Home / malware Trojan-Downloader:W32/ConHook.APX
First posted on 17 September 2008.
Source: SecurityHomeAliases :
There are no other names known for Trojan-Downloader:W32/ConHook.APX.
Explanation :
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the files.
right]Trojan-Downloader:W32/ConHook.APX captures keywords from searches and creates relevant popup windows and ads.
It may attempt to use its outbound connections to download additional malicious programs, or to send information.
ConHook.APX targets Web searches made on the following sites:
- 7search.com
- alexa.com
- alltheweb.com
- ask.com/
- bbc.co.uk
- comcast.net
- destinationadult.com
- excite.co.jp
- findsearch.net
- gigablast.com
- goguides.org
- hotbot.com
- infoseek.co.jp
- instafinder.com
- jayde.com
- kanoodle.com
- lb1.netster.com
- live.com
- lycos
- mamma.com
- mirago.co.uk
- mysearch.myway.com
- mywebsearch.com
- neon.org.uk
- netster.com
- query.nytimes.com
- recherche.aol.fr
- reference.com
- s.teoma.com
- search.about.com
- search.aol
- search.daum.net
- search.dmoz.org
- search.earthlink.net
- search.looksmart.com
- search.msn
- search.netscape.com
- search.netzero.net
- search.sympatico.msn.ca
- search.wanadoo.co.uk
- search.xtramsn.co.nz
- searchmiracle.com
- sensis.com.au
- uk.searchengine.com
- url.searchuk.com
- usseek.com
- vivisimo.com
- web altavista.com
- web.ask
- websearch.com
- wesearchall.com
- www.excite.co.jp
- yahoo
Last update 17 September 2008
