First off, apologies if there are answers to these questions elsewhere - if so, my search skills were not sufficient to find them - relevant links gladly received.
My business has a Cloud Console subscription with several endpoints deployed. Two users are repeatedly getting infected as follows (this is one example, the other is a malware variant known as Speeddial)
Adware.Yontoo File Malware Quarantined C:\USERS\USERNAME\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data
Adware.Yontoo File Malware Quarantined C:\USERS\USERNAME\APPDATA\LOCAL\GOOGLE\CHROME