Remove Hoho Search From Chrome/Firefox

Keep in mind, SpyHunter’s malware detection tool is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.

This page aims to help you remove Hoho Search. These Hoho Search removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.

Before we jump straight into the removal guide, let’s take a few moments to know more about Hoho Search.

What is it?

According to security experts, Hoho Search is the latest form of browser hijacker released by its developers. It is not being classified as a virus as virus brings about both direct and indirect harm to the computer in question. A browser hijacker, on the other hand, is harmless and does not pose as a direct security threat to the user.

However, that is not to say that you can ignore the presence of Hoho Search. Being an browser hijacker, it seeks to provide advertisements to the user. These numerous ads that constantly appears can be a source of unnecessary nuisance and exasperation.

This particular browser hijacker is able to track the browsing patterns and history, favourites and bookmarks on your browser, be it Firefox, Chrome or Internet Explorer. From the information gathered, it will, then, generate ads of items and products that you might be interested in. These ads might be of items that you have previously viewed or, coupons or deals for products that are similar to that of what you have recently searched for. They may be in the form of banners, pop-up ads and boxes or even appear as a separate window. Regardless of whatever the form these ads takes, one thing you should always bear in mind is not to click on the ads and remove Hoho Search as fast as possible.

Why should I not click on the ads?

As these ads are generated by the browser hijacker to attract your attention, most of them are not genuine. On the few rare occasions, you might be directed to a webpage which you have previously accessed for the “deals”. In this case then, it is redundant and a waste of your time as it does not provide any additional new information other than what you had already known.  More often than not though, you are being directed to some pay-per-click sites where the developers get paid an amount whenever someone, i.e. you, accesses the webpage. Sometimes, you might also be directed to some dubious sites that promotes the download of certain software. These software often tend to be full of security loopholes that will serve as a portal for other viruses and browser hijacker to access your computer. Their uninstall process can also prove to be tricky, as they are pretty hard to remove from your PC.

How did I get Hoho Search?

It is always good to know how you got infected in the first place in order to avoid a reinfection the second time round.

One of the most common ways that people get infected is through the free and/or illegal program downloads that are readily available on the Internet. These free programs are usually being bundled together with other programs, such as Hoho Search. This is done, firstly, to ease installation of the unwanted software and secondly, to achieve a greater outreach.

To prevent this from happening to your PC you only need to exercise due caution. After downloading the program do not attempt to save time by going for the automatic installation. Instead, take a few minutes to do the manual installation to save you time and trouble in the long run. During the manual installation, make sure to check through all the names of the files and folders that is to be installed onto your computer and uncheck those whose names are unfamiliar to you.

Another way in which you could get infected is via email. When you receive emails from unknown senders, do not open the emails. Instead, send them straight to the “Junk Mail” folder. You can also configure your mailbox settings to filter out all these junk mails for your convenience.


Name Hoho Search
Type Browser Hijacker
Danger Level Medium (Not likely to damage your computer, but usually very annoying to put up with)
Symptoms Browsers on your PC are infested in Ads in different forms and sized.
Distribution Method Hiding inside the installers of other applications, downloaded from spam emails and misleading advertisements.
Detection Tool Browser Hijackers are notoriously difficult to track down. Use SpyHunter – a professional parasite scanner – to make sure you find all files related to the infection.

Keep in mind, SpyHunter is a malware detection tool. To remove the infection, you need to purchase the full version.
More information about SpyHunter and steps to uninstall.


Hoho Search Removal

Readers are interested in:



Reboot in Safe Mode (use this guide if you don’t know how to do it).

This was the first preparation.


To remove parasite, you may have to meddle with system files and registries. Making a mistake and deleting the wrong thing may damage your system.
Avoid this by using SpyHunter - a professional Parasite removal tool.

Keep in mind, SpyHunter’s malware detection tool is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.

Reveal All Hidden Files and Folders.

  • Do not skip this  – Hoho Search may have hidden some of its files.

Hold together the Start Key and R. Type appwiz.cpl –> OK.


You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.

Type msconfig in the search field and hit enter. A window will pop-up:


Startup —> Uncheck entries that have “Unknown” as Manufacturer.


Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.


Right click on the browser’s shortcut —> Properties.

NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).


