CreateRestorePoint: Task: {E5775322-C30A-402F-B86B-AAC9EEE70DDA} - System32\Tasks\KZUWXNBQI1 => C:\ProgramData\FlashBeat\FlashBeat.exe <==== ATTENTION Task: C:\Windows\Tasks\KZUWXNBQI1.job => C:\ProgramData\FlashBeat\FlashBeat.exe <==== ATTENTION RemoveProxy: HKLM\...\Run: [] => [X] GroupPolicy: Group Policy on Chrome detected <======= ATTENTION AutoConfigURL: [HKLM-x32] => file://C:\Windows\system32\Drivers\winpacket.pac AutoConfigURL: [S-1-5-19] => file://C:\Windows\system32\Drivers\winpacket.pac AutoConfigURL: [S-1-5-20] => file://C:\Windows\system32\Drivers\winpacket.pac AutoConfigURL: [S-1-5-21-3829169851-3828422396-1513865015-1000] => file://C:\Windows\System32\Drivers\winpacket.pac AutoConfigURL: [S-1-5-21-3829169851-3828422396-1513865015-1001] => file://C:\Windows\system32\Drivers\winpacket.pac C:\Windows\System32\Drivers\winpacket.pac CHR Extension: (Dealz) - C:\Users\Austin\AppData\Local\Google\Chrome\User Data\Default\Extensions\manaobgbdfpjjjnheogfghmjbikhjnlf [2015-06-29] CHR HKLM-x32\...\Chrome\Extension: [hpjocjloojeicikiokfiekcdpojgfefc] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jmnkgjdfgnjhmnopgmkcpigenfhgajdj] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [kfbhfniohjdklgcmbmemnpaimpdaikea] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [manaobgbdfpjjjnheogfghmjbikhjnlf] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [oaobejgaaiojgggjojlcpbembaoajbmc] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fllgpcmelbfhcligbphaaplminjpbiad] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bghejdcdajlenjngcknlkkoakmmjfanb] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [eeafbffkmccheohnooflcnppngmobeoe] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ellbonkjdmgdghkojcjmomekmjpdffde] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fllgpcmelbfhcligbphaaplminjpbiad] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jmnkgjdfgnjhmnopgmkcpigenfhgajdj] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kfbhfniohjdklgcmbmemnpaimpdaikea] - https://clients2.goo...ice/update2/crx CHR HKU\S-1-5-21-3829169851-3828422396-1513865015-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [oaobejgaaiojgggjojlcpbembaoajbmc] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [bghejdcdajlenjngcknlkkoakmmjfanb] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eeafbffkmccheohnooflcnppngmobeoe] - https://clients2.goo...ice/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ellbonkjdmgdghkojcjmomekmjpdffde] - https://clients2.goo...ice/update2/crx 2015-06-11 01:10 - 2015-06-29 16:27 - 00000332 _____ C:\Windows\Tasks\KZUWXNBQI1.job 2015-06-11 01:10 - 2015-06-11 01:10 - 00002854 _____ C:\Windows\System32\Tasks\KZUWXNBQI1 2015-06-11 01:10 - 2015-05-14 03:13 - 00018557 _____ C:\Windows\default.cfg 2015-06-11 01:10 - 2015-05-14 03:03 - 00007680 _____ C:\Windows\wnavga.exe 2015-06-11 01:10 - 2015-05-14 03:03 - 00007680 _____ C:\Windows\cfsvc.exe 2015-06-11 01:10 - 2015-04-25 05:18 - 00295424 _____ (Groom-A-Zebu ™ ) C:\Windows\system32\ysxja.exe 2015-06-11 01:10 - 2015-04-25 05:18 - 00295424 _____ (Groom-A-Zebu ™ ) C:\Windows\cygavb.exe R2 WinGraph; C:\Windows\wnavga.exe [7680 2015-05-14] () [File not signed] EmptyTemp: