We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
HTML/NeutrinoEK
Aliases: Neutrino exploit kit (other)
Summary
Windows Defender detects and removes this threat.
This threat family uses vulnerabilities in recent versions of Internet Explorer, Microsoft Silverlight, Adobe Flash Player, and Java to install malware on your PC. We have seen it try to install Ransom:Win32/Exxroute, Ransom:Win32/Cerber, and drop variants of Win32/Gamarue.
You might get this threat if you visit a malicious or hacked website, or click a malicious link in an email.
Use the following free Microsoft software to detect and remove this threat:
- Microsoft Defender Antivirus for Windows 10 and Windows 8.1, or Microsoft Security Essentials for Windows 7 and Windows Vista
- Microsoft Safety Scanner
You should also run a full scan. A full scan might find hidden malware.
Download and apply the security patches
Make sure that you download and install all of the available security patches of the affected software that you are using. You can read more about this vulnerability and download software updates from these links:
- CVE-2016-4117
- CVE-2016-1019
- CVE-2015-8651
- CVE-2015-7465
- CVE-2015-5122
- CVE-2015-5119
- CVE-2015-5122
- CVE-2015-2419
- CVE-2014-0569
- CVE-2014-6332
- CVE-2013-0431
- CVE-2013-1493
- CVE-2012-1723
- CVE-2013-2460
- CVE-2013-2465
- CVE-2013-2551
- CVE-2013-0074
- CVE-2013-2460
- CVE-2013-2465
You should remove older versions of Java because keeping old and unsupported versions of Java on your PC is a serious security risk.
If you continue to get alerted about this threat, deleting your temporary Java files can help:
It's also important to keep your other software up to date:
Update Windows
This threat also tries to exploit a vulnerability in Internet Explorer. Make sure Windows is updated by running Windows Update.
Use cloud protection
The Microsoft Active Protection Service (MAPS) uses cloud protection to help guard against the latest malware threats. It’s turned on by default for Microsoft Security Essentials and Windows Defender for Windows 10.
Get more help
You can also visit our advanced troubleshooting page or search the Microsoft virus and malware community for more help.
If you’re using Windows XP, see our Windows XP end of support page.
