Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 1,979,960 -4%
2 Conduit Search/Toolbar 1,525,268 -2%
3 PUP.SupTab 1,030,615 -7%
4 PUP.InstallCore 910,419 -6%
5 PUP.Optimizer Pro 899,015 -4%
6 PUP.SuperWeb 895,507 -6%
7 Adware.Multiplug/Variant 826,687 -7%
8 Iminent Toolbar 718,758 -2%
9 Hijacker 647,799 1%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans

Webbora Ads

The Webbora application is promoted on and freeware packages as a browser assistant but fails to clarify how it helps users. Security analysts point out that the Webbora application is adware dedicated to generating pay-per-click revenue for its developers. The Webbora application may appear on your 'Programs and Features' list in 'Control Panel' and might not have a functional uninstaller. As stated before, the Webbora program is adware, and its creators do not want users to remove it easily to earn as much affiliate revenue as possible. Security analysts note that the Webbora adware may attach a browser plugin to your Internet client to perform its operations. Users infected with the Webbora adware may experience pop-up and pop-under windows, banners, transitional commercials, floating ads and in-text hyperlinks to sponsored products. Additionally, the Webbora adware may...

Posted on May 22, 2015 in Adware

’855-981-9190′ Pop-Ups

The 855-981-9190 pop-up windows in your web browser are propelled by adware on your computer that aims to direct users to call 855-981-9190 and receive technical assistance from fake technicians. The 855-981-9190 pop-ups serve to scare users that they have a security breach and need to call for help. Users who called 855-981-9190 to report that they were instructed to install a remote desktop application and to allow supposedly legitimate technicians help them fix their problems. However, operations and services connected to adware are not considered as safe, and you are not advised to call 855-981-9190 and grant crooks remote access to your PC. Evil minded third parties that have access to your OS can steal data, and valuable user credentials as well as install cyber threats. Do not forget that the 855-981-9190 pop-ups are propelled by adware on your PC that may read your software...

Posted on May 22, 2015 in Adware

The domain is part of the ever-growing family of 'Websearch' browser hijackers that includes , , and . The domain has a poor design and features a search engine at the center and users affected by a browser hijacker can notice an ad field bellow the search bar. Also, the IP address of is used by other browser hijackers associated with , and . Security experts note that the browser hijacker may have arrived on your machine as a browser assistant during the installation of a free application. The browser hijacker associated with serves two purposes, and the first is to reroute web traffic and search...

Posted on May 22, 2015 in Browser Hijackers

CrushArcade Ads

The CrushArcade browser enhancer is ad-supported software that offers users to play free Flash games in exchange for their tolerance towards advertisements in their web browser. Security researchers perceive the CrushArcade application as a Potentially Unwanted Program (PUP) with adware capabilities because it places tracking cookies on your PC and monitors your bookmarks, browsing, and download history to generate tailor-suited ads. Additionally, the CrushArcade program is dispersed among users bundled with third-party software listed under the 'Advanced' or 'Typical' option. Often, the CrushArcade program is accompanied by adware like Webnexus , BrowseFox and CloverPlus that can decrease your PC performance and provide advertisers with data on your Internet habits. You should keep in mind that the apps promoted by CrushArcade might change your browser settings, show more ads...

Posted on May 22, 2015 in Adware


The Deals4Win application claims to give access to premium offers to active online buyers according to what and how much they purchase online. However, you might want to know that the Deals4Win application is adware and can turn your Internet client into a shopping mall. The Deals4Win adware is designed to push numerous marketing materials while you browse the Internet and users might experience pop-up, and pop-under windows loaded with discounts and coupons, banners, floating ad boxes and transitional commercials. The Deals4Win adware is spread among web surfers with the help of freeware bundles and may travel accompanied by other adware like PopDeals and PastaQuotes . Needless to say, the abundance of ads by Deals4Win may obstruct your activities and decrease your browser performance. Security analysts add that the Deals4Win adware may read your download history, record your...

Posted on May 22, 2015 in Adware

Masterdeals Ads

The Masterdeals browser widget (also seen as Master Deals) is compatible with Internet Explorer, Mozilla Firefox, and Google Chrome and may attract online buyers that search for coupons and discounts. The Masterdeals widget can manifest itself by presenting you with a pop-up window loaded with offers related to the nature of the website you are browsing. Additionally, users may experience unusual number of banners and in-text hyperlinks to sponsored content. The Masterdeals widget can read the metadata of websites you visit and use session and HTPP cookies to customize the offers it displays. Security experts deem the Masterdeals widget as adware because its primary goal is to divert a torrent of advertisements in your web browser and generate pay-per-click revenue for its developers. The Masterdeals adware may add a registry key in Windows to ensure its operations every time you turn...

Posted on May 22, 2015 in Adware

PlaySushi Ads


The website offers gamers to download the PlaySushi program that can turn their web browser into a Flash games platform, but you might want to know that the PlaySushi program is ad-supported. The PlaySushi program can appear in your Internet browser as a browser add-on, an extension, and a Browser Helper Object. Security analysts point out that Future Ads LLC. who operate the PlaySushi program earn affiliate revenue by bundling their product with third-party software that mostly consists of browser toolbars. You may want to know that PlaySushi could be accompanied by toolbars like Delta Chrome , Television Fanatic and the Yandex Toolbar that can change your browser...

