Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 2,043,928 -2%
2 Conduit Search/Toolbar 1,400,535 -1%
3 PUP.SupTab 901,744 -1%
4 Adware.SuperWeb 871,113 -2%
5 PUP.InstallCore 863,859 -1%
6 PUP.Optimizer Pro 816,597 -1%
7 Adware.Multiplug 712,317 -2%
8 Hijacker 638,316 -0%
9 Adware.LinkSwift 635,299 0%
10 Iminent Toolbar 633,528 -1%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles


LaSuperba may be associated with numerous problems that may be caused by PUPs (Potentially Unwanted Programs). LaSuperba may interrupt the computer users' activities when browsing the Web and cause performance problems on affected Web browsers. LaSuperba is linked to an adware that may affect most commonly used Web browsers on the Windows operating system, including Internet Explorer, Mozilla Firefox and Google Chrome. LaSuperba advertisements may take the form of irritating pop-up messages that make it very difficult to use the affected Web browser. In most cases, removing adware associated with LaSuperba will stop LaSuperba advertisements from appearing on affected Web browsers. However, most adware infections do not come alone; the presence of one adware component may indicate the presence of others, all of which may be connected with LaSuperba and similar unwanted content....

Posted on August 31, 2015 in Adware

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans

The site acts as a redirect-gateway for a browser hijacker that may land on your machine as a browser plug-in, add-on, extension and Browser Helper Object. Computer users that are infected with the browser hijacker report that there may be many pop-up windows and new tab pages loaded in their browser whenever they surf the Internet. The browser hijacker may run as a background process and reroute your Internet traffic to earn revenue for its developers. The browser redirects via may lead users to underground forums, illegal drugs, phishing pages and badware like Glomatron and DriverUpdate . Additionally, the users that are having problems with may notice that the online shop is set as their new tab page and...

Posted on February 11, 2016 in Browser Hijackers

Dealnj Ads

The Dealnj browser add-on is promoted at and free software bundles as 'a light-weight browser extension that simply shows you better deals before you shop online.' You should not be too hasty with the installation of the Dealnj browser add-on because it is an adware. Security experts note that the Dealnj adware is very similar to DealMan , DealXplorer and DealHut in name and functionality. The Dealnj adware may claim to have versions for Mac OS X, Chrome OS, and Linux but it has versions only for Windows. The Dealnj adware may be compatible with modern Web browsers and is built on the Crossrider platform. The Dealnj adware is designed to run as a portable program which means that it will not show up on your 'Programs and Features' panel and Add-ons Manager. The Dealnj adware may use JavaScript and ActionScript to load marketing materials on pop-up windows, banners,...

Posted on February 11, 2016 in Adware


The Win32/Hadsruda!bit detection can be seen in reports by AV scanners and Web filters and is used to specify a Potentially Unwanted Program (PUP). The Hadsruda program may have been introduced into your system when you handled a freeware setup file with the 'Express' or 'Typical' option. Win32/Hadsruda!bit might host its files in the AppData and ProgramData directory that advanced users should know that store program settings—not installation files. The Hadsruda program may hide its main executable among INI and CNF files to prevent detection and operate unhindered. The Hadsruda program may use ActionScript to show sponsored commercials in your browsers. AV vendors reveal that the variants of Win32/Hadsruda!bit rely on the Adobe Flash Player to load commercial content in the browser and may block native ads on pages you load. The ads by Win32/Hadsruda!bit may not be...

Posted on February 11, 2016 in Trojans


The WeatherTab software that is owned and operated by Techbrio Inc. may arrive on your computer incorporated with badware like Hyper Browser and Gemius . The WeatherTab software is advertised on as an instrument that can provide weather forecast for sports events in Formula 1, NCAA Football, NFL Football and Obstacle Runs. All the users need to do to benefit from WeatherTab is to enter the ZIP code of their area and email address to receive updates via email. However, that is not the complete functionality of the WeatherTab software. The WeatherTab application is recognized as adware and can be compared to the Weather Grind adware. Security researchers note that the WeatherTab adware may use your email and IP address to send you targeted advertising content and earn affiliate marketing revenue while your inbox is filled with spam. Moreover, the operators of the...

