See this discussion in NI forums - http://forums.net-integration.net/index.php?showtopic=13495 regarding "CWS.GoogleMS.3"
Another discussion at Lavasoft forums - http://www.lavasoftsupport.com/index.php?showtopic=23642
not the same but almost the same and one of the poster (spy1) seems has a point. He sayd "This doesn't mean that you're infected with the triple-x toolbar, it just means that CWS is picking up on the entry in the "Restricted Sites" list of IE."
In your case, Pestscan is maybe picking up the entry in Restricted sites list of IE which the entry added by SpywareBlaster for protection/blocking?? and I think it is correct. Look at your restricted sites list and you'll find the entry xxxtoolbar.com that was added by SpywareBlaster.
Hope above helps.
Windows XP pro sp1, most critical updates, Spywareblaster 3.1, Spybot SD 1.2, Adaware 1.81, NAV 2003 .. all with latest updates.
I enable all protection on spywareblaster (2869 items)
I went to Pestscan, and scan my pc online.. it found 1 hijacker -- CWS.googleMS.3
in the registry key: hkey_current_user\software\microsoft\windows\current version\internet setting\zone map\domains\xxxtoolbar.com
I remove/delete that registry, went to pestscan, scan again.. Found nothing.
Run Spywareblaster, it have 1 disable protection, xxxtoolbar (unchecked)
I put a checkmark on the box... went to pestscan.. it found 1 hijacker again.
Can anyone clearup my confusion here?
What should I do?