Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 1,660,281 -0%
2 Conduit Search/Toolbar 1,301,174 2%
3 PUP.SupTab 838,746 5%
4 PUP.InstallCore 787,149 2%
5 PUP.Optimizer Pro 771,868 -3%
6 PUP.SuperWeb 662,845 4%
7 Hijacker 652,055 2%
8 Adware.LinkSwift 635,361 0%
9 Adware.Multiplug/Variant 629,022 5%
10 V9 Redirect Virus 598,472 2%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans


The AntiAdBlocker application is promoted as a browser enhancer that can help you block annoying ads and enjoy the Internet clutter-free. The AntiAdBlocker application can be found accompanying freeware installers and can be downloaded from its official website. Security analysts perceive the AntiAdBlocker app as a Potentially Unwanted Program (PUP) with adware capabilities because it is known to generate pop-ups loaded with advertisements during your online session. Also, the AntiAdBlocker program functions similarly to Mini-Adblocker , Red AdBlocker , and Supreme AdBlocker that block ads on websites and display sponsored links.You should note that the developers of AntiAdBlocker work with advertisers to display marketing materials in your web browser. Therefore, the AntiAdBlocker application may read your browsing history, record DOM storage data and detect your approximate...

Posted on April 24, 2015 in Possibly Unwanted Program


The Fun4us program has versions for Google Chrome and Mozilla Firefox that are used by adware developers to promote sponsored products and services and earn pay-per-click revenue. The modus operandi of Fun4us provides evidence for security experts to classify Fun4us as adware. The Fun4us adware acts similarly to SensePlus , Deal Finder and Winter Web that are known to prevent users from enjoying the Internet. The Fun4us adware is dispersed among computer users by using freeware setup files as vessels. You might want to use the 'Advanced' or 'Custom' option the next time you install a free application in order to avoid installing the Fun4us adware on your PC. Users infected with the Fun4us adware report a torrent of commercials in their web browser, and you may be provided with links to potentially harmful locations. Security experts note that the Fun4us adware might display...

Posted on April 24, 2015 in Adware


The PhraseFinder program is classified by security researchers as adware that might use pop-up windows, banners, contextual and transitional ads to deliver marketing content into your web browser. You may wish to know that the PhraseFinder adware is connected to others of its kind like InfoAtoms and Search Snacks , and you may be offered to install them as helpful extensions. The PhraseFinder adware is deployed embedded with freeware setup files that most users carelessly install via the 'Express' or 'Typical' option. Security researchers note that the PhraseFinder adware may appear as a browser plugin in order to execute its operations and generate pay-per-click revenue for its developers. The PhraseFinder adware may read your Internet history and detect your approximate geographical location in order to display customized commercials. You should keep in mind that ads by adware...

Posted on April 24, 2015 in Adware

The domain is a well-known pornographic website that most users may not want to use as their homepage. However, the domain is linked to a browser hijacker that can set as your homepage and occasionally redirect you to when you type URL addresses in your web browser. The browser hijacker associated with may have arrived on your computer a browser extension that was part of a freeware package that most users install via the 'Typical' or 'Express' option. You should note that the browser hijacker may display pop-ups featuring links to suspicious online locations, and you are not advised to click on insecure online resources. The browser hijacker may add a registry key in Windows to ensure its operations every time you launch your web browser, and you may not be able to remove it manually....

Posted on April 24, 2015 in Browser Hijackers

The detection is used by security applications to notify computer of a trojan infection on their system. is used by attackers download and install malware on already compromised systems. The may download a keylogger on your PC that can be used to record your strokes on the keyboard and send the collected data to a remote server. Additionally, can be instructed to download viruses that may corrupt your Windows installation and programs in order to steal your banking and social media credentials or use your PC for DDoS attacks. Needless to say, the malware is not to be underestimated, and users may encounter it as an attached file in spam emails that refer to financial operations. Users affected by the activities of the...

