Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 2,043,928 -2%
2 Conduit Search/Toolbar 1,400,535 -1%
3 PUP.SupTab 901,744 -1%
4 Adware.SuperWeb 871,113 -2%
5 PUP.InstallCore 863,859 -1%
6 PUP.Optimizer Pro 816,597 -1%
7 Adware.Multiplug 712,317 -2%
8 Hijacker 638,316 -0%
9 Adware.LinkSwift 635,299 0%
10 Iminent Toolbar 633,528 -1%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles


LaSuperba may be associated with numerous problems that may be caused by PUPs (Potentially Unwanted Programs). LaSuperba may interrupt the computer users' activities when browsing the Web and cause performance problems on affected Web browsers. LaSuperba is linked to an adware that may affect most commonly used Web browsers on the Windows operating system, including Internet Explorer, Mozilla Firefox and Google Chrome. LaSuperba advertisements may take the form of irritating pop-up messages that make it very difficult to use the affected Web browser. In most cases, removing adware associated with LaSuperba will stop LaSuperba advertisements from appearing on affected Web browsers. However, most adware infections do not come alone; the presence of one adware component may indicate the presence of others, all of which may be connected with LaSuperba and similar unwanted content....

Posted on August 31, 2015 in Adware

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans

Microfast PC

Microfast PC from Optimum Software Technology Inc. is supposed to be recommended by leading IT experts according to its website, but it is recognized by security researchers as a Potentially Unwanted Program (PUP). Optimum Software Technology Inc. Microfast PC may be dispersed with the help of free software packages and may start with your OS due to a key in your Windows Registry. Microfast PC may launch a free scan for errors and surprise you with an absurd number of detected errors. Users who voluntarily, or not, install the Microfast PC optimizer will be directed to click the button 'CONTINUE TO FIX' and will be asked to pay $29,97 for a premium subscription. However, Microfast PC may use red icons to create a sense of urgency to potential customers, but the problems it detects may not exist, and you could pay for unneeded assistance. Optimum Software Technology Inc. does not...

Posted on February 10, 2016 in Possibly Unwanted Program is a domain that is detected as harmful be several Web filters and is associated with a browser hijacker. The browser hijacker is designed to redirect the search operations of infected users to a custom-made Yahoo engine operated by advertisers. The browser hijacker may change your default search provider with and set it as your homepage. Moreover, the may feature an ad-field below the search bar that may be used by advertisers to attract your attention with promotions and special deals. The browser hijacker related to may show banners and pop-windows with sponsored marketing content. The domain may invite you to install riskware such as AdGazelle and AntiAdBlocker that may decrease your computer performance and increase Web pages...

Posted on February 10, 2016 in Browser Hijackers


The Dinihou malware falls into the category of worms, which are threats to computer networks and can replicate themselves. The Dinihou malware is used by cyber crooks to collect information about the software and hardware configuration of infected computers and send it to their servers for analysis. The Dinihou malware is distributed via corrupted USB drives and ZIP files that upon an attempt to unzip would infect the user's PC. The Worm.VBS.Dinihou malware is capable of compromising 32-bit and 64-bit Windows systems and can download and run threatening code if instructed to. The Dinihou worm is known to utilize the Windows tool wscript.exe to facilitate some of its operations, and it may have edited your Windows Registry to run at system startup. The Dinihou malware may use a corrupted Microsoft Excel document to host its code and execute its operations. Malware researchers reveal...

Posted on February 10, 2016 in Worms


Security researchers use the term 'Infostealer Trojan' when talking about Trojans that are coded for the purpose of collecting valuable information. As a valuable information are considered: credentials for online banking portals, social media, IM clients, security certificates and PC games. An Infostelaer Trojan can record data like phone numbers and social security numbers too. Computer users could be interested to know that the Infostealer Trojan family of malware consists of keyloggers, screen grabbers and POS malware. Members of the Infostealer Trojan family include BlackPOS, Dyreza , Zeus Keylogger and Bartalex that are used by con artists to obtain valuable data. The Infostelaer Trojans are distributed via spam campaigns and Trojan droppers predominantly. Infostealer Trojans can monitor your Internet activities and detect communications with baking websites and social...