Properties —–> Shortcut. In Target, remove everything after .exe.

ie9-10_512x512  Remove Hoho Search from Internet Explorer:

Open IE, click  IE GEAR —–> Manage Add-ons.

pic 3

Find the threat —> Disable. Go to IE GEAR —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.

firefox-512 Remove Hoho Search from Firefox:

Open Firefoxclick  mozilla menu  ——-> Add-ons —-> Extensions.

pic 6

Find the browser hijacker/malware —> Remove.
chrome-logo-transparent-backgroundRemove Hoho Search from Chrome:

Close Chrome. Navigate to:

 C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:

Rename the Folder to Backup Default

Rename it to Backup Default. Restart Chrome.

  • At this point the threat is gone from Chrome, but complete the entire guide or it may reappear on a system reboot.


Press CTRL + SHIFT + ESC simultaneously. Go to the Processes Tab. Try to determine which ones are dangerous. Google them or ask us in the comments.


This is the most important and difficult part. If you delete the wrong file, it may damage your system irreversibly. If you can not do this,
>> Download SpyHunter - a professional parasite scanner and remover.

Keep in mind, SpyHunter’s malware detection tool is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.

Right click on each of the problematic processes separately and select Open File LocationEnd the process after you open the folder, then delete the directories you were sent to.



Type Regedit in the windows search field and press Enter.

Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show this way, go manually to these directories and delete/uninstall them:

  • HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
    HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
    HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random

Remember to leave us a comment if you run into any trouble!

  • HowToRemove.Guide Team

    Delete all of these lines from the file. They may be part of the infection.
    Try downloading the scanner from one of our advertisements, it can help you locate the infected files 🙂

  • HowToRemove.Guide Team

    Remove all of these lines. They are part of the infection.

  • HowToRemove.Guide Team

    Find and copy the file to your desktop, edit it there, then return the edited file to the original position and replace the old one with it.

  • HowToRemove.Guide Team


    Remove them from your hosts file.

  • MLGSpoderman360

    This are the suspicious IP’s

    • HowToRemove.Guide Team

      Hi there, indeed they are. Delete them from the file.

      If you experience any problems with permission rights do the following:

      Search for Notepad in Windows search -> right click on the executable and select Run as Administrator.
      From inside Notepad click on the File-> Open menu and navigate to the hosts file

      You should now be able to save the file properly.

  • HowToRemove.Guide Team

    Hi Line,

    Try to isolate the ones you are sure to be safe. Check for the owner/manufacturer of the process – most are actually Microsoft/Windows processes and you can ignore those.

    For the rest google is your friend. Either that or get an anti-malware program to cut down on time.

  • Michael
    i have found all of these

    • HowToRemove.Guide Team

      Hi Michael, you should delete all of these from the file.

  • HowToRemove.Guide Team

    Hello, you definitely need to remove this.

  • Aadi Swaroop

    on uninstalling hohosearch there a message comes that the- specified module cannot be found. what should i do?

    • HowToRemove.Guide Team

      Is this occurring while you are in safe mode of outside of it?

  • HowToRemove.Guide Team

    Hi Bart, delete everything but the microsoft line.

  • HowToRemove.Guide Team

    Hi Pedro, start Notepad as admin first. Search for it on search, right-click run as Admin on the exe. From the inside use the Open menu to navigate to the hosts file.

  • HowToRemove.Guide Team

    Hi Mani, you need to delete all of these lines from the file. Just delete them, then save the file.

    • Mani

      Thanks, appreciate your support.

      • HowToRemove.Guide Team

        You are welcome!

  • HowToRemove.Guide Team

    Download the scanner from one of our ads and use it to locate hoho search’s files.

  • Anubhav

    Can you make a post about adware too?

    • HowToRemove.Guide Team

      Hi there, I will write it down and have a look though it.


    my mouse on my laptop is not working since i used your way of reboot? what to do ??

    • HowToRemove.Guide Team

      After the safe reboot you have to use the pad and after you reboot normally you can use the mouse. You cannot use the mouse in save mode.

  • HowToRemove.Guide Team

    Correct! Those who start with are harmless.

  • Muzaffar Ali Shah

    i got this after localhost. it seems ip is same but url are diffrent

    • HowToRemove.Guide Team

      Hi Muzaffar,
      these entries are fine. My team researched them and they turned out to be legit.