Windows Defender detects and removes this threat.

You should also update your software to be fully protected.

BlacoleRef is a type of malware which tries to infect your PC with other malware, such as trojans and viruses.

It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit. 

See our page about exploits and learn how to update common software.

When you visit a malicious or compromised website, BlacoleRef scans your PC for vulnerabilities or weaknesses in your software.

You might visit the website from a link or attachment in an email, or from a previously safe website that has been hacked.

The threat uses those vulnerabilities it has found on your PC to download malware onto your PC:

Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.

Trojan:JS/BlacoleRef.A is a JavaScript trojan that modifies webpages by inserting malicious iFrames into HTML pages.

Trojan:JS/BlacoleRef.B is an obfuscated JavaScript trojan that loads hidden iFrames, and may be encountered through compromised websites.

Trojan:JS/BlacoleRef.C is a malicious JavaScript that is used by an exploit kit known as "Blackhole". If the script is run within a vulnerable computer environment, it could lead the the download and execution of arbitrary files. 

Trojan:JS/BlacoleRef.G is a JavaScript trojan that redirects the browser to a malicious website that contains an instance of the "Blackhole" exploit kit. The "Backhole" exploit kit may exploit vulnerabilities in certain software that may be installed the computer. If exploitation is successful, it could lead to the download and execution of arbitrary files.

Trojan:JS/BlacoleRef.N is a malicious JavaScript that is used by an exploit kit known as "Blackhole". If the script is run within a vulnerable computer environment, it could lead to the download and execution of arbitrary files.

Trojan:JS/BlacoleRef.P is a malicious JavaScript that is used by an exploit kit known as "Blackhole". If the script is run within a vulnerable computer environment, it could lead to the download and execution of arbitrary files.

Trojan:JS/BlacoleRef.Q is a malicious JavaScript trojan that is used by an exploit kit known as "Blackhole". If the script is run within a vulnerable computer environment, it could lead to the download and execution of arbitrary files.