Troj/Psyme-R is a HTML based script which exploits the ADODB stream vulnerability associated with Microsoft Internet Explorer to download and run executables.
Troj/Psyme-R attempts to download an executable from a remote location to C:\Program Files\Internet Explorer\IESEARCH.EXE, replacing any existing copies of this file, and then tries to execute IESEARCH.EXE.
Variants of this Trojan are known to download Troj/Small-HI.
The Troj/Psyme-R HTML page may arrive on the computer via web pages that exploit the MSITS vulnerability associated with Microsoft Internet Explorer. Such web pages will contain links pointing to a remote CHM file (compiled HTML help file format) which contains the Troj/Psyme-R HTML.