suspect mailicous spyware

You have not installed HijackThis properly per the directions in step 7 of the READ & RUN ME. Please follow those steps. And then continue with the below.

Look in Add/Remove programs for the below and uninstall if found:
Time or Time Sync
Daily Weather Forecast

If you are using WinXP or WinMe, make sure you have system restore disabled (per the tutorial).
For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

Please run HijackThis and click on the "Open the Misc Tools Section" button on the open page. Then select "Open process manager" on the left-hand side. Look for the following process (or processes) and one at a time kill them by selecting it and then click "Kill process". Then click yes.
C:\Program Files\Time Sync\time.exe
C:\Program Files\Daily Weather Forecast\weather.exe

After killing all the above processes, click "Back".
Then please click "Scan" and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {1B68470C-2DEF-493B-8A4A-8E2D81BE4EA5} - (no file)
O4 - HKLM\..\Run: [Daily Weather Forecast] C:\Program Files\Daily Weather Forecast\weather.exe
O15 - Trusted Zone: *.coolwebsearch.com
O15 - Trusted Zone: *.searchmeup.com

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete:
C:\Program Files\Daily Weather Forecast <--- the whole folder
C:\Program Files\Time Sync <--- the whole folder

Now reboot in normal mode and post a new HJT log. And tell us how things are working.

 

Are you sure you fixed these:

O15 - Trusted Zone: *.coolwebsearch.com
O15 - Trusted Zone: *.searchmeup.com

If you did and they come back, follow the below.

Please download DelDomains and unzip it to your desktop.

Find the files from deldomains.zip on your Desktop and RightClick on the deldomains.inf file and select Install.

(Please note if you have Spybot S&D installed you will need to "Immunize" again because deldomains will remove all of the sites Spybot adds.)

Are those O15 lines are gone?

 

Did you run CWShredder from the READ & RUN ME?

Even if you did, disconnect from the Internet (unplug) and run it again. Let me know if anything is found.

 

Did you install, update, run a scan with, and use Spybot's Immunize feature? If not, you must do that. Enable the SDhelper but do not use Teatimer.


Also download HOSTER and then follow the below steps.

• Unzip Hoster to a convenient folder such as C:\Hoster
• Run Hoster.exe, click Restore Original Hosts and then click OK.
• Click the X to exit the program