Published Dec 07, 2011 | Updated Sep 15, 2017


Severe |Detected with Windows Defender Antivirus

Aliases: JS/Blacole.A (Command) Trojan.JS.QMJ (BitDefender) Trojan-Downloader.JS.DarDuk.dh (Kaspersky) Trojan.Malscript!html (Symantec)


Exploit:JS/Blacole.AE is a malicious JavaScript that attempts to exploit several vulnerabilities in Adobe Acrobat and Reader. If the exploit is successful in compromising a vulnerable host, it could result in downloading and executing other malware. Exploit:JS/Blacole.AE is a component of an exploit kit that is distributed as the "Blackhole exploit pack".

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:

For more information on antivirus software, see

Blacole exploits numerous vulnerabilities in applications including Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader. Install applicable updates available from the vendor as these software updates provided enhanced security and mitigate vulnerabilities. You can read more about the vulnerabilities targeted by this malware and where to download available software updates from the following links:

In addition to Microsoft Windows update, third-party applications are available to assist in maintaining software updates, which include enhancements and security updates, for applications such as Oracle Java, Sun Java and Adobe Acrobat and Reader.

Follow us