Results 1 to 4 of 4

Thread: askyaya what is this, i cant delete it!!!!!!!!!!!

  1. #1
    wire Guest

    Default askyaya what is this, i cant delete it!!!!!!!!!!!

    when i do a deep scan on za i keep getting this trojan win32.askyaya, i have deleted like 20 times now and i tried to delete it in my reg where za told me where it was RegistryKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A2B7A0F0-B697-4A71-8D91-43443F57D7BB}does anyone one know how to get rid of this and what is it really?? i have spybot, ad awear, spydr and did trend miro (online) and they never get it! is this a fase alarm??thanks wire :-)

    p.s. NEW NEWS 10-1-06 NOW TREND MIRCO PICS THIS UP , I DELETED 13 TIMES
    AND IT JUST COMES BACK HELP!!!!


    Operating System:Windows XP Home Edition
    Product Name:ZoneAlarm Pro
    Software Version:6.5

  2. #2
    Join Date
    Dec 2005
    Posts
    9,057

    Default Re: askyaya what is this, i cant delete it!!!!!!!!!!!

    http://forum.zonelabs.org/zonelabs/b...message.id=231

    Check out your other posts first.

    Oldsod
    Best regards.
    oldsod

  3. #3
    wire Guest

    Default Re: askyaya what is this, i cant delete it!!!!!!!!!!!

    DONT KNOW WHAT YOUR TALKING ABOUT, THAT'S NOT MY POST, AND NONE OF MY POST ARE THERE http://forum.zonelabs.org/zonelabs/b...message.id=231


    ;-)


    ANY HELP ON THIS , NOW THAT WOULD BE HELPFULL!

  4. #4
    Join Date
    Dec 2005
    Posts
    9,057

    Default Re: askyaya what is this, i cant delete it!!!!!!!!!!!

    http://forum.zonelabs.org/zonelabs/b...message.id=308

    OR


    It appears to be the real malware, Not a False Positive.

    http://www.castlecops.com/tk30113-estAlive_dll.html




    BHO/CLSID/Toolbar Deep Dive
    Field Value
    GUID {A2B7A0F0-B697-4A71-8D91-43443F57D7BB}
    Filename estAlive.dll
    Object Name estAliveObj Class
    Status X BHO
    Description AskYaya aka Estalive adware
    Viewed 411 times since 23 May 2005, 1840 Hours UTC-4.


    STATUS KEY:

    KEY:

    "X" - Certified spyware/foistware, or other malware
    "L" - Legitimate items
    "O" - Open to debate
    "?" - Unknown Status
    "BHO" - Browser Helper Object
    "TB" - Toolbar


    Please look at the details about AskYay

    http://research.sunbelt-software.com...threatid=46373

    And look at the details about EstAlive


    http://www3.ca.com/securityadvisor/p...x?id=453099221


    Do a search for this using {A2B7A0F0-B697-4A71-8D91-43443F57D7BB} in the Find of the registry and delete them manually. The CLSID sections of the registry are a common hiding places for these types of malware. After deleting the estAlive.dlland the slew of the other related .dlls and any .exes, try using the CCleaner to help remove some of the leftovers...

    http://www.majorgeeks.com/
    CCleaner_Slim_No_Yahoo_Toolbar_English_d4191.html

    An excellent reg cleaner that does covers the CLSID area of the registry is the Abexo Free Registry Cleaner.


    Hope this helps

    Oldsod

    Product Name: ZoneAlarm Anti-Spyware
    Software Version: 6.5

    Message Edited by Oldsod on 10-01-2006 01:17 PM
    Best regards.
    oldsod

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •