SpywareQuake Is Still On My Computer!

ok so i did the instructions that the spywarequake thread told me. and it didnt work.
none of the file references that are listed in the removal thread were on my computer. not a single one. but as the thread said, i proceeded anyway. so i ran RunThis.bat and it looked as if it found something. however, when i rebooted i still had the damn spywarequake!
any help?

-JLuv

 

sweet.
worked like a charm.
thanks.

-JLuv

 

DAMMIT!! ITS STILL HERE!
i tried to get rid of spywarequake again today to no avail. this is the 3rd time in 2 days i've had to try to get rid of this. any help?
i attached my latest smitfiles.txt and hijackthis log.
any help?

-JLuv

 

ok i followed the "RUN ME FIRST" link and did everything it said then ran through the spywarequake removal. i had a cpl problems tho. Microsoft Defender wouldnt update its definitions. whenever i tried, i got an error. also, CCleaner would spit an error at me when i tried to run it in Safe Mode. so those two programs were out of the door. the other ones worked great and i also added Webroot Spysweeper to the list b/c i have a subscription to it.

ok i think i got rid of spywarequake. however, i now think that the problem lies elsewhere. as soon as i got rid of spywarequake i rebooted into normal mode and reconnected my cat5 to come here and post. almost immediately, my Symantec AV auto-protection detected at dialer (which i've also been gettin ever since i've had spywarequake) called "Dialer.DialPlatform" and once i opened IE6 i noticed my homepage had been hijacked (despite the fact that i had went in and set it manually when i rebooted). then i noticed my hdd spinning for about 3 min straight with only hijackthis and firefox, open. i hope thats of no importance. i then ran hijackthis and fixed a few things (very carefully i might add) according to the hijackthis guide.

also, i think i'll mention that i noticed winlogonhook in one of my scans. so i'll go through that procedure also right after i post this.

any other suggestions?

-JLuv

 

ok, i *think* i'm ok :knock on wood:.
all of this got really really frustrating so i used linux for a few days b/c the spyware was just plain annoying! but i came back with a vengence...
i went through the special steps for Winlogonhook, then SpywareQuake, then the long READ ME FIRST, then Alternative Scans.
winlogonhook seemed to work, my second scan in Webroot came out clean as a whistle.
i followed all steps this time for SpywareQuake and it seemed to work. i dont think i had any problems.
the READ ME FIRST part had a cpl hurdles. again, MS Defender wouldnt update at all. and Counterspy installed fine the 1st time, but when i went to update it i got an error (sry for the lack of specific errors). and everytime i tried to update Spybot i got "bad checksum". even on diff servers. but all of my other definitions and programs updated fine. almost all scans came out clean except spybot. which has a recurring find of "SexList". Bitdefender online scan came out clean and i totally forgot to save the logfile. panda found some stuff but i couldnt save the log due to horrible screen resolution that safe mode wouldnt let me change. i couldnt see any of what it found not could see any buton to press to continue after the scan.
the Alternatice Scans section was a failure. none of the software on that page would install on my computer. almost every single download ran into an error. however, i did manage to get a-squared which returned a clean scan.
i did not follow the instructions that are posted in this thread about Pocket KillBox but i'll do that also when time permits.
i ran hijackthis and i had it fix an R3 that said "URLSearchHookIsMissing" and i am skeptical about the O9 bdoscandel.exe. i googled it and no results mentioned it as harmful so i left it alone. and there are also a few O20's that say Winlogon. is that something from Winlogonhook??
and as for "YahooWidgetEngine.exe". its nothing to worry about. i have 3 Yahoo! Widgets running at all times and they start at start-up. i guess the 4th instance of that is just the engine in general that runs in my taskbar.
thanks for all your help.
and if i forgot to attach somethin let me know.
edit: just fixed the Yahoo! link.

 

dammit!!
Symantec AV just popped up telling me about somethin called "Adware.PurityScan". its been poppin up for a cpl days and gets quarantined by Symantec everytime. do u know what this is?