Follow:

 

Trojan:JS/Seedabutor.B


Microsoft security software detects and removes this threat. 

This trojan can redirect your web browser to a different website than the one you expected.

It can be installed on your PC when you visit a hacked webpage, or downloaded by other malware.



What to do now

Use the following free Microsoft software to detect and remove this threat:

You should also run a full scan. A full scan might find other, hidden malware.

Delete temporary Internet files

This threat might be present in your Temporary Internet Files folder. We recommend that you delete your temporary Internet files to prevent the persistent detection of this threat.

Get more help

You can also see our advanced troubleshooting page for more help.

If you’re using Windows XP, see our Windows XP end of support page.

Threat behavior

Trojan:JS/Seedabutor.B is a JavaScript trojan that attempts to redirect your browser to another website.

If you visit a website with this malicious JavaScript, the browser is redirected to the following URL:

dsparking.com/?epl=

At the time of publishing, the server was inaccessible.

This JavaScript is usually found in webpages compromised through SQL Injection attacks or through Blackhat search engine optimization (SEO) poisoning. This detection might also be triggered if the webpage containing this script is stored in the browser's cache.

Analysis by Methusela Cebrian Ferrer


Symptoms

Your browser might attempt to open a webpage to the following server: dsparking.com/?epl=.

However, there are no common symptoms associated with this threat - links are activated within IFrameswhile viewing web content on maliciously modified pages.

Alerts from your security software may be the only symptom.


Prevention


Alert level: Severe
This entry was first published on: Jan 11, 2013
This entry was updated on: Aug 22, 2014

This threat is also detected as:
  • Trojan.JS.Redirector.xa (Kaspersky)
  • JS.Redirector.175 (Dr.Web)