Exterminate It! Antimalware

malpedia

Known threats:700,085 Last Update:March 01, 12:55

Testimonials

Hi, thanks for the upadte!! It did the trick!!! Must tell you that I have never been this kind of satisfyed with any buy as I am with the Ext.it!! Thaks and I will recomend it anytime, anywhere!!!!

Sincerely Paul

Paul

File: SearchYa!.xml

Location of SearchYa!.xml and Associated Malware

Check whether SearchYa!.xml is present in the following locations:

Windows 2000, Windows XP, Windows Server 2003 specific SearchYa!.xml file locations:

  • C:\Documents And Settings\USER_NAME\Application Data\mozilla\firefox\profiles\[%PROFILE_FOLDER%]\searchPlugins\SearchYa!.xml

Windows Vista, Windows Server 2008, Windows 7, Windows 8 specific SearchYa!.xml file locations:

  • C:\Users\USER_NAME\AppData\Roaming\mozilla\firefox\profiles\[%PROFILE_FOLDER%]\searchPlugins\SearchYa!.xml

If you find SearchYa!.xml file in any of these locations, your computer is very likely to be infected with the following malware:

IMPORTANT: Malware files can be camouflaged with the same file names as legitimate files. The SearchYa!.xml file is associated with malware only if found in the locations listed above.

Notes:

Different Variations of SearchYa!.xml File^

File SizeFile Md5Last Seen
25076789174BC989371EB129474E033226A7Feb 17, 2015
9479D4C16121D56C3A64E569397290BFFA5Feb 17, 2015
23695812DF8FEF6F7C1D66D88659A11F56E1Feb 18, 2015
2403FBF145721EF3C64431EC7F1511E4BC23Mar 18, 2016
247940254C499A524E21E6E007CFCEC4A8A6Mar 30, 2016
2355AF38A11492A6541DE207FC21869EE560Apr 25, 2016
2419477E64ABA808C1D7FD47DFEEA0212AF1Jun 9, 2016
239765548E7326C1BB903A0EA9C586FB5111Jul 17, 2016
2415871FA35CF1C78208FCBD7A1DFFDAB6CFOct 14, 2016
2383D974BE9534BAF0D7127E5E82DAE138A8Dec 19, 2016
23632F6734CA7271638AA2D7DA92206ADAF7Jan 9, 2017
2355034CCD5553A21273FC7AABFC35677515Jan 16, 2017
8036C8E64413B5477335F4AB2D6B9CC071DApr 14, 2017
2385EBE94694A03F38297F1FFD8CCCA026B1Apr 15, 2017
237918554DE9B82CB3290058BD5689242326May 3, 2017

Why Is It Important to Remove Malware Files?^

It is imperative that you delete malware-associated files as soon as possible because they can be used - or are already being used - to inflict serious damage on your PC, including:

  • Disrupting the normal functioning of the operating system or rendering it completely useless.
  • Hijacking valuable private information (credit card numbers, passwords, PIN codes, etc.)
  • Directing all your Web searches to the same unwanted or malicious sites.
  • Dramatically slowing down your computer.
  • Gaining total control of your PC to spread viruses and trojans and send out spam.

How to Remove SearchYa!.xml^

  1. To enable deleting the SearchYa!.xml file, terminate the associated process in the Task Manager as follows:
    • Right-click in the Windows taskbar (a bar that appears along the bottom of the Windows screen) and select Task Manager on the menu.
    • In the Tasks Manager window, click the Processes tab.
    • On the Processes tab, select SearchYa!.xml and click End Process.
  2. Using your file explorer, browse to the file using the paths listed in Location of SearchYa!.xml and Associated Malware.
  3. Select the file and press SHIFT+Delete on the keyboard.
  4. Click Yes in the confirm deletion dialog box.
  5. Repeat steps 2-4 for each location listed in Location of SearchYa!.xml and Associated Malware.
  6. Notes:

    • The deletion of SearchYa!.xml will fail if it is locked; that is, it is in use by some application (Windows will display a corresponding message). For instructions on deleting locked files, see Deleting Locked Files.
    • The deletion of SearchYa!.xml will fail if your Windows uses the NT File System (NTFS) and you have no write rights for the file. Request your system administrator to grant you write rights for the file.

Deleting Locked Files^

You can delete locked files with the RemoveOnReboot utility. You can install the RemoveOnReboot utility from here.

After you delete a locked file, you need to delete all the references to the file in Windows registry.

To delete a locked file:

  1. Right-click on the file and select Send To -> Remove on Next Reboot on the menu.
  2. Restart your computer.

The file will be deleted on restart.

Note: In the case of complex viruses that can replicate themselves, malware files can reappear in the same locations even after you have deleted those files and restarted your computer. Exterminate It! Antimalware can effectively eradicate such viruses from your computer.

To remove all registry references to a SearchYa!.xml malware file:

  1. On the Windows Start menu, click Run.
  2. In the Open box, type regedit and click OK. The Registry Editor window opens.
  3. On the Edit menu, select Find.
  4. In the Find dialog box, type SearchYa!.xml. The name of the first found registry value referencing SearchYa!.xml is highlighted in the right pane of the Registry Editor window.
  5. Right-click the registry value name and select Delete on the menu.
  6. Click Yes in the Confirm Value Delete dialog box.
  7. To delete all other references to SearchYa!.xml, repeat steps 4-6.
IMPORTANT: Malware files can masquerade as legitimate files by using the same file names. To avoid deleting a harmless file, ensure that the Value column for the registry value displays exactly one of the paths listed in Location of SearchYa!.xml and Associated Malware.