JS/BlacoleRef
Windows Defender detects and removes this threat.
You should also update your software to be fully protected.
BlacoleRef is a type of malware which tries to infect your PC with other malware, such as trojans and viruses.
It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit.
See our page about exploits and learn how to update common software.
When you visit a malicious or compromised website, BlacoleRef scans your PC for vulnerabilities or weaknesses in your software.
You might visit the website from a link or attachment in an email, or from a previously safe website that has been hacked.
The threat uses those vulnerabilities it has found on your PC to download malware onto your PC:
Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.
Exploit:JS/BlacoleRef.D
Exploit:JS/BlacoleRef.D is a detection for obfuscated JavaScript often found distributed through compromised websites.
Trojan:JS/BlacoleRef.CT
Trojan:JS/BlacoleRef.CT is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".
Trojan:JS/BlacoleRef.CL
Trojan:JS/BlacoleRef.CL is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".
Trojan:JS/BlacoleRef.CW
Trojan:JS/BlacoleRef.CW is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".
Trojan:JS/BlacoleRef.CM
Trojan:JS/BlacoleRef.CM is a detection name for an obfuscated JavaScript, often found inserted into compromised websites. This threat is designed to load a hidden IFrame that loads behind the user's browser, redirecting it to an exploit server known as "Blackhole".
Trojan:HTML/BlacoleRef.A
Trojan:HTML/BlacoleRef.A is a malicious webpage used by the BlacoleRef family to infect your computer with other malware.
BlacoleRef is a type of malware which uses your Internet browser to attack your computer and infect it with other malware, such as trojans and viruses. It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit.
Blacole attacks your computer by exploiting multiple vulnerabilities through your Internet browser.
A vulnerability is like a "hole" in your software that malware can use (or "exploit") to get on your computer. These vulnerabilities, or holes, are fixed by installing updates to the software; this is why it is extremely important to keep all of the programs on your computer up to date. See here for information on how to update some software.
Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.
For more information on this exploit kit, and for steps you can take to avoid your computer from being infected, please see the detailed Blacole description.
Install updates to prevent infection
The nature of this threat means that you may need to take some steps to prevent being vulnerable from this, and similar exploits.
Download updates for Adobe products from the following link:
Take the following steps to protect yourself from vulnerabilities in Java and Oracle programs
Note: This detection may be triggered when you visit a website that contains the malicious code, even if you are not using a vulnerable version of Java. This does not mean that you have been compromised, rather that an attempt to compromise your computer has been made.
For detailed information about these steps, please see the Additional removal instructions below.
For more information about BlacoleRef, please see the Trojan:JS/BlacoleRef and Blacole family descriptions.
Trojan:JS/BlacoleRef.A
Trojan:JS/BlacoleRef.A is a JavaScript trojan that modifies webpages by inserting malicious iFrames into HTML pages.
Trojan:HTML/BlacoleRef.B
Trojan:HTML/BlacoleRef.B is a malicious HTML file used by the Blacole (Blackhole) exploit kit. If the file is loaded within a computer with a vulnerability exploited by Blacole, it may download and execute arbitrary files.
Trojan:JS/BlacoleRef
Windows Defender detects and removes this threat.
You should also update your software to be fully protected.
BlacoleRef is a type of malware which tries to infect your PC with other malware, such as trojans and viruses.
It belongs to the Blacole family of malware, which together are known as the Blacole (or "Blackhole") exploit kit.
See our page about exploits and learn how to update common software.
When you visit a malicious or compromised website, BlacoleRef scans your PC for vulnerabilities or weaknesses in your software.
You might visit the website from a link or attachment in an email, or from a previously safe website that has been hacked.
The threat uses those vulnerabilities it has found on your PC to download malware onto your PC:
Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.