Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 1,987,167 0%
2 Conduit Search/Toolbar 1,419,337 -0%
3 PUP.SupTab 957,597 0%
4 PUP.InstallCore 878,302 0%
5 PUP.SuperWeb 851,196 1%
6 PUP.Optimizer Pro 841,944 -0%
7 Adware.Multiplug/Variant 760,525 -1%
8 Iminent Toolbar 666,869 -1%
9 Hijacker 639,484 0%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans

Ask App for InMind

The Ask App for InMind browser extension that users might find on the Chrome Web Store and freeware packages is associated with The Ask App for InMind is classified as a Potentially Unwanted Program (PUP) with adware capabilities that might disable the pop-up blocking feature that is built-in in your Web browser to focus your attention on sponsored content. When users install the Ask App for InMind extension, several changes might be applied to their browsing settings that include your default search engine, the homepage, new tab page, bookmarks and download location. The Ask App for InMind extension may change your default search engine and start page to Also, the Ask App for InMind extension may read your Internet history and download logs to customize the advertising content it displays. The Ask App for InMind extension might use pop-up and pop-under...

Posted on October 12, 2015 in Adware

GasGlance Toolbar

The GasGlance Toolbar is a potentially unwanted toolbar add-on that loads on popular Web browsers such as Internet Explorer, Mozilla Firefox or Google Chrome. The GasGlance Toolbar is distributed by the MindSpark Interactive Network. The GasGlance Toolbar may load on a system due to a previously downloaded and installed freeware application. The GasGlance Toolbar also may enter a computer through corrupted email attachment and advertisements, third-party toolbars and similar content. Once this happens, the GasGlance Toolbar may then cause your default homepage or default search engine to be redirected to a random site related to the GasGlance Toolbar. Using the GasGlance Toolbar you may be redirected to unwanted sites or provided with a customized search engine that returns results mixed with several advertisements and sponsored links. Search results displayed by GasGlance Toolbar...

Posted on October 12, 2015 in Browser Hijackers

Targetop Ads

The Targetop browser add-on may be offered to you as the ultimate shopping assistant that can present you with exclusive offers from Target, Best Buy, Amazon and eBay, but it is classified as adware. Security authorities warn users that the Targetop adware may arrive on their machines incorporated with a free program setup file and attach to Google Chrome, Mozilla Firefox and Internet Explorer. The Targetop adware is created by adware developers as an automated monetization engine that could bombard you with commercials and degenerate affiliate marketing revenue for its creators. Moreover, the Targetop adware may change your default search engine and homepage to and record your typed search keywords to show related promotional materials by sponsors. The Targetop adware might use JavaScript to inject additional advertisements on the pages loaded in your Web...

Posted on October 12, 2015 in Adware

CoupItOn Ads

The CoupItOn browser extension promises its users never let them miss deals, limited-time offers and exclusive coupons. The CoupItOn extension can be found at and might accompany free program installers under the 'Advanced' or 'Typical' option. The CoupItOn extension works similarly to Couponarific and Wild Wild West Coupon and is classified by security analysts as adware. The CoupItOn adware may place its files in the hidden ProgramData and AppData system folders that host user-specific settings from programs you installed. That is why adware developers program their products to be installed in the folders mentioned before to evade security scans. The CoupItOn adware may use an executable DLL file and link it to your Google Chrome, Internet Explorer and Mozilla Firefox via a registry in Windows. The CoupItOn adware might affect all browsers based on the Gecko,...

Posted on October 12, 2015 in Adware

MusicOptimizerLab Ads

The MusicOptimizerLab browser extension is another product by Tuto4PC that is recognized by security investigators as adware. The MusicOptimizerLab adware has an official site located on and may be promoted in freeware bundles as a tool to make your PC sound like a professional audio studio. Needless to say, users that are infected with the MusicOptimizerLab adware will not experience improved music playback and might be subjected to a constant stream of commercials. Tuto4PC products like MusicOptimizerLab, PackEditorTools and PCandMobileGames may cover your screen with commercials and use tracking cookies to perform behavioral marketing. The MusicOptimizerLab adware may edit your Windows Registry values to run as a background process and use JavaScript and CSS styles to show promotional materials on every page you visit. The MusicOptimizerLab adware may show...

