O18 - Protocol

Yes, it is a CWS hijacker. You could try running both of these in safe mode:
CWShredder
CoolWWWSearch.SmartKiller

but I'm guessing it will not work. We may have to unregister the DLL, delete the file, and then search the registry for all occcurrences and delete them by hand. And then fix the line in HijackThis.

You other problem with the virus is in system restore. Disable system restore and reboot.
Then renable system restore and reboot again. Now see if it is gone. To diable/enable system restore see this.

 

From what I am reading, you read the sticky, but missed a few things. Try these step by step as well when done with what chaslang said:

http://forums.majorgeeks.com/showthread.php?t=35407

 

Okay! So what's the current status?

 

Download and install Registrar Lite: http://www.majorgeeks.com/download469.html

And Click on the Search icon (the magnifier glass).
Paste into the "Text to search for" box the following:

msxmlfilt.dll

and hit your Enter key

Tell me if you get any matches on the right side of the Window. And Copy and Paste back here what you get.

 

When you say you did all that....did you do it in safe mode?

 

Do the stuff I told you with Registar Lite.

 

Okay! So all is good here? No more problems?

 

Your welcome! It's good to have another issue closed!