Trojan:Win32/Chymine.A
Worm:Win32/Stuxnet.B
Exploit:Win32/Pdfjsc.FU
Exploit:Win32/Taro.H
Exploit:Java/CVE-2008-5353.DG
Exploit:Java/CVE-2009-3869.A
Exploit:Win32/Pdfjsc.HW
Exploit:JS/Belmoo
Exploit:Java/CVE-2008-5353.WW
Exploit:Win32/CVE-2010-2572.A
Exploit:Java/CVE-2010-0840.AL
Exploit:Java/CVE-2010-0840.BJ
Exploit:HTML/NeutrinoEK.I
Windows Defender detects and removes this threat.
This threat is a webpage that spreads the exploit kit known as Neutrino. See the HTML/NeutrinoEK family description for more information.
You PC is at risk of infection if you visit this webpage and you have vulnerable software installed on your PC.
You might be redirected to the malicious webpage without your consent.
Exploit:JS/Blacole
Microsoft security software detects and removes this family of threats.
You should also update your software to be fully protected.
These threats are part of the Blacole family of malware. For more information, see our Blacole family description.
Exploit:HTML/Sevdaq.C
Windows Defender detects and removes this threat.
This threat uses a JavaScript vulnerability to check your PC for security software. It then looks for certain information about your computer that might be used in a future attack. It uses the vulnerability described in CVE-2013-7331 to exploit your PC.
It runs when you visit a hacked or malicious website and you have a vulnerable version of Internet Explorer.
You might get an alert about this threat even if you're not using vulnerable software. This is because we detect when a website tries to use the vulnerability, even if it isn't successful.
See the Exploit:JS/Sevdaq family description for more information.
Exploit:Java/CVE-2008-5353.B
Exploit:Win32/Pdfjsc.FN
Exploit:Java/CVE-2010-0094.CY
Exploit:Python/CVE-2017-0143
Microsoft Defender Antivirus detects and removes this threat.
This detection covers compiled Python scripts that exploit a set of vulnerabilities fixed in the MS17-010 security bulletin. These vulnerabilities, which include CVE-2017-0144 (also known as EternalBlue) and CVE-2017-0145 (also known as EternalRomance), can allow the remote execution of custom code on unpatched machines.
Exploit:Win32/Pdfjsc.BC
Windows Defender detects and removes this threat.
This threat uses a vulnerability in some Adobe products to download and run files on your PC, including other malware.
It can run if you have a vulnerable version of Adobe on your PC and you visit a malicious website, or open a malicious PDF document attached to an email.
The following versions of Adobe Reader and Acrobat are vulnerable:
- 9.x before 9.5.5
- 10.x before 10.1.7
- 11.x before 11.0.03
You may get an alert about this threat even if you're not using a vulnerable software version. This is because we detect when an attempt is made to exploit this vulnerability, even if it isn't successful.
You can find more information about this threat on the CVE website or our page about exploits.