Got the issue Trojan JS:Blacole-AV being reported in Quickbooks? Worrying about the confidential data might be stolen or destroyed in your Quickbooks? Tried all kinds of methods to eliminate it from your computer but seems to be out of effect? If so, this issue needs to be taken care of immediately to avoid possible economic loss, please don’t be discouraged, because reading this post will help you find the way to get out of the problem.

What is Trojan JS:Blacole-AV?

Trojan JS:Blacole-AV is a tricky Trojan virus widely spreading security risks effecting millions of computers that have old versions of Java installed on them, which If your computer runs then this virus will be downloaded onto your system. In common situations, web browsers ma acquire this virus by visiting malicious web pages. It can settle itself down in a certain computer without the user’s attention or awareness and then became a stealer of the user’s confidential data and personal information such as banking details, credit card numbers, social security numbers, private photos and videos that stored on the computer. You may also see the annoying pop ups when you log in your Quickbooks account. It’s just like someone breaks into your house watching and recording everything there. The threat aims to exploit vulnerability that known in Java runtime environment to sneak into the computer and reside there for very long time. Once it’s there, it will start various actions that can bring damages to your computer.

Since it can bring so many damages to your system, Trojan JS:Blacole-AV should be removed completely without any hesitation from your computer as soon as possible before it can bring further damages. But this virus is very stubborn and pretty difficult to remove because no anti-virus programs are able to kill it successfully up to now. As the most effective solution, manual removal needs expert skills so it’s only feasible for advanced users. If you think you are skilled and experienced enough on computer and software issue, you can try to follow the following guide to remove this virus by yourself.

If you need any help, Live Chat with YooSecurity Experts Now , or you can follow our step-by-step virus removal instruction below to clean the virus yourself. (For advanced computer users)

Best Way to Remove Trojan JS:Blacole-AV Step by Step:

Firstly, please restart your computer and get in Safe Mode with Networking:

Please follow these steps to get rid of Trojan JS:Blacole-AV manually:
Step 1: Press CTRL+ALT+DEL or CTRL+SHIFT+ESC. Open the Windows Task Manager.
If that didn’t work, try another way. Press the Start button and click on the Run option. This will start the Run tool. Type in task-mgr and press OK. This should start the Windows Task Manager.

Step 2: Within the Windows Task Manager click on the Processes tab. Find the process by name. random.exe related to Trojan JS:Blacole-AV. Then scroll the list to find required process. Select it with your mouse or keyboard and click on the End Process button. This will kill the process.

Video Show You on How to Modify or Change Windows Registry:

Step3: Remove malicious files of Trojan JS:Blacole-AV.

C:\windows\system32\services.exe
C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
C:\Windows\Installer\{bbee3ba2-89af-930c-bb78-1fb4e17db3cc}

Step4: Delete malicious registry entries of Trojan JS:Blacole-AV.

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\Random.exe
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Random.exe
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer
“EnableShellExecuteHooks”= 1 (0x1)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\Random.exe

Note: This article just offer an reference of possible solution to clean the Trojan JS:Blacole-AV for advanced and experienced computer users. Because the hackers create and update the virus from time to time, also the tricky virus may changes all the time and disguises itself, therefore it may happens that you can’t find and kill it completely according our step-by-step instructions. Meanwhile, the manual removal of virus needs expert skills. If you haven’t sufficient expertise in dealing with PC issues, especially in dealing with program files, processes, .dll files and registry entries, it is not recommended to try it yourself, because any mistake may lead to fatal damage to your system.

If you can’t clean the virus successfully with the instruction above, you’re welcome to consult YooSecurity certified agents to fix the problem.

Published by Michael Myn & last updated on November 27, 2012 6:56 am

Leave a Reply