Click on screenshot to zoom
Danger level 7
Type: Browser Hijackers
Common infection symptoms:
  • Changes default search engine
  • Hijacks homepage is a very suspicious web page that seemingly works as a search engine. Well, if you enter keywords into the provided dialog box, Yahoo search results are displayed instead of original search results, and that is something to think about. If you want to use, maybe this is the homepage or the search provider you should set up instead of the hijacker we are discussing in this report? We definitely think that you should replace it with something more transparent and useful. You should not delay the removal of if it was set up without your permission, or if you were forced to accept the modifications without understanding them. In fact, even if you were happy to make the change, you should delete this hijacker, and all of the reasons are represented in this report.

According to our research, comes from a very large group of browser hijackers. In the past, they were known as SaferBrowser hijackers, but, more recently, the name “Polarity Technologies Ltd.” was found linked to most of these hijackers. Some of them include such recently reported threats as and Although it is quite possible that different parties stand behind these tools, they all look and work in similar ways. It is most important to note that is part of an extension, and you are unlikely to find it installed on its own. Obviously, if it is not attached to an extension or application, you still need to delete it. According to our research, the hijacker is linked to an extension called “Email Access Online,” and you can install it via the Chrome web store. Even though is the official source, this site does not offer an installer. Unfortunately, it is unlikely that many will use Chrome web store for the installation of this add-on.

It is most likely that you will face and Email Access Online packaged with other suspicious programs. The package of different programs is known as a software bundle, and, in most cases, bundles are distributed by third-party software distributors, not their creators. Of course, malicious parties could be involved as well because it is very easy to spread malware when it is attached to attractive and desirable programs. Have you downloaded packaged with malware? If that is the case, you should not ignore the malicious programs active on your Windows operating system because they could be even more unpredictable than the hijacker itself. When it comes to this hijacker, we advise removing it because it could display unreliable search results after redirecting you to Yahoo Search. Note that the suspicious search tool could attach additional links completely seamlessly.

Though the interface of is not suspicious – considering that it displays links to Gmail, Outlook, Hotmail, Facebook, YouTube, Amazon, and other popular sites – it cannot be trusted. If you have reviewed the Privacy Policy, you already know that this infection can track your virtual activity. The worst part is that your personal information could be recorded as well, and even if that is not the main intention of the hijacker’s creator, it is something to keep in mind. Are you completely sure you want to put your virtual security at risk just because an allegedly reliable extension can redirect you to a popular search engine? Obviously, it does not make any sense to keep this extension/hijacker active for any longer.

Can you delete from your browsers yourself? We believe that you can. First of all, check if the hijacker is attached to the Email Access Online extension. If it is, you need to erase the add-on first, and, hopefully, the hijacker will disappear as well. You might also need to uninstall the app via Control Panel. If that does not work, you might have to modify homepage settings, and that is what the guide below represents. Also, do not forget to scan your PC to make sure that other threats are not active. If they are, delete them immediately. If you need any assistance with the removal process, you can leave a comment below. Explain your issues, and we will try to assist you as best as we can. Removal

Mozilla Firefox:

  1. Tap keys Win+E to launch Explorer.
  2. Type %AppData%\Mozilla\Firefox\Profiles\ into the bar at the top and tap Enter.
  3. Open the folder that represents your Mozilla Firefox profile.
  4. Find the file called prefs.js, right-click it, and choose to open it with the preferred text reader.
  5. Locate the user_pref("browser.startup.homepage", ""); string.
  6. Replace the hijacker’s URL with the preferred one and then save the file.

Internet Explorer:

  1. Tap keys Win+R to launch RUN.
  2. Type regedit.exe and click OK to access the Registry Editor menu.
  3. Move to HKCU\Software\Microsoft\Internet Explorer\Main.
  4. Open the Start Page value and replace the hijacker’s URL with the desired one. Click OK.
  5. Move to HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.
  6. Open the FaviconURL value and replace the hijacker’s URL with the desired one. Click OK.
  7. Open the FaviconURLFallback value and replace the hijacker’s URL with the desired one. Click OK.
  8. Open the TopResultURL value and replace the hijacker’s URL with the desired one. Click OK.
  9. Open the URL value and replace the hijacker’s URL with the desired one. Click OK.

Google Chrome:

  1. Tap keys Win+E to launch Explorer.
  2. Type %LocalAppData%\Google\Chrome\User Data\ into the bar at the top and tap Enter.
  3. Open the Default folder or open the folder that represents your Chrome profile.
  4. Right-click the file named Secure Preferences and choose to open it with the preferred text reader.
  5. Find the hijacker’ URL and replace it with the preferred URL. Save the file.
  6. Modify the Preferences and Web Data files in the same way (refer to steps 4-5).
Download Spyware Removal Tool to Remove*
  • Quick & tested solution for removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.