Hi guys,
I have some trouble with my chrome browser. Everytime I reset the default start website of my browser, it changes back into some strange malware sites.
When i’m scanning and fixing my computer with MBAM, the issue is back after a restart.
Additionaly I have a Chrome Addon called “Shortcuts for Google All Services”, which I haven’t installed there.
I’ve attached the required logs.
Thanks in advance
Hi annkii, welcome to the forum 
As it is night here in Europe, most of our experts will be sleeping right now.
Be patient, you will be helped as soon as possible.
Greetz, Red.
Let me know if this stops it
CAUTION : This fix is only valid for this specific machine, using it on another may break your computer
Open notepad and copy/paste the text in the quotebox below into it:
CreateRestorePoint: CHR HomePage: Default -> hxxp://start.mysearchdial.com/?f=1&a=dvd_14_17_ch&cd=2XzuyEtN2Y1L1QzuyD0CyDtCyE0FyC0F0CyCtDyDzzzzyCzytN0D0Tzu0SzzyEyEtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1OtN1L1G1B1V1N2Y1L1Qzu2SyByC0AyEyEyBzyyDtG0E0D0AyDtGyE0BtA0EtGyEzyyCtAtGtCyB0CtC0B0A0B0CtBzy0E0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCtCyB0ByBtByC0AtG0F0BzzzztG0F0A0BzztGyDyCtC0DtGyCyC0BtAyD0C0CtD0D0E0CtD2Q&cr=899995655&ir= CHR StartupUrls: Default -> "hxxp://start.mysearchdial.com/?f=1&a=dvd_14_17_ch&cd=2XzuyEtN2Y1L1QzuyD0CyDtCyE0FyC0F0CyCtDyDzzzzyCzytN0D0Tzu0SzzyEyEtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1OtN1L1G1B1V1N2Y1L1Qzu2SyByC0AyEyEyBzyyDtG0E0D0AyDtGyE0BtA0EtGyEzyyCtAtGtCyB0CtC0B0A0B0CtBzy0E0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCtCyB0ByBtByC0AtG0F0BzzzztG0F0A0BzztGyDyCtC0DtGyCyC0BtAyD0C0CtD0D0E0CtD2Q&cr=899995655&ir=","hxxp://www.mystartsearch.com/?type=hp&ts=1428614744&from=cor&uid=TOSHIBAXMQ01ACF050_73BTC1IBTXX73BTC1IBT","hxxp://www.istartsurf.com/?type=hp&ts=1445889059&z=f9a3419eab38e55c003e277g9z1z7wbb6b0bfb4ecc&from=cornl&uid=TOSHIBAXMQ01ACF050_73BTC1IBTXX73BTC1IBT","hxxp://www.yoursites123.com/?type=hp&ts=1449650222&z=317e19c2da5a103cdd4bb2eg0z2z2t4q5wbe4o9g7b&from=ient07021&uid=TOSHIBAXMQ01ACF050_73BTC1IBTXX73BTC1IBT" CHR Extension: (Shortcuts for All Google™) - C:\Users\Anki\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdiejbegdjikmehflknhkbieocmnogcf [2015-12-01] 2015-12-09 09:37 - 2015-10-26 20:51 - 00000074 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat Task: {F2D5FE84-D2A5-4E0E-A122-8AA5B135DEF2} - \AutoKMS -> Keine Datei <==== ACHTUNG RemoveProxy: EmptyTemp: CMD: bitsadmin /reset /allusers
Save this as fixlist.txt, in the same location as FRST.exe
https://dl.dropboxusercontent.com/u/73555776/FRSTfix.JPG
Run FRST and press Fix
On completion a log will be generated please post that
THEN
Please download AdwCleaner by Xplode onto your desktop.
[*]Close all open programs and internet browsers.
[*]Double click on AdwCleaner.exe to run the tool.
[*]Click on Scan.
[*]After the scan is complete click on “Clean”
[*]Confirm each time with Ok.
[*]Your computer will be rebooted automatically. A text file will open after the restart.
[*]Please post the content of that logfile with your next answer.
[*]You can find the logfile at C:\AdwCleaner[S0].txt as well.
Hi :),
thank you for your fast help! I executed the required steps and attached the two logs.
Is Chrome behaving now ?