Exploit:JS/Blacole.AT is a variant of JS/Blacole, JavaScript malware that consists of several exploits and is created by the "Blackhole" exploit kit. Exploit:JS/Blacole.AT is installed to compromised websites by an attacker. It attempts to exploit the following CVE vulnerabilities:

• CVE-2007-5659
• CVE-2009-0927
• CVE-2010-0886
• CVE-2010-1885
• CVE-2011-2110

Exploit:Win32/Pdfjsc.YX is a specially-crafted JavaScript, which exploits a vulnerability in the Java Runtime Environment, Adobe Acrobat, and Adobe Reader discussed in the following articles:

• CVE-2011-2110
• CVE-2010-0840
• CVE-2007-5659

Exploit:JS/Pdfjsc.PK is the detection for specially-crafted PDF files that attempt to exploit a software vulnerability in Adobe Acrobat and Adobe Reader. It connects to a remote server to download and possibly execute arbitrary files.

Microsoft Defender Antivirus detects and removes this threat.

Backdoor:Win32/Qakbot!lnk is a malicious shortcut file that exploits the vulnerability described in CVE-2010-2568 and resolved with the release of Microsoft Security Bulletin MS10-046. It infects your computer with another malware.

Update vulnerable applications

This threat exploits a known vulnerability described in CVE-2010-2568, in Windows. After removing this threat, make sure that you install the updates available from the vendor. You can read more about the vulnerability, as well as where to download the software update, in Microsoft Security Bulletin MS10-046.

For more information on this threat, read: Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks

Exploit:Win32/CVE-2011-0094.A is the detection for an JavaScript, which attempts to exploit a vulnerability in Internet Explorer.