Track Global Malware Trends
View the trending of malware based on the 'detection count' reports of threats found in infected PCs and volume levels which reflect malware infection rates. For real-time data on malware outbreaks worldwide, visit MalwareTracker.
Top 10 Malware Threats
Rank Malware Infected PCs %Change Trend
1 Adware Helpers 2,043,928 -2%
2 Conduit Search/Toolbar 1,400,535 -1%
3 PUP.SupTab 901,744 -1%
4 Adware.SuperWeb 871,113 -2%
5 PUP.InstallCore 863,859 -1%
6 PUP.Optimizer Pro 816,597 -1%
7 Adware.Multiplug 712,317 -2%
8 Hijacker 638,316 -0%
9 Adware.LinkSwift 635,299 0%
10 Iminent Toolbar 633,528 -1%
Download as CSV
More Info

Top Security News

Top 20 Countries Found to Have the Most Cybercrime
Have you ever wondered which countries face the most cybercrime? If you have ever wondered which countries have the most cybercrime, then you may be surprised to know that there are few contributing factors that attract cybercriminals to specific regions of the world. Security research firm,...
Gmail Filter Virus Attacks Gmail Users Turning Them Into Spammers
A new vulnerability within the Gmail email account system, called Gmail Filter Virus, is currently affecting some Gmail users taking control of their account turning it into a virtual spam proxy. Many Gmail account users will utilize the 'filters' feature for various automation functions in...
Crafty Scammers Offer a Fake Survey Bypassing Script That is Really a Survey Scam Campaign in Disguise
Just when you think that you have heard about some of the most clever scams online, cybercrooks amaze us all again as they introduce their very own solution to online survey scams. The people responsible for survey scams are not only still tricking computer users through the use of their annoying...

More Articles


LaSuperba may be associated with numerous problems that may be caused by PUPs (Potentially Unwanted Programs). LaSuperba may interrupt the computer users' activities when browsing the Web and cause performance problems on affected Web browsers. LaSuperba is linked to an adware that may affect most commonly used Web browsers on the Windows operating system, including Internet Explorer, Mozilla Firefox and Google Chrome. LaSuperba advertisements may take the form of irritating pop-up messages that make it very difficult to use the affected Web browser. In most cases, removing adware associated with LaSuperba will stop LaSuperba advertisements from appearing on affected Web browsers. However, most adware infections do not come alone; the presence of one adware component may indicate the presence of others, all of which may be connected with LaSuperba and similar unwanted content....

Posted on August 31, 2015 in Adware

VirLock Ransomware


The VirLock Ransomware is a ransomware Trojan that takes computers hostage and then demands payment from the computer users using BitCoin, a crypto-currency that is known for permitting anonymous online payments. The VirLock Ransomware will threaten computer users, claiming that the VirLock Ransomware has found pirated software on the infected computer and threatening to report the victim to the authorities unless the fine is paid. These claims have no basis. The VirLock Ransomware cannot check your computer for pirated software or alert the authorities. Rather, the VirLock Ransomware is engineered to lock down your computer and prevent access to your files. If the VirLock Ransomware...

Posted on December 10, 2014 in Ransomware

CryptoWall Ransomware


The CryptoWall Ransomware is a ransomware Trojan that carries the same strategy as a number of other encryption ransomware infections such as Cryptorbit Ransomware or CryptoLocker Ransomware . The CryptoWall Ransomware is designed to infect all versions of Windows, including Windows XP, Windows Vista, Windows 7 and Windows 8. As soon as the CryptoWall Ransomware infects a computer, the CryptoWall Ransomware uses the RSA2048 encryption to encrypt crucial files. Effectively, the CryptoWall Ransomware prevents computer users from accessing their data, which will be encrypted and out of reach. The CryptoWall Ransomware claims that it is necessary to pay $500 USD to recover the encrypted...

Posted on May 12, 2014 in Ransomware

CryptoLocker Ransomware


The CryptoLocker Trojan is a ransomware infection that encrypts the victim's files. CryptoLocker may typically be installed by another threat such as a Trojan downloader or a worm. Once CryptoLocker is installed, CryptoLocker will search for sensitive files on the victim's computer and encrypt them. Essentially, CryptoLocker takes the infected computer hostage by preventing access to any of the computer user's files. CryptoLocker then demands payment of a ransom to decrypt the infected files. CryptoLocker is quite harmful, and ESG security analysts strongly advise computer users to use an efficient, proven and updated anti-malware program to protect their computer from these types of...

