This page aims to help you remove All in One Office “Virus”. Our removal instructions work for Chrome, Firefox and Internet Explorer, as well as every version of Windows.
The paragraphs below present a detailed description of an annoying webpage redirect known as All in One Office. It might lead to the complete modification of the appearance and ways of functioning of all your browsers. Some of the consequences of its effects may be the unwanted redirecting to many online places, the constant production of various ads whatever browsing app you decide to use – Chrome, Firefox, or Explorer, also the unpleasant changes of your normal homepages and search engines. All the other aspects of the behaviour of this browser hijacker can be found in the article below.
Browser Hijackers Related Info:
When discussing browser hijackers, it is necessary to state that these redirects might affect your browser programs only, and usually have nothing to do with any malicious software versions in general.
Possible Activities:
-merely marketing oriented ones;
-all the modifications that these redirecting programs may result in could be justified by the fact that their designers are normally generously paid to advertise something – a website, a search engine, a software product, a homepage or various online services.
Such redirects are typically legal and could be seen as ad-related – Adware also represents this exact category.
What makes All in One Office different from any of the known malicious programs-
The standard virus versions: the programs based on Trojan or Ransomware code, are very likely to do something extremely harmful once installed on your PC. Some of them may encrypt your data, while others may delete certain files or format all your hard disks. For the purpose of eliminating the Ransomware viruses, you usually have to pay a ransom. In the case of a Trojan infection – the infection could be incredibly subtle and totally unnoticeable – you might never find out what the hackers behind the virus wanted from you.
All in One Office “Virus” Removal
If you have a Windows virus, continue with the guide below.
If you have a Mac virus, please use our How to remove Ads on Mac guide.
If you have an Android virus, please use our Android Malware Removal guide.
If you have an iPhone virus, please use our iPhone Virus Removal guide
Some of the steps will likely require you to exit the page. Bookmark it for later reference.
Reboot in Safe Mode (use this guide if you don’t know how to do it).
WARNING! READ CAREFULLY BEFORE PROCEEDING!
We get asked this a lot, so we are putting it here: Removing parasite manually may take hours and damage your system in the process. If you want a fast safe solution, we recommend SpyHunter. Keep in mind, SpyHunter’s malware & virus scanner is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.
>> Click to Download Spyhunter. If you don't want this software, continue with the guide below.
Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab (the “Details” Tab on Win 8 and 10). Try to determine which processes are dangerous.
Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:
This scanner is free and will always remain free for our website's users. You can find its full-page version at: https://howtoremove.guide/online-virus-scanner/
Scan Results
| Virus Scanner | Result |
|---|---|
 ClamAV |
|
 AVG AV |
|
 Maldet |
After you open their folder, end the processes that are infected, then delete their folders.
Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections.
Hold together the Start Key and R. Type appwiz.cpl –> OK.
You are now in the Control Panel. Look for suspicious entries. Uninstall it/them.
Type msconfig in the search field and hit enter. A window will pop-up:
Startup —> Uncheck entries that have “Unknown” as Manufacturer or otherwise look suspicious.
Hold the Start Key and R – copy + paste the following and click OK:
notepad %windir%/system32/Drivers/etc/hosts
A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:
If there are suspicious IPs below “Localhost” – write to us in the comments.
Open the start menu and search for Network Connections (On Windows 10 you just write it after clicking the Windows button), press enter.
- Right-click on the Network Adapter you are using —> Properties —> Internet Protocol Version 4 (ICP/IP), click Properties.
- The DNS line should be set to Obtain DNS server automatically. If it is not, set it yourself.
- Click on Advanced —> the DNS tab. Remove everything here (if there is something) —> OK.
- After you complete this step, the threat will be gone from your browsers. Finish the next step as well or it may reappear on a system reboot.
Right click on the browser’s shortcut —> Properties.
NOTE: We are showing Google Chrome, but you can do this for Firefox and IE (or Edge).
Properties —–> Shortcut. In Target, remove everything after .exe.
Remove All in One Office from Internet Explorer:
Open IE, click 
—–> Manage Add-ons.