Posted on April 24, 2015 in Trojans

Summer Games

The ads by Summer Games in your web client are caused by an adware powered application on your computer. You might want to know that adware developers often incorporate their apps with freeware installers because most users prefer the 'Express' or 'Typical' option. You may have installed the Summer Games adware as a browser extension, a plugin, an add-on and Browser Helper Object that can be used to show ads in your Internet browser. The Summer Games adware may add a registry key in Windows to launch every time you start an online session. Moreover, the Summer Games adware may start a background service to record your clicks on the web and the search criteria you type on Google in order to show customized advertisements. The ads by Summer Games may take the form of ad boxes, pop-ups and banners that may link to potentially harmful domains and suggest you to install a potentially...

Posted on April 24, 2015 in Adware


The Cheap-o software is developed by the infamous WebPick Internet Holdings Ltd. that created adware such as the WorldWideWebCoupon , OnlineLowDeals , and Sale-o . The Cheap-o binary is classified as adware that is designed to generate pay-per-click revenue for its developers by presenting infected users with numerous advertisements. Moreover, the Cheap-o adware may offer to install Potentially Unwanted Programs (PUPs) that may slow down your PC. The Cheap-o adware may use banners, ad boxes, and pop-up windows to display marketing content. Also, the Cheap-o may read your browsing history and might promote fake technical support services when you search on Google and Bing for tech related problems and services. The Cheap-o adware is dispersed among computer users with the help of freeware packages that most users carelessly handle via the 'Express' or 'Typical' option. However,...

Posted on April 24, 2015 in Adware


The I-Gosearch search engine located on is related to a browser search assistant that travels bundled with freeware installers. Web surfers that installed the search assistant associated with I-Gosearch may have the website as their homepage and default search provider. Additionally, the search results by I-Gosearch may not be the same as on other engines like Google, Bing, AOL, and Yahoo. The I-Gosearch search assistant may take the form of a plugin and a browser extension in order to modify your web browser settings, and may redirect you to potentially harmful domains. Moreover, the search results page of I-Gosearch may feature may include offers to install Potentially Unwanted Programs (PUP) in order to earn pay-per-install revenue for its owners. As stated above, the I-Gosearch search engine is a low-quality search service that might not suit your...

Posted on April 24, 2015 in Browser Hijackers

‘System infected: Fake Plugin Activity 2′ Notification

The 'System infected: Fake Plugin Activity 2' notification is used by security applications to alert users that there is an adware powered plugin on their system. You may want to know that the 'System infected: Fake Plugin Activity 2' notification refers to adware that might connect to the domain and download software on your PC. The IP address of the domain is associated with the deployment of riskware such as the InstallBrain , Offerware , and Shopping Helper Smartbar . Moreover, web filtering services recognize the domain to be a source of cyber threats. The 'System infected: Fake Plugin Activity 2' notification may point to an unfamiliar browser plugin that may have arrived on your PC along with a free application. Adware powered plugins can launch a background service while you surf the web and download and...

Posted on April 24, 2015 in Possibly Unwanted Program

Deal Buster

The Deal Buster browser extension may attract online buyers to install it because it claims to lower the prices of products by searching for goods on multiple online stores. The Deal Buster browser extension is distributed among web surfers with the help of freeware bundles. The Deal Buster software is designed to push numerous marketing materials on your browser surface and is perceived as adware. Security researchers note that the Deal Buster adware may present you with many banners, pop-up and pop-under windows loaded with discounts and exclusive deals. The operations performed by the Deal Buster adware may slow down your web client and prevent you from comfortably browsing the Internet. Additionally, the Deal Buster adware may use HTTP cookies and DOM storage data in order to generate tailor-suited ads and maximize its efficiency. Security researchers add that the Deal Buster...

