en English
X
af Afrikaanssq Albanianar Arabichy Armenianbs Bosnianbg Bulgarianzh-CN Chinese (Simplified)zh-TW Chinese (Traditional)cs Czechnl Dutchen Englishfr Frenchde Germanel Greekiw Hebrewhi Hindiid Indonesianga Irishit Italianja Japaneseko Koreanla Latinpl Polishpt Portuguesero Romanianru Russiangd Scottish Gaelicsl Slovenianes Spanishsv Swedishth Thaitr Turkishuk Ukrainian
AtoZManuals Browser Hijacker
Browser Hijacker | 07/13/2018

How to Remove AtoZManuals Browser Hijacker?

About: AtoZManuals is a malicious Browser extension that redirects user searches to malefic web domain https://search.myway.com on the pretext to help them with online user manuals for popular brands like Sony, Samsung, Canon, Dell, Microsoft etc for ...  Read More  

| Browser Hijacker | How to Remove AtoZManuals Browser Hijacker?

What is AtoZmanuals?

 

AtoZManuals is a rogue application that supposedly helps users with various manuals like Computers, Printers, cars and so on. The domain lures users to download the application by claiming to provide thousands of online user manuals for free for popular brands including Sony, Samsung, Canon, Dell, Microsoft, Ryobii, Cuisinart, Garmin, Dyson, Toshiba and many more. However the domain is a malicious Browser extension in disguise.

AtoZmanuals browser Hijacker

The nasty system infection targets popular web browsers like internet explorer, Mozilla Firefox and Google Chrome and Runs on Windows 10, 8, 7, Vista, and XP operating systems. The Browser Hijacker is distributed via various hoax techniques like spam email attachments, software bundles, malevolent ads and pop-ups. Once malicious code is downloaded the infection undergoes stealth installation and targets windows registry to automatically launch the infection when the system is booted.

The pernicious browser extension modifies browser settings and replaces the browser homepage, search engine and new tab with its own. This ruins user browsing experience as all user searches are redirected to https://search.myway.com- a site that has nothing to do with manual guides. Attempts to change the url goes in vain as it reverts back to malicious domain. The site also hosts a ”myway” logo in corner and claims to be “enhanced by Google”. However it is not a good idea to use this search engine as the search results are inaccurate and promote sponsored web pages.

AtoZmanuals Browser Hijacker

 

Threats posed by AtoZmanuals Browser Hijacker

AtoZManuals Browser Hijacker is designed with the sole motive to swindle users. The malicious program is configured to steal user confidential information and use the compromised data to extort them or sell it to the third parties.

  1. Compromise User Personal Identifiable data: Once infiltrated AtoZManuals browser Hijacker spies on user browsing activities. User’s online conduct is constantly being monitored by cyber miscreants as the browser hijacker is configured to establish a network connection with the remote servers controlled by hackers. As a result user online banking credentials are at stake and can be misused by the criminals to render the victim bankrupt.
  2. Bombard computer screen with malevolent ads and pop ups: The malicious system infection monitors user browsing history to generate most appropriate ads relevant to user interest to lure them to click on it. However this is a trick used by the nasty software developers to install other system infections on the victim’s PC as the click on ads redirects victim to malicious web pages that contain malware code.
  3. Renders System Sluggish: AtoZManuals browser Hijacker infects system files, duplicates shortcuts and installs unnecessary programs in the system. This affects system performance and renders it sluggish.

Site Description

AtoZmanuals Browser Hijacker

The malicious browser Hijacker once installed changed the browser home page that follows a typical template that looks similar to popular search engines and Internet portals to deceive users. It is comprised of following toolbars:

Menu bar: Menu bar consists of a search box and several links. The links are sponsored and redirect users to malicious web pages.

Main Search Bar: It presents a Google enhanced search Engine. Queries entered here direct users to https://search.myway.com domain. The search results are inaccurate and aim to promote sponsored web pages that may be malicious.

Links Bar: The bar shows icons to sponsored web sites. The web page that appears may be illegitimate and aims to trick users into entering their account details. The information collected is used to carry malicious activities.

Users therefore need to be cautious and refrain from clicking on any suspicious link, ads and pop- ups to avoid the nasty infection from invading the system.

