Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 1,641,179 1%
2 Conduit Search/Toolbar 1,215,225 0%
3 PUP.InstallCore 814,396 3%
4 PUP.Optimizer Pro 784,306 0%
5 PUP.SupTab 748,456 1%
6 Hijacker 653,126 -1%
7 Adware.LinkSwift 639,549 -0%
8 V9 Redirect Virus 583,330 0%
9 Babylon Search/Toolbar 534,031 0%
10 Iminent Toolbar 453,168 1%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Warning: Over 20,000 Gmail, AOL, and Yahoo Email Accounts Hacked!
A major email security scam has taken place today where hackers compromised over 20,000 Gmail, AOL and Yahoo email accounts and posted the login details of them online. It is apparent that there is a phishing scheme happening where hackers are able to obtain thousands of login credentials from...

More Articles

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

Kovter Ransomware


The Kovter Ransomware is a malware threat that carries out a common Police Ransomware scam in order to steal money from unsuspecting computer users. The Kovter Ransomware is a relatively new Police Ransomware Trojan, first detected in 2013 in the wild. Like most Police Trojans, the Kovter Ransomware displays a fake message from the police intending to trick the victim into paying a 'penalty' in order to stay away from jail time. Like other Police Rasomware, the Kovter Ransomware has a Winlocker component that allows the Kovter Ransomware to block access to the infected computer. However, the main reason why the Kovter Ransomware has attracted the scrutiny of malware researchers is...

Posted on April 10, 2013 in Ransomware

CIBS Pol Virus (Ransomware)


The CIBS Pol Virus is a police ransomware Trojan that belongs to the Urusay family of malware. This police ransomware Trojan is classified as a Winlocker because it blocks access to the victim's computer by displaying a full-screen message that claims to be an alert from the police. CIBS Pol Virus is a well known scam that is in no way connected to the police force. Instead, the CIBS Pol Virus is used by criminals to scam inexperienced computer users so that they will hand over their money out of fear of prosecution, jail time and severe fines. If your access to your computer is blocked by the CIBS Pol Virus, ESG security researchers strongly advise against following the steps...

Posted on February 21, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Malware, Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans


Takegif is an adware application that may be added as a Web browser extension to the principal Web browsers available on the Web. Takegif may be consistent with Google Chrome, Internet Explorer and Mozilla Firefox. Takegif was produced to insert advertisements into visited Web pages. These unwanted advertisements may include banner advertisements, pop-up advertisements and hypertext links. Takegif also may display discount coupon offers. The advertisements displayed in your Web browser by Takegif may become very annoying since they may prevent you from having a normal browsing by covering the visited Web page. Computer user are offered countless free programs that may be very useful. If downloaded, some of these programs may install bundled adware and additional browser extensions. This is one of the ways Takegif may have entered your computer. The components of Takegif may change...

Posted on November 25, 2014 in Potentially Unwanted Programs


Looks like 'brick' is the new 'hot' word for adware developers. No matter if its name is BrickPreserver or BrickProvider, it is an adware-related program classified as a Possibly Unwanted Program by security analysts. BrickProvider is the last addition to this brotherhood. BrickProvider adware may disrupt your online browsing by displaying numerous, unwelcomed advertisements on your Web browser. BrickProvider may track your search preferences and terms and share it with remote servers. BrickProvider may interfere with the normal functionality of your computer. BrickProvider may enter your computer bundled with free software. BrickProvider adware should be removed with an anti-malware device.

Posted on November 25, 2014 in Potentially Unwanted Programs


FoxWebber is a Possibly Unwanted Program that is advertised as an online shopping tool. FoxWebber is adware that may display numerous advertisements on affected Web browsers. Some of the advertisements displayed by FoxWebber may be related to your online searches, but others may not be useful which may become an annoyance. The advertisements related to the search terms typed by the computer user may be generated by information that FoxWebber adware collects from the user's activities. Although FoxWebber may be installed by computer users voluntarily, FoxWebber most used intrusion method is through a technique called 'bundling' that consists in adding an adware program to the installation wizard of a free application. It is always recommended to remove PUPs and unwanted adware applications from affected computers as a safety measure.