Posted on April 23, 2015 in Adware

BuyFast Ads

The BuyFast online shopping tool has versions for Google Chrome and Mozilla Firefox that are used by adware developers to earn pay-per-click revenue. The BuyFast adware can be found accompanying free software installers under the 'Advanced' or 'Custom' option that most users don't bother to explore. Therefore, you may allow adware such as the BuyFast program and others of its kind like Ad Info , BBQ Leads and Best Coupons to arrive on your PC. The BuyFast adware is programmed to present users with many pop-up ads, ad boxes and banners loaded with discounts, special offers, and surveys. Moreover, the BuyFast adware may record your search criteria and read the metadata of websites you prefer in order to display related commercials. Security experts note that the BuyFast adware might add a registry key in Windows to auto-start with your OS and may delay the start of other programs....

Posted on April 23, 2015 in Adware


If you are experiencing and abundance of pop-up ads, banners and ad boxes by DealNoDeal during your online session than you are infected with adware. Security analysts note that the DealNoDeal adware could be encountered as Deal-Or-No-Deal, and both variants are deployed embedded with freeware setup files that most users install via the 'Typical' or 'Express' option. The DealNoDeal adware might use a Browser Helper Object, an add-on, a plugin and an extension to perform its operations. Security analysts add that the Deal-Or-No-Deal adware might record your search terms and read your browsing history to understand your online habits and display related commercials. Moreover, the DealNoDeal adware may direct you to visit untrusted domains and suggest you to install potentially unwanted programs (PUPs) like Bizrate , FireDiveDownloader , and EnhanceSoft . PUPs and adware such as the...

Posted on April 23, 2015 in Adware

Dollar Saver

The Dollar Saver browser add-on is promoted on low-quality software centers and in freeware packages as a shopping assistant that can help you save money during your shopping activities on Amazon and eBay. However, the Dollar Keeper browser add-on functions as an advertising engine and is recognized by security experts as adware. The Dollar Keeper adware is programmed to inject non-affiliated webpages with in-text hyperlinks to sponsored products and services, show pop-up windows and banners. You should note that the Dollar Saver adware might offer you to download riskware like Safe PC Cleaner , PaceItApp , and Palladium Pro . Moreover, the Dollar Saver may replace the native ads on trusted websites and provide you with links to insecure online resources. The Dollar Saver adware may read your Internet history and use HTTP and session cookies in order to show custom-made...

Posted on April 23, 2015 in Adware

Lookout Deals

The Lookout Deals program may try to appear as a legitimate shopping advisor published by, but it is classified by security researchers as adware. The Lookout Deals adware is built upon the legitimate CrossBrowser application platform and can operate with Mozilla Firefox, Internet Explorer, Safari and Google Chrome. The Lookout Deals adware is created to generate pay-per-click revenue by displaying pop-ups, banners and ad boxes loaded with discounts, coupons, and exclusive deals. Security researchers point out that the Lookout Deals adware may use DOM storage data, read your web history and detect your approximate geographical location in order to show customized ads. The adware developers who created the Lookout Deals program deploy it incorporated with freeware installers because most users prefer the 'Express' or 'Typical' option. The Lookout Deals adware may...

Posted on April 23, 2015 in Adware


The CouponTil application travels bundled with freeware installers as a browser add-on may promise you to give you access to coupons and discounts. However, the CouponTil browser add-on is perceived by security analysts as adware because it acts as a marketing engine. The CouponTil adware might push numerous advertisements in your web browser in the form of special offers, banners, coupons, and pop-up windows. Moreover, the CouponTil adware may suggest you to install potentially unwanted programs (PUPs) such as the BlackLister and the AppEnable . You should note that PUPs can decrease your system performance and inject more ads in your web browser. Additionally, the CouponTil adware may use its browser integration to read your Internet history and display related commercials. You might want to use a reliable anti-spyware utility to remove the CouponTil adware if you want to keep...

Posted on April 23, 2015 in Adware
1  2  3  4  5  6  7  8  9  10  11  12  Next     Total items: 13670