Exploit:JS/Coolex.A
Exploit:JS/Coolex.A is script contained within an exploit pack known as the "Cool Exploit Kit". It can install arbitrary malware on your computer, including variants from the Trojan:Win32/Reveton family of ransomware trojans that may lock your computer and demand payment of a supposed fine.
For more information on ransomware, please see our FAQs at http://www.microsoft.com/security/portal/Shared/Ransomware.aspx.
Exploit:JS/Coolex.D
Windows Defender detects and removes this threat.
Exploit:JS/Coolex.D is script contained within an exploit pack known as the "Cool exploit kit". It can install arbitrary malware on your computer through exploiting software vulnerabilities in Java version 7, update 17 and earlier.
As the Cool exploit kit and the Blacole exploit kit share malicious web page patterns and exploits, in some instances you might see Exploit:JS/Blacole detected on your computer alongside Exploit:JS/Coolex.D.
Ransom:Win32/Urausy
Windows Defender Antivirus detects and removes this threat.
This family of ransomware locks your PC and displays a full-screen message (commonly called a "lock screen").
It pretends to be from a national police force and tries to scare you into paying a fine to unlock your PC.
See the Technical information tab for examples of the lock screen.
It is distributed by various exploit kits, such as Blacole and Exploit:JS/Coolex.A, and is often disguised as an Adobe Flash installer or video file to trick you into downloading and running it.
You can read more on our ransomware page.