Browser Redirect

Remove Reward for Search (Chrome/FF/IE) Dec. 2018 Update


How irritating is this problem? (5 votes, average: 5.00)
Loading...

This page aims to help you remove Reward for Search. Our removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.

There are many different kinds of software that you might not want to have on your computer either because they are hazardous and harmful or simply because they are irritating and unpleasant to have around. In all cases of potentially unwanted software, however, understanding the most typical traits and characteristics of the said app is half the battle for dealing with it. In this particular post, we are going to be telling you about an app called Reward for Search. This is a potentially unwanted piece of software and the reasons it is regarded have to do with the fact that it tends to spam the user’s browser with intrusive advertisements and redirects to different webpages as well as the fact that it tends to tinker with the settings of the browser, ultimately replacing some of its elements such as the starting page address, the search engine, the new-tab page address and maybe even some of the toolbar components. Now, there are a lot of normal browser extensions that tend to do similar things but in those cases, the modifications are mainly aimed at helping the user in a certain way. With Reward for Search, it’s actually the opposite – the changes to the browser are mostly unwanted since they are usually there for the sole reason of promoting different products on the users’ screens. Also, the ads and the redirects we already mentioned are further adding to the overall irritation caused by Reward for Search. In fact, this app belongs to a whole group of similar apps collectively known as browser hijackers. As we said, having a good understanding of the nature of different unwanted types of software is really important when it comes to successfully dealing with them. Therefore, if you currently have the Reward for Search hijacker within your system and need help with removing it, we advise you to have a look at the guide down below and use its instructions or the specialized removal tool in it to eliminate the unwanted app.

Remove Reward for Search

If you have a Windows virus, continue with the guide below.

If you have a Mac virus, please use our How to remove Ads on Mac guide.

If you have an Android virus, please use our Android Malware Removal guide.

If you have an iPhone virus, please use our iPhone Virus Removal guide


Step1

Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).

Was this step helpful? Please vote – we use the feedback to improve our guides.
 
Yes
No

Step2

WARNING! READ CAREFULLY BEFORE PROCEEDING!

Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab (the “Details” Tab on Win 8 and 10). Try to determine which processes are dangerous. 

malware-start-taskbar

Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:

Drag and Drop Files Here to Scan
Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at: https://howtoremove.guide/online-virus-scanner/




Scan Results


Virus Scanner Result
ClamAV
AVG AV
Maldet


After you open their folder, end the processes that are infected, then delete their folders. 

Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections. 

Step3

Hold together the Start Key and R. Type appwiz.cpl –> OK.

appwiz

You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:

msconfig_opt

Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.

Step4

Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.

Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.

  1. Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click  Properties.
  2. The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
  3. Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.

DNS

Step5

  • After you complete this step, the threat will be gone from your browsers. Finish the next step as well or it may reappear on a system reboot.

Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).

browser-hijacker-taskbar-properties

Properties —–> Shortcut. In Target, remove everything after .exe.

ie9-10_512x512  Remove Reward for Search from Internet Explorer:

Open IE, click  IE GEAR —–> Manage Add-ons.

pic 3

Find the threat —> Disable. Go to IE GEAR —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

firefox-512 Remove Reward for Search from Firefox:

Open Firefoxclick  mozilla menu  ——-> Add-ons —-> Extensions.

pic 6

Find the adware/malware —> Remove.
chrome-logo-transparent-backgroundRemove Reward for Search from Chrome:

Close Chrome. Navigate to:

 C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:

Rename the Folder to Backup Default

Rename it to Backup Default. Restart Chrome.

Step6

Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

…and remember to stay cautious!

Browser hijackers such as the one we introduced you to in the current post are not as harmful and as dangerous as real malware threats like viruses, Spyware programs, Trojan Horses, Rootkits, Ransomware and so on. They are, in fact, mostly legitimate apps that simply tend to utilize some rather aggressive methods in order to advertise different products. However, while all of this is mostly technically legal, you should always remain cautious around a hijacker that’s still in your system. The issue here is that the different commercial materials spammed on your screen by Reward for Search may sometimes represent fake or maybe even unsafe offers and links to hazardous pages and sites. Now, this doesn’t happen all that often but is certainly still a very real possibility. This is why the best way to protect your system from potential harm is to eliminate any hijacker that may be in your system so that the obstructive (and sometimes potentially hazardous) ads cease to appear on your screen.

SUMMARY:

Name Reward for Search
Type Browser Hijacker
Danger Level Medium (nowhere near threats like Ransomware, but still a security risk)
Symptoms  An app like Reward for Search is likely to alter some of the settings and components of your browser and also spam it with ads and redirects to different pages.
Distribution Method Anything from a random download request to a spam message in your inbox could mislead you into installing a hijacker.
Detection Tool

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!


Leave a Comment