We are new to the Sophos Advanced Endpoint / Intercept X family and have just encountered the following High alerts on a few machines: "Safe Browsing detected browser Google Chrome has been compromised".
I realize there's a similar discussion regarding Internet Explorer but I didn't see a real resolution for that problem. Here is the log file for one of the machines:
2016-12-07T12:28:26.378Z [Service] Startup (build 570)
2016-12-07T12:28:26.521Z [NewApplication] Browsers, $programfiles\Mozilla Firefox\firefox.exe (C:\Program Files\Mozilla Firefox\firefox.exe)
2016-12-07T12:28:26.615Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172826561-1.xml
2016-12-07T12:28:26.615Z [NewApplication] Plugins, $programfiles\Mozilla Firefox\plugin-container.exe (C:\Program Files\Mozilla Firefox\plugin-container.exe)
2016-12-07T12:28:26.659Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172826645-2.xml
2016-12-07T12:28:26.669Z [NewApplication] Browsers, $programfiles\Google\Chrome\Application\chrome.exe (C:\Program Files (x86)\Google\Chrome\Application\chrome.exe)
2016-12-07T12:28:26.766Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172826756-3.xml
2016-12-07T12:28:26.776Z [NewApplication] Browsers, $programfiles\Internet Explorer\iexplore.exe (C:\Program Files\Internet Explorer\iexplore.exe)
2016-12-07T12:28:28.169Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172828168-4.xml
2016-12-07T12:28:28.210Z [NewApplication] Browsers, $programfiles\Internet Explorer\iexplore.exe (C:\Program Files (x86)\Internet Explorer\iexplore.exe)
2016-12-07T12:28:29.114Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172829114-5.xml
2016-12-07T12:28:29.126Z [NewApplication] Office, $programfiles\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe (C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe)
2016-12-07T12:28:29.426Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172829414-6.xml
2016-12-07T12:28:29.428Z [NewApplication] Office, $programfiles\Adobe\Reader 11.0\Reader\AcroRd32.exe (C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe)
2016-12-07T12:28:29.552Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172829552-7.xml
2016-12-07T12:28:29.572Z [NewApplication] Office, $programfiles\Microsoft Office\Office15\WINWORD.EXE (C:\Program Files\Microsoft Office\Office15\WINWORD.EXE)
2016-12-07T12:28:29.631Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172829621-8.xml
2016-12-07T12:28:29.651Z [NewApplication] Office, $programfiles\Microsoft Office\Office15\EXCEL.EXE (C:\Program Files\Microsoft Office\Office15\EXCEL.EXE)
2016-12-07T12:28:30.183Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172830173-9.xml
2016-12-07T12:28:30.187Z [NewApplication] Office, $programfiles\Microsoft Office\Office15\POWERPNT.EXE (C:\Program Files\Microsoft Office\Office15\POWERPNT.EXE)
2016-12-07T12:28:30.291Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172830290-10.xml
2016-12-07T12:28:30.293Z [NewApplication] Office, $programfiles\Windows NT\Accessories\WORDPAD.EXE (C:\Program Files\Windows NT\Accessories\WORDPAD.EXE)
2016-12-07T12:28:30.751Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172830751-11.xml
2016-12-07T12:28:30.761Z [NewApplication] Media, $programfiles\Windows Media Player\wmplayer.exe (C:\Program Files (x86)\Windows Media Player\wmplayer.exe)
2016-12-07T12:28:30.823Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172830823-12.xml
2016-12-07T12:28:30.823Z [NewApplication] Media, $windows\eHome\ehshell.exe (C:\Windows\eHome\ehshell.exe)
2016-12-07T12:28:30.853Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172830843-13.xml
2016-12-07T12:28:30.873Z [NewApplication] Media, $programfiles\iTunes\iTunes.exe (C:\Program Files\iTunes\iTunes.exe)
2016-12-07T12:28:31.003Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172831002-14.xml
2016-12-07T12:28:31.031Z [NewApplication] Other, $programfiles\Skype\Phone\Skype.exe (C:\Program Files (x86)\Skype\Phone\Skype.exe)
2016-12-07T12:28:31.990Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\NewApp-20161207172831980-15.xml
2016-12-07T12:28:32.035Z [Service] Running
2016-12-07T12:28:32.387Z [Protected] PID 38808, Features 0300000000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T12:28:33.036Z [Protected] PID 38700, Features 0300000000000106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:28:35.763Z [Protected] PID 5684, Features 0300000000000102, C:\Windows\SysWOW64\msiexec.exe
2016-12-07T12:28:36.487Z [Protected] PID 36328, Features 0300000000000102, C:\Windows\System32\msiexec.exe
2016-12-07T12:28:42.871Z [Protected] PID 39288, Features 0300000000000102, C:\Windows\System32\dllhost.exe
2016-12-07T12:28:47.692Z [Protected] PID 39668, Features 030000000000010E, C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
2016-12-07T12:28:53.650Z [Protected] PID 39284, Features 0300000000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T12:28:53.940Z [ApplyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207172853
2016-12-07T12:28:54.061Z [Protected] PID 37008, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T12:28:54.306Z [ApplyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207172853
2016-12-07T12:33:32.709Z [Protected] PID 35332, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:33:49.512Z [Protected] PID 39820, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T12:34:37.206Z [Protected] PID 37700, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T12:34:43.454Z [Protected] PID 3504, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-07T12:34:44.733Z [Protected] PID 38660, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T12:34:48.135Z [Protected] PID 38388, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-07T12:34:59.900Z [Protected] PID 412, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-07T12:38:04.679Z [Protected] PID 39416, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-07T12:38:10.283Z [Protected] PID 1648, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-07T12:38:32.614Z [Protected] PID 35876, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:43:32.711Z [Protected] PID 39648, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:48:32.697Z [Protected] PID 5740, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:53:32.558Z [Protected] PID 2260, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:57:00.559Z [Protected] PID 38212, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T12:57:00.931Z [Protected] PID 380, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T12:57:00.939Z [Protected] PID 3860, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T12:57:01.036Z [Protected] PID 3748, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T12:58:32.506Z [Protected] PID 38124, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T12:58:54.663Z [Protected] PID 780, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T12:58:54.705Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207175854
2016-12-07T12:59:00.421Z [Protected] PID 39440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T13:01:28.636Z [Protected] PID 38988, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T13:01:44.106Z [Protected] PID 35876, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-07T13:01:48.740Z [Protected] PID 4320, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-07T13:01:53.463Z [Protected] PID 4308, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T13:01:53.574Z [Protected] PID 4176, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T13:01:53.630Z [Protected] PID 38932, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-07T13:01:56.441Z [Protected] PID 38704, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T13:01:56.607Z [Protected] PID 504, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-07T13:01:56.717Z [Protected] PID 2676, Features 0000003000000102, C:\Windows\System32\NETSTAT.EXE
2016-12-07T13:01:56.899Z [Protected] PID 38324, Features 0000003000000102, C:\Windows\System32\tasklist.exe
2016-12-07T13:01:57.460Z [Protected] PID 38564, Features 000000361FBF0102, C:\Windows\System32\wscript.exe
2016-12-07T13:02:49.374Z [Protected] PID 38900, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T13:03:32.630Z [Protected] PID 29324, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:03:56.072Z [Protected] PID 39220, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-07T13:08:32.608Z [Protected] PID 38376, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:13:08.371Z [Protected] PID 35852, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T13:13:32.495Z [Protected] PID 38312, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:15:50.869Z [Protected] PID 38948, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T13:15:51.154Z [ApplyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207181550
2016-12-07T13:17:00.257Z [Protected] PID 35852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T13:17:00.958Z [Protected] PID 38948, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T13:17:02.513Z [Protected] PID 38184, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T13:18:04.057Z [Protected] PID 38540, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T13:18:04.165Z [Protected] PID 36760, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T13:18:05.184Z [Protected] PID 18352, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T13:18:05.230Z [Protected] PID 33316, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T13:18:08.125Z [Protected] PID 38268, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T13:18:32.556Z [Protected] PID 26676, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:23:32.723Z [Protected] PID 536, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:28:00.172Z [Protected] PID 37020, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T13:28:00.858Z [Protected] PID 30072, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-07T13:28:15.230Z [Protected] PID 38832, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T13:28:15.269Z [Protected] PID 39272, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T13:28:15.535Z [Protected] PID 38568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T13:28:15.567Z [Protected] PID 4584, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T13:28:32.497Z [Protected] PID 38036, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:33:32.536Z [Protected] PID 39220, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:33:57.499Z [Protected] PID 39260, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T13:34:44.133Z [Protected] PID 484, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-07T13:35:13.845Z [Protected] PID 36756, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-07T13:35:14.146Z [Protected] PID 4044, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-07T13:38:32.775Z [Protected] PID 38016, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:43:32.664Z [Protected] PID 38440, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:44:40.149Z [Protected] PID 37628, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-07T13:44:41.004Z [Protected] PID 37708, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-07T13:44:42.206Z [Protected] PID 4196, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-07T13:44:50.387Z [Protected] PID 38900, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T13:45:51.573Z [Protected] PID 40240, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T13:45:51.607Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207184551
2016-12-07T13:47:10.854Z [Protected] PID 40624, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T13:47:11.249Z [Protected] PID 40784, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T13:47:15.138Z [Protected] PID 39948, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:48:32.425Z [Protected] PID 37700, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:53:32.732Z [Protected] PID 38704, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:57:00.227Z [Protected] PID 40736, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T13:57:00.548Z [Protected] PID 38904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T13:57:00.566Z [Protected] PID 30732, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T13:57:00.594Z [Protected] PID 472, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T13:58:32.588Z [Protected] PID 39952, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T13:59:00.272Z [Protected] PID 40184, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T13:59:53.832Z [Protected] PID 40860, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T14:03:21.299Z [Protected] PID 40916, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T14:03:32.628Z [Protected] PID 35876, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:04:10.574Z [Protected] PID 40100, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-07T14:04:16.176Z [Protected] PID 372, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-07T14:05:45.578Z [Protected] PID 2072, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T14:08:32.520Z [Protected] PID 40116, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:13:32.619Z [Protected] PID 38240, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:15:51.910Z [Protected] PID 39512, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T14:15:51.958Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207191551
2016-12-07T14:17:00.222Z [Protected] PID 40320, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T14:17:00.786Z [Protected] PID 40448, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T14:18:32.562Z [Protected] PID 40184, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:23:32.534Z [Protected] PID 40368, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:26:41.756Z [Protected] PID 40700, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T14:28:15.939Z [Protected] PID 4128, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T14:28:15.953Z [Protected] PID 40844, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T14:28:16.210Z [Protected] PID 528, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T14:28:16.227Z [Protected] PID 4144, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T14:28:32.580Z [Protected] PID 40368, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:33:32.608Z [Protected] PID 40548, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:33:52.460Z [Protected] PID 38936, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T14:38:32.561Z [Protected] PID 408, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:39:28.438Z [Protected] PID 40764, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T14:39:28.726Z [ApplyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207193928
2016-12-07T14:41:21.392Z [Protected] PID 40236, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:43:32.590Z [Protected] PID 40860, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:48:32.693Z [Protected] PID 40216, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:49:08.716Z [Protected] PID 40148, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T14:49:11.122Z [Protected] PID 39152, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T14:49:11.160Z [Protected] PID 39696, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T14:49:11.216Z [Protected] PID 38644, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T14:49:12.269Z [Protected] PID 38700, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T14:49:13.334Z [Protected] PID 40656, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T14:53:32.803Z [Protected] PID 39152, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:55:41.784Z [Protected] PID 40952, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T14:57:00.178Z [Protected] PID 40328, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T14:57:00.477Z [Protected] PID 40432, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T14:57:00.495Z [Protected] PID 40492, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T14:57:00.584Z [Protected] PID 38312, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T14:58:32.554Z [Protected] PID 40480, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T14:59:00.379Z [Protected] PID 40732, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T15:01:47.525Z [Protected] PID 40432, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-07T15:01:51.528Z [Protected] PID 40660, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-07T15:02:00.000Z [Protected] PID 384, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T15:02:00.063Z [Protected] PID 2848, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-07T15:02:00.796Z [Protected] PID 40356, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-07T15:02:11.737Z [Protected] PID 40464, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T15:03:32.819Z [Protected] PID 34536, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:07:23.938Z [Protected] PID 40940, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T15:08:32.623Z [Protected] PID 39296, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:09:28.997Z [Protected] PID 40448, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T15:09:29.044Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207200928
2016-12-07T15:13:32.609Z [Protected] PID 40620, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:17:00.185Z [Protected] PID 1564, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T15:17:01.125Z [Protected] PID 372, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T15:18:32.528Z [Protected] PID 40488, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:18:40.446Z [Protected] PID 4080, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:18:43.021Z [Protected] PID 40596, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:20:38.550Z [Protected] PID 41700, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:20:41.857Z [Protected] PID 40928, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:23:32.584Z [Protected] PID 38932, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:26:00.714Z [Protected] PID 36324, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:26:03.013Z [Protected] PID 40100, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:28:00.261Z [Protected] PID 41064, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T15:28:01.147Z [Protected] PID 41048, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-07T15:28:16.624Z [Protected] PID 4056, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T15:28:16.646Z [Protected] PID 40044, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T15:28:16.981Z [Protected] PID 38932, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T15:28:17.008Z [Protected] PID 38680, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T15:28:28.097Z [Protected] PID 40648, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:28:32.318Z [Protected] PID 40760, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:28:32.379Z [Protected] PID 41652, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:28:41.733Z [Protected] PID 41476, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:29:43.445Z [Protected] PID 40964, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:30:09.730Z [Protected] PID 41144, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:32:00.107Z [Protected] PID 41428, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:33:32.454Z [Protected] PID 41488, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:33:40.492Z [Protected] PID 41704, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:33:50.880Z [Protected] PID 41148, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T15:34:03.427Z [Protected] PID 41060, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:34:21.534Z [Protected] PID 40680, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T15:34:23.691Z [Protected] PID 41472, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-07T15:35:14.462Z [Protected] PID 40380, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T15:35:15.186Z [Protected] PID 40484, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-07T15:35:44.151Z [Protected] PID 40308, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:37:55.774Z [Protected] PID 41892, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T15:37:56.716Z [Protected] PID 4212, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-07T15:38:32.608Z [Protected] PID 41876, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:39:29.306Z [Protected] PID 40992, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T15:39:29.371Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207203929
2016-12-07T15:43:32.573Z [Protected] PID 42012, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:48:07.468Z [Protected] PID 42704, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-07T15:48:08.275Z [Protected] PID 4144, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-07T15:48:09.922Z [Protected] PID 42736, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-07T15:48:10.524Z [Protected] PID 42296, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T15:48:32.539Z [Protected] PID 42928, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:53:32.518Z [Protected] PID 41348, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:56:23.238Z [Protected] PID 43776, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T15:56:23.735Z [Protected] PID 42920, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-07T15:57:00.016Z [Protected] PID 43276, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T15:57:00.382Z [Protected] PID 43884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T15:57:00.397Z [Protected] PID 42448, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T15:57:00.473Z [Protected] PID 41144, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T15:58:32.623Z [Protected] PID 44012, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:58:50.393Z [Protected] PID 41724, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:58:56.764Z [Protected] PID 44028, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T15:59:00.245Z [Protected] PID 43260, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T16:03:32.562Z [Protected] PID 42500, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:07:28.224Z [Protected] PID 43152, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T16:07:55.317Z [Protected] PID 44928, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:07:56.723Z [Protected] PID 44700, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:08:32.465Z [Protected] PID 43896, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:09:29.621Z [Protected] PID 43748, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T16:09:29.675Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207210929
2016-12-07T16:12:45.116Z [Protected] PID 44508, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T16:13:32.616Z [Protected] PID 42176, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:14:53.668Z [Protected] PID 43092, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T16:17:00.257Z [Protected] PID 44304, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T16:17:01.355Z [Protected] PID 43612, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T16:17:02.454Z [Protected] PID 43136, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T16:18:32.747Z [Protected] PID 44796, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:23:32.631Z [Protected] PID 44384, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:28:17.333Z [Protected] PID 43300, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T16:28:17.351Z [Protected] PID 44452, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T16:28:17.538Z [Protected] PID 40992, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T16:28:17.550Z [Protected] PID 40052, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T16:28:32.540Z [Protected] PID 44248, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:29:50.691Z [Protected] PID 43616, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:29:53.064Z [Protected] PID 44720, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:29:57.198Z [Protected] PID 44692, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:31:30.302Z [Protected] PID 41112, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:31:34.115Z [Protected] PID 40120, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:31:37.334Z [Protected] PID 42292, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:33:32.523Z [Protected] PID 44104, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:33:50.588Z [Protected] PID 40660, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T16:36:14.476Z [Protected] PID 44284, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T16:36:16.309Z [Protected] PID 44248, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T16:36:16.425Z [Protected] PID 43864, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T16:36:16.509Z [Protected] PID 43176, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T16:36:17.675Z [Protected] PID 12124, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T16:36:18.117Z [Protected] PID 43052, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T16:38:32.632Z [Protected] PID 44392, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:39:29.741Z [Protected] PID 44420, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T16:39:29.767Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207213929
2016-12-07T16:43:32.565Z [Protected] PID 4128, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:48:32.609Z [Protected] PID 44480, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:53:32.548Z [Protected] PID 40928, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:55:19.954Z [Protected] PID 44596, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T16:55:36.814Z [Protected] PID 43340, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T16:55:37.107Z [Protected] PID 45024, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-07T16:57:00.038Z [Protected] PID 43060, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T16:57:00.478Z [Protected] PID 41208, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T16:57:00.510Z [Protected] PID 41164, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T16:57:00.700Z [Protected] PID 44468, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T16:58:32.603Z [Protected] PID 42456, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T16:59:00.292Z [Protected] PID 4284, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T17:01:16.148Z [Protected] PID 44996, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:01:17.041Z [Protected] PID 42432, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:01:20.315Z [Protected] PID 41940, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:01:21.147Z [Protected] PID 14368, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:01:44.047Z [Protected] PID 44464, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:01:45.642Z [Protected] PID 44648, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE
2016-12-07T17:01:46.947Z [Protected] PID 41508, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T17:01:55.064Z [Protected] PID 43776, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-07T17:01:55.766Z [Protected] PID 16564, Features 0000003000000102, C:\Windows\System32\WerFault.exe
2016-12-07T17:02:41.672Z [Protected] PID 45024, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:02:48.892Z [Protected] PID 45012, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:02:59.613Z [Protected] PID 43032, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:03:00.083Z [Protected] PID 44164, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:03:07.246Z [Protected] PID 42444, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:03:32.543Z [Protected] PID 44552, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:06:33.539Z [Protected] PID 43684, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T17:06:33.639Z [Protected] PID 41112, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T17:06:50.055Z [Protected] PID 43060, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-07T17:06:55.013Z [Protected] PID 45308, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T17:06:56.435Z [Protected] PID 45664, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-07T17:08:32.626Z [Protected] PID 45216, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:09:29.932Z [Protected] PID 41368, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T17:09:29.978Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207220929
2016-12-07T17:10:56.148Z [Protected] PID 42220, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T17:10:57.118Z [Protected] PID 45836, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-07T17:10:57.555Z [Protected] PID 44604, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T17:13:32.503Z [Protected] PID 44468, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:14:22.440Z [Protected] PID 3132, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T17:15:38.642Z [Protected] PID 38776, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T17:17:00.218Z [Protected] PID 45192, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T17:17:00.900Z [Protected] PID 45652, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T17:18:32.591Z [Protected] PID 46044, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:23:32.727Z [Protected] PID 46068, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:28:00.132Z [Protected] PID 44412, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T17:28:00.780Z [Protected] PID 3944, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-07T17:28:17.820Z [Protected] PID 41940, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T17:28:17.847Z [Protected] PID 43020, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T17:28:18.019Z [Protected] PID 43688, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T17:28:18.034Z [Protected] PID 46008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T17:28:32.653Z [Protected] PID 45732, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:33:32.623Z [Protected] PID 4128, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:33:50.435Z [Protected] PID 5736, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T17:34:43.230Z [Protected] PID 45228, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:34:44.783Z [Protected] PID 14368, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:36:23.105Z [Protected] PID 45340, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:36:25.550Z [Protected] PID 44988, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:38:32.592Z [Protected] PID 41760, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:39:30.154Z [Protected] PID 43212, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T17:39:30.222Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207223929
2016-12-07T17:43:32.283Z [Protected] PID 42672, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-07T17:43:32.522Z [Protected] PID 45228, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:48:32.689Z [Protected] PID 44744, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:52:53.492Z [Protected] PID 39268, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:53:32.420Z [Protected] PID 43752, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:53:48.290Z [Protected] PID 45616, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T17:57:00.163Z [Protected] PID 37364, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T17:57:00.582Z [Protected] PID 45884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T17:57:00.613Z [Protected] PID 45888, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T17:57:00.787Z [Protected] PID 37708, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T17:58:32.572Z [Protected] PID 45380, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T17:59:00.167Z [Protected] PID 42816, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T18:01:54.857Z [Protected] PID 45908, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T18:03:32.720Z [Protected] PID 40116, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:07:54.906Z [Protected] PID 45180, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:08:32.447Z [Protected] PID 41540, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:09:30.375Z [Protected] PID 45284, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T18:09:30.431Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207230930
2016-12-07T18:13:32.625Z [Protected] PID 46016, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:17:00.141Z [Protected] PID 42504, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T18:17:01.038Z [Protected] PID 45536, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T18:17:01.882Z [Protected] PID 40096, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T18:18:32.666Z [Protected] PID 44472, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:19:20.161Z [Protected] PID 45228, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T18:19:22.378Z [Protected] PID 45880, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T18:19:22.464Z [Protected] PID 45428, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T18:19:22.522Z [Protected] PID 45092, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T18:19:23.306Z [Protected] PID 45396, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T18:19:23.393Z [Protected] PID 512, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T18:22:56.267Z [Protected] PID 44412, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:23:32.419Z [Protected] PID 46032, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:28:18.434Z [Protected] PID 45204, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T18:28:18.461Z [Protected] PID 44544, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T18:28:18.760Z [Protected] PID 40460, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T18:28:18.786Z [Protected] PID 45708, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T18:28:32.541Z [Protected] PID 45748, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:33:32.524Z [Protected] PID 45640, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:33:51.452Z [Protected] PID 45520, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T18:34:40.780Z [Protected] PID 42728, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-07T18:35:11.941Z [Protected] PID 45928, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-07T18:35:12.180Z [Protected] PID 41764, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-07T18:36:23.317Z [Protected] PID 45104, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-07T18:36:30.764Z [Protected] PID 39544, Features 0000003000000102, C:\Program Files\Internet Explorer\IELowutil.exe
2016-12-07T18:36:30.916Z [Protected] PID 41716, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T18:37:57.911Z [Protected] PID 45428, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:38:32.449Z [Protected] PID 40264, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:39:30.619Z [Protected] PID 45444, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T18:39:30.646Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161207233930
2016-12-07T18:43:32.589Z [Protected] PID 31288, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:48:32.568Z [Protected] PID 44840, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:52:59.115Z [Protected] PID 44388, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:53:32.427Z [Protected] PID 43552, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:57:00.136Z [Protected] PID 45332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T18:57:00.794Z [Protected] PID 45616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T18:57:00.816Z [Protected] PID 45212, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T18:57:00.894Z [Protected] PID 41764, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T18:58:32.526Z [Protected] PID 38112, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T18:59:00.176Z [Protected] PID 45748, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T18:59:16.288Z [Protected] PID 15620, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T19:03:32.481Z [Protected] PID 43864, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:07:56.745Z [Protected] PID 37720, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T19:07:57.353Z [Protected] PID 45832, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-07T19:08:00.533Z [Protected] PID 40212, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:08:32.380Z [Protected] PID 41060, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:09:30.764Z [Protected] PID 43784, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T19:09:30.810Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208000930
2016-12-07T19:13:32.668Z [Protected] PID 4144, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:13:45.357Z [Protected] PID 43576, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T19:17:00.131Z [Protected] PID 43572, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T19:17:00.867Z [Protected] PID 42192, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T19:18:32.589Z [Protected] PID 39288, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:23:01.926Z [Protected] PID 41176, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:23:32.370Z [Protected] PID 39292, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:28:00.171Z [Protected] PID 45524, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T19:28:00.870Z [Protected] PID 45816, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-07T19:28:19.209Z [Protected] PID 38096, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T19:28:19.230Z [Protected] PID 45284, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T19:28:19.644Z [Protected] PID 45516, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T19:28:19.671Z [Protected] PID 42736, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T19:28:32.577Z [Protected] PID 45648, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:33:32.562Z [Protected] PID 39292, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:34:11.635Z [Protected] PID 15668, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T19:37:52.193Z [Protected] PID 41920, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T19:38:03.343Z [Protected] PID 16148, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:38:32.418Z [Protected] PID 41716, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:39:30.949Z [Protected] PID 3828, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T19:39:30.991Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208003930
2016-12-07T19:43:32.560Z [Protected] PID 44412, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:48:32.536Z [Protected] PID 40992, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:53:04.771Z [Protected] PID 44812, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:53:32.438Z [Protected] PID 45716, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:57:00.164Z [Protected] PID 46032, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T19:57:00.506Z [Protected] PID 45492, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T19:57:00.528Z [Protected] PID 44104, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T19:57:00.648Z [Protected] PID 45212, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T19:58:32.522Z [Protected] PID 45896, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T19:59:00.195Z [Protected] PID 37720, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T19:59:00.200Z [Protected] PID 45868, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T19:59:00.364Z [Protected] PID 40992, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T19:59:00.401Z [Protected] PID 45516, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-07T19:59:00.662Z [Protected] PID 45532, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-07T20:03:32.488Z [Protected] PID 44744, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:05:54.689Z [Protected] PID 39108, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T20:08:06.223Z [Protected] PID 44092, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:08:32.436Z [Protected] PID 44616, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:09:31.130Z [Protected] PID 45532, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T20:09:31.174Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208010930
2016-12-07T20:11:26.136Z [Protected] PID 41064, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T20:11:28.239Z [Protected] PID 45508, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T20:11:28.514Z [Protected] PID 43044, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T20:11:28.612Z [Protected] PID 45108, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T20:11:29.317Z [Protected] PID 43984, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T20:11:29.417Z [Protected] PID 37720, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T20:13:32.596Z [Protected] PID 44492, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:17:00.172Z [Protected] PID 37628, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T20:17:00.770Z [Protected] PID 45820, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T20:17:01.485Z [Protected] PID 4128, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T20:18:32.507Z [Protected] PID 45948, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:23:07.688Z [Protected] PID 45560, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:23:32.438Z [Protected] PID 44500, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:28:20.020Z [Protected] PID 39540, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T20:28:20.035Z [Protected] PID 46040, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T20:28:20.175Z [Protected] PID 45568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T20:28:20.180Z [Protected] PID 42736, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T20:28:32.583Z [Protected] PID 44744, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:33:32.516Z [Protected] PID 45848, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:33:50.665Z [Protected] PID 45012, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T20:38:09.042Z [Protected] PID 44092, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:38:32.410Z [Protected] PID 40992, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:39:31.338Z [Protected] PID 12124, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T20:39:31.393Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208013931
2016-12-07T20:43:32.519Z [Protected] PID 43552, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:48:32.579Z [Protected] PID 45760, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:53:11.075Z [Protected] PID 45228, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:53:32.397Z [Protected] PID 45532, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:55:43.701Z [Protected] PID 15620, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T20:57:00.153Z [Protected] PID 39268, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T20:57:00.511Z [Protected] PID 43060, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T20:57:00.536Z [Protected] PID 43800, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T20:57:00.677Z [Protected] PID 45228, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T20:58:32.557Z [Protected] PID 45796, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:58:50.544Z [Protected] PID 45860, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T20:59:00.255Z [Protected] PID 45152, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T21:00:01.174Z [Protected] PID 40088, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-07T21:00:01.379Z [Protected] PID 12124, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T21:00:01.402Z [Protected] PID 43572, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-07T21:01:59.995Z [Protected] PID 42732, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T21:02:00.316Z [Protected] PID 43020, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-07T21:02:00.630Z [Protected] PID 28432, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T21:03:32.691Z [Protected] PID 45348, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:04:58.024Z [Protected] PID 43084, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T21:08:12.524Z [Protected] PID 44092, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:32.416Z [Protected] PID 45204, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:58.328Z [Protected] PID 30436, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:58.527Z [Protected] PID 45792, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:58.723Z [Protected] PID 36680, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:58.922Z [Protected] PID 41560, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:59.140Z [Protected] PID 44744, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:59.362Z [Protected] PID 36128, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:59.576Z [Protected] PID 41936, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:59.771Z [Protected] PID 45520, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:08:59.968Z [Protected] PID 41540, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:09:00.388Z [Protected] PID 45988, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:09:00.582Z [Protected] PID 37708, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:09:31.543Z [Protected] PID 37956, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T21:09:31.590Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208020931
2016-12-07T21:10:04.885Z [Protected] PID 536, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T21:13:32.516Z [Protected] PID 45428, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:17:00.182Z [Protected] PID 39844, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T21:17:00.577Z [Protected] PID 43896, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T21:18:32.540Z [Protected] PID 45792, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:23:13.852Z [Protected] PID 40660, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:23:32.421Z [Protected] PID 45396, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:25:32.772Z [Protected] PID 42504, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T21:25:33.040Z [Protected] PID 45352, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-07T21:26:55.254Z [Protected] PID 45540, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T21:28:00.468Z [Protected] PID 45416, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-07T21:28:20.582Z [Protected] PID 39292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T21:28:20.604Z [Protected] PID 17340, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T21:28:20.868Z [Protected] PID 44192, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T21:28:20.880Z [Protected] PID 9256, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T21:28:32.583Z [Protected] PID 3484, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:33:32.622Z [Protected] PID 43340, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:33:51.084Z [Protected] PID 46040, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T21:38:15.377Z [Protected] PID 45352, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:38:32.422Z [Protected] PID 45748, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:39:31.738Z [Protected] PID 44284, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T21:39:31.770Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208023931
2016-12-07T21:43:32.591Z [Protected] PID 45568, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:44:31.878Z [Protected] PID 4144, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T21:44:33.870Z [Protected] PID 45636, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T21:44:34.010Z [Protected] PID 44796, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T21:44:34.215Z [Protected] PID 17340, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T21:44:34.963Z [Protected] PID 40660, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T21:44:35.107Z [Protected] PID 45564, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T21:48:32.508Z [Protected] PID 45676, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:53:16.675Z [Protected] PID 45716, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:53:32.442Z [Protected] PID 45692, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:57:00.172Z [Protected] PID 39388, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T21:57:00.616Z [Protected] PID 44904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T21:57:00.649Z [Protected] PID 16432, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T21:57:00.844Z [Protected] PID 44176, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T21:58:32.534Z [Protected] PID 44608, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T21:59:00.347Z [Protected] PID 37708, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T22:00:00.372Z [Protected] PID 43984, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-07T22:00:00.964Z [Protected] PID 43024, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-07T22:00:01.121Z [Protected] PID 45204, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-07T22:00:07.302Z [Protected] PID 45444, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T22:03:32.748Z [Protected] PID 44464, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:08:20.806Z [Protected] PID 27240, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:08:37.401Z [Protected] PID 45296, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:09:32.508Z [Protected] PID 45504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T22:09:32.555Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208030931
2016-12-07T22:13:33.258Z [Protected] PID 26408, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:17:00.511Z [Protected] PID 45564, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T22:17:01.978Z [Protected] PID 15668, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T22:18:32.520Z [Protected] PID 45640, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:23:21.741Z [Protected] PID 45104, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:23:32.396Z [Protected] PID 45404, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:28:21.387Z [Protected] PID 44796, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T22:28:21.408Z [Protected] PID 38848, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T22:28:21.965Z [Protected] PID 15668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T22:28:21.985Z [Protected] PID 44744, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T22:28:32.550Z [Protected] PID 45508, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:33:32.618Z [Protected] PID 30436, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:33:52.871Z [Protected] PID 43576, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T22:34:51.900Z [Protected] PID 44268, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-07T22:35:22.369Z [Protected] PID 44464, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-07T22:35:24.681Z [Protected] PID 30572, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-07T22:37:57.731Z [Protected] PID 42292, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T22:37:59.088Z [Protected] PID 44416, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-07T22:38:23.263Z [Protected] PID 45616, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:38:32.436Z [Protected] PID 45436, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:39:33.313Z [Protected] PID 43084, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T22:39:33.347Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208033932
2016-12-07T22:43:32.559Z [Protected] PID 45420, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:48:32.671Z [Protected] PID 45728, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:53:24.933Z [Protected] PID 45568, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:53:32.438Z [Protected] PID 18052, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:57:00.152Z [Protected] PID 37364, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T22:57:00.489Z [Protected] PID 27240, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T22:57:00.508Z [Protected] PID 44092, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T22:57:00.585Z [Protected] PID 44744, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T22:58:32.575Z [Protected] PID 36680, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T22:59:00.213Z [Protected] PID 42712, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T23:03:32.623Z [Protected] PID 45524, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:03:58.062Z [Protected] PID 40088, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T23:08:26.309Z [Protected] PID 45656, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:08:32.383Z [Protected] PID 46000, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:09:33.480Z [Protected] PID 44424, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T23:09:33.513Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208040933
2016-12-07T23:11:16.817Z [Protected] PID 6312, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-07T23:13:32.546Z [Protected] PID 41656, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:17:00.182Z [Protected] PID 44412, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T23:17:00.934Z [Protected] PID 40116, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-07T23:17:02.673Z [Protected] PID 44812, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T23:17:02.841Z [Protected] PID 39288, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T23:18:32.516Z [Protected] PID 45352, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:23:27.661Z [Protected] PID 45556, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:23:32.396Z [Protected] PID 512, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:28:00.174Z [Protected] PID 39292, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T23:28:00.716Z [Protected] PID 45416, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-07T23:28:22.269Z [Protected] PID 4128, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T23:28:22.277Z [Protected] PID 45384, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-07T23:28:22.574Z [Protected] PID 44904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T23:28:22.593Z [Protected] PID 38848, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-07T23:28:32.565Z [Protected] PID 45716, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:30:37.557Z [Protected] PID 39540, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T23:30:39.469Z [Protected] PID 45336, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-07T23:30:40.480Z [Protected] PID 45380, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T23:30:40.490Z [Protected] PID 45940, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-07T23:30:40.858Z [Protected] PID 45572, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-07T23:30:42.150Z [Protected] PID 40992, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-07T23:33:32.605Z [Protected] PID 45656, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:33:50.622Z [Protected] PID 40116, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-07T23:38:28.866Z [Protected] PID 40116, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:38:32.386Z [Protected] PID 42712, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:39:33.693Z [Protected] PID 45228, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-07T23:39:33.725Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208043933
2016-12-07T23:43:32.542Z [Protected] PID 45420, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:48:32.641Z [Protected] PID 44284, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:51:25.494Z [Protected] PID 45728, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-07T23:53:30.272Z [Protected] PID 42484, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:53:32.376Z [Protected] PID 33932, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:57:00.150Z [Protected] PID 30572, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-07T23:57:00.519Z [Protected] PID 45532, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-07T23:57:00.562Z [Protected] PID 45824, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T23:57:00.687Z [Protected] PID 44980, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-07T23:58:32.553Z [Protected] PID 45656, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-07T23:59:00.237Z [Protected] PID 42220, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-07T23:59:30.728Z [Protected] PID 27240, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T00:00:00.631Z [Protected] PID 45152, Features 000000300000010A, C:\Windows\System32\rundll32.exe
2016-12-08T00:00:01.444Z [Protected] PID 15620, Features 000000300000010A, C:\Windows\System32\VSSVC.exe
2016-12-08T00:00:01.686Z [Protected] PID 40116, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:00:18.197Z [Protected] PID 44436, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T00:00:18.372Z [Protected] PID 43256, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T00:01:53.322Z [Protected] PID 42712, Features 000000300000010A, C:\Windows\servicing\TrustedInstaller.exe
2016-12-08T00:03:32.624Z [Protected] PID 45544, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T00:08:31.613Z [Protected] PID 43644, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T00:08:32.379Z [Protected] PID 45280, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T00:09:34.051Z [Protected] PID 44544, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T00:09:34.113Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208050933
2016-12-08T00:13:32.492Z [Protected] PID 42736, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T00:13:47.380Z [Protected] PID 42484, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T00:14:20.089Z [Protected] PID 44416, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T00:14:20.401Z [ApplyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208051419
2016-12-08T00:17:00.177Z [Protected] PID 17376, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T00:17:01.373Z [Protected] PID 46016, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T00:17:02.125Z [Protected] PID 41188, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T00:18:32.488Z [Protected] PID 41920, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T00:19:55.038Z [Protected] PID 44544, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T00:20:18.341Z [Protected] PID 44412, Features 0000003000000102, C:\Windows\System32\gpscript.exe
2016-12-08T00:20:19.807Z [Protected] PID 33280, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T00:20:19.885Z [Protected] PID 45280, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T00:20:21.242Z [Protected] PID 6536, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-08T00:20:22.459Z [Service] System shutdown
2016-12-08T00:20:22.506Z [Service] Stopping...
