Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 1,660,281 -0%
2 Conduit Search/Toolbar 1,301,174 2%
3 PUP.SupTab 838,746 5%
4 PUP.InstallCore 787,149 2%
5 PUP.Optimizer Pro 771,868 -3%
6 PUP.SuperWeb 662,845 4%
7 Hijacker 652,055 2%
8 Adware.LinkSwift 635,361 0%
9 Adware.Multiplug/Variant 629,022 5%
10 V9 Redirect Virus 598,472 2%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans


UnknownFile, or Unknown File, is considered an unwanted adware because UnknownFile may create various problems to the computers UnknownFile is installed. UnknownFile advertisements may start appearing when the computer user downloads and installs free applications that have UnknownFile bundled with it. The computer user also may have installed UnknownFile when online shopping in order to get the deals that UnknownFile promises to display. UnknownFile advertisements may affect Internet Explorer, Google Chrome and Mozilla Firefox. UnknownFile does display offers, deals and similar content, but to accomplish this, UnknownFile may change the browser settings and collect the computer users browsing history. UnknownFile also may lead the PC user to potentially threatening websites and open a path for the installation of other PUPs and adware.

Posted on April 20, 2015 in Adware


Computers infected by a Trojan named Win32:Crypt-DAG [Trj] will be experiencing numerous problems. WIN32:Crypt-DAG [Trj] can invade a computer surreptitiously by ignoring the installed security programs. Once inside the affected machine, WIN32:Crypt-DAG [Trj] changes Registry entries and browser settings, tampers with its files and disables certain programs. Using unethical methods, WIN32:Crypt-DAG [Trj] may allow third parties to assume the control of the infected computer and perform whichever action they want. WIN32:Crypt-DAG [Trj] may keep track of browsing habits, collect privileged information, slow down the machines it targets and even crash them. WIN32:Crypt-DAG [Trj] also may redirect Web browsers to corrupted websites and download and install additional threats. It is advised to remove WIN32:Crypt-DAG [Trj] from an infected computer upon detection. WIN32:Crypt-DAG [Trj]...

Posted on April 20, 2015 in Trojans

The domain is associated by security researchers with a browser hijacker that accompanies free software installers as a browser enhancer. Users infected with the browser hijacker are unable to change their homepage and new tab settings. The browser hijacker might use a background service to subject users to use the domain as their start page and prevent them from changing it. Moreover, the browser hijacker could add a registry key in Windows to start at system boot-up and ensure its functionality. You might be interested to know that the IP address of the domain can be connected to the Obrona Blockads and Obrona Cleaner that have a bad reputation. Therefore, users are not advised to use the service of because they may be offered to install potentially harmful...

Posted on April 20, 2015 in Browser Hijackers

The domain shares the same IP address with and that are associated with adware. Adware developers use the domain as a platform to promote potentially harmful software. The adware associated with may show pop-ups during your online session by using an adware powered add-on, a plugin, a Browser Helper Object and an extension. The content of the domain is accessible only on infected PCs, and you may experience slower browser performance because of adware activity on your machine. Security experts advise users not to click on the content provided on the pop-ups because they may install potentially harmful software or be...

Posted on April 20, 2015 in Adware


The GetitHD browser tool from and is classified by security researchers as adware that functions as a private ad platform. The GetitHD adware may replace ads on trusted websites with its own that could feature links to potentially harmful domains and may offer users to install riskware. Computer users may install the GetitHD adware automatically on their PC by handling a freeware setup file via the 'Express' or 'Typical' option. The GetitHD adware may modify the way search results on Google and Bing are displayed to you and instruct your web browser to show sponsored links. Additionally, the GetitHD adware may use HTTP and Flash cookies, read your Internet history and bookmarks in order to generate custom-made ads. Many web surfers might want to keep their online searches private and may not welcome the operations of GetitHD. The GetitHD adware may appear as a Browser...

Posted on April 20, 2015 in Possibly Unwanted Program

Websmart App

The Websmart App is advertised to allow Internet surfers to zoom images on web pages. You should note that the Websmart App binary is ad-supported, and you may experience banners, pop-ups and in-text hyperlinks to sponsors. Security experts deem the Websmart App software as a Potentially Unwanted Program (PUP) with adware capabilities because it offers limited functionality, and its main goal is to display ads. The Websmart App software can be downloaded from its official website, but most installations of Websmart App are executed via freeware bundles. Security experts note that the ads by Websmart App might link to unsafe content by third parties, and caution is advised. Users that have Websmart App on their computer may be offered to install potentially harmful software. Moreover, the Websmart App software may use session cookies, read your bookmarks and browsing history as well as...

Posted on April 20, 2015 in Possibly Unwanted Program


The DailyPrize browser widget has versions for all major web browsers and may attract online buyers to install it because it claims to deliver exclusive deals and promotions. However, the DailyPrize widget is deemed by security analysts as adware that uses its browser integration to display numerous marketing materials and generate pay-per-click revenue for its developers. The ads by DailyPrize might appear as banners, ad panels, pop-up windows and in-text hyperlinks to sponsored products and services. Moreover, the DailyPrize may use HTTP and Flash cookies to determine what commercials are suited to your online searches and preferred websites. You should keep in mind that the ads by the DailyPrize adware may direct you to visit insecure web locations where vulnerabilities in your browser could be exploited. The DailyPrize adware may offer you to install a potentially harmful program...