Posted on September 11, 2013 in Ransomware

MyStart by Incredibar


MyStart is a browser hijacker that uses the MyStart by Incredibar toolbar and a browser hijacking component that forces its victims to visit the website. This website is a low-quality search engine that displays more advertisements than legitimate results. Even worse, several of MyStart's search results may lead computer users to websites containing malicious content. Although MyStart actually provides a supposed tool to remove this component from the victim's web browser, ESG security researchers recommend disregarding this component and instead removing MyStart with the help of a reputable anti-malware utility. MyStart can refer to both the low-quality...

Posted on July 31, 2012 in Adware

FBI Moneypak Ransomware


ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim's computer was involved in viewing child pornography and then demands payment of a 100 dollar 'fine' to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam. The FBI Moneypak ransomware scam will use a Winlocker, that is,...

Posted on June 25, 2012 in Ransomware

Live Security Platinum


Live Security Platinum is one of the many fake security programs in the WinWebSec family of malware. Although ESG security researchers have been following the family of malware for several years, Live Security Platinum is a relatively new variant first detected in 2012. Because of this, it is pivotal to ensure that your security software is fully updated. Like most fake security programs, Live Security Platinum is designed to induce PC users to purchase a worthless 'full version' of Live Security Platinum. To do this, Live Security Platinum will try to scare the computer user with a variety of fake error messages, pop-up alerts from the Taskbar and a convincing fake scan of the...

Posted on June 1, 2012 in Rogue Anti-Spyware Program

DNS Changer


DNS Changer is a Trojan that is designed to force a computer system to use rogue DNS servers. Also, DNS Changer is being referred to as the Internet Doomsday Virus, Ghost Click Malware, DNS Changer Rootkit, DNS Changer Malware, DNS Changer Trojan, DNS Changer Virus, FBI DNS Changer or DNSChanger. A DNS Changer infection will typically have two steps, in order to reroute the infected computer’s traffic to these malicious DNS servers: A DNS Changer malware infection will change the infected computer system’s settings, in order to replace the DNS servers to rogue DNS servers belonging to hackers or online criminals. The DNS Changer malware infection will then try to...

Posted on November 25, 2011 in Trojans

GigaDiet Ads

The GigaDiet software is advertised as a free-of-charge and user-friendly alternative to industry-level products like the Food Processor Nutrition Analysis and Fitness and Dietary Manager. PC users that read more about the GigaDiet software at will be surprised to find out that they can save money on healthy food. Unfortunately, GigaDiet is adware and might load a torrent of advertisements in your browser that can not be closed unless you wait up to twenty seconds. The GigaDiet adware is created by Informer Technologies, Inc. as a combination of features that are present in the Healthy Days Hub and StrataBeauty adware. GigaDiet is similar to the Diet Interactive adware and may place shortcuts to and on your desktop. You should not expect to receive helpful information from the GigaDiet adware because its main purpose is to earn affiliate marketing...

Posted on February 12, 2016 in Adware

Ads by Ads2

Do you experience pop-ups powered by Ads2? If you do, then you are infected with the Ads2 adware that is designed to show pop-up windows that are tailored to look like notifications from the sites you visit. The Ads2 adware is made to generate pay-per-click revenue for its developers while maintaining the appearance of a safe and legitimate browser extension. Security investigators note that the Ads2 adware is using offers from the trusted online store to claim affiliate marketing revenue. However, the Ads2 adware may redirect users to harmful Web pages and welcome users to install badware such as FastAgain PC Booster and HeadlineAlley Toolbar . The ads by Ads2 may look like notifications from the website you are at but can be recognized by their thick black borders, gray X button and the slogan 'Powered by Ads2.' Security investigators note that the ads by Ads2 are...

Posted on February 12, 2016 in Adware

Ads by Easy Current News Access

The Easy Current News Access browser extension that is found at and many freeware installers is adware. Security authorities reveal that the Easy Current News Access adware is developed by Informer Technologies, Inc. as the continuation of the My Current News XP Toolbar . Additionally, the Easy Current News Access adware may incorporate features that we have seen in DesktopNews and Easy Radio Access Toolbar . The Easy Current News Access adware may be promoted to users as a better alternative to GNews and Weather from that is cross-compatible as well. However, the Easy Current News Access adware does not encrypts its connections to the Internet and may be exposed to man-in-the-middle attacks. Users that are infected with the Easy Current News Access adware may be vulnerable to Malpack and Fobber . As stated above, the main...