How does malware invade the system?

 The cyber criminals use various strategies for malware distribution which include –

  1. Software Bundling: Software bundling is the process in which a malicious program is distributed with other free software, to get an unnoticed entry into your computer system. When a user installs a free application, the malicious programs gains a front door entry with the free application, the user has downloaded. Thus, it is a good idea to keep an eye on the installation screens while installing these free applications.
  2. Infected Storage Devices: Your system can also get infected by using removable media such as USB hard drives and jump drives without scanning them with an anti-virus.
  3. Spam Emails – Spamming is the most economic and common method used for the distribution of such malware. The targeted users get genuine looking emails which contain .doc, .txt, and other similar attachments. These attachments can be named as anything which can grab the user’s attention and triggers him/her to open the attachment. As soon as the user opens this attachment, the malware infects the user’s computer system.
  4. Malicious Websites or Malevolent Advertisements: The malicious websites are the ones which are created just for promoting the malware infections. Such websites include but are not limited to porn sites, torrent sites and other free downloading platforms. By visiting such websites, the adware infects the user’s computer without permission. Fake advertisements and updates like Flash player and windows updates which ask the user to update to the latest version are a few examples. When the users click on such links, their computer system gets infected. That is why, it is highly recommended to resist clicking on such links. Also avoid clicking on advertisements offering free stuff such as Win and i Phones, cars or free overseas trips etc.

Threat Summary

Name: AtoZManuals

Browsers Affected: Internet Explorer, Google Chrome, Microsoft Edge, Firefox

Targeted Operating System: Windows

Category: Browser Hijacker

Symptoms: Homepage, new tab and search engine are replaced with https://search.myway.com domains.

Appearance of sponsored ads and pop-ups

Registry Modification, unnatural network activities, occasional sluggishness of the infected device.

How to remove AtoZManuals Browser Hijacker from the system?

Note: Before we begin, try to remember how the extension got downloaded  on your computer system. Generally, these programs come bundled with free applications that we download off the internet. It is a good practice to locate and uninstall such programs while removing the Browser Hijacker/ Extensions.

 

Step A - Remove AtoZManuals Browser Hijacker from the control panel.

Windows XP

  1. Click on the “Start” button on the bottom left corner of your screen. A Start menu will be displayed as shown below. From this menu select the option that reads “Control Panel”.Windows XP start menu image
  2. In the window that will be displayed, click the option “Switch to classic view”.Control panel switch to classic view
  3. This will display all the options/icons available to you. From the displayed icons, click on the icon that reads “Add or Remove Programs”.Windows XP add or remove a program
  4. Select the “Uninstall a program” option from the “Programs” category. A list will populate on the screen displaying all the programs.Uninstall a malicious program
  5. Select the programs related to AtoZManuals Browser Hijacker and click on the Uninstall button.Windows XP confirmation window

Windows 7/Vista

  1. Right click on the “Start” button located at the lower left corner of the screen. From the Start menu, click on “Control Panel”.Windows 7 start menu
  2. The “Control Panel” Window will be displayed on the screen. Click on “Uninstall a Program” option from the “Programs” category.Uninstall a program from windows 7
  3. The “Programs and Features” window will be displayed on the screen. A list will populate on the screen displaying all the programs.
  4. Scroll though the list of programs and select the programs related to AtoZManuals Browser Hijacker and then click on the “Uninstall” button.uninstall a program in Windows 7

Windows 8/10

  1. Right click on the “Windows logo” on the lower left side of the computer screen. From the drop down menu, select and click on “Control Panel”.Windows 10 start menu
  2. The “Control Panel” window will be displayed. From this window select “Uninstall a program” option form the “Programs” category.Control panel
  3. A list will populate on the screen displaying all the programs.select programs and features option
  4. Select the programs related to AtoZManuals Browser Hijacker and click on the “Uninstall” button.uninstall a program in windows 8
  5. In the confirmation box, click on the box that reads “OK” to save changes.

