• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 656
  • Last Modified:

Nation Zoom virus

I have a badly infected system with Nation Zoom.   It doesn't appear that doing a system restore gets rid of it which suggests that all of the restore points may be infected.   Has anyone of the EE's advisors found a successful way to completely rid a Windows 7 system of the virus?  I've used all of the normal things...virus engine, malwarebytes, ccleaner etc. etc.  I have not tried combo fix and tend to stay away from that until I have no other mechanism.  Any ideas will be appreciated.
0
tonyadam
Asked:
tonyadam
  • 3
  • 2
  • 2
2 Solutions
 
aadihCommented:
It's an add on (plugin). Please follow the instructions at the following page to remove it:

http://malwaretips.com/blogs/nation-zoom-removal/ >
0
 
tonyadamRetiredAuthor Commented:
I already did that and it did not remove it from the IE browser.  It did help with removing it from Chrome and Firefox.  Will try again.  I'm doing another system restore right now to the oldest one I can ID to see if the virus is embedded in that restore point as well. Hopefully, it isn't.  Will post again when I get the restore point up and running.
0
 
aadihCommented:
Try scanning your PC with AdwCleaner:

http://www.bleepingcomputer.com/download/adwcleaner/ >
0
What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

 
comfortjeaniusCommented:
windows key + r

Type: inetcpl.cpl
Advanced tab -----> Reset.... ------> check "Delete personal settings" ------> Reset ------> click "OK" -----> click "Close

Remove Nation Zoom extensions from Firefox

Tools ---> Add-ons ----> Extensions tab -----> "Remove Nation Zoom, Extended Protection and any other unknown extensions from Mozilla Firefox.

Reset your default search engine and homepage from NationZoom.com to default on Firefox, by installing the SearchReset extension add-on


If you have Chrome  Go to Tools ----> Extensions tab -------> remove " Extended Protection"


Right-click the Internet Explorer Icon -------> Properties --------> Shortcut -------> Target  "Check to see if a nationzoom.com URL is after the iexplore.exe"

Do the same for Firefox if it is install, and probably for Chrome.



    For Internet Explorer: “C:\Program Files\Internet Explorer\iexplore.exe” for Windows 32-bit or “C:\Program Files\Internet Explorer (x86)\iexplore.exe” for Windows 64-bit.

    For Mozilla Firefox: “C:\Program Files\Mozilla Firefox\firefox.exe” for Windows 32-bit or “C:\Program Files (x86)\Mozilla Firefox\firefox.exe” for Windows 64-bit.

    For Google Chrome: “C:\Program Files\Google\Chrome\Application\chrome.exe”

Now Scan with Bleeping Computer Adwcleaner

Since you already scan with Malwarbytes

Try HitmanPro


Plus if you get lost in the instruction here some help
0
 
tonyadamRetiredAuthor Commented:
I elected to award points to both of you for your prompt response.  Basically, I restored the oldest restore point I could find and that fixed the problem.  I did run Adw and the other recommendations to ensure Nation Zoom was not present.  ADW did remove lots of junk which should help. All seems OK now.  Thanks again.
0
 
aadihCommented:
Great. You did it. :-)
0
 
comfortjeaniusCommented:
Good Job!!!

@(^_^)@
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 3
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now