does anybody know why this ware keeps on appearing?

Actually, if you expand that first item (click on it to see the details) you can see if it is just the file association for .REG files as Rodehard mentions. If you use ScriptSentry or any number of other script checking and other privacy tools, you'll see messages like that. I have that here because I change my association on REG files to prevent against accidentally running one. If you are using such a tool, then it is correct to ignore that warning.

The DSO Exploit can't currently be fixed by Spybot. It's just a simple bug in the new 1.3 Spybot release. It is explained in more detail than you'll probably want to read over in this thread at Spybot's official forum:

http://forums.net-integration.net/index.php?showtopic=15308

The long and the short of it is that if you are patched from Microsoft Windows Update, you can just ignore the DSO Exploit warnings. Many people have been getting overly concerned about that for no good reason. It is not a sign that you are infected, it's just a simple IE setting that Spybot handles incorrectly.

However, the fact that you are getting unknown, unexplained popups is a problem! You should follow the advice above, and post a HijackThis log in the log review forum section. This thread explains how to post a log there:

https://www.wilderssecurity.com/showthread.php?t=15913