2016-12-08T00:20:23.754Z [Service] Stopped
2016-12-08T00:21:34.369Z [Service] Startup (build 570)
2016-12-08T00:21:34.884Z [Service] Running
2016-12-08T00:21:35.024Z [Protected] PID 940, Features 0000003000000102, C:\Windows\System32\winlogon.exe
2016-12-08T00:21:35.040Z [Protected] PID 188, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:35.180Z [Protected] PID 728, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:35.383Z [Protected] PID 616, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-08T00:21:36.725Z [Protected] PID 1036, Features 000000300000010E, C:\ProgramData\Sophos\Web Intelligence\swi_update_64.exe
2016-12-08T00:21:36.756Z [Protected] PID 1116, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:36.772Z [Protected] PID 1140, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:36.803Z [Protected] PID 1180, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:37.068Z [Protected] PID 1264, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:37.115Z [Protected] PID 1320, Features 000000300000010A, C:\Windows\System32\igfxCUIService.exe
2016-12-08T00:21:37.242Z [Protected] PID 1588, Features 000000300000010E, C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
2016-12-08T00:21:37.632Z [Protected] PID 1628, Features 0000003000000106, C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
2016-12-08T00:21:37.972Z [Protected] PID 1636, Features 000000300000010E, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
2016-12-08T00:21:51.924Z [Protected] PID 1400, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:52.672Z [Protected] PID 1816, Features 000000300000010A, C:\Windows\System32\spoolsv.exe
2016-12-08T00:21:52.875Z [Protected] PID 1520, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:54.217Z [Protected] PID 2140, Features 000000300000010E, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
2016-12-08T00:21:54.466Z [Protected] PID 2240, Features 000000300000010E, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
2016-12-08T00:21:54.778Z [Protected] PID 2280, Features 000000300000010E, C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
2016-12-08T00:21:55.792Z [Protected] PID 2324, Features 000000300000010E, C:\Program Files\Bonjour\mDNSResponder.exe
2016-12-08T00:21:55.839Z [Protected] PID 2352, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:55.855Z [Protected] PID 2380, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:55.948Z [Protected] PID 2416, Features 000000300000010A, C:\Windows\System32\IProsetMonitor.exe
2016-12-08T00:21:56.479Z [Protected] PID 2484, Features 000000300000010E, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
2016-12-08T00:21:58.179Z [Protected] PID 2588, Features 000000300000010E, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
2016-12-08T00:21:58.304Z [Protected] PID 2604, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:21:58.351Z [Protected] PID 2596, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
2016-12-08T00:21:58.554Z [Protected] PID 2660, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:21:58.554Z [Protected] PID 2652, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
2016-12-08T00:21:58.632Z [Protected] PID 2700, Features 000000300000010E, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
2016-12-08T00:21:59.006Z [Protected] PID 2740, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:21:59.037Z [Protected] PID 2796, Features 000000300000010E, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
2016-12-08T00:21:59.864Z [Protected] PID 2876, Features 000000300000010E, C:\Program Files (x86)\Skype\Updater\Updater.exe
2016-12-08T00:22:00.394Z [Protected] PID 2920, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T00:22:00.504Z [Protected] PID 2952, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T00:22:00.800Z [Protected] PID 2984, Features 000000300000010E, C:\Program Files\Sophos\Sophos Network Threat Protection\bin\SntpService.exe
2016-12-08T00:22:01.830Z [Protected] PID 3052, Features 000000300000010E, C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
2016-12-08T00:22:06.541Z [Protected] PID 2348, Features 000000300000010E, C:\Program Files\Sophos\Clean\SophosClean.exe
2016-12-08T00:22:07.399Z [Protected] PID 2732, Features 000000300000010E, C:\Program Files (x86)\Sophos\Health\Health.exe
2016-12-08T00:22:09.084Z [Protected] PID 2972, Features 000000300000010E, C:\Program Files (x86)\Sophos\Heartbeat\Heartbeat.exe
2016-12-08T00:22:10.488Z [Protected] PID 3080, Features 000000300000010E, C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsAgent.exe
2016-12-08T00:22:11.112Z [Protected] PID 3172, Features 000000300000010E, C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsClient.exe
2016-12-08T00:22:11.954Z [Protected] PID 3252, Features 000000300000010E, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
2016-12-08T00:22:12.906Z [Protected] PID 3304, Features 000000300000010E, C:\Program Files\Sophos\Sophos Data Recorder\SDRService.exe
2016-12-08T00:22:16.634Z [Protected] PID 3520, Features 000000300000010E, C:\Program Files\Sophos\Sophos System Protection\ssp.exe
2016-12-08T00:22:16.790Z [Protected] PID 3532, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:22:16.837Z [Protected] PID 3576, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:22:18.366Z [Protected] PID 3796, Features 000000300000010E, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
2016-12-08T00:22:18.553Z [Protected] PID 3968, Features 000000300000010E, C:\Program Files\TightVNC\tvnserver.exe
2016-12-08T00:22:18.584Z [Protected] PID 3868, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T00:22:18.615Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208052218
2016-12-08T00:22:19.785Z [Protected] PID 4200, Features 0000003000000106, c:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
2016-12-08T00:22:19.988Z [Protected] PID 4192, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T00:22:20.238Z [Protected] PID 4152, Features 000000300000010E, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sdcservice.exe
2016-12-08T00:22:22.344Z [Protected] PID 4544, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:22:22.671Z [Protected] PID 4368, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T00:22:28.693Z [Protected] PID 4976, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:22:30.284Z [Protected] PID 5056, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T00:22:46.508Z [Protected] PID 4368, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-08T00:23:15.046Z [Protected] PID 2224, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_update_64.exe
2016-12-08T00:23:15.656Z [Protected] PID 2684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:23:15.671Z [Protected] PID 2332, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T00:23:16.531Z [Protected] PID 300, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:23:16.546Z [Protected] PID 4784, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T00:24:20.297Z [Protected] PID 5092, Features 000000300000010E, C:\Program Files (x86)\BigFix Enterprise\BES Client\BESClient.exe
2016-12-08T00:24:20.828Z [Protected] PID 4128, Features 000000300000010E, C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
2016-12-08T00:24:21.438Z [Protected] PID 4952, Features 000000300000010E, C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
2016-12-08T00:24:22.610Z [Protected] PID 1076, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T00:24:22.797Z [Protected] PID 4888, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T00:24:22.844Z [Protected] PID 5108, Features 000000300000010E, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
2016-12-08T00:24:23.110Z [Protected] PID 4236, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-08T00:24:23.610Z [Protected] PID 436, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-08T00:24:33.097Z [Protected] PID 4372, Features 000000300000010E, C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
2016-12-08T00:24:34.066Z [Protected] PID 2860, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:34.081Z [Protected] PID 4264, Features 0000003000000106, C:\Program Files (x86)\BigFix Enterprise\BES Client\x64Environment.exe
2016-12-08T00:24:35.238Z [Protected] PID 4916, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T00:24:36.816Z [Protected] PID 4752, Features 000000300000010E, C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
2016-12-08T00:24:37.020Z [Protected] PID 344, Features 000000300000010E, C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2016-12-08T00:24:37.817Z [Protected] PID 2292, Features 000000300000010A, C:\Program Files (x86)\Malwarebytes' Managed Client\SCComm.exe
2016-12-08T00:24:45.287Z [Protected] PID 5048, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:45.303Z [Protected] PID 828, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
2016-12-08T00:24:46.663Z [Protected] PID 4952, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-08T00:24:47.256Z [Protected] PID 3588, Features 000000300000010A, C:\Windows\System32\SearchIndexer.exe
2016-12-08T00:24:47.694Z [Protected] PID 4128, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
2016-12-08T00:24:48.476Z [Protected] PID 1492, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-08T00:24:48.679Z [Protected] PID 4996, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T00:24:49.335Z [Protected] PID 5072, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:49.351Z [Protected] PID 3700, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
2016-12-08T00:24:50.460Z [Protected] PID 1620, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
2016-12-08T00:24:50.804Z [Protected] PID 5104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:50.820Z [Protected] PID 2148, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:50.882Z [Protected] PID 1048, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T00:24:50.976Z [Protected] PID 4828, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T00:24:54.633Z [Protected] PID 4080, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:54.649Z [Protected] PID 4352, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:55.555Z [Protected] PID 5004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:55.555Z [Protected] PID 1132, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:55.571Z [Protected] PID 4836, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:55.587Z [Protected] PID 4068, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:55.602Z [Protected] PID 4584, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:55.618Z [Protected] PID 4756, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:55.680Z [Protected] PID 4976, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:55.696Z [Protected] PID 3688, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:55.774Z [Protected] PID 2904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:55.774Z [Protected] PID 4532, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:55.852Z [Protected] PID 2840, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:55.852Z [Protected] PID 776, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:56.212Z [Protected] PID 4824, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.227Z [Protected] PID 3984, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.243Z [Protected] PID 2820, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.259Z [Protected] PID 1280, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.321Z [Protected] PID 2964, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.321Z [Protected] PID 4580, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:56.353Z [Protected] PID 1436, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.368Z [Protected] PID 3108, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.384Z [Protected] PID 1576, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.399Z [Protected] PID 2132, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.649Z [Protected] PID 2148, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.649Z [Protected] PID 4776, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.743Z [Protected] PID 4608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.743Z [Protected] PID 4828, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.774Z [Protected] PID 2556, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.790Z [Protected] PID 2992, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:56.806Z [Protected] PID 1076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.821Z [Protected] PID 2880, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.900Z [Protected] PID 4112, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.900Z [Protected] PID 1544, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.931Z [Protected] PID 1708, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:56.946Z [Protected] PID 4556, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:56.962Z [Protected] PID 4740, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T00:24:57.071Z [Protected] PID 5148, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:57.087Z [Protected] PID 5140, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:57.181Z [Protected] PID 5188, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:57.181Z [Protected] PID 5180, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:57.275Z [Protected] PID 5220, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:57.290Z [Protected] PID 5212, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:57.384Z [Protected] PID 5252, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:57.400Z [Protected] PID 5244, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:57.478Z [Protected] PID 5284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:57.493Z [Protected] PID 5276, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:57.603Z [Protected] PID 5316, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:57.618Z [Protected] PID 5308, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:57.665Z [Protected] PID 5160, Features 0000003000000102, C:\Windows\System32\regsvr32.exe
2016-12-08T00:24:58.119Z [Protected] PID 5380, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T00:24:58.165Z [Protected] PID 5412, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.181Z [Protected] PID 5404, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:58.291Z [Protected] PID 5472, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.306Z [Protected] PID 5464, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:58.369Z [Protected] PID 5504, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.369Z [Protected] PID 5496, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:58.431Z [Protected] PID 5536, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.447Z [Protected] PID 5528, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:58.509Z [Protected] PID 5568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.509Z [Protected] PID 5560, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:58.572Z [Protected] PID 5600, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.587Z [Protected] PID 5592, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:58.650Z [Protected] PID 5632, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.650Z [Protected] PID 5624, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:58.791Z [Protected] PID 5728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.806Z [Protected] PID 5676, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:58.853Z [Protected] PID 5828, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.869Z [Protected] PID 5792, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:58.963Z [Protected] PID 5972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:58.963Z [Protected] PID 5940, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.041Z [Protected] PID 6104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.056Z [Protected] PID 6076, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.103Z [Protected] PID 5356, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.119Z [Protected] PID 5260, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.181Z [Protected] PID 5048, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.197Z [Protected] PID 5392, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.244Z [Protected] PID 5584, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.259Z [Protected] PID 4472, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.322Z [Protected] PID 5872, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.322Z [Protected] PID 5824, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.385Z [Protected] PID 6044, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.385Z [Protected] PID 6000, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.447Z [Protected] PID 5156, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.463Z [Protected] PID 6128, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.510Z [Protected] PID 5364, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.525Z [Protected] PID 5372, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.588Z [Protected] PID 884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.603Z [Protected] PID 4960, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.650Z [Protected] PID 5856, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.666Z [Protected] PID 5712, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.728Z [Protected] PID 6012, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.744Z [Protected] PID 5964, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.791Z [Protected] PID 5176, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.807Z [Protected] PID 6100, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.853Z [Protected] PID 5340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.869Z [Protected] PID 5164, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:24:59.916Z [Protected] PID 3592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.932Z [Protected] PID 5520, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:24:59.978Z [Protected] PID 5848, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:24:59.994Z [Protected] PID 5808, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:25:00.057Z [Protected] PID 6008, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.072Z [Protected] PID 6016, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:00.135Z [Protected] PID 5272, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.135Z [Protected] PID 6140, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T00:25:00.197Z [Protected] PID 5492, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.213Z [Protected] PID 5400, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:00.322Z [Protected] PID 5696, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.338Z [Protected] PID 5612, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:00.494Z [Protected] PID 5996, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.494Z [Protected] PID 5952, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:00.697Z [Protected] PID 4300, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.713Z [Protected] PID 3000, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:00.822Z [Protected] PID 4076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.838Z [Protected] PID 5124, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:00.963Z [Protected] PID 5552, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:00.963Z [Protected] PID 5516, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.151Z [Protected] PID 5920, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:01.166Z [Protected] PID 5756, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.291Z [Protected] PID 4684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:01.307Z [Protected] PID 6084, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.416Z [Protected] PID 5228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:01.448Z [Protected] PID 244, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.557Z [Protected] PID 5432, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:01.573Z [Protected] PID 5428, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.698Z [Protected] PID 4516, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:01.744Z [Protected] PID 2156, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.870Z [Protected] PID 2212, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:01.885Z [Protected] PID 5936, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:01.995Z [Protected] PID 4584, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.010Z [Protected] PID 5984, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.135Z [Protected] PID 1700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.151Z [Protected] PID 1436, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.276Z [Protected] PID 5052, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.323Z [Protected] PID 5336, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.448Z [Protected] PID 5736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.463Z [Protected] PID 4776, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.573Z [Protected] PID 5956, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.588Z [Protected] PID 5640, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.713Z [Protected] PID 3700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.729Z [Protected] PID 2892, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.839Z [Protected] PID 2708, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.854Z [Protected] PID 544, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:02.964Z [Protected] PID 4532, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:02.979Z [Protected] PID 5196, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:03.089Z [Protected] PID 5388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:03.104Z [Protected] PID 5484, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:03.245Z [Protected] PID 5840, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:25:03.260Z [Protected] PID 5544, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-cli.exe
2016-12-08T00:25:11.684Z [Protected] PID 1280, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T00:25:11.981Z [Protected] PID 6136, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T00:26:19.467Z [Protected] PID 5576, Features 0000003000000102, \\?\C:\Windows\System32\wbem\WMIADAP.exe
2016-12-08T00:27:12.418Z [Protected] PID 5556, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T00:31:54.605Z [Protected] PID 4352, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T00:31:54.996Z [Protected] PID 5792, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-08T00:31:55.433Z [Protected] PID 2396, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-08T00:51:24.883Z [Protected] PID 5280, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:51:24.899Z [Protected] PID 1796, Features 000000300000010A, C:\Windows\System32\compattelrunner.exe
2016-12-08T00:51:24.914Z [Protected] PID 5652, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-08T00:52:12.916Z [Protected] PID 2204, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T00:52:12.963Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208055212
2016-12-08T00:57:01.033Z [Protected] PID 4532, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T00:57:01.360Z [Protected] PID 3852, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:57:01.392Z [Protected] PID 5360, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T00:57:01.485Z [Protected] PID 4992, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T00:58:24.897Z [Protected] PID 4300, Features 000000300000010A, C:\Windows\System32\rundll32.exe
2016-12-08T00:58:24.944Z [Protected] PID 1312, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T00:58:24.959Z [Protected] PID 5468, Features 000000300000010A, C:\Windows\System32\lpremove.exe
2016-12-08T00:58:25.880Z [Protected] PID 4176, Features 000000300000010A, C:\Windows\System32\VSSVC.exe
2016-12-08T00:58:26.270Z [Protected] PID 5552, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T00:59:00.183Z [Protected] PID 2148, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T01:04:14.099Z [Protected] PID 5904, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T01:22:13.133Z [Protected] PID 2788, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T01:22:13.165Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208062212
2016-12-08T01:23:17.515Z [Protected] PID 6136, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T01:23:17.515Z [Protected] PID 1088, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T01:23:17.624Z [Protected] PID 5972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T01:23:17.639Z [Protected] PID 5772, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T01:27:10.111Z [Protected] PID 5632, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T01:32:35.826Z [Protected] PID 1360, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T01:32:36.278Z [Protected] PID 3904, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T01:32:36.606Z [Protected] PID 5808, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T01:38:08.534Z [Protected] PID 2460, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T01:52:13.306Z [Protected] PID 5532, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T01:52:13.353Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208065213
2016-12-08T01:57:00.160Z [Protected] PID 4176, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T01:57:00.519Z [Protected] PID 4224, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T01:57:00.534Z [Protected] PID 5280, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T01:57:00.659Z [Protected] PID 5796, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T01:59:00.249Z [Protected] PID 5840, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T02:09:29.319Z [Protected] PID 6060, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T02:21:29.493Z [Protected] PID 4356, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T02:22:13.485Z [Protected] PID 4304, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T02:22:13.531Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208072213
2016-12-08T02:23:17.835Z [Protected] PID 5308, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T02:23:17.850Z [Protected] PID 5340, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T02:23:17.944Z [Protected] PID 3560, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T02:23:17.959Z [Protected] PID 6052, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T02:27:06.515Z [Protected] PID 3004, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T02:27:37.559Z [Protected] PID 4776, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-08T02:28:05.592Z [Protected] PID 5932, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T02:28:05.811Z [Protected] PID 2864, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T02:30:00.627Z [Protected] PID 3900, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T02:30:00.642Z [Protected] PID 3696, Features 000000300000010A, C:\Windows\System32\aitagent.exe
2016-12-08T02:48:24.040Z [Protected] PID 5260, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T02:50:34.425Z [Protected] PID 3000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T02:50:34.472Z [Protected] PID 5332, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T02:52:14.078Z [Protected] PID 3700, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T02:52:14.109Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208075213
2016-12-08T02:57:00.274Z [Protected] PID 4264, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T02:57:00.664Z [Protected] PID 5808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T02:57:00.680Z [Protected] PID 3388, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T02:57:00.758Z [Protected] PID 5432, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T02:59:00.454Z [Protected] PID 4900, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T03:00:36.003Z [Protected] PID 1656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T03:00:36.018Z [Protected] PID 4964, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T03:11:10.031Z [Protected] PID 5372, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T03:22:14.365Z [Protected] PID 5748, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T03:22:14.381Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208082214
2016-12-08T03:23:18.184Z [Protected] PID 1248, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T03:23:18.200Z [Protected] PID 2900, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T03:23:18.340Z [Protected] PID 5576, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T03:23:18.356Z [Protected] PID 5832, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T03:27:07.286Z [Protected] PID 5800, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T03:30:00.914Z [Protected] PID 1980, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T03:46:42.590Z [Protected] PID 5792, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T03:46:42.621Z [Protected] PID 4104, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-08T03:46:42.917Z [Protected] PID 4068, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T03:46:42.933Z [Protected] PID 4276, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-08T03:46:43.058Z [Protected] PID 5264, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-08T03:46:46.880Z [Protected] PID 5636, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-08T03:46:47.629Z [Protected] PID 5380, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-08T03:47:12.370Z [Protected] PID 1572, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T03:47:12.542Z [Protected] PID 5920, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T03:47:14.523Z [Protected] PID 1812, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T03:52:03.299Z [Protected] PID 6500, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-08T03:52:03.892Z [Protected] PID 6820, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-08T03:52:14.500Z [Protected] PID 6992, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T03:52:14.531Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208085214
2016-12-08T03:55:03.462Z [Protected] PID 1812, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T03:57:00.180Z [Protected] PID 5972, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T03:57:00.477Z [Protected] PID 6344, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T03:57:00.492Z [Protected] PID 5788, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T03:57:00.555Z [Protected] PID 5664, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T03:57:32.145Z [Protected] PID 6320, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T03:59:00.207Z [Protected] PID 6712, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T04:02:08.187Z [Protected] PID 4580, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T04:22:14.675Z [Protected] PID 1044, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T04:22:14.722Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208092214
2016-12-08T04:23:18.681Z [Protected] PID 5364, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T04:23:18.681Z [Protected] PID 5636, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T04:23:18.790Z [Protected] PID 1452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T04:23:18.806Z [Protected] PID 4956, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T04:27:05.613Z [Protected] PID 6644, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T04:30:38.818Z [Protected] PID 4648, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T04:30:38.850Z [Protected] PID 5744, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T04:52:15.022Z [Protected] PID 6784, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T04:52:15.054Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208095214
2016-12-08T04:57:00.284Z [Protected] PID 4860, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T04:57:00.658Z [Protected] PID 5968, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T04:57:00.690Z [Protected] PID 5932, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T04:57:00.830Z [Protected] PID 6964, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T04:59:00.279Z [Protected] PID 6020, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T04:59:20.684Z [Protected] PID 1600, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T05:04:07.569Z [Protected] PID 3592, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T05:13:52.585Z [Protected] PID 1616, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T05:18:46.738Z [Protected] PID 5168, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T05:18:47.175Z [Protected] PID 3268, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T05:18:48.969Z [Protected] PID 6228, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T05:18:51.699Z [Protected] PID 5468, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T05:18:51.808Z [Protected] PID 3884, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T05:18:58.703Z [Protected] PID 7036, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T05:19:00.778Z [Protected] PID 7144, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-08T05:19:02.260Z [Protected] PID 6520, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T05:19:12.681Z [Protected] PID 5652, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T05:20:09.824Z [Protected] PID 5020, Features 000000300000010A, C:\Windows\servicing\TrustedInstaller.exe
2016-12-08T05:20:49.963Z [Protected] PID 5452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:20:49.978Z [Protected] PID 1516, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-08T05:20:50.025Z [Protected] PID 736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:20:50.025Z [Protected] PID 5100, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:20:50.041Z [Protected] PID 5292, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-08T05:20:50.041Z [Protected] PID 6408, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-08T05:20:50.087Z [Protected] PID 6812, Features 0000003000000102, C:\Windows\System32\NETSTAT.EXE
2016-12-08T05:20:50.321Z [Protected] PID 6328, Features 0000003000000102, C:\Windows\System32\tasklist.exe
2016-12-08T05:20:50.805Z [Protected] PID 2684, Features 000000361FBF0102, C:\Windows\System32\wscript.exe
2016-12-08T05:21:03.628Z [Protected] PID 5792, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-08T05:22:10.833Z [Protected] PID 4584, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T05:22:15.185Z [Protected] PID 7116, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T05:22:15.217Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208102215
2016-12-08T05:23:19.005Z [Protected] PID 920, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:23:19.021Z [Protected] PID 6320, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T05:23:19.130Z [Protected] PID 6912, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:23:19.145Z [Protected] PID 5636, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T05:27:06.859Z [Protected] PID 6892, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T05:40:42.897Z [Protected] PID 172, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:40:42.928Z [Protected] PID 6956, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T05:52:15.521Z [Protected] PID 5600, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T05:52:15.552Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208105215
2016-12-08T05:53:36.048Z [Protected] PID 4128, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T05:57:00.237Z [Protected] PID 6248, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T05:57:00.611Z [Protected] PID 3324, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T05:57:00.627Z [Protected] PID 6864, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T05:57:00.752Z [Protected] PID 6268, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T05:59:00.341Z [Protected] PID 5696, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T06:11:39.905Z [Protected] PID 6560, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T06:11:56.925Z [Protected] PID 5236, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T06:22:15.683Z [Protected] PID 6340, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T06:22:15.714Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208112215
2016-12-08T06:22:23.140Z [Protected] PID 1424, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T06:23:19.331Z [Protected] PID 5744, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T06:23:19.331Z [Protected] PID 5720, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T06:23:19.440Z [Protected] PID 6528, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T06:23:19.456Z [Protected] PID 5548, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T06:27:06.857Z [Protected] PID 6600, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T06:27:31.037Z [Protected] PID 2708, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-08T06:27:40.616Z [Protected] PID 6760, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T06:27:40.818Z [Protected] PID 2304, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T06:52:16.113Z [Protected] PID 1048, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T06:52:16.191Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208115215
2016-12-08T06:57:00.142Z [Protected] PID 4516, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T06:57:00.563Z [Protected] PID 5552, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T06:57:00.594Z [Protected] PID 6868, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T06:57:00.703Z [Protected] PID 172, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T06:59:00.184Z [Protected] PID 2824, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T07:00:03.223Z [Protected] PID 5580, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T07:22:16.322Z [Protected] PID 5736, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T07:22:16.354Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208122216
2016-12-08T07:23:19.658Z [Protected] PID 6748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T07:23:19.658Z [Protected] PID 6372, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T07:23:19.830Z [Protected] PID 1192, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T07:23:19.830Z [Protected] PID 4756, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T07:25:11.854Z [Protected] PID 6476, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T07:27:05.718Z [Protected] PID 5036, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T07:29:38.911Z [Protected] PID 6928, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T07:30:53.136Z [Protected] PID 5736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T07:30:53.167Z [Protected] PID 6524, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T07:52:16.831Z [Protected] PID 5104, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T07:52:16.847Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208125216
2016-12-08T07:57:00.264Z [Protected] PID 6088, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T07:57:00.623Z [Protected] PID 4960, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T07:57:00.654Z [Protected] PID 6292, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T07:57:00.763Z [Protected] PID 7036, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T07:59:00.353Z [Protected] PID 5188, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T08:03:19.719Z [Protected] PID 6248, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T08:22:04.931Z [Protected] PID 5944, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T08:22:16.990Z [Protected] PID 4196, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T08:22:17.021Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208132216
2016-12-08T08:23:20.014Z [Protected] PID 2708, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T08:23:20.014Z [Protected] PID 4596, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T08:23:20.123Z [Protected] PID 6744, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T08:23:20.139Z [Protected] PID 6620, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T08:24:15.923Z [Protected] PID 6328, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T08:24:19.605Z [Protected] PID 1088, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T08:24:21.336Z [Protected] PID 840, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T08:24:21.461Z [Protected] PID 6880, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T08:24:25.782Z [Protected] PID 5568, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T08:24:25.969Z [Protected] PID 2164, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
2016-12-08T08:24:26.016Z [Protected] PID 7120, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T08:24:26.032Z [Protected] PID 6744, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T08:24:26.047Z [Protected] PID 6088, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T08:24:26.515Z [Protected] PID 4808, Features 0000003000000102, C:\Windows\System32\gpscript.exe
2016-12-08T08:24:26.999Z [Protected] PID 5956, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
2016-12-08T08:24:27.467Z [Protected] PID 4296, Features 0000003000000102, C:\Windows\System32\gpscript.exe
2016-12-08T08:24:27.732Z [Protected] PID 4776, Features 000000300000010E, C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
2016-12-08T08:24:27.935Z [Protected] PID 2556, Features 0000003000000102, C:\Windows\System32\userinit.exe
2016-12-08T08:24:28.013Z [Protected] PID 5236, Features 0000003000000102, C:\Windows\System32\dwm.exe
2016-12-08T08:24:28.309Z [Protected] PID 4988, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-08T08:24:28.996Z [Protected] PID 6452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T08:24:29.027Z [Protected] PID 5544, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
2016-12-08T08:24:29.074Z [Protected] PID 4160, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-08T08:24:29.355Z [Protected] PID 4564, Features 0000003000000102, C:\Windows\System32\powercfg.exe
2016-12-08T08:24:31.258Z [Protected] PID 6864, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T08:24:31.273Z [Protected] PID 4904, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-08T08:24:31.336Z [Protected] PID 296, Features 0000003000000102, C:\Windows\System32\igfxEM.exe
2016-12-08T08:24:31.351Z [Protected] PID 6192, Features 0000003000000102, C:\Windows\System32\igfxHK.exe
2016-12-08T08:24:31.367Z [Protected] PID 6872, Features 0000003000000102, C:\Windows\System32\igfxTray.exe
2016-12-08T08:24:31.492Z [Protected] PID 6600, Features 0000003000000106, C:\Program Files (x86)\BigFix Enterprise\BES Client\BESClientUI.exe
2016-12-08T08:24:33.192Z [Protected] PID 6820, Features 0000003000000106, C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
2016-12-08T08:24:34.081Z [Protected] PID 1392, Features 0000003000000102, C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
2016-12-08T08:24:34.097Z [Protected] PID 5024, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
2016-12-08T08:24:34.159Z [Protected] PID 5312, Features 0000003000000106, C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
2016-12-08T08:24:34.237Z [Protected] PID 1812, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T08:24:34.347Z [Protected] PID 5020, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
2016-12-08T08:24:34.425Z [Protected] PID 5908, Features 0000003000000106, C:\Program Files\TightVNC\tvnserver.exe
2016-12-08T08:24:34.471Z [Protected] PID 6040, Features 0000003000000106, C:\Program Files\iTunes\iTunesHelper.exe
2016-12-08T08:24:34.549Z [Protected] PID 6348, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T08:24:34.565Z [Protected] PID 4104, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T08:24:34.596Z [Protected] PID 5368, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Sophos UI.exe
2016-12-08T08:24:34.643Z [Protected] PID 5776, Features 0000003000000102, C:\Windows\SysWOW64\runonce.exe
2016-12-08T08:24:34.659Z [Protected] PID 5700, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-08T08:24:34.674Z [Protected] PID 4820, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-08T08:24:34.737Z [Protected] PID 5428, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
2016-12-08T08:24:34.783Z [Protected] PID 7096, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-08T08:24:35.017Z [Protected] PID 6540, Features 0000003000000106, C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
2016-12-08T08:24:35.095Z [Protected] PID 5928, Features 0000003000000106, C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
2016-12-08T08:24:35.158Z [Protected] PID 4928, Features 0000003000000106, C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
2016-12-08T08:24:35.220Z [Protected] PID 6124, Features 0000003000000106, C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
2016-12-08T08:24:35.267Z [Protected] PID 5052, Features 0000003000000106, C:\Program Files (x86)\HP\HP Touchpoint Manager\Discover HP Touchpoint Manager\LHBeacon.exe
2016-12-08T08:24:35.314Z [Protected] PID 172, Features 0000003000000106, C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe
2016-12-08T08:24:35.485Z [Protected] PID 4888, Features 0000003000000102, C:\Program Files (x86)\Hewlett-Packard\HP Business Slim Keyboard\SkWLUSB.exe
2016-12-08T08:24:35.485Z [Protected] PID 6564, Features 000000300000010E, C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
2016-12-08T08:24:35.719Z [Protected] PID 5520, Features 0000003000000106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
2016-12-08T08:24:35.844Z [Protected] PID 6240, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
2016-12-08T08:24:36.265Z [Protected] PID 5948, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T08:24:36.484Z [Protected] PID 2580, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T08:24:36.687Z [Protected] PID 2336, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T08:24:37.841Z [Protected] PID 2212, Features 0000003000000102, C:\Windows\System32\wbem\unsecapp.exe
2016-12-08T08:24:38.059Z [Protected] PID 6952, Features 000000300000010E, C:\Program Files\iPod\bin\iPodService.exe
2016-12-08T08:24:38.902Z [Protected] PID 5492, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-08T08:24:39.498Z [Protected] PID 6288, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T08:24:40.374Z [Protected] PID 5356, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
2016-12-08T08:24:47.972Z [Protected] PID 1504, Features 0000003000000102, C:\Windows\System32\mobsync.exe
2016-12-08T08:24:51.684Z [Protected] PID 6236, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T08:24:58.704Z [Protected] PID 7052, Features 000000341FBF9106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:24:58.907Z [Protected] PID 4076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:24:59.921Z [Protected] PID 2756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:02.058Z [Protected] PID 4976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:02.402Z [Protected] PID 2556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:04.478Z [Protected] PID 7256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:04.594Z [Protected] PID 7384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:04.630Z [Protected] PID 7480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:04.669Z [Protected] PID 7564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:04.716Z [Protected] PID 7660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:04.763Z [Protected] PID 7768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:11.011Z [Protected] PID 7700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:11.152Z [Protected] PID 7884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T08:25:11.180Z [Protected] PID 7852, Features 0000003000002102, C:\Windows\SysWOW64\cmd.exe
2016-12-08T08:25:11.285Z [Protected] PID 8168, Features 0000003000002106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeNativeMessagingHost.exe
2016-12-08T08:25:14.878Z [Protected] PID 7712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:14.911Z [Protected] PID 7796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:34.276Z [Protected] PID 5580, Features 0000003000000106, C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
2016-12-08T08:25:40.273Z [Protected] PID 8024, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-08T08:25:41.318Z [Protected] PID 1476, Features 0000003000000102, C:\Windows\System32\rundll32.exe
2016-12-08T08:25:43.190Z [Protected] PID 7524, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-08T08:25:47.299Z [Protected] PID 3868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:25:57.720Z [Protected] PID 6276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:26:02.276Z [Protected] PID 1060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:26:23.630Z [Protected] PID 4264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:26:29.970Z [Protected] PID 8096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:26:35.159Z [Protected] PID 4208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:26:52.187Z [Protected] PID 4120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:27:07.341Z [Protected] PID 6152, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T08:27:36.849Z [Protected] PID 8284, Features 0000003000000106, C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
2016-12-08T08:28:32.695Z [Protected] PID 7288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:28:35.215Z [Protected] PID 7448, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T08:28:35.539Z [Protected] PID 8656, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
2016-12-08T08:28:38.497Z [Protected] PID 2692, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T08:28:40.105Z [Protected] PID 4172, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-08T08:30:18.766Z [Protected] PID 780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:30:25.408Z [Protected] PID 8812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:30:48.301Z [Protected] PID 8752, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T08:30:49.638Z [Protected] PID 7228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:32:06.058Z [Protected] PID 8696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:33:32.521Z [Protected] PID 1236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:34:35.953Z [Protected] PID 4760, Features 0000003000000106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrodist.exe
2016-12-08T08:35:06.479Z [Protected] PID 4308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:35:07.811Z [Protected] PID 8296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:35:15.530Z [Protected] PID 8584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:35:32.531Z [Protected] PID 6788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:36:34.272Z [Protected] PID 3388, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T08:36:34.552Z [Protected] PID 1448, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-08T08:36:34.849Z [Protected] PID 9156, Features 0000003000000106, C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
2016-12-08T08:36:34.942Z [Protected] PID 6904, Features 0000003000000106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat_sl.exe
2016-12-08T08:37:26.929Z [Protected] PID 4516, Features 000000300000010A, C:\Windows\System32\wermgr.exe
2016-12-08T08:37:27.057Z [Protected] PID 7848, Features 0000003000000102, C:\Windows\System32\rundll32.exe
2016-12-08T08:38:09.774Z [Protected] PID 736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:38:13.653Z [Protected] PID 5280, Features 0000003000000102, C:\Program Files (x86)\Shoreline Communications\ShoreWare Client\ShoreTel.exe
2016-12-08T08:38:22.447Z [Protected] PID 6168, Features 0000003000000102, C:\Program Files (x86)\Shoreline Communications\ShoreWare Client\DocShare.exe
2016-12-08T08:38:32.420Z [Protected] PID 4648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:43:16.752Z [Protected] PID 5356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:43:20.492Z [Protected] PID 8940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:43:32.424Z [Protected] PID 8928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:46:29.843Z [Protected] PID 8236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:46:30.341Z [Protected] PID 5924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:46:32.802Z [Protected] PID 6236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:47:10.253Z [Protected] PID 11144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:47:16.834Z [Protected] PID 11056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:47:19.908Z [Protected] PID 9272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:48:32.591Z [Protected] PID 7580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:52:17.167Z [Protected] PID 10624, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T08:52:17.217Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208135217
2016-12-08T08:53:32.586Z [Protected] PID 10076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:54:01.240Z [Protected] PID 11196, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T08:54:01.354Z [Protected] PID 9280, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T08:54:35.300Z [Protected] PID 4404, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T08:54:35.514Z [Protected] PID 8740, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-08T08:57:00.238Z [Protected] PID 8528, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T08:57:00.885Z [Protected] PID 8496, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T08:57:00.948Z [Protected] PID 6648, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T08:57:01.103Z [Protected] PID 8404, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T08:58:32.650Z [Protected] PID 10600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T08:59:00.172Z [Protected] PID 10408, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T08:59:11.968Z [Protected] PID 9940, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T09:01:09.321Z [Protected] PID 1660, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T09:01:09.340Z [Protected] PID 6076, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T09:02:29.082Z [Protected] PID 11144, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T09:03:32.924Z [Protected] PID 1820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:03:47.578Z [Protected] PID 9948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:04:17.425Z [Protected] PID 9288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:04:20.821Z [Protected] PID 7516, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T09:04:54.575Z [Protected] PID 8276, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T09:04:54.942Z [Protected] PID 4256, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T09:04:55.244Z [Protected] PID 8592, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T09:08:32.649Z [Protected] PID 8952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:10:22.284Z [Protected] PID 9740, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T09:10:22.553Z [Protected] PID 7520, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-08T09:11:04.983Z [Protected] PID 4784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:11:06.050Z [Protected] PID 4444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:11:11.426Z [Protected] PID 2904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:12:16.142Z [Protected] PID 2820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:12:20.650Z [Protected] PID 6628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:13:32.658Z [Protected] PID 1092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:14:19.055Z [Protected] PID 6648, Features 0000003000002106, C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE
2016-12-08T09:14:21.823Z [Protected] PID 9228, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T09:14:28.225Z [Protected] PID 9176, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-08T09:14:28.270Z [Protected] PID 7992, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T09:14:28.380Z [Protected] PID 2300, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T09:16:29.738Z [Protected] PID 11220, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T09:16:43.379Z [Protected] PID 10148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:16:51.003Z [Protected] PID 11000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:17:00.141Z [Protected] PID 9604, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T09:17:02.357Z [Protected] PID 404, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T09:17:02.945Z [Protected] PID 9312, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T09:18:32.401Z [Protected] PID 7080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:22:17.443Z [Protected] PID 3988, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T09:22:17.474Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208142217
2016-12-08T09:23:20.375Z [Protected] PID 10104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T09:23:20.390Z [Protected] PID 9092, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T09:23:20.544Z [Protected] PID 9580, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T09:23:20.560Z [Protected] PID 9564, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T09:23:32.509Z [Protected] PID 10568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:25:16.851Z [Protected] PID 11180, Features 0000003000002106, C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE
2016-12-08T09:25:17.227Z [Protected] PID 10016, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T09:25:18.273Z [Protected] PID 7788, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T09:25:18.308Z [Protected] PID 5260, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-08T09:25:18.490Z [Protected] PID 10120, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T09:27:06.997Z [Protected] PID 10304, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T09:28:00.129Z [Protected] PID 9268, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T09:28:00.893Z [Protected] PID 9160, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T09:28:25.908Z [Protected] PID 10636, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-08T09:28:32.545Z [Protected] PID 9732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:28:57.139Z [Protected] PID 9536, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T09:28:57.338Z [Protected] PID 7852, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T09:29:28.900Z [Protected] PID 9608, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-08T09:29:31.205Z [Protected] PID 10044, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-08T09:29:40.028Z [Protected] PID 9748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T09:29:40.074Z [Protected] PID 7788, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-08T09:29:40.248Z [Protected] PID 6876, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-08T09:33:32.558Z [Protected] PID 10884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:38:32.696Z [Protected] PID 11256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:41:58.020Z [Protected] PID 5596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:43:32.434Z [Protected] PID 9884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:45:38.821Z [Protected] PID 9100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:45:44.977Z [Protected] PID 9944, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-08T09:45:47.507Z [Protected] PID 6956, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-08T09:45:54.040Z [Protected] PID 6764, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T09:45:54.150Z [Protected] PID 8456, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-08T09:45:54.849Z [Protected] PID 1604, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-08T09:48:32.537Z [Protected] PID 6352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:52:17.657Z [Protected] PID 7708, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T09:52:17.713Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208145217
2016-12-08T09:53:32.686Z [Protected] PID 4412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:57:00.157Z [Protected] PID 5712, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T09:57:00.539Z [Protected] PID 10732, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T09:57:00.555Z [Protected] PID 3188, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T09:57:00.614Z [Protected] PID 7592, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T09:58:32.524Z [Protected] PID 10552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T09:59:00.257Z [Protected] PID 6068, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T10:00:01.166Z [Protected] PID 2784, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-08T10:00:53.317Z [Protected] PID 4808, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T10:03:32.467Z [Protected] PID 1556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:08:32.655Z [Protected] PID 5572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:13:32.633Z [Protected] PID 10148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:17:00.198Z [Protected] PID 10408, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T10:17:00.900Z [Protected] PID 11036, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T10:17:29.179Z [Protected] PID 10412, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T10:17:31.352Z [Protected] PID 8880, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T10:17:31.648Z [Protected] PID 7228, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T10:17:31.707Z [Protected] PID 9152, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T10:17:33.661Z [Protected] PID 8672, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T10:17:35.972Z [Protected] PID 6332, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T10:18:32.580Z [Protected] PID 8960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:19:11.625Z [Protected] PID 8868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:19:16.763Z [Protected] PID 10128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:19:18.103Z [Protected] PID 8992, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:22:17.853Z [Protected] PID 1372, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T10:22:17.895Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208152217
2016-12-08T10:23:21.039Z [Protected] PID 2332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T10:23:21.070Z [Protected] PID 9008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T10:23:21.281Z [Protected] PID 7728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T10:23:21.300Z [Protected] PID 8652, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T10:23:32.503Z [Protected] PID 6416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:27:05.989Z [Protected] PID 8452, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T10:27:50.264Z [Protected] PID 11004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:27:52.462Z [Protected] PID 7268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:28:32.429Z [Protected] PID 10604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:33:32.747Z [Protected] PID 8524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:35:37.534Z [Protected] PID 11236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:35:39.454Z [Protected] PID 9136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:35:44.576Z [Protected] PID 3188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:35:59.633Z [Protected] PID 8924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:38:32.654Z [Protected] PID 9988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:38:33.624Z [Protected] PID 4460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:38:36.001Z [Protected] PID 9316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:39:52.797Z [Protected] PID 1072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:39:55.632Z [Protected] PID 4192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:39:58.401Z [Protected] PID 6560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:41:44.232Z [Protected] PID 9360, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T10:43:32.658Z [Protected] PID 8900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:46:04.421Z [Protected] PID 10472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:48:32.559Z [Protected] PID 3004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:50:13.964Z [Protected] PID 10780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:51:17.733Z [Protected] PID 8804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:51:17.919Z [Protected] PID 11052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:51:54.165Z [Protected] PID 8764, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T10:51:54.183Z [Protected] PID 7752, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T10:52:18.337Z [Protected] PID 10132, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T10:52:18.371Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208155217
2016-12-08T10:52:33.070Z [Protected] PID 7232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:53:32.665Z [Protected] PID 9932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:55:57.378Z [Protected] PID 9888, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T10:57:00.209Z [Protected] PID 6352, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T10:57:00.569Z [Protected] PID 8584, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T10:57:00.587Z [Protected] PID 9328, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T10:57:00.669Z [Protected] PID 8964, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T10:57:44.311Z [Protected] PID 10652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:57:57.217Z [Protected] PID 6588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:58:32.390Z [Protected] PID 8768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T10:59:00.329Z [Protected] PID 8820, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T10:59:31.643Z [Protected] PID 1232, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T11:01:24.068Z [Protected] PID 6552, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T11:03:32.699Z [Protected] PID 8848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:04:07.400Z [Protected] PID 11096, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-08T11:04:08.924Z [Protected] PID 10044, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-08T11:04:15.860Z [Protected] PID 9800, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T11:04:15.895Z [Protected] PID 8512, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-08T11:04:16.120Z [Protected] PID 8244, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-08T11:08:32.565Z [Protected] PID 8988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:13:32.566Z [Protected] PID 8960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:17:00.138Z [Protected] PID 10940, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T11:17:01.219Z [Protected] PID 6236, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T11:17:01.786Z [Protected] PID 10324, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T11:18:32.602Z [Protected] PID 8616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:20:22.275Z [Protected] PID 11128, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-08T11:20:28.734Z [Protected] PID 8624, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-08T11:22:18.516Z [Protected] PID 9844, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T11:22:18.568Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208162218
2016-12-08T11:23:21.545Z [Protected] PID 9508, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T11:23:21.558Z [Protected] PID 8240, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T11:23:21.738Z [Protected] PID 7232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T11:23:21.754Z [Protected] PID 4956, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T11:23:32.601Z [Protected] PID 1472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:24:58.492Z [Protected] PID 4500, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T11:24:58.521Z [Protected] PID 5288, Features 0000003000000102, C:\Windows\System32\Defrag.exe
2016-12-08T11:24:58.903Z [Protected] PID 6916, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T11:26:20.708Z [Protected] PID 5532, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T11:27:07.317Z [Protected] PID 9008, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T11:28:00.206Z [Protected] PID 9552, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T11:28:00.898Z [Protected] PID 10664, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T11:28:32.473Z [Protected] PID 6028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:33:32.908Z [Protected] PID 6648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:38:32.635Z [Protected] PID 9088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:43:32.597Z [Protected] PID 9308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:48:32.674Z [Protected] PID 8928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:49:42.511Z [Protected] PID 7176, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T11:49:44.506Z [Protected] PID 6064, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T11:49:44.562Z [Protected] PID 5036, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T11:49:44.848Z [Protected] PID 7640, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T11:49:45.481Z [Protected] PID 11052, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T11:49:46.129Z [Protected] PID 10664, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T11:52:18.718Z [Protected] PID 6584, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T11:52:18.791Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208165218
2016-12-08T11:53:32.632Z [Protected] PID 7800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:57:00.130Z [Protected] PID 884, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T11:57:00.508Z [Protected] PID 9208, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T11:57:00.533Z [Protected] PID 6352, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T11:57:00.643Z [Protected] PID 4756, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T11:58:32.656Z [Protected] PID 10780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T11:59:00.229Z [Protected] PID 8616, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T12:03:32.620Z [Protected] PID 5160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:06:33.399Z [Protected] PID 4648, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T12:06:35.311Z [Protected] PID 7552, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T12:06:35.543Z [Protected] PID 10748, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-08T12:08:32.584Z [Protected] PID 8652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:13:32.620Z [Protected] PID 4444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:17:00.130Z [Protected] PID 10624, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T12:17:00.842Z [Protected] PID 736, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T12:17:01.471Z [Protected] PID 9868, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T12:18:32.637Z [Protected] PID 7988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:22:18.907Z [Protected] PID 8880, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T12:22:18.949Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208172218