Posted on February 10, 2016 in Trojans

Computer users that notice that their homepage and search provider have been changed to may want to check their 'Control Panel' for the MPC Cleaner and MPC AdCleaner programs. Both programs come with a browser plug-in called MPC Safe Navigation that is associated with You may have installed the software from DotCash Limited along with a free audio and video player. The MPC Safe Navigation plug-in might edit your browser's settings to change your default start page and search provider to That way, the developers of the MPC Cleaner and MPC AdCleaner programs can earn affiliate marketing revenue by providing sponsored search results and commercials on while you surf the Internet. Computer experts recognize MPC Cleaner, and MPC AdCleaner as Potentially Unwanted Programs (PUPs) and the MPC Safe Navigation plug-in might prevent...

Posted on February 10, 2016 in Browser Hijackers


Malware researchers alert that there is a new Backdoor-Trojan targeting Skype users that is propagated via phishing emails. The phishing emails that are loaded with the T9000 malware may appear to be sent from Microsoft and feature a subject line that says your Skype account may be at risk. The phishing emails may feature visual elements from, but you should not download the attached files or click on links inside. The T9000 malware is known to be packed as an RTF file that can be opened by Microsoft Office. The corrupted RTF document is loaded with a macro that exploits the CVE-2012-1856 and CVE-2015-1641 vulnerabilities in Microsoft Office to drop an executable in the Temporary folder under Windows and begin the installation. Malware researchers reveal that the backdoor Trojan T9000 has a multi-stage installation process that involves extraction and decryption of the...

Posted on February 10, 2016 in Trojans

ListingsPortal Toolbar

The ListingsPortal Toolbar may be appealing to job seekers that want a quick access to Craigslist, Classifiels and coupons. The ListingsPortal Toolbar can be downloaded from or be installed via freeware bundles. You might want to know that the ListingsPortal Toolbar is developed by the infamous Mindspark Interactive Network, Inc. that spread browser hijackers, adware and riskware such as the Email Fanatic and the TotalComicBooks Toolbar . Users that installed the ListingsPortal Toolbar, intentionally or not, should take into consideration that it may display promotional materials in their Web browser and change their default search providers to The ListingsPortal Toolbar may cement the changes it makes via a Registry key and prevent users from managing several settings of their browser. Additionally, the ListingsPortal Toolbar will place its files in the...

Posted on February 9, 2016 in Possibly Unwanted Program

BestBackground Toolbar

The BestBackground Toolbar claims to allow users to search their family ancestry, build a family tree for free and enhance their new tab page. The BestBackground Toolbar can be downloaded from its official page at or be installed along with free program installers. The BestBackground Toolbar is developed by Mindspark Interactive Network, Inc. that created the Productivity Boss Toolbar and the WebmailWorld Toolbar . Both of the aforementioned applications fall into the category of badware, may hijack your browser and show numerous advertisements. Therefore, you should not be surprised that the BestBackground Toolbar is perceived as a Potentially Unwanted Program (PUP) that may not fulfill your needs and decrease your browser performance. The BestBackground Toolbar is supported by advertisements that may take the form of full-page ads, pop-ups and banners. The...

Posted on February 9, 2016 in Possibly Unwanted Program


The Extenbro Trojan is a piece of malware that cyber crooks use to breach the security layers of Web browsers and may affect Google Chrome as early as version 37. The Extenbro Trojan is deployed on low-quality software distribution platforms and suspicious alternatives to the Chrome Web Store. The Extenbro malware may corrupt the update DLL library of your browser and direct you to download a fake update package. The Extenbro Trojan may lead users to install a corrupted version of Google Chrome that is being monitored and controlled by con artists. The Extenbro malware may allow third parties to hijack your social media log-ins and record online banking credentials. Users affected by Extenbro might lose control of their online accounts and lose money. Moreover, the fake updates facilitated by the Extenbro Trojan may contain other threats like CryptoWall , Cidex , and Mybios ....

Posted on February 9, 2016 in Trojans

PlantsVsZombies by Surf Island

The Plants Vs. Zombies original franchise from Electronic Arts Inc. has a free-to-play alternative named PlantsVsZombies by Surf Island Solutions that allows players to enjoy the original game with a similar graphic design. However, the PlantsVsZombies clone by Surf Island is supported by advertisers to ensure continuous development and its free-to-play model. Gamers playing PlantsVsZombies by Surf Island Solutions may wish to know that advertisers will use it to load many ads while they surf the Internet. PlantsVsZombies by Surf Island Solutions can be acquired from its official Web page or may be installed through a free games bundle. The PlantsVsZombies clone will be introduced as an Adobe Flash game that is an SWF file, and will be located in the hidden ProgramData folder that is used by Windows to store program settings. Security experts add that PlantsVsZombies by Surf...