Posted on April 20, 2015 in Adware

My Deals Club

The My Deals Club software is classified by security researchers as adware because it presents users with banners and ad panels on non-affiliated webpages. The My Deals Club adware travels incorporated with free software installers that most computer users handle via the 'Typical' or 'Express' option. You should note that the My Deals Club adware may substitute the native ads on trusted online stores and feature links to Internet locations with a bad reputation. Additionally, the My Deals Club adware might employ session cookies and DOM storage data as well as detect your approximate geographical location and read your software configuration. These operations are conducted by adware in order to help advertisers deliver tailor-suited ads. Needless to say, the My Deals Club adware may display ads related to your most recent searches on Google and visited web pages. Web surfers concerned...

Posted on April 20, 2015 in Adware

Disco Savings

The Disco Savings browser tool is recognized by security experts as adware that may arrive on your PC as an additional add-on and an extension part of a freeware installer. The Disco Savings browser tool is created by adware developers who strive to earn pay-per-click revenue from users that click on ads by Disco Savings. Users infected with the Disco Savings adware may experience banners, pop-ups, pop-unders and ad boxes that may link to untrusted online resources. Moreover, the Disco Savings adware functions as a gateway that may direct you to visit potentially harmful locations where your cyber safety might be at risk. The Disco Savings adware may use web beacons and HTTP cookies as well as detect your IP address to generate custom-made ads. Security experts remind users that adware such as the Disco Savings may decrease the performance of your web browser. You can use a trusted...

Posted on April 20, 2015 in Adware

Win PC Optimizer

Win PC Optimizer is promoted as a powerful system optimizer that can free space and clean junk files. Users may encounter the Win PC Optimizer program in freeware packages and could be offered to install Win PC Optimizer on low-quality software centers. You might be interested to know that security researchers perceive Win PC Optimizer as a Potentially Unwanted Program (PUP) because it may attach an extension to your web client and display commercials. The Win PC Optimizer program may use HTTP cookies, web beacons, DOM storage data and record your search terms in order to help advertisers deliver targeted content. The privacy policy of Win PC Optimizer states that it uses the information for marketing and promotional purposes. However, users might not want pop-ups and banners by Win PC Optimizer to appear in their web client. Moreover, the Win PC Optimizer app may utilize system...

Posted on April 20, 2015 in Possibly Unwanted Program


The HappySales browser extension is deemed by security analysts as adware because it functions as an advertisement platform to vendors. The HappySales extension can be seen accompanying freeware installers as an additional tool that can help you shop faster and more efficiently. However, the HappySales may detect your geographical location, IP address and use tracking cookies to display tailor-suited ads. The adware developers behind HappySales programmed it to display pop-ups, banners, in-text hyperlinks to sponsors and ad panels. You may want to keep in mind that the HappySales adware may feature links to unsafe Internet locations and offer you to install riskware. Security analysts note that the ads by adware such as the HappySales browser extension are not considered safe. Additionally, the HappySales adware may add a key in your Windows registry to start at system boot-up and...

Posted on April 20, 2015 in Adware

LittleApp Suggestor

The LittleApp Suggestor software by Little-Apps LLC is promoted as a browser widget that customizes the way search results are presented to you on Google and allows you to search via its integrated icon. Many web surfers may be attracted to install the LittleApp Suggestor browser widget, and you may wish to know that security experts perceive LittleApp Suggestor as a Potentially Unwanted Program (PUP) with adware capabilities. The LittleApp Suggestor app can be downloaded from its official website and could be acquired via freeware bundles. The LittleApp Suggestor browser widget has versions for Mozilla Firefox, Internet Explorer and Google Chrome that are programmed to collect non-personally identifiable information. The LittleApp Suggestor program uses HTTP, Adobe Flash, and session cookies, record your IP address, browser history and software configuration in order to display...

Posted on April 20, 2015 in Possibly Unwanted Program

Web Protector Plus

The Web Protector Plus application is a modified version of the Web Protector by Safe Samurai, and security experts deem it as a Potentially Unwanted Program (PUP) with adware capabilities. The Web Protector Plus application travels embedded with freeware setup files and does not have an official website. The Web Protector Plus is promoted as a tool to block unsafe elements on the web pages displayed in your web browser and its services are ad-supported. However, the Web Protector Plus app may substitute the native ads on non-affiliated webpages. The Web Protector Plus software may appear as a browser extension and a plugin and users may notice its entry on the 'Programs and Features' list in 'Control Panel'. As stated above, the Web Protector Plus may show banners, ad panels and pop-ups by sponsors during your online session. The Web Protector Plus program may add a task in the...

Posted on April 20, 2015 in Possibly Unwanted Program


The CouponsMachine browser tool is promoted in freeware bundles as a shopping assistant that can give you access to unlimited number of coupons and discounts. However, the CouponsMachine software is recognized by security experts as adware that is programmed to display commercials in your web browser and earn pay-per-click revenue for its developers. The CouponsMachine adware may use tracking cookies, detect your approximate geographical location and record your software configuration in order to show tailor-made promotions. The ads by CouponsMachine may take the form of pop-ups, pop-unders, video ads and banners. The CouponsMachine adware may use an add-on, a plugin, a Browser Helper Object and an extension to execute its operations like its compatriots Fabulous Discounts and Sliding Sales . Additionally, the CouponsMachine adware may record your search terms, and many users might...

Posted on April 17, 2015 in Adware

The domain is employed by adware developers as a private marketing platform to promote services and products by sponsors. The adware associated with may take the form of a browser extension and an add-on that you have installed along with a free application. The adware linked to may record your IP address and keep track of your searches on Google in order to determine what offers may intrigue you. However, you might want to know that the domain is blacklisted by several web filters, and you may want to avoid clicking on content provided on the pop-ups. Security researchers add that the IP address of is connected to untrusted online resources and advise caution. Needless to say, it is not a good idea to download the software promoted on the pop-up...

Posted on April 17, 2015 in Browser Hijackers
1  2  3  4  5  6  7  8  9  10  11  12  Next     Total items: 13635