Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 2,109,776 7%
2 Conduit Search/Toolbar 1,588,409 4%
3 PUP.SupTab 1,174,950 14%
4 PUP.SuperWeb 996,601 11%
5 PUP.InstallCore 974,853 7%
6 PUP.Optimizer Pro 948,831 6%
7 Adware.Multiplug/Variant 904,168 9%
8 Iminent Toolbar 799,348 11%
9 PUP.CrossRider 700,309 15%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans


The FriendsBrowser browser add-on is developed by Linkular LLC and offers advanced social features in the web browser. The FriendsBrowser browser add-on can be obtained via freeware packages, and users may notice it listed under the 'Custom' or 'Advanced' option. Active social media users may be interested to install the FriendsBrowser add-on, but you might want to know that it is ad-supported, and you will have to tolerate ads by FriendsBrowser. Therefore, security researchers classify the FriendsBrowser browser add-on as a Potentially Unwanted Program (PUP) with adware capabilities. The FriendsBrowser add-on may record your browsing history, IP address and detect your approximate geographical location to help affiliate advertisers deliver tailor-suited ads in your web browser. The ads by FriendsBrowser may take the form of banners, ad boxes and pop-up windows that may clutter your...

Posted on May 25, 2015 in Adware


The MyGamesUniverse extension from Linkular LLC is promoted as a special collection of games that users can enjoy and share with their friends. However, you might want to know that The extension MyGamesUniverse is deemed by security experts as a Potentially Unwanted Program (PUP) with adware capabilities. The MyGamesUniverse program might record your search terms, IP, and MAC address in order to show related sponsored ads. The MyGamesUniverse program is delivered to users incorporated with freeware bundles that may contain more than two or three third-party applications. Often, the MyGamesUniverse program is accompanied by adware like Coupons and Fun , BeatTool and Better-Fox-Finder that can load more ads and use tracking cookies. You may wish to know that the MyGamesUniverse extension is compatible with Internet Explorer, Google Chrome and Mozilla Firefox and users may expect to...

Posted on May 25, 2015 in Adware

DealMine Ads

The DealMine shopping adviser may promise you to discover coupons and exclusive deals while you surf the Internet, but you should know that it is classified as adware. Security experts alert that the DealMine adware travels embedded with free software packages that the majority of users install with the 'Typical' or 'Express' option. The DealMine adware might present you with pop-up and pop-under windows, banners, floating ads, contextual and transitional commercials that can obstruct your Internet activities. Security experts add that the DealMine adware may appear on your 'Programs and Features' list as a browser plug-in and can read your browsing history and use tracking cookies. The DealMine adware may use HTTP and session cookies to create a unique advertisement profile for you and display related marketing offers. The main objective of the DealMine adware is to earn...

Posted on May 25, 2015 in Adware

Rockapps Ads

The ads by RockApps in your Internet browser may prove as an annoyance, and you may want to know that you are infected by adware. The RockApps adware is dispersed among users enclosed with free software installers that most users handle with the 'Typical' or 'Express' option. The RockApps adware may claim to provide users with discounts and special deals on powerful tools, but it might cover your browser surface with coupons, banners, and pop-up windows. Security analysts note that the RockApps adware may read your bookmarks and Internet history. Also, the RockApps adware is could detect your IP address and approximate geographical location to customize the marketing materials displayed in your browser. You may be interested to know that the RockAppsadware may appear as a browser plugin, toolbar, and an extension to perform its operation on your computer. Security analysts underline...

Posted on May 25, 2015 in Adware

Commercial Extension Cable

The Commercial Extension Cable browser assistant is promoted as a tool that can allow web surfers to search the Internet for coupons and discounts safer and faster. However, the Commercial Extension Cable browser assistant is a perceived by security experts as adware because it can read your browsing and download history, detect your IP address and place tracking cookies on your system. The Commercial Extension Cable adware can be found in freeware packages listed under the 'Advanced', or 'Custom' option and users may wish to know that it is adware. The main function of the Commercial Extension Cable adware is to monetize your clicks on banners, pop-up windows, ad boxes and sponsored links for its developers. The Commercial Extension Cable has versions for Internet Explorer, Mozilla Firefox and Google Chrome that can cover your browser surface with many advertisements. Additionally,...