2016-12-08T12:22:25.063Z [Protected] PID 8680, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T12:23:21.923Z [Protected] PID 4904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T12:23:21.935Z [Protected] PID 9020, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T12:23:22.092Z [Protected] PID 3696, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T12:23:22.102Z [Protected] PID 11160, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T12:23:32.633Z [Protected] PID 7856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:25:38.107Z [Protected] PID 1308, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T12:25:38.227Z [Protected] PID 8264, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T12:25:46.922Z [Protected] PID 10628, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T12:27:03.548Z [Protected] PID 9808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T12:27:03.562Z [Protected] PID 10012, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-08T12:27:03.706Z [Protected] PID 9888, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-08T12:27:06.444Z [Protected] PID 10920, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-08T12:27:06.919Z [Protected] PID 9264, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-08T12:27:07.112Z [Protected] PID 7068, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-08T12:27:07.294Z [Protected] PID 5416, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-08T12:27:07.499Z [Protected] PID 4552, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-08T12:27:07.732Z [Protected] PID 5160, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-08T12:27:11.293Z [Protected] PID 9408, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T12:28:32.640Z [Protected] PID 8816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:33:32.657Z [Protected] PID 5228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:38:32.569Z [Protected] PID 9228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:43:32.449Z [Protected] PID 10340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:48:32.558Z [Protected] PID 264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:52:19.097Z [Protected] PID 9924, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T12:52:19.145Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208175218
2016-12-08T12:53:32.654Z [Protected] PID 6556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:57:00.123Z [Protected] PID 10920, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T12:57:00.486Z [Protected] PID 8488, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T12:57:00.503Z [Protected] PID 1360, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T12:57:00.643Z [Protected] PID 4500, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T12:58:32.657Z [Protected] PID 5496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T12:59:00.253Z [Protected] PID 6360, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T13:03:22.940Z [Protected] PID 1708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:03:31.702Z [Protected] PID 5496, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T13:03:32.427Z [Protected] PID 4328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:08:32.623Z [Protected] PID 6568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:10:25.491Z [Protected] PID 1316, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T13:10:26.037Z [Protected] PID 8804, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T13:10:26.383Z [Protected] PID 6816, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T13:11:58.373Z [Protected] PID 2456, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T13:11:58.396Z [Protected] PID 4532, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T13:13:32.850Z [Protected] PID 6700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:17:00.392Z [Protected] PID 8124, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T13:17:01.117Z [Protected] PID 1308, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T13:17:01.748Z [Protected] PID 8268, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T13:18:32.611Z [Protected] PID 5416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:22:19.349Z [Protected] PID 10916, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T13:22:19.382Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208182219
2016-12-08T13:23:22.268Z [Protected] PID 9976, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T13:23:22.280Z [Protected] PID 7792, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T13:23:22.396Z [Protected] PID 9180, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T13:23:22.408Z [Protected] PID 6360, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T13:23:32.662Z [Protected] PID 9508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:27:07.062Z [Protected] PID 9608, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T13:28:00.187Z [Protected] PID 11816, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T13:28:00.742Z [Protected] PID 12084, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T13:28:32.652Z [Protected] PID 9888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:33:32.591Z [Protected] PID 12108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:38:32.659Z [Protected] PID 10324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:43:32.617Z [Protected] PID 8952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:46:47.992Z [Protected] PID 11416, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T13:46:50.054Z [Protected] PID 11888, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T13:46:50.244Z [Protected] PID 9116, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T13:46:50.346Z [Protected] PID 9480, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T13:46:50.992Z [Protected] PID 10224, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T13:46:51.187Z [Protected] PID 11272, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T13:48:32.666Z [Protected] PID 11864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:52:19.532Z [Protected] PID 11788, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T13:52:19.584Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208185219
2016-12-08T13:53:32.610Z [Protected] PID 4460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:57:00.173Z [Protected] PID 3384, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T13:57:00.555Z [Protected] PID 8928, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T13:57:00.580Z [Protected] PID 12068, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T13:57:00.719Z [Protected] PID 11892, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T13:58:32.647Z [Protected] PID 9180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T13:59:00.240Z [Protected] PID 10016, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T14:02:16.204Z [Protected] PID 6372, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T14:02:16.226Z [Protected] PID 11456, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T14:03:32.872Z [Protected] PID 8964, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:08:07.135Z [Protected] PID 11068, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T14:08:32.639Z [Protected] PID 12068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:13:32.654Z [Protected] PID 11456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:14:49.897Z [Protected] PID 12060, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T14:17:00.246Z [Protected] PID 8616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T14:17:00.874Z [Protected] PID 1820, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T14:17:01.448Z [Protected] PID 11872, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T14:18:32.604Z [Protected] PID 6572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:22:19.764Z [Protected] PID 8772, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T14:22:19.791Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208192219
2016-12-08T14:23:22.598Z [Protected] PID 4808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T14:23:22.610Z [Protected] PID 5920, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T14:23:22.727Z [Protected] PID 9304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T14:23:22.739Z [Protected] PID 5592, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T14:23:32.701Z [Protected] PID 6320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:27:07.070Z [Protected] PID 6112, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T14:28:32.623Z [Protected] PID 10780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:33:32.476Z [Protected] PID 8952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:38:32.547Z [Protected] PID 9944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:43:32.546Z [Protected] PID 11360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:48:32.591Z [Protected] PID 8816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:52:19.825Z [Protected] PID 9448, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T14:52:19.852Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208195219
2016-12-08T14:53:32.578Z [Protected] PID 10460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:57:00.079Z [Protected] PID 884, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T14:57:00.433Z [Protected] PID 6068, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T14:57:00.457Z [Protected] PID 10792, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T14:57:00.599Z [Protected] PID 11304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T14:58:32.570Z [Protected] PID 11256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T14:59:00.176Z [Protected] PID 11828, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T15:03:32.587Z [Protected] PID 8560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:05:43.398Z [Protected] PID 11808, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T15:08:32.562Z [Protected] PID 8224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:12:17.066Z [Protected] PID 12048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:12:17.825Z [Protected] PID 8624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:13:12.369Z [Protected] PID 11432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:13:32.415Z [Protected] PID 9288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:14:12.143Z [Protected] PID 11880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:14:14.188Z [Protected] PID 8468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:17:00.119Z [Protected] PID 7268, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T15:17:00.593Z [Protected] PID 9780, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T15:17:01.186Z [Protected] PID 4880, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T15:18:32.657Z [Protected] PID 2784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:22:19.995Z [Protected] PID 8792, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T15:22:20.044Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208202219
2016-12-08T15:23:22.836Z [Protected] PID 12284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T15:23:22.849Z [Protected] PID 10704, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T15:23:23.028Z [Protected] PID 7916, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T15:23:23.056Z [Protected] PID 660, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T15:23:32.549Z [Protected] PID 12220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:25:51.710Z [Protected] PID 2156, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-08T15:25:59.504Z [Protected] PID 9224, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T15:25:59.594Z [Protected] PID 11648, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-08T15:26:14.113Z [Protected] PID 11568, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T15:26:27.007Z [Protected] PID 9316, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T15:27:05.548Z [Protected] PID 9364, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T15:27:29.629Z [Protected] PID 6680, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-08T15:27:39.908Z [Protected] PID 11776, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T15:27:40.127Z [Protected] PID 6648, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T15:28:00.572Z [Protected] PID 1080, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T15:28:01.905Z [Protected] PID 11240, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T15:28:32.569Z [Protected] PID 11424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:33:32.656Z [Protected] PID 10304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:35:53.514Z [Protected] PID 8468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:35:58.619Z [Protected] PID 11148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:36:36.180Z [Protected] PID 9176, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T15:36:36.406Z [Protected] PID 6672, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-08T15:37:25.579Z [Protected] PID 8744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:37:26.021Z [Protected] PID 10704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:38:32.564Z [Protected] PID 11304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:38:43.783Z [Protected] PID 11780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:38:46.285Z [Protected] PID 11760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:41:54.649Z [Protected] PID 9460, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T15:41:57.016Z [Protected] PID 11684, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T15:41:57.253Z [Protected] PID 12228, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T15:41:57.851Z [Protected] PID 5788, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T15:42:00.130Z [Protected] PID 11468, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T15:42:02.482Z [Protected] PID 11404, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T15:43:32.646Z [Protected] PID 11576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:48:32.638Z [Protected] PID 11240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:49:43.700Z [Protected] PID 4328, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-08T15:49:45.202Z [Protected] PID 11900, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-08T15:49:52.582Z [Protected] PID 12240, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T15:49:52.609Z [Protected] PID 8964, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-08T15:49:53.057Z [Protected] PID 1468, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-08T15:52:20.213Z [Protected] PID 11632, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T15:52:20.240Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208205220
2016-12-08T15:53:32.626Z [Protected] PID 10356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:54:52.707Z [Protected] PID 12028, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-08T15:54:53.760Z [Protected] PID 5700, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-08T15:54:54.467Z [Protected] PID 9016, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-08T15:54:54.804Z [Protected] PID 9064, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T15:56:37.643Z [Protected] PID 11280, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-08T15:56:38.914Z [Protected] PID 10988, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-08T15:56:45.512Z [Protected] PID 8908, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T15:56:45.536Z [Protected] PID 11592, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-08T15:56:45.663Z [Protected] PID 9108, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-08T15:57:00.167Z [Protected] PID 8256, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T15:57:00.423Z [Protected] PID 7792, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T15:57:00.437Z [Protected] PID 3580, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T15:57:00.511Z [Protected] PID 1300, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T15:58:32.632Z [Protected] PID 10324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T15:59:00.175Z [Protected] PID 12152, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T15:59:58.653Z [Protected] PID 5444, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T16:00:01.637Z [Protected] PID 11428, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-08T16:00:02.059Z [Protected] PID 11920, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T16:00:02.075Z [Protected] PID 9280, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-08T16:02:22.818Z [Protected] PID 11100, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T16:02:22.842Z [Protected] PID 6608, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T16:03:33.054Z [Protected] PID 11968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:08:32.630Z [Protected] PID 8344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:08:53.815Z [Protected] PID 12072, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T16:13:32.632Z [Protected] PID 10844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:14:14.997Z [Protected] PID 5972, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T16:17:00.260Z [Protected] PID 9860, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T16:17:00.977Z [Protected] PID 9264, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T16:17:01.541Z [Protected] PID 6556, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T16:18:32.600Z [Protected] PID 12196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:22:06.251Z [Protected] PID 9304, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T16:22:20.406Z [Protected] PID 7232, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T16:22:20.433Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208212220
2016-12-08T16:22:43.361Z [Protected] PID 4972, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-08T16:22:49.487Z [Protected] PID 12196, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-08T16:23:23.278Z [Protected] PID 13288, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T16:23:23.289Z [Protected] PID 12352, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T16:23:23.480Z [Protected] PID 12568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T16:23:23.500Z [Protected] PID 12556, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T16:23:32.603Z [Protected] PID 12592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:24:35.222Z [Protected] PID 13140, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T16:24:35.495Z [Protected] PID 13200, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-08T16:27:07.075Z [Protected] PID 12564, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T16:28:32.653Z [Protected] PID 12548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:29:26.429Z [Protected] PID 12460, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-08T16:29:26.552Z [Protected] PID 12832, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-08T16:29:26.936Z [Protected] PID 12476, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-08T16:29:27.344Z [Protected] PID 10788, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T16:33:32.478Z [Protected] PID 12552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:38:32.607Z [Protected] PID 12928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:40:02.388Z [Protected] PID 12028, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:40:10.080Z [Protected] PID 12360, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:40:16.279Z [Protected] PID 6520, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:40:36.544Z [Protected] PID 12564, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:40:37.699Z [Protected] PID 12928, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-08T16:40:54.000Z [Protected] PID 12848, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T16:40:54.099Z [Protected] PID 12712, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T16:40:55.065Z [Protected] PID 5496, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:41:46.191Z [Protected] PID 9284, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:41:59.894Z [Protected] PID 12720, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:42:12.590Z [Protected] PID 12360, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:42:20.291Z [Protected] PID 12552, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:42:25.239Z [Protected] PID 12720, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:43:07.083Z [Protected] PID 13108, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:43:07.914Z [Protected] PID 13300, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T16:43:14.006Z [Protected] PID 13196, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:43:16.183Z [Protected] PID 5592, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:43:32.641Z [Protected] PID 7596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:43:42.813Z [Protected] PID 4328, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:43:52.860Z [Protected] PID 12820, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:48:32.624Z [Protected] PID 8876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:50:12.259Z [Protected] PID 12788, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T16:52:20.556Z [Protected] PID 8308, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T16:52:20.607Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208215220
2016-12-08T16:52:29.007Z [Protected] PID 13192, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T16:52:29.043Z [Protected] PID 9684, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T16:53:32.888Z [Protected] PID 9228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:57:00.441Z [Protected] PID 8408, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T16:57:00.777Z [Protected] PID 9460, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T16:57:00.808Z [Protected] PID 12592, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T16:57:00.943Z [Protected] PID 12468, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T16:58:32.763Z [Protected] PID 12944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T16:59:00.319Z [Protected] PID 6204, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T17:03:11.791Z [Protected] PID 3584, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T17:03:32.674Z [Protected] PID 9464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:08:32.850Z [Protected] PID 10040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:10:28.767Z [Protected] PID 13112, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T17:10:50.462Z [Protected] PID 5920, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T17:10:50.977Z [Protected] PID 8256, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T17:10:51.183Z [Protected] PID 10324, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T17:12:33.600Z [Protected] PID 9228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T17:12:33.614Z [Protected] PID 13220, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T17:13:32.902Z [Protected] PID 9056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:17:00.440Z [Protected] PID 10400, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T17:17:01.536Z [Protected] PID 12932, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T17:18:32.630Z [Protected] PID 12832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:22:20.907Z [Protected] PID 12448, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T17:22:20.940Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208222220
2016-12-08T17:23:23.837Z [Protected] PID 12800, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T17:23:23.853Z [Protected] PID 13300, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T17:23:24.034Z [Protected] PID 3868, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T17:23:24.059Z [Protected] PID 9844, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T17:23:32.648Z [Protected] PID 12928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:26:00.660Z [Protected] PID 12600, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T17:26:02.743Z [Protected] PID 11260, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T17:26:02.751Z [Protected] PID 11508, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T17:26:03.048Z [Protected] PID 12292, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T17:26:03.378Z [Protected] PID 12884, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T17:26:04.656Z [Protected] PID 12308, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T17:27:07.429Z [Protected] PID 9660, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T17:28:00.165Z [Protected] PID 13988, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T17:28:00.784Z [Protected] PID 12336, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T17:28:32.550Z [Protected] PID 12804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:29:34.138Z [Protected] PID 14088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:29:35.328Z [Protected] PID 12600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:29:36.757Z [Protected] PID 13252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:29:39.291Z [Protected] PID 13492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:31:45.744Z [Protected] PID 11160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:31:51.113Z [Protected] PID 13424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:32:10.337Z [Protected] PID 13904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:32:11.910Z [Protected] PID 14124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:32:12.268Z [Protected] PID 13908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:33:32.439Z [Protected] PID 8892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:38:32.665Z [Protected] PID 14160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:41:03.897Z [Protected] PID 11236, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-08T17:41:57.140Z [Protected] PID 12428, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T17:41:57.296Z [Protected] PID 11668, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T17:43:32.651Z [Protected] PID 13944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:44:42.134Z [Protected] PID 12308, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T17:44:42.290Z [Protected] PID 13996, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T17:48:32.666Z [Protected] PID 9660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:52:21.083Z [Protected] PID 11676, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T17:52:21.126Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208225220
2016-12-08T17:52:57.091Z [Protected] PID 6156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:53:32.388Z [Protected] PID 13412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:57:00.159Z [Protected] PID 11760, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T17:57:00.535Z [Protected] PID 11636, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T17:57:00.560Z [Protected] PID 12836, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T17:57:00.709Z [Protected] PID 12928, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T17:58:32.667Z [Protected] PID 12712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T17:59:00.285Z [Protected] PID 14296, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T18:03:32.485Z [Protected] PID 11160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:04:56.820Z [Protected] PID 10356, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T18:05:02.483Z [Protected] PID 13704, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-08T18:05:04.251Z [Protected] PID 11248, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T18:05:20.388Z [Protected] PID 1740, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-08T18:07:23.942Z [Protected] PID 12916, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T18:08:32.671Z [Protected] PID 14128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:13:32.666Z [Protected] PID 11336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:17:00.173Z [Protected] PID 13300, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T18:17:00.802Z [Protected] PID 9644, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T18:18:32.638Z [Protected] PID 6372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:22:21.266Z [Protected] PID 13512, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T18:22:21.319Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208232221
2016-12-08T18:22:27.279Z [Protected] PID 11960, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T18:23:24.230Z [Protected] PID 448, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T18:23:24.240Z [Protected] PID 13396, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T18:23:24.380Z [Protected] PID 13772, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T18:23:24.392Z [Protected] PID 6520, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T18:23:32.505Z [Protected] PID 10400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:27:06.304Z [Protected] PID 11736, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T18:28:32.511Z [Protected] PID 8864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:33:32.563Z [Protected] PID 11676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:36:16.102Z [Protected] PID 9344, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-08T18:38:32.644Z [Protected] PID 13324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:43:32.616Z [Protected] PID 12788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:44:43.131Z [Protected] PID 13340, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T18:44:43.296Z [Protected] PID 14264, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T18:48:32.515Z [Protected] PID 11704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:52:21.441Z [Protected] PID 12952, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T18:52:21.486Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161208235221
2016-12-08T18:53:32.593Z [Protected] PID 9968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:57:00.183Z [Protected] PID 12564, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T18:57:00.523Z [Protected] PID 11592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T18:57:00.543Z [Protected] PID 11624, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T18:57:00.649Z [Protected] PID 12552, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T18:58:32.652Z [Protected] PID 14000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T18:59:00.212Z [Protected] PID 11212, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T19:03:06.196Z [Protected] PID 13968, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T19:03:08.280Z [Protected] PID 12908, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T19:03:08.336Z [Protected] PID 12924, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T19:03:08.436Z [Protected] PID 3868, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T19:03:08.786Z [Protected] PID 12640, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T19:03:08.995Z [Protected] PID 9696, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T19:03:32.676Z [Protected] PID 11780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:06:03.123Z [Protected] PID 13856, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T19:06:36.307Z [Protected] PID 6700, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T19:06:36.522Z [Protected] PID 11976, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-08T19:08:32.459Z [Protected] PID 14244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:14:32.466Z [Protected] PID 13164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:17:00.104Z [Protected] PID 14192, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T19:17:00.645Z [Protected] PID 9552, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T19:17:01.283Z [Protected] PID 11844, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T19:18:32.630Z [Protected] PID 13684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:22:21.561Z [Protected] PID 13680, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T19:22:21.611Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209002221
2016-12-08T19:23:24.523Z [Protected] PID 10260, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T19:23:24.533Z [Protected] PID 11464, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T19:23:24.644Z [Protected] PID 13660, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T19:23:24.656Z [Protected] PID 13760, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T19:23:32.666Z [Protected] PID 3956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:27:06.464Z [Protected] PID 1532, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T19:27:27.117Z [Protected] PID 13772, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-08T19:27:37.273Z [Protected] PID 14204, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T19:27:37.483Z [Protected] PID 14248, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T19:28:00.186Z [Protected] PID 9696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T19:28:01.004Z [Protected] PID 12540, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T19:28:32.513Z [Protected] PID 13584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:29:12.231Z [Protected] PID 13740, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T19:33:32.655Z [Protected] PID 13408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:38:32.650Z [Protected] PID 14332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:43:32.608Z [Protected] PID 14140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:48:32.540Z [Protected] PID 13764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:51:02.628Z [Protected] PID 13004, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T19:52:21.794Z [Protected] PID 9644, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T19:52:21.814Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209005221
2016-12-08T19:53:32.600Z [Protected] PID 13684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:57:00.141Z [Protected] PID 12848, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T19:57:00.492Z [Protected] PID 14304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T19:57:00.520Z [Protected] PID 11288, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T19:57:00.616Z [Protected] PID 8964, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T19:58:32.642Z [Protected] PID 14092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T19:59:00.192Z [Protected] PID 12624, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T19:59:00.192Z [Protected] PID 9016, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T19:59:00.368Z [Protected] PID 12316, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-08T19:59:00.397Z [Protected] PID 12604, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T19:59:00.438Z [Protected] PID 10108, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-08T20:03:32.545Z [Protected] PID 11436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:08:32.656Z [Protected] PID 9652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:13:31.400Z [Protected] PID 11032, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T20:13:32.574Z [Protected] PID 13724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:17:00.194Z [Protected] PID 13416, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T20:17:00.592Z [Protected] PID 3696, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T20:18:32.577Z [Protected] PID 11792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:22:21.943Z [Protected] PID 13580, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T20:22:21.982Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209012221
2016-12-08T20:22:43.117Z [Protected] PID 13700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T20:22:43.137Z [Protected] PID 13852, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T20:23:24.916Z [Protected] PID 264, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T20:23:24.928Z [Protected] PID 13464, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T20:23:25.092Z [Protected] PID 14000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T20:23:25.124Z [Protected] PID 12920, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T20:23:32.761Z [Protected] PID 9028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:27:07.281Z [Protected] PID 13932, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T20:28:32.521Z [Protected] PID 13692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:10.077Z [Protected] PID 13428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:10.331Z [Protected] PID 8768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:10.484Z [Protected] PID 11416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:10.660Z [Protected] PID 13472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:10.841Z [Protected] PID 12548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:10.996Z [Protected] PID 11960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:11.164Z [Protected] PID 14204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:11.327Z [Protected] PID 8560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:11.509Z [Protected] PID 7804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:11.677Z [Protected] PID 9344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:31:11.837Z [Protected] PID 12560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:33:32.493Z [Protected] PID 13376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:38:32.582Z [Protected] PID 14308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:40:11.899Z [Protected] PID 13352, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T20:40:13.778Z [Protected] PID 9460, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T20:40:13.845Z [Protected] PID 8028, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T20:40:13.917Z [Protected] PID 3532, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T20:40:14.670Z [Protected] PID 14304, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T20:40:14.706Z [Protected] PID 13996, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T20:43:32.575Z [Protected] PID 11568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:48:32.538Z [Protected] PID 10140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:52:22.181Z [Protected] PID 13120, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T20:52:22.201Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209015222
2016-12-08T20:52:44.385Z [Protected] PID 13020, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T20:52:44.405Z [Protected] PID 13840, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T20:53:32.737Z [Protected] PID 9644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:54:36.431Z [Protected] PID 8484, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T20:54:36.648Z [Protected] PID 12848, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-08T20:57:00.159Z [Protected] PID 13188, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T20:57:00.558Z [Protected] PID 13688, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T20:57:00.583Z [Protected] PID 11372, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T20:57:00.735Z [Protected] PID 9180, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T20:58:32.696Z [Protected] PID 5416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T20:59:00.210Z [Protected] PID 9024, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T20:59:54.417Z [Protected] PID 5920, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T21:03:32.679Z [Protected] PID 14216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:08:32.545Z [Protected] PID 13552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:10:13.757Z [Protected] PID 10248, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T21:10:14.057Z [Protected] PID 13516, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-08T21:10:14.335Z [Protected] PID 12460, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T21:10:35.862Z [Protected] PID 7752, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T21:12:53.767Z [Protected] PID 13920, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T21:12:53.780Z [Protected] PID 13344, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T21:13:32.789Z [Protected] PID 12400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:17:00.288Z [Protected] PID 12532, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T21:17:00.925Z [Protected] PID 13304, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T21:17:01.455Z [Protected] PID 14216, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T21:18:32.572Z [Protected] PID 12592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:22:22.351Z [Protected] PID 13332, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T21:22:22.395Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209022222
2016-12-08T21:23:00.119Z [Protected] PID 12932, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T21:23:00.139Z [Protected] PID 6124, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T21:23:25.346Z [Protected] PID 10780, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T21:23:25.358Z [Protected] PID 14060, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T21:23:25.503Z [Protected] PID 5752, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T21:23:25.523Z [Protected] PID 13008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T21:23:32.768Z [Protected] PID 12412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:27:07.150Z [Protected] PID 880, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T21:28:00.295Z [Protected] PID 13784, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T21:28:00.865Z [Protected] PID 10248, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T21:28:32.530Z [Protected] PID 13684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:33:32.560Z [Protected] PID 12432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:36:05.622Z [Protected] PID 14292, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T21:38:32.562Z [Protected] PID 10224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:43:15.999Z [Protected] PID 13712, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T21:43:32.675Z [Protected] PID 9708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:44:48.052Z [Protected] PID 9552, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T21:44:48.231Z [Protected] PID 13456, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T21:48:32.668Z [Protected] PID 5020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:52:22.492Z [Protected] PID 13508, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T21:52:22.519Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209025222
2016-12-08T21:53:32.590Z [Protected] PID 14252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:57:00.150Z [Protected] PID 7584, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T21:57:00.430Z [Protected] PID 13572, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T21:57:00.447Z [Protected] PID 10596, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T21:57:00.541Z [Protected] PID 9760, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T21:58:32.451Z [Protected] PID 12336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T21:59:00.228Z [Protected] PID 10224, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T22:00:00.565Z [Protected] PID 9284, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-08T22:00:00.717Z [Protected] PID 10916, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-08T22:00:01.136Z [Protected] PID 13688, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-08T22:03:32.598Z [Protected] PID 13384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:08:32.931Z [Protected] PID 13408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:13:33.101Z [Protected] PID 12520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:13:55.232Z [Protected] PID 14268, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T22:17:00.341Z [Protected] PID 3988, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T22:17:01.925Z [Protected] PID 6920, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T22:17:02.890Z [Protected] PID 5896, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T22:18:32.659Z [Protected] PID 7136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:21:17.589Z [Protected] PID 9180, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T22:21:23.229Z [Protected] PID 10788, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T22:21:23.274Z [Protected] PID 13180, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T22:21:23.392Z [Protected] PID 13728, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T22:21:23.453Z [Protected] PID 13760, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T22:21:24.990Z [Protected] PID 12292, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T22:22:22.766Z [Protected] PID 11396, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T22:22:22.807Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209032222
2016-12-08T22:23:25.921Z [Protected] PID 13348, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T22:23:25.961Z [Protected] PID 9752, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T22:23:26.331Z [Protected] PID 12980, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T22:23:26.351Z [Protected] PID 12572, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T22:23:32.656Z [Protected] PID 13544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:27:06.853Z [Protected] PID 8308, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T22:28:32.647Z [Protected] PID 4772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:33:32.592Z [Protected] PID 14076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:36:31.976Z [Protected] PID 12492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:36:37.213Z [Protected] PID 9316, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T22:36:37.512Z [Protected] PID 13952, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-08T22:38:32.572Z [Protected] PID 14220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:43:04.358Z [Protected] PID 10568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T22:43:04.369Z [Protected] PID 7608, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T22:43:33.592Z [Protected] PID 12752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:48:32.554Z [Protected] PID 6204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:52:23.039Z [Protected] PID 12120, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T22:52:23.055Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209035222
2016-12-08T22:53:06.678Z [Protected] PID 6676, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T22:53:06.688Z [Protected] PID 8648, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T22:53:32.820Z [Protected] PID 13864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:57:00.311Z [Protected] PID 14044, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T22:57:00.817Z [Protected] PID 12804, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T22:57:00.852Z [Protected] PID 12476, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T22:57:00.917Z [Protected] PID 14064, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T22:58:32.682Z [Protected] PID 12372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T22:59:00.260Z [Protected] PID 8816, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-08T23:03:32.559Z [Protected] PID 9316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:07:08.699Z [Protected] PID 13472, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T23:08:05.668Z [Protected] PID 12160, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-08T23:08:32.494Z [Protected] PID 13556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:13:32.709Z [Protected] PID 12588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:17:00.167Z [Protected] PID 13580, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T23:17:01.216Z [Protected] PID 12120, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-08T23:17:01.916Z [Protected] PID 3532, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T23:18:32.502Z [Protected] PID 11752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:22:23.233Z [Protected] PID 9344, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T23:22:23.253Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209042223
2016-12-08T23:23:26.552Z [Protected] PID 2228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T23:23:26.582Z [Protected] PID 12364, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-08T23:23:26.732Z [Protected] PID 14296, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T23:23:26.744Z [Protected] PID 8484, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-08T23:23:32.494Z [Protected] PID 12552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:27:07.124Z [Protected] PID 9684, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-08T23:27:40.330Z [Protected] PID 12208, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-08T23:28:00.243Z [Protected] PID 13592, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T23:28:01.236Z [Protected] PID 13544, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-08T23:28:07.823Z [Protected] PID 13052, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T23:28:08.219Z [Protected] PID 13776, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-08T23:28:32.838Z [Protected] PID 14208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:33:32.656Z [Protected] PID 6676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:38:22.994Z [Protected] PID 13956, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T23:38:32.652Z [Protected] PID 14268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:43:32.593Z [Protected] PID 13336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:49:32.596Z [Protected] PID 12432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:52:23.332Z [Protected] PID 11760, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-08T23:52:23.370Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209045223
2016-12-08T23:52:24.202Z [Protected] PID 7804, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-08T23:52:26.640Z [Protected] PID 14188, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T23:52:26.724Z [Protected] PID 13880, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-08T23:52:26.798Z [Protected] PID 12776, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-08T23:52:27.648Z [Protected] PID 12952, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-08T23:52:28.630Z [Protected] PID 12080, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-08T23:53:10.501Z [Protected] PID 10400, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T23:53:10.505Z [Protected] PID 13052, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-08T23:53:33.049Z [Protected] PID 11736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:57:00.212Z [Protected] PID 10004, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-08T23:57:00.627Z [Protected] PID 9644, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-08T23:57:00.641Z [Protected] PID 9552, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T23:57:00.799Z [Protected] PID 14304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-08T23:58:32.583Z [Protected] PID 7136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-08T23:59:00.286Z [Protected] PID 12208, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T00:00:01.498Z [Protected] PID 12340, Features 000000300000010A, C:\Windows\System32\rundll32.exe
2016-12-09T00:00:02.905Z [Protected] PID 13700, Features 000000300000010A, C:\Windows\System32\VSSVC.exe
2016-12-09T00:00:03.514Z [Protected] PID 14004, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-09T00:03:32.681Z [Protected] PID 12588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:08:32.618Z [Protected] PID 11248, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:13:03.332Z [Protected] PID 13464, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T00:13:32.574Z [Protected] PID 11760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:17:00.164Z [Protected] PID 10340, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T00:17:01.298Z [Protected] PID 12548, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T00:17:02.162Z [Protected] PID 9660, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T00:18:32.475Z [Protected] PID 13696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:22:07.573Z [Protected] PID 3868, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T00:22:23.519Z [Protected] PID 13600, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T00:22:23.549Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209052223
2016-12-09T00:22:28.872Z [Protected] PID 12412, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T00:23:26.888Z [Protected] PID 14332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T00:23:26.898Z [Protected] PID 6288, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T00:23:27.175Z [Protected] PID 14000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T00:23:27.186Z [Protected] PID 13916, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T00:23:32.645Z [Protected] PID 12776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:24:36.112Z [Protected] PID 13592, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T00:24:36.374Z [Protected] PID 12940, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-09T00:25:42.951Z [Protected] PID 13596, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T00:25:43.099Z [Protected] PID 8892, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T00:27:07.125Z [Protected] PID 13396, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T00:27:08.140Z [Protected] PID 13160, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T00:27:08.141Z [Protected] PID 1252, Features 000000300000010A, C:\Windows\System32\compattelrunner.exe
2016-12-09T00:27:08.204Z [Protected] PID 5416, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-09T00:28:32.639Z [Protected] PID 13692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:33:32.594Z [Protected] PID 8884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:38:32.626Z [Protected] PID 13940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:43:32.650Z [Protected] PID 14044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:48:32.542Z [Protected] PID 6920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:52:23.676Z [Protected] PID 12464, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T00:52:23.712Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209055223
2016-12-09T00:53:32.626Z [Protected] PID 9104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:57:00.150Z [Protected] PID 9104, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T00:57:00.537Z [Protected] PID 12656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T00:57:00.557Z [Protected] PID 12972, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T00:57:00.699Z [Protected] PID 11632, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T00:57:11.601Z [Protected] PID 13592, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T00:58:32.666Z [Protected] PID 11352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T00:59:00.254Z [Protected] PID 13020, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T01:01:51.641Z [Protected] PID 11780, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T01:03:32.670Z [Protected] PID 14004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:08:32.663Z [Protected] PID 14192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:13:32.666Z [Protected] PID 10356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:17:00.171Z [Protected] PID 11792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T01:17:00.713Z [Protected] PID 13412, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T01:17:01.317Z [Protected] PID 13916, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T01:18:32.649Z [Protected] PID 4260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:22:23.850Z [Protected] PID 12980, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T01:22:23.892Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209062223
2016-12-09T01:23:27.479Z [Protected] PID 13156, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T01:23:27.489Z [Protected] PID 11436, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T01:23:27.563Z [Protected] PID 12592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T01:23:27.575Z [Protected] PID 8872, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T01:23:32.653Z [Protected] PID 14032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:27:05.611Z [Protected] PID 14128, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T01:28:00.168Z [Protected] PID 10004, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T01:28:00.616Z [Protected] PID 14084, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T01:28:32.667Z [Protected] PID 13968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:30:00.287Z [Protected] PID 9316, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T01:33:32.620Z [Protected] PID 14152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:38:32.579Z [Protected] PID 13028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:43:14.851Z [Protected] PID 13040, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T01:43:18.741Z [Protected] PID 14276, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T01:43:18.752Z [Protected] PID 11104, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T01:43:32.828Z [Protected] PID 6352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:47:30.257Z [Protected] PID 12832, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T01:47:32.188Z [Protected] PID 11372, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T01:47:32.188Z [Protected] PID 13384, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T01:47:32.281Z [Protected] PID 4972, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T01:47:32.687Z [Protected] PID 14284, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T01:47:32.838Z [Protected] PID 11656, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T01:48:32.655Z [Protected] PID 13228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:52:24.080Z [Protected] PID 14192, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T01:52:24.100Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209065223
2016-12-09T01:53:32.623Z [Protected] PID 13804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:57:00.215Z [Protected] PID 14068, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T01:57:00.583Z [Protected] PID 14124, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T01:57:00.603Z [Protected] PID 12756, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T01:57:00.697Z [Protected] PID 9024, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T01:58:32.642Z [Protected] PID 13844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T01:59:00.254Z [Protected] PID 12996, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T01:59:27.514Z [Protected] PID 14032, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T02:03:32.692Z [Protected] PID 13744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:06:38.132Z [Protected] PID 13812, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T02:06:38.336Z [Protected] PID 12428, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T02:08:32.656Z [Protected] PID 10916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:13:28.828Z [Protected] PID 10108, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T02:13:32.623Z [Protected] PID 12920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:17:00.162Z [Protected] PID 13220, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T02:17:00.809Z [Protected] PID 6676, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T02:17:01.349Z [Protected] PID 9016, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T02:18:32.626Z [Protected] PID 13156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:22:24.256Z [Protected] PID 11664, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T02:22:24.299Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209072224
2016-12-09T02:23:19.438Z [Protected] PID 12800, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T02:23:19.455Z [Protected] PID 14296, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T02:23:27.815Z [Protected] PID 8580, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T02:23:27.816Z [Protected] PID 13128, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T02:23:27.904Z [Protected] PID 10004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T02:23:27.916Z [Protected] PID 4500, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T02:23:32.738Z [Protected] PID 13940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:27:07.025Z [Protected] PID 11372, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T02:28:32.442Z [Protected] PID 13524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:29:14.404Z [Protected] PID 13472, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T02:30:00.712Z [Protected] PID 5972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T02:30:00.742Z [Protected] PID 10712, Features 000000300000010A, C:\Windows\System32\aitagent.exe
2016-12-09T02:33:32.723Z [Protected] PID 12360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:38:32.619Z [Protected] PID 13120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:43:32.650Z [Protected] PID 13180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:48:32.643Z [Protected] PID 13628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:52:24.450Z [Protected] PID 13508, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T02:52:24.476Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209075224
2016-12-09T02:53:32.529Z [Protected] PID 12508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:57:00.271Z [Protected] PID 264, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T02:57:00.644Z [Protected] PID 12564, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T02:57:00.669Z [Protected] PID 7004, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T02:57:00.820Z [Protected] PID 5476, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T02:58:32.670Z [Protected] PID 8884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T02:59:00.220Z [Protected] PID 2660, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T03:03:32.584Z [Protected] PID 13268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:08:32.658Z [Protected] PID 11104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:10:52.029Z [Protected] PID 11408, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T03:13:32.580Z [Protected] PID 13316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:17:00.180Z [Protected] PID 14048, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T03:17:00.831Z [Protected] PID 12260, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T03:17:01.337Z [Protected] PID 11360, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T03:18:32.654Z [Protected] PID 11260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:22:24.621Z [Protected] PID 13220, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T03:22:24.652Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209082224
2016-12-09T03:23:28.097Z [Protected] PID 5324, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T03:23:28.104Z [Protected] PID 14220, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T03:23:28.217Z [Protected] PID 6288, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T03:23:28.227Z [Protected] PID 9344, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T03:23:32.607Z [Protected] PID 11752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:27:05.609Z [Protected] PID 9696, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T03:28:00.166Z [Protected] PID 14112, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T03:28:00.680Z [Protected] PID 8324, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T03:28:32.600Z [Protected] PID 7004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:33:32.517Z [Protected] PID 13588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:38:32.608Z [Protected] PID 12988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:43:32.474Z [Protected] PID 13924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:45:35.652Z [Protected] PID 13652, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T03:45:37.534Z [Protected] PID 5020, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T03:45:37.544Z [Protected] PID 12984, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T03:45:37.649Z [Protected] PID 13944, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T03:45:38.190Z [Protected] PID 14200, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T03:45:38.344Z [Protected] PID 14184, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T03:46:12.632Z [Protected] PID 12704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:46:12.694Z [Protected] PID 7068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:47:27.246Z [Protected] PID 13864, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T03:48:32.554Z [Protected] PID 13044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:52:24.722Z [Protected] PID 13668, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T03:52:24.764Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209085224
2016-12-09T03:53:32.587Z [Protected] PID 11148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:57:00.177Z [Protected] PID 13596, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T03:57:00.537Z [Protected] PID 14256, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T03:57:00.544Z [Protected] PID 12980, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T03:57:00.665Z [Protected] PID 13980, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T03:58:32.662Z [Protected] PID 9652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T03:59:00.256Z [Protected] PID 12616, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T04:03:32.645Z [Protected] PID 12352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:05:42.347Z [Protected] PID 1104, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T04:08:32.658Z [Protected] PID 9240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:13:32.465Z [Protected] PID 12696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:17:00.103Z [Protected] PID 12696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T04:17:00.425Z [Protected] PID 13720, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T04:17:00.952Z [Protected] PID 12588, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T04:18:32.575Z [Protected] PID 12676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:22:24.892Z [Protected] PID 1616, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T04:22:24.956Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209092224
2016-12-09T04:23:28.382Z [Protected] PID 12572, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T04:23:28.395Z [Protected] PID 14108, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T04:23:28.482Z [Protected] PID 13688, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T04:23:28.494Z [Protected] PID 12724, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T04:23:32.660Z [Protected] PID 14332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:24:17.259Z [Protected] PID 14112, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T04:27:05.567Z [Protected] PID 9020, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T04:28:32.653Z [Protected] PID 9168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:33:32.646Z [Protected] PID 14136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:35:13.790Z [Protected] PID 9796, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T04:35:13.810Z [Protected] PID 14132, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-09T04:35:13.975Z [Protected] PID 12576, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T04:35:13.997Z [Protected] PID 9844, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-09T04:35:14.090Z [Protected] PID 6668, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-09T04:35:17.810Z [Protected] PID 12960, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-09T04:35:18.761Z [Protected] PID 14176, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-09T04:35:43.897Z [Protected] PID 13388, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T04:38:32.553Z [Protected] PID 12772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:39:50.122Z [Protected] PID 12316, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T04:40:12.329Z [Protected] PID 14276, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-09T04:40:13.031Z [Protected] PID 12992, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-09T04:43:32.686Z [Protected] PID 13944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:48:32.525Z [Protected] PID 13408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:52:25.085Z [Protected] PID 2456, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T04:52:25.120Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209095224
2016-12-09T04:53:32.663Z [Protected] PID 12832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:57:00.189Z [Protected] PID 13468, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T04:57:00.529Z [Protected] PID 13296, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T04:57:00.549Z [Protected] PID 14172, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T04:57:00.606Z [Protected] PID 13332, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T04:58:32.646Z [Protected] PID 8848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T04:59:00.268Z [Protected] PID 12320, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T05:00:58.844Z [Protected] PID 11636, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T05:03:32.607Z [Protected] PID 14028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:08:32.641Z [Protected] PID 9696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:13:30.775Z [Protected] PID 5356, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T05:13:30.814Z [Protected] PID 8268, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T05:13:32.411Z [Protected] PID 11148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:17:00.350Z [Protected] PID 13340, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T05:17:02.072Z [Protected] PID 9780, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T05:17:02.994Z [Protected] PID 14268, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T05:18:32.993Z [Protected] PID 13944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:21:53.097Z [Protected] PID 11568, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T05:21:53.324Z [Protected] PID 13628, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T05:22:25.370Z [Protected] PID 11676, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T05:22:25.380Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209102225
