Solved

Nation Zoom virus

Posted on 2013-12-10
7
638 Views
Last Modified: 2013-12-10
I have a badly infected system with Nation Zoom.   It doesn't appear that doing a system restore gets rid of it which suggests that all of the restore points may be infected.   Has anyone of the EE's advisors found a successful way to completely rid a Windows 7 system of the virus?  I've used all of the normal things...virus engine, malwarebytes, ccleaner etc. etc.  I have not tried combo fix and tend to stay away from that until I have no other mechanism.  Any ideas will be appreciated.
0
Comment
Question by:tonyadam
  • 3
  • 2
  • 2
7 Comments
 
LVL 24

Expert Comment

by:aadih
ID: 39708853
It's an add on (plugin). Please follow the instructions at the following page to remove it:

http://malwaretips.com/blogs/nation-zoom-removal/ >
0
 

Author Comment

by:tonyadam
ID: 39708869
I already did that and it did not remove it from the IE browser.  It did help with removing it from Chrome and Firefox.  Will try again.  I'm doing another system restore right now to the oldest one I can ID to see if the virus is embedded in that restore point as well. Hopefully, it isn't.  Will post again when I get the restore point up and running.
0
 
LVL 24

Accepted Solution

by:
aadih earned 250 total points
ID: 39708900
Try scanning your PC with AdwCleaner:

http://www.bleepingcomputer.com/download/adwcleaner/ >
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 14

Assisted Solution

by:comfortjeanius
comfortjeanius earned 250 total points
ID: 39708973
windows key + r

Type: inetcpl.cpl
Advanced tab -----> Reset.... ------> check "Delete personal settings" ------> Reset ------> click "OK" -----> click "Close

Remove Nation Zoom extensions from Firefox

Tools ---> Add-ons ----> Extensions tab -----> "Remove Nation Zoom, Extended Protection and any other unknown extensions from Mozilla Firefox.

Reset your default search engine and homepage from NationZoom.com to default on Firefox, by installing the SearchReset extension add-on


If you have Chrome  Go to Tools ----> Extensions tab -------> remove " Extended Protection"


Right-click the Internet Explorer Icon -------> Properties --------> Shortcut -------> Target  "Check to see if a nationzoom.com URL is after the iexplore.exe"

Do the same for Firefox if it is install, and probably for Chrome.



    For Internet Explorer: “C:\Program Files\Internet Explorer\iexplore.exe” for Windows 32-bit or “C:\Program Files\Internet Explorer (x86)\iexplore.exe” for Windows 64-bit.

    For Mozilla Firefox: “C:\Program Files\Mozilla Firefox\firefox.exe” for Windows 32-bit or “C:\Program Files (x86)\Mozilla Firefox\firefox.exe” for Windows 64-bit.

    For Google Chrome: “C:\Program Files\Google\Chrome\Application\chrome.exe”

Now Scan with Bleeping Computer Adwcleaner

Since you already scan with Malwarbytes

Try HitmanPro


Plus if you get lost in the instruction here some help
0
 

Author Closing Comment

by:tonyadam
ID: 39709077
I elected to award points to both of you for your prompt response.  Basically, I restored the oldest restore point I could find and that fixed the problem.  I did run Adw and the other recommendations to ensure Nation Zoom was not present.  ADW did remove lots of junk which should help. All seems OK now.  Thanks again.
0
 
LVL 24

Expert Comment

by:aadih
ID: 39709089
Great. You did it. :-)
0
 
LVL 14

Expert Comment

by:comfortjeanius
ID: 39709106
Good Job!!!

@(^_^)@
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Some of the most commonly posted questions in the "Virus & Malware" Zones are related to the family of rogue malware with the date "2012" somewhere in the title. Examples: XP Antispyware 2012 XP Antivirus 2012 XP Security 2012   XP Home Sec…
Many admins will agree: WSUS is is a nice invention but using it on the client side when updating a newly installed computer is still time consuming as you have to do several reboots and furthermore, the procedure of installing updates, rebooting an…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now