Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 2,068,444 -0%
2 Conduit Search/Toolbar 1,502,589 -1%
3 PUP.SupTab 1,077,202 -2%
4 PUP.InstallCore 905,485 -2%
5 PUP.SuperWeb 887,517 -2%
6 PUP.Optimizer Pro 886,080 -2%
7 Adware.Multiplug/Variant 865,562 -5%
8 Iminent Toolbar 744,729 -1%
9 Hijacker 642,122 -0%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Ukash Virus


The so-called Ukash Virus is a ransomware Trojan that receives its name because Ukash Virus requires that its victims use Ukash (a legitimate money transfer service) to transfer the ransom funds. This dangerous Trojan infection is composed of a Winlocker component that basically blocks access to the infected computer system, disabling access to the infected computer system's desktop, Task Manager, command line, Registry Editor and other services and applications. There are countless variants of the Ukash Virus, designed to target various different countries in Europe and North America. ESG malware analysts strongly advise against paying the ransom that this malware infection tries to...

Posted on June 15, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans

DiscountRatio Ads

DiscountRatio is a questionable browser extension that may appear in your web browser without your knowledge. The main reason for this is the fact that DiscountRatio isn't distributed via the official plugin repositories of popular web browsers. Instead, this ad-supported browser extension may be introduced into your system via the installation of bundled software that may ask you to install DiscountRation as an optional content. Unfortunately, many PC users don't pay enough attention when installing new software, so they might accidentally agree to install the DiscountRatio adware. Keep in mind that the DiscountRatio adware might be advertised as a helpful tool that can provide you with up-to-date information regarding online deals, sales, and promotions, but the tool is far from help when it comes to online shopping. This extension is responsible for the appearance of...

Posted on July 6, 2015 in Adware

Deals4Now Ads

Deals4Now Ads is another common piece of adware that has two primary purposes – to display advertisements and gather data regarding the user's browsing habits and online activity. The gathered information is anonymous, and it may be used to improve the quality of the ads displayed, or for other marketing purposes. The authors of Deals4Now may have opted to use software bundles as their software's main method of propagation. Thanks to software bundling, adware authors may attempt to install their software on thousands of computers worldwide. The Deals4Now adware may be packed within the installers of a broad range of freeware apps, so PC users must be extra cautious when downloading and installing cost-free software. The installation of Deals4Now isn't dangerous, but it may lead to an increase in the number of ads displayed in your browser, and the ads displayed by Deals4Now might...

Posted on July 6, 2015 in Adware

TakeOrLeave Ads

TakeOrLeave is your typical piece of adware that latches onto the user's web browser and starts executing its pre-made operations. TakeOrLeave is advertised as a useful web browser extension that can help users save money by providing them with good offers and deals that are collected from e-commerce websites across the web. This may make you believe that TakeOrLeave is indeed a great app when it comes to saving money from online shopping, but our research shows that TakeOrLeave isn't as good as most people think. The extension is ad-supported, so in many cases the users might also see a large number of ads displayed alongside the coupon and promotion information they want to see. Furthermore, in many cases the offered deals may be associated with shady websites or products that don't attract the user's interest, so the extension's helpfulness is quite questionable. TakeOrLeave...

Posted on July 6, 2015 in Adware

[RANDOM WORDS] is a questionable website whose name has mostly been associated with unwanted pop-ups and advertisements. Several users have reported seeing pop-ups associated with, so this may be a reason to believe that this web page might be related to adware. If you are one of the people that see pop-ups, we advise you to take a look at the applications you've recently installed. It is entirely possible that these pop-ups may be caused by a piece of adware that may have been installed alongside a free application you downloaded a few days ago. The adware related to may generate other pop-ups and ads as well, so its presence on your computer may certainly be noticeable. The pop-ups aren't known to lead users to potentially dangerous content, but we still recommend that you avoid opening any links...