2016-12-09T05:23:28.831Z [Protected] PID 7916, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T05:23:28.861Z [Protected] PID 9684, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T05:23:29.094Z [Protected] PID 13740, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T05:23:29.107Z [Protected] PID 13620, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T05:23:30.388Z [Protected] PID 6888, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T05:23:30.391Z [Protected] PID 12480, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T05:23:32.373Z [Protected] PID 12808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:27:07.760Z [Protected] PID 12432, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T05:27:46.626Z [Protected] PID 13460, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-09T05:28:00.268Z [Protected] PID 12264, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T05:28:01.200Z [Protected] PID 10740, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T05:28:13.738Z [Protected] PID 12576, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-09T05:28:14.122Z [Protected] PID 11624, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-09T05:28:32.953Z [Protected] PID 13464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:33:31.638Z [Protected] PID 12776, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T05:33:31.658Z [Protected] PID 9576, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T05:33:32.364Z [Protected] PID 12468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:34:11.698Z [Protected] PID 13852, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T05:36:39.124Z [Protected] PID 6068, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T05:36:39.507Z [Protected] PID 9284, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T05:38:32.900Z [Protected] PID 13600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:38:42.157Z [Protected] PID 14228, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T05:38:42.493Z [Protected] PID 12352, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-09T05:38:43.193Z [Protected] PID 10356, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-09T05:42:41.228Z [Protected] PID 14292, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T05:42:43.877Z [Protected] PID 12992, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T05:42:44.136Z [Protected] PID 12060, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T05:42:44.227Z [Protected] PID 5920, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T05:42:44.846Z [Protected] PID 8892, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T05:42:45.465Z [Protected] PID 5700, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T05:43:32.628Z [Protected] PID 8240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:48:32.620Z [Protected] PID 13556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:52:25.580Z [Protected] PID 5444, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T05:52:25.600Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209105225
2016-12-09T05:53:32.621Z [Protected] PID 9028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:57:00.149Z [Protected] PID 12740, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T05:57:00.528Z [Protected] PID 6700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T05:57:00.562Z [Protected] PID 2904, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T05:57:00.670Z [Protected] PID 13596, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T05:58:32.645Z [Protected] PID 10460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T05:59:00.330Z [Protected] PID 13156, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T06:03:32.659Z [Protected] PID 12628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:04:01.592Z [Protected] PID 6068, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T06:08:32.663Z [Protected] PID 14116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:13:32.578Z [Protected] PID 13368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:17:00.171Z [Protected] PID 12640, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T06:17:01.276Z [Protected] PID 12600, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T06:17:01.805Z [Protected] PID 13220, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T06:18:32.649Z [Protected] PID 9016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:22:20.792Z [Protected] PID 14268, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T06:22:25.752Z [Protected] PID 4136, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T06:22:25.821Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209112225
2016-12-09T06:23:29.358Z [Protected] PID 10712, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T06:23:29.370Z [Protected] PID 14084, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T06:23:29.702Z [Protected] PID 13996, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T06:23:29.713Z [Protected] PID 13684, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T06:23:32.645Z [Protected] PID 4784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:27:07.162Z [Protected] PID 9748, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T06:28:32.641Z [Protected] PID 14208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:33:32.592Z [Protected] PID 8648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:38:32.630Z [Protected] PID 6336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:43:32.646Z [Protected] PID 8268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:48:32.667Z [Protected] PID 13852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:52:25.895Z [Protected] PID 12720, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T06:52:25.947Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209115225
2016-12-09T06:53:32.533Z [Protected] PID 7232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:57:00.123Z [Protected] PID 3584, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T06:57:00.494Z [Protected] PID 13872, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T06:57:00.531Z [Protected] PID 9460, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T06:57:00.672Z [Protected] PID 13020, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T06:58:32.654Z [Protected] PID 10224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T06:59:00.248Z [Protected] PID 4412, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T06:59:33.435Z [Protected] PID 12944, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T07:03:32.490Z [Protected] PID 11352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:08:32.651Z [Protected] PID 9696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:13:32.657Z [Protected] PID 13348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:13:39.625Z [Protected] PID 13388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T07:13:39.645Z [Protected] PID 13580, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T07:14:00.151Z [Protected] PID 12208, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T07:17:00.217Z [Protected] PID 14076, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T07:17:00.986Z [Protected] PID 14028, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T07:18:32.758Z [Protected] PID 8308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:22:26.081Z [Protected] PID 11268, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T07:22:26.111Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209122225
2016-12-09T07:22:29.824Z [Protected] PID 12568, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T07:23:29.956Z [Protected] PID 13796, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T07:23:29.969Z [Protected] PID 13452, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T07:23:30.066Z [Protected] PID 13724, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T07:23:30.077Z [Protected] PID 12908, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T07:23:32.635Z [Protected] PID 14248, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:27:07.075Z [Protected] PID 8892, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T07:28:00.169Z [Protected] PID 14276, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T07:28:00.559Z [Protected] PID 12828, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T07:28:32.640Z [Protected] PID 14124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:33:32.499Z [Protected] PID 14284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:33:42.884Z [Protected] PID 1740, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T07:33:42.904Z [Protected] PID 12988, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T07:38:32.736Z [Protected] PID 13296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:41:47.580Z [Protected] PID 4524, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T07:41:49.405Z [Protected] PID 5644, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T07:41:49.426Z [Protected] PID 13836, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T07:41:49.524Z [Protected] PID 13496, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T07:41:50.095Z [Protected] PID 13804, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T07:41:50.105Z [Protected] PID 14048, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T07:43:32.535Z [Protected] PID 13484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:48:32.572Z [Protected] PID 1616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:52:26.206Z [Protected] PID 14044, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T07:52:26.232Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209125226
2016-12-09T07:53:32.466Z [Protected] PID 13532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:57:00.220Z [Protected] PID 13924, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T07:57:00.550Z [Protected] PID 13344, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T07:57:00.571Z [Protected] PID 6328, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T07:57:00.704Z [Protected] PID 13744, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T07:58:32.647Z [Protected] PID 13724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T07:59:00.239Z [Protected] PID 7584, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T08:00:00.171Z [Protected] PID 10740, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T08:00:00.388Z [Protected] PID 9064, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T08:03:32.579Z [Protected] PID 5220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:08:32.636Z [Protected] PID 11796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:08:35.530Z [Protected] PID 9104, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T08:13:32.640Z [Protected] PID 13604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:17:00.455Z [Protected] PID 1280, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T08:17:01.964Z [Protected] PID 6068, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T08:18:32.539Z [Protected] PID 13720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:19:23.508Z [Protected] PID 11416, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T08:22:08.893Z [Protected] PID 11372, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T08:22:26.407Z [Protected] PID 9464, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T08:22:26.433Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209132226
2016-12-09T08:23:30.304Z [Protected] PID 12832, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T08:23:30.314Z [Protected] PID 7952, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T08:23:30.453Z [Protected] PID 11556, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T08:23:30.459Z [Protected] PID 14256, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T08:23:32.664Z [Protected] PID 13156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:24:37.077Z [Protected] PID 12520, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T08:24:37.312Z [Protected] PID 6720, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-09T08:27:07.262Z [Protected] PID 8408, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T08:28:32.551Z [Protected] PID 13952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:33:32.650Z [Protected] PID 13880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:35:10.206Z [Protected] PID 12520, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-09T08:35:11.019Z [Protected] PID 13908, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-09T08:35:11.275Z [Protected] PID 14060, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-09T08:35:11.605Z [Protected] PID 7644, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T08:36:22.009Z [Protected] PID 8024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:36:22.846Z [Protected] PID 13836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:36:23.926Z [Protected] PID 13432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:38:28.916Z [Protected] PID 14076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:38:32.356Z [Protected] PID 13168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:38:54.817Z [Protected] PID 9032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:43:32.503Z [Protected] PID 13844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:48:32.504Z [Protected] PID 9284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:48:39.573Z [Protected] PID 13796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:52:26.542Z [Protected] PID 13772, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T08:52:26.584Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209135226
2016-12-09T08:52:47.424Z [Protected] PID 13768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:53:32.407Z [Protected] PID 13428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:54:36.994Z [Protected] PID 2660, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T08:54:37.162Z [Protected] PID 4824, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-09T08:54:56.767Z [Protected] PID 12448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:54:59.302Z [Protected] PID 14008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:55:10.081Z [Protected] PID 13324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:57:00.174Z [Protected] PID 2992, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T08:57:00.527Z [Protected] PID 13336, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T08:57:00.546Z [Protected] PID 13112, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T08:57:00.642Z [Protected] PID 9472, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T08:58:11.973Z [Protected] PID 11340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:58:16.595Z [Protected] PID 5752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:58:19.096Z [Protected] PID 6156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:58:19.545Z [Protected] PID 14192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:58:21.824Z [Protected] PID 13832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:58:24.260Z [Protected] PID 8124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:58:32.401Z [Protected] PID 13784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T08:59:00.179Z [Protected] PID 5700, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T09:00:56.895Z [Protected] PID 9336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:00:57.749Z [Protected] PID 8688, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T09:00:58.238Z [Protected] PID 12820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:00:58.961Z [Protected] PID 7232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:01:47.149Z [Protected] PID 9164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:01:55.569Z [Protected] PID 13008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:08.672Z [Protected] PID 13376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:11.748Z [Protected] PID 13752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:15.690Z [Protected] PID 13336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:32.395Z [Protected] PID 13576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:32.847Z [Protected] PID 9284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:37.030Z [Protected] PID 9788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:03:59.423Z [Protected] PID 9024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:04:24.740Z [Protected] PID 14272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:05:34.814Z [Protected] PID 5764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:06:39.085Z [Protected] PID 11760, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T09:06:39.304Z [Protected] PID 12860, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T09:07:30.746Z [Protected] PID 8268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:07:33.979Z [Protected] PID 9788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:07:45.515Z [Protected] PID 7752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:08:32.379Z [Protected] PID 13440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:13:01.240Z [Protected] PID 11336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:13:18.336Z [Protected] PID 10916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:13:32.421Z [Protected] PID 5700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:13:35.023Z [Protected] PID 5220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:15:59.299Z [Protected] PID 2156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:16:00.895Z [Protected] PID 12396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:16:02.215Z [Protected] PID 12076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:16:07.153Z [Protected] PID 12280, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:16:08.474Z [Protected] PID 13768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:16:09.564Z [Protected] PID 12788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:17:00.242Z [Protected] PID 808, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T09:17:00.755Z [Protected] PID 12640, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T09:17:01.419Z [Protected] PID 13948, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T09:18:32.610Z [Protected] PID 14028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:18:54.483Z [Protected] PID 14004, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T09:18:54.586Z [Protected] PID 13348, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T09:18:54.813Z [Protected] PID 13896, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T09:18:55.627Z [Protected] PID 9796, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T09:18:57.206Z [Protected] PID 12616, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T09:22:26.737Z [Protected] PID 10832, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T09:22:26.763Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209142226
2016-12-09T09:23:30.655Z [Protected] PID 11416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T09:23:30.669Z [Protected] PID 13680, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T09:23:30.810Z [Protected] PID 12492, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T09:23:30.821Z [Protected] PID 2036, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T09:23:32.552Z [Protected] PID 12772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:25:33.891Z [Protected] PID 10340, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T09:25:34.015Z [Protected] PID 8400, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T09:27:00.190Z [Protected] PID 13844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:27:02.371Z [Protected] PID 13736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:27:05.704Z [Protected] PID 13216, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T09:27:06.051Z [Protected] PID 14140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:28:00.176Z [Protected] PID 4800, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T09:28:00.593Z [Protected] PID 5764, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T09:28:32.447Z [Protected] PID 6516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:33:32.662Z [Protected] PID 13912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:36:01.684Z [Protected] PID 11796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:36:03.410Z [Protected] PID 10852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:36:06.968Z [Protected] PID 1252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:36:08.817Z [Protected] PID 12104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:36:59.964Z [Protected] PID 13604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:37:02.164Z [Protected] PID 13588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:37:03.317Z [Protected] PID 13496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:37:20.502Z [Protected] PID 9804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:37:21.402Z [Protected] PID 13904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:37:33.334Z [Protected] PID 8400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:37:42.238Z [Protected] PID 5416, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T09:37:42.749Z [Protected] PID 12592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:38:14.832Z [Protected] PID 13940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:38:32.444Z [Protected] PID 14556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:42:17.328Z [Protected] PID 15336, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T09:43:32.605Z [Protected] PID 11848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:45:16.192Z [Protected] PID 13980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:45:17.991Z [Protected] PID 12640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:45:18.528Z [Protected] PID 6064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:45:39.033Z [Protected] PID 4800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:45:41.017Z [Protected] PID 6204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:48:03.139Z [Protected] PID 9704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:48:32.421Z [Protected] PID 14512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:52:02.955Z [Protected] PID 12576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:52:03.671Z [Protected] PID 11912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:52:05.114Z [Protected] PID 14192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:52:26.925Z [Protected] PID 4952, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T09:52:26.975Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209145226
2016-12-09T09:53:26.427Z [Protected] PID 880, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T09:53:32.398Z [Protected] PID 14648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:57:00.170Z [Protected] PID 7876, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T09:57:00.518Z [Protected] PID 2692, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T09:57:00.556Z [Protected] PID 14160, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T09:57:00.643Z [Protected] PID 15228, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T09:58:32.544Z [Protected] PID 14980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T09:59:00.338Z [Protected] PID 5700, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T10:00:00.695Z [Protected] PID 9524, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-09T10:03:32.465Z [Protected] PID 13772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:03:52.018Z [Protected] PID 15152, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T10:08:32.558Z [Protected] PID 14944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:13:32.665Z [Protected] PID 7952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:17:00.180Z [Protected] PID 14944, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T10:17:00.708Z [Protected] PID 14660, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T10:18:32.558Z [Protected] PID 448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:22:27.117Z [Protected] PID 9344, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T10:22:27.168Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209152226
2016-12-09T10:23:30.998Z [Protected] PID 14656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T10:23:31.008Z [Protected] PID 9664, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T10:23:31.124Z [Protected] PID 14132, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T10:23:31.148Z [Protected] PID 8648, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T10:23:32.663Z [Protected] PID 14004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:27:05.623Z [Protected] PID 14896, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T10:28:32.608Z [Protected] PID 12352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:33:32.516Z [Protected] PID 8740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:38:32.647Z [Protected] PID 11848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:41:11.794Z [Protected] PID 13672, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T10:43:32.632Z [Protected] PID 10736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:44:21.552Z [Protected] PID 14480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:44:22.443Z [Protected] PID 11336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:44:23.744Z [Protected] PID 14396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:48:32.703Z [Protected] PID 12720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:49:48.686Z [Protected] PID 14792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:49:53.127Z [Protected] PID 14496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:50:48.117Z [Protected] PID 14064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:50:51.793Z [Protected] PID 14484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:50:59.188Z [Protected] PID 14392, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T10:51:01.193Z [Protected] PID 12996, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T10:51:01.270Z [Protected] PID 14636, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T10:51:01.351Z [Protected] PID 13584, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T10:51:02.326Z [Protected] PID 6352, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T10:51:03.411Z [Protected] PID 1456, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T10:52:08.103Z [Protected] PID 5444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:52:27.297Z [Protected] PID 5920, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T10:52:27.351Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209155227
2016-12-09T10:53:32.531Z [Protected] PID 15148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:55:25.037Z [Protected] PID 13144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:56:20.340Z [Protected] PID 3068, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-09T10:56:23.995Z [Protected] PID 10004, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T10:56:29.528Z [Protected] PID 13336, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-09T10:56:42.557Z [Protected] PID 14752, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T10:56:59.525Z [Protected] PID 8688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:57:00.103Z [Protected] PID 13916, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T10:57:00.436Z [Protected] PID 13712, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T10:57:00.466Z [Protected] PID 3068, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T10:57:00.548Z [Protected] PID 14576, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T10:57:01.664Z [Protected] PID 14140, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T10:57:03.056Z [Protected] PID 15160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:57:05.296Z [Protected] PID 14396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:57:25.849Z [Protected] PID 14492, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T10:57:27.092Z [Protected] PID 9968, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T10:57:27.101Z [Protected] PID 14540, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T10:57:27.119Z [Protected] PID 8740, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\Adobe Genuine Launcher.exe
2016-12-09T10:57:27.188Z [Protected] PID 9788, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T10:57:27.268Z [Protected] PID 880, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
2016-12-09T10:57:33.085Z [Protected] PID 15040, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T10:57:33.104Z [Protected] PID 12644, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P6\adobe_licutil.exe
2016-12-09T10:57:34.988Z [Protected] PID 14404, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
2016-12-09T10:58:32.427Z [Protected] PID 808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T10:59:00.259Z [Protected] PID 12756, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T11:00:00.838Z [Protected] PID 13156, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-09T11:00:01.202Z [Protected] PID 14332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T11:00:01.228Z [Protected] PID 14588, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-09T11:03:32.486Z [Protected] PID 14104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:07:03.711Z [Protected] PID 13836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:07:06.659Z [Protected] PID 14292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:07:09.784Z [Protected] PID 13248, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:08:32.370Z [Protected] PID 15072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:09:18.341Z [Protected] PID 12268, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T11:09:41.181Z [Protected] PID 14552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:09:41.609Z [Protected] PID 15048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:09:45.113Z [Protected] PID 14940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:11:26.837Z [Protected] PID 14552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:11:30.464Z [Protected] PID 16076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:12:23.664Z [Protected] PID 12268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:13:32.393Z [Protected] PID 15948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:13:40.215Z [Protected] PID 16132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:13:41.190Z [Protected] PID 13736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:17:00.186Z [Protected] PID 13584, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T11:17:00.961Z [Protected] PID 12960, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T11:17:01.717Z [Protected] PID 14876, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T11:18:32.748Z [Protected] PID 15660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:22:27.387Z [Protected] PID 15916, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T11:22:27.414Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209162227
2016-12-09T11:23:31.302Z [Protected] PID 14392, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T11:23:31.319Z [Protected] PID 10856, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T11:23:31.451Z [Protected] PID 15292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T11:23:31.476Z [Protected] PID 14864, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T11:23:32.636Z [Protected] PID 14348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:27:06.296Z [Protected] PID 1328, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T11:28:00.173Z [Protected] PID 15216, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T11:28:00.660Z [Protected] PID 15076, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T11:28:32.663Z [Protected] PID 10004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:31:56.571Z [Protected] PID 16164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:31:57.044Z [Protected] PID 9028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:33:20.664Z [Protected] PID 14392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:33:32.391Z [Protected] PID 15048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:33:56.780Z [Protected] PID 14468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:35:07.064Z [Protected] PID 15984, Features 0000003000000102, C:\Windows\System32\SndVol.exe
2016-12-09T11:35:44.811Z [Protected] PID 15372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:38:32.468Z [Protected] PID 15252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:43:30.710Z [Protected] PID 15292, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T11:43:32.451Z [Protected] PID 15460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:44:05.738Z [Protected] PID 12724, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T11:44:05.758Z [Protected] PID 1280, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T11:48:00.102Z [Protected] PID 12548, Features 0000003000000102, C:\Windows\System32\SndVol.exe
2016-12-09T11:48:33.005Z [Protected] PID 16048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:52:27.587Z [Protected] PID 15728, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T11:52:27.614Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209165227
2016-12-09T11:53:32.851Z [Protected] PID 13932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:57:00.328Z [Protected] PID 13228, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T11:57:00.726Z [Protected] PID 16116, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T11:57:00.751Z [Protected] PID 13320, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T11:57:00.892Z [Protected] PID 12788, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T11:58:32.609Z [Protected] PID 10100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T11:59:00.249Z [Protected] PID 15744, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T11:59:00.974Z [Protected] PID 15084, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T12:00:00.230Z [Protected] PID 16288, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe
2016-12-09T12:00:49.155Z [Protected] PID 13180, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T12:02:26.500Z [Protected] PID 15616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:02:27.081Z [Protected] PID 14364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:02:27.163Z [Protected] PID 8344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:02:40.358Z [Protected] PID 16160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:03:32.413Z [Protected] PID 14792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:08:32.671Z [Protected] PID 15776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:13:32.526Z [Protected] PID 13604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:17:00.132Z [Protected] PID 8552, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T12:17:01.103Z [Protected] PID 4172, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T12:17:01.823Z [Protected] PID 14324, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T12:18:32.523Z [Protected] PID 16368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:18:44.308Z [Protected] PID 14276, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-09T12:18:50.163Z [Protected] PID 16240, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-09T12:20:14.248Z [Protected] PID 14992, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T12:22:27.823Z [Protected] PID 15300, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T12:22:27.873Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209172227
2016-12-09T12:22:34.774Z [Protected] PID 16064, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T12:23:31.660Z [Protected] PID 17040, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T12:23:31.670Z [Protected] PID 17024, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T12:23:31.844Z [Protected] PID 10004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T12:23:31.893Z [Protected] PID 15384, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T12:23:32.499Z [Protected] PID 16132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:27:03.831Z [Protected] PID 17368, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T12:27:03.851Z [Protected] PID 16824, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-09T12:27:04.003Z [Protected] PID 16780, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-09T12:27:04.120Z [Protected] PID 17404, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T12:27:06.952Z [Protected] PID 17352, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-09T12:27:07.235Z [Protected] PID 8352, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-09T12:27:07.424Z [Protected] PID 17376, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-09T12:27:07.544Z [Protected] PID 17384, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-09T12:27:07.672Z [Protected] PID 14848, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-09T12:27:07.821Z [Protected] PID 16388, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-09T12:27:12.795Z [Protected] PID 15864, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T12:28:32.519Z [Protected] PID 16644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:28:56.390Z [Protected] PID 17092, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-09T12:29:01.583Z [Protected] PID 14644, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-09T12:33:32.580Z [Protected] PID 17156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:34:07.020Z [Protected] PID 17348, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T12:34:07.040Z [Protected] PID 14604, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T12:36:40.117Z [Protected] PID 8560, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T12:36:40.670Z [Protected] PID 16936, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T12:38:32.474Z [Protected] PID 17376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:42:04.995Z [Protected] PID 17364, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T12:42:07.045Z [Protected] PID 15864, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T12:42:07.077Z [Protected] PID 8564, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T12:42:07.187Z [Protected] PID 13916, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T12:42:07.796Z [Protected] PID 17072, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T12:42:07.903Z [Protected] PID 17024, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T12:43:32.578Z [Protected] PID 14184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:48:32.542Z [Protected] PID 17348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:52:28.037Z [Protected] PID 12816, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T12:52:28.054Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209175227
2016-12-09T12:53:32.546Z [Protected] PID 16652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:57:00.207Z [Protected] PID 16632, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T12:57:00.579Z [Protected] PID 15808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T12:57:00.602Z [Protected] PID 14736, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T12:57:00.707Z [Protected] PID 16616, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T12:58:10.584Z [Protected] PID 15124, Features 0000003000002106, C:\Users\erichc\AppData\Local\Google\Chrome\User Data\SwReporter\14.83.3\software_reporter_tool.exe
2016-12-09T12:58:10.858Z [Protected] PID 17212, Features 0000003000002106, C:\Users\erichc\AppData\Local\Google\Chrome\User Data\SwReporter\14.83.3\software_reporter_tool.exe
2016-12-09T12:58:32.560Z [Protected] PID 17404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T12:59:00.325Z [Protected] PID 13504, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T13:02:42.856Z [Protected] PID 16920, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T13:02:43.388Z [Protected] PID 16880, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-09T13:02:43.728Z [Protected] PID 15960, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T13:03:32.450Z [Protected] PID 16520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:08:32.578Z [Protected] PID 13920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:09:37.490Z [Protected] PID 16548, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T13:13:32.597Z [Protected] PID 16776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:15:35.041Z [Protected] PID 16672, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T13:17:00.165Z [Protected] PID 17152, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T13:17:00.751Z [Protected] PID 10600, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T13:18:32.568Z [Protected] PID 16480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:22:28.196Z [Protected] PID 16952, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T13:22:28.254Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209182228
2016-12-09T13:23:31.000Z [Protected] PID 16704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:23:32.078Z [Protected] PID 16416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T13:23:32.091Z [Protected] PID 17380, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T13:23:32.260Z [Protected] PID 8564, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T13:23:32.277Z [Protected] PID 16712, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T13:23:32.365Z [Protected] PID 5444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:27:02.192Z [Protected] PID 14008, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T13:27:02.543Z [Protected] PID 17292, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-09T13:27:07.081Z [Protected] PID 16460, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T13:28:00.022Z [Protected] PID 18172, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T13:28:00.524Z [Protected] PID 18268, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T13:28:32.595Z [Protected] PID 16564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:33:32.538Z [Protected] PID 7588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:38:32.513Z [Protected] PID 17708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:41:00.230Z [Protected] PID 16472, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T13:41:00.529Z [Protected] PID 17636, Features 0000003000000106, C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
2016-12-09T13:41:01.023Z [Protected] PID 15960, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T13:41:01.328Z [Protected] PID 12816, Features 0000003000000102, C:\Windows\SysWOW64\dllhost.exe
2016-12-09T13:41:01.433Z [Protected] PID 17120, Features 0000003000000106, C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
2016-12-09T13:41:03.419Z [Protected] PID 17880, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T13:43:32.653Z [Protected] PID 1456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:48:32.491Z [Protected] PID 15420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:52:28.393Z [Protected] PID 16164, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T13:52:28.434Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209185228
2016-12-09T13:53:32.580Z [Protected] PID 14108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:57:00.206Z [Protected] PID 15376, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T13:57:00.601Z [Protected] PID 11552, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T13:57:00.626Z [Protected] PID 17604, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T13:57:00.770Z [Protected] PID 18036, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T13:58:32.605Z [Protected] PID 17716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T13:59:00.244Z [Protected] PID 15364, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T14:03:32.634Z [Protected] PID 8356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:05:19.783Z [Protected] PID 14472, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T14:06:48.931Z [Protected] PID 17764, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-09T14:06:49.148Z [Protected] PID 4524, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-09T14:06:49.824Z [Protected] PID 14276, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-09T14:06:50.034Z [Protected] PID 15680, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T14:08:05.176Z [Protected] PID 18024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:08:05.773Z [Protected] PID 15724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:08:07.094Z [Protected] PID 15212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:08:07.449Z [Protected] PID 10600, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T14:08:08.171Z [Protected] PID 14276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:08:32.379Z [Protected] PID 16048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:11:57.386Z [Protected] PID 17840, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T14:13:32.565Z [Protected] PID 16960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:14:59.229Z [Protected] PID 17088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:17:00.177Z [Protected] PID 15916, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T14:17:01.099Z [Protected] PID 17392, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T14:17:01.665Z [Protected] PID 17328, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T14:18:32.685Z [Protected] PID 16020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:22:28.588Z [Protected] PID 16788, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T14:22:28.634Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209192228
2016-12-09T14:23:32.463Z [Protected] PID 18424, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:23:32.475Z [Protected] PID 6000, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T14:23:32.526Z [Protected] PID 17376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:23:32.636Z [Protected] PID 18328, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:23:32.647Z [Protected] PID 16952, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T14:27:06.330Z [Protected] PID 17804, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T14:28:32.577Z [Protected] PID 8552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:28:56.600Z [Protected] PID 15920, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-09T14:29:02.067Z [Protected] PID 16756, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-09T14:29:16.929Z [Protected] PID 14540, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-09T14:29:17.462Z [Protected] PID 17064, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-09T14:29:17.946Z [Protected] PID 8200, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-09T14:29:18.166Z [Protected] PID 14108, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T14:33:09.848Z [Protected] PID 18056, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-09T14:33:10.762Z [Protected] PID 17696, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T14:33:11.375Z [Protected] PID 18124, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-09T14:33:12.496Z [Protected] PID 17996, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T14:33:12.577Z [Protected] PID 18084, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T14:33:12.746Z [Protected] PID 14688, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T14:33:13.395Z [Protected] PID 15192, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T14:33:14.064Z [Protected] PID 14556, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T14:33:18.624Z [Protected] PID 13332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:33:18.686Z [Protected] PID 17628, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-09T14:33:19.509Z [Protected] PID 13732, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-09T14:33:32.602Z [Protected] PID 16796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:35:05.297Z [Protected] PID 16376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:38:32.613Z [Protected] PID 16900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:38:52.355Z [Protected] PID 17448, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T14:38:53.119Z [Protected] PID 17004, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-09T14:39:25.255Z [Protected] PID 12432, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T14:39:49.385Z [Protected] PID 16516, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T14:39:50.682Z [Protected] PID 13776, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T14:39:50.787Z [Protected] PID 16724, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T14:39:50.894Z [Protected] PID 13980, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:39:50.912Z [Protected] PID 17952, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\Adobe Genuine Launcher.exe
2016-12-09T14:39:51.632Z [Protected] PID 16656, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
2016-12-09T14:39:56.610Z [Protected] PID 15892, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:39:56.629Z [Protected] PID 17452, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P6\adobe_licutil.exe
2016-12-09T14:39:58.051Z [Protected] PID 18072, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
2016-12-09T14:40:44.054Z [Protected] PID 14508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:40:44.645Z [Protected] PID 16376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:40:50.791Z [Protected] PID 12860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:40:51.327Z [Protected] PID 18360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:43:32.574Z [Protected] PID 17824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:44:16.198Z [Protected] PID 18136, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-09T14:44:18.793Z [Protected] PID 17552, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-09T14:44:26.152Z [Protected] PID 16980, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:44:26.180Z [Protected] PID 18272, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-09T14:44:26.536Z [Protected] PID 17268, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-09T14:46:25.807Z [Protected] PID 5024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:46:26.346Z [Protected] PID 16708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:46:27.376Z [Protected] PID 16652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:46:33.961Z [Protected] PID 16908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:46:35.373Z [Protected] PID 17216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:46:37.751Z [Protected] PID 14092, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T14:47:12.838Z [Protected] PID 8344, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-09T14:47:14.280Z [Protected] PID 10704, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-09T14:47:21.009Z [Protected] PID 14324, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:47:21.034Z [Protected] PID 17544, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-09T14:47:21.162Z [Protected] PID 10704, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-09T14:48:32.500Z [Protected] PID 13980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:52:28.805Z [Protected] PID 15820, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T14:52:28.831Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209195228
2016-12-09T14:53:32.645Z [Protected] PID 18044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:57:00.094Z [Protected] PID 17696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T14:57:00.432Z [Protected] PID 17416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:57:00.442Z [Protected] PID 3696, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T14:57:00.506Z [Protected] PID 18272, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T14:57:01.436Z [Protected] PID 14136, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-09T14:57:02.757Z [Protected] PID 18408, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-09T14:57:09.484Z [Protected] PID 17388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T14:57:09.508Z [Protected] PID 16692, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-09T14:57:09.635Z [Protected] PID 18412, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-09T14:58:32.681Z [Protected] PID 18072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T14:59:00.181Z [Protected] PID 15424, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T15:01:38.125Z [Protected] PID 13920, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T15:03:32.564Z [Protected] PID 17376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:07:02.913Z [Protected] PID 17672, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-09T15:07:08.139Z [Protected] PID 9112, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-09T15:08:32.672Z [Protected] PID 13504, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:13:32.641Z [Protected] PID 15760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:17:00.192Z [Protected] PID 8436, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T15:17:00.757Z [Protected] PID 14724, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T15:17:01.719Z [Protected] PID 17640, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T15:18:32.654Z [Protected] PID 17888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:20:35.879Z [Protected] PID 17556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:20:36.421Z [Protected] PID 15460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:20:37.620Z [Protected] PID 17212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:20:47.916Z [Protected] PID 13768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:20:56.122Z [Protected] PID 18752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:20:58.711Z [Protected] PID 18996, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:21:00.914Z [Protected] PID 19180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:21:23.936Z [Protected] PID 19408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:22:28.968Z [Protected] PID 18932, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T15:22:29.009Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209202228
2016-12-09T15:23:32.653Z [Protected] PID 17624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:23:32.900Z [Protected] PID 18876, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T15:23:32.912Z [Protected] PID 17608, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T15:23:33.215Z [Protected] PID 18652, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T15:23:33.226Z [Protected] PID 13776, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T15:23:38.122Z [Protected] PID 18524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:23:38.662Z [Protected] PID 12804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:23:41.182Z [Protected] PID 17240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:27:06.485Z [Protected] PID 12832, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T15:27:16.050Z [Protected] PID 18572, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T15:27:16.146Z [Protected] PID 17660, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T15:27:53.396Z [Protected] PID 19372, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-09T15:28:00.243Z [Protected] PID 18644, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T15:28:00.633Z [Protected] PID 16692, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T15:28:21.256Z [Protected] PID 19076, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-09T15:28:21.401Z [Protected] PID 18280, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-09T15:28:32.714Z [Protected] PID 17740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:31:49.410Z [Protected] PID 18988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:31:49.873Z [Protected] PID 880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:32:20.398Z [Protected] PID 10248, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:32:20.970Z [Protected] PID 16852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:32:25.522Z [Protected] PID 19296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:32:34.690Z [Protected] PID 19388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:33:32.367Z [Protected] PID 11664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:38:32.677Z [Protected] PID 13344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:40:43.685Z [Protected] PID 18828, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T15:43:32.529Z [Protected] PID 18364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:46:18.852Z [Protected] PID 8400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:46:19.470Z [Protected] PID 19380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:46:20.428Z [Protected] PID 18204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:46:22.007Z [Protected] PID 18084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:48:32.542Z [Protected] PID 17488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:51:48.024Z [Protected] PID 18616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:51:48.545Z [Protected] PID 18888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:51:52.326Z [Protected] PID 19392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:51:55.057Z [Protected] PID 18924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:51:56.365Z [Protected] PID 18400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:52:29.165Z [Protected] PID 18296, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T15:52:29.193Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209205228
2016-12-09T15:53:32.422Z [Protected] PID 18900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:54:28.157Z [Protected] PID 19180, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-09T15:57:00.118Z [Protected] PID 18644, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T15:57:00.455Z [Protected] PID 19416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T15:57:00.474Z [Protected] PID 11032, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T15:57:00.549Z [Protected] PID 18728, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T15:58:32.588Z [Protected] PID 16772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T15:59:00.125Z [Protected] PID 18440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T16:03:32.660Z [Protected] PID 18768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:04:14.544Z [Protected] PID 15420, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T16:04:14.575Z [Protected] PID 17856, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T16:06:41.285Z [Protected] PID 18392, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T16:06:42.136Z [Protected] PID 17824, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T16:08:32.661Z [Protected] PID 17596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:13:32.646Z [Protected] PID 18628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:14:39.159Z [Protected] PID 19240, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T16:17:00.180Z [Protected] PID 18956, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T16:17:02.052Z [Protected] PID 18580, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T16:17:02.745Z [Protected] PID 12644, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T16:18:32.672Z [Protected] PID 17740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:22:10.292Z [Protected] PID 14140, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T16:22:15.827Z [Protected] PID 6412, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T16:22:17.702Z [Protected] PID 19288, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T16:22:17.761Z [Protected] PID 18716, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T16:22:18.036Z [Protected] PID 16508, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T16:22:18.371Z [Protected] PID 18668, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T16:22:19.075Z [Protected] PID 16740, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T16:22:29.512Z [Protected] PID 10852, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T16:22:29.561Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209212229
2016-12-09T16:23:32.668Z [Protected] PID 20276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:23:33.519Z [Protected] PID 11668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T16:23:33.531Z [Protected] PID 19732, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T16:23:33.752Z [Protected] PID 19396, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T16:23:33.772Z [Protected] PID 1456, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T16:24:37.971Z [Protected] PID 9404, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T16:24:38.232Z [Protected] PID 19344, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-09T16:27:07.528Z [Protected] PID 20004, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T16:28:32.566Z [Protected] PID 20272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:33:32.580Z [Protected] PID 13768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:38:32.598Z [Protected] PID 18512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:43:32.596Z [Protected] PID 20328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:48:12.307Z [Protected] PID 17596, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T16:48:32.560Z [Protected] PID 18972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:50:50.191Z [Protected] PID 20412, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T16:50:50.620Z [Protected] PID 18728, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
2016-12-09T16:50:56.821Z [Protected] PID 19604, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T16:50:58.045Z [Protected] PID 18316, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T16:50:58.067Z [Protected] PID 17344, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-09T16:51:00.786Z [Protected] PID 19344, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPDeviceDetection3.exe
2016-12-09T16:51:01.608Z [Protected] PID 19484, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPAsset.exe
2016-12-09T16:51:03.639Z [Protected] PID 19068, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPAsset.exe
2016-12-09T16:51:07.093Z [Protected] PID 20332, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPAsset.exe
2016-12-09T16:52:29.711Z [Protected] PID 13664, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T16:52:29.764Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209215229
2016-12-09T16:53:32.694Z [Protected] PID 18144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:57:00.183Z [Protected] PID 19912, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T16:57:00.543Z [Protected] PID 18924, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T16:57:00.554Z [Protected] PID 19380, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T16:57:00.658Z [Protected] PID 19824, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T16:58:32.657Z [Protected] PID 20048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T16:59:00.251Z [Protected] PID 14984, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T16:59:28.432Z [Protected] PID 19612, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T17:03:32.593Z [Protected] PID 18580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:03:35.381Z [Protected] PID 20108, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T17:08:32.684Z [Protected] PID 18856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:12:24.420Z [Protected] PID 19132, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-09T17:12:24.780Z [Protected] PID 18440, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T17:13:32.628Z [Protected] PID 20364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:17:00.177Z [Protected] PID 20252, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T17:17:00.859Z [Protected] PID 17116, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T17:18:32.651Z [Protected] PID 19788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:22:29.915Z [Protected] PID 13588, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T17:22:29.966Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209222229
2016-12-09T17:23:32.584Z [Protected] PID 15092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:23:33.991Z [Protected] PID 19920, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T17:23:34.015Z [Protected] PID 11248, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T17:23:34.109Z [Protected] PID 10248, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T17:23:34.121Z [Protected] PID 4172, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T17:24:11.872Z [Protected] PID 19764, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T17:24:11.883Z [Protected] PID 14768, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T17:27:07.704Z [Protected] PID 19524, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T17:28:00.275Z [Protected] PID 15060, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T17:28:01.063Z [Protected] PID 20356, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T17:28:32.659Z [Protected] PID 21496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:33:32.652Z [Protected] PID 12372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:38:32.565Z [Protected] PID 20084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:43:32.687Z [Protected] PID 20856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:48:32.673Z [Protected] PID 20488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:52:22.124Z [Protected] PID 19624, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T17:52:22.175Z [Protected] PID 13664, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T17:52:22.364Z [Protected] PID 19720, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T17:52:22.882Z [Protected] PID 19992, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T17:52:23.446Z [Protected] PID 21276, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T17:52:30.152Z [Protected] PID 20428, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T17:52:30.197Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209225229
2016-12-09T17:53:32.617Z [Protected] PID 20112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:57:00.166Z [Protected] PID 18492, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T17:57:00.527Z [Protected] PID 19100, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T17:57:00.558Z [Protected] PID 18272, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T17:57:00.705Z [Protected] PID 18540, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T17:57:23.232Z [Protected] PID 17824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:58:32.441Z [Protected] PID 8816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T17:59:00.224Z [Protected] PID 19464, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T18:00:34.787Z [Protected] PID 19924, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T18:03:32.633Z [Protected] PID 20864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:08:32.658Z [Protected] PID 18228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:13:32.489Z [Protected] PID 17476, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:17:00.190Z [Protected] PID 19392, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T18:17:01.050Z [Protected] PID 18948, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T18:18:32.554Z [Protected] PID 18916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:22:30.328Z [Protected] PID 21176, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T18:22:30.364Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209232230
2016-12-09T18:23:32.640Z [Protected] PID 21272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:23:34.318Z [Protected] PID 21148, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T18:23:34.328Z [Protected] PID 19560, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T18:23:34.424Z [Protected] PID 19948, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T18:23:34.436Z [Protected] PID 21328, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T18:24:24.405Z [Protected] PID 20364, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T18:24:24.415Z [Protected] PID 18808, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T18:27:07.067Z [Protected] PID 14984, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T18:28:32.592Z [Protected] PID 19548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:33:32.575Z [Protected] PID 19864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:36:17.479Z [Protected] PID 17372, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-09T18:36:31.960Z [Protected] PID 19800, Features 0000003000000102, C:\Program Files\Internet Explorer\IELowutil.exe
2016-12-09T18:36:32.256Z [Protected] PID 20120, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T18:38:32.669Z [Protected] PID 16508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:43:32.542Z [Protected] PID 21396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:48:32.515Z [Protected] PID 19600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:52:30.560Z [Protected] PID 13672, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T18:52:30.590Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161209235230
2016-12-09T18:53:32.549Z [Protected] PID 20564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:57:00.214Z [Protected] PID 21340, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T18:57:00.545Z [Protected] PID 17524, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T18:57:00.568Z [Protected] PID 18584, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T18:57:00.707Z [Protected] PID 19948, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T18:58:32.572Z [Protected] PID 21064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T18:59:00.216Z [Protected] PID 19016, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T19:01:45.154Z [Protected] PID 20156, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T19:03:32.686Z [Protected] PID 19912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:08:32.581Z [Protected] PID 20112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:13:32.575Z [Protected] PID 17040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:17:00.165Z [Protected] PID 17372, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T19:17:00.833Z [Protected] PID 20184, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T19:18:32.656Z [Protected] PID 21052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:22:30.721Z [Protected] PID 19740, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T19:22:30.745Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210002230
2016-12-09T19:23:26.650Z [Protected] PID 20808, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T19:23:26.730Z [Protected] PID 18652, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T19:23:26.827Z [Protected] PID 19548, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T19:23:27.269Z [Protected] PID 5444, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T19:23:27.433Z [Protected] PID 20080, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T19:23:32.519Z [Protected] PID 15084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:23:34.650Z [Protected] PID 20024, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T19:23:34.660Z [Protected] PID 6412, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T19:23:34.781Z [Protected] PID 19880, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T19:23:34.800Z [Protected] PID 20952, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T19:27:05.471Z [Protected] PID 20984, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T19:28:00.176Z [Protected] PID 18852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T19:28:00.648Z [Protected] PID 20864, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupload.exe
2016-12-09T19:28:32.684Z [Protected] PID 20160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:33:32.627Z [Protected] PID 20860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:36:40.996Z [Protected] PID 12804, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T19:36:41.524Z [Protected] PID 20532, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T19:38:32.661Z [Protected] PID 15392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:43:32.656Z [Protected] PID 21464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:48:32.628Z [Protected] PID 19920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:52:30.834Z [Protected] PID 18480, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T19:52:30.854Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210005230
2016-12-09T19:53:32.652Z [Protected] PID 20576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:57:00.148Z [Protected] PID 20432, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T19:57:00.532Z [Protected] PID 20640, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T19:57:00.562Z [Protected] PID 21148, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T19:57:00.701Z [Protected] PID 20124, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T19:58:32.636Z [Protected] PID 18964, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T19:59:00.211Z [Protected] PID 20712, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T19:59:00.220Z [Protected] PID 12644, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T19:59:00.498Z [Protected] PID 18716, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-09T19:59:00.498Z [Protected] PID 13728, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-09T20:03:32.639Z [Protected] PID 21108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:06:41.485Z [Protected] PID 21340, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T20:08:32.603Z [Protected] PID 15632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:13:32.555Z [Protected] PID 20860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:17:00.111Z [Protected] PID 19776, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T20:17:00.658Z [Protected] PID 20052, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T20:19:32.521Z [Protected] PID 21412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:22:30.904Z [Protected] PID 20740, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T20:22:30.959Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210012230