Posted on November 25, 2014 in Adware


SoftwareEnhancer is a Possibly Unwanted Program that may enter your machine stealthily packed with other programs. SoftwareEnhancer is compatible with Google Chrome, Internet Explorer and Mozilla Firefox. Web browsers affected by SoftwareEnhancer adware may display disturbing advertisements, whether the computer user wants it or not. SoftwareEnhancer adware may keep track of the computer user activities and send the data to third parties. SoftwareEnhancer may disable your security-related programs and corrupt your Registry which will leave your computer unprotected. SoftwareEnhancer may cause your computer to run slow and even crash. To delete SoftwareEnhancer computer, users should use a malware removal utility.

Posted on November 25, 2014 in Potentially Unwanted Programs


BrickPreserver is a Possibly Unwanted Program. BrickPreserver may install itself as a browser extension on Internet Explorer, Mozilla Firefox and Google Chrome. BrickPreserver is associated with adware that, once installed, may display inline text and pop-up advertisements. These advertisements are unwanted and intrusive and may prevent computer users from accomplishing an important search result. The purpose of BrickPreserver advertisements is to expand advertisement clicks and the traffic to its sponsored websites. BrickPreserver advertisements may start being displayed out of nowhere since BrickPreserver may be installed with free applications automatically. It is advised to uninstall BrickPreserver from an affected computer since its presence may cause various problems.

Posted on November 25, 2014 in Potentially Unwanted Programs


SoftwareBooster is a Possibly Unwanted Program that may enter your computer bundled with free software. Computer users may allow the installation of adware or PUPs when they install a free application and do not uncheck the box that permits them to choose whether they want to allow the installation of additional programs. SoftwareBooster is associated with an adware that was developed as an advertisement platform; therefore, if SoftwareBooster is inserted on your PC you may get advertisements that will show up on the Web pages you are visiting. No matter what is your default Web browser, it may be affected by SoftwareBooster. Besides displaying unwanted advertisements, SoftwareBooster adware also may supervise and collect your browsing information, diminish your machine's performance and interrupt your activities.

Posted on November 25, 2014 in Potentially Unwanted Programs


If advertisements provided by SystemPreserver are being displayed on your Web browser, this means that your machine is sheltering an adware program. SystemPreserver's name does not give any hint that it may be a problematic tool. SystemPreserver is associated with adware and may display advertisements. Adware programs may be installed on your computer automatically, packed with another free software. When computer users install free programs without paying attention to its installation details, they may allow the installation of bundled programs such as SystemPreserver. It is not recommended to keep an adware program running on your computer. Adware may display tons of unwanted advertisements, collect information, slow down the affected machine and cause other problems.

Posted on November 25, 2014 in Potentially Unwanted Programs


Computer users that are infected by a threat named Trojan.Packed.kvt need to be aware that this is a very harmful Trojan infection. Trojan.Packed.kvt may invade a computer without any visible sign. Trojan.Packed.kvt may collect crucial information and transmit it to remote servers. Trojan.Packed.kvt may incapacitate security-related applications to prevent its detection and removal. Trojan.Packed.kvt may change your system settings including Web browser settings. Trojan.Packed.kvt may allow the entrance of additional threats on infected computers. The presence of Trojan.Packed.kvt may impact the performance of the affected machine, turning it slow and irresponsive. Another feature of Trojan.Packed.kvt is its capacity of changing its features which make detection of Trojan.Packed.kvt more difficult than normal. Security researchers are confident that using an automatic method is the...

Posted on November 25, 2014 in Trojans is a domain that has a normal and trustworthy appearance. In truth, is not a real search provider due to its probable association with an advertisement-generating adware and browser hijackers. The search results provided by may be inaccurate or may not match the computer user's search terms. These browser hijackers may lead computer users to unwanted, unsafe websites. After being affected by, any search results provided by a real search engine may be rerouted to unwelcomed websites in order to increase their traffic and make people click ads. Your Web page and search provider may be replaced by Affected computer users should get the aid of a dedicated and up-to-date anti-malware utility to scan their machines, eliminate browser hijackers and remove any changes made by...

