Exterminate It! Antimalware

malpedia

Known threats:700,085 Last Update:March 01, 12:55

Testimonials

A lot of the smart viruses and Trojan horses today try really hard and prevent you form going to the main anti-virus and cleanup sort of product including microsoft own tools. They actually block your access to those sites.

A couple of weeks ago my wife's laptop got totally infected (she must be browsing porn) and I ended up finding a little known program that did most of the clean up and then followed up with Microsoft tools that are available on their site and successfully cleaned everything with the exception of one item i had to get rid of manually.

Name of the product is Exterminate it. Worked pretty well.

Source

Spoonshadows

File: Searchya.job

Location of Searchya.job and Associated Malware

Check whether Searchya.job is present in the following locations:

Searchya.job file locations that are Windows version independent:

  • C:\Windows\Tasks\Searchya.job

If you find Searchya.job file in any of these locations, your computer is very likely to be infected with the following malware:

IMPORTANT: Malware files can be camouflaged with the same file names as legitimate files. The Searchya.job file is associated with malware only if found in the locations listed above.

Notes:

Different Variations of Searchya.job File^

File SizeFile Md5Last Seen
3161DAEE2880571EDF81B3A2756DBED84FCJan 22, 2015
292B706F64C9E12A052E989A9F6949C13C0Feb 17, 2015
3165AA41D02BCE5293E8E17E729CDD32007Dec 17, 2015
292464D22B5AB03649FC33BA87779B36416Jan 21, 2016
2886558C5487CD289D02052B7CE90381422Feb 16, 2016
3120EA8959803E262CC85DEEFA0E89C475FFeb 23, 2016
29265FC65A9B539CDB6BE516E75FE937CD6Apr 2, 2016
284D5D96FD9DE7FCFF79CCFF6A185C56590Dec 7, 2016
2885F398B771B798ABD5B68EA60CD6C128EJan 16, 2017
29667F3125DF20B994D42FE2AA370949EC3Apr 14, 2017
31632AD5F8DE99CB9284C114835D22D19B3May 4, 2017

Why Is It Important to Remove Malware Files?^

It is imperative that you delete malware-associated files as soon as possible because they can be used - or are already being used - to inflict serious damage on your PC, including:

  • Disrupting the normal functioning of the operating system or rendering it completely useless.
  • Hijacking valuable private information (credit card numbers, passwords, PIN codes, etc.)
  • Directing all your Web searches to the same unwanted or malicious sites.
  • Dramatically slowing down your computer.
  • Gaining total control of your PC to spread viruses and trojans and send out spam.

How to Remove Searchya.job^

  1. To enable deleting the Searchya.job file, terminate the associated process in the Task Manager as follows:
    • Right-click in the Windows taskbar (a bar that appears along the bottom of the Windows screen) and select Task Manager on the menu.
    • In the Tasks Manager window, click the Processes tab.
    • On the Processes tab, select Searchya.job and click End Process.
  2. Using your file explorer, browse to the file using the paths listed in Location of Searchya.job and Associated Malware.
  3. Select the file and press SHIFT+Delete on the keyboard.
  4. Click Yes in the confirm deletion dialog box.
  5. Repeat steps 2-4 for each location listed in Location of Searchya.job and Associated Malware.
  6. Notes:

    • The deletion of Searchya.job will fail if it is locked; that is, it is in use by some application (Windows will display a corresponding message). For instructions on deleting locked files, see Deleting Locked Files.
    • The deletion of Searchya.job will fail if your Windows uses the NT File System (NTFS) and you have no write rights for the file. Request your system administrator to grant you write rights for the file.

Deleting Locked Files^

You can delete locked files with the RemoveOnReboot utility. You can install the RemoveOnReboot utility from here.

After you delete a locked file, you need to delete all the references to the file in Windows registry.

To delete a locked file:

  1. Right-click on the file and select Send To -> Remove on Next Reboot on the menu.
  2. Restart your computer.

The file will be deleted on restart.

Note: In the case of complex viruses that can replicate themselves, malware files can reappear in the same locations even after you have deleted those files and restarted your computer. Exterminate It! Antimalware can effectively eradicate such viruses from your computer.

To remove all registry references to a Searchya.job malware file:

  1. On the Windows Start menu, click Run.
  2. In the Open box, type regedit and click OK. The Registry Editor window opens.
  3. On the Edit menu, select Find.
  4. In the Find dialog box, type Searchya.job. The name of the first found registry value referencing Searchya.job is highlighted in the right pane of the Registry Editor window.
  5. Right-click the registry value name and select Delete on the menu.
  6. Click Yes in the Confirm Value Delete dialog box.
  7. To delete all other references to Searchya.job, repeat steps 4-6.
IMPORTANT: Malware files can masquerade as legitimate files by using the same file names. To avoid deleting a harmless file, ensure that the Value column for the registry value displays exactly one of the paths listed in Location of Searchya.job and Associated Malware.