Step B - Remove malicious extensions from your browser

Google Chrome

  1. Open Google Chrome and click on the three vertical dots (Google chrome menu icon ) i.e.Menu option which are located at the upper right corner of the Chrome Window.
  2. Find and click on More tools from the drop down menu that is displayed & select Extensions or you can open a Chrome window and type “chrome://extensions” in the address bar.google chrome menu options
  3. Check the developer mode option which is located opposite to extensions heading on the top of the Chrome window. By enabling the developer mode, additional details and option related to all the installed extensions will be displayed. One of the details that will be displayed is the ID. ID is the folder name created by the extension at the location “C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions”.enable chrome developer mode
  4. Locate the extension you want to uninstall or delete. Copy and paste the folder name opposite to the ID Tag of that extension into a notepad file. In this case the folder name is “aafkepgikkaggoicikkkdlknjmnocak”copy the extension folder name in Chrome
  5. Now, uncheck the enabled option next to the extension in question. Make sure you also click the trash icon to delete the extension from the browser. It is important to note that even after uninstalling and deleting the extensions from the browser, the extension might not uninstall properly. Thus, it is a good practice to make sure that we have deleted the folder as mentioned in step 3.delete the malicious extension from Chrome
  6. Make sure that you have made the hidden files and folders visible.
  7. Open My Computer and go to “C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions”. Now, look for folder with the name as specified in Step 4 i.e. “aafkepgikkaggoicikkkdlknjmnocak”. Delete the folder if present.show hidden files and folder
  8. Close and reopen the browser. It is also advisable to restart your computer once done.

Mozilla Firefox

  1. Open Mozilla Firefox, click on three horizontal lines (Mozilla icon ) at the top right corner of the Firefox Window and select the Add-ons option.Mozilla Firefox menu
  2. On the Add-ons manger page, select and click on the Extensions tab as shown below.FireFox manage Add-ons
  3. Find the extensions related to AtoZManuals Browser Hijacker and click on the remove button.
  4. In addition, try to remember how the extension got downloaded on your computer system. If this extension was bundled with some other software, then make sure to delete that as well.

Internet Explorer

  1. Open Internet Explorer, Click on the Gear icon (IE menu icon ) which is at the top right corner of the Internet Explorer Window.
  2. From the newly appeared dropdown menu, click on the option that reads Manage Add-ons.Internet explorer settings menu
  3. A new window will appear on the screen. On this window choose the option that reads Toolbar and Extensions. Under the Show option, select the option that reads “All add-ons”. This option will allow you to see all the browser extensions. Mozilla-manage add-ons toolbars and extensions page
  4. Select the Extension related to AtoZManuals Browser Hijacker and click on the Disable button which is at the bottom right of the computer screen.

IE toolbar and extensions in Manage add-ons

Apple's Safari

  1. On your Mac Desktop, click on the option that reads “Safari”.
  2. A drop down menu will appear as shown below. From this menu chose the option that reads “Preferences”.Safari menu extension options
  3. The Preferences window will appear on the screen, where the list of all your safari extensions will be shown.Safari extensions window
  4. On the list displayed at the left side of the screen, select the Extension you want to uninstall.
  5. Click on the Uninstall button to get rid of the extension.uninstall a program from Safari

Step C - Show Hidden Files and Folders

Windows 7

  1. Left click on the Organize button on the Windows Explorer. A drop down menu will appear.
    Folder and search options in windows 7
  2. On this menu left click on the option that reads “Folder and search options” as shown above. A folder options dialogue box will appear.
  3. On the View tab under the Advanced settings, Check the option that reads “Show hidden files, folders, and drives” and uncheck the option that reads “Hide protected operating system files“.
    Windows view tab advanced settings
  4. Click on the “OK” button to save your changes. This will make all the hidden files and folders visible to you.

Windows 8 and 10

  1. On the file explorer toolbar, click on the View
    windows 8 file explorer toolbar
  2. In the Show/hide section, Click on the “Hidden items” checkbox.
  3. Click on the options button.Windows explorer options button
  4. Under folder options, click on the “View” tab.
    Windows 8 - hide protected operating file system option
  5. Uncheck the “Hide protected operating system files” option.
  6. Click the “OK” button to save your changes.

Step D - Restore the browser settings.

