Lavasoft Security Bulletin - February 2014: Top Threats
Top20 Blocked Malware
| Position | Ad-Aware detection | % of all threats | Change in ranking |
| 1 | Win32.Trojan.Agent | 81.93% | +1.83% |
| 2 | Trojan.Win32.Generic!BT | 8.44% | +0.34% |
| 3 | Virus.VBS.Ramnit.a | 1.00% | +0.34% |
| 4 | Trojan.Win32.Qhost.apd | 0.73% | new |
| 5 | Malware.JS.Generic | 0.57% | -2.77% |
| 6 | Virus.Win32.Sality.ah | 0.53% | +0.38% |
| 7 | Trojan.Win32.Generic.pak!cobra | 0.43% | -0.04% |
| 8 | Virus.Win32.Sality.at | 0.35% | +0.12% |
| 9 | Virus.Win32.Virut.ce | 0.27% | new |
| 10 | Email-Worm.Win32.Brontok.ik | 0.25% | new |
| 11 | Virus.Win32.Ramnit.a | 0.23% | new |
| 12 | Worm.LNK.Jenxcus.aha | 0.22% | -0.04% |
| 13 | Worm.Win32.Katar.a | 0.22% | new |
| 14 | HackTool.Win32.Keygen | 0.21% | -0.02% |
| 15 | Virus.Win32.Virut.a | 0.20% | new |
| 16 | Virus.Win32.Ramnit.b | 0.20% | new |
| 17 | Trojan.Win32.Generic!SB.0 | 0.17% | -0.09% |
| 18 | Trojan.Win32.Jpgiframe | 0.17% | -0.02% |
| 19 | INF.Autorun | 0.17% | new |
| 20 | Trojan.Win32.Ramnit.c | 0.14% | 0.00% |
The Top 20 malicious programs blocked on PCs
Malware Prevalence Table - Febuary 2014
The table below ranks the most prevalent families seen in February.
| Position | Ad-Aware detection | % of all threats | Change in ranking |
| 1 | Trojan.Win32.Generic!BT | 33.33% | -2.64% |
| 2 | Trojan-Downloader.Win32.LoadMoney.u | 8.42% | -4.53% |
| 3 | Virus.Win32.Expiro.gen | 7.65% | +2.36% |
| 4 | Virus.Win32.Virut.ce | 8.87% | +1.46% |
| 5 | Trojan.Win32.Generic.pak!cobra | 2.33% | +0.85% |
| 6 | Trojan.Win32.DelfInject.m | 0.69% | +0.39% |
| 7 | Trojan.Win32.Generic!SB.0 | 0.47% | -0.29% |
| 8 | Trojan.HTML.Ransomware.b | 0.41% | -0.46% |
| 9 | Adware.OutBrowse | 0.40% | new |
| 10 | Adware.Adpopup | 0.33% | new |
| 11 | Trojan.Win32.DotNet.c | 0.27% | +0.02% |
| 12 | Adware.MultiToolbar | 0.26% | new |
| 13 | Worm.Win32.Downad.Gen | 0.26% | new |
| 14 | Adware.TSUploader | 0.23% | new |
| 15 | Exploit.JS.Obfuscator.a | 0.22% | new |
| 16 | Backdoor.Win32.Spammy.gf | 0.22% | new |
| 17 | Vittalia Installer | 0.22% | new |
| 18 | Trojan-Downloader.Win32.Wauchos.la | 0.21% | -0.02% |
| 19 | Trojan.Win32.Kryptik.bnre | 0.21% | new |
| 20 | Trojan.MSIL.Bladabindi.agxy | 0.20% | +0.01% |
New malicious programs entering the Top 20
“FBI” ransomware is locking you “to prove you are human”.
Ransomware (MD5: 677ae8f22fae1774b9a8e5f836145cf9) is detected by Ad-Aware as Gen:Heur.MSIL.Krypt.2
The Fake-AV “Desktop Security” dated by 2010 is still on duty and finds malware on clean computers.
Fake AV (MD5: 5d5a2cfcb887124439c5c0c8165b7a4c) is detected by Ad-Aware as Trojan.Generic.4721331
Top20 Potentially Unwanted Programs
Below are the Top20 Potentially Unwanted Programs blocked by Ad-Aware on user’s PCs. These are advertising software, browser toolbars, search engines and other programs which change browser start pages and other system settings.
| Position | Ad-Aware detection | % of all threats | Change in ranking |
| 1 | Conduit | 22.85% | -2.52% |
| 2 | MyWebSearch | 16.53% | +0.51% |
| 3 | Adware.JS.Conduit | 10.60% | -2.85% |
| 4 | Win32.PUP.Bandoo | 8.51% | +0.67% |
| 5 | Adware.SaveSense | 4.57% | new |
| 6 | Adware.Linkury | 4.24% | -0.77% |
| 7 | Win32.Adware.Agent | 3.48% | +2.60% |
| 8 | Win32.Toolbar.Iminent | 2.00% | -0.21% |
| 9 | Crossrider | 1.62% | -0.40% |
| 10 | Adware.Agent | 1.40% | -0.89% |
| 11 | Iminent | 1.27% | -0.94% |
| 12 | Adware.DealPly | 1.21% | -1.11% |
| 13 | InstallCore | 1.11% | -0.47% |
| 14 | SweetIM | 1.09% | -0.22% |
| 15 | Opencandy | 1.04% | +0.14% |
| 16 | DomaIQ | 0.95% | +0.11% |
| 17 | Amonetize | 0.94% | -0.04% |
| 18 | CoolMirage Ltd | 0.83% | -0.02% |
| 19 | InstallCore.b | 0.61% | new |
| 20 | Besttoolbars | 0.58% | -0.15% |
Top20 PUPs detected on user’s PC
Operating Systems
Infections by OS
Geographic Location
Infections by country of origin
We will keep investigating the epidemiological situation in the world and informing our readers about new malicious code samples in the next Lavasoft Security Bulletin.
Share this post:
Twitter
Facebook