates many keys on the
regedit and freeze explorer.exe and taskmgr.exe after windows logon...
please help ...

zip with 23mb
http://www.mediafire.com/?cwriw1ikqlea65p
pw "admin"

combofix logs
http://www.mediafire.com/?4c2ubquuvy77vk7

marcelo.petal@gmail.com

thanks
marcelo

[Lisandro]

It will not good to let your email public due to spammers.
I've tried to call virus analyst attention to these samples. Hope they post back.

[Milos]

Hello,
there is a lot of junk files, also signed files (with valid signature).

EDIT:
Only suspicious files are signed by Iminent.

Milos

[Lisandro]

Thanks Milos.

[marcelo.petal]

hello, thanks for the analysis, I went into despair when some machines after logon, when he finished loading the winlogon.exe and explorer.exe, explorer froze and any program not run, nor the task manager open, and opened I could not kill the explorer process, and could kill when ordered to reopen as a new task task manager froze too, got desperate and started to analyze what was loaded on logon, with the DDS and GMER , I discovered that if I went into safe mode to uninstall avast, restart, entered in normal mode and everything was ok, then I reinstall avast and looks great, I think a bug should be the key that has some effect on the option of "delaying the start of the avast service" in the settings because I'm having this problem on multiple machines, and only decided this way. ComboFix only detects and deletes the folder "C: \ Windows \ CSC \ D6."
Comments?

thank you

Marcelo.