Posted on February 9, 2016 in Possibly Unwanted Program

U.S. Government Vows to Greatly Increase Cybersecurity Spending

Most of us know firsthand what happens to our green grass when we don't water it. Not only does it start to turn brown and look ugly, but it has a high chance of dying or being attacked by fungus and bugs. Funny enough, the same can be said about cybersecurity and the funding provided to promote better online security for consumers and companies in America. To help address the mounting cybersecurity issues that continue to plague the American front , the U.S. Government is planning to greatly increase cybersecurity spending. A new plan, addressed by President Barack Obama this week, proposes a sharp increase in cybersecurity spending to the tune of a $3.1 billion fund to help replace outdated IT infrastructures. The money will be put to good use, first appointing a new position of a federal chief information security officer, recruitment of cybersecurity experts into government...

Posted on February 9, 2016 in Computer Security

OneDayWeather Ads

The OneDayWeather application is published by JNCMarketing CO., LTD and may be deployed to PC users via free software installers. The OneDayWeather application is advertised as a tool for users that need to travel every day and need an accurate weather forecast to plan their trip properly. Unfortunately, the OneDayWeather application is an adware, and its main objective is to bombard users with advertisements to earn pay-per-click revenue for its developers. The ads by OneDayWeather may come in the form of banners, in-line hyperlinks to sponsored pages, pop-up and pop-under windows. The OneDayWeather adware is similar to Weather Grind and Weather Wizard and may read your IP address to base its advertisements on your local weather and climate. The ads by OneDayWeather may be dominated by clothing and premium smartphones that may be of bad quality. Users are not advised to buy...

Posted on February 9, 2016 in Adware

Coupon Clear Ads

The Coupon Clear browser plug-in is advertised on as one of the best shopping helpers on the Internet, which is guaranteed to give you access to exclusive promotions, freebies, paid surveys and discounts. While that may be true, the Coupon Clear shopping helper is an adware that is developed by Informer Technologies Inc. and my clutter your desktop with excessive pop-up windows. The Coupon Clear adware may arrive on your PC bundled with free programs such as HighliteApp and iWON Toolbar . The Coupon Clear adware may install its files in the hidden PorgramData folder, and most users may not notice it. Security researchers note that the Coupon Clear adware may be compatible with Internet Explorer, Opera, Google Chrome and Mozilla Firefox. Additionally, the Coupon Clear adware may use Web beacons, tracking cookies and DOM storage data to gather information about...

Posted on February 9, 2016 in Adware

PickPlus Ads

The PickPlus software is published by JNCMarketing CO., LTD and is offered to users via freeware packages as an RSS feed reader that will help users keep up with news from Google, BBC, CNN and ABC. The PickPlus software also can be encountered with the name PickPlusUP on software distribution platforms and may include features such as support for social media sharing. However, the PickPlus program is an adware that may cover your browser surface with pop-up windows and banners to present users with commercial content from sponsors. The PickPlusUp adware may appear as a browser extension, add-on, plug-in, and Browser Helper Object in your Add-ons Manager to enable its operations. Security analysts note that the PickPlus adware may use ActionScript to display its offers in your browser, redirect users to harmful domains, and open several tab pages when you open product pages on Amazon...

Posted on February 9, 2016 in Adware

Pop Bubbles Ads

The Pop Bubbles ads in your browser may not be legitimate ads from the sites you visit. The Pop Bubbles ads may be generated by an adware application on your PC. The Pop Bubbles adware has an official page that does not feature information on who developed Pop Bubbles and how to remove it, except for the short slogan 'Have a blast on the Web with Pop Bubbles!' The Pop Bubbles adware is a program that is dispersed among users via freeware bundles and may be suggested to you as a search enhancer for Google, Yandex and Bing. You may have been promised that the Pop Bubbles app would provide search results in video and image format in addition to text results. However, the main goal of the Pop Bubbles adware is to push marketing materials in the Web browser of infected users and claim affiliate marketing revenue for its developers. The Pop Bubbles adware is very similar to Coupons and...

Posted on February 9, 2016 in Adware
1 2 3 4 5 6 7 8 9 10 11 1,025