Posted on October 12, 2015 in Adware

Download-Loads Ads

The Download-Loads application is a re-branded version of Fdownloader and Downloadme that might be offered to you as a download client that can manage torrent, HTTP and HTTPS downloads. The Download-Loads download client is similar to Get-a-Clip and RayDownload and may appear as a small toolbox that is placed in the top right corner of your browser window. The Download-Loads download client may appear as a browser extension, Plug-in, add-on and Browser Helper Object depending on your default Internet browser. Security analysts perceive the Download-Loads application as adware because it provides users with basic download management that is present in all major Web browsers and is dedicated to showing advertisements. The ads powered by the Download-Loads adware may take the form of banners at the top of pages you visit and in-text commercials that expand when you hover over...

Posted on October 12, 2015 in Adware

Steep TV Ads

The Steep TV application and the Steep.TV website are created and operated by Oaklane Media. The Steep TV application is perceived as adware that may be promoted to you as a video on demand service inside freeware packages. The Steep TV adware is known to build users-specific logs that might contain information like your bookmarks, most visited web pages, IP address, software and hardware configuration. These logs may include the search terms you type on Google, Yahoo and Bing. The Steep TV adware might show many pop-up windows when you visit sites like YouTube, Vimeo and Dailymotion to recommend sponsored content on the platform located on Steep.TB. The Steep TV adware may cause your browser to crash and slow down. The Steep TV adware may use tracking cookies and DOM storage data to customize its recommendations. Computer users that prefer adult rated video content may want to keep...

Posted on October 12, 2015 in Adware

’800-311-5943′ Pop-Ups

The 800-311-5943 phone number is associated with adware that displays fake Microsoft Windows Validation messages. The adware in question may show pop-up windows that are engineered to convince users that their Windows OS is not legitimate. Moreover, the '800-311-5943' pop-ups may lead you to believe that a cyber threat have compromised your PC and is causing 00XB10999 errors. These types of messages may be linked to and users should not trust them. The adware associated with the 800-311-5943 phone number may have landed on your PC as a browser toolbar, extension, add-on and Browser Helper Object that was incorporated to a free program setup file. Security experts alert that the 800-311-5943 phone number is not associated with legitimate technical support services, and users are not advised to call 800-311-5943. The '800-311-5943' pop-ups may be facilitated by...

Posted on October 12, 2015 in Adware

‘’ Ransomware

The email address is associated with a trojan that falls in the category of cryptomalware a.k.a. ransomware. Malware researchers report that the ransomware has a heterogeneous spread, and its victims are compromised via trojan droppers attached to spam emails that may look as DOCX files. Additionally, the ransomware is deployed to users via exploit kits like Angler , HanJuan and Styx that are hosted on compromised sites and video sharing platforms for adult-rated content. The trojan is known to encrypt TXT, ZIP, DOC, DOCX, PPT, XML, HTML, JPEG, JPG, MSI, INF, RTF, CSV and XLX file types. The ransomware adds a customized string to the file extension of file according to the model . .id-[random ten digits]. Victims of the ransomware are suggested to write an email to...

Posted on October 12, 2015 in Ransomware


Leading security scanners detect the WeWatcherProxy application as adware that may use the RPCSS feature to alter the way other programs work. The WeWatcherProxy adware may have been offered to you as a service updater and security layer for your Google Chrome, Internet Explorer and Mozilla Firefox. The WeWatcherProxy adware may have arrived on your PC as an additional tool that was embedded with a free program installer. The WeWatcherProxy adware may use ActionScript3 and JavaScript to injects ads on the pages you visit most often. The ads by WeWatcherProxy may appear as banners, pop-up windows and ad-boxes. Moreover, the WeWatcherProxy adware may cause browser crashes and bring up error messages related to your DNS settings. The WeWatcherProxy adware may divert your Internet traffic through the servers of advertisers and earn affiliate marketing revenue for it developers. The...