Google Chrome

  1. Open Google chrome and click on the three vertical dots (Chrome menu icon) located on the top right corner of the Chrome Window.Settings-Chrome
  2. From the Drop down menu that appears, click on the “Settings”. A new browser tab will open up, displaying all the settings.Settings-Chrome
  3. Now, we will make changes to the appearance section. Under the “Appearances” section, we will enable the “Show Home Button” option. You can select New Tab page or can add Google or any of your preferred browsers under the “Show Home Button” option.Appearance- Chrome
  4. After this, we will go to the “Search Engine “section.
  5. Here, make Google or any of your preferred browsers as your default browser in the drop-down menu under the option “Search engine used in the address bar”.Search Engine- Chrome
  6. After this click on Manage Search Engines. Now you can remove Other Search Engines that were added by the browser hijacker. Simply click the three vertical dots (Chrome menu icon) and select the option “Remove from list”. Other Search Engines-Chrome
  7. You can make Google or any other preferred browser as your Default Search Engine by clicking the three vertical dots (Chrome menu icon) and clicking on the “Make default” option.
    Manage Search Engines- Chrome
  8. At the end, we will go to the section “On Startup”. You can select the “Open the New Tab page” or can “Continue where you left off”.  If you want to open a specific page or set of pages, select the option “Open a specific page or set of pages”  and remove any pages added by the browser hijacker by clicking on the three vertical dots (Chrome menu icon ) and selecting “Remove”.On startup-Chrome
  9. Then, add Google or any of your desired URL in “Add a new page” option under the “Open a specific page or set of pages”.Add a New Page- Chrome
  10. This is a very important step and we would like you to pay very close attention here. This step has to be repeated with all the shortcuts to the browser that you can locate; like your desktop, start menu and the shortcut pinned to your taskbar. Right click on the shortcut and a context menu will appear. On this menu select the last option that reads Properties.
    Reset Chrome properties
  11. A Google Chrome Properties Dialogue box will appear as below. Replace whatever is there in the text box next to the label Target with the following: Make sure that inverted commas are included.“C:\Program Files (x86)\Google\Chrome\Application\chrome.exe”
    Chrome target location
  12. Click OK at the end to save the changes.

Mozilla Firefox

  1. Open Mozilla Firefox and click on the three horizontal lines (Mozilla Firefox menu icon ) i.e. Open Menu located on the top right corner of the Firefox Window.
  2. From the drop down menu that is displayed, we have to right click on the (IE Gear icon Options to open the window.Firefox menu options
  3. Now, we will click Search, under the given options that are displayed in the left corner of the screen.
  4. You can choose Google or any of your preferred browsers as your default search engine to use in the address bar and search bar.Search-Firefox
  5. Then, you have to go to the (IE menu icon General and under “startup” section to make sure that Firefox is your default browser.
  6. At the end, we have to add Google or your preferred URL in the box given under Home Page.Startup-Firefox
  7. After this, you have to right click on the browser shortcuts that you can locate like your desktop, start menu and taskbar to which the application is pinned. A context menu will appear. On this menu select the last option that reads Properties.
    Properties in Mozilla Firefox
  8. A Firefox Properties Dialogue box will appear as below. Replace whatever is there in the text box next to the label Target with the following: Make sure that inverted commas are included.“C:\Program Files (x86)\Mozilla Firefox\firefox.exe”
    Mozilla Firefox target location
  9. Click OK at the end to save the changes.

