We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
JS/Anogre
Aliases: No associated aliases
Summary
Microsoft security software detects and removes this family of threats.
This malware family looks for vulnerabilities in the following software:
- Java Development Kit and Java Runtime Environment
- Adobe Flash Player
- Microsoft True Type Font
If a vulnerability is found they can then download other malware onto your PC.
You can be redirected to a malicious or compromised website that hosts this threat as you browse the Internet or when you click a link in a spam email.
Our exploits page explains more about this type of threat.
You might get an alert about this threat even if you're not using vulnerable software. This is because we detect when a website tries to use the vulnerability, even if it isn't successful.
Use the following free Microsoft software to detect and remove this threat:
- Microsoft Defender Antivirus for Windows 10 and Windows 8.1, or Microsoft Security Essentials for Windows 7 and Windows Vista
- Microsoft Safety Scanner
You should also run a full scan. A full scan might find other, hidden malware.
Update Java
Make sure you install all available Java updates. You can read more about this vulnerability and download software updates from these links:
You should remove older versions of Java, as keeping old and unsupported versions of Java on your PC is a serious security risk:
If you continue to get alerted about this threat, deleting your temporary Java files can help:
It's also important to keep your other software up to date:
You can read about the Microsoft True Type Font vulnerability in Microsoft Security Advisory 2639658.
Get more help
You can also visit our advanced troubleshooting page or search the Microsoft virus and malware community for more help.
If you’re using Windows XP, see our Windows XP end of support page.