Trojan.Phel

Trojan.Phel is a Trojan horse that is distributed as a .html file and attempts to exploit the Microsoft Internet Explorer HTML Help Control Local Zone Security Restriction Bypass Vulnerability (described in Microsoft Security Bulletin MS05-001).

Note: This Trojan only runs successfully on Windows XP Service Pack 2.

Protection

• Initial Rapid Release version June 2, 2005
• Latest Rapid Release version November 13, 2009 revision 034
• Initial Daily Certified version June 2, 2005 revision 041
• Latest Daily Certified version November 13, 2009 revision 033
• Initial Weekly Certified release date June 2, 2005

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 0 - 49
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Moderate

Damage

• Damage Level: Low

Distribution

• Distribution Level: Low