Posted on February 11, 2016 in Rogue Anti-Spyware Program

AnyFlix Ads

The AnyFlix software is promoted at as an independent video entertaining database for PC users in Australia, and you may start to wonder what does AnyFlix offer compared to Netflix. The AnyFlix program is adware, and the first thing AnyFlix may offer is a lot of ads in your browser. Also, the AnyFlix adware may provide links to Presto, iTunes, IMDB and Rotten Tomatoes. The AnyFlix adware is similar to MediaNewTab and NewTabTV Plus and may welcome users to improve their video rendering capabilities by installing sponsored video plug-ins and claiming pay-per-install revenue. The AnyFlix adware may arrive on your PC incorporated with free program installers, and you may notice its icon in the tray area during system startup. Security analysts note that the AnyFlix adware is related to CloudGuard and DNS Unlocker and may record your clicks online and your search...

Posted on February 11, 2016 in Adware

Computer users that experience pop-up windows by are infected with a browser hijacker. The site is not operated by legitimate advertisers and is a redirect-gateway to sponsored content. The browser hijacker may redirect users to unsafe Web pages and welcome you to install badware such as iMeshMusicBoxTB and JlnJln Staging . The browser hijacker may have landed on your computer bundled with a free audio player and video codec. The browser hijacker may appear as an add-on, plug-in, extension, and Browser Helper Object in your Internet browser. The browser hijacker may not be listed in the 'Control Panel.' Security analysts reveal that the browser hijacker may edit the DNS settings on your system to enable its operations. Moreover, the browser hijacker may disable your...

Posted on February 11, 2016 in Browser Hijackers

Microfast PC

Microfast PC from Optimum Software Technology Inc. is supposed to be recommended by leading IT experts according to its website, but it is recognized by security researchers as a Potentially Unwanted Program (PUP). Optimum Software Technology Inc. Microfast PC may be dispersed with the help of free software packages and may start with your OS due to a key in your Windows Registry. Microfast PC may launch a free scan for errors and surprise you with an absurd number of detected errors. Users who voluntarily, or not, install the Microfast PC optimizer will be directed to click the button 'CONTINUE TO FIX' and will be asked to pay $29,97 for a premium subscription. However, Microfast PC may use red icons to create a sense of urgency to potential customers, but the problems it detects may not exist, and you could pay for unneeded assistance. Optimum Software Technology Inc. does not...

Posted on February 10, 2016 in Possibly Unwanted Program is a domain that is detected as harmful be several Web filters and is associated with a browser hijacker. The browser hijacker is designed to redirect the search operations of infected users to a custom-made Yahoo engine operated by advertisers. The browser hijacker may change your default search provider with and set it as your homepage. Moreover, the may feature an ad-field below the search bar that may be used by advertisers to attract your attention with promotions and special deals. The browser hijacker related to may show banners and pop-windows with sponsored marketing content. The domain may invite you to install riskware such as AdGazelle and AntiAdBlocker that may decrease your computer performance and increase Web pages...

Posted on February 10, 2016 in Browser Hijackers


The Dinihou malware falls into the category of worms, which are threats to computer networks and can replicate themselves. The Dinihou malware is used by cyber crooks to collect information about the software and hardware configuration of infected computers and send it to their servers for analysis. The Dinihou malware is distributed via corrupted USB drives and ZIP files that upon an attempt to unzip would infect the user's PC. The Worm.VBS.Dinihou malware is capable of compromising 32-bit and 64-bit Windows systems and can download and run threatening code if instructed to. The Dinihou worm is known to utilize the Windows tool wscript.exe to facilitate some of its operations, and it may have edited your Windows Registry to run at system startup. The Dinihou malware may use a corrupted Microsoft Excel document to host its code and execute its operations. Malware researchers reveal...

Posted on February 10, 2016 in Worms


Security researchers use the term 'Infostealer Trojan' when talking about Trojans that are coded for the purpose of collecting valuable information. As a valuable information are considered: credentials for online banking portals, social media, IM clients, security certificates and PC games. An Infostelaer Trojan can record data like phone numbers and social security numbers too. Computer users could be interested to know that the Infostealer Trojan family of malware consists of keyloggers, screen grabbers and POS malware. Members of the Infostealer Trojan family include BlackPOS, Dyreza , Zeus Keylogger and Bartalex that are used by con artists to obtain valuable data. The Infostelaer Trojans are distributed via spam campaigns and Trojan droppers predominantly. Infostealer Trojans can monitor your Internet activities and detect communications with baking websites and social...

