I am getting those nasty, annoying pop ups about hxxp://getusaaall.info/?e=vdx%26cht=2%26dcu=1%26cpatch=2%26dcs=1%26pf=1%26unp=Azm9CdOLv7DVDyx. I have done everything you guys have suggested to other people and I still get the pop up. HELP ME STOP ALL THE POPUPS. Here is the file logs from frst and aswmbr. now what do i do since i have done everything you have suggested to other people?
Monitoring …
Be right back.
And I shall require Addition log from FRST.
Here is addition log. another popup just popped up. its really annoying >:(
Here is a snapshot of the popup
[list]
I understand you but you have to be patient. 
Multiple Antivirus Programs
You are running more than 1 Antivirus program!
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
Running - more than one - antivirus program is not recommended because:
[*]They can conflict with each other.
[*]Report the other antivirus software as malicious.
[*]Antivirus programs use an enormous amount of computer’s resources… actively scanning your computer.
[*]Can cause your computer to become unstable…run slowly and even, in rare cases, BSOD crash…etc
I strongly suggest you uninstall one of them. Which one, is your decision.
1. Open notepad and copy/paste the text present inside the code box below.
To do this highlight the contents of the box and right click on it. Paste this into the open notepad.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to the operating system
Start CMD: dir %APPDATA%\Google\Update File: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll Folder: C:\ProgramData\TEMP CMD: dir C:\ProgramData\TEMP Folder: C:\Windows\System32\Tasks\{75CAF1CD-0454-4D41-9C1D-4E3B0AF10D4B} Hosts: Task: {6E458989-4AAB-4EA6-A249-ECC8B844C486} - System32\Tasks\Rocket Updater => C:\Users\Owner\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: C:\Windows\Tasks\Rocket Updater.job => C:\Users\Owner\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION HKU\S-1-5-21-461294110-2622093373-1766160514-1000\...\MountPoints2: E - E:\Intel.exe HKU\S-1-5-21-461294110-2622093373-1766160514-1000\...\MountPoints2: {23731f04-a4ac-11e3-9026-b4c7cf651f6b} - E:\Intel.exe SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_md_14_28_ch&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyE0FyB0EyEtDyCtA0CtN0D0Tzu0SzytByDtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDtCtDzyyCtA0BzytGzyyE0DyDtG0E0B0C0BtGzy0DyBtBtGtA0Azy0B0CyDyCyB0CyEtBzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0C0DtBtBzzzytDtGyC0BtCtBtG0A0B0CyDtGyB0ByDzztGtDzyzzzytC0DtCyC0F0E0CtC2Q&cr=1069170338&ir= SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_md_14_28_ch&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyE0FyB0EyEtDyCtA0CtN0D0Tzu0SzytByDtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDtCtDzyyCtA0BzytGzyyE0DyDtG0E0B0C0BtGzy0DyBtBtGtA0Azy0B0CyDyCyB0CyEtBzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0C0DtBtBzzzytDtGyC0BtCtBtG0A0B0CyDtGyB0ByDzztGtDzyzzzytC0DtCyC0F0E0CtC2Q&cr=1069170338&ir= SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_md_14_28_ch&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyE0FyB0EyEtDyCtA0CtN0D0Tzu0SzytByDtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDtCtDzyyCtA0BzytGzyyE0DyDtG0E0B0C0BtGzy0DyBtBtGtA0Azy0B0CyDyCyB0CyEtBzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0C0DtBtBzzzytDtGyC0BtCtBtG0A0B0CyDtGyB0ByDzztGtDzyzzzytC0DtCyC0F0E0CtC2Q&cr=1069170338&ir= SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_md_14_28_ch&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyE0FyB0EyEtDyCtA0CtN0D0Tzu0SzytByDtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDtCtDzyyCtA0BzytGzyyE0DyDtG0E0B0C0BtGzy0DyBtBtGtA0Azy0B0CyDyCyB0CyEtBzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0C0DtBtBzzzytDtGyC0BtCtBtG0A0B0CyDtGyB0ByDzztGtDzyzzzytC0DtCyC0F0E0CtC2Q&cr=1069170338&ir= SearchScopes: HKCU - {BA3B802F-CC2E-4F0E-B452-8A3CE0C1C223} URL = https://www.google.com/search?q={searchTerms} U3 aswMBR; \??\C:\Users\Owner\AppData\Local\Temp\aswMBR.sys [X] Reboot: C:\Users\Owner\AppData\Local\Temp C:\Users\Owner\AppData\Roaming\ROCKET~1 C:\Users\Owner\Documents\Optimizer Pro C:\Users\Owner\DSETUP.dll C:\Users\Owner\dsetup32.dll C:\Users\Owner\DXSETUP.exe CMD: del c:\windows\prefetch\*.* /f /s /q CMD: ipconfig /flushdns CMD: ipconfig /release CMD: ipconfig /renew CMD: netsh int ip reset CMD: netsh winsock reset catalog CMD: type C:\mamb.txt End
2. Save notepad as fixlist.txt to your Desktop.
NOTE: => It’s important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
3. Run FRST/FRST64 and press the Fix button just once and wait.
If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
The tool will make a log on the Desktop (Fixlog.txt). Please attach it to your reply.
Note: If the tool warned you about the outdated version please download and run the updated version.
both are on my desktop and the FRST64 is telling me when i hit fix that fixit.txt is not found.
And I uninstalled Microsoft Security Essential. Still get the popup
FRST64 is originaly located in Download folder. You may using a shortcut.
Cut the original FRST and paste it to desktop or … paste the FixList.txt into Download folder and execute it.
I will need a FixLog.
Here is the fixlog. i finally got it to work, when i moved them both to documents folder
Popups have stopped. So whatever fixed the situation I am happy that it did fix it. Those annoying popups saying that a threat has been detected has stopped.
Thank you.
If it starts up again I’ll let you all know
You did not executed my fix, the fix a created just for you. Execute my fix and post me the log.
here
Let’s try one more time. Do not use scripts that are not made for you.
Re-create FixList and run in by pressing the Fix button on FRST too. Post me the fresh created FixLog.
https://forum.avast.com/index.php?topic=152166.msg1105325#msg1105325
i had to reword it from fixit to fixlist. otherwise it wasnt working
This is the one. Now please run this FixList, post fresh created FixList and tell me how it the computer running now?
1. Open notepad and copy/paste the text present inside the code box below.
To do this highlight the contents of the box and right click on it. Paste this into the open notepad.
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to the operating system
Start
Folder: C:\Users\Owner\AppData\Google\Update
C:\Users\Owner\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll
End
2. Save notepad as fixlist.txt to your Desktop.
NOTE: => It’s important that both files, FRST and fixlist.txt are in the same location or the fix will not work.
3. Run FRST/FRST64 and press the Fix button just once and wait.
If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
The tool will make a log on the Desktop (Fixlog.txt). Please attach it to your reply.
Note: If the tool warned you about the outdated version please download and run the updated version.
here
here. its been running just fine for over an hour now
sorry for the post twice.