Posted on October 12, 2015 in Adware

Emotypecon Ads

Emotypecon is a web browser extension that may seem fun and convenient to use, but we assure you that installing Emotypecon may not bring many fun features to your web browser. According to Tuto4PC, the software's developers, Emotypecon is a web browser extension that enhances the user's online experience by providing them with the ability to browse and use a broad range of smiley faces that can be inserted in forum posts, comments and online chats quickly. However, Emotypecon's emoticons are only visible if the receiving party has the extension installed, so as you can probably imagine not many people will see Emotypecon's smiley faces if you opt to use this extension. The questionable functionality isn't the only shady thing about Emotypecon. This browser add-on may also work as adware, so users who have it installed may see unwanted advertisements when they browse the web. The...

Posted on October 12, 2015 in Adware

EasyHomeDecorating Ads

EasyHomeDecorating Toolbar is a potentially unwanted toolbar that is developed and distributed by Mindspark Interactive. Mindspark Interactive's software products are well-known for their questionable reliability and for the fact that they may be propagated with the help of unfair techniques. The EasyHomeDecorating Toolbar may be compatible with most modern and widely used web browsers, so many users may add the EasyHomeDecorating Toolbar to their web browsers accidentally. The purpose of the toolbar is to provide users with a quick and convenient way to search the web for home decoration ideas, furniture, and other ornaments that can be used to enhance their homes’ appearance. However, the EasyHomeDecorating Toolbar also may affect your web browser's configuration by changing your default homepage and search engine. These changes may not be dangerous or harmful, but they may...

Posted on October 12, 2015 in Adware

PrintPDF Pro

PrintPDF Pro is a Potentially Unwanted Program (PUP) that is known to exhibit behavior typical for adware. The PrintPDF Pro software has been cleverly designed and developed to not raise any suspicions initially. In fact, if you take a look at the program's website and interface, you may think that PrintPDF Pro is, in fact, a legitimate and useful utility that can help both regular users and office workers who have to deal with PDF files and other digital documents regularly. According to the presentation published on PrintPDF Pro's website, this utility allows users to view quickly, create, edit and convert PDF files and other digital documents. Although the PrintPDF Pro software does exactly what it promises to, research shows that this application may rely on unfair propagation techniques whose primary purpose is to trick users into installing the PrintPDF Pro software unknowingly...

Posted on October 12, 2015 in Possibly Unwanted Program

ScrollUp Ads

Are you being bothered by 'ScrollUp Ads' or 'Ads by ScrollUp' while you browse the web? Advertisements labeled with one of these messages may have one source – the ScrollUp web browser extension. The ScrollUp application is nothing more than a low-level threat identified as adware. The purpose of ScrollUp is to spam the user's web browser with numerous advertisements and pop-ups that may promote various content, including applications, products and services. The content promoted via ScrollUp ads may contain links to harmful or malicious web destinations, so users that see ScrollUp ads should not click on them unless they are 100% sure that the URL they are about to visit is reliable. The ScrollUp adware may be distributed via unfair techniques such as software bundling and stealth installations. The ScrollUp application may be installed on the user's computers without their...

Posted on October 12, 2015 in Adware is a website that users may come across when they encounter common Windows error messages. The website claims to hold one of the largest databases of Windows errors and problems, as well as the best solutions to solve the issues. While some of the information published on may be true, this website may promote questionable utilities whose reputation is poor, to say the least. One of the computer repair tools that may promote is ReImage Repair, a questionable utility that may trouble users with messages regarding non-existent Windows problems. Apart from spamming users with error notifications, ReImage Repair also may attempt to convince users that purchasing the full version of the software is the only safe way to resolve the identified Windows problems. Although is mostly known for being used to distribute ReImage Repair, it is...

Posted on October 12, 2015 in Adware
1 2 3 4 5 6 7 8 9 10 11 979