Prevx Research Division
COMCA.DLL
SpywareFree PC Cleanup from Webroot
Use Webroot SecureAnywhere to remove COMCA.DLL.
"Just when you thought it couldn't get any better or faster. The Webroot scanning engine is 'high octane' with a hidden nitrous oxide system. Bravo!!!" W. Lodzinski, SecureAnywhere User
Associated Malware Groups
The filename is associated with the malware groups:
- Spyware
- Cloaked Malware
- Worm
File Behavior
COMCA.DLL has been seen to perform the following behavior:
- The Process is packed and/or encrypted using a software packing process
- Found on infected systems and resists interrogation by security products
- Enables an In Process Object/Server - Common with DLL Injections
COMCA.DLL has been the subject of the following behavior:
- Registered as a Dynamic Link Library File
- Deleted as a process from disk
- Enabled as an In Process Object/Server - Common with DLL Injections
- Created as a process on disk
Country Of Origin
The filename COMCA.DLL was first seen on Nov 24 2007 in the following geographical regions of the Webroot community:
- The United States on Nov 24 2007
- Italy on Nov 24 2007
- Spain on Jul 15 2008
- Romania on Nov 28 2008
- Hong Kong on Nov 28 2008
File Name Aliases
COMCA.DLL can also use the following file names:
- EVENTCL.DLL
- ESENT9.DLL
- BITSPRX.DLL
- ATL7.DLL
- ATRAC.DLL
- CTL3DV.DLL
- BOOTVI.DLL
- BAT.DLL
- DIACTFR.DLL
- AVWA.DLL
- BOOTVIO.DLL
- BASESR.DLL
- FONTSU.DLL
- ATI2DVA.DLL
- ATIVVAX.DLL
- ATIOGLX.DLL
- AUDIOD.DLL
- BCM1XSU.DLL
- BATMETE.DLL
- BLACKBO.DLL
- AUDIODE.DLL
- BOOTVIJ.DLL
- BCMWLP.DLL
- DESKAD.DLL
- CLBCATE.DLL
- CATSRVP.DLL
- CMDLINEEXT0.DLL
- AUDIOS.DLL
- CERTCLE.DLL
- AVICAP3I.DLL
- CATSRN.DLL
- CATSRG.DLL
- ATMF.DLL
- ATMLI.DLL
- CERTCL.DLL
- AUDIOSR.DLL
- CATSR.DLL
- CATSRJ.DLL
- CLBCAT.DLL
- AUDIOSRG.DLL
- BTPANU.DLL
- CABVIE.DLL
- BROWSEU.DLL
- CATSRVU.DLL
- BTPAN.DLL
- CAMOC.DLL
- D3DPMES.DLL
- DHCPMO.DLL
- IASSD.DLL
- ATI2DVAO.DLL
- AUT.DLL
- BITSPR.DLL
- BITSPRR.DLL
- ATRACH.DLL
- AVIFIL3.DLL
- ATI2C.DLL
- AUTH.DLL
- ATI2CQJ.DLL
- ATIDD.DLL
- DPSERIA.DLL
- GLMF3.DLL
- DSAUT.DLL
- IASACC.DLL
- DOCPRO.DLL
- FTSRC.DLL
- EXT.DLL
- COMPOB.DLL
- FSUS.DLL
- IASHLP.DLL
- COMMDL.DLL
- EVENTCLB.DLL
- AUTODIS.DLL
- IASRECS.DLL
- FDR.DLL
- DMCONFI.DLL
- DMDLG.DLL
- DPNMODE.DLL
- DPLA.DLL
- D3DR.DLL
- CNETCF.DLL
- IPXRTMG.DLL
- CARD.DLL
- AVICAP3.DLL
- CAPESNP.DLL
- DPNWSOC.DLL
- ATI2CQA.DLL
- CABINE.DLL
- ATIVCOX.DLL
- AVIFIL.DLL
- CDFVIE.DLL
- ATI2CQ.DLL
- BCMWLPK.DLL
- BROWSEW.DLL
- DISKCOP.DLL
- ATKCTR.DLL
- AVTAP.DLL
- ATKDIS.DLL
- CMPROP.DLL
- BIDISP.DLL
- APCUP.DLL
- ASYCFIL.DLL
- BROWSEL.DLL
- BACKUP-20090310-074319-719.DLL
- BACKUP-20090310-081027-182.DLL
- BACKUP-20090310-074319-867.DLL
- BACKUP-20090310-174108-851.DLL
- BACKUP-20090310-174108-581.DLL
- ATI3D2A.DLL
- CDOSY.DLL
- BTHSER.DLL
- AMDPCOM3.DLL