Posted on July 6, 2015 in Browser Hijackers

Internet Quick Access

Internet Quick Access is a custom-made web browser that, according to its authors, should enhance the browsing experience of users by offering them better performance, more features, and enhanced security. However, our research showed that Internet Quick Access isn't anything special, and its features are pretty much common for modern web browsers. Furthermore, the Internet Quick Access browser may be associated with some instances of adware and browser hijacker, and the installation of this web browser may result in the sudden appearance of unwanted advertisements. By installing Internet Quick Access, users might also unknowingly change their default home page and search engine the ones specific by the browser's authors. Some of the questionable web pages associated with the modifications made by Internet Quick Access browser are and The Yahoo...

Posted on July 6, 2015 in Adware

Surf Speed Monitor

Surf Speed Monitor is a PC tool with a questionable reputation. According to its official website, Surf Speed Monitor is a handy little application that is supposed to provide users with information regarding their Internet speed and the quality of their connection. Surf Speed Monitor is, in fact, a legitimate application, and it can do exactly what it is supposed to do. However, users who opt to take a closer look at Surf Speed Monitor's privacy policy may reveal several disturbing facts: Surf Speed Monitor is an ad-supported application, and as such, it may inject some advertisements in the user's preferred web browser. Surf Speed Monitor may gather anonymous information regarding the user's online activities that may be used to improve the quality of the advertisements displayed, or may also be used for other marketing purposes. While these things aren't dangerous,...

Posted on July 6, 2015 in Adware

EasyDocMerge Toolbar

EasyDocMerge Toolbar is another potentially unwanted toolbar developed by the Mindspark Interactive Network. This publisher is well-known for being a source of some of the most widely spread toolbars on the web, and most of its products are known for being distributed by using questionable techniques. The EasyDocMerge toolbar is advertised to be a useful tool that provides users with a neat tool that can help them merge documents right from the comfort of their browser. All this can be achieved with a few clicks of the mouse buttons, but our security researchers have reasons to believe that the EasyDocMerge toolbar might not be as good as its authors claim. The EasyDocMerge toolbar is an ad-supported application, and as such, it may inject a vast number of advertisements and pop-ups in your web browser. The worst part is that these unwanted ads may appear on every website you...

Posted on July 6, 2015 in Browser Hijackers

BigGameCountdown Toolbar

BigGameCountdown toolbar is a part of the MindSpark family of toolbars. These toolbars have been quite popular on the web in recent years, and they may often accompany the installation of cost-free software that may be bundled with additional software to cover the cost of their development. The BigGameCountdown Toolbar is supposedly here to help you watch basketball matches online, as well as to provide you with the latest news and updates from the world of basketball. However, the toolbar might do this is an intrusive way, and its activities may be accompanied by some ads and promotions, so users might want to think twice before installing this toolbar. Many users might be misled into believing that this toolbar is useful because its installation may often be accompanied by positive ratings regarding its functionality and usefulness. However, you should remember that the...

Posted on July 6, 2015 in Browser Hijackers

CycloneCover Ads

CycloneCover is another simple piece of annoying adware that might be related to the JustPlugIt adware that has been troubling users. The purpose of CycloneCover, according to its authors, is to provide the user with an enhanced shopping experience by providing them with information regarding the best deals and bargains on the web. Unfortunately, CycloneCover isn't the magic app that can help you save money, and it is more likely to annoy you than to help you enjoy a better shopping spree. This adware is known to display advertisements labeled as CycloneCover Ads, and they may often include irrelevant content or false information regarding sales and promotions. The CycloneCover's authors state that their company is in no way associated with the ads displayed by the product. This leads us to the conclusion that CycloneCover is merely and advertising platform that 3rd-parties might...

Posted on July 6, 2015 in Possibly Unwanted Program is a questionable search engine that appears to be related with several instances of adware and browser hijackers. It is not uncommon for less popular websites like to use shady marketing techniques and tools to bring traffic to their website. If you are one of the thousands of people who've recently seen in your web browser, it is entirely possible that you might have a piece of adware or browser hijacker installed on your computer. These low-level threats may be used to change your favorite search engine and default home page to, thus redirecting you to this website each time you launch your web browser. We advise you to run a full system scan using a reputable anti-malware solution. This should help you get rid of the pesky PC threat that introduced to your web browser. Users should be aware that even the best anti-malware applications may...

