x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Encyclopedia GetVirusCard True 0

coolsites

 
Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:coolsites
Technical name:JS/Coolsites.A@mm
Threat level:Low
Type:Worm
Effects:   It spreads and affects other computers. It does not spread automatically using its own means.
Detection updated on:Nov. 13, 2002
StatisticsNo

Brief Description 

    

JS/Coolsites.A@mm is a worm written in Java Script, that exploits a security hole found in Microsoft VM affecting several versions of MS IExplorer (4.x and 5.x SP1). The worm, which uses e-mail to propagate, is not included in any attachments, but tricks the user into visiting a web page, which will trigger the viral code.

Visible Symptoms 

    

The worm empties MS Outlook's Sent Items tray in order to conceal its activities.
 
JS/Coolsites.A@mm also replaces Internet Explorer's start page with a web page with pornographic contents (located in the domain http://balder.prohosting.com - user name: mic124).