2016-12-09T20:23:32.658Z [Protected] PID 21124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:23:34.931Z [Protected] PID 19668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T20:23:34.941Z [Protected] PID 17852, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T20:23:35.042Z [Protected] PID 21132, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T20:23:35.052Z [Protected] PID 21284, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T20:27:05.396Z [Protected] PID 20284, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T20:28:32.555Z [Protected] PID 20036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:21.883Z [Protected] PID 18936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:22.172Z [Protected] PID 20424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:22.348Z [Protected] PID 20856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:22.528Z [Protected] PID 16576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:22.718Z [Protected] PID 13728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:22.871Z [Protected] PID 18540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:23.049Z [Protected] PID 20884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:23.213Z [Protected] PID 16604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:23.359Z [Protected] PID 20444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:23.530Z [Protected] PID 18120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:31:23.674Z [Protected] PID 15804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:33:32.669Z [Protected] PID 20044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:38:32.476Z [Protected] PID 20364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:43:32.595Z [Protected] PID 19528, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:48:32.630Z [Protected] PID 20664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:52:31.094Z [Protected] PID 19808, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T20:52:31.132Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210015230
2016-12-09T20:53:32.663Z [Protected] PID 8536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:54:37.916Z [Protected] PID 20360, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T20:54:38.162Z [Protected] PID 9404, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-09T20:57:00.132Z [Protected] PID 21024, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T20:57:00.533Z [Protected] PID 20728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T20:57:00.553Z [Protected] PID 17116, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T20:57:00.678Z [Protected] PID 20216, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T20:58:32.565Z [Protected] PID 21204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T20:59:00.260Z [Protected] PID 19324, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T21:02:48.782Z [Protected] PID 19512, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T21:03:32.660Z [Protected] PID 18636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:07:57.318Z [Protected] PID 19744, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-09T21:07:57.648Z [Protected] PID 19580, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-09T21:08:32.623Z [Protected] PID 15340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:13:32.657Z [Protected] PID 17040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:17:00.178Z [Protected] PID 20064, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T21:17:00.639Z [Protected] PID 19544, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\5922\g2mupdate.exe
2016-12-09T21:17:01.332Z [Protected] PID 20188, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T21:17:04.846Z [Protected] PID 19712, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\CitrixUpdates\GoToMeeting\6039\G2MCoreInstExtractor_5922_6039.exe
2016-12-09T21:17:05.848Z [Protected] PID 16576, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:05.848Z [Protected] PID 20372, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:05.869Z [Protected] PID 19088, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:05.869Z [Protected] PID 17196, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:06.170Z [Protected] PID 19736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:06.200Z [Protected] PID 19904, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:06.362Z [Protected] PID 21004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:06.394Z [Protected] PID 19776, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:06.599Z [Protected] PID 21168, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:06.632Z [Protected] PID 20140, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:06.948Z [Protected] PID 20128, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:06.970Z [Protected] PID 21292, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:07.165Z [Protected] PID 18328, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:07.185Z [Protected] PID 21364, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:07.352Z [Protected] PID 18932, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:07.373Z [Protected] PID 15720, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:07.572Z [Protected] PID 14604, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:07.592Z [Protected] PID 19700, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:07.776Z [Protected] PID 18204, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:07.796Z [Protected] PID 21036, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:08.056Z [Protected] PID 19256, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:08.076Z [Protected] PID 20832, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:08.323Z [Protected] PID 17260, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:08.346Z [Protected] PID 21424, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:08.608Z [Protected] PID 19656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:08.628Z [Protected] PID 20720, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:08.867Z [Protected] PID 20664, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:08.888Z [Protected] PID 20216, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:09.227Z [Protected] PID 18788, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:09.238Z [Protected] PID 19580, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:09.369Z [Protected] PID 20544, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:09.390Z [Protected] PID 21032, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:09.527Z [Protected] PID 20952, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:09.547Z [Protected] PID 21420, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:09.657Z [Protected] PID 20352, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:09.677Z [Protected] PID 18768, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:09.826Z [Protected] PID 21100, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:09.848Z [Protected] PID 14720, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:10.038Z [Protected] PID 21220, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:10.058Z [Protected] PID 20012, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:10.237Z [Protected] PID 19664, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:10.257Z [Protected] PID 19972, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:10.433Z [Protected] PID 19860, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:10.456Z [Protected] PID 18676, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:10.867Z [Protected] PID 17824, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:17:10.878Z [Protected] PID 20144, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\courgette.exe
2016-12-09T21:17:11.468Z [Protected] PID 20048, Features 0000003000000106, C:\Users\erichc\AppData\Local\Temp\E642EA39-4BE4-4244-B843-A7FADAA68FD6\G2MInstaller.exe
2016-12-09T21:17:12.880Z [Protected] PID 20428, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\G2MInstaller.exe
2016-12-09T21:18:32.650Z [Protected] PID 20208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:22:31.074Z [Protected] PID 20556, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T21:22:31.172Z [Protected] PID 11288, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T21:22:31.223Z [Protected] PID 20972, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T21:22:31.253Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210022231
2016-12-09T21:22:31.273Z [Protected] PID 20224, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T21:22:31.923Z [Protected] PID 21388, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T21:22:32.152Z [Protected] PID 20336, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T21:23:00.359Z [Protected] PID 21304, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T21:23:00.628Z [Protected] PID 5024, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-09T21:23:32.674Z [Protected] PID 21148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:23:35.302Z [Protected] PID 15696, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:23:35.312Z [Protected] PID 21144, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T21:23:35.437Z [Protected] PID 20372, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:23:35.447Z [Protected] PID 16576, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T21:27:05.405Z [Protected] PID 18564, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T21:27:27.178Z [Protected] PID 20316, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-09T21:27:38.144Z [Protected] PID 21164, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-09T21:27:38.300Z [Protected] PID 20172, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-09T21:28:32.781Z [Protected] PID 21284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:33:32.661Z [Protected] PID 19400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:38:32.635Z [Protected] PID 21232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:41:00.132Z [Protected] PID 21168, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T21:41:00.377Z [Protected] PID 20732, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-09T21:43:32.588Z [Protected] PID 20460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:44:39.200Z [Protected] PID 20232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:44:39.244Z [Protected] PID 19192, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T21:48:32.915Z [Protected] PID 15372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:52:31.483Z [Protected] PID 19084, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T21:52:31.501Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210025231
2016-12-09T21:53:32.593Z [Protected] PID 18808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:57:00.350Z [Protected] PID 20272, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T21:57:00.695Z [Protected] PID 20760, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T21:57:00.736Z [Protected] PID 10844, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T21:57:00.847Z [Protected] PID 19964, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T21:58:32.497Z [Protected] PID 20976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T21:59:00.362Z [Protected] PID 18756, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T21:59:19.824Z [Protected] PID 20804, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T22:00:00.400Z [Protected] PID 17704, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-09T22:00:00.845Z [Protected] PID 19532, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-09T22:00:01.039Z [Protected] PID 21068, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-09T22:03:13.105Z [Protected] PID 19480, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T22:03:32.571Z [Protected] PID 18492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:08:32.964Z [Protected] PID 20712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:13:32.959Z [Protected] PID 20140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:18:33.121Z [Protected] PID 19616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:22:31.795Z [Protected] PID 19728, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T22:22:31.845Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210032231
2016-12-09T22:23:00.569Z [Protected] PID 17728, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T22:23:04.750Z [Protected] PID 18968, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-09T22:23:32.589Z [Protected] PID 21420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:23:35.865Z [Protected] PID 18596, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T22:23:35.934Z [Protected] PID 21408, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T22:23:36.324Z [Protected] PID 20976, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T22:23:36.345Z [Protected] PID 18712, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T22:27:08.577Z [Protected] PID 19768, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T22:28:32.868Z [Protected] PID 14984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:33:32.606Z [Protected] PID 11248, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:38:32.600Z [Protected] PID 12804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:43:32.591Z [Protected] PID 20220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:48:32.512Z [Protected] PID 18924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:52:31.987Z [Protected] PID 20392, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T22:52:32.017Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210035231
2016-12-09T22:53:32.486Z [Protected] PID 19696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:55:27.111Z [Protected] PID 21044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:57:00.246Z [Protected] PID 18900, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T22:57:00.706Z [Protected] PID 18712, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T22:57:00.736Z [Protected] PID 19796, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T22:57:00.867Z [Protected] PID 14604, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T22:58:32.573Z [Protected] PID 12832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T22:59:00.262Z [Protected] PID 20844, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-09T23:03:32.533Z [Protected] PID 21492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:05:04.475Z [Protected] PID 20204, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T23:05:04.506Z [Protected] PID 19436, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-09T23:06:42.656Z [Protected] PID 20924, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T23:06:43.539Z [Protected] PID 19708, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-09T23:08:32.605Z [Protected] PID 15892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:11:26.280Z [Protected] PID 21196, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-09T23:13:32.533Z [Protected] PID 19092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:17:35.995Z [Protected] PID 21432, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-09T23:17:36.086Z [Protected] PID 20320, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T23:17:36.207Z [Protected] PID 17824, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-09T23:17:36.835Z [Protected] PID 13796, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-09T23:17:37.546Z [Protected] PID 20776, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-09T23:18:32.603Z [Protected] PID 14252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:22:32.208Z [Protected] PID 17772, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T23:22:32.228Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210042232
2016-12-09T23:23:00.211Z [Protected] PID 20016, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T23:23:01.191Z [Protected] PID 6652, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-09T23:23:32.606Z [Protected] PID 21052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:23:36.657Z [Protected] PID 20232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T23:23:36.677Z [Protected] PID 21272, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-09T23:23:36.756Z [Protected] PID 21144, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T23:23:36.777Z [Protected] PID 18580, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-09T23:27:07.008Z [Protected] PID 19548, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-09T23:28:32.538Z [Protected] PID 19480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:33:32.615Z [Protected] PID 20192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:38:32.656Z [Protected] PID 14252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:41:00.236Z [Protected] PID 20192, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T23:41:00.649Z [Protected] PID 20208, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-09T23:43:32.581Z [Protected] PID 21276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:48:32.482Z [Protected] PID 20868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:52:32.360Z [Protected] PID 19128, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-09T23:52:32.396Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210045232
2016-12-09T23:53:09.343Z [Protected] PID 18916, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T23:53:09.355Z [Protected] PID 17772, Features 000000300000010A, C:\Windows\System32\compattelrunner.exe
2016-12-09T23:53:09.485Z [Protected] PID 20384, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-09T23:53:32.610Z [Protected] PID 21180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:57:00.129Z [Protected] PID 11664, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-09T23:57:00.431Z [Protected] PID 12340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-09T23:57:00.452Z [Protected] PID 20436, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T23:57:00.587Z [Protected] PID 20196, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-09T23:58:32.583Z [Protected] PID 19656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-09T23:59:00.304Z [Protected] PID 14020, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T00:00:01.343Z [Protected] PID 21356, Features 000000300000010A, C:\Windows\System32\rundll32.exe
2016-12-10T00:00:02.855Z [Protected] PID 21420, Features 000000300000010A, C:\Windows\System32\VSSVC.exe
2016-12-10T00:00:03.253Z [Protected] PID 19704, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-10T00:03:32.663Z [Protected] PID 21220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:04:44.592Z [Protected] PID 20756, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T00:08:32.677Z [Protected] PID 14768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:13:32.576Z [Protected] PID 19092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:18:32.466Z [Protected] PID 21116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:22:11.601Z [Protected] PID 20600, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T00:22:32.550Z [Protected] PID 18832, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T00:22:32.589Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210052232
2016-12-10T00:23:00.193Z [Protected] PID 19588, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T00:23:00.813Z [Protected] PID 21184, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T00:23:32.571Z [Protected] PID 20288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:23:36.958Z [Protected] PID 19480, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T00:23:36.961Z [Protected] PID 20440, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T00:23:37.071Z [Protected] PID 19644, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T00:23:37.081Z [Protected] PID 20568, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T00:24:38.877Z [Protected] PID 16808, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-10T00:25:43.684Z [Protected] PID 20564, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T00:25:43.838Z [Protected] PID 20360, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T00:27:05.488Z [Protected] PID 21016, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T00:28:32.591Z [Protected] PID 18992, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:33:32.518Z [Protected] PID 21436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:38:32.608Z [Protected] PID 20808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:43:32.592Z [Protected] PID 20344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:49:32.563Z [Protected] PID 20188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:52:32.635Z [Protected] PID 17500, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T00:52:32.675Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210055232
2016-12-10T00:53:32.630Z [Protected] PID 20336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:57:00.088Z [Protected] PID 18688, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T00:57:00.437Z [Protected] PID 19104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T00:57:00.467Z [Protected] PID 17412, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T00:57:00.594Z [Protected] PID 17472, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T00:58:32.653Z [Protected] PID 17444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T00:59:00.254Z [Protected] PID 19580, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T01:03:32.569Z [Protected] PID 21128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:08:32.593Z [Protected] PID 19688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:11:40.790Z [Protected] PID 18644, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T01:13:32.634Z [Protected] PID 20196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:16:40.649Z [Protected] PID 3696, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T01:16:40.728Z [Protected] PID 18332, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T01:16:40.804Z [Protected] PID 19692, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T01:16:41.184Z [Protected] PID 19344, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T01:16:41.408Z [Protected] PID 21432, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T01:18:32.610Z [Protected] PID 19868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:21:59.130Z [Protected] PID 19692, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T01:21:59.492Z [Protected] PID 20032, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-10T01:22:32.786Z [Protected] PID 13120, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T01:22:32.825Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210062232
2016-12-10T01:23:00.177Z [Protected] PID 20388, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T01:23:00.729Z [Protected] PID 20472, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T01:23:32.604Z [Protected] PID 20856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:23:37.186Z [Protected] PID 19684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T01:23:37.204Z [Protected] PID 19300, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T01:23:37.306Z [Protected] PID 17640, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T01:23:37.334Z [Protected] PID 19424, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T01:27:05.364Z [Protected] PID 20160, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T01:28:32.590Z [Protected] PID 19140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:33:32.590Z [Protected] PID 18444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:38:32.544Z [Protected] PID 20440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:41:00.165Z [Protected] PID 20308, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T01:41:00.659Z [Protected] PID 20412, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T01:43:32.537Z [Protected] PID 18512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:48:32.488Z [Protected] PID 20584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:52:32.983Z [Protected] PID 20028, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T01:52:33.023Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210065232
2016-12-10T01:53:32.647Z [Protected] PID 16952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:57:00.179Z [Protected] PID 14744, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T01:57:00.556Z [Protected] PID 14496, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T01:57:00.581Z [Protected] PID 19368, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T01:57:00.725Z [Protected] PID 18544, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T01:58:32.588Z [Protected] PID 15440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T01:59:00.231Z [Protected] PID 20892, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T02:01:22.976Z [Protected] PID 21304, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T02:03:32.586Z [Protected] PID 20648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:08:32.629Z [Protected] PID 8600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:13:32.653Z [Protected] PID 21344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:18:32.599Z [Protected] PID 18992, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:22:33.164Z [Protected] PID 21500, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T02:22:33.204Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210072233
2016-12-10T02:23:00.178Z [Protected] PID 21184, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T02:23:00.658Z [Protected] PID 19840, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T02:23:32.502Z [Protected] PID 21220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:23:37.475Z [Protected] PID 17640, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T02:23:37.485Z [Protected] PID 19628, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T02:23:37.573Z [Protected] PID 20340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T02:23:37.583Z [Protected] PID 21052, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T02:27:05.323Z [Protected] PID 21408, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T02:28:32.634Z [Protected] PID 18564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:30:00.679Z [Protected] PID 19600, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T02:30:00.689Z [Protected] PID 20124, Features 000000300000010A, C:\Windows\System32\aitagent.exe
2016-12-10T02:33:32.520Z [Protected] PID 10852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:36:42.867Z [Protected] PID 14984, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T02:36:43.237Z [Protected] PID 13588, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T02:38:32.653Z [Protected] PID 21484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:38:44.394Z [Protected] PID 18444, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T02:38:44.554Z [Protected] PID 11668, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T02:43:32.625Z [Protected] PID 14312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:48:32.550Z [Protected] PID 18308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:52:33.334Z [Protected] PID 21484, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T02:52:33.386Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210075233
2016-12-10T02:53:32.673Z [Protected] PID 21068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:55:45.122Z [Protected] PID 20560, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T02:55:45.183Z [Protected] PID 19960, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T02:55:45.260Z [Protected] PID 19416, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T02:55:45.782Z [Protected] PID 20448, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T02:55:46.042Z [Protected] PID 17640, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T02:57:00.172Z [Protected] PID 13336, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T02:57:00.538Z [Protected] PID 19756, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T02:57:00.573Z [Protected] PID 20824, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T02:57:00.723Z [Protected] PID 19080, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T02:58:32.666Z [Protected] PID 13196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T02:59:00.240Z [Protected] PID 15916, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T02:59:18.663Z [Protected] PID 18552, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T03:03:32.595Z [Protected] PID 5444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:08:32.474Z [Protected] PID 21164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:09:07.818Z [Protected] PID 20988, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T03:09:07.829Z [Protected] PID 16432, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-10T03:09:08.008Z [Protected] PID 19224, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T03:09:08.028Z [Protected] PID 21052, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-10T03:09:08.138Z [Protected] PID 20616, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-10T03:09:11.750Z [Protected] PID 19300, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-10T03:09:12.191Z [Protected] PID 20624, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-10T03:13:32.466Z [Protected] PID 20576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:13:35.269Z [Protected] PID 21324, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T03:14:16.203Z [Protected] PID 20236, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-10T03:14:16.999Z [Protected] PID 19924, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-10T03:18:32.720Z [Protected] PID 21152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:22:33.545Z [Protected] PID 18616, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T03:22:33.585Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210082233
2016-12-10T03:23:00.419Z [Protected] PID 21240, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T03:23:01.701Z [Protected] PID 17260, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T03:23:32.484Z [Protected] PID 17204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:23:37.894Z [Protected] PID 19800, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T03:23:37.904Z [Protected] PID 12368, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T03:23:38.264Z [Protected] PID 19272, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T03:23:38.294Z [Protected] PID 17640, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T03:27:07.105Z [Protected] PID 8600, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T03:28:32.838Z [Protected] PID 19856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:33:32.590Z [Protected] PID 21396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:38:32.584Z [Protected] PID 14144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:41:00.375Z [Protected] PID 20852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T03:41:01.556Z [Protected] PID 20924, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T03:43:32.608Z [Protected] PID 19656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:48:32.581Z [Protected] PID 19972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:52:33.724Z [Protected] PID 21264, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T03:52:33.788Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210085233
2016-12-10T03:53:32.594Z [Protected] PID 1456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:57:00.194Z [Protected] PID 19656, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T03:57:00.574Z [Protected] PID 20708, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T03:57:00.594Z [Protected] PID 18920, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T03:57:00.735Z [Protected] PID 21464, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T03:58:32.658Z [Protected] PID 18808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T03:59:00.262Z [Protected] PID 14140, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T04:03:32.681Z [Protected] PID 20808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:08:32.634Z [Protected] PID 16608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:10:40.515Z [Protected] PID 18144, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T04:13:32.668Z [Protected] PID 19396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:18:32.541Z [Protected] PID 15696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:22:33.946Z [Protected] PID 19700, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T04:22:33.986Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210092233
2016-12-10T04:23:00.092Z [Protected] PID 19648, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T04:23:00.890Z [Protected] PID 20408, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T04:23:11.373Z [Protected] PID 20768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:23:11.413Z [Protected] PID 20668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:23:32.415Z [Protected] PID 16440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:23:38.606Z [Protected] PID 14496, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T04:23:38.626Z [Protected] PID 18964, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T04:23:38.856Z [Protected] PID 21144, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T04:23:38.876Z [Protected] PID 17696, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T04:27:05.556Z [Protected] PID 16956, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T04:27:38.630Z [Protected] PID 12368, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-10T04:28:04.445Z [Protected] PID 20904, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T04:28:04.654Z [Protected] PID 15700, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T04:28:32.819Z [Protected] PID 21412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:33:32.542Z [Protected] PID 21040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:38:32.447Z [Protected] PID 20932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:43:32.579Z [Protected] PID 19532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:47:49.906Z [Protected] PID 1456, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T04:47:49.986Z [Protected] PID 17260, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T04:47:50.206Z [Protected] PID 19680, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T04:47:50.847Z [Protected] PID 19084, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T04:47:51.736Z [Protected] PID 20212, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T04:48:32.622Z [Protected] PID 19176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:52:34.127Z [Protected] PID 21396, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T04:52:34.147Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210095233
2016-12-10T04:53:32.645Z [Protected] PID 3532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:57:00.196Z [Protected] PID 13696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T04:57:00.476Z [Protected] PID 12804, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T04:57:00.486Z [Protected] PID 19728, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T04:57:00.556Z [Protected] PID 21352, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T04:58:32.599Z [Protected] PID 20000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T04:59:00.263Z [Protected] PID 18640, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T04:59:58.261Z [Protected] PID 17596, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T05:00:02.322Z [Protected] PID 21176, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T05:00:02.552Z [Protected] PID 20860, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T05:00:08.833Z [Protected] PID 20840, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T05:00:12.723Z [Protected] PID 13316, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-10T05:00:17.024Z [Protected] PID 21208, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T05:00:28.236Z [Protected] PID 17704, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-10T05:01:35.325Z [Protected] PID 19868, Features 000000300000010A, C:\Windows\servicing\TrustedInstaller.exe
2016-12-10T05:02:05.130Z [Protected] PID 21312, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:02:05.150Z [Protected] PID 19204, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-10T05:02:05.174Z [Protected] PID 14360, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:02:05.176Z [Protected] PID 21068, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:02:05.188Z [Protected] PID 20208, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-10T05:02:05.190Z [Protected] PID 18856, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-10T05:02:05.614Z [Protected] PID 18920, Features 0000003000000102, C:\Windows\System32\NETSTAT.EXE
2016-12-10T05:02:06.040Z [Protected] PID 19472, Features 0000003000000102, C:\Windows\System32\tasklist.exe
2016-12-10T05:02:07.090Z [Protected] PID 18636, Features 000000361FBF0102, C:\Windows\System32\wscript.exe
2016-12-10T05:02:17.642Z [Protected] PID 19344, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-10T05:03:32.583Z [Protected] PID 17852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:03:40.724Z [Protected] PID 20252, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T05:08:32.596Z [Protected] PID 16380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:13:32.659Z [Protected] PID 12152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:18:32.514Z [Protected] PID 17848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:20:31.370Z [Protected] PID 16616, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-10T05:22:34.231Z [Protected] PID 19528, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T05:22:34.270Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210102234
2016-12-10T05:23:00.124Z [Protected] PID 13696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T05:23:00.631Z [Protected] PID 20000, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T05:23:32.544Z [Protected] PID 21396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:23:39.084Z [Protected] PID 17556, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:23:39.094Z [Protected] PID 20148, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T05:23:39.414Z [Protected] PID 21260, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:23:39.424Z [Protected] PID 19344, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T05:27:05.425Z [Protected] PID 19128, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T05:28:32.599Z [Protected] PID 19612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:33:32.654Z [Protected] PID 20576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:35:25.359Z [Protected] PID 20736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:35:25.375Z [Protected] PID 16508, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T05:38:33.216Z [Protected] PID 20156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:41:00.557Z [Protected] PID 19384, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T05:41:01.147Z [Protected] PID 18044, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T05:43:32.579Z [Protected] PID 21188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:48:32.636Z [Protected] PID 19888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:52:34.417Z [Protected] PID 12368, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T05:52:34.447Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210105234
2016-12-10T05:53:32.456Z [Protected] PID 15048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:57:00.167Z [Protected] PID 17728, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T05:57:00.559Z [Protected] PID 19380, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T05:57:00.571Z [Protected] PID 19688, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T05:57:00.726Z [Protected] PID 6284, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T05:58:32.439Z [Protected] PID 20268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T05:59:00.323Z [Protected] PID 16620, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T06:00:00.848Z [Protected] PID 20624, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-10T06:00:01.462Z [Protected] PID 19368, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T06:00:01.483Z [Protected] PID 11668, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-10T06:03:32.523Z [Protected] PID 20516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:06:43.790Z [Protected] PID 17444, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T06:06:44.411Z [Protected] PID 20416, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T06:08:32.526Z [Protected] PID 20060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:09:56.028Z [Protected] PID 16620, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T06:13:32.549Z [Protected] PID 20304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:18:32.503Z [Protected] PID 20144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:22:34.588Z [Protected] PID 20660, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T06:22:34.628Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210112234
2016-12-10T06:22:54.591Z [Protected] PID 17472, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T06:22:54.661Z [Protected] PID 19424, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T06:22:54.782Z [Protected] PID 19092, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T06:22:55.363Z [Protected] PID 21280, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T06:22:56.175Z [Protected] PID 16076, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T06:23:00.152Z [Protected] PID 20792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T06:23:01.172Z [Protected] PID 16980, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T06:23:32.598Z [Protected] PID 13500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:23:39.707Z [Protected] PID 15048, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T06:23:39.717Z [Protected] PID 18688, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T06:23:39.807Z [Protected] PID 21232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T06:23:39.817Z [Protected] PID 18896, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T06:27:06.747Z [Protected] PID 15864, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T06:28:32.581Z [Protected] PID 15440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:33:32.663Z [Protected] PID 9660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:38:32.578Z [Protected] PID 20308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:43:32.541Z [Protected] PID 20932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:48:32.444Z [Protected] PID 21392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:52:34.760Z [Protected] PID 20464, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T06:52:34.801Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210115234
2016-12-10T06:53:32.518Z [Protected] PID 19616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:57:00.147Z [Protected] PID 20956, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T06:57:00.528Z [Protected] PID 15092, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T06:57:00.608Z [Protected] PID 18672, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T06:57:00.758Z [Protected] PID 12572, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T06:58:32.671Z [Protected] PID 11664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T06:59:00.249Z [Protected] PID 21064, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T07:03:32.564Z [Protected] PID 18328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:08:17.215Z [Protected] PID 20864, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T07:08:32.577Z [Protected] PID 20152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:13:32.661Z [Protected] PID 12372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:18:32.594Z [Protected] PID 19096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:20:01.073Z [Protected] PID 19344, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T07:20:01.647Z [Protected] PID 10248, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-10T07:20:02.327Z [Protected] PID 19436, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-10T07:22:34.949Z [Protected] PID 21224, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T07:22:34.999Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210122234
2016-12-10T07:23:00.171Z [Protected] PID 15892, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T07:23:00.646Z [Protected] PID 20004, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T07:23:32.500Z [Protected] PID 18976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:23:40.009Z [Protected] PID 21492, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T07:23:40.029Z [Protected] PID 20936, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T07:23:40.119Z [Protected] PID 19884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T07:23:40.129Z [Protected] PID 6652, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T07:27:05.259Z [Protected] PID 20344, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T07:28:32.571Z [Protected] PID 20228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:33:32.565Z [Protected] PID 19972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:38:32.528Z [Protected] PID 19572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:41:00.190Z [Protected] PID 20320, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T07:41:00.710Z [Protected] PID 21472, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T07:43:32.666Z [Protected] PID 14324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:48:32.635Z [Protected] PID 19188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:52:35.071Z [Protected] PID 20648, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T07:52:35.081Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210125235
2016-12-10T07:53:32.578Z [Protected] PID 21008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:57:00.168Z [Protected] PID 18444, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T07:57:00.528Z [Protected] PID 20616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T07:57:00.558Z [Protected] PID 11664, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T07:57:00.698Z [Protected] PID 18628, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T07:58:32.612Z [Protected] PID 19960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T07:59:00.266Z [Protected] PID 16420, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T07:59:23.389Z [Protected] PID 19568, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T08:00:00.174Z [Protected] PID 19872, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T08:00:00.425Z [Protected] PID 21420, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T08:01:22.358Z [Protected] PID 10320, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T08:03:32.675Z [Protected] PID 15892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:07:59.484Z [Protected] PID 19060, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T08:07:59.555Z [Protected] PID 20880, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T08:07:59.634Z [Protected] PID 19824, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T08:08:00.344Z [Protected] PID 19692, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T08:08:02.054Z [Protected] PID 19936, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T08:08:32.599Z [Protected] PID 15864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:13:32.642Z [Protected] PID 19864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:18:32.556Z [Protected] PID 21484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:22:12.988Z [Protected] PID 20776, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T08:22:35.241Z [Protected] PID 5184, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T08:22:35.281Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210132235
2016-12-10T08:23:00.154Z [Protected] PID 20308, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T08:23:00.674Z [Protected] PID 5344, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T08:23:32.530Z [Protected] PID 20256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:23:40.310Z [Protected] PID 20696, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T08:23:40.320Z [Protected] PID 19668, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T08:23:40.400Z [Protected] PID 18416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T08:23:40.420Z [Protected] PID 19676, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T08:24:39.699Z [Protected] PID 19064, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-10T08:27:05.262Z [Protected] PID 20836, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T08:28:32.672Z [Protected] PID 14252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:33:32.666Z [Protected] PID 6884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:38:32.600Z [Protected] PID 20792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:43:32.494Z [Protected] PID 21396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:45:36.153Z [Protected] PID 14720, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T08:45:36.163Z [Protected] PID 21240, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T08:48:32.763Z [Protected] PID 20412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:52:35.453Z [Protected] PID 19868, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T08:52:35.473Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210135235
2016-12-10T08:53:32.442Z [Protected] PID 19976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:54:38.918Z [Protected] PID 20840, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T08:54:39.121Z [Protected] PID 15916, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-10T08:57:00.139Z [Protected] PID 21196, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T08:57:00.520Z [Protected] PID 14720, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T08:57:00.540Z [Protected] PID 19684, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T08:57:00.682Z [Protected] PID 17344, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T08:58:32.555Z [Protected] PID 21036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T08:59:00.245Z [Protected] PID 20308, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T09:03:32.469Z [Protected] PID 21180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:04:11.589Z [Protected] PID 21252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:07:38.582Z [Protected] PID 21488, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T09:08:03.549Z [Protected] PID 20684, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T09:08:03.713Z [Protected] PID 6884, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T09:08:32.553Z [Protected] PID 21284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:10:27.548Z [Protected] PID 18924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:13:32.527Z [Protected] PID 21256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:18:32.707Z [Protected] PID 12644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:22:30.969Z [Protected] PID 16844, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T09:22:31.293Z [Protected] PID 16692, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-10T09:22:35.600Z [Protected] PID 19040, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T09:22:35.632Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210142235
2016-12-10T09:23:00.169Z [Protected] PID 21252, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T09:23:00.802Z [Protected] PID 21000, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T09:23:32.604Z [Protected] PID 20036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:23:40.600Z [Protected] PID 20748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T09:23:40.610Z [Protected] PID 13500, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T09:23:40.710Z [Protected] PID 20600, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T09:23:40.711Z [Protected] PID 15804, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T09:25:35.527Z [Protected] PID 17444, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T09:25:35.663Z [Protected] PID 21364, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T09:27:06.576Z [Protected] PID 20164, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T09:27:40.499Z [Protected] PID 20888, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-10T09:28:06.036Z [Protected] PID 4224, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T09:28:06.202Z [Protected] PID 18596, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T09:28:32.705Z [Protected] PID 20048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:33:32.614Z [Protected] PID 19096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:36:43.775Z [Protected] PID 20220, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T09:36:44.118Z [Protected] PID 20024, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T09:38:32.524Z [Protected] PID 20792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:41:00.235Z [Protected] PID 20088, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T09:43:32.612Z [Protected] PID 19600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:48:32.592Z [Protected] PID 19136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:52:35.798Z [Protected] PID 17952, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T09:52:35.828Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210145235
2016-12-10T09:53:32.576Z [Protected] PID 16808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:57:00.141Z [Protected] PID 21064, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T09:57:00.476Z [Protected] PID 20608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T09:57:00.496Z [Protected] PID 20472, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T09:57:00.559Z [Protected] PID 21468, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T09:58:32.589Z [Protected] PID 19096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T09:59:00.166Z [Protected] PID 20440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T10:00:00.742Z [Protected] PID 19504, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-10T10:01:53.678Z [Protected] PID 21168, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T10:02:05.171Z [Protected] PID 19248, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T10:02:06.146Z [Protected] PID 18580, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T10:02:06.300Z [Protected] PID 16952, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T10:02:07.370Z [Protected] PID 1456, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T10:02:07.785Z [Protected] PID 19836, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T10:03:32.611Z [Protected] PID 19596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:08:32.566Z [Protected] PID 17472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:13:32.539Z [Protected] PID 18540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:18:32.554Z [Protected] PID 18044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:22:35.966Z [Protected] PID 19600, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T10:22:36.029Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210152235
2016-12-10T10:23:00.184Z [Protected] PID 20592, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T10:23:00.563Z [Protected] PID 18280, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T10:23:32.622Z [Protected] PID 18564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:23:40.979Z [Protected] PID 12372, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T10:23:40.990Z [Protected] PID 20076, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T10:23:41.299Z [Protected] PID 19856, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T10:23:41.309Z [Protected] PID 20288, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T10:25:36.826Z [Protected] PID 21312, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T10:25:36.836Z [Protected] PID 20948, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T10:27:07.243Z [Protected] PID 19332, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T10:28:32.691Z [Protected] PID 20272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:33:32.680Z [Protected] PID 15760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:35:47.120Z [Protected] PID 18640, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T10:35:47.123Z [Protected] PID 20504, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T10:38:32.862Z [Protected] PID 19612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:43:32.639Z [Protected] PID 20152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:48:32.622Z [Protected] PID 11664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:52:36.189Z [Protected] PID 19192, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T10:52:36.204Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210155236
2016-12-10T10:53:32.747Z [Protected] PID 18564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:57:00.258Z [Protected] PID 17596, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T10:57:00.610Z [Protected] PID 4200, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T10:57:00.630Z [Protected] PID 20208, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T10:57:00.747Z [Protected] PID 19708, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T10:58:32.546Z [Protected] PID 20580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T10:59:00.235Z [Protected] PID 19556, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T11:03:32.534Z [Protected] PID 18688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:08:32.625Z [Protected] PID 20636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:10:17.894Z [Protected] PID 12152, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T11:13:32.595Z [Protected] PID 21496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:18:32.579Z [Protected] PID 5324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:22:36.362Z [Protected] PID 20728, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T11:22:36.412Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210162236
2016-12-10T11:23:00.124Z [Protected] PID 13720, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T11:23:00.807Z [Protected] PID 17012, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T11:23:32.472Z [Protected] PID 21324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:23:41.562Z [Protected] PID 17524, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T11:23:41.572Z [Protected] PID 19372, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T11:23:41.675Z [Protected] PID 19592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T11:23:41.685Z [Protected] PID 21012, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T11:27:06.692Z [Protected] PID 2884, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T11:28:32.558Z [Protected] PID 20824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:33:32.660Z [Protected] PID 16576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:38:32.664Z [Protected] PID 18544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:39:11.550Z [Protected] PID 20312, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T11:39:11.662Z [Protected] PID 19812, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T11:39:11.783Z [Protected] PID 17596, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T11:39:12.474Z [Protected] PID 15104, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T11:39:13.310Z [Protected] PID 18528, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T11:41:00.166Z [Protected] PID 19620, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T11:41:00.704Z [Protected] PID 19088, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T11:43:32.574Z [Protected] PID 18292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:48:32.651Z [Protected] PID 20644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:52:36.540Z [Protected] PID 20608, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T11:52:36.607Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210165236
2016-12-10T11:53:32.511Z [Protected] PID 15864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:57:00.194Z [Protected] PID 13904, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T11:57:00.575Z [Protected] PID 9020, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T11:57:00.608Z [Protected] PID 20120, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T11:57:00.740Z [Protected] PID 19548, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T11:58:32.617Z [Protected] PID 19596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T11:59:00.271Z [Protected] PID 20060, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T12:00:00.151Z [Protected] PID 20508, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe
2016-12-10T12:01:17.438Z [Protected] PID 19392, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T12:03:32.602Z [Protected] PID 17824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:08:32.542Z [Protected] PID 20620, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:13:32.568Z [Protected] PID 19588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:18:32.483Z [Protected] PID 14472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:22:36.765Z [Protected] PID 21472, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T12:22:36.800Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210172236
2016-12-10T12:23:00.119Z [Protected] PID 20928, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T12:23:00.909Z [Protected] PID 19324, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T12:23:32.490Z [Protected] PID 21352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:23:41.836Z [Protected] PID 17164, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T12:23:41.849Z [Protected] PID 20288, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T12:23:41.947Z [Protected] PID 18536, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T12:23:41.959Z [Protected] PID 21216, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T12:27:05.299Z [Protected] PID 13504, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T12:28:32.548Z [Protected] PID 21132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:33:32.562Z [Protected] PID 21448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:38:32.515Z [Protected] PID 20696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:43:32.640Z [Protected] PID 15916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:45:55.635Z [Protected] PID 20148, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T12:45:55.652Z [Protected] PID 4080, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T12:48:32.815Z [Protected] PID 21372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:52:36.971Z [Protected] PID 17492, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T12:52:36.991Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210175236
2016-12-10T12:53:32.576Z [Protected] PID 19688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:57:00.550Z [Protected] PID 19692, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T12:57:00.857Z [Protected] PID 19748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T12:57:00.890Z [Protected] PID 20512, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T12:57:01.011Z [Protected] PID 18292, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T12:58:32.634Z [Protected] PID 19532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T12:59:00.258Z [Protected] PID 21236, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T12:59:39.585Z [Protected] PID 18480, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T12:59:39.937Z [Protected] PID 7076, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-10T13:03:32.618Z [Protected] PID 16604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:06:43.806Z [Protected] PID 17040, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T13:06:44.196Z [Protected] PID 20088, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T13:08:32.593Z [Protected] PID 20200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:10:17.037Z [Protected] PID 20688, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T13:10:17.113Z [Protected] PID 20848, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T13:10:17.223Z [Protected] PID 20644, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T13:10:17.833Z [Protected] PID 18592, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T13:10:18.048Z [Protected] PID 18924, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T13:13:32.647Z [Protected] PID 18712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:14:13.860Z [Protected] PID 20120, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T13:18:32.552Z [Protected] PID 21444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:22:37.114Z [Protected] PID 20988, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T13:22:37.169Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210182236
2016-12-10T13:23:00.162Z [Protected] PID 20004, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T13:23:01.091Z [Protected] PID 3532, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T13:23:32.626Z [Protected] PID 21128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:23:42.148Z [Protected] PID 4224, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T13:23:42.157Z [Protected] PID 17444, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T13:23:42.256Z [Protected] PID 21204, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T13:23:42.279Z [Protected] PID 13696, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T13:27:03.279Z [Protected] PID 20664, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T13:27:03.307Z [Protected] PID 17644, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-10T13:27:03.444Z [Protected] PID 17116, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-10T13:27:05.987Z [Protected] PID 19832, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-10T13:27:06.581Z [Protected] PID 15396, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-10T13:27:06.758Z [Protected] PID 13124, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-10T13:27:06.888Z [Protected] PID 14604, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-10T13:27:06.982Z [Protected] PID 13324, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-10T13:27:07.208Z [Protected] PID 21372, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-10T13:27:11.830Z [Protected] PID 21064, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T13:28:32.580Z [Protected] PID 19628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:33:32.645Z [Protected] PID 19588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:38:32.659Z [Protected] PID 20368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:41:00.179Z [Protected] PID 21332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T13:41:00.711Z [Protected] PID 20196, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T13:43:32.675Z [Protected] PID 13672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:45:16.179Z [Protected] PID 19984, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T13:45:16.529Z [Protected] PID 20540, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-10T13:48:32.578Z [Protected] PID 20044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:52:37.305Z [Protected] PID 19392, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T13:52:37.365Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210185237
2016-12-10T13:53:32.623Z [Protected] PID 21352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:57:00.225Z [Protected] PID 19208, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T13:57:00.559Z [Protected] PID 21472, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T13:57:00.579Z [Protected] PID 784, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T13:57:00.686Z [Protected] PID 20308, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T13:58:32.542Z [Protected] PID 21128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T13:59:00.249Z [Protected] PID 21312, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T13:59:05.222Z [Protected] PID 20588, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T14:02:09.193Z [Protected] PID 19752, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T14:03:32.656Z [Protected] PID 16712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:06:03.881Z [Protected] PID 19704, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T14:06:03.895Z [Protected] PID 15740, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T14:08:32.780Z [Protected] PID 14312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:08:40.380Z [Protected] PID 19972, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T14:08:40.510Z [Protected] PID 20124, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T14:08:49.102Z [Protected] PID 20184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:13:32.524Z [Protected] PID 12832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:18:32.466Z [Protected] PID 4696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:22:37.523Z [Protected] PID 20692, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T14:22:37.543Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210192237
2016-12-10T14:23:00.254Z [Protected] PID 17040, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T14:23:00.944Z [Protected] PID 20608, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T14:23:32.529Z [Protected] PID 18720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:23:42.468Z [Protected] PID 18368, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T14:23:42.483Z [Protected] PID 20700, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T14:23:42.617Z [Protected] PID 16376, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T14:23:42.627Z [Protected] PID 9176, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T14:27:06.653Z [Protected] PID 21308, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T14:27:29.798Z [Protected] PID 17820, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-10T14:27:52.934Z [Protected] PID 21212, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T14:27:53.094Z [Protected] PID 20380, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T14:29:32.897Z [Protected] PID 13728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:33:32.552Z [Protected] PID 21092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:38:32.546Z [Protected] PID 19332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:41:22.065Z [Protected] PID 20024, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T14:41:22.145Z [Protected] PID 21044, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T14:41:22.246Z [Protected] PID 13904, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T14:41:23.259Z [Protected] PID 19704, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T14:41:23.429Z [Protected] PID 19400, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T14:43:32.657Z [Protected] PID 20720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:48:32.590Z [Protected] PID 20124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:52:37.636Z [Protected] PID 19664, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T14:52:37.666Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210195237
