Lavasoft Security Bulletin - March 2014: Top Threats

Top20 Blocked Malware

Position Ad-Aware detection % of all threats Change in ranking
1 Win32.Trojan.Agent 81.31% -0.62%
2 Trojan.Win32.Generic!BT 8.89% +0.45%
3 Email-Worm.Win32.Brontok.a 1.26% new
4 Worm.LNK.Jenxcus.aha 0.83% +0.61%
5 Malware.JS.Generic 0.53% -0.04%
6 Win32.Worm.Brontok/C 0.52% new
7 Trojan.Win32.Generic.pak!cobra 0.51% +0.08%
8 Virus.Win32.Sality.at 0.34% -0.01%
9 Trojan.Win32.Ramnit.c 0.34% +0.20%
10 Packed.Win32.PWSZbot.gen.cy 0.31% new
11 INF.Autorun 0.28% +0.11%
12 HackTool.Win32.Keygen 0.28% +0.07%
13 Virus.Win32.Ramnit.b 0.23% +0.03%
14 Jeefo 0.22% new
15 Trojan.Win32.Jpgiframe 0.21% +0.04%
16 Trojan.Win32.Generic!SB.0 0.16% -0.01%
17 Email-Worm.Win32.Brontok.q 0.15% new
18 Virus.Win32.Neshta.a 0.12% new
19 Win32.Backdoor.Inject/C 0.09% new
20 BehavesLike.Win32.Malware.bse 0.09% new

The Top 20 malicious programs blocked on PCs

Malware Prevalence Table - Febuary 2014

The table below ranks the most prevalent families seen in February.

Position Ad-Aware detection % of all threats Change in ranking
1 Trojan.Win32.Generic!BT 33.46% +0.13%
2 Virus.Win32.Expiro.gen 7.35% -0.30%
3 Trojan-Downloader.Win32.LoadMoney.u 6.01% -2.41%
4 Virus.Win32.Virut.ce 3.30% -5.57%
5 Trojan.Win32.Generic.pak!cobra 3.11% +0.78%
6 Trojan.Win32.Ircbot!cobra  1.04% new
7 Adware.OutBrowse 0.64% +0.24%
8 Trojan.Win32.DelfInject.m 0.43% -0.26%
9 Trojan.Win32.Generic!SB.0 0.36% -0.11%
10 Trojan.Win32.LoadMoney.f 0.32% new
11 FraudTool.Win32.InternetProtection.ek!a  0.26% new
12 Trojan.HTML.Ransomware.b 0.25% -0.16%
13 Adware.Adpopup 0.24% -0.09%
14 Adware.MultiToolbar 0.21% -0.05%
15 Trojan.Win32.Zbot.aba  0.20% new
16 Trojan.Win32.Kolabc.gu  0.19% new
17 Worm.Win32.Gamarue.z 0.19% new
18 Trojan.Win32.LoadMoney.aa  0.18% new
19 Backdoor.MSIL.Bladabindi.a 0.18% new
20 Trojan.MSIL.Bladabindi.agxy 0.17% -0.03%

New malicious programs entered the Top 20

The Fake-AV “Spyware Protection” dated by 2010 is still on duty and finds malware on clean computers.

Fake AV (MD5: 283fd7bef70e316f57814636619a9318) is detected by Ad-Aware as Trojan.GenericKD.1590998

An example of a Fake AV called AntiSpyware:

Fake AV (MD5: 507068add79c3412d0b6ba295c70fd33) is detected by Ad-Aware as Trojan.FakeAV.MIO

Top20 Potentially Unwanted Programs

Below are the Top20 Potentially Unwanted Programs blocked by Ad-Aware on user’s PCs. These are advertising software, browser toolbars, search engines and other programs which change browser start pages and other system settings.

Position Ad-Aware detection % of all threats Change in ranking
1 Conduit 23.03% +0.18%
2 MyWebSearch 15.88% -0.65%
3 Adware.JS.Conduit 10.18% -0.42%
4 Win32.PUP.Bandoo 7.41% -1.10%
5 Adware.Linkury 6.89% +2.65%
6 Adware.SaveSense 3.85% -0.72%
7 Crossrider 2.19% +0.57%
8 Win32.Toolbar.Iminent 1.89% -0.11%
9 Win32.Adware.Agent 1.36% -2.12%
10 Iminent 1.17% -0.83%
11 Adware.DealPly 1.15% -0.06%
12 DomaIQ 1.14% +0.19%
13 Adware.JS.Popuppers.a 1.07% new
14 SweetIM 1.06% -0.03%
15 Opencandy 1.00% -0.04%
16 InstallCore 0.90% -0.21%
17 Adware.Agent 0.76% -2.72%
18 CoolMirage Ltd 0.72% -0.11%
19 Montiera 0.67% new
20 Adware.Win32.InstallCore.ba 0.59% new

Top20 PUPs detected on user’s PC

Operating Systems

Infections by OS

Geographic Location

Infections by country of origin

We will keep investigating the epidemiological situation in the world and informing our readers about new malicious code samples in the next Lavasoft Security Bulletin.

Read also:
Lavasoft Security Bulletin - March 2014: Bot Review.

Zeus Backdoor Adopts Extra Rootkit Abilities.

  • Back to articles


  • Share this post:    Twitter Facebook