Searchya! Toolbar

By GoldSparrow in Potentially Unwanted Programs

Translate To:

Threat Scorecard

Ranking:	6,123
Threat Level:	50 % (Medium)
Infected Computers:	21,250

First Seen:	April 29, 2014
Last Seen:	September 13, 2023
OS(es) Affected:	Windows

Searchya! Toolbar Image

Classified as adware, the Searchya! Toolbar is used to deliver advertisements to computer users, often in the form of pop-up windows and browser redirects. Carrying out a search on Searchya! Toolbar's associated search engine will usually result in low-quality search results replete with advertisements and links to websites containing unsafe content. Even though Searchya! Toolbar's website supposedly contains uninstall instructions, this adware infection may not be easy to remove and will usually require the help of a reliable anti-malware program.

Although the main symptoms of a browser hijacker infection associated with the Searchya.com website is the presence of the Searchya! Toolbar itself, there are several symptoms that point to the fact that Searchya! Toolbar is not a reliable web browser add-on:

The presence of the Searchya! Toolbar on your computer may usually result in poor computer performance.
Attempting to remove Searchya! Toolbar manually may usually result in error messages, crashes, or in the Searchya! Toolbar being reinstalled automatically when the infected web browser starts up again.
Your web browser's homepage may have been changed to Searchya.com without your authorization. Your default search engine and favorite websites may also have been altered as well.
The Searchya! Toolbar may usually cause the infected web browser to display fake error messages and pop-up alerts from the Windows Task Bar.
Unfortunately, the Searchya! Toolbar will rarely attack alone. If the Searchya! Toolbar is installed on your computer, then it is probable that your machine has become infected with other kinds of malware threats.

Removing the Searchya! Toolbar from your computer will usually require an updated anti-malware program. Since Searchya! Toolbar will often be associated with other malware threats, ESG security researchers advise scanning your hard drives to make sure that other malware infections have not entered your computer. The Searchya! Toolbar makes modifications to the Windows Registry and to your computer's settings. Because of this, simply reinstalling you web browser or changing from one web browser to another will do nothing to stop symptoms associated with the Searchya! Toolbar.