2016-12-10T14:53:32.605Z [Protected] PID 16576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:57:00.035Z [Protected] PID 5344, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T14:57:00.411Z [Protected] PID 20808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T14:57:00.430Z [Protected] PID 20020, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T14:57:00.514Z [Protected] PID 17704, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T14:58:32.627Z [Protected] PID 15720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T14:59:00.249Z [Protected] PID 19016, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T15:03:32.532Z [Protected] PID 21040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:06:47.816Z [Protected] PID 21444, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T15:08:32.585Z [Protected] PID 18088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:13:32.680Z [Protected] PID 20452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:18:32.484Z [Protected] PID 21036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:22:37.808Z [Protected] PID 17468, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T15:22:37.859Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210202237
2016-12-10T15:23:00.178Z [Protected] PID 19696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T15:23:00.590Z [Protected] PID 21156, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T15:23:32.597Z [Protected] PID 17372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:23:42.787Z [Protected] PID 21076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T15:23:42.797Z [Protected] PID 20692, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T15:23:43.099Z [Protected] PID 196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T15:23:43.109Z [Protected] PID 16740, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T15:27:05.344Z [Protected] PID 16564, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T15:28:32.598Z [Protected] PID 20124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:33:32.683Z [Protected] PID 15048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:38:32.655Z [Protected] PID 19440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:41:00.179Z [Protected] PID 18776, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T15:41:00.599Z [Protected] PID 17204, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T15:43:32.589Z [Protected] PID 19500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:48:32.672Z [Protected] PID 20740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:49:47.893Z [Protected] PID 17728, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T15:50:39.310Z [Protected] PID 20136, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T15:52:37.998Z [Protected] PID 18928, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T15:52:38.048Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210205237
2016-12-10T15:53:32.536Z [Protected] PID 20644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T15:57:00.146Z [Protected] PID 19848, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T15:57:00.506Z [Protected] PID 12616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T15:57:00.526Z [Protected] PID 19220, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T15:57:00.666Z [Protected] PID 19980, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T15:57:19.715Z [Protected] PID 12644, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T15:58:03.936Z [Protected] PID 20908, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T15:59:00.243Z [Protected] PID 21144, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T16:13:33.122Z [Protected] PID 15048, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T16:22:14.327Z [Protected] PID 17848, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T16:22:38.189Z [Protected] PID 20588, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T16:22:38.230Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210212238
2016-12-10T16:23:00.175Z [Protected] PID 19288, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T16:23:00.743Z [Protected] PID 16772, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T16:23:43.393Z [Protected] PID 20424, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T16:23:43.413Z [Protected] PID 21372, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T16:23:43.503Z [Protected] PID 21184, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T16:23:43.513Z [Protected] PID 20976, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T16:24:40.619Z [Protected] PID 20024, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-10T16:27:05.211Z [Protected] PID 16076, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T16:36:44.693Z [Protected] PID 18696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T16:36:45.194Z [Protected] PID 20208, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T16:52:38.372Z [Protected] PID 20196, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T16:52:38.402Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210215238
2016-12-10T16:57:00.171Z [Protected] PID 17164, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T16:57:00.560Z [Protected] PID 18940, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T16:57:00.580Z [Protected] PID 17596, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T16:57:00.720Z [Protected] PID 14956, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T16:59:00.222Z [Protected] PID 19440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T17:11:43.277Z [Protected] PID 19460, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T17:22:38.542Z [Protected] PID 19088, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T17:22:38.583Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210222238
2016-12-10T17:23:00.153Z [Protected] PID 20548, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T17:23:00.647Z [Protected] PID 20084, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T17:23:43.711Z [Protected] PID 7864, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T17:23:43.721Z [Protected] PID 21036, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T17:23:43.813Z [Protected] PID 20236, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T17:23:43.823Z [Protected] PID 19516, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T17:27:05.133Z [Protected] PID 20892, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T17:41:00.182Z [Protected] PID 18308, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T17:41:00.673Z [Protected] PID 16700, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T17:52:38.734Z [Protected] PID 21056, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T17:52:38.779Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210225238
2016-12-10T17:57:00.163Z [Protected] PID 19556, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T17:57:00.553Z [Protected] PID 20064, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T17:57:00.574Z [Protected] PID 19788, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T17:57:00.722Z [Protected] PID 6376, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T17:59:00.213Z [Protected] PID 19084, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T18:01:09.598Z [Protected] PID 16740, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T18:22:38.942Z [Protected] PID 20288, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T18:22:38.992Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210232238
2016-12-10T18:23:00.139Z [Protected] PID 20132, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T18:23:00.688Z [Protected] PID 16440, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T18:23:43.995Z [Protected] PID 14000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T18:23:44.005Z [Protected] PID 12368, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T18:23:44.085Z [Protected] PID 20000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T18:23:44.095Z [Protected] PID 20916, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T18:27:03.066Z [Protected] PID 21112, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T18:36:18.455Z [Protected] PID 20336, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-10T18:47:53.373Z [Protected] PID 19784, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T18:48:32.516Z [Protected] PID 21080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T18:52:39.138Z [Protected] PID 15648, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T18:52:39.188Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161210235239
2016-12-10T18:53:32.454Z [Protected] PID 21152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T18:57:00.157Z [Protected] PID 19436, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T18:57:00.479Z [Protected] PID 21352, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T18:57:00.489Z [Protected] PID 21096, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T18:57:00.564Z [Protected] PID 21236, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T18:58:32.618Z [Protected] PID 21184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T18:59:00.261Z [Protected] PID 18512, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T18:59:53.040Z [Protected] PID 14304, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T19:03:32.575Z [Protected] PID 19728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:08:32.594Z [Protected] PID 20352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:13:01.916Z [Protected] PID 15060, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T19:13:32.540Z [Protected] PID 18884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:15:55.299Z [Protected] PID 19284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:18:32.502Z [Protected] PID 21156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:22:39.307Z [Protected] PID 6336, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T19:22:39.331Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211002239
2016-12-10T19:23:00.120Z [Protected] PID 17628, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T19:23:00.430Z [Protected] PID 19724, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T19:23:00.634Z [Protected] PID 20216, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T19:23:32.485Z [Protected] PID 3696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:23:44.277Z [Protected] PID 21272, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T19:23:44.287Z [Protected] PID 14496, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T19:23:44.377Z [Protected] PID 20416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T19:23:44.387Z [Protected] PID 20040, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T19:23:53.198Z [Protected] PID 19864, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T19:27:03.076Z [Protected] PID 18936, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T19:27:25.089Z [Protected] PID 20136, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-10T19:27:35.909Z [Protected] PID 20492, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T19:27:36.090Z [Protected] PID 18696, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T19:28:32.778Z [Protected] PID 17260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:33:32.662Z [Protected] PID 14312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:38:32.596Z [Protected] PID 21364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:41:00.198Z [Protected] PID 7376, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T19:41:00.788Z [Protected] PID 20324, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T19:43:32.598Z [Protected] PID 20440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:48:32.493Z [Protected] PID 18536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:52:39.517Z [Protected] PID 18892, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T19:52:39.537Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211005239
2016-12-10T19:53:32.535Z [Protected] PID 18272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:57:00.180Z [Protected] PID 20260, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T19:57:00.546Z [Protected] PID 20512, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T19:57:00.576Z [Protected] PID 19992, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T19:57:00.717Z [Protected] PID 19220, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T19:58:32.640Z [Protected] PID 19636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T19:59:00.183Z [Protected] PID 18272, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T19:59:00.183Z [Protected] PID 19076, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T19:59:00.424Z [Protected] PID 21420, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T19:59:00.583Z [Protected] PID 19368, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-10T19:59:00.594Z [Protected] PID 14140, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-10T20:02:27.223Z [Protected] PID 21220, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T20:03:32.582Z [Protected] PID 20540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:06:44.710Z [Protected] PID 19368, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T20:06:45.090Z [Protected] PID 21476, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T20:08:32.645Z [Protected] PID 19836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:13:32.619Z [Protected] PID 19536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:18:32.502Z [Protected] PID 19752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:22:39.698Z [Protected] PID 15760, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T20:22:39.748Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211012239
2016-12-10T20:23:00.163Z [Protected] PID 20664, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T20:23:00.576Z [Protected] PID 6372, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T20:23:32.666Z [Protected] PID 18052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:23:44.608Z [Protected] PID 21036, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T20:23:44.618Z [Protected] PID 5200, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T20:23:44.719Z [Protected] PID 19564, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T20:23:44.730Z [Protected] PID 7076, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T20:24:34.175Z [Protected] PID 19640, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T20:24:34.275Z [Protected] PID 7864, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T20:24:34.965Z [Protected] PID 16416, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T20:24:35.235Z [Protected] PID 14684, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T20:27:03.166Z [Protected] PID 16692, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T20:28:32.620Z [Protected] PID 15392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:36.056Z [Protected] PID 21064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:36.306Z [Protected] PID 15864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:36.496Z [Protected] PID 20996, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:36.666Z [Protected] PID 19656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:36.836Z [Protected] PID 20472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:37.027Z [Protected] PID 16604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:37.197Z [Protected] PID 19564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:37.356Z [Protected] PID 20548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:37.516Z [Protected] PID 21068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:37.707Z [Protected] PID 16616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:31:37.887Z [Protected] PID 20124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:33:32.393Z [Protected] PID 20920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:38:32.466Z [Protected] PID 20908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:43:32.581Z [Protected] PID 17820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:48:32.429Z [Protected] PID 20892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:52:39.889Z [Protected] PID 18968, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T20:52:39.939Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211015239
2016-12-10T20:53:32.577Z [Protected] PID 20084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:54:39.748Z [Protected] PID 20608, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T20:54:39.958Z [Protected] PID 19804, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-10T20:57:00.139Z [Protected] PID 20852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T20:57:00.490Z [Protected] PID 19632, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T20:57:00.510Z [Protected] PID 19876, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T20:57:00.660Z [Protected] PID 21204, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T20:58:32.561Z [Protected] PID 14604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T20:59:00.206Z [Protected] PID 19204, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T21:00:12.775Z [Protected] PID 18364, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-10T21:00:13.096Z [Protected] PID 3696, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-10T21:03:32.516Z [Protected] PID 19632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:08:32.509Z [Protected] PID 20944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:13:32.511Z [Protected] PID 7376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:14:10.606Z [Protected] PID 19124, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T21:18:32.627Z [Protected] PID 18972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:22:40.070Z [Protected] PID 17372, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T21:22:40.120Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211022239
2016-12-10T21:23:00.156Z [Protected] PID 19924, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T21:23:00.894Z [Protected] PID 19192, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T21:23:32.530Z [Protected] PID 15048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:23:44.973Z [Protected] PID 18728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T21:23:44.983Z [Protected] PID 19552, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T21:23:45.112Z [Protected] PID 20840, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T21:23:45.122Z [Protected] PID 20860, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T21:27:03.021Z [Protected] PID 21428, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T21:28:32.584Z [Protected] PID 19636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:33:32.657Z [Protected] PID 18616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:38:32.628Z [Protected] PID 20660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:41:00.170Z [Protected] PID 21128, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T21:41:00.662Z [Protected] PID 17012, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T21:43:32.655Z [Protected] PID 18292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:48:32.587Z [Protected] PID 21500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:52:40.274Z [Protected] PID 20756, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T21:52:40.314Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211025240
2016-12-10T21:53:32.492Z [Protected] PID 18524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:57:00.133Z [Protected] PID 20084, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T21:57:00.531Z [Protected] PID 19176, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T21:57:00.541Z [Protected] PID 17436, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T21:57:00.640Z [Protected] PID 18536, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T21:58:32.595Z [Protected] PID 20884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T21:59:00.249Z [Protected] PID 20996, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T22:00:00.541Z [Protected] PID 18544, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-10T22:00:01.097Z [Protected] PID 784, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-10T22:00:01.399Z [Protected] PID 20800, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-10T22:03:32.716Z [Protected] PID 21480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:03:43.278Z [Protected] PID 19832, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T22:08:32.985Z [Protected] PID 20860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:11:39.508Z [Protected] PID 14892, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-10T22:11:40.087Z [Protected] PID 3532, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T22:11:40.305Z [Protected] PID 17696, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-10T22:11:40.878Z [Protected] PID 14496, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-10T22:11:41.800Z [Protected] PID 18512, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-10T22:13:33.073Z [Protected] PID 16416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:18:32.982Z [Protected] PID 20404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:22:40.572Z [Protected] PID 19088, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T22:22:40.602Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211032240
2016-12-10T22:23:00.446Z [Protected] PID 18968, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T22:23:02.087Z [Protected] PID 19744, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T22:23:32.655Z [Protected] PID 17908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:23:45.614Z [Protected] PID 20228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T22:23:45.662Z [Protected] PID 21128, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T22:23:46.007Z [Protected] PID 12804, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T22:23:46.017Z [Protected] PID 20800, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T22:27:06.601Z [Protected] PID 18728, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T22:27:38.545Z [Protected] PID 18304, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-10T22:28:04.658Z [Protected] PID 20624, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T22:28:05.059Z [Protected] PID 19440, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-10T22:28:32.906Z [Protected] PID 20416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:33:32.677Z [Protected] PID 18936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:38:32.634Z [Protected] PID 19876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:43:32.641Z [Protected] PID 18728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:48:32.438Z [Protected] PID 14472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:52:40.770Z [Protected] PID 20996, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T22:52:40.800Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211035240
2016-12-10T22:53:32.588Z [Protected] PID 20156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:57:00.241Z [Protected] PID 15104, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T22:57:00.752Z [Protected] PID 20692, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T22:57:00.782Z [Protected] PID 18536, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T22:57:00.931Z [Protected] PID 5180, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T22:58:32.603Z [Protected] PID 20784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T22:59:00.181Z [Protected] PID 20156, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T23:03:32.595Z [Protected] PID 20112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:08:32.529Z [Protected] PID 21272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:12:50.764Z [Protected] PID 4080, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-10T23:13:32.590Z [Protected] PID 13728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:18:32.648Z [Protected] PID 12340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:22:40.944Z [Protected] PID 16952, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T23:22:40.986Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211042240
2016-12-10T23:23:00.187Z [Protected] PID 16416, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T23:23:00.651Z [Protected] PID 20160, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-10T23:23:32.612Z [Protected] PID 20704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:23:46.284Z [Protected] PID 21220, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T23:23:46.294Z [Protected] PID 19704, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-10T23:23:46.573Z [Protected] PID 21416, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T23:23:46.578Z [Protected] PID 19608, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-10T23:27:05.274Z [Protected] PID 14324, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-10T23:28:32.595Z [Protected] PID 19724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:30:00.346Z [Protected] PID 20116, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T23:30:00.349Z [Protected] PID 20296, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-10T23:34:33.428Z [Protected] PID 21000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:36:46.208Z [Protected] PID 20708, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T23:36:47.038Z [Protected] PID 17468, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-10T23:39:32.624Z [Protected] PID 19060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:41:00.575Z [Protected] PID 16024, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-10T23:43:32.542Z [Protected] PID 20752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:48:32.673Z [Protected] PID 18364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:52:40.999Z [Protected] PID 20804, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-10T23:52:41.029Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211045240
2016-12-10T23:53:32.544Z [Protected] PID 16648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:57:00.110Z [Protected] PID 15432, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-10T23:57:00.474Z [Protected] PID 19692, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-10T23:57:00.494Z [Protected] PID 18892, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T23:57:00.611Z [Protected] PID 20196, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-10T23:58:32.665Z [Protected] PID 17628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-10T23:59:00.273Z [Protected] PID 19324, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-10T23:59:50.990Z [Protected] PID 19560, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T00:00:01.323Z [Protected] PID 1456, Features 000000300000010A, C:\Windows\System32\rundll32.exe
2016-12-11T00:00:03.004Z [Protected] PID 19692, Features 000000300000010A, C:\Windows\System32\VSSVC.exe
2016-12-11T00:00:03.682Z [Protected] PID 19732, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-11T00:03:32.685Z [Protected] PID 18884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:03:45.026Z [Protected] PID 20080, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T00:03:45.505Z [Protected] PID 15864, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T00:03:45.845Z [Protected] PID 16888, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T00:03:45.977Z [Protected] PID 17500, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T00:03:46.876Z [Protected] PID 11288, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T00:06:37.579Z [Protected] PID 18544, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T00:08:32.576Z [Protected] PID 20580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:10:25.965Z [Protected] PID 17080, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T00:10:25.992Z [Protected] PID 20008, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T00:10:54.618Z [Protected] PID 20104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:13:32.551Z [Protected] PID 19332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:18:32.544Z [Protected] PID 21004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:22:15.838Z [Protected] PID 20776, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T00:22:41.183Z [Protected] PID 21072, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T00:22:41.209Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211052241
2016-12-11T00:23:00.234Z [Protected] PID 20080, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T00:23:01.352Z [Protected] PID 20348, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T00:23:32.580Z [Protected] PID 21096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:23:46.780Z [Protected] PID 9788, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T00:23:46.800Z [Protected] PID 14140, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T00:23:46.890Z [Protected] PID 21072, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T00:23:46.891Z [Protected] PID 17436, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T00:24:41.498Z [Protected] PID 16692, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-11T00:25:44.249Z [Protected] PID 15084, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T00:25:44.347Z [Protected] PID 20736, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T00:27:06.543Z [Protected] PID 21320, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T00:28:32.680Z [Protected] PID 15516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:33:32.596Z [Protected] PID 18676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:38:32.677Z [Protected] PID 19368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:43:32.572Z [Protected] PID 13728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:48:32.596Z [Protected] PID 19696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:52:41.360Z [Protected] PID 14892, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T00:52:41.401Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211055241
2016-12-11T00:53:32.467Z [Protected] PID 20720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:57:00.172Z [Protected] PID 18612, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T00:57:00.506Z [Protected] PID 19192, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T00:57:00.526Z [Protected] PID 18008, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T00:57:00.618Z [Protected] PID 18472, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T00:58:32.532Z [Protected] PID 20432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T00:59:00.259Z [Protected] PID 20632, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T01:00:00.704Z [Protected] PID 18780, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T01:00:01.141Z [Protected] PID 20748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:00:01.162Z [Protected] PID 13904, Features 000000300000010A, C:\Windows\System32\sc.exe
2016-12-11T01:00:02.314Z [Protected] PID 21296, Features 0000003000000102, C:\Windows\System32\sdiagnhost.exe
2016-12-11T01:00:02.414Z [Protected] PID 12320, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-11T01:00:02.414Z [Protected] PID 20156, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:00:04.705Z [Protected] PID 20016, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:00:04.725Z [Protected] PID 20476, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-11T01:00:07.111Z [Protected] PID 18592, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
2016-12-11T01:00:07.806Z [Protected] PID 20572, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
2016-12-11T01:00:12.403Z [Protected] PID 16604, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
2016-12-11T01:00:12.523Z [Protected] PID 19608, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
2016-12-11T01:00:20.170Z [Protected] PID 21464, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
2016-12-11T01:00:20.290Z [Protected] PID 20912, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
2016-12-11T01:00:25.467Z [Protected] PID 20020, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
2016-12-11T01:00:25.638Z [Protected] PID 18340, Features 0000003000000106, C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
2016-12-11T01:00:37.109Z [Protected] PID 19380, Features 0000003000000102, C:\Windows\System32\w32tm.exe
2016-12-11T01:00:37.409Z [Protected] PID 13500, Features 0000003000000102, C:\Windows\System32\PING.EXE
2016-12-11T01:00:38.741Z [Protected] PID 19460, Features 0000003000000102, C:\Windows\System32\w32tm.exe
2016-12-11T01:03:32.525Z [Protected] PID 18672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:05:26.201Z [Protected] PID 20804, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:05:26.231Z [Protected] PID 17904, Features 000000300000010A, C:\Windows\System32\compattelrunner.exe
2016-12-11T01:05:26.262Z [Protected] PID 20116, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-11T01:08:32.658Z [Protected] PID 20268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:11:39.836Z [Protected] PID 19732, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T01:11:40.285Z [Protected] PID 17372, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T01:12:22.852Z [Protected] PID 21496, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T01:13:32.562Z [Protected] PID 17500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:18:32.536Z [Protected] PID 20604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:22:41.552Z [Protected] PID 20308, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T01:22:41.602Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211062241
2016-12-11T01:23:00.194Z [Protected] PID 20124, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T01:23:00.717Z [Protected] PID 20588, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T01:23:32.659Z [Protected] PID 19088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:23:47.071Z [Protected] PID 18480, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:23:47.081Z [Protected] PID 20496, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T01:23:47.161Z [Protected] PID 20700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:23:47.172Z [Protected] PID 21428, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T01:27:05.057Z [Protected] PID 20320, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T01:28:32.602Z [Protected] PID 21096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:33:32.617Z [Protected] PID 18636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:38:32.650Z [Protected] PID 19336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:40:30.336Z [Protected] PID 20108, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:40:30.356Z [Protected] PID 20208, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T01:41:00.341Z [Protected] PID 20276, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T01:41:01.092Z [Protected] PID 19064, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T01:42:49.796Z [Protected] PID 20132, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T01:42:49.876Z [Protected] PID 15048, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T01:42:49.976Z [Protected] PID 20416, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T01:42:51.167Z [Protected] PID 16884, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T01:42:51.856Z [Protected] PID 20196, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T01:43:32.623Z [Protected] PID 19300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:48:32.596Z [Protected] PID 4576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:52:41.772Z [Protected] PID 16956, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T01:52:41.792Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211065241
2016-12-11T01:53:32.660Z [Protected] PID 20976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:57:00.152Z [Protected] PID 19128, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T01:57:00.476Z [Protected] PID 18088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T01:57:00.510Z [Protected] PID 10600, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T01:57:00.630Z [Protected] PID 18876, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T01:58:32.683Z [Protected] PID 18272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T01:59:00.257Z [Protected] PID 20476, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T02:03:32.517Z [Protected] PID 19400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:08:32.580Z [Protected] PID 21420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:09:45.071Z [Protected] PID 6472, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T02:13:32.644Z [Protected] PID 15092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:18:32.577Z [Protected] PID 20452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:22:41.943Z [Protected] PID 19580, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T02:22:41.983Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211072241
2016-12-11T02:23:00.207Z [Protected] PID 11064, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T02:23:00.820Z [Protected] PID 20960, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T02:23:32.551Z [Protected] PID 19688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:23:47.373Z [Protected] PID 7864, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T02:23:47.383Z [Protected] PID 20664, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T02:23:47.493Z [Protected] PID 19852, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T02:23:47.513Z [Protected] PID 16416, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T02:27:06.482Z [Protected] PID 15892, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T02:27:30.155Z [Protected] PID 17272, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-11T02:27:50.058Z [Protected] PID 16136, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-11T02:27:50.228Z [Protected] PID 17824, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-11T02:28:32.844Z [Protected] PID 20348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:30:00.767Z [Protected] PID 11124, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T02:30:00.787Z [Protected] PID 17740, Features 000000300000010A, C:\Windows\System32\aitagent.exe
2016-12-11T02:33:32.568Z [Protected] PID 19536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:38:32.621Z [Protected] PID 14360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:43:32.655Z [Protected] PID 19176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:48:32.608Z [Protected] PID 20860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:52:42.172Z [Protected] PID 21252, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T02:52:42.192Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211075241
2016-12-11T02:53:32.622Z [Protected] PID 20836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:57:00.132Z [Protected] PID 20124, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T02:57:00.482Z [Protected] PID 21300, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T02:57:00.492Z [Protected] PID 16932, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T02:57:00.572Z [Protected] PID 20140, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T02:58:32.645Z [Protected] PID 13628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T02:59:00.189Z [Protected] PID 21304, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T03:03:32.589Z [Protected] PID 16380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:06:46.487Z [Protected] PID 20856, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T03:06:46.817Z [Protected] PID 20840, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T03:08:32.652Z [Protected] PID 20808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:10:50.252Z [Protected] PID 20412, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T03:13:32.656Z [Protected] PID 20332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:18:32.589Z [Protected] PID 14720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:21:05.442Z [Protected] PID 16432, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T03:21:05.452Z [Protected] PID 18008, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T03:22:42.628Z [Protected] PID 20912, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T03:22:42.648Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211082242
2016-12-11T03:23:00.368Z [Protected] PID 20408, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T03:23:01.622Z [Protected] PID 19372, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T03:23:32.673Z [Protected] PID 21164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:23:47.745Z [Protected] PID 19552, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T03:23:47.755Z [Protected] PID 10852, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T03:23:48.015Z [Protected] PID 17492, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T03:23:48.035Z [Protected] PID 18468, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T03:27:06.834Z [Protected] PID 18472, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T03:27:10.205Z [Protected] PID 19644, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T03:27:10.335Z [Protected] PID 21480, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T03:28:32.666Z [Protected] PID 21184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:33:32.580Z [Protected] PID 17884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:35:54.598Z [Protected] PID 18940, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T03:35:54.658Z [Protected] PID 14304, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T03:35:54.738Z [Protected] PID 21344, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T03:35:55.441Z [Protected] PID 11260, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T03:35:55.931Z [Protected] PID 20676, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T03:38:32.574Z [Protected] PID 18468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:41:00.175Z [Protected] PID 18544, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T03:41:00.724Z [Protected] PID 8400, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T03:43:32.667Z [Protected] PID 18940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:48:32.581Z [Protected] PID 18808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:52:42.807Z [Protected] PID 18264, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T03:52:42.847Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211085242
2016-12-11T03:53:32.624Z [Protected] PID 18364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:57:00.159Z [Protected] PID 20728, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T03:57:00.525Z [Protected] PID 20784, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T03:57:00.545Z [Protected] PID 19496, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T03:57:00.694Z [Protected] PID 19580, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T03:58:32.678Z [Protected] PID 20944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T03:59:00.283Z [Protected] PID 20440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T04:03:32.581Z [Protected] PID 20044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:03:51.966Z [Protected] PID 12340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:03:51.983Z [Protected] PID 18120, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-11T04:03:52.316Z [Protected] PID 21440, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:03:52.327Z [Protected] PID 17852, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-11T04:03:52.454Z [Protected] PID 20548, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-11T04:03:57.151Z [Protected] PID 20560, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-11T04:03:58.125Z [Protected] PID 20916, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-11T04:05:19.807Z [Protected] PID 11124, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T04:08:32.975Z [Protected] PID 20948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:09:48.475Z [Protected] PID 19344, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-11T04:09:49.317Z [Protected] PID 21424, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-11T04:13:32.898Z [Protected] PID 20392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:18:32.962Z [Protected] PID 21484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:22:43.219Z [Protected] PID 19492, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T04:22:43.279Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211092242
2016-12-11T04:23:00.481Z [Protected] PID 14892, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T04:23:01.941Z [Protected] PID 19416, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T04:23:32.605Z [Protected] PID 20316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:23:48.567Z [Protected] PID 15420, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:23:48.587Z [Protected] PID 21396, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T04:23:48.958Z [Protected] PID 18876, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:23:48.978Z [Protected] PID 20956, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T04:27:07.076Z [Protected] PID 19752, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T04:28:32.569Z [Protected] PID 20804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:33:32.532Z [Protected] PID 19492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:38:32.666Z [Protected] PID 21088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:42:17.198Z [Protected] PID 19812, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T04:42:21.829Z [Protected] PID 19820, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T04:42:22.169Z [Protected] PID 20972, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T04:42:27.960Z [Protected] PID 18872, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T04:42:31.240Z [Protected] PID 19324, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-11T04:42:34.941Z [Protected] PID 19388, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T04:42:42.802Z [Protected] PID 19516, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T04:43:32.489Z [Protected] PID 20132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:43:57.304Z [Protected] PID 6284, Features 000000300000010A, C:\Windows\servicing\TrustedInstaller.exe
2016-12-11T04:44:22.086Z [Protected] PID 20448, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:44:22.106Z [Protected] PID 18940, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-11T04:44:22.816Z [Protected] PID 21024, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:44:22.816Z [Protected] PID 21296, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:44:22.846Z [Protected] PID 9108, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-11T04:44:22.846Z [Protected] PID 21080, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-11T04:44:23.409Z [Protected] PID 20244, Features 0000003000000102, C:\Windows\System32\NETSTAT.EXE
2016-12-11T04:44:23.847Z [Protected] PID 18512, Features 0000003000000102, C:\Windows\System32\tasklist.exe
2016-12-11T04:44:25.117Z [Protected] PID 13720, Features 000000361FBF0102, C:\Windows\System32\wscript.exe
2016-12-11T04:44:36.648Z [Protected] PID 20952, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-11T04:48:32.634Z [Protected] PID 19948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:51:16.537Z [Protected] PID 20616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:51:16.557Z [Protected] PID 13588, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T04:52:43.639Z [Protected] PID 20896, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T04:52:43.650Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211095243
2016-12-11T04:53:33.456Z [Protected] PID 8400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:57:00.376Z [Protected] PID 18516, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T04:57:00.798Z [Protected] PID 17196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T04:57:00.818Z [Protected] PID 21352, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T04:57:00.898Z [Protected] PID 20992, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T04:58:32.570Z [Protected] PID 20264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T04:59:00.218Z [Protected] PID 18120, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T04:59:07.659Z [Protected] PID 20476, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T05:01:59.200Z [Protected] PID 19588, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T05:03:32.604Z [Protected] PID 19096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:04:56.187Z [Protected] PID 21392, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T05:04:56.486Z [Protected] PID 17640, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T05:08:32.646Z [Protected] PID 17696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:13:32.672Z [Protected] PID 21252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:18:32.584Z [Protected] PID 20792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:22:43.820Z [Protected] PID 19460, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T05:22:43.870Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211102243
2016-12-11T05:23:00.193Z [Protected] PID 20756, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T05:23:01.613Z [Protected] PID 19796, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T05:23:32.657Z [Protected] PID 20636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:23:49.210Z [Protected] PID 20728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T05:23:49.230Z [Protected] PID 17260, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T05:23:49.340Z [Protected] PID 14312, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T05:23:49.350Z [Protected] PID 21460, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T05:26:59.689Z [Protected] PID 18200, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T05:26:59.759Z [Protected] PID 19836, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T05:26:59.888Z [Protected] PID 20624, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T05:27:00.488Z [Protected] PID 18512, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T05:27:00.919Z [Protected] PID 18616, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T05:27:06.548Z [Protected] PID 18668, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T05:28:32.611Z [Protected] PID 19728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:33:32.594Z [Protected] PID 1080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:33:38.725Z [Protected] PID 19372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:33:38.777Z [Protected] PID 17852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:38:32.568Z [Protected] PID 20932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:41:00.174Z [Protected] PID 20412, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T05:41:00.811Z [Protected] PID 21212, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T05:43:32.602Z [Protected] PID 20448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:48:32.575Z [Protected] PID 13672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:52:44.012Z [Protected] PID 13504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T05:52:44.052Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211105243
2016-12-11T05:53:32.610Z [Protected] PID 21108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:57:00.200Z [Protected] PID 11260, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T05:57:00.539Z [Protected] PID 17372, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T05:57:00.559Z [Protected] PID 17864, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T05:57:00.669Z [Protected] PID 20784, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T05:58:32.542Z [Protected] PID 18524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T05:59:00.258Z [Protected] PID 12292, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T06:01:13.377Z [Protected] PID 19884, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T06:03:32.517Z [Protected] PID 20260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:08:32.562Z [Protected] PID 17852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:13:32.653Z [Protected] PID 14472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:18:32.656Z [Protected] PID 11668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:22:44.173Z [Protected] PID 20672, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T06:22:44.213Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211112244
2016-12-11T06:23:00.201Z [Protected] PID 21416, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T06:23:00.745Z [Protected] PID 18340, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T06:23:32.663Z [Protected] PID 18272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:23:49.505Z [Protected] PID 21184, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T06:23:49.525Z [Protected] PID 4200, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T06:23:49.615Z [Protected] PID 17908, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T06:23:49.625Z [Protected] PID 19768, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T06:27:05.101Z [Protected] PID 18468, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T06:28:32.683Z [Protected] PID 13120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:33:32.505Z [Protected] PID 17908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:36:46.589Z [Protected] PID 19224, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T06:36:47.145Z [Protected] PID 3532, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T06:38:32.633Z [Protected] PID 18948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:43:32.587Z [Protected] PID 21200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:48:32.539Z [Protected] PID 18304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:52:44.346Z [Protected] PID 18872, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T06:52:44.406Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211115244
2016-12-11T06:53:32.581Z [Protected] PID 14252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:57:00.211Z [Protected] PID 20080, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T06:57:00.571Z [Protected] PID 20572, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T06:57:00.601Z [Protected] PID 19220, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T06:57:00.741Z [Protected] PID 13768, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T06:58:32.636Z [Protected] PID 7376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T06:59:00.249Z [Protected] PID 14252, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T07:03:32.600Z [Protected] PID 19220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:08:32.702Z [Protected] PID 14324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:10:38.511Z [Protected] PID 17196, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T07:13:32.597Z [Protected] PID 21292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:16:11.888Z [Protected] PID 19492, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T07:16:11.968Z [Protected] PID 19832, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T07:16:12.038Z [Protected] PID 20804, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T07:16:12.758Z [Protected] PID 18364, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T07:16:12.940Z [Protected] PID 20192, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T07:18:32.659Z [Protected] PID 11124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:22:44.508Z [Protected] PID 21064, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T07:22:44.540Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211122244
2016-12-11T07:23:00.191Z [Protected] PID 20604, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T07:23:00.659Z [Protected] PID 19520, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T07:23:32.624Z [Protected] PID 20212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:23:49.795Z [Protected] PID 11248, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T07:23:49.805Z [Protected] PID 20408, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T07:23:49.896Z [Protected] PID 20440, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T07:23:49.916Z [Protected] PID 21004, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T07:27:05.106Z [Protected] PID 21252, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T07:28:32.666Z [Protected] PID 10600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:33:32.649Z [Protected] PID 19748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:38:02.170Z [Protected] PID 19220, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T07:38:02.458Z [Protected] PID 19728, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-11T07:38:02.970Z [Protected] PID 19924, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-11T07:38:32.685Z [Protected] PID 19928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:41:00.175Z [Protected] PID 20548, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T07:41:00.685Z [Protected] PID 20336, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T07:43:32.668Z [Protected] PID 16772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:48:32.590Z [Protected] PID 14000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:52:44.696Z [Protected] PID 21460, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T07:52:44.746Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211125244
2016-12-11T07:53:32.654Z [Protected] PID 16772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:57:00.167Z [Protected] PID 20416, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T07:57:00.563Z [Protected] PID 20136, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T07:57:00.584Z [Protected] PID 16888, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T07:57:00.734Z [Protected] PID 21144, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T07:58:32.661Z [Protected] PID 20412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T07:59:00.262Z [Protected] PID 6336, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T08:00:00.161Z [Protected] PID 15440, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T08:00:00.472Z [Protected] PID 19864, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T08:03:32.663Z [Protected] PID 20800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:08:32.584Z [Protected] PID 20692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:13:20.819Z [Protected] PID 19204, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T08:13:32.620Z [Protected] PID 20432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:18:32.645Z [Protected] PID 19804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:22:17.183Z [Protected] PID 20520, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T08:22:44.807Z [Protected] PID 18856, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T08:22:44.837Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211132244
2016-12-11T08:23:00.178Z [Protected] PID 14360, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T08:23:00.670Z [Protected] PID 19608, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T08:23:32.659Z [Protected] PID 21152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:23:50.087Z [Protected] PID 21448, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T08:23:50.088Z [Protected] PID 19220, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T08:23:50.201Z [Protected] PID 19284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T08:23:50.211Z [Protected] PID 21116, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T08:24:41.504Z [Protected] PID 16416, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-11T08:27:05.065Z [Protected] PID 17640, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T08:28:32.586Z [Protected] PID 21104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:33:32.443Z [Protected] PID 19436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:39:32.559Z [Protected] PID 18880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:44:32.584Z [Protected] PID 18868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:48:32.556Z [Protected] PID 21268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:52:44.825Z [Protected] PID 12292, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T08:52:44.865Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211135244
2016-12-11T08:53:16.540Z [Protected] PID 20264, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T08:53:16.620Z [Protected] PID 20520, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T08:53:16.710Z [Protected] PID 21248, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T08:53:17.100Z [Protected] PID 21480, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T08:53:17.450Z [Protected] PID 21108, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T08:53:32.672Z [Protected] PID 21168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:54:40.446Z [Protected] PID 14804, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T08:54:40.651Z [Protected] PID 20348, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-11T08:57:00.032Z [Protected] PID 17012, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T08:57:00.435Z [Protected] PID 20972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T08:57:00.465Z [Protected] PID 20444, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T08:57:00.613Z [Protected] PID 19812, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T08:58:32.585Z [Protected] PID 18200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T08:59:00.205Z [Protected] PID 14324, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T09:00:50.995Z [Protected] PID 19492, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T09:03:32.668Z [Protected] PID 18120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:03:42.120Z [Protected] PID 21144, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T09:03:42.410Z [Protected] PID 18640, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T09:04:23.560Z [Protected] PID 21064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:08:32.662Z [Protected] PID 16024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:13:32.665Z [Protected] PID 20896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:18:32.599Z [Protected] PID 11032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:22:45.001Z [Protected] PID 19076, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T09:22:45.051Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211142244
2016-12-11T09:23:00.164Z [Protected] PID 20284, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T09:23:00.738Z [Protected] PID 20448, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T09:23:32.642Z [Protected] PID 21080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:23:50.176Z [Protected] PID 20320, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T09:23:50.196Z [Protected] PID 21068, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T09:23:50.279Z [Protected] PID 12368, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T09:23:50.299Z [Protected] PID 9108, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T09:25:36.100Z [Protected] PID 21344, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T09:25:36.251Z [Protected] PID 21488, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T09:27:04.937Z [Protected] PID 17468, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T09:28:32.586Z [Protected] PID 20792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:33:32.570Z [Protected] PID 19832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:38:32.673Z [Protected] PID 21324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:41:00.074Z [Protected] PID 20944, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T09:41:00.558Z [Protected] PID 20692, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T09:43:32.675Z [Protected] PID 6412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:48:32.576Z [Protected] PID 4080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:52:45.180Z [Protected] PID 20240, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T09:52:45.220Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211145245
2016-12-11T09:53:32.470Z [Protected] PID 12368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:57:00.164Z [Protected] PID 19948, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T09:57:00.529Z [Protected] PID 19440, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T09:57:00.549Z [Protected] PID 16956, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T09:57:00.697Z [Protected] PID 20704, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T09:58:32.543Z [Protected] PID 14312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T09:59:00.241Z [Protected] PID 19708, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T09:59:42.543Z [Protected] PID 18728, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T10:00:00.768Z [Protected] PID 20288, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-11T10:03:32.666Z [Protected] PID 15396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:06:47.469Z [Protected] PID 18120, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T10:06:47.821Z [Protected] PID 19892, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T10:08:32.614Z [Protected] PID 19692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:13:13.154Z [Protected] PID 20700, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T10:13:32.648Z [Protected] PID 3900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:17:44.392Z [Protected] PID 19744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:18:32.408Z [Protected] PID 19128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:22:45.348Z [Protected] PID 18776, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T10:22:45.389Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211152245
2016-12-11T10:23:00.219Z [Protected] PID 19560, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T10:23:00.760Z [Protected] PID 16236, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T10:23:01.395Z [Protected] PID 19736, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T10:23:01.874Z [Protected] PID 20324, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\G2MInstaller.exe
2016-12-11T10:23:06.201Z [Protected] PID 16416, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\G2MInstaller.exe
2016-12-11T10:23:09.267Z [Protected] PID 18364, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\G2MInstaller.exe
2016-12-11T10:23:10.031Z [Protected] PID 13768, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\G2MInstaller.exe
2016-12-11T10:23:32.635Z [Protected] PID 19172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:23:50.483Z [Protected] PID 17556, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T10:23:50.503Z [Protected] PID 17064, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T10:23:50.595Z [Protected] PID 21356, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T10:23:50.605Z [Protected] PID 20404, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T10:27:04.962Z [Protected] PID 21256, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T10:28:32.665Z [Protected] PID 4576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:33:32.482Z [Protected] PID 20836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:38:32.683Z [Protected] PID 20472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:39:21.174Z [Protected] PID 20708, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T10:39:21.244Z [Protected] PID 21332, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T10:39:21.335Z [Protected] PID 20244, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T10:39:21.730Z [Protected] PID 21132, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T10:39:21.953Z [Protected] PID 2896, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T10:43:32.683Z [Protected] PID 4576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:48:32.556Z [Protected] PID 21144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:52:45.536Z [Protected] PID 19416, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T10:52:45.596Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211155245
2016-12-11T10:53:32.551Z [Protected] PID 12616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:57:00.122Z [Protected] PID 13324, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T10:57:00.366Z [Protected] PID 13500, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T10:57:00.376Z [Protected] PID 17260, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T10:57:00.446Z [Protected] PID 20992, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T10:58:32.533Z [Protected] PID 18668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T10:59:00.265Z [Protected] PID 19088, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T11:01:47.302Z [Protected] PID 16952, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T11:03:32.585Z [Protected] PID 20320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:08:32.681Z [Protected] PID 17480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:13:32.587Z [Protected] PID 20496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:18:32.615Z [Protected] PID 18924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:22:45.731Z [Protected] PID 18936, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T11:22:45.781Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211162245
2016-12-11T11:23:00.136Z [Protected] PID 19892, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T11:23:00.583Z [Protected] PID 17444, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T11:23:32.562Z [Protected] PID 17436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:23:50.767Z [Protected] PID 18808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T11:23:50.777Z [Protected] PID 5660, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T11:23:50.858Z [Protected] PID 19344, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T11:23:50.868Z [Protected] PID 19948, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T11:27:04.970Z [Protected] PID 18880, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T11:28:32.641Z [Protected] PID 19852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:33:32.656Z [Protected] PID 1080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:36:44.175Z [Protected] PID 19748, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T11:36:44.507Z [Protected] PID 17228, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-11T11:38:32.624Z [Protected] PID 13664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:41:00.181Z [Protected] PID 5200, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T11:41:00.673Z [Protected] PID 20312, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T11:43:32.673Z [Protected] PID 19116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:48:32.615Z [Protected] PID 20168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:52:45.893Z [Protected] PID 16932, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T11:52:45.923Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211165245
