Windows Defender detects and removes this threat.

This threat uses your Internet browser to attack your PC and infect it with other malware. It belongs to the Blacole family of malware. 

Blacole trojans exploit a vulnerability in your Internet browser when you visit a malicious or hacked webpage.

A vulnerability is like a hole in your software. The hole is fixed by installing the available updates - this is why it is extremely important to keep all your software up to date.

There is more information in the links below:

• The exploit malware family
• Why should I update my software?

The family description for Trojan:JS/BlacoleRef also has more information about this threat.

Windows Defender detects and removes this threat.

You should also update your software to be fully protected.

BlacoleRef is a type of malware which tries to infect your PC with other malware, such as trojans and viruses.

It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit. 

See our page about exploits and learn how to update common software.

When you visit a malicious or compromised website, BlacoleRef scans your PC for vulnerabilities or weaknesses in your software.

You might visit the website from a link or attachment in an email, or from a previously safe website that has been hacked.

The threat uses those vulnerabilities it has found on your PC to download malware onto your PC:

Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.

Windows Defender detects and removes this threat.

You should also update your software to be fully protected.

This threat is a type of malware which tries to infect your computer with other malware, such as trojans and viruses.

It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit. 

See our page about exploits and learn how to update common software.

When you visit a malicious or compromised website, Blacole scans your computer for vulnerabilities or weaknesses in your software. It then uses those vulnerabilities to download malware onto your computer:

Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.

Windows Defender detects and removes this threat.

You should also update your software to be fully protected.

This threat is a type of malware which tries to infect your computer with other malware, such as trojans and viruses.

It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit. 

See our page about exploits and learn how to update common software.

When you visit a malicious or compromised website, Blacole scans your computer for vulnerabilities or weaknesses in your software. It then uses those vulnerabilities to download malware onto your computer:

Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.

Windows Defender detects and removes this threat.

You should also update your software to be fully protected.

BlacoleRef is a type of malware which tries to infect your PC with other malware, such as trojans and viruses.

It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit. 

See our page about exploits and learn how to update common software.

When you visit a malicious or compromised website, BlacoleRef scans your PC for vulnerabilities or weaknesses in your software.

You might visit the website from a link or attachment in an email, or from a previously safe website that has been hacked.

The threat uses those vulnerabilities it has found on your PC to download malware onto your PC:

Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.

Trojan:JS/BlacoleRef.CL is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".

Trojan:JS/BlacoleRef.CW is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".

Trojan:JS/BlacoleRef.CM is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".

Trojan:HTML/BlacoleRef.A is a malicious webpage used by the BlacoleRef family to infect your computer with other malware.

BlacoleRef is a type of malware which uses your Internet browser to attack your computer and infect it with other malware, such as trojans and viruses. It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit. 

Blacole attacks your computer by exploiting multiple vulnerabilities through your Internet browser.

A vulnerability is like a "hole" in your software that malware can use (or "exploit") to get on your computer. These vulnerabilities, or holes, are fixed by installing updates to the software; this is why it is extremely important to keep all of the programs on your computer up to date. See here for information on how to update some software.

Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.

For more information on this exploit kit, and for steps you can take to avoid your computer from being infected, please see the detailed Blacole description.

Install updates to prevent infection

The nature of this threat means that you may need to take some steps to prevent being vulnerable from this, and similar exploits.

Download updates for Adobe products from the following link:

• Updating Software

Take the following steps to protect yourself from vulnerabilities in Java and Oracle programs

1. Clear the Java cache
2. Update Java
3. Remove older versions of Java

Note: This detection may be triggered when you visit a website that contains the malicious code, even if you are not using a vulnerable version of Java. This does not mean that you have been compromised, rather that an attempt to compromise your computer has been made.

For detailed information about these steps, please see the Additional removal instructions below.

For more information about BlacoleRef, please see the Trojan:JS/BlacoleRef and Blacole family descriptions.

Trojan:HTML/BlacoleRef.B is a malicious HTML file used by the Blacole (Blackhole) exploit kit. If the file is loaded within a computer with a vulnerability exploited by Blacole, it may download and execute arbitrary files.

Trojan:JS/BlacoleRef.V is a malicious JavaScript that is used by an exploit kit known as "Blackhole". If the script is run within a vulnerable computer environment, it could lead to the download and execution of arbitrary files.

For more information about the Blackhole exploit kit, please see the description for "Blacole" elsewhere in the encyclopedia.

Trojan:JS/BlacoleRef.AP is a member of the BlacoleRef family, a familiy of obfuscated JavaScripts, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".

Trojan:JS/BlacoleRef.CT is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".

Trojan:JS/BlacoleRef.AK is a malicious JavaScript that is used by an exploit kit known as "Blackhole". If the script is run within a vulnerable computer environment, it could lead to the download and execution of arbitrary files.

Trojan:JS/BlacoleRef.A is a JavaScript trojan that modifies webpages by inserting malicious iFrames into HTML pages.

Trojan:JS/BlacoleRef.B is an obfuscated JavaScript trojan that loads hidden iFrames, and may be encountered through compromised websites.

Exploit:JS/BlacoleRef.D is a detection for obfuscated JavaScript often found distributed through compromised websites.

Trojan:JS/BlacoleRef.G is a JavaScript trojan that redirects the browser to a malicious website that contains an instance of the "Blackhole" exploit kit. The "Backhole" exploit kit may exploit vulnerabilities in certain software that may be installed the computer. If exploitation is successful, it could lead to the download and execution of arbitrary files.