Table of Contents

SpyHunter Detects & Remove Searchya! Toolbar

File System Details

Searchya! Toolbar may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	searchya.dll	ef2a4330d3bd5c6e99ad0fd641252773	7,812
Name: searchya.dll MD5: ef2a4330d3bd5c6e99ad0fd641252773 Size: 261.63 KB (261632 bytes) Detections: 7,812 Type: Dynamic link library Path: C:\Program Files (x86)\Ironsource\searchya\1.5.13.0\bh\searchya.dll Group: Malware file Last Updated: June 17, 2023
2.	searchya.dll	e123aebeda8b9f09277772a6a463f628	2,238
Name: searchya.dll MD5: e123aebeda8b9f09277772a6a463f628 Size: 261.63 KB (261632 bytes) Detections: 2,238 Type: Dynamic link library Path: C:\Program Files (x86)\Ironsource\searchya\1.5.11.5\bh\searchya.dll Group: Malware file Last Updated: March 9, 2021
3.	searchya.dll	55ac76cf1c291bfcf33579f17fd37a04	1,712
Name: searchya.dll MD5: 55ac76cf1c291bfcf33579f17fd37a04 Size: 261.63 KB (261632 bytes) Detections: 1,712 Type: Dynamic link library Path: %PROGRAMFILES%\Ironsource\searchya\1.5.11.13\bh Group: Malware file Last Updated: April 6, 2021
4.	searchyasrv.exe	78301801b3ac5cd6cefed6621ebc9509	33
Name: searchyasrv.exe MD5: 78301801b3ac5cd6cefed6621ebc9509 Size: 352.76 KB (352768 bytes) Detections: 33 Type: Executable File Path: C:\Program Files (x86)\Ironsource\searchya\1.5.13.0\searchyasrv.exe Group: Malware file Last Updated: June 17, 2023
5.	searchya.dll	b7a70e2e99b319e0a01c5ddd5c3a602c	6
Name: searchya.dll MD5: b7a70e2e99b319e0a01c5ddd5c3a602c Size: 268.9 KB (268904 bytes) Detections: 6 Type: Dynamic link library Path: %PROGRAMFILES%\SearchYa!\1.5.25.0\bh Group: Malware file Last Updated: April 29, 2014
6.	searchya.dll	5df8bf00a30fe751773a6a0dfcb437a8	6
Name: searchya.dll MD5: 5df8bf00a30fe751773a6a0dfcb437a8 Size: 266.44 KB (266448 bytes) Detections: 6 Type: Dynamic link library Path: %PROGRAMFILES%\SearchYa!\1.5.20.0\bh Group: Malware file Last Updated: April 29, 2014
7.	searchya.dll	e635abd395a18c3d4d71e429200f8826	2
Name: searchya.dll MD5: e635abd395a18c3d4d71e429200f8826 Size: 261.63 KB (261632 bytes) Detections: 2 Type: Dynamic link library Path: %PROGRAMFILES%\Ironsource\searchya\1.5.13.0\bh Group: Malware file Last Updated: April 29, 2014
8.	searchya.dll	8a7ef1ada6cd5f3ff17ce651e45acdc9	1
Name: searchya.dll MD5: 8a7ef1ada6cd5f3ff17ce651e45acdc9 Size: 261.63 KB (261632 bytes) Detections: 1 Type: Dynamic link library Path: %PROGRAMFILES%\Ironsource\searchya\1.5.13.0\bh Group: Malware file Last Updated: April 29, 2014
9.	SearchYaSetup_2.2.1.503.1.exe	2ded70f1dc6a6dae4bbb4443c4a95fbf	1
Name: SearchYaSetup_2.2.1.503.1.exe MD5: 2ded70f1dc6a6dae4bbb4443c4a95fbf Size: 2.15 MB (2157568 bytes) Detections: 1 Type: Executable File Path: %TEMP%\nsr7659.tmp\34 Group: Malware file Last Updated: April 29, 2014
10.	SearchYaLatest.exe	33f3b03bca3e1e3e0e8ae21b5c002d53	1
Name: SearchYaLatest.exe MD5: 33f3b03bca3e1e3e0e8ae21b5c002d53 Size: 2.24 MB (2249261 bytes) Detections: 1 Type: Executable File Path: %TEMP%\is1852162411 Group: Malware file Last Updated: April 29, 2014
11.	searchya.dll	137dd9d1b6f7c7a7ce90e14100105321	1
Name: searchya.dll MD5: 137dd9d1b6f7c7a7ce90e14100105321 Size: 261.63 KB (261632 bytes) Detections: 1 Type: Dynamic link library Path: %PROGRAMFILES%\Ironsource\searchya\1.5.11.13\bh Group: Malware file Last Updated: April 29, 2014
12.	searchya.dll	f75e099cd9316054e1ecab04749e076a	1
Name: searchya.dll MD5: f75e099cd9316054e1ecab04749e076a Size: 247.85 KB (247856 bytes) Detections: 1 Type: Dynamic link library Path: %PROGRAMFILES%\SearchYa!\1.8.8.0\bh Group: Malware file Last Updated: April 29, 2014
13.	C:\Program Files\SearchYa!\1.5.20.0\searchyaApp.dll
Name: C:\Program Files\SearchYa!\1.5.20.0\searchyaApp.dll Type: Dynamic link library Group: Malware file
14.	C:\Program Files\SearchYa!\1.5.20.0\escortShld.dll
Name: C:\Program Files\SearchYa!\1.5.20.0\escortShld.dll Type: Dynamic link library Group: Malware file
15.	C:\Program Files\SearchYa!\1.5.20.0\searchyaTlbr.dll
Name: C:\Program Files\SearchYa!\1.5.20.0\searchyaTlbr.dll Type: Dynamic link library Group: Malware file
16.	C:\Program Files\SearchYa!\1.5.20.0\bh\searchya.dll
Name: C:\Program Files\SearchYa!\1.5.20.0\bh\searchya.dll Type: Dynamic link library Group: Malware file
17.	C:\Program Files\SearchYa!\1.5.20.0\searchyaEng.dll
Name: C:\Program Files\SearchYa!\1.5.20.0\searchyaEng.dll Type: Dynamic link library Group: Malware file
18.	C:\Program Files\SearchYa!\1.5.20.0\FavIcon
Name: C:\Program Files\SearchYa!\1.5.20.0\FavIcon Group: Malware file
19.	C:\Program Files\SearchYa!\1.5.20.0\searchyasrv
Name: C:\Program Files\SearchYa!\1.5.20.0\searchyasrv Group: Malware file
20.	C:\Program Files\SearchYa!\1.5.20.0\uninstall
Name: C:\Program Files\SearchYa!\1.5.20.0\uninstall Group: Malware file