2016-12-11T11:53:32.676Z [Protected] PID 21440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:57:00.171Z [Protected] PID 21320, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T11:57:00.553Z [Protected] PID 19912, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T11:57:00.583Z [Protected] PID 21224, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T11:57:00.725Z [Protected] PID 11248, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T11:58:32.654Z [Protected] PID 20492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T11:59:00.236Z [Protected] PID 19772, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T12:03:32.570Z [Protected] PID 20084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:08:32.611Z [Protected] PID 12292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:13:26.632Z [Protected] PID 19980, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T12:13:26.714Z [Protected] PID 20312, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T12:13:26.804Z [Protected] PID 18788, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T12:13:27.327Z [Protected] PID 19256, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T12:13:27.469Z [Protected] PID 18852, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T12:13:32.536Z [Protected] PID 6612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:14:33.461Z [Protected] PID 11124, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T12:18:32.578Z [Protected] PID 21184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:22:46.072Z [Protected] PID 19256, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T12:22:46.112Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211172245
2016-12-11T12:23:00.185Z [Protected] PID 5180, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T12:23:00.667Z [Protected] PID 6412, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T12:23:32.525Z [Protected] PID 20644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:23:51.018Z [Protected] PID 20720, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T12:23:51.028Z [Protected] PID 21500, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T12:23:51.128Z [Protected] PID 18064, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T12:23:51.138Z [Protected] PID 16024, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T12:27:05.168Z [Protected] PID 20696, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T12:28:32.568Z [Protected] PID 19588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:33:32.648Z [Protected] PID 19820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:38:32.602Z [Protected] PID 17064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:43:32.638Z [Protected] PID 20268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:48:32.598Z [Protected] PID 14804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:52:46.253Z [Protected] PID 19768, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T12:52:46.303Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211175246
2016-12-11T12:53:32.590Z [Protected] PID 19596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:57:00.166Z [Protected] PID 20460, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T12:57:00.526Z [Protected] PID 20020, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T12:57:00.566Z [Protected] PID 20320, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T12:57:00.706Z [Protected] PID 20568, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T12:58:32.660Z [Protected] PID 17272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T12:59:00.243Z [Protected] PID 15440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T13:03:32.577Z [Protected] PID 20692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:04:05.988Z [Protected] PID 20192, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T13:04:06.302Z [Protected] PID 20848, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T13:06:46.757Z [Protected] PID 19088, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T13:08:32.643Z [Protected] PID 18616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:13:32.667Z [Protected] PID 20156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:18:32.668Z [Protected] PID 19612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:22:46.435Z [Protected] PID 15048, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T13:22:46.485Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211182246
2016-12-11T13:23:00.146Z [Protected] PID 20288, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T13:23:00.999Z [Protected] PID 19440, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T13:23:32.604Z [Protected] PID 20448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:23:51.317Z [Protected] PID 16844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T13:23:51.337Z [Protected] PID 10852, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T13:23:51.458Z [Protected] PID 17728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T13:23:51.480Z [Protected] PID 9108, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T13:27:05.543Z [Protected] PID 20624, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T13:28:32.666Z [Protected] PID 20488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:33:32.655Z [Protected] PID 14804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:36:47.439Z [Protected] PID 18616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T13:36:47.791Z [Protected] PID 19536, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T13:38:32.613Z [Protected] PID 17468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:41:00.349Z [Protected] PID 21304, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T13:43:32.560Z [Protected] PID 5660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:48:32.660Z [Protected] PID 19400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:52:46.625Z [Protected] PID 20364, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T13:52:46.666Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211185246
2016-12-11T13:53:32.632Z [Protected] PID 14292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:57:00.166Z [Protected] PID 20332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T13:57:00.528Z [Protected] PID 17372, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T13:57:00.558Z [Protected] PID 20440, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T13:57:00.698Z [Protected] PID 17864, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T13:58:32.583Z [Protected] PID 19424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T13:59:00.243Z [Protected] PID 19400, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T14:01:31.132Z [Protected] PID 19828, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T14:01:31.202Z [Protected] PID 17500, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T14:01:31.282Z [Protected] PID 18112, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T14:01:31.653Z [Protected] PID 20244, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T14:01:31.984Z [Protected] PID 20636, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T14:03:32.570Z [Protected] PID 19124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:06:28.435Z [Protected] PID 5180, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T14:06:28.455Z [Protected] PID 12368, Features 0000003000000102, C:\Windows\System32\Defrag.exe
2016-12-11T14:06:28.666Z [Protected] PID 21124, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-11T14:08:32.983Z [Protected] PID 20672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:12:19.067Z [Protected] PID 19608, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T14:13:32.657Z [Protected] PID 19124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:18:32.654Z [Protected] PID 19436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:22:46.823Z [Protected] PID 11032, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T14:22:46.863Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211192246
2016-12-11T14:23:00.163Z [Protected] PID 20928, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T14:23:00.577Z [Protected] PID 19560, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T14:23:32.556Z [Protected] PID 20160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:23:51.652Z [Protected] PID 19728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T14:23:51.662Z [Protected] PID 20540, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T14:23:51.754Z [Protected] PID 15740, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T14:23:51.765Z [Protected] PID 20604, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T14:27:03.110Z [Protected] PID 21292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T14:27:03.130Z [Protected] PID 18928, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-11T14:27:03.233Z [Protected] PID 19820, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-11T14:27:05.598Z [Protected] PID 21436, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-11T14:27:06.179Z [Protected] PID 20800, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-11T14:27:06.329Z [Protected] PID 18948, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-11T14:27:06.401Z [Protected] PID 20752, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-11T14:27:06.461Z [Protected] PID 15396, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-11T14:27:06.561Z [Protected] PID 13904, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-11T14:27:10.027Z [Protected] PID 20104, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T14:28:32.659Z [Protected] PID 16432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:33:32.675Z [Protected] PID 20312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:38:32.687Z [Protected] PID 21204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:43:32.618Z [Protected] PID 15740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:48:32.660Z [Protected] PID 19436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:52:47.107Z [Protected] PID 17640, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T14:52:47.167Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211195246
2016-12-11T14:53:32.601Z [Protected] PID 20740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:57:00.165Z [Protected] PID 20916, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T14:57:00.536Z [Protected] PID 19728, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T14:57:00.556Z [Protected] PID 20600, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T14:57:00.696Z [Protected] PID 20416, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T14:58:32.604Z [Protected] PID 18536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T14:59:00.241Z [Protected] PID 21156, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T14:59:30.649Z [Protected] PID 21108, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T15:03:32.654Z [Protected] PID 19388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:08:32.514Z [Protected] PID 20412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:09:14.013Z [Protected] PID 20096, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T15:09:14.104Z [Protected] PID 20940, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T15:12:20.407Z [Protected] PID 18936, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T15:13:32.594Z [Protected] PID 19596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:18:32.613Z [Protected] PID 17704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:22:47.308Z [Protected] PID 21188, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T15:22:47.348Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211202247
2016-12-11T15:23:00.170Z [Protected] PID 2896, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T15:23:00.690Z [Protected] PID 19088, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T15:23:32.588Z [Protected] PID 19872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:23:51.957Z [Protected] PID 14000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T15:23:51.967Z [Protected] PID 21420, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T15:23:52.057Z [Protected] PID 18284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T15:23:52.067Z [Protected] PID 20648, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T15:27:04.990Z [Protected] PID 19892, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T15:28:32.652Z [Protected] PID 18884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:31:45.611Z [Protected] PID 20632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:33:32.427Z [Protected] PID 19728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:38:32.510Z [Protected] PID 20288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:41:00.176Z [Protected] PID 19100, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T15:41:00.676Z [Protected] PID 21256, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T15:43:32.569Z [Protected] PID 20208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:48:32.602Z [Protected] PID 21308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:52:47.499Z [Protected] PID 18528, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T15:52:47.539Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211205247
2016-12-11T15:53:32.545Z [Protected] PID 19116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:57:00.162Z [Protected] PID 18264, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T15:57:00.515Z [Protected] PID 20120, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T15:57:00.535Z [Protected] PID 18368, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T15:57:00.625Z [Protected] PID 19336, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T15:58:32.669Z [Protected] PID 19748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T15:59:00.263Z [Protected] PID 20268, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T16:00:35.833Z [Protected] PID 13664, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T16:00:35.913Z [Protected] PID 19800, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T16:00:35.987Z [Protected] PID 18316, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T16:00:36.187Z [Protected] PID 14252, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T16:00:36.677Z [Protected] PID 18780, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T16:03:02.728Z [Protected] PID 1080, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T16:03:32.615Z [Protected] PID 18876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:08:32.590Z [Protected] PID 18928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:13:32.619Z [Protected] PID 17012, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:18:32.684Z [Protected] PID 20492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:22:18.478Z [Protected] PID 19516, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T16:22:47.679Z [Protected] PID 17500, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T16:22:47.729Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211212247
2016-12-11T16:23:00.143Z [Protected] PID 14304, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T16:23:00.681Z [Protected] PID 21192, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T16:23:32.626Z [Protected] PID 8400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:23:52.249Z [Protected] PID 20972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T16:23:52.269Z [Protected] PID 18552, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T16:23:52.359Z [Protected] PID 11248, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T16:23:52.369Z [Protected] PID 16564, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T16:24:42.326Z [Protected] PID 20944, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-11T16:27:04.977Z [Protected] PID 15432, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T16:27:36.581Z [Protected] PID 17812, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-11T16:28:02.005Z [Protected] PID 15892, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-11T16:28:02.445Z [Protected] PID 21424, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-11T16:28:32.849Z [Protected] PID 20364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:33:32.653Z [Protected] PID 21152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:38:32.596Z [Protected] PID 17640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:41:54.525Z [Protected] PID 19088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T16:41:54.545Z [Protected] PID 20144, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T16:43:33.676Z [Protected] PID 19872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:48:32.605Z [Protected] PID 20568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:52:47.970Z [Protected] PID 12572, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T16:52:47.990Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211215247
2016-12-11T16:53:32.639Z [Protected] PID 5660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:57:00.517Z [Protected] PID 12292, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T16:57:00.847Z [Protected] PID 21132, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T16:57:00.867Z [Protected] PID 21296, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T16:57:00.928Z [Protected] PID 21440, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T16:58:32.655Z [Protected] PID 20628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T16:59:00.439Z [Protected] PID 17704, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T17:03:32.675Z [Protected] PID 19812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:05:02.938Z [Protected] PID 19508, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T17:06:48.712Z [Protected] PID 20960, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T17:06:49.102Z [Protected] PID 20920, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T17:07:23.507Z [Protected] PID 18524, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T17:07:23.850Z [Protected] PID 19744, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T17:08:32.667Z [Protected] PID 17492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:13:32.560Z [Protected] PID 21044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:18:32.594Z [Protected] PID 20948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:22:48.141Z [Protected] PID 20996, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T17:22:48.171Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211222248
2016-12-11T17:23:00.168Z [Protected] PID 21332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T17:23:01.793Z [Protected] PID 21124, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T17:23:32.598Z [Protected] PID 18544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:23:52.610Z [Protected] PID 13500, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T17:23:52.630Z [Protected] PID 14304, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T17:23:52.980Z [Protected] PID 15340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T17:23:52.990Z [Protected] PID 17196, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T17:27:06.768Z [Protected] PID 14292, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T17:28:32.571Z [Protected] PID 19372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:33:32.574Z [Protected] PID 17468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:38:32.579Z [Protected] PID 18044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:41:00.160Z [Protected] PID 21356, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T17:41:00.650Z [Protected] PID 21180, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T17:43:32.552Z [Protected] PID 20264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:49:32.489Z [Protected] PID 19980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:50:40.790Z [Protected] PID 19560, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T17:50:40.921Z [Protected] PID 18884, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T17:50:41.370Z [Protected] PID 19720, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T17:50:41.680Z [Protected] PID 17704, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T17:50:42.800Z [Protected] PID 18948, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T17:52:48.200Z [Protected] PID 15516, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T17:52:48.240Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211225248
2016-12-11T17:53:32.625Z [Protected] PID 19192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:57:00.023Z [Protected] PID 21200, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T17:57:00.398Z [Protected] PID 18284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T17:57:00.418Z [Protected] PID 14292, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T17:57:00.558Z [Protected] PID 20432, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T17:58:32.571Z [Protected] PID 20568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T17:59:00.245Z [Protected] PID 21120, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T18:03:32.632Z [Protected] PID 20976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:08:32.656Z [Protected] PID 21420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:13:32.579Z [Protected] PID 20808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:14:02.414Z [Protected] PID 18304, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T18:18:32.592Z [Protected] PID 20312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:22:48.369Z [Protected] PID 21068, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T18:22:48.409Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211232248
2016-12-11T18:23:00.172Z [Protected] PID 18616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T18:23:00.721Z [Protected] PID 21364, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T18:23:32.576Z [Protected] PID 20464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:23:53.099Z [Protected] PID 5660, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T18:23:53.109Z [Protected] PID 21064, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T18:23:53.219Z [Protected] PID 15396, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T18:23:53.249Z [Protected] PID 20308, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T18:27:04.836Z [Protected] PID 17468, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T18:28:32.671Z [Protected] PID 19220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:33:32.523Z [Protected] PID 16376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:36:19.537Z [Protected] PID 21272, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-11T18:36:41.100Z [Protected] PID 20800, Features 0000003000000102, C:\Program Files\Internet Explorer\IELowutil.exe
2016-12-11T18:36:41.190Z [Protected] PID 20232, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T18:38:32.566Z [Protected] PID 17864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:43:32.679Z [Protected] PID 20932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:48:32.483Z [Protected] PID 19708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:52:48.540Z [Protected] PID 20364, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T18:52:48.580Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161211235248
2016-12-11T18:53:32.616Z [Protected] PID 19704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:57:00.168Z [Protected] PID 19736, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T18:57:00.517Z [Protected] PID 21360, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T18:57:00.547Z [Protected] PID 13696, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T18:57:00.687Z [Protected] PID 20884, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T18:58:32.640Z [Protected] PID 20460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T18:59:00.214Z [Protected] PID 19928, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T19:03:32.623Z [Protected] PID 20940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:07:11.565Z [Protected] PID 16416, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T19:08:32.607Z [Protected] PID 18696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:13:32.611Z [Protected] PID 14496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:18:32.665Z [Protected] PID 20540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:22:48.641Z [Protected] PID 13720, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T19:22:48.671Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212002248
2016-12-11T19:23:00.172Z [Protected] PID 21200, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T19:23:00.713Z [Protected] PID 19812, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T19:23:32.557Z [Protected] PID 2880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:23:53.460Z [Protected] PID 20672, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T19:23:53.470Z [Protected] PID 20160, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T19:23:53.580Z [Protected] PID 19204, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T19:23:53.590Z [Protected] PID 21328, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T19:27:04.778Z [Protected] PID 18884, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T19:27:23.660Z [Protected] PID 20612, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-11T19:27:33.922Z [Protected] PID 17228, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-11T19:27:34.142Z [Protected] PID 12408, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-11T19:28:32.781Z [Protected] PID 21164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:33:32.594Z [Protected] PID 16888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:38:32.567Z [Protected] PID 6888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:38:46.004Z [Protected] PID 12408, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T19:38:46.084Z [Protected] PID 14252, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T19:38:46.184Z [Protected] PID 196, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T19:38:47.001Z [Protected] PID 19272, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T19:38:47.210Z [Protected] PID 20800, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T19:41:00.179Z [Protected] PID 15864, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T19:41:00.619Z [Protected] PID 21256, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T19:42:05.686Z [Protected] PID 16772, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T19:42:05.696Z [Protected] PID 15740, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T19:43:32.901Z [Protected] PID 19768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:48:32.554Z [Protected] PID 16696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:52:48.875Z [Protected] PID 18872, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T19:52:48.910Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212005248
2016-12-11T19:53:32.488Z [Protected] PID 16692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:57:00.348Z [Protected] PID 14472, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T19:57:00.728Z [Protected] PID 16956, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T19:57:00.758Z [Protected] PID 1080, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T19:57:00.899Z [Protected] PID 19084, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T19:58:32.661Z [Protected] PID 16432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T19:59:00.345Z [Protected] PID 20432, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T19:59:00.345Z [Protected] PID 18776, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T19:59:00.415Z [Protected] PID 19820, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T19:59:00.945Z [Protected] PID 12368, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-11T19:59:00.945Z [Protected] PID 20836, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-11T20:00:01.054Z [Protected] PID 21444, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-11T20:00:01.405Z [Protected] PID 16432, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T20:00:01.435Z [Protected] PID 13504, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-11T20:02:11.503Z [Protected] PID 21456, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T20:02:11.513Z [Protected] PID 19592, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T20:03:32.867Z [Protected] PID 13928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:08:32.668Z [Protected] PID 17740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:13:32.542Z [Protected] PID 14804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:13:37.192Z [Protected] PID 20232, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T20:18:32.585Z [Protected] PID 20136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:20:52.249Z [Protected] PID 196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:22:49.092Z [Protected] PID 21012, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T20:22:49.112Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212012248
2016-12-11T20:23:00.244Z [Protected] PID 13664, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T20:23:00.994Z [Protected] PID 16136, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T20:23:32.548Z [Protected] PID 21072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:23:53.821Z [Protected] PID 20844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T20:23:53.831Z [Protected] PID 17064, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T20:23:53.949Z [Protected] PID 21268, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T20:23:53.972Z [Protected] PID 19588, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T20:27:06.362Z [Protected] PID 16376, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T20:28:32.522Z [Protected] PID 19720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:47.901Z [Protected] PID 6284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:48.101Z [Protected] PID 20856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:48.261Z [Protected] PID 20192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:48.460Z [Protected] PID 14304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:48.660Z [Protected] PID 21180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:48.850Z [Protected] PID 12572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:49.021Z [Protected] PID 20500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:49.181Z [Protected] PID 20628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:49.361Z [Protected] PID 13324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:49.521Z [Protected] PID 20772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:31:49.711Z [Protected] PID 12340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:33:32.415Z [Protected] PID 19672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:36:49.295Z [Protected] PID 17740, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T20:36:49.684Z [Protected] PID 14056, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-11T20:38:32.567Z [Protected] PID 18808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:43:32.572Z [Protected] PID 17372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:48:32.566Z [Protected] PID 16616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:52:49.263Z [Protected] PID 21404, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T20:52:49.293Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212015249
2016-12-11T20:53:32.610Z [Protected] PID 20660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:54:41.340Z [Protected] PID 16432, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T20:54:41.599Z [Protected] PID 19436, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-11T20:57:00.189Z [Protected] PID 4172, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T20:57:00.569Z [Protected] PID 14304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T20:57:00.599Z [Protected] PID 18616, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T20:57:00.739Z [Protected] PID 21484, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T20:58:32.483Z [Protected] PID 21480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T20:59:00.237Z [Protected] PID 21124, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T20:59:29.651Z [Protected] PID 21300, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T21:03:32.646Z [Protected] PID 19424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:04:14.132Z [Protected] PID 20720, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-11T21:04:14.383Z [Protected] PID 19640, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-11T21:04:25.485Z [Protected] PID 5660, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T21:08:32.680Z [Protected] PID 20332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:10:51.322Z [Protected] PID 20392, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T21:10:51.422Z [Protected] PID 20700, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T21:10:51.507Z [Protected] PID 11124, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T21:10:52.190Z [Protected] PID 18552, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T21:10:52.325Z [Protected] PID 4200, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T21:13:32.593Z [Protected] PID 16700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:18:32.626Z [Protected] PID 21040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:22:49.424Z [Protected] PID 20168, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T21:22:49.474Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212022249
2016-12-11T21:23:00.149Z [Protected] PID 21324, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T21:23:00.465Z [Protected] PID 21272, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T21:23:32.470Z [Protected] PID 12320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:23:54.143Z [Protected] PID 18936, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T21:23:54.153Z [Protected] PID 19708, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T21:23:54.273Z [Protected] PID 19220, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T21:23:54.293Z [Protected] PID 21300, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T21:27:05.241Z [Protected] PID 20392, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T21:28:32.633Z [Protected] PID 2896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:33:32.657Z [Protected] PID 20528, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:38:32.581Z [Protected] PID 20756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:41:00.094Z [Protected] PID 20628, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T21:41:00.592Z [Protected] PID 18284, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T21:43:32.585Z [Protected] PID 20208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:48:32.567Z [Protected] PID 20320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:52:49.614Z [Protected] PID 16380, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T21:52:49.664Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212025249
2016-12-11T21:53:32.653Z [Protected] PID 20168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:57:00.161Z [Protected] PID 20932, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T21:57:00.551Z [Protected] PID 19644, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T21:57:00.581Z [Protected] PID 18616, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T21:57:00.721Z [Protected] PID 11260, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T21:58:32.654Z [Protected] PID 18696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T21:59:00.258Z [Protected] PID 6336, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T22:00:00.231Z [Protected] PID 17728, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-11T22:00:00.797Z [Protected] PID 20432, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-11T22:00:01.000Z [Protected] PID 19204, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-11T22:03:32.679Z [Protected] PID 19796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:08:32.901Z [Protected] PID 19116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:10:08.575Z [Protected] PID 18716, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T22:13:33.204Z [Protected] PID 19980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:18:32.658Z [Protected] PID 18808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:22:17.519Z [Protected] PID 19744, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T22:22:17.590Z [Protected] PID 21108, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-11T22:22:50.745Z [Protected] PID 19388, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T22:22:50.783Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212032249
2016-12-11T22:23:00.923Z [Protected] PID 20008, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T22:23:03.608Z [Protected] PID 16932, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T22:23:33.241Z [Protected] PID 19748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:23:54.644Z [Protected] PID 17272, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T22:23:54.656Z [Protected] PID 5452, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T22:23:55.064Z [Protected] PID 18716, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T22:23:55.074Z [Protected] PID 17228, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T22:27:07.522Z [Protected] PID 21360, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T22:28:32.655Z [Protected] PID 21252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:33:32.577Z [Protected] PID 20948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:38:32.562Z [Protected] PID 20848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:43:32.605Z [Protected] PID 12616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:48:32.659Z [Protected] PID 18228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:52:50.926Z [Protected] PID 20392, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T22:52:50.966Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212035250
2016-12-11T22:53:32.678Z [Protected] PID 14768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:55:04.215Z [Protected] PID 20260, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-11T22:55:04.295Z [Protected] PID 20752, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T22:55:04.425Z [Protected] PID 20580, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-11T22:55:05.035Z [Protected] PID 16844, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-11T22:55:05.045Z [Protected] PID 21144, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-11T22:57:00.156Z [Protected] PID 20276, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T22:57:00.492Z [Protected] PID 21260, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T22:57:00.502Z [Protected] PID 20484, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T22:57:00.572Z [Protected] PID 20152, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T22:58:32.545Z [Protected] PID 21472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T22:59:00.339Z [Protected] PID 21208, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-11T23:03:27.373Z [Protected] PID 19640, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-11T23:03:32.699Z [Protected] PID 19536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:08:32.637Z [Protected] PID 19688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:13:32.467Z [Protected] PID 20568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:18:32.681Z [Protected] PID 19708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:22:51.107Z [Protected] PID 20240, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T23:22:51.147Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212042250
2016-12-11T23:23:00.178Z [Protected] PID 18200, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T23:23:00.601Z [Protected] PID 21132, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-11T23:23:32.653Z [Protected] PID 19440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:23:55.316Z [Protected] PID 19124, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T23:23:55.336Z [Protected] PID 14292, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-11T23:23:55.426Z [Protected] PID 20104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T23:23:55.446Z [Protected] PID 16932, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-11T23:27:04.914Z [Protected] PID 19768, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-11T23:28:32.659Z [Protected] PID 20520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:33:32.596Z [Protected] PID 21332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:36:30.265Z [Protected] PID 17012, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T23:36:30.285Z [Protected] PID 19872, Features 000000300000010A, C:\Windows\System32\compattelrunner.exe
2016-12-11T23:36:30.345Z [Protected] PID 17040, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-11T23:38:32.613Z [Protected] PID 20704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:41:00.185Z [Protected] PID 14252, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T23:41:00.815Z [Protected] PID 13628, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-11T23:43:32.517Z [Protected] PID 20816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:48:32.530Z [Protected] PID 18416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:52:51.287Z [Protected] PID 18668, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-11T23:52:51.327Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212045251
2016-12-11T23:53:32.644Z [Protected] PID 20196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:57:00.170Z [Protected] PID 19124, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-11T23:57:00.514Z [Protected] PID 14360, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-11T23:57:00.534Z [Protected] PID 11104, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T23:57:00.645Z [Protected] PID 17488, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-11T23:58:32.658Z [Protected] PID 21252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-11T23:59:00.162Z [Protected] PID 18516, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T00:00:02.203Z [Protected] PID 17448, Features 000000300000010A, C:\Windows\System32\rundll32.exe
2016-12-12T00:00:03.070Z [Protected] PID 11408, Features 000000300000010A, C:\Windows\System32\VSSVC.exe
2016-12-12T00:00:03.260Z [Protected] PID 21076, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-12T00:02:04.708Z [Protected] PID 20816, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T00:03:32.600Z [Protected] PID 20856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:06:49.329Z [Protected] PID 5660, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T00:06:49.809Z [Protected] PID 20616, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T00:08:32.584Z [Protected] PID 17704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:13:32.487Z [Protected] PID 19612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:18:32.611Z [Protected] PID 20276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:22:19.814Z [Protected] PID 20708, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T00:22:51.459Z [Protected] PID 20880, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T00:22:51.499Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212052251
2016-12-12T00:23:00.201Z [Protected] PID 17500, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T00:23:00.720Z [Protected] PID 19400, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T00:23:32.664Z [Protected] PID 12152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:23:55.587Z [Protected] PID 14332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T00:23:55.597Z [Protected] PID 21176, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T00:23:55.677Z [Protected] PID 19344, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T00:23:55.697Z [Protected] PID 19992, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T00:24:43.254Z [Protected] PID 19640, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-12T00:25:44.875Z [Protected] PID 17436, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T00:25:44.949Z [Protected] PID 9108, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T00:27:04.935Z [Protected] PID 20660, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T00:27:40.990Z [Protected] PID 21300, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-12T00:28:08.714Z [Protected] PID 20352, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T00:28:08.964Z [Protected] PID 9176, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T00:28:32.848Z [Protected] PID 19016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:33:32.651Z [Protected] PID 19548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:38:32.645Z [Protected] PID 5200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:42:08.966Z [Protected] PID 13588, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T00:42:09.026Z [Protected] PID 10852, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T00:42:09.136Z [Protected] PID 20464, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T00:42:09.946Z [Protected] PID 14312, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T00:42:10.647Z [Protected] PID 20888, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T00:43:32.678Z [Protected] PID 20960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:48:32.622Z [Protected] PID 15892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:52:51.669Z [Protected] PID 1456, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T00:52:51.689Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212055251
2016-12-12T00:53:32.655Z [Protected] PID 20144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:57:00.126Z [Protected] PID 21096, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T00:57:00.457Z [Protected] PID 19592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T00:57:00.477Z [Protected] PID 20332, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T00:57:00.555Z [Protected] PID 21180, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T00:58:32.489Z [Protected] PID 11260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T00:59:00.192Z [Protected] PID 19560, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T01:02:45.735Z [Protected] PID 19568, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T01:02:48.986Z [Protected] PID 21268, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-12T01:02:52.530Z [Protected] PID 4172, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T01:03:32.623Z [Protected] PID 18368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:04:54.274Z [Protected] PID 19936, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-12T01:07:33.887Z [Protected] PID 21496, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T01:08:32.628Z [Protected] PID 20260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:13:32.639Z [Protected] PID 19204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:18:32.682Z [Protected] PID 13696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:22:51.830Z [Protected] PID 17952, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T01:22:51.880Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212062251
2016-12-12T01:23:00.081Z [Protected] PID 18900, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T01:23:00.552Z [Protected] PID 20984, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T01:23:32.650Z [Protected] PID 18392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:23:55.949Z [Protected] PID 21064, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T01:23:55.959Z [Protected] PID 16416, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T01:23:56.279Z [Protected] PID 16692, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T01:23:56.289Z [Protected] PID 20452, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T01:25:26.762Z [Protected] PID 20704, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T01:25:27.213Z [Protected] PID 18480, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T01:27:04.937Z [Protected] PID 13768, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T01:28:32.599Z [Protected] PID 20580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:30:00.462Z [Protected] PID 16772, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T01:33:32.633Z [Protected] PID 18928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:37:49.180Z [Protected] PID 19220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:38:32.407Z [Protected] PID 20804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:41:00.189Z [Protected] PID 20356, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T01:41:00.628Z [Protected] PID 19516, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T01:43:32.640Z [Protected] PID 21432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:48:32.704Z [Protected] PID 19892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:52:52.021Z [Protected] PID 17884, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T01:52:52.061Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212065251
2016-12-12T01:53:32.647Z [Protected] PID 21496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:57:00.167Z [Protected] PID 19852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T01:57:00.497Z [Protected] PID 20624, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T01:57:00.507Z [Protected] PID 18316, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T01:57:00.577Z [Protected] PID 20152, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T01:58:32.660Z [Protected] PID 13696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T01:59:00.246Z [Protected] PID 20464, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T02:03:32.498Z [Protected] PID 20524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:08:32.488Z [Protected] PID 7864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:09:10.053Z [Protected] PID 16772, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T02:13:32.621Z [Protected] PID 16700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:18:32.564Z [Protected] PID 18928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:22:52.212Z [Protected] PID 20496, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T02:22:52.262Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212072252
2016-12-12T02:23:00.166Z [Protected] PID 21368, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T02:23:00.693Z [Protected] PID 19580, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T02:23:32.507Z [Protected] PID 18928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:23:56.571Z [Protected] PID 20196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T02:23:56.581Z [Protected] PID 18340, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T02:23:56.681Z [Protected] PID 20624, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T02:23:56.691Z [Protected] PID 16696, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T02:24:13.973Z [Protected] PID 4224, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T02:24:14.043Z [Protected] PID 20132, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T02:24:14.123Z [Protected] PID 20052, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T02:24:14.823Z [Protected] PID 21296, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T02:24:15.074Z [Protected] PID 16236, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T02:27:04.848Z [Protected] PID 21208, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T02:27:11.739Z [Protected] PID 20392, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T02:27:11.899Z [Protected] PID 18340, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T02:28:32.513Z [Protected] PID 6884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:30:00.864Z [Protected] PID 18868, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T02:30:00.884Z [Protected] PID 7376, Features 000000300000010A, C:\Windows\System32\aitagent.exe
2016-12-12T02:33:32.584Z [Protected] PID 14472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:38:32.599Z [Protected] PID 6376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:43:32.571Z [Protected] PID 18924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:48:32.640Z [Protected] PID 18968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:52:52.303Z [Protected] PID 20896, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T02:52:52.353Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212075252
2016-12-12T02:54:32.516Z [Protected] PID 784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:57:00.039Z [Protected] PID 21484, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T02:57:00.399Z [Protected] PID 21056, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T02:57:00.429Z [Protected] PID 6284, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T02:57:00.569Z [Protected] PID 21200, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T02:58:32.456Z [Protected] PID 19812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T02:59:00.230Z [Protected] PID 20496, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T02:59:37.863Z [Protected] PID 19932, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T03:00:36.199Z [Protected] PID 19616, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T03:03:32.509Z [Protected] PID 196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:08:32.560Z [Protected] PID 18668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:13:32.533Z [Protected] PID 18868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:18:32.644Z [Protected] PID 20580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:22:52.444Z [Protected] PID 9660, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T03:22:52.494Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212082252
2016-12-12T03:23:00.175Z [Protected] PID 20448, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T03:23:00.716Z [Protected] PID 21456, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T03:23:32.450Z [Protected] PID 20540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:23:56.713Z [Protected] PID 21440, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T03:23:56.733Z [Protected] PID 13904, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T03:23:56.834Z [Protected] PID 21452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T03:23:56.844Z [Protected] PID 18868, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T03:27:04.671Z [Protected] PID 18688, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T03:28:32.674Z [Protected] PID 17472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:33:32.467Z [Protected] PID 19876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:36:50.196Z [Protected] PID 20524, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T03:36:50.516Z [Protected] PID 20168, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T03:38:32.651Z [Protected] PID 13336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:41:00.352Z [Protected] PID 20336, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T03:43:32.664Z [Protected] PID 21400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:48:32.657Z [Protected] PID 21320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:52:52.635Z [Protected] PID 15516, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T03:52:52.675Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212085252
2016-12-12T03:53:32.691Z [Protected] PID 21324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:56:18.625Z [Protected] PID 16380, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T03:56:18.685Z [Protected] PID 21264, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T03:56:18.775Z [Protected] PID 21440, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T03:56:19.525Z [Protected] PID 20316, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T03:56:19.605Z [Protected] PID 16772, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T03:57:00.161Z [Protected] PID 13196, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T03:57:00.482Z [Protected] PID 21452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T03:57:00.511Z [Protected] PID 19440, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T03:57:00.581Z [Protected] PID 20084, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T03:58:32.594Z [Protected] PID 20168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T03:59:00.248Z [Protected] PID 19692, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T04:03:32.448Z [Protected] PID 15396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:05:16.393Z [Protected] PID 20152, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T04:08:32.532Z [Protected] PID 21292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:13:32.605Z [Protected] PID 20636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:18:32.518Z [Protected] PID 19928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:22:52.806Z [Protected] PID 19192, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T04:22:52.866Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212092252
2016-12-12T04:23:00.167Z [Protected] PID 14752, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T04:23:00.697Z [Protected] PID 19676, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T04:23:32.582Z [Protected] PID 19720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:23:57.045Z [Protected] PID 17476, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:23:57.055Z [Protected] PID 18612, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T04:23:57.155Z [Protected] PID 19884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:23:57.175Z [Protected] PID 12804, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T04:27:04.694Z [Protected] PID 21296, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T04:28:32.508Z [Protected] PID 21356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:33:32.689Z [Protected] PID 21368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:38:32.597Z [Protected] PID 20888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:43:32.596Z [Protected] PID 21268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:48:32.669Z [Protected] PID 18044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:50:19.165Z [Protected] PID 16956, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T04:50:19.494Z [Protected] PID 18472, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-12T04:50:20.116Z [Protected] PID 19608, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-12T04:52:53.007Z [Protected] PID 18936, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T04:52:53.057Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212095252
2016-12-12T04:53:32.667Z [Protected] PID 20324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:57:00.173Z [Protected] PID 21152, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T04:57:00.523Z [Protected] PID 16772, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:57:00.543Z [Protected] PID 15084, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T04:57:00.694Z [Protected] PID 19192, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T04:57:31.897Z [Protected] PID 21264, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:57:31.907Z [Protected] PID 13628, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-12T04:57:32.227Z [Protected] PID 17480, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:57:32.237Z [Protected] PID 18668, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-12T04:57:32.297Z [Protected] PID 20072, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-12T04:57:36.280Z [Protected] PID 19612, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-12T04:57:37.278Z [Protected] PID 21176, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-12T04:57:51.230Z [Protected] PID 18884, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T04:57:56.177Z [Protected] PID 20840, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T04:57:56.267Z [Protected] PID 19972, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T04:58:02.973Z [Protected] PID 20244, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T04:58:04.632Z [Protected] PID 11104, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-12T04:58:07.652Z [Protected] PID 21068, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T04:58:15.533Z [Protected] PID 18120, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T04:58:32.486Z [Protected] PID 5200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T04:59:00.170Z [Protected] PID 19588, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T04:59:23.363Z [Protected] PID 10600, Features 000000300000010A, C:\Windows\servicing\TrustedInstaller.exe
2016-12-12T04:59:49.750Z [Protected] PID 18284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:59:49.770Z [Protected] PID 15892, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-12T04:59:50.362Z [Protected] PID 8600, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:59:50.362Z [Protected] PID 21420, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T04:59:50.382Z [Protected] PID 21104, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-12T04:59:50.382Z [Protected] PID 20552, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-12T04:59:50.842Z [Protected] PID 19500, Features 0000003000000102, C:\Windows\System32\NETSTAT.EXE
2016-12-12T04:59:51.192Z [Protected] PID 13336, Features 0000003000000102, C:\Windows\System32\tasklist.exe
2016-12-12T04:59:52.282Z [Protected] PID 20648, Features 000000361FBF0102, C:\Windows\System32\wscript.exe
2016-12-12T05:00:09.320Z [Protected] PID 18408, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-12T05:03:32.889Z [Protected] PID 19552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:03:43.904Z [Protected] PID 19952, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-12T05:03:44.700Z [Protected] PID 1080, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-12T05:05:22.475Z [Protected] PID 20952, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T05:08:32.853Z [Protected] PID 18200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:13:32.646Z [Protected] PID 20920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:13:38.747Z [Protected] PID 20476, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T05:18:32.641Z [Protected] PID 16400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:22:53.318Z [Protected] PID 3900, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T05:22:53.368Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212102253
2016-12-12T05:23:00.358Z [Protected] PID 14804, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T05:23:01.729Z [Protected] PID 21008, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T05:23:32.663Z [Protected] PID 21180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:23:57.627Z [Protected] PID 14292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T05:23:57.638Z [Protected] PID 11436, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T05:23:58.067Z [Protected] PID 20616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T05:23:58.097Z [Protected] PID 20704, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T05:27:06.538Z [Protected] PID 19612, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T05:27:44.590Z [Protected] PID 19980, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-12T05:28:10.658Z [Protected] PID 14948, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T05:28:11.245Z [Protected] PID 20496, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T05:28:32.897Z [Protected] PID 21352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:33:32.660Z [Protected] PID 19580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:36:24.045Z [Protected] PID 20132, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T05:36:24.275Z [Protected] PID 7076, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T05:36:24.555Z [Protected] PID 19932, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T05:36:24.927Z [Protected] PID 20664, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T05:36:26.595Z [Protected] PID 12320, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T05:38:32.594Z [Protected] PID 14496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:41:00.215Z [Protected] PID 21292, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T05:41:01.025Z [Protected] PID 20672, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T05:43:32.607Z [Protected] PID 20524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:48:32.591Z [Protected] PID 7864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:52:53.528Z [Protected] PID 9108, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T05:52:53.539Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212105253
2016-12-12T05:53:32.494Z [Protected] PID 20324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:57:00.170Z [Protected] PID 18872, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T05:57:00.646Z [Protected] PID 19828, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T05:57:00.676Z [Protected] PID 16136, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T05:57:00.825Z [Protected] PID 21156, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T05:58:32.508Z [Protected] PID 18696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T05:59:00.231Z [Protected] PID 20144, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T06:03:32.621Z [Protected] PID 18816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:04:57.203Z [Protected] PID 20912, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T06:08:32.614Z [Protected] PID 19372, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:12:48.241Z [Protected] PID 14768, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T06:12:48.262Z [Protected] PID 19592, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T06:13:33.138Z [Protected] PID 19804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:18:33.061Z [Protected] PID 20144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:20:18.984Z [Protected] PID 19272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:20:19.034Z [Protected] PID 18512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:22:53.729Z [Protected] PID 20496, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T06:22:53.759Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212112253
2016-12-12T06:23:00.490Z [Protected] PID 20696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T06:23:01.449Z [Protected] PID 19524, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T06:23:32.657Z [Protected] PID 20340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:23:58.411Z [Protected] PID 20120, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T06:23:58.421Z [Protected] PID 17040, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T06:23:58.779Z [Protected] PID 13904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T06:23:58.789Z [Protected] PID 19656, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T06:27:06.366Z [Protected] PID 20756, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T06:28:32.548Z [Protected] PID 20664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:33:32.442Z [Protected] PID 21304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:38:32.486Z [Protected] PID 13120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:43:32.529Z [Protected] PID 19176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:48:32.573Z [Protected] PID 18852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:52:53.881Z [Protected] PID 19592, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T06:52:53.951Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212115253
2016-12-12T06:53:32.526Z [Protected] PID 21480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:57:00.166Z [Protected] PID 14056, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T06:57:00.554Z [Protected] PID 18592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T06:57:00.584Z [Protected] PID 19128, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T06:57:00.726Z [Protected] PID 19720, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T06:58:32.589Z [Protected] PID 20708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T06:59:00.203Z [Protected] PID 21064, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T07:02:54.817Z [Protected] PID 11104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T07:02:54.837Z [Protected] PID 21308, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T07:03:32.714Z [Protected] PID 20440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:06:50.361Z [Protected] PID 11032, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T07:06:50.961Z [Protected] PID 19364, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T07:08:32.497Z [Protected] PID 20084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:13:11.076Z [Protected] PID 20020, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T07:13:32.644Z [Protected] PID 21328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:18:32.639Z [Protected] PID 21444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:22:54.111Z [Protected] PID 21500, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T07:22:54.127Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212122253
2016-12-12T07:23:00.182Z [Protected] PID 17164, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T07:23:00.903Z [Protected] PID 13648, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T07:23:32.647Z [Protected] PID 16400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:23:59.211Z [Protected] PID 20816, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T07:23:59.231Z [Protected] PID 19984, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T07:23:59.320Z [Protected] PID 17600, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T07:23:59.330Z [Protected] PID 9764, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T07:27:02.667Z [Protected] PID 19104, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T07:28:32.637Z [Protected] PID 20340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:29:29.908Z [Protected] PID 20244, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T07:29:30.008Z [Protected] PID 19972, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T07:29:30.168Z [Protected] PID 21312, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T07:29:30.668Z [Protected] PID 18924, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T07:29:31.028Z [Protected] PID 20624, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T07:33:32.615Z [Protected] PID 17444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:38:32.647Z [Protected] PID 18808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:41:00.170Z [Protected] PID 16400, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T07:41:00.618Z [Protected] PID 20132, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T07:43:32.561Z [Protected] PID 20668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:48:32.584Z [Protected] PID 20632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:52:54.283Z [Protected] PID 16888, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T07:52:54.323Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212125254
2016-12-12T07:53:32.584Z [Protected] PID 19940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:57:00.169Z [Protected] PID 14312, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T07:57:00.547Z [Protected] PID 17196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T07:57:00.567Z [Protected] PID 19220, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T07:57:00.707Z [Protected] PID 20668, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T07:58:32.531Z [Protected] PID 20388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T07:59:00.275Z [Protected] PID 13324, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T07:59:36.740Z [Protected] PID 19836, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T08:00:00.173Z [Protected] PID 18660, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T08:00:00.535Z [Protected] PID 20836, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T08:03:00.830Z [Protected] PID 14752, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T08:03:00.840Z [Protected] PID 11064, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T08:03:32.647Z [Protected] PID 21428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:04:16.471Z [Protected] PID 18340, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T08:08:32.718Z [Protected] PID 18296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:13:32.591Z [Protected] PID 19708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:18:32.636Z [Protected] PID 14472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:22:21.078Z [Protected] PID 16400, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T08:22:54.485Z [Protected] PID 19176, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T08:22:54.515Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212132254