Posted on February 12, 2016 in Adware

Ads by Native Info

The ads by Native Info that you may see accumulating on your screen are generated by an adware application on your system. The ads by Native Info may not be native to the Web pages you load and may include links to insecure sites. Moreover, the Native Info adware does not feature a digital certificate and the connections of Native Info to the Internet may be corrupted by third parties easily. Security researchers note that the Native Info adware may be a security vulnerability that may be exploited to gain remote access to your PC without notice. You may be puzzling over how you got infected with the Native Info adware and want to recall the last piece of freeware you installed. Adware such as the Native Info, Deal2Deal and Jointheshop may be spread among users via freeware bundles predominantly. The Native Info adware may use ActionScript to load commercials in your browser...

Posted on February 12, 2016 in Adware

Donation Reminder

The Donation Reminder browser extension is created and maintained by and can be found in the Chrome Web Store and freeware packages. The Donation Reminder browser extension is advertised as the perfect companion for users that want to save money while shopping online, and donate their saved money to charity. At users can find out more about the Donation Reminder and which charities they can support via the Donation Reminder extension. Computer experts note that the Donation Reminder extension is considered to be a Potentially Unwanted Program (PUP) because it may modify the way Google shows results and how Amazon is displayed. Web surfers that install the Donation Reminder extension may notice banners colored in blue that can take up to 30% of the results page at The banners from are crafted to...

Posted on February 12, 2016 in Possibly Unwanted Program

The site acts as a redirect-gateway for a browser hijacker that may land on your machine as a browser plug-in, add-on, extension and Browser Helper Object. Computer users that are infected with the browser hijacker report that there may be many pop-up windows and new tab pages loaded in their browser whenever they surf the Internet. The browser hijacker may run as a background process and reroute your Internet traffic to earn revenue for its developers. The browser redirects via may lead users to underground forums, illegal drugs, phishing pages and badware like Glomatron and DriverUpdate . Additionally, the users that are having problems with may notice that the online shop is set as their new tab page and...

Posted on February 11, 2016 in Browser Hijackers

Dealnj Ads

The Dealnj browser add-on is promoted at and free software bundles as 'a light-weight browser extension that simply shows you better deals before you shop online.' You should not be too hasty with the installation of the Dealnj browser add-on because it is an adware. Security experts note that the Dealnj adware is very similar to DealMan , DealXplorer and DealHut in name and functionality. The Dealnj adware may claim to have versions for Mac OS X, Chrome OS, and Linux but it has versions only for Windows. The Dealnj adware may be compatible with modern Web browsers and is built on the Crossrider platform. The Dealnj adware is designed to run as a portable program which means that it will not show up on your 'Programs and Features' panel and Add-ons Manager. The Dealnj adware may use JavaScript and ActionScript to load marketing materials on pop-up windows, banners,...

Posted on February 11, 2016 in Adware


The Win32/Hadsruda!bit detection can be seen in reports by AV scanners and Web filters and is used to specify a Potentially Unwanted Program (PUP). The Hadsruda program may have been introduced into your system when you handled a freeware setup file with the 'Express' or 'Typical' option. Win32/Hadsruda!bit might host its files in the AppData and ProgramData directory that advanced users should know that store program settings—not installation files. The Hadsruda program may hide its main executable among INI and CNF files to prevent detection and operate unhindered. The Hadsruda program may use ActionScript to show sponsored commercials in your browsers. AV vendors reveal that the variants of Win32/Hadsruda!bit rely on the Adobe Flash Player to load commercial content in the browser and may block native ads on pages you load. The ads by Win32/Hadsruda!bit may not be...

Posted on February 11, 2016 in Trojans


The WeatherTab software that is owned and operated by Techbrio Inc. may arrive on your computer incorporated with badware like Hyper Browser and Gemius . The WeatherTab software is advertised on as an instrument that can provide weather forecast for sports events in Formula 1, NCAA Football, NFL Football and Obstacle Runs. All the users need to do to benefit from WeatherTab is to enter the ZIP code of their area and email address to receive updates via email. However, that is not the complete functionality of the WeatherTab software. The WeatherTab application is recognized as adware and can be compared to the Weather Grind adware. Security researchers note that the WeatherTab adware may use your email and IP address to send you targeted advertising content and earn affiliate marketing revenue while your inbox is filled with spam. Moreover, the operators of the...