Registry Details

Searchya! Toolbar may create the following registry entry or registry entries:

CLSID

{15F6BCB7-BB0F-4A66-8762-4765B05597EB}

{1973277F-87B0-4EA3-9ED2-470A91D284CF}

{25927741-5E5B-4D27-8D8B-9188FE64373F}

{33AA308B-B565-4376-AC66-59EE9B6AD13E}

{54B24FA9-87E8-47FC-8589-F9D382D8B299}

{5B45AC88-523C-431E-86D7-F339B2EE262E}

{6801410E-CC88-42D6-A93B-909E95645407}

{69332529-EEC8-4D0D-9FD3-202C4AE8E589}

{8B0C188C-F6F3-484D-8225-E40262DDE633}

HKEY..\..\{Value}

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Start Page"

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar "SearchYa Toolbar"

HKEY..\..\..\..{Subkeys}

HKEY_CLASSES_ROOT\esrv.searchyaESrvc

HKEY_CLASSES_ROOT\esrv.searchyaESrvc\CurVer

HKEY_CLASSES_ROOT\ironsource.searchyaHlpr

HKEY_CLASSES_ROOT\ironsource.searchyaappCore

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\esrv.searchyaESrvc

HKEY..\..\..\..{RegistryKeys}

SOFTWARE\Classes\esrv.searchyaESrvc

SOFTWARE\Classes\esrv.searchyaESrvc.1

SOFTWARE\Classes\ironsource.searchyaappCore

SOFTWARE\Classes\ironsource.searchyaappCore.1

SOFTWARE\Classes\ironsource.searchyadskBnd

SOFTWARE\Classes\ironsource.searchyadskBnd.1

SOFTWARE\Classes\ironsource.searchyaHlpr

SOFTWARE\Classes\ironsource.searchyaHlpr.1

SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{819DC4CA-4FFF-4C2E-800D-F346471D99BC}

SOFTWARE\Microsoft\Internet Explorer\Toolbar\{33AA308B-B565-4376-AC66-59EE9B6AD13E}

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Searchya

SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{25927741-5E5B-4D27-8D8B-9188FE64373F}

Software\Searchya

Software\searchya!

Software\searchya.com

SOFTWARE\Wow6432Node\FoxTab\searchya

SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{819DC4CA-4FFF-4C2E-800D-F346471D99BC}

SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{33AA308B-B565-4376-AC66-59EE9B6AD13E}

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{25927741-5E5B-4D27-8D8B-9188FE64373F}

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\searchya

searchya

Directories

Searchya! Toolbar may create the following directory or directories:

%PROGRAMFILES%\Ironsource\searchya

%PROGRAMFILES%\SearchYa!

%PROGRAMFILES(x86)%\Ironsource\searchya

%PROGRAMFILES(x86)%\SearchYa!

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Searchya! Toolbar

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove Searchya! Toolbar

File System Details

Registry Details

Directories

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen