item found in Malwarebytes (from udemy.com?)

Thanks for the updates.

I mean no disrespect, but I think we might be veering a bit off-topic?

@Havoc originally reported the same PUP file detection on both MBAM and AdwCleaner scans.
As I mentioned, a VT scan of the file may or may not be entirely insightful, as some of the VT scanners do not target PUPs.
In order to determine if that PUP detection may or may not be a F/P for those 2 scanners, MBAM and AdwCleaner, one would need to follow the steps I already suggested to submit at least an MBAM scan log (or, preferably, the zipped file itself) in the F/P forum section at Malwarebytes forum.
(There is a similar process for AdwCleaner HERE.)

AFAIK, @Havoc reported a file detection, NOT an IP/website block, from MBAM for udemy.com.
There's no harm submitting that URL to VT or another site for analysis, of course.
But even if the site scans clean at VT, there still might be PUPs associated with the software available at that site. Checking the site, rather than the software itself, will yield different results.
If the vendor bundles their software with PUPs, then the site may well be clean, even if the software is not.

If, in fact, it is a legitimate PUP detection, and if it is being regenerated from your sync'd Chrome data, then getting rid of it will likely entail the steps I already mentioned. If it's coming from something on your system, then a bit of junkware/adware/malware cleanup may be needed.

In order to reduce the guesswork and to have a bit of real data with which to work, @Havoc, perhaps you might please ATTACH to your next reply here in this thread both the MBAM scan log and the AdwCleaner scan logs. (Let us know if you need help finding and exporting those logs.)

Just a suggestion,
MM

Hi, @Havoc:

OK, sounds good.
If it returns, seeing some scan logs and a bit of deeper digging may be needed.

Cheers,
MM

{P.S. @DavidE: no offense intended. VT suggestions were excellent. Was just trying to keep the thread on-topic re: PUP file detection in MBAM and AdwCleaner scans, the most definitive means of ruling out a possible F/P, and likely explanations for the reappearance of the detection in multiple scans.}

Hi, @Havoc:

I lack the official training to guide you through malware removal. That is best left to someone with more formal expertise in the matter. And I do not personally use Chrome, so I lack first-hand knowledge of the program.

Unless you disabled Chrome sync before you reset it, you may be getting reinfected.

However, the AdwCleaner detections you show seem to be different from the one originally reported in your original post about the PUP in MBAM. And AdwCleaner can have false positives.
But it's hard to say for sure what is going on without seeing the LOGS, rather than a screenshot snippet.

Until someone more expert comes along here at sevenforums, I suggest the following:

• You may wish to report the AdwCleaner findings HERE. They will help you to determine if the AdwCleaner detections might be a false positive -- if they are not, they will direct you to the proper sub-forum for some guided malware cleanup.
• Or, you may wish to post directly in one of several, reputable, dedicated computer disinfection fora (G2G, bleepingcomputer, Malwarebytes, etc.) and likewise get some guided help with cleanup. The expert help there is free. They will walk you through the proper scans in the correct sequence in order to find and remove malware and to help harden your defenses to prevent reinfections.

Please let us know how it goes, so that we can all learn.


Thank you,
MM

Hi,
Yep you did pick up some extra search engines
They should show up as extensions I believe.
Also review you're uninstall a program section for the listings.

Hi,
Go to Chrome settings and on the left column go to extensions see what is in there.