Posted on May 25, 2015 in Adware

Antivirus Pro 2017

The Antivirus Pro 2017 program can be promoted to you by adware and may arrive on your machine as a drive-by installation of a freeware bundle. The Antivirus Pro 2017 program has a similar interface to Antivirus Security Pro and may appear as legitimate, but users should not trust its antivirus engine. Security analysts alarm that the Antivirus Pro 2017 program is a rogue security application that is designed to scare users with many detections pointing to important system files. The Antivirus Pro 2017 rogue security app aims to convince users that they need to pay for a full protection to repair their files. However, users should not trust the detection ratio of the rogue security application Antivirus Pro 2017 because it aims to scare you. Users that want to examine their PC with other security applications may notice that the Antivirus Pro 2017 program detects them as malware....

Posted on May 25, 2015 in Rogue Anti-Virus Program

Locker Virus

The Locker Ransomware is a member of the cryptomalware family that functions similarly to CryptoLocker and Coin Locker . The Locker ransomware features a program window with four tabs named: Information, Payment, Files and Status. The first tab informs the victims that their image, video and text files as well as cryptocurrency wallets are not readable because they are encrypted by the Locker ransomware with a 2048-bit RSA private key. The 'Payment' tab instructs users to send 0.1 Bitcoins to the listed wallet address in order to obtain a decryption key and recover their files. Victims of the Locker cryptomalware are granted 72 hours to pay the ransom or their files that are listed in the program window will be lost. Malware researchers note that the Locker ransomware may place its components in the PROGRAMDATA folder and use the 'rkcl.exe' executable to encrypt your files. You...

Posted on May 25, 2015 in Ransomware

Important Message Pop-up

The 'Important Message' pop-up window may appear in the web browser of users affected by adware. The adware in question is programmed to show 'Important Message' pop-ups when the user visits tech related websites like,, and The adware associated with the 'Important Message' pop-up windows may have arrived on your PC as a browser enhancer part of a free software installer. The majority of users install software via the 'Express' or 'Typical' option and allow third-party software such as adware to be deployed on their system. That is why users might experience strange 'Important Message' pop-ups after a software installation. Users should note that the 'Important Message' pop-ups may suggest that your security is compromised, or you are in danger of losing files because you did not backup your data. The 'Important Message' windows may promote...

Posted on May 25, 2015 in Adware

Browser Hero

Browser Hero is a suspicious browser extension that may leave its clients dissatisfied. This Potentially Unwanted Program (PUP) is created by a company named Intriguing Apps. They are advertising their product as a good web security tool, but in reality, Browser Hero cannot protect the user from the cyber threats. The actual purpose of this application is to generate Internet traffic to some sites with equally doubtful legitimacy. In order to complete this task, the PUP works as adware and inserts new ads on the webpages. However, the artificially created pop-ups, banners and hyperlinked words tend to be aggressive and may decrease the browsing speed. Although Browser Hero may be downloaded from its official page, it often travels together with freeware. If you want to keep such unreliable add-ons away from your PC, you should install all software through the "Advanced" menu. You...

Posted on May 25, 2015 in Adware

Shield Safe Search Hijack

Shield Safe Search is a Potentially Unwanted Program (PUP) developed by the company Tightrope Interactive. It is promoted as a tool that can benefit the user with a reliable on-line protection. Actually, this statement is misleading as the true impact of Shield Safe Search on the affected browsers tends to be negative. The PUP performs as adware and attempts to bring the user to sponsored third-party pages. This is achieved by inserting numerous intrusive ads like pop-ups, banners and hyperlinked words. They may be noticed regardless of used Internet client as Google Chrome, Mozilla Firefox and Internet Explorer can all be modified. In addition, the ads may be seen on different pages, which may even trouble the performance of the browser. Besides the ads, Shield Safe Search replaces the default search engine with a low-quality provider ‒ This site shouldn't be...