Posted on July 6, 2015 in Browser Hijackers is a dubious website that is associated with a well-known online tech support scam. Users who visit this website may receive some warnings and alerts whose goal is to convince them that there is something wrong with their computer. These messages may often include misleading information regarding system errors, virus infections, and other common PC issues that inexperienced users might not be able to handle on their own. The goal of all this is to get you to call the promoted phone number that will supposedly get you in touch with a reputable tech support staff. Unfortunately, this isn't very likely, because the number promoted on is related to a number of other online scams, and the people who'll answer your call may try to take your money, personal information, or take control over your computer. These tech support scams may often...

Posted on July 6, 2015 in Adware

CoinSave Ads

The CoinSave software may appear on your 'Programs and Features' list after the installation of a free program via the 'Express' or 'Typical' option. You may want to know that CoinSave is advertised as an online shopping companion that can save money, but it is adware. The CoinCoinSave adware functions similarly to other adware like Bold Letters and My Deals Club may slow down your web browser as executes its activities. You may want to know that the CoinSave adware may use tracking cookies and DOM storage data to record what websites you visit and what resources you prefer. Security analysts note that CoinSave adware can use non-personally identifiable information like your browsing history to customize the marketing offers displayed on your browser surface. The CoinSave adware might show banners, pop-up windows, transparent layers with links to sponsors and inline ads. Security...

Posted on July 3, 2015 in Adware

FileSendSuite Toolbar

The FileSendSuite toolbar is another addition to the portfolio of Mindspark Interactive Network, Inc. that is dominated by adware, browser hijackers and low-quality toolbars. The FileSendSuite toolbar is spread among web surfers via freeware bundles and is advertised as a tool to enable users to share files easily. Needless to say, the FileSendSuite app may claim to be useful but it is adware and only redirects users to third-party services that it claims to provide. Security investigators note that the FileSendSuite adware can add its code to your Google Chrome, Mozilla Firefox, Internet Explorer and appear as a toolbar. However, the core functionality of the FileSendSuite adware is executed in a background process that allows it to track your browsing habits and download history. That way, the FileSendSuite adware can show targeted marketing promotions via banners, ad boxes, pop-up...

Posted on July 3, 2015 in Adware


The funny name and simple design combined with the promise of advanced video rendering capabilities may invite many users to install the YeaPlayer application. However, security experts recognize the YeaPlayer application as a Potentially Unwanted Program (PUP) with adware capabilities. The YeaPlayer application may be built upon the MPlayer Classic code, but it does not have built-in codecs and fails to live up to the challenge of other free video players on the market. Moreover, the YeaPlayer application is used by advertisers to push marketing materials in your browser. The YeaPlayer application is distributed through freeware packages and may be companied by adware and browser hijackers like the GoUnzip Toolbar and Continue To Save . The YeaPlayer functions similarly to MagnoPlayer and may add a browser plugin to your Internet client to display customized commercials loaded...

Posted on July 3, 2015 in Adware

Book Alter Ads

The ads by Book Alter in your browser are generated by an adware infection on your system. You may have installed the Book Alter adware via the 'Express' or 'Typical' option of a free software installer automatically. The Book Alter adware is programmed to evade detection and may place its files in the hidden Temp and Program Data folders of Windows that are typically used by applications to store settings configurations and temporary files. Security researchers note that the Book Alter adware might edit your Windows Registry and launch a background service to conduct its operations. The Book Alter adware may be linked to your browser via a registry key and can show ads every time you start an online session. Users that are infected with the Book Alter adware may experience banners, pop-ups windows, transitional full-page ads and see in-text hyperlinks to products and services on...

Posted on July 3, 2015 in Adware
1 2 3 4 5 6 7 8 9 10 11 943