Getting popups

I am getting popups every 5 minutes from random sites. They are usually the same. I also scanned my comp and saw that I had CWS.JKSearch and Zestyfind. CWS.JKSearch doesn't go away every time i use CWS Shredder, but I think it is a bug with Spybot from what I have read. However I still continue to receive annoying popups. Here are some of their URLS, prolly dont wana click em but here they are (No explicit content popups, but a lot of popups advertising anti spyware, kinda ironic, and vacations, and weather, dating services) :

http://www.searc-h.com/normal/yyy65.html
http://www.starware.com/2.0.0.0/landing/weather/weather_01.php?banner=w0001&aff_id=weatherazoogle
http://www.redzip.com/index.php?tpid=10216&ttid=100&st=refinance calculator
http://www.spotresults.com/cgi-bin/search.cgi?keywords=video+conference


and tons others!

 

Welcome to MajorGeeks.com, please follow the steps below:

http://www.majorgeeks.com/images/grenade.gif Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

• Make sure you check version numbers and get all updates.

http://www.majorgeeks.com/images/grenade.gif Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

http://www.majorgeeks.com/images/grenade.gifAfter doing ALL of the above and you still have a problem, make sure you have booted to normal mode and run the steps in the below thread to properly use HijackThis and attach the log:

http://www.majorgeeks.com/images/grenade.gif Downloading, Installing, and Running HijackThis

 

I have run Spybot, Lavasoft, CWShredder, Norton 2004, Microsoft Antispyware, and Hijack this. They no longer detect anything as I have deleted and repaired those problems. However, I still get tons and tons of annoying popups. I believe the answer to the problem is in the hijackthis log.

 

I have run Spybot, Lavasoft, CWShredder, Norton 2004, Microsoft Antispyware, and Hijack this. They no longer detect anything as I have deleted and repaired those problems. However, I still get tons and tons of annoying popups. I believe the answer to the problem is in the hijackthis log.

Actually, CWS Shredder always detects and deletes CWS.JKSearch but it always comes back. Ive read that that is just a problem from having Spybot. As well, Ive ran the Trend Online Scanner. It came up with 2 things but they were both removed. An IRC "trojan" and another file with an extension .qf with "Troj" in it I forget the exact name.

As well, on startups, Microsoft AntiSpyware detects something and asks If I want to block something. There is an ip 127.0.0.1. And the popups come in 2's and 1's. They occur VERY frequently and I am frustrated. Ill add more information and update this as I go on.

***SORRY: This is just an update to the previous message, as I couldn't edit it in time***

 

I ran the Online Trojan Scanner, and Panda Scanner doesn't seem to work for me. Ive attached a screenshot of the results of the Trojan SCan. Im just surprised all my other software never detected this! I am not concerned about the IRC. It poses no threat to me. REFER TO HIJACK THIS IN EARLIER POSTS

 

Download this trial version of Ewido Security Suite

• Install ewido security suite
• Launch ewido, there should be an icon on your desktop double-click it.
• The program will have a window come up. One of the buttons on the left is to Update. Click the Update button.and then Start the Update. The update will start and a progress bar will show the updates being installed.
• After it completes the update, click the Scanner button

Now exit Ewido. Now print the below instructions or save them locally because I want you do have no browsers opened and also have no connection to the internet (unplug your cable) while doing the below.

Okay, reboot into safe mode and follow the steps below. (If you have any problems at all trying to get into safe mode to complete these steps, just run them in normal boot mode and make sure you tell me when you come back.)

Open up Ewido and do the following:

• Click on Scanner
• Then click Settings
• Under What to Scan? Select Scan every file
• Then click OK
• Click on Complete System Scan and the scan will start.
• Let the program scan the machine

While the scan is in progress you will be prompted to clean files that are infected. Leave the defaults selections (to Remove and backup) and click OK. To save yourself some time, you can select Perform action with all infections and then click OK. With the option to scan every file, a lot of cookies will be removed.

Once the scan has completed, there will be a button located on the bottom of the screen named Save report

• Click Save report
• Save the report to your desktop or anyplace you will be able to find it to upload here.

Reboot into normal mode and reconnect to the internet.

Come back here and post the Ewido Scan Report along with a fresh HJT log.

 

Here is one of the two logs as requested. I've also included a picture of an error message I've received. Thanks, I appreciate the help so far:

 

Here is the EWIDO Log. I have here a .zip, because the file was simply too large to upload.

 

Here We go:

Ive ran the Spy Sweeper but it said there is still a problem and it would try to fix itself when my computer restarts. However, I saw on the blue screen on loadup that there was a lot of text, which a lot of it read :REMOVE FAILED: blah blah blah. Then it proceeded to log me in. At the moment I am running the scan again, but here are two logs.

 

sorry i forgot to save it as spysweeper.txt

 

Actually, I ran it again in Normal Mode. The problem was that the files were in my Recycling Bin after that (Norton Protected Bin) and I simply had to empty the bin. The first time did the trick. THANKS A LOT. I really appreciate the help you have given me. If I discover there are still problems Ill be back haha but hopefully that won't be the case. Thanks a lot!