- APPHEL.DLL
- LMHSV.DLL
- DAVCLN.DLL
- MSACM3.DLL
- ASFSIP.DLL
- AVMETE.DLL
- ATIIIEX.DLL
- CEWMD.DLL
- BROWSE.DLL
- BRWIA05.DLL
- ATI2EVX.DLL
- KDCO.DLL
- ASFERRO.DLL
- BWUPO.DLL
- CNBJMO.DLL
- BCMSMI3.DLL
- AVICA.DLL
- ATIDEMG.DLL
- CIADMI.DLL
- ATHCFG2.DLL
- IASACCP.DLL
- COMSVC.DLL
- CDP.DLL
- COLBAC.DLL
- CONFMS.DLL
- COMUI.DLL
- CMCFG3.DLL
- CMDIAL.DLL
- COINS.DLL
- CMSETAC.DLL
- COIN.DLL
- CMDIAL3.DLL
- COMPSTU.DLL
- CERT.DLL
- BTPANUC.DLL
- CORPO.DLL
- CERTMG.DLL
- CERTM.DLL
- CAPESNPM.DLL
- CLICONF.DLL
- CLICONFD.DLL
- CLICONFE.DLL
- CDFVI.DLL
- ATMPVCN.DLL
- CLUSAP.DLL
- CMUTI.DLL
- COMPATU.DLL
- CABIN.DLL
- CNVFA.DLL
- CMPBK3.DLL
- CMPBK3C.DLL
- CREDU.DLL
- CMPBK.DLL
- ATLI.DLL
- CRYPTDL.DLL
- APPMG.DLL
- APPMGP.DLL
- COMSNA.DLL
- COMSN.DLL
- CIOD.DLL
- CNBJMOP.DLL
- CIODN.DLL
- COMRE.DLL
- CRYPTEX.DLL
- COMREP.DLL
- BTSENDTO_NOTE.DLL
- CSCDL.DLL
- CSRSR.DLL
- KBDU.DLL
- AASC3.DLL
- ADSLD.DLL
- COMADDI.DLL
- CTOSUSE.DLL
- DESKMO.DLL
- CL.DLL
- AT.DLL
- FD.DLL
- CI.DLL
- 01C98C8134A23FF0_DAT1_TMP.PE
- 01C9935163FD21DC_DATB_TMP.PE
- BO280204011.DLL
- 57777737.DAT
Filesizes
The following file size has been seen:
- 97,280 bytes
- 91,648 bytes
- 96,256 bytes
- 95,744 bytes
- 125,952 bytes
- 83,456 bytes
- 104,186 bytes
- 118,528 bytes
File Type
The filename COMCA.DLL refers to many versions of a dynamic link library.
File Activity
One or more files with the name COMCA.DLL creates, deletes, copies or moves the following files and folders:
- Deletes c:\windows\system32\ipv6mopk.dl_
- Moves c:\windows\system32\ipv6mopk.dll to c:\windows\system32\ipv6mopk.dl_
- Deletes c:\windows\system32\ipv6mote.dl_
- Moves c:\windows\system32\ipv6mote.dll to c:\windows\system32\ipv6mote.dl_
- Deletes c:\windows\system32\ipv6mons.dl_
- Moves c:\windows\system32\ipv6mons.dll to c:\windows\system32\ipv6mons.dl_
- Deletes c:\windows\system32\ipv6monl.dl_
- Moves c:\windows\system32\ipv6monl.dll to c:\windows\system32\ipv6monl.dl_
- Deletes c:\windows\system32\AClient.dl_
- Moves c:\windows\system32\AClient.dll to c:\windows\system32\AClient.dl_
- Deletes c:\windows\system32\ipv6monq.dl_
- Moves c:\windows\system32\ipv6monq.dll to c:\windows\system32\ipv6monq.dl_
- Deletes c:\windows\system32\ipv6mopz.dl_
- Moves c:\windows\system32\ipv6mopz.dll to c:\windows\system32\ipv6mopz.dl_
- Deletes c:\windows\system32\ipv6mops.dl_
- Moves c:\windows\system32\ipv6mops.dll to c:\windows\system32\ipv6mops.dl_
- Deletes c:\windows\system32\ipv6motp.dl_
- Moves c:\windows\system32\ipv6motp.dll to c:\windows\system32\ipv6motp.dl_
Help the Webroot Community to fight cyber crime
We are always looking for ways to improve the quality and speed of research to help us protect you from malicious software and cyber crime.
PCMag.com Editors' Choice Award Logo is a trademark of Ziff Davis Publishing Holdings Inc. Used under license.