Posted on February 11, 2016 in Rogue Anti-Spyware Program

AnyFlix Ads

The AnyFlix software is promoted at as an independent video entertaining database for PC users in Australia, and you may start to wonder what does AnyFlix offer compared to Netflix. The AnyFlix program is adware, and the first thing AnyFlix may offer is a lot of ads in your browser. Also, the AnyFlix adware may provide links to Presto, iTunes, IMDB and Rotten Tomatoes. The AnyFlix adware is similar to MediaNewTab and NewTabTV Plus and may welcome users to improve their video rendering capabilities by installing sponsored video plug-ins and claiming pay-per-install revenue. The AnyFlix adware may arrive on your PC incorporated with free program installers, and you may notice its icon in the tray area during system startup. Security analysts note that the AnyFlix adware is related to CloudGuard and DNS Unlocker and may record your clicks online and your search...

Posted on February 11, 2016 in Adware

The URL is associated with unwanted advertising content. Numerous computer users have reported issues with adware that forces affected Web browsers to visit, redirect traffic to the URL, or display advertisements associated with In most cases, adware associated with also may be related to a Web browser extension or toolbar that may have been installed along with free software downloaded from the Web. Components associated with are not considered threatening. However, they may be responsible for numerous irritating symptoms on affected computers that can make it quite difficult to use the affected Web browser as normal. With this in mind, malware researchers strongly recommend that computer users remove any content associated with from their Web browser at once. Symptoms, Issues and...

Posted on February 11, 2016 in Browser Hijackers

Insurance Shine Ads

The Insurance Shine software may be of interest to users that have a lot of money at their disposal and want to invest in a business and protect their assets. You can find the Insurance Shine software at and software packages that are available on software distribution platforms at no cost. The Insurance Shine software is developed by Informer Technologies, Inc. as a combination of InvestorFire and Moneyzila . Security experts alert that the Insurance Shine program is an adware and may cover your screen with ads and decrease your browser performance significantly. The Insurance Shine adware may provide useful links to,, and on your desktop and bookmarks bar. However, the Insurance Shine adware should not be trusted, and PC users should avoid following the advice of Insurance Shine on how to manage their finances. The main...

Posted on February 11, 2016 in Adware

Microfast PC

Microfast PC from Optimum Software Technology Inc. is supposed to be recommended by leading IT experts according to its website, but it is recognized by security researchers as a Potentially Unwanted Program (PUP). Optimum Software Technology Inc. Microfast PC may be dispersed with the help of free software packages and may start with your OS due to a key in your Windows Registry. Microfast PC may launch a free scan for errors and surprise you with an absurd number of detected errors. Users who voluntarily, or not, install the Microfast PC optimizer will be directed to click the button 'CONTINUE TO FIX' and will be asked to pay $29,97 for a premium subscription. However, Microfast PC may use red icons to create a sense of urgency to potential customers, but the problems it detects may not exist, and you could pay for unneeded assistance. Optimum Software Technology Inc. does not...

Posted on February 10, 2016 in Possibly Unwanted Program is a domain that is detected as harmful be several Web filters and is associated with a browser hijacker. The browser hijacker is designed to redirect the search operations of infected users to a custom-made Yahoo engine operated by advertisers. The browser hijacker may change your default search provider with and set it as your homepage. Moreover, the may feature an ad-field below the search bar that may be used by advertisers to attract your attention with promotions and special deals. The browser hijacker related to may show banners and pop-windows with sponsored marketing content. The domain may invite you to install riskware such as AdGazelle and AntiAdBlocker that may decrease your computer performance and increase Web pages...

Posted on February 10, 2016 in Browser Hijackers


The Dinihou malware falls into the category of worms, which are threats to computer networks and can replicate themselves. The Dinihou malware is used by cyber crooks to collect information about the software and hardware configuration of infected computers and send it to their servers for analysis. The Dinihou malware is distributed via corrupted USB drives and ZIP files that upon an attempt to unzip would infect the user's PC. The Worm.VBS.Dinihou malware is capable of compromising 32-bit and 64-bit Windows systems and can download and run threatening code if instructed to. The Dinihou worm is known to utilize the Windows tool wscript.exe to facilitate some of its operations, and it may have edited your Windows Registry to run at system startup. The Dinihou malware may use a corrupted Microsoft Excel document to host its code and execute its operations. Malware researchers reveal...

Posted on February 10, 2016 in Worms
1 2 3 4 5 6 7 8 9 10 11 1,026