Internet Explorer

  1. Open Internet Explorer and click on the gear icon (Internet Explorer gear icon )which is at the top right corner of the Internet Explorer Window.Manage Add-Ons -Internet Explorer
  2. From the Drop down menu that appears, click on the “Manage add-ons” A new browser tab will open up, displaying all the add-on types.Manage Add-Ons- Internet Explorer
  3. Now, we will click on the “Search Providers” option from the list of options displayed on the left hand side of the screen. Then we will click “Find more search providers” option given at the lower left corner of the Manage add-onsFind More Search providers-Internet Explorer
  4. This will open an Internet Explorer Gallery; from here you can add Google search or any of your preferred add-ons as your default browser.Internet Explorer Gallery
  5. Next, you are required to go to the “Manage add-ons” window and click on the “Search Providers” option under the Add-on Types.
  6. Here, you can enable Google Search or any of your preferred browsers as your default browser in the list of search providers.Search Providers- Internet Explorer
  7. At the end, we will click on the gear icon (IE gear icon )which is at the top right corner of the screen and select “Internet Options” from the drop-down menu.Internet Options- Internet Explorer
  8. A new window will open displaying the Internet options. In the “Internet Options” window, add Google or any of your desired URL under the Create Home Page option and click OK.Create Home Page- Internet Explorer
  9. After this, you have to right click on the browser shortcuts that you can locate like your desktop, start menu and taskbar to which the application is pinned.  A context menu will appear. On this menu select the last option that reads Properties.
    Settings for Internet Explorer
  10. An Internet Explorer Properties Dialogue box will appear as below. Replace whatever is there in the text box next to the label Target with the following: Make sure that inverted commas are included.“C:\Program Files\Internet Explorer\iexplore.exe”Target column in Internet Explorer
  11. Click OK at the end to save the changes.

Step E - Remove AtoZManuals Browser Hijacker from msconfig

  1. Type “Msconfig” in search box / Run Box, select it and press Enter.
  2. Click on “Services” Tab and click on “Hide all Microsoft services”.
  3. Select AtoZManuals Browser Hijacker from the list of remaining services and disable it by removing the tick mark from the checkbox and click on Apply button.

Windows 7

  1. Click on the next tab – “Startup”.
  2. Find any blank or suspicious entry or the entry with AtoZManuals Browser Hijacker mentioned and remove the check mark.
  3. Click on Apply button and then click on OK.

Windows 10

  1. Click on the next tab – “Startup”.
  2. Take the mouse cursor to ‘Open task Manager‘ link and click on it.  This opens the Task Manager window.
  3. Find any blank or suspicious entry or the entry with AtoZManuals Browser Hijacker mentioned and click on it.
  4. Then click on Disable button.

 

Tips to prevent your computer system from getting infected –

  1. Keeping the Operating System Updated- In order to remain protected and avoid such infections, it is recommended to keep your Operating System updated by enabling the automatic update on your system. The systems with outdated or older versions of Operating System become an easy target for the attackers.
  2. Resist clicking on spam emails – One of the major techniques used for malware distribution is forwarding spam emails to the user. The system gets infected as soon as the user clicks on the attachment. These mails appear to be genuine, so be aware and resist falling for these tricks.
  3. Keep an eye on third party installations- It is quite important that you take due care while installing any third party applications for they are major source of such infections. Such malware programs come bundled with the free applications thereby requiring the user to remain cautious.
  4. Regular periodical backup- In order to keep your data and files safe, it is recommended to take regular back up of all your data and files either on an external drive or cloud.
  5. Use Anti-Virus Protection- We strongly recommend the use of antivirus protection/internet security in your PC like Hitman Pro and Vipre so that it remains safe.
  6. Enable the Ad Blocker/Popup Blocker in your browser- Enabling the popup blocker/ ad blocker in your chosen browser will help you to stay protected from annoying adware.

 

Hits: 156

Leave a Reply

Your email address will not be published. Required fields are marked *

email
Subscribe to our newsletter

Subscribe to our newsletter today to receive updates on the Latest News and Threats.

Trending Threats

How We Detect the Latest
Malware Threats

The researchers at Virus Removal Guidelines are dedicated to track down the latest vulnerabilities which may infringe your system security. Our team of expert performs a detailed research about every malware infection before educating our users about the same.

Read More
Did you find the article informative? Yes NO

Get Regular Updates Related to All the Threats

Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.

About Us

We are led by the vision to be the most reliable and dependable threat detection provider. To beat cybercrime and the ever-growing threats, our product is designed to guarantee you powerful security. We are driven by the desire to make the digital platforms secure and much more efficient in performance. Our offerings for businesses and home users are bound to deliver the most advanced threat detection solutions. Our Mission- To enable you to use technology safely with absolutely no threats.

© 2019 Malware Removal Guidelines. ALL RIGHTS RESERVED.

Services

Legal

Virus Removal Guidelines
Plot No 319, Nandpuri- B Pratap Nagar
Jaipur
Rajasthan 302033
Phone: +91 9799661866