Find the threat —> Disable. Go to —–> Internet Options —> change the URL to whatever you use (if hijacked) —> Apply.
Remove All in One Office from Firefox:
Open Firefox, click 
——-> Add-ons —-> Extensions.
Find the adware/malware —> Remove.
Remove All in One Office from Chrome:
Close Chrome. Navigate to:
C:/Users/!!!!USER NAME!!!!/AppData/Local/Google/Chrome/User Data. There is a Folder called “Default” inside:
Rename it to Backup Default. Restart Chrome.
Avoid this by using SpyHunter - a professional Keep in mind, SpyHunter’s malware & virus scanner is free. To remove the infection, you'll need to purchase its full version. More information about SpyHunter and steps to uninstall.
Type Regedit in the windows search field and press Enter.
Inside, press CTRL and F together and type the threat’s Name. Right click and delete any entries you find with a similar name. If they don’t show up this way, go manually to these directories and delete/uninstall them:
- HKEY_CURRENT_USER—-Software—–Random Directory. It could be any one of them – ask us if you can’t discern which ones are malicious.
HKEY_CURRENT_USER—-Software—Microsoft—-Windows—CurrentVersion—Run– Random
HKEY_CURRENT_USER—-Software—Microsoft—Internet Explorer—-Main—- Random
With hijackers, things are different – All in One Office does not typically work like that. Often it might check your latest web searches and later on adjust the of ads it displays to your current tastes and interests. At first, that might seem somehow intrusive. Still, a research like this might turn out to be beneficial for you. Occasionally you might receive the best offers that you might like at first sight. However, some of the affected users consider a research into their interests like the one performed by any redirecting software quite invasive. Therefore, such webpage-redirecting software is often regarded as potentially unwanted.
Likely ways of ending up infected by All in One Office (and most of the other versions of hijackers):
You may come across a hijacker almost everywhere on the Internet (distributed as parts of torrents or components of web platforms). They could get spread via spam messages or fake ads too. The most common source is free file bundles you may download from the Internet. Precisely, most of the bundles consist of different programs that get spread as one. There, within the software bundle, might be games and interesting apps, Adware-based programs, hijackers and plenty of other types of applications.
Just keep in mind that simply downloading any bundle is NEVER the exact reason for any infection. The next passage explains thoroughly how to install bundles properly and spare yourself and your device the potential irritation that may come from such ad-generating pages like All in One Office.
How to install a program bundle in a wise way and NEVER get affected by any hijacker:
If you implement the instructions below, you may not be affected by All in One Office or any other page redirect like it. You will find the installation options inside the installation wizard when it is displayed. Simply look for the Advanced (oftentimes called Custom or Customized) feature. You should use this option only, when about to perform the installation process.
Ensure that you always stay away from all other installation features that are offered. They might have various names – Brief, Default, Automatic or Quick. Most of them are not good for your PC. In case you do use them, you may have no choice of what to leave behind and what to allow into your system. Consequently, you may face many infections.
Some more prevention tips:
- Avoid at least the most common sources of hijackers – shady sites, misleading web offers, unreliable software developers, etc.;
- Ensure that your operating system works well and is up-to-date. Make certain to install any updates manually and on a regular basis.;
- Strive to use a decent anti-virus software version. If you don’t have any, purchase one. Some of these programs could warn you about sources of ad-producing pages or ones that are suspicious and might represent danger.;
If an annoying infection has already taken place, it is necessary that you should follow the steps inside our Removal Guide to fully resolve the issue.
SUMMARY:
| Name | All in One Office |
| Type | Browser Hijacker |
| Danger Level | Medium (nowhere near threats like Ransomware, but still a security risk) |
| Symptoms | Many modifications of the way your browsers function including the production of too many annoying ads and the possible unwanted redirection to various online platforms. |
| Distribution Method | Via bundling (a process of spreading freeware); torrents, ads, spam in any forms. |
| Detection Tool | We generally recommend SpyHunter or a similar anti-malware program that is updated daily. |
If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!
