JS/Blacole.psak

JS/Blacole.psak is a drive-by-download exploit that attacks your web browser through JavaScript vulnerabilities. Like most other forms of drive-by-download attacks, JS/Blacole.psak can be adjusted to install many types of harmful programs, including keyloggers, Trojans and rogue security products. Recent JS/Blacole.psak attacks have come under the collective microscope of SpywareRemove.com malware analysts, due to the compromise of the laptopvirusrepair.co.uk website, which has been altered to redirect visitors to a site that uses the JS/Blacole.psak exploit. If you've accessed this website recently, you may also be infected by a JS/Blacole.psak-related PC threat, and you should scan your PC with an appropriate anti-malware program to be certain that your hard drive isn't infected.

JS/Blacole.psak – Shutting the Door That Invites Virtual Pests Inside Your PC

Variants of the JS/Blacole.psak exploit can be identified by a number of different names, including Exploit:JS/Blacole.A, JS/iFrame.ktv, JS/Redir.AQ, Trojan-Clicker.JS.Iframe.cz, Trojan-Clicker.JS.Iframe, Trojan.Webkit!html and Exploit:JS/Blacole.B, among others. JS/Blacole.psak is only capable of attacking Windows computers, although SpywareRemove.com malware experts have noted that JS/Blacole.psak is flexible enough to infect Windows from Windows 95 all the way up to Windows 7. Because JS/Blacole.psak is JavaScript-based, you can protect your PC by disabling JavaScript for websites that you distrust. Keeping JavaScript up-to-date will also reduce similar types of vulnerabilities although total elimination isn't feasible.

Unfortunately, even trustworthy and reputable sites like laptopvirusrepair.co.uk can be compromised by a JS/Blacole.psak attack. Laptopvirusrepair's compromise is embedded in the index code and will trigger automatically when you attempt to visit the site, although you may not see visible signs of a JS/Blacole.psak attack happening.

This particular version of JS/Blacole.psak redirects you to a subdomain of zdesestvareznezahodi.com, a website that has a confirmed history of trafficking with malicious software. Although JS/Blacole.psak can contain many types of payloads, the one that JS/Blacole.psak utilizes for laptopvirusrepair.co.uk is a dropper Trojan named Trojan-Downloader.JS.Agent.geo. Dropper Trojans are used to install other forms of harmful software and may also create serious security vulnerabilities, alter your system settings or even control your PC.

Don't Let One Visit to a JS/Blacole.psak-Compromised Site Take Over Your Computer

JS/Blacole.psak payloads and the payloads of associated Trojans can be very diverse, but SpywareRemove.com malware research team advises you to be on the lookout for dangers like the following if you've visited a JS/Blacole.psak-compromised site:

• Phishing sites that steal information by pretending to be fake contests, fake surveys or fake account login portals.
• Scamware sites that sell fake security programs, system cleaners or defraggers.
• Sites that offer fake search-enhancement toolbars (which are typically used to force you to redirect away from trustworthy search engine sites).

Nonetheless, all of the above PC threats should be treated in the same way – by using an anti-malware program to make certain that you've found and removed all JS/Blacole.psak payloads and then by avoiding such websites in the future. As for Laptopvirusrepair.co.uk, its reputation will have to remain tarnished until its code has been confirmed to be cleansed of JS/Blacole.psak.

Technical Details