Posted on May 25, 2015 in Browser Hijackers


GetMyFilesNow is an application that cannot help you in any way. It is classified by the security experts as Potentially Unwanted Program (PUP) and possesses some typical adware features. The presence of GetMyFilesNow is associated with various ads in the form of pop-ups and banners. Their purpose is to boost the Internet traffic towards sponsored sites with questionable legitimacy. The modifications of the browsers may also affect the default homepage and search engines. This behavior doesn't benefit the client in any way but generates a pay-per-click commission for each created page impression. What distinguishes GetMyFilesNow from the other adware tools is the fact that some of the pop-ups promote software rather than a webpage. The user may be informed that his download is ready without any additional details about the offered program. Trusting these notifications may load the...

Posted on May 25, 2015 in Adware

Ai88 Ransomware

Ai88 ransomware is a dangerous PC threat that has just recently surfaced on the web. Ransomware is one of the scariest computer threats, because it may inflict a lot of damage before its presence is noticed, and even if you know that there is ransomware present on your computer, there isn't much you can do to prevent the annoyance it will indeed cause. The Ai88 ransomware is a relatively new threat, but there are already several reports coming from infected users, and it is safe to say that this PC threat is as dangerous as it gets – it may encrypt the user's important files, and then send the private decryption key to a remote server. The only way for users to access their files is to acquire the private decryption key but to do so they'd have to pay the ransom requested by the ransomware's authors. There isn't much information about Ai88 ransomware currently, but it is entirely...

Posted on May 25, 2015 in Ransomware

Space Bar System

Space Bar System is a potentially unwanted program (PUP) that may be installed on your computer when you opt to install a cost-free application such as a media player, PDF viewer, video/audio converter, or another piece of software classified as freeware or shareware. While Space Bar System isn't dangerous at all, it may turn out to be an application that you aren't interested in using. The field of computer security such applications are classified as PUPs, and our opinion is that they should be removed unless you plan to use them regularly. Space Bar System may be ad-supported, so having this PUP installed on your computer may result in ads, banners, and pop-ups being shown in your web browser. Although this isn't considered to be harmful activity, it can turn out to be quite annoying, especially if you spend the majority of your day browsing the web. Ad-supported PUPs like Space...

Posted on May 25, 2015 in Adware

Ads By Man

Aggressive adware is a relatively standard PC threat nowadays, mainly because there are countless of techniques that adware may use to deploy itself to your computer. One of the most commonly used techniques involved bundled software, and this is one of the main reasons why adware infections are so common today. Ads By Man is another new piece of adware that may trouble users who were unlucky enough to install this adware while installing useful, cost-free software. If you see advertisements, banners, and pop-ups that are accompanied by text saying "Ads By Man", you probably have adware installed on your computer. While adware can't perform any harmful activities, its presence can be quite annoying as it may ruin your online experience by flooding your web browser with ads, pop-ups, banners, and other elements used in online advertising. Apart from this, Ads By Man may also drop a...

Posted on May 25, 2015 in Adware


Win32.Agent.BJ is a dangerous computer threat that is part of the Win32.Agent family of trojans. Win32.Agent.BJ is a Trojan downloader that may be deployed to your computer when you open a spam email attachment, download pirated software, or when you acquire files and applications from untrustworthy websites. Trojans such as Win32.Agent.BJ may be propagated via several techniques, so it is nearly impossible to point out all the actions that might get your computer infected with Win32.Agent.BJ. Once Win32.Agent.BJ has been deployed to a computer, it may place itself in various system folders, staying silent and undetected for as long as possible. The Trojan downloader may then be activated to download its payload to the computer – the payload may include additional malware, PUPs, or low-level PC threats. This turns Win32.Agent.BJ into a severe threat, so we advise you to get rid...

Posted on May 25, 2015 in Trojans
1 2 3 4 5 6 7 8 9 10 11 927