Also detected as:
Your browser might try to open a webpage to the following server: dsnetservices/?epl=.
However, there are no other particularly common symptoms associated with this threat - links are activated within IFrames while viewing web content on maliciously modified pages.
Windows Defender detects and removes this threat.
You get alerts about this trojan when you visit a website that loads content from other sites. This external content could infect your PC with malware.
Find out ways that malware can get on your PC.
Use the following free Microsoft software to detect and remove this threat:
You should also run a full scan. A full scan might find other, hidden malware.
This threat might be present in your Temporary Internet Files folder. We recommend that you delete your temporary Internet files to prevent the persistent detection of this threat.
You can also see our advanced troubleshooting page for more help.
If you’re using Windows XP, see our Windows XP end of support page.
You might be alerted about this trojan when you visit a site that loads content from other sites. This external content could infect you with malware.
If you are the admin or owner of a site that is being detected with this trojan, we recommend you check that you do not have links to old or obsolete servers or URLs.
Earlier variants of Seedabutor were spread through compromised webpages, emails and downloaded by other malware.
When you open your browser and try to visit a website the trojan will redirect your browser to dsnetservices/?epl=.
It might also load an Iframe referring to a domain with its own name, for example <self domain>?epl=.
Analysis by Methusela Cebrian Ferrer
Take these steps to help prevent infection on your PC.
I want to...
Note: Your feedback is very important to us, however we do not respond to individual submissions through this channel.
If you require support, please visit the
Safety & Security Center.