Parasite: Comload

This record last updated Tue Sep 20 2005 00:34:15

PLEASE NOTE: Due to the overwhelming extent of this problem and the unbelievable volume of email we have received, we regret that we cannot respond to questions about browser parasites at this time. If you have attempted to contact us about this parasite please accept our apology for not responding. "Thank you's" are always appreciated ;-)

Description

Comload is an ActiveX control placed on web sites to load and run executable files, notably premium-rate diallers.

Distribution

One of the types of dialler installation used by Coulomb, through ActiveX drive-by-download on porn-related pages.

What it does

Advertising

No.

Privacy violation

No.

Security issues

Yes, critical. After the control is installed, any web page has the ability to run any executable file on the local machine.

Stability problems

No.

Removal

There is no uninstall option, but Spybot S&D update 2-2-03 can remove it automatically.

Manual removal

Open a DOS command prompt window (Start->Programs->Accessories) and enter the following commands:

cd "%WinDir%\System"
regsvr32 /u comload.dll

Then open the System folder (inside the Windows folder, named ‘System32’ under Windows XP/2000/NT or just ‘System’ under Windows Me/98/95), and delete the file ‘comload.dll’.

Links

Coulomb are responsible for distributing Comload.

* Parasite information and detection script by Andrew Clover - www.doxdesk.com, used with permission.

For more information about Scumware, Spyware and Parasites, their sources and their cure, visit our About Parasites page and related Tech Links.

Visit our new services portal at Allen One for a completely new parasite database format, comming November 2005!