Posted on November 24, 2014 in Browser Hijackers

Augmenter Ads

Augmenter is a Possibly Unwanted Program that once inside the targeted computer may modify its Web browser and desktop settings. Augmenter is associated with an adware application that may integrate your default Web browser through its browser extension. Whether your browser is Internet Explorer, Mozilla Firefox or Chrome, it may be compatible with Augmenter browser extension. Augmenter adware may replace the computer users' homepage and redirect their Web browsers to corrupted Web pages. Augmenter adware also may disable your installed security software. Computer users that want to have a clear and secure Web browsing should find and remove Augmenter and eliminate it from their computers for good.

Posted on November 24, 2014 in Adware


BrickBooster is a Possibly Unwanted Program that may display unwanted advertisements on Web pages visited by the computer user. The advertisements exhibited by BrickBooster may be intended to increase clicks and website traffic. Computer users may start being presented with BrickBooster advertisements if their machines are housing BrickBooster adware. BrickBooster may bring down the machine's performance and block out the computer's desktop with numerous advertisements that may appear on any visited site. BrickBooster may cause various system issues. BrickBooster may come packed with free software that computer users download from the Internet. If your machine has been affected by BrickBooster, some accessed websites may show highlighted words in its content. These highlighted words are not web-links; they may show BrickBooster advertisements if the mouse passes over it. Computer...

Posted on November 24, 2014 in Adware

Cgqqabiyy.exe *32

Cgqqabiyy.exe *32 is a Possibly Unwanted program that may be linked to a Trojan infection. Cgqqabiyy.exe *32 may alter your computer settings and use a big amount of system resources and memory usage that may harm your computer's performance. Cgqqabiyy.exe *32 may install other threats into an affected computer. Cgqqabiyy.exe *32 may install threatening codes and change crucial programs stealthily. Cgqqabiyy.exe *32 may find its way to your machine included on the installation of free software. It is why threat researchers do not get tired of recommending user to pay attention when installing a free program. Some of these programs may bring unwanted and possibly harmful applications such as Cgqqabiyy.exe *32.

Posted on November 24, 2014 in Potentially Unwanted Programs


Ekoblock is classified as an adware threat and a Potentially Unwanted Program that may display unwelcomed advertisements with the objective of possibly generating advertisement clicks and increase traffic to its sponsored websites. Ekoblock may add a plug-in or extension into Internet Explorer, Mozilla Firefox and Google Chrome Web browsers. Ekoblock may inject numerous advertisements from its affiliate advertising providers that may encompass inline text links, pop-up and banner advertisements. The continuous advertisements of Ekoblock may lead to the installation of insecure content that may encompass other adware and PUPs. Ekoblock may turn the affected computer into a slow and unresponsive machine. Although displaying some interesting advertisements, Ekoblock doesn't be worth the problems Ekoblock may cause on an affected computer.

Posted on November 24, 2014 in Adware


ExcitingApps is a browser extension from 50 on Red that injects advertisements into your default Web browser. ExcitingApps may be added to Mozilla Firefox, Internet Explorer and Google Chrome. ExcitingApps may be spread through bundling techniques, corrupted websites and spam email. ExcitingApps may make changes to your computer to be able of displaying its numerous advertisements. These changes may diminish the machines performance and cause crashes on certain applications by damaging its files. ExcitingApps numerous advertisements may disrupt your online browsing by covering a visited a Web page's content. ExcitingApps also may get your browsing data and share it with its sponsors. Affected computer users should delete ExcitingApps from their computers.

Posted on November 24, 2014 in Adware


If your screen is full of coupons, banners, deals and various advertisements displayed by LiveSoftAction, this is an indication that your system is housing an adware program. LiveSoftAction is rated as an adware-supported application that may be very irritating to computer users that are trying to accomplish some Internet-related task. LiveSoftAction advertisements may be very numerous, which may cause your machine to be slower than normal and irresponsive due to the amount of resources it consumes. When running a search, computer users may get a Web page totally covered by LiveSoftAction advertisements, and clicking on these advertisements, they may be directed to compromised websites. Security researchers advise computer users to get rid of LiveSoftAction-related adware as well as its components.

Posted on November 24, 2014 in Adware
1  2  3  4  5  6  7  8  9  10  11  12  next     total items: 12721