After years without any infections, I got 8 PUPs

[REDACTED]

Hello everyone.

Today, I was scanning my computer for any problems, just like something that I do from time to time.
But MBAM found something (actually 8 PUPs) in my system: PUP.Optional.Softonic.

All of them were located in the same folder: C:\USERS\HIRO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\Web Data.
It's strange because I always use Google Chrome with Sandboxie (and before the scans, I actually deleted the sandbox, so no file should remain).

Well, I will provide the logs as asked in the pinned thread.
I just want to know if I need to reinstall WIndows (maybe I got something worse, or maybe even PUPs can be dangerous).

Thanks in advance.

Extra information:
- What scans I did: AIS full scan (nothing detected), AIS boot scan (nothing detected), ESET Online Scanner (nothing detected) and MBAM (8 files detected).
- The AIS full scan and ESET scans I did yesterday, and I did use my PC today, but I didn't installed anything or even opened Chrome today.
- I did both AIS full scan and ESET Online Scanner again and nothing was detected
- The whole computer was acting normal before finding the PUPs, and it's still normal.
- I didn't know if I had to run FRST with admin privileges, so I did run it as a admin.

[Pondus]

PUP are not infections

PUP = Possible Unwanted Program .... unwanted for you can be wanted for someone else

AIS full scan (nothing detected), AIS boot scan (nothing detected)

Why both?

[REDACTED]

PUP are not infections

PUP = Possible Unwanted Program .... unwanted for you can be wanted for someone else

AIS full scan (nothing detected), AIS boot scan (nothing detected)

Why both?

PUP may not be infections, but I still got them from somewhere. So maybe from a hidden malware?

Why both?

Both because Avast says that the boot scan: "can go deeper in the computer when compared to normal scans, which is a perfect place for viruses to hide".

[Pondus]

PUP may not be infections, but I still got them from somewhere. So maybe from a hidden malware?

PUP arrive as extra/bundled crap programs with other stuff you download
exs: CCleaner will give you a toolbar / Java used to give you ask search / adobe used to come with McAfee security scan .......

Malwarebytes PUP criteria  >>  https://www.malwarebytes.com/pup/

Still why run both?, if you run boot scan why run full scan   
Anyway Boot scan is not meant to be used as a regular scanner, it is a special tool to run if you have a problem. The advantage of boot scan is better removal of some stubborn malware IF detected


Softonic >> https://en.wikipedia.org/wiki/Softonic.com
You can clear additional browser crap with Malwarebytes AdwCleaner

[REDACTED]

PUP may not be infections, but I still got them from somewhere. So maybe from a hidden malware?

PUP arrive as extra/bundled crap programs with other stuff you download
exs: CCleaner will give you a toolbar / Java used to give you ask search / adobe used to come with McAfee security scan .......


Still why run both?, if you run boot scan why run full scan   
Anyway Boot scan is not meant to be used as a regular scanner, it is a special tool to run if you have a problem. The advantage of boot scan is better removal of some stubborn malware IF detected


Softonic >> https://en.wikipedia.org/wiki/Softonic.com
You can clear additional browser crap with Malwarebytes AdwCleaner

Thank you for the information.
I just did a quick scan of MBAM and it found again the same 8 PUPs on the same place.
I will take a look at the AdwCleaner.

[Pondus]

I just did a quick scan of MBAM and it found again the same 8 PUPs on the same place.

Sometimes PUP will not go voluntarily and is one of the criteria for calling it a PUP

Malware experts are notified and will check logs when online

[REDACTED]

I just did a quick scan of MBAM and it found again the same 8 PUPs on the same place.

Sometimes PUP will not go voluntarily and is one of the criteria for calling it a PUP

Malware experts are notified and will check logs when online

No problem. Should I still try using the AdwCleaner? Or should I wait for more instructions?

[Pondus]

No danger in running AdwCleaner.
If you run it and and remove anything, i suggest you attach fresh FRST logs so it will show latest status

[REDACTED]

No danger in running AdwCleaner.
If you run it and and remove anything, i suggest you attach fresh FRST logs so it will show latest status

I run AdwCleaner. Some things, like registry keys where deleted.

I will posts the AdwCleaner log and new FRST logs.

[Sass Drake]

You are clean.

• The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.
Run the tool and check the following boxes below;
Remove disinfection tools
Create registry backup
Purge System Restore
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

[REDACTED]

You are clean.

• The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.
Run the tool and check the following boxes below;
Remove disinfection tools
Create registry backup
Purge System Restore
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

Hello, and thank you for the answer.
Do I need to run the file you just posted?
All of the tools are still in the Downloads folder, so I can easily delete them.

[Sass Drake]

You have C:\FRST and C:\AdwCleaner folders and you can delete them manually or run the tool I linked.

[REDACTED]

You have C:\FRST and C:\AdwCleaner folders and you can delete them manually or run the tool I linked.

Ok, I deleted them.

Thank you for the help.