I am a fellow tech and I never thought I'd find myself in this position.
Somehow I have become infected with popups. I use AVG Anti Virus, Adware, Spybot, HijackThis, etc all on my system very regularly and keep it fairly clean.
However today, somewhere along the line (i think from an advertistment on a regularly visited site), I have become infected!
My AVG started going nuts, I healed all the files, ran a scan and that was clean. However Spybot found that I have core.cache.dsk located in windows/system32/drivers.
I booted into safe mode and deleted this file and also disabled sys restore, deleted all temp files, and ran HJT (my log is attached) but it continues to rewrite itself somehow.
I have also ran numerous SmitFraud fixes to no avail. I have tried File assassin to no avail. I have searched the registry high and low and have deleted many keys but this file and it's popups from zedo still return upon every single reboot. Also, popups are in mozilla + IE. I have renamed the file in safe mode, but another copy gets rewritten on reboot.
Additionally I have followed all instructions found here with no success
I'm out of ideas, please heeeeeelppppppppp
Edited by akirasplace, 10 January 2008 - 01:57 PM.