Posted on May 22, 2015 in Adware


The ReadyCoupon software is deployed to users as a platform for discounts and special offers that online buyers may be interested in. The ReadyCoupon app can be found accompanying free software bundles when users explore the 'Custom' or 'Advanced' option. You may be interested to know that the interface of the ReadyCoupon program is a modified look of the MakeMeCoupon app. Both apps use square windows, a slider to the right side and two buttons at the bottom to accommodate the 'Settings' and 'What is this?' options. Security experts underline that ReadyCoupon and MakeMeCoupon are adware because they use tracking cookies and load numerous ads in your web browser. The ReadyCoupon adware is known to place its files in the AppData folder of Windows and to attach a browser extension, an add-on and a Browser Helper Object to Internet clients in order to perform its operations. Users who...

Posted on May 22, 2015 in Adware

New Malware Strains Recorded During Second Half of 2014 More Than Double in Volume

During the second half of 2014, studies have revealed that cybercrooks have doubled their efforts to produce and spread new strains of malware accounting to a growth rate of 125%. At one point in time, gas prices were like the malware rates, on a steady incline causing a serious worry for the general public in more ways than one. The major difference in the two is that malware strains and rates continue to rise to unprecedented rates increasing ever so slightly. Now, the influx of new malware strains seems to be the consistently rising statistic, one that can be counted on year-after-year to increase. There are several security companies that collect malware samples and examine new strains for the sake of keeping tabs on emerging threats in preparation to combat and remove them. The German security vendor, G Data SecurityLabs, has examined such data over the course of many...

Posted on May 21, 2015 in Computer Security

The domain is classified by security experts as harmful because it is associated with a browser hijacker that is programmed to redirect users to and change their browser settings. The website features pornographic content and parents might not want their children to use a PC infected with a browser hijacker that redirects users to The browser hijacker may have arrived on your computer as a browser enhancer part of a freeware package that most users install with the 'Express' or 'Typical' option. Security experts point out that the browser hijacker related to can insert a registry key in Windows to launch at boot-up and can use a background process to obstruct users from manually changing their browser settings. The browser hijacker can change your homepage, new tab settings and occasionally redirect your searches...

Posted on May 21, 2015 in Browser Hijackers

MG Suggestor

Security researchers report that the MG Suggestor application by MGShareware is a modified version of the Savvy Suggestor application by Think Tank Labs LLC. The MG Suggestor search assistant inherits the functionality of its predecessor and shows contextual based advertisements loaded in banners, pop-up windows and in-text hyperlinks to sponsored content. The users are notified of the operations performed by the MG Suggestor in the 'Terms of Service' agreement, but few bother to read it. Security researchers note that the MG Suggestor search assistant can be noticed listed under the 'Advanced' or 'Custom' option of freeware installers and can insert a registry key in Windows to boot at start-up. Additionally, the MG Suggestor application can read your browsing and download history, bookmarks and the metadata of web pages you visit in order to generate custom-made ads. One of the...

Posted on May 21, 2015 in Possibly Unwanted Program


The MarketCompare software is deployed to users as a shopping companion that can assist you in making the right purchases. The MarketCompare software has versions for Google Chrome, Mozilla Firefox and Internet Explorer that travel embedded with free software installers under the 'Advanced' or the 'Custom' option. However, users may want to know that security analysts perceive MarketCompare as adware because it uses aggressive marketing strategies. The MarketCompare adware pushes numerous banners, pop-up commercials, and ad boxes on your screen and can prevent you from a comfortable Internet experience. The MarketCompare adware functions similarly to Coupon Blaster and Coupon Monkey ? and might read you Internet history and bookmarks and use HTTP and session cookies to customize the marketing content deployed in your web browser. You should keep in mind that the MarketCompare...

Posted on May 21, 2015 in Adware


The MakeMeCoupon program claims to be the number one place for online shoppers that want coupons and discounts and can be acquired via freeware packages. The MakeMeCoupon program can be recognized by its square interface colored in brown and a scrollbar to the right side. Also, the MakeMeCoupon program may add a key in the registry to boot with Windows and start in your tray as a background process. Online shoppers may be interested to install the MakeMeCoupon program, but you may want to know that it is considered by security experts as adware. The MakeMeCoupon adware might attach a browser plug-in to your Internet client and use it to read your Internet history, record your search terms on Google and read the metadata of pages you visited. The data gathered by the MakeMeCoupon adware serves as a basis for advertisers affiliated with the MakeMeCoupon app to deliver you tailor-suited...

Posted on May 21, 2015 in Adware


KeepItBrowse is promoted as a browser plugin for Internet Explorer, Google Chrome and Mozilla Firefox that can help users download files more efficiently. However, security experts alert that the KeepItBrowsebrowser plugin is adware designed to push numerous marketing materials on your browser surface. The KeepItBrowse adware may appear on your 'Programs and Features' list after the installation of freeware via the 'Typical' or 'Express' option. The KeepItBrowse adware powered plug-in might present you with banners, ad boxes, pop-up and pop-under windows to generate pay-per-click revenue for its developers. Security experts note that the KeepItBrowse adware could use tracking cookies and read your Internet and download history in order to facilitate the display of related marketing content. Additionally, the KeepItBrowse adware may replace the native ads on trusted websites and...

Posted on May 21, 2015 in Adware

First Color

The general name of the First Color software attached to your Internet client should ring alarm bells to users because it is classified by security researchers as adware. The First Color adware is deployed to web surfers via freeware bundles that most users install via the 'Express' or 'Typical' option carelessly. The First Color adware functions as a monetization platform for adware developers to earn affiliate revenue from users clicking on ads by First Color. Security researchers note that the First Color adware may appear as a browser plugin, an extension, an add-on and a Browser Helper Object in order to perform its operations. Users affected by the First Color adware may experience many pop-up windows loaded with special offers, banners, and floating ad boxes loaded with discounts and coupons. Additionally, the First Color adware might use HTTP, session and Flash cookies to keep...

Posted on May 21, 2015 in Adware
1 2 3 4 5 6 7 8 9 10 11 926