Author Topic: SVC: swcustcfg > ???  (Read 14757 times)

0 Members and 1 Guest are viewing this topic.

skipai

  • Guest
SVC: swcustcfg > ???
« on: July 20, 2012, 01:06:40 PM »
Hi  :)

Avast is telling me that it has detected the following rootkit: SVC: swcustcfg > ???

Cannot delete or move to chest. Comes up with: Error: Error 0xA0000101. (-1610612479)

Any help would be much appreciated.

BTW I'm running Telstra bigpond wireless 4G and windows 7.

Regards, skipai

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88897
  • No support PMs thanks
Re: SVC: swcustcfg > ???
« Reply #1 on: July 20, 2012, 01:15:30 PM »
For information only (don't apply any fixes, etc. they are unique), see this old topic on the same detection, http://forum.avast.com/index.php?topic=90891.0.

This needs further analysis by a malware removal specialist:
Go to this topic http://forum.avast.com/index.php?topic=53253.0 for information on Logs to assist in cleaning malware. Use the information about getting and using the tools and attach the logs here, not in the LOGS topic.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #2 on: July 20, 2012, 01:43:37 PM »
Unable to post as files are too large even though they are under 150k?

Cheers

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88897
  • No support PMs thanks
Re: SVC: swcustcfg > ???
« Reply #3 on: July 20, 2012, 02:40:18 PM »
The cumulative total also comes into it max 192KB - If they won't go collectively try individual.

If that is still a problem, you can use a file sharing site such as Mediafire.com - Upload to http://www.mediafire.com/ and post the sharing link.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #4 on: July 21, 2012, 06:23:59 AM »
Extra :

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #5 on: July 21, 2012, 06:25:54 AM »
OTL:

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #6 on: July 21, 2012, 06:27:35 AM »
Funny, I did the same thing as last night and it worked fine this time.

What other data do you need? This is all confusing to me as I'm no computer wiz lol.

Cheers

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #7 on: July 21, 2012, 06:40:17 AM »
aswMBR:

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37506
  • Not a avast user
Re: SVC: swcustcfg > ???
« Reply #8 on: July 21, 2012, 07:04:26 AM »
it seems you have avast and Symantec/Norton installed

never install multiple AV as this can give all kind of mysterious windows errors and false positive detections
you
so you have to remove one

run and reboot - Uninstallers – Security Software  http://singularlabs.com/uninstallers/security-software/

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #9 on: July 21, 2012, 07:30:24 AM »
Cool as! I have attempted to remove Norton before with no joy. That tool done the job!

Cheers!

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #10 on: July 21, 2012, 07:32:33 AM »
Just ran Avast and it appears the Infected file is still their!

Any suggestions?

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37506
  • Not a avast user
Re: SVC: swcustcfg > ???
« Reply #11 on: July 21, 2012, 08:02:31 AM »
Just ran Avast and it appears the Infected file is still their!

Any suggestions?
malware removers are notified......may take several hours before one arrive, so be patient

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #12 on: July 21, 2012, 12:22:08 PM »
No worries mate  :)

skipai

  • Guest
Re: SVC: swcustcfg > ???
« Reply #13 on: July 22, 2012, 07:10:12 AM »
Bump  :-\

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: SVC: swcustcfg > ???
« Reply #14 on: July 22, 2012, 12:41:44 PM »
Hi that file is related to ZeroCD Sierra Wireless and I have come across this before, it is a false positive. 

What it is, is that the registry data give a null value and that raises a red flag to Avast

If it is coming up on the rootkit scan then set it to ignore

The logs look clean