Posted on February 10, 2016 in Trojans

IRS Reveals Details on Recent Automated Attack Attempting to Generate 400K E-filing PINs

It's about that time of year again, time to settle on a tax amount owed to you from Uncle Sam or, in the case of those less fortunate, pay up taxes that are due. It's also the time of year that hackers and cybercrooks to start to seek out victims by leveraging the IRS tax season, which they have already had a jump on the idea by attempting to generate over 400,000 E-filing PINs through a cyberattack last month. The IRS has been a rather large target for hackers and cybercrooks around the world. Ever since the IRS made it possible to file your taxes through the Internet cybercrooks have found methods to exploit transmitted data or victimize unsuspecting computer users through spam messages or phishing sites . Reported through an IRS statement released this week, the agency is saying that an unknown perpetrator initiated an attack that turned out to abuse the E-filing PIN...

Posted on February 10, 2016 in Computer Security

Computer users that notice that their homepage and search provider have been changed to may want to check their 'Control Panel' for the MPC Cleaner and MPC AdCleaner programs. Both programs come with a browser plug-in called MPC Safe Navigation that is associated with You may have installed the software from DotCash Limited along with a free audio and video player. The MPC Safe Navigation plug-in might edit your browser's settings to change your default start page and search provider to That way, the developers of the MPC Cleaner and MPC AdCleaner programs can earn affiliate marketing revenue by providing sponsored search results and commercials on while you surf the Internet. Computer experts recognize MPC Cleaner, and MPC AdCleaner as Potentially Unwanted Programs (PUPs) and the MPC Safe Navigation plug-in might prevent...

Posted on February 10, 2016 in Browser Hijackers


Malware researchers alert that there is a new Backdoor-Trojan targeting Skype users that is propagated via phishing emails. The phishing emails that are loaded with the T9000 malware may appear to be sent from Microsoft and feature a subject line that says your Skype account may be at risk. The phishing emails may feature visual elements from, but you should not download the attached files or click on links inside. The T9000 malware is known to be packed as an RTF file that can be opened by Microsoft Office. The corrupted RTF document is loaded with a macro that exploits the CVE-2012-1856 and CVE-2015-1641 vulnerabilities in Microsoft Office to drop an executable in the Temporary folder under Windows and begin the installation. Malware researchers reveal that the backdoor Trojan T9000 has a multi-stage installation process that involves extraction and decryption of the...

Posted on February 10, 2016 in Trojans

Flexible Family Ads

The Flexible Family application is promoted on freeware bundles and as an excellent tool for you to find practical advice on how to help your family go through difficult times. The Flexible Family applications claim to provide tips on insurance, health, and education that may be useful to young and mature parents alike. You should know that the Flexible Family application is created by the infamous Informer Technologies, Inc. and is an adware that combines features from Healthy Days Hub and BabyMegs . The Flexible Family adware may show numerous ads in your browser to focus your attention on sponsored products and claim affiliate marketing revenue for its developers. Security investigators reveal that the Flexible Family adware may read information such as your IP address, software configuration, and bookmarks collection to generate tailor-suited ads. Computer...

Posted on February 10, 2016 in Adware

ListingsPortal Toolbar

The ListingsPortal Toolbar may be appealing to job seekers that want a quick access to Craigslist, Classifiels and coupons. The ListingsPortal Toolbar can be downloaded from or be installed via freeware bundles. You might want to know that the ListingsPortal Toolbar is developed by the infamous Mindspark Interactive Network, Inc. that spread browser hijackers, adware and riskware such as the Email Fanatic and the TotalComicBooks Toolbar . Users that installed the ListingsPortal Toolbar, intentionally or not, should take into consideration that it may display promotional materials in their Web browser and change their default search providers to The ListingsPortal Toolbar may cement the changes it makes via a Registry key and prevent users from managing several settings of their browser. Additionally, the ListingsPortal Toolbar will place its files in the...

Posted on February 9, 2016 in Possibly Unwanted Program
1 2 3 4 5 6 7 8 9 10 11 1,025