2016-12-12T08:23:00.205Z [Protected] PID 16884, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T08:23:00.854Z [Protected] PID 19536, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T08:23:32.599Z [Protected] PID 19336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:23:59.504Z [Protected] PID 20460, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T08:23:59.532Z [Protected] PID 19784, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T08:23:59.612Z [Protected] PID 21420, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T08:23:59.622Z [Protected] PID 20692, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T08:24:44.138Z [Protected] PID 21360, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-12T08:27:02.651Z [Protected] PID 21356, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T08:28:32.632Z [Protected] PID 6284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:33:11.964Z [Protected] PID 18228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T08:33:11.984Z [Protected] PID 14984, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T08:33:32.766Z [Protected] PID 21312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:38:32.538Z [Protected] PID 21224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:43:32.653Z [Protected] PID 21212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:48:32.606Z [Protected] PID 21404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:52:54.682Z [Protected] PID 19372, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T08:52:54.702Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212135254
2016-12-12T08:53:32.609Z [Protected] PID 17436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:54:42.286Z [Protected] PID 19788, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T08:54:42.477Z [Protected] PID 19608, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-12T08:57:00.169Z [Protected] PID 18876, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T08:57:00.541Z [Protected] PID 16024, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T08:57:00.567Z [Protected] PID 21460, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T08:57:00.724Z [Protected] PID 20240, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T08:58:32.563Z [Protected] PID 21024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T08:59:00.237Z [Protected] PID 15516, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T09:01:35.191Z [Protected] PID 21404, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T09:01:35.278Z [Protected] PID 21112, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T09:01:35.367Z [Protected] PID 17480, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T09:01:35.711Z [Protected] PID 20568, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T09:01:35.922Z [Protected] PID 20288, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T09:03:32.576Z [Protected] PID 21364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:04:35.614Z [Protected] PID 21076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:06:58.226Z [Protected] PID 16932, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-12T09:07:04.070Z [Protected] PID 8400, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-12T09:07:11.871Z [Protected] PID 13664, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T09:07:12.223Z [Protected] PID 6284, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T09:07:29.930Z [Protected] PID 18200, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-12T09:07:31.124Z [Protected] PID 18728, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-12T09:07:31.174Z [Protected] PID 20704, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-12T09:07:31.576Z [Protected] PID 20116, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T09:08:32.579Z [Protected] PID 21272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:13:01.800Z [Protected] PID 20624, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T09:13:32.544Z [Protected] PID 21128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:13:48.069Z [Protected] PID 14200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:13:49.119Z [Protected] PID 17064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:13:59.934Z [Protected] PID 19192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:14:00.936Z [Protected] PID 17444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:14:49.413Z [Protected] PID 19928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:14:54.545Z [Protected] PID 19104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:14:54.949Z [Protected] PID 20704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:14:55.579Z [Protected] PID 13696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:17:45.106Z [Protected] PID 21804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:17:45.668Z [Protected] PID 16956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:17:46.383Z [Protected] PID 20440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:18:32.450Z [Protected] PID 15516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:20:55.197Z [Protected] PID 20884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:21:12.510Z [Protected] PID 20260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:22:55.918Z [Protected] PID 21532, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T09:22:56.022Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212142254
2016-12-12T09:23:00.365Z [Protected] PID 21888, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T09:23:01.873Z [Protected] PID 21564, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T09:23:32.581Z [Protected] PID 22216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:23:59.874Z [Protected] PID 19612, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T09:23:59.885Z [Protected] PID 21540, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T09:24:00.332Z [Protected] PID 22508, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T09:24:00.346Z [Protected] PID 20896, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T09:25:36.818Z [Protected] PID 16772, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T09:25:36.945Z [Protected] PID 22516, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T09:27:02.849Z [Protected] PID 22032, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T09:28:32.751Z [Protected] PID 22064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:33:32.590Z [Protected] PID 20136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:38:32.604Z [Protected] PID 20340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:41:00.171Z [Protected] PID 21888, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T09:41:00.633Z [Protected] PID 21056, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T09:42:17.119Z [Protected] PID 19748, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-12T09:42:22.373Z [Protected] PID 22388, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-12T09:43:32.554Z [Protected] PID 20240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:46:09.851Z [Protected] PID 22456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:46:10.359Z [Protected] PID 17228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:48:32.558Z [Protected] PID 18928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:51:44.993Z [Protected] PID 21792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:52:21.010Z [Protected] PID 20616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:52:56.106Z [Protected] PID 21592, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T09:52:56.126Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212145256
2016-12-12T09:53:17.990Z [Protected] PID 22340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T09:53:18.004Z [Protected] PID 18524, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T09:53:19.331Z [Protected] PID 21772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:53:19.767Z [Protected] PID 21804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:53:30.641Z [Protected] PID 22440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:53:32.420Z [Protected] PID 20448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:53:34.129Z [Protected] PID 14332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:57:00.484Z [Protected] PID 22440, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T09:57:00.930Z [Protected] PID 22084, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T09:57:00.945Z [Protected] PID 22008, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T09:57:01.025Z [Protected] PID 21552, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T09:57:29.844Z [Protected] PID 21876, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T09:57:29.978Z [Protected] PID 22276, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T09:58:11.929Z [Protected] PID 21844, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T09:58:32.616Z [Protected] PID 21036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T09:58:53.835Z [Protected] PID 20996, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T09:58:53.867Z [Protected] PID 15516, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T09:59:00.316Z [Protected] PID 18096, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T09:59:14.798Z [Protected] PID 22020, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T10:00:00.990Z [Protected] PID 21784, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-12T10:01:28.008Z [Protected] PID 18924, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T10:01:28.132Z [Protected] PID 21308, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T10:01:43.728Z [Protected] PID 19364, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T10:02:48.418Z [Protected] PID 20232, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T10:02:48.512Z [Protected] PID 21580, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T10:03:10.271Z [Protected] PID 19852, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T10:03:22.937Z [Protected] PID 11104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T10:03:22.950Z [Protected] PID 22016, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T10:03:32.887Z [Protected] PID 15340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:04:28.372Z [Protected] PID 11288, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T10:05:01.650Z [Protected] PID 22264, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T10:05:01.770Z [Protected] PID 21204, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T10:05:09.040Z [Protected] PID 22068, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T10:08:32.549Z [Protected] PID 15920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:11:36.704Z [Protected] PID 21424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:11:37.272Z [Protected] PID 19364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:11:44.853Z [Protected] PID 21756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:11:48.681Z [Protected] PID 17628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:13:30.503Z [Protected] PID 22412, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T10:13:30.523Z [Protected] PID 21948, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T10:13:32.361Z [Protected] PID 18936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:15:08.054Z [Protected] PID 22460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:15:08.653Z [Protected] PID 22004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:16:55.721Z [Protected] PID 22428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:16:59.365Z [Protected] PID 22484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:18:32.453Z [Protected] PID 22384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:22:56.237Z [Protected] PID 19616, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T10:22:56.264Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212152256
2016-12-12T10:23:00.334Z [Protected] PID 22272, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T10:23:01.377Z [Protected] PID 4744, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T10:23:32.533Z [Protected] PID 22908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:24:00.612Z [Protected] PID 16376, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T10:24:00.624Z [Protected] PID 23544, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T10:24:00.705Z [Protected] PID 22684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T10:24:00.716Z [Protected] PID 22672, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T10:27:02.866Z [Protected] PID 21436, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T10:27:33.530Z [Protected] PID 23284, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-12T10:27:59.433Z [Protected] PID 22812, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T10:27:59.669Z [Protected] PID 22904, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T10:28:32.625Z [Protected] PID 23232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:28:37.312Z [Protected] PID 22560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:28:37.861Z [Protected] PID 23544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:28:56.574Z [Protected] PID 23256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:32:27.825Z [Protected] PID 22572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:32:28.367Z [Protected] PID 22292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:32:29.933Z [Protected] PID 16444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:32:33.556Z [Protected] PID 22848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:33:32.411Z [Protected] PID 22880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:34:01.640Z [Protected] PID 22696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:36:51.201Z [Protected] PID 23412, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T10:36:51.908Z [Protected] PID 20812, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T10:38:32.630Z [Protected] PID 16376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:43:32.520Z [Protected] PID 22800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:48:32.632Z [Protected] PID 23208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:49:16.843Z [Protected] PID 21608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:49:17.404Z [Protected] PID 20972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:49:18.423Z [Protected] PID 23424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:49:21.529Z [Protected] PID 23436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:49:26.085Z [Protected] PID 19500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:50:46.503Z [Protected] PID 22092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:50:47.062Z [Protected] PID 21252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:50:47.788Z [Protected] PID 22860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:51:05.477Z [Protected] PID 23236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:51:57.209Z [Protected] PID 22568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:52:12.798Z [Protected] PID 21772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:52:19.067Z [Protected] PID 21848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:52:56.427Z [Protected] PID 23148, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T10:52:56.454Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212155256
2016-12-12T10:53:32.456Z [Protected] PID 20708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:54:27.980Z [Protected] PID 21224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:54:29.007Z [Protected] PID 16376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:54:33.475Z [Protected] PID 22064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:54:43.439Z [Protected] PID 22332, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T10:54:44.175Z [Protected] PID 20240, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T10:54:44.370Z [Protected] PID 15864, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T10:54:45.513Z [Protected] PID 23192, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T10:54:50.301Z [Protected] PID 23828, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T10:57:00.253Z [Protected] PID 24088, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T10:57:01.082Z [Protected] PID 23668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T10:57:01.104Z [Protected] PID 24468, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T10:57:01.192Z [Protected] PID 20812, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T10:58:32.674Z [Protected] PID 23868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T10:59:00.536Z [Protected] PID 23824, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T11:03:32.667Z [Protected] PID 24008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:08:32.636Z [Protected] PID 22836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:08:48.235Z [Protected] PID 24504, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T11:11:54.713Z [Protected] PID 21956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:11:55.244Z [Protected] PID 19672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:12:08.246Z [Protected] PID 23596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:12:17.147Z [Protected] PID 20020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:12:19.456Z [Protected] PID 23492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:12:21.679Z [Protected] PID 20604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:13:32.442Z [Protected] PID 24252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:15:18.596Z [Protected] PID 22648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:15:19.580Z [Protected] PID 21224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:15:22.957Z [Protected] PID 22392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:18:32.635Z [Protected] PID 22364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:22:56.608Z [Protected] PID 22392, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T11:22:56.651Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212162256
2016-12-12T11:23:00.172Z [Protected] PID 23460, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T11:23:01.181Z [Protected] PID 24300, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T11:23:32.657Z [Protected] PID 18960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:24:01.114Z [Protected] PID 23880, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T11:24:01.132Z [Protected] PID 20020, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T11:24:01.527Z [Protected] PID 21108, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T11:24:01.549Z [Protected] PID 21416, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T11:25:07.475Z [Protected] PID 24264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:25:13.026Z [Protected] PID 14036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:26:15.173Z [Protected] PID 23696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:26:17.509Z [Protected] PID 22440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:26:19.821Z [Protected] PID 21980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:27:02.887Z [Protected] PID 21580, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T11:27:41.486Z [Protected] PID 23452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:27:53.350Z [Protected] PID 22808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:28:32.674Z [Protected] PID 23684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:31:55.476Z [Protected] PID 20772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:31:57.409Z [Protected] PID 21560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:31:59.560Z [Protected] PID 24120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:32:02.397Z [Protected] PID 19612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:32:04.641Z [Protected] PID 23880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:32:08.595Z [Protected] PID 24324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:33:32.397Z [Protected] PID 23180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:35:31.955Z [Protected] PID 22840, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:38:32.489Z [Protected] PID 24500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:40:49.750Z [Protected] PID 22592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:41:00.222Z [Protected] PID 20624, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T11:41:00.990Z [Protected] PID 23680, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T11:43:32.793Z [Protected] PID 17272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:48:32.848Z [Protected] PID 24396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:49:22.873Z [Protected] PID 24492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:49:45.576Z [Protected] PID 23840, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:49:46.609Z [Protected] PID 23864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:52:56.716Z [Protected] PID 23768, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T11:52:56.742Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212165256
2016-12-12T11:53:32.557Z [Protected] PID 20812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T11:57:00.223Z [Protected] PID 22864, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T11:57:00.692Z [Protected] PID 17952, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T11:57:00.706Z [Protected] PID 21560, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T11:57:00.776Z [Protected] PID 23116, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T11:59:00.717Z [Protected] PID 23636, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T11:59:32.517Z [Protected] PID 21632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:00:00.187Z [Protected] PID 17372, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe
2016-12-12T12:02:44.549Z [Protected] PID 22776, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-12T12:02:51.062Z [Protected] PID 23348, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-12T12:03:32.585Z [Protected] PID 13744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:08:32.777Z [Protected] PID 24316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:11:53.567Z [Protected] PID 22852, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T12:13:29.717Z [Protected] PID 21724, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T12:13:32.587Z [Protected] PID 20776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:13:35.704Z [Protected] PID 23568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T12:13:35.719Z [Protected] PID 24148, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T12:13:40.896Z [Protected] PID 22616, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T12:13:43.792Z [Protected] PID 24520, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T12:13:45.451Z [Protected] PID 22584, Features 0000003200000106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\AdobeCollabSync.exe
2016-12-12T12:13:46.352Z [Protected] PID 22596, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T12:18:33.074Z [Protected] PID 23052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:22:40.841Z [Protected] PID 24452, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-12T12:22:45.473Z [Protected] PID 24052, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T12:22:56.890Z [Protected] PID 22036, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T12:22:56.917Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212172256
2016-12-12T12:23:00.235Z [Protected] PID 21596, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T12:23:01.952Z [Protected] PID 18972, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T12:23:32.479Z [Protected] PID 25024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:24:01.985Z [Protected] PID 24808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T12:24:02.001Z [Protected] PID 24780, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T12:24:02.347Z [Protected] PID 25016, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T12:24:02.363Z [Protected] PID 24984, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T12:24:14.734Z [Protected] PID 25124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:25:06.477Z [Protected] PID 25380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:25:18.061Z [Protected] PID 24972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:26:23.973Z [Protected] PID 24508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:26:35.138Z [Protected] PID 25164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:26:54.357Z [Protected] PID 23808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:26:55.730Z [Protected] PID 24792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:26:58.154Z [Protected] PID 25492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:27:03.222Z [Protected] PID 23840, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:27:06.615Z [Protected] PID 25148, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T12:27:09.505Z [Protected] PID 26776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:28:32.518Z [Protected] PID 24096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:28:54.379Z [Protected] PID 24828, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:30:12.994Z [Protected] PID 24896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:33:03.149Z [Protected] PID 25032, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-12T12:33:05.271Z [Protected] PID 23592, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-12T12:33:14.047Z [Protected] PID 26612, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T12:33:14.092Z [Protected] PID 24792, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-12T12:33:14.437Z [Protected] PID 25300, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-12T12:33:32.507Z [Protected] PID 22972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:33:37.129Z [Protected] PID 27188, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T12:33:37.370Z [Protected] PID 23716, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T12:38:32.502Z [Protected] PID 22736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:40:49.667Z [Protected] PID 26260, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T12:40:49.678Z [Protected] PID 27228, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T12:40:49.753Z [Protected] PID 25196, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T12:40:50.403Z [Protected] PID 25096, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T12:40:51.303Z [Protected] PID 27212, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T12:43:06.278Z [Protected] PID 27300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:43:32.407Z [Protected] PID 23468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:43:59.809Z [Protected] PID 25508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:44:54.075Z [Protected] PID 24864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:48:32.647Z [Protected] PID 22204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:48:56.688Z [Protected] PID 27208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:52:05.246Z [Protected] PID 25324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:52:57.064Z [Protected] PID 26824, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T12:52:57.107Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212175256
2016-12-12T12:53:32.422Z [Protected] PID 26116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:53:42.579Z [Protected] PID 27472, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T12:53:42.594Z [Protected] PID 26180, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T12:57:00.694Z [Protected] PID 27344, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T12:57:01.279Z [Protected] PID 26172, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T12:57:01.297Z [Protected] PID 26272, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T12:57:01.385Z [Protected] PID 24820, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T12:58:32.790Z [Protected] PID 23748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T12:59:00.521Z [Protected] PID 26148, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T13:03:32.785Z [Protected] PID 21768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:06:13.123Z [Protected] PID 24684, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T13:08:12.686Z [Protected] PID 25256, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T13:08:13.271Z [Protected] PID 26388, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T13:08:33.140Z [Protected] PID 24040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:10:57.426Z [Protected] PID 26132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:13:32.729Z [Protected] PID 2896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:13:43.417Z [Protected] PID 27192, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T13:13:43.445Z [Protected] PID 26564, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T13:18:35.248Z [Protected] PID 24040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:22:57.441Z [Protected] PID 26260, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T13:22:57.492Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212182257
2016-12-12T13:23:01.145Z [Protected] PID 27508, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T13:23:03.516Z [Protected] PID 27456, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T13:23:32.598Z [Protected] PID 15024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:24:02.811Z [Protected] PID 19964, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T13:24:02.824Z [Protected] PID 20280, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T13:24:03.298Z [Protected] PID 26092, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T13:24:03.329Z [Protected] PID 24040, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T13:27:09.020Z [Protected] PID 26488, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T13:28:32.470Z [Protected] PID 27208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:33:32.504Z [Protected] PID 27532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:38:32.595Z [Protected] PID 24984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:41:00.257Z [Protected] PID 27292, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T13:41:01.269Z [Protected] PID 27008, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T13:43:32.649Z [Protected] PID 24868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:48:32.644Z [Protected] PID 27108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:50:43.143Z [Protected] PID 26332, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T13:51:55.390Z [Protected] PID 25476, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:52:06.573Z [Protected] PID 18276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:52:24.562Z [Protected] PID 26676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:52:52.671Z [Protected] PID 13744, Features 0000003000000102, C:\Windows\System32\SndVol.exe
2016-12-12T13:52:57.585Z [Protected] PID 25264, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T13:52:57.621Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212185257
2016-12-12T13:53:32.375Z [Protected] PID 23644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:57:00.232Z [Protected] PID 22344, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T13:57:00.647Z [Protected] PID 20512, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T13:57:00.678Z [Protected] PID 26808, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T13:57:00.864Z [Protected] PID 24488, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T13:57:20.030Z [Protected] PID 22320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:58:32.443Z [Protected] PID 25160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T13:59:00.335Z [Protected] PID 27392, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T13:59:47.451Z [Protected] PID 26064, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T14:03:32.566Z [Protected] PID 23336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:06:52.167Z [Protected] PID 24776, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T14:06:52.795Z [Protected] PID 27512, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T14:08:32.702Z [Protected] PID 26956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:09:00.447Z [Protected] PID 26912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:11:15.177Z [Protected] PID 26648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:11:17.744Z [Protected] PID 18972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:13:32.592Z [Protected] PID 27040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:13:57.131Z [Protected] PID 22460, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T14:18:32.685Z [Protected] PID 22928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:18:48.099Z [Protected] PID 25248, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T14:18:48.331Z [Protected] PID 22596, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T14:22:57.751Z [Protected] PID 24992, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T14:22:57.783Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212192257
2016-12-12T14:23:00.125Z [Protected] PID 26332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T14:23:00.830Z [Protected] PID 27372, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T14:23:32.593Z [Protected] PID 26132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:23:47.679Z [Protected] PID 26512, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T14:24:03.557Z [Protected] PID 25536, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T14:24:03.571Z [Protected] PID 13684, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T14:24:03.926Z [Protected] PID 26600, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T14:24:03.953Z [Protected] PID 21564, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T14:24:54.896Z [Protected] PID 24040, Features 0000003000000102, C:\Windows\System32\SndVol.exe
2016-12-12T14:27:05.166Z [Protected] PID 27208, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T14:27:37.451Z [Protected] PID 23208, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-12T14:28:07.199Z [Protected] PID 22204, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T14:28:07.576Z [Protected] PID 26156, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T14:28:11.742Z [Protected] PID 24200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:28:32.419Z [Protected] PID 24944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:29:23.708Z [Protected] PID 24428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:33:32.652Z [Protected] PID 25068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:35:00.879Z [Protected] PID 23592, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T14:35:05.763Z [Protected] PID 22608, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T14:35:06.506Z [Protected] PID 26724, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T14:35:06.794Z [Protected] PID 25636, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T14:35:07.014Z [Protected] PID 24304, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T14:35:12.010Z [Protected] PID 19968, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T14:35:18.580Z [Protected] PID 1080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:36:01.589Z [Protected] PID 26612, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T14:38:32.520Z [Protected] PID 24376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:39:29.208Z [Protected] PID 26024, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T14:39:29.711Z [Protected] PID 24692, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-12T14:43:32.643Z [Protected] PID 25052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:43:49.222Z [Protected] PID 26580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:44:02.553Z [Protected] PID 24084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:44:05.365Z [Protected] PID 21564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:45:01.143Z [Protected] PID 23560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:45:12.419Z [Protected] PID 27188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:45:21.146Z [Protected] PID 26904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:48:31.028Z [Protected] PID 23272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:48:32.441Z [Protected] PID 22320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:50:34.871Z [Protected] PID 27596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:51:11.843Z [Protected] PID 25564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:52:57.950Z [Protected] PID 27284, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T14:52:57.976Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212195257
2016-12-12T14:53:14.003Z [Protected] PID 24176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:53:19.166Z [Protected] PID 26276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:53:32.425Z [Protected] PID 23544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:57:00.336Z [Protected] PID 25180, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T14:57:00.754Z [Protected] PID 26192, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T14:57:00.958Z [Protected] PID 24028, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T14:57:01.150Z [Protected] PID 24472, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T14:58:32.556Z [Protected] PID 19924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T14:59:00.223Z [Protected] PID 23820, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T15:00:01.213Z [Protected] PID 26000, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-12T15:00:01.659Z [Protected] PID 27308, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T15:00:01.680Z [Protected] PID 27480, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-12T15:01:34.406Z [Protected] PID 24948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:01:37.710Z [Protected] PID 1080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:01:40.753Z [Protected] PID 26676, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T15:01:44.989Z [Protected] PID 25088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:03:32.420Z [Protected] PID 24356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:05:47.235Z [Protected] PID 27344, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-12T15:05:54.895Z [Protected] PID 19968, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T15:05:59.668Z [Protected] PID 27080, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T15:08:32.583Z [Protected] PID 25952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:13:32.507Z [Protected] PID 25808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:18:32.530Z [Protected] PID 23028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:18:58.190Z [Protected] PID 27028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:19:00.643Z [Protected] PID 26388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:19:04.259Z [Protected] PID 24136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:22:58.176Z [Protected] PID 24280, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T15:22:58.216Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212202257
2016-12-12T15:23:00.224Z [Protected] PID 25796, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T15:23:00.976Z [Protected] PID 26020, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T15:23:26.250Z [Protected] PID 24428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:23:27.259Z [Protected] PID 26168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:23:28.633Z [Protected] PID 25360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:23:32.441Z [Protected] PID 24096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:24:04.431Z [Protected] PID 27028, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T15:24:04.444Z [Protected] PID 24848, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T15:24:04.953Z [Protected] PID 18548, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T15:24:04.978Z [Protected] PID 1280, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T15:27:03.170Z [Protected] PID 25788, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T15:27:03.190Z [Protected] PID 24344, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-12T15:27:03.405Z [Protected] PID 24744, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-12T15:27:03.604Z [Protected] PID 18844, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T15:27:06.906Z [Protected] PID 24664, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-12T15:27:07.647Z [Protected] PID 25536, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-12T15:27:07.915Z [Protected] PID 22852, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-12T15:27:08.070Z [Protected] PID 26588, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-12T15:27:08.179Z [Protected] PID 24936, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-12T15:27:08.390Z [Protected] PID 19968, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-12T15:27:11.964Z [Protected] PID 25384, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T15:27:30.704Z [Protected] PID 25064, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T15:27:30.808Z [Protected] PID 27176, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T15:27:55.336Z [Protected] PID 26512, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T15:28:32.699Z [Protected] PID 24360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:30:13.489Z [Protected] PID 27196, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T15:30:13.598Z [Protected] PID 24472, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T15:31:15.323Z [Protected] PID 21108, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T15:31:30.891Z [Protected] PID 23600, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-12T15:31:41.183Z [Protected] PID 21328, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
2016-12-12T15:31:41.619Z [Protected] PID 26904, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
2016-12-12T15:32:16.170Z [Protected] PID 22256, Features 0000003200000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T15:32:50.170Z [Protected] PID 25052, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T15:32:51.716Z [Protected] PID 880, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T15:33:32.489Z [Protected] PID 26512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:38:32.482Z [Protected] PID 24924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:41:00.160Z [Protected] PID 24980, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T15:41:00.737Z [Protected] PID 25796, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T15:43:32.478Z [Protected] PID 26536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:45:41.306Z [Protected] PID 23688, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T15:47:16.746Z [Protected] PID 24608, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-12T15:47:26.120Z [Protected] PID 25584, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T15:47:26.325Z [Protected] PID 27344, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T15:48:15.481Z [Protected] PID 22256, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T15:48:15.704Z [Protected] PID 23916, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T15:48:32.471Z [Protected] PID 23188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:52:58.287Z [Protected] PID 24696, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T15:52:58.314Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212205258
2016-12-12T15:53:32.487Z [Protected] PID 26396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:57:00.072Z [Protected] PID 26356, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T15:57:00.329Z [Protected] PID 26388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T15:57:00.357Z [Protected] PID 23208, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T15:57:00.439Z [Protected] PID 27216, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T15:57:06.435Z [Protected] PID 25004, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-12T15:57:10.506Z [Protected] PID 22824, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-12T15:57:13.267Z [Protected] PID 26832, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T15:57:15.673Z [Protected] PID 21256, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-12T15:58:24.933Z [Protected] PID 24360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:58:29.250Z [Protected] PID 26604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:58:32.372Z [Protected] PID 25512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:58:45.088Z [Protected] PID 26724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:59:00.166Z [Protected] PID 27584, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T15:59:29.406Z [Protected] PID 26100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:59:30.636Z [Protected] PID 24032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:59:31.889Z [Protected] PID 24540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T15:59:56.529Z [Protected] PID 26576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:00:56.780Z [Protected] PID 23544, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-12T16:00:59.868Z [Protected] PID 26172, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-12T16:01:09.177Z [Protected] PID 24884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T16:01:09.240Z [Protected] PID 23912, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-12T16:01:09.790Z [Protected] PID 13832, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-12T16:03:32.708Z [Protected] PID 22608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:07:41.763Z [Protected] PID 23440, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T16:08:32.513Z [Protected] PID 25500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:13:08.263Z [Protected] PID 27912, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T16:13:10.278Z [Protected] PID 28492, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T16:13:10.944Z [Protected] PID 27980, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T16:13:12.207Z [Protected] PID 28316, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T16:13:12.211Z [Protected] PID 27868, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T16:13:14.516Z [Protected] PID 28144, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T16:13:32.630Z [Protected] PID 27888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:14:44.925Z [Protected] PID 28136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:18:32.620Z [Protected] PID 25460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:22:22.421Z [Protected] PID 23076, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T16:22:58.384Z [Protected] PID 28676, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T16:22:58.410Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212212258
2016-12-12T16:23:00.116Z [Protected] PID 28848, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T16:23:01.055Z [Protected] PID 29116, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T16:23:01.959Z [Protected] PID 28964, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T16:23:02.051Z [Protected] PID 29132, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T16:23:32.480Z [Protected] PID 28896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:24:05.491Z [Protected] PID 28688, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T16:24:05.504Z [Protected] PID 28856, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T16:24:05.806Z [Protected] PID 29680, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T16:24:05.818Z [Protected] PID 29148, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T16:24:45.097Z [Protected] PID 28940, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-12T16:25:38.845Z [Protected] PID 28896, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T16:25:38.929Z [Protected] PID 29352, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T16:25:43.440Z [Protected] PID 29668, Features 000000361FBF2106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-12T16:25:55.759Z [Protected] PID 27672, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-12T16:27:06.157Z [Protected] PID 29020, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T16:28:32.693Z [Protected] PID 18848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:33:32.478Z [Protected] PID 13892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:38:32.549Z [Protected] PID 30616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:43:32.462Z [Protected] PID 25056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:45:51.225Z [Protected] PID 24676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:45:52.151Z [Protected] PID 30232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:45:53.386Z [Protected] PID 30424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:48:32.483Z [Protected] PID 29444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:49:56.191Z [Protected] PID 28940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:49:57.439Z [Protected] PID 30340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:52:58.491Z [Protected] PID 25796, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T16:52:58.525Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212215258
2016-12-12T16:53:18.611Z [Protected] PID 30216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:53:32.377Z [Protected] PID 30380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:53:52.571Z [Protected] PID 20776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:57:00.191Z [Protected] PID 31156, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T16:57:00.618Z [Protected] PID 28180, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T16:57:00.628Z [Protected] PID 22800, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T16:57:00.689Z [Protected] PID 31408, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T16:58:32.493Z [Protected] PID 29632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T16:59:00.169Z [Protected] PID 31544, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T17:00:53.541Z [Protected] PID 31656, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T17:00:53.997Z [Protected] PID 27112, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T17:00:54.232Z [Protected] PID 31420, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T17:03:09.361Z [Protected] PID 31472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:03:12.255Z [Protected] PID 26940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:03:16.282Z [Protected] PID 26364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:03:32.371Z [Protected] PID 26696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:03:35.121Z [Protected] PID 27528, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T17:04:45.435Z [Protected] PID 19756, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T17:04:55.686Z [Protected] PID 31700, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:06:00.025Z [Protected] PID 30404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:06:05.910Z [Protected] PID 22888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:06:08.504Z [Protected] PID 30360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:08:32.498Z [Protected] PID 27092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:13:32.476Z [Protected] PID 31484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:18:07.637Z [Protected] PID 30356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:18:32.366Z [Protected] PID 30724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:20:01.404Z [Protected] PID 29852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:20:27.474Z [Protected] PID 18844, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:22:58.588Z [Protected] PID 31376, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T17:22:58.615Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212222258
2016-12-12T17:23:00.105Z [Protected] PID 31724, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T17:23:01.057Z [Protected] PID 22080, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T17:23:22.776Z [Protected] PID 31584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:23:23.213Z [Protected] PID 29992, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:23:32.367Z [Protected] PID 30652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:23:37.310Z [Protected] PID 27480, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T17:23:37.478Z [Protected] PID 18448, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T17:24:06.004Z [Protected] PID 27952, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T17:24:06.015Z [Protected] PID 29168, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T17:24:06.153Z [Protected] PID 22272, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T17:24:06.165Z [Protected] PID 31020, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T17:24:34.272Z [Protected] PID 30996, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:25:24.320Z [Protected] PID 31468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:25:26.993Z [Protected] PID 25088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:27:08.736Z [Protected] PID 27484, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T17:28:32.489Z [Protected] PID 32376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:29:17.499Z [Protected] PID 31976, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T17:29:17.598Z [Protected] PID 27680, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T17:29:35.915Z [Protected] PID 20768, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:33:32.480Z [Protected] PID 31860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:35:24.182Z [Protected] PID 31812, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-12T17:35:27.325Z [Protected] PID 32156, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:35:31.692Z [Protected] PID 32612, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T17:35:31.692Z [Protected] PID 32364, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-12T17:36:04.458Z [Protected] PID 30400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:36:50.155Z [Protected] PID 31304, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T17:36:53.046Z [Protected] PID 31872, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T17:36:53.424Z [Protected] PID 30944, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T17:37:25.595Z [Protected] PID 32536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:37:26.033Z [Protected] PID 31356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:38:23.926Z [Protected] PID 32180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:38:24.358Z [Protected] PID 18844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:38:32.363Z [Protected] PID 31984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:38:43.980Z [Protected] PID 30096, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T17:38:44.074Z [Protected] PID 32616, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T17:38:59.087Z [Protected] PID 32536, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:38:59.551Z [Protected] PID 32316, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:41:00.357Z [Protected] PID 31636, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T17:43:32.495Z [Protected] PID 32552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:48:32.484Z [Protected] PID 32560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:52:58.705Z [Protected] PID 26152, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T17:52:58.731Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212225258
2016-12-12T17:53:32.479Z [Protected] PID 30820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:57:00.062Z [Protected] PID 31432, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T17:57:00.295Z [Protected] PID 28216, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T17:57:00.310Z [Protected] PID 32000, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T17:57:00.380Z [Protected] PID 25144, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T17:57:59.752Z [Protected] PID 31836, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-12T17:58:05.415Z [Protected] PID 30652, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-12T17:58:13.891Z [Protected] PID 32584, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T17:58:15.709Z [Protected] PID 31304, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T17:58:15.768Z [Protected] PID 32148, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T17:58:15.808Z [Protected] PID 32444, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T17:58:16.300Z [Protected] PID 30184, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T17:58:16.556Z [Protected] PID 32072, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T17:58:32.483Z [Protected] PID 32460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T17:59:00.110Z [Protected] PID 31784, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T18:03:32.459Z [Protected] PID 31424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:03:32.829Z [Protected] PID 32540, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T18:07:11.360Z [Protected] PID 31516, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T18:08:32.480Z [Protected] PID 12456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:13:32.455Z [Protected] PID 31316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:18:32.490Z [Protected] PID 25876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:22:58.794Z [Protected] PID 32356, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T18:22:58.820Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212232258
2016-12-12T18:23:00.079Z [Protected] PID 31876, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T18:23:00.711Z [Protected] PID 31616, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T18:23:01.196Z [Protected] PID 31464, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T18:23:32.492Z [Protected] PID 30192, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:24:06.362Z [Protected] PID 22844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T18:24:06.373Z [Protected] PID 31824, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T18:24:06.508Z [Protected] PID 13684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T18:24:06.518Z [Protected] PID 30768, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T18:27:04.597Z [Protected] PID 32072, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T18:27:31.689Z [Protected] PID 32148, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-12T18:27:56.687Z [Protected] PID 31988, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T18:27:56.920Z [Protected] PID 30096, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T18:28:32.858Z [Protected] PID 31132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:33:32.448Z [Protected] PID 31324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:34:00.497Z [Protected] PID 31848, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T18:34:00.527Z [Protected] PID 31148, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T18:36:20.682Z [Protected] PID 24992, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-12T18:38:33.181Z [Protected] PID 25904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:43:32.497Z [Protected] PID 26888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:48:32.438Z [Protected] PID 25948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:52:34.004Z [Protected] PID 31320, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T18:52:59.001Z [Protected] PID 18844, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T18:52:59.026Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161212235258
2016-12-12T18:53:32.451Z [Protected] PID 31244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:57:00.467Z [Protected] PID 29692, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T18:57:00.765Z [Protected] PID 32352, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T18:57:00.795Z [Protected] PID 32732, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T18:57:00.873Z [Protected] PID 30400, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T18:58:32.444Z [Protected] PID 27980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T18:59:00.376Z [Protected] PID 32516, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T18:59:50.587Z [Protected] PID 29444, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T19:03:32.481Z [Protected] PID 19484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:04:50.264Z [Protected] PID 24288, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T19:08:32.471Z [Protected] PID 24368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:13:32.484Z [Protected] PID 32212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:18:32.481Z [Protected] PID 32520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:22:53.629Z [Protected] PID 29868, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T19:22:59.090Z [Protected] PID 27980, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T19:22:59.126Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213002259
2016-12-12T19:23:00.074Z [Protected] PID 22780, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T19:23:02.359Z [Protected] PID 32232, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T19:23:32.473Z [Protected] PID 32400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:24:06.784Z [Protected] PID 17080, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T19:24:06.796Z [Protected] PID 18008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T19:24:07.004Z [Protected] PID 32544, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T19:24:07.015Z [Protected] PID 25088, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T19:27:06.261Z [Protected] PID 31840, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T19:28:32.476Z [Protected] PID 31944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:33:32.481Z [Protected] PID 31408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:34:04.855Z [Protected] PID 31292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T19:34:04.867Z [Protected] PID 32420, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T19:38:32.963Z [Protected] PID 17676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:40:11.046Z [Protected] PID 31264, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T19:41:00.256Z [Protected] PID 31652, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T19:41:01.720Z [Protected] PID 26364, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T19:43:32.484Z [Protected] PID 31884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:48:32.473Z [Protected] PID 31960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:52:19.050Z [Protected] PID 32096, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T19:52:21.320Z [Protected] PID 31592, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T19:52:22.256Z [Protected] PID 30980, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T19:52:22.278Z [Protected] PID 26008, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T19:52:22.432Z [Protected] PID 30936, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T19:52:23.247Z [Protected] PID 32704, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T19:52:59.305Z [Protected] PID 31056, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T19:52:59.333Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213005259
2016-12-12T19:53:32.477Z [Protected] PID 23112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:57:00.077Z [Protected] PID 31232, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T19:57:00.332Z [Protected] PID 29992, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T19:57:00.352Z [Protected] PID 32052, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T19:57:00.411Z [Protected] PID 31868, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T19:58:32.477Z [Protected] PID 30544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T19:59:00.420Z [Protected] PID 29420, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T19:59:00.420Z [Protected] PID 31752, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T19:59:00.479Z [Protected] PID 32008, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T19:59:01.150Z [Protected] PID 25024, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-12T19:59:01.151Z [Protected] PID 22888, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-12T20:03:32.459Z [Protected] PID 29336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:04:39.942Z [Protected] PID 31616, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T20:08:32.479Z [Protected] PID 31464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:13:32.479Z [Protected] PID 30600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:18:32.460Z [Protected] PID 32632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:22:59.414Z [Protected] PID 32252, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T20:22:59.434Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213012259
2016-12-12T20:23:00.054Z [Protected] PID 30844, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T20:23:00.815Z [Protected] PID 31148, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T20:23:01.504Z [Protected] PID 30980, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T20:23:32.484Z [Protected] PID 30900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:24:07.257Z [Protected] PID 29276, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T20:24:07.268Z [Protected] PID 32140, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T20:24:07.418Z [Protected] PID 32100, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T20:24:07.419Z [Protected] PID 32576, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T20:27:06.202Z [Protected] PID 32128, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T20:28:28.814Z [Protected] PID 33300, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T20:28:32.459Z [Protected] PID 33620, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:31:58.354Z [Protected] PID 32480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:01.040Z [Protected] PID 30784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:01.292Z [Protected] PID 32668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:01.460Z [Protected] PID 33216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:01.640Z [Protected] PID 33000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:01.811Z [Protected] PID 33384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:01.983Z [Protected] PID 33520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:02.134Z [Protected] PID 33692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:02.342Z [Protected] PID 32820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:02.498Z [Protected] PID 32696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:02.702Z [Protected] PID 33620, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:32:02.881Z [Protected] PID 33552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:33:32.350Z [Protected] PID 26604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:34:03.535Z [Protected] PID 30480, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T20:34:03.545Z [Protected] PID 31216, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T20:38:32.920Z [Protected] PID 32588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:43:32.444Z [Protected] PID 31884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:48:32.443Z [Protected] PID 27552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:52:59.547Z [Protected] PID 26888, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T20:52:59.574Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213015259
2016-12-12T20:53:32.442Z [Protected] PID 33032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:54:43.562Z [Protected] PID 33548, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T20:54:43.746Z [Protected] PID 33148, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-12T20:57:00.072Z [Protected] PID 32696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T20:57:00.321Z [Protected] PID 32932, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T20:57:00.335Z [Protected] PID 33332, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T20:57:00.408Z [Protected] PID 33304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T20:58:32.443Z [Protected] PID 32092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T20:59:00.211Z [Protected] PID 30284, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T21:00:31.310Z [Protected] PID 26984, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T21:00:31.684Z [Protected] PID 24200, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-12T21:00:31.861Z [Protected] PID 30768, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T21:03:40.695Z [Protected] PID 31372, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T21:04:32.380Z [Protected] PID 33712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:04:56.837Z [Protected] PID 32336, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T21:06:40.706Z [Protected] PID 24368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:06:53.941Z [Protected] PID 32164, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T21:06:54.398Z [Protected] PID 33428, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-12T21:09:32.400Z [Protected] PID 32760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:13:32.427Z [Protected] PID 28652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:18:32.489Z [Protected] PID 30076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:21:47.341Z [Protected] PID 30736, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T21:22:59.508Z [Protected] PID 32196, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T21:22:59.547Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213022259
2016-12-12T21:22:59.954Z [Protected] PID 19332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T21:23:01.529Z [Protected] PID 29028, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T21:23:32.462Z [Protected] PID 33508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:24:07.477Z [Protected] PID 33772, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T21:24:07.487Z [Protected] PID 30484, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T21:24:07.602Z [Protected] PID 32528, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T21:24:07.613Z [Protected] PID 19348, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T21:24:19.076Z [Protected] PID 25088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T21:24:19.088Z [Protected] PID 32888, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T21:27:06.394Z [Protected] PID 32788, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T21:28:32.825Z [Protected] PID 33268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:33:32.484Z [Protected] PID 21124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:38:32.462Z [Protected] PID 29444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:41:02.064Z [Protected] PID 32992, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T21:41:03.676Z [Protected] PID 33132, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T21:43:32.471Z [Protected] PID 33264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:48:24.562Z [Protected] PID 33528, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T21:48:27.030Z [Protected] PID 32772, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T21:48:27.518Z [Protected] PID 32988, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T21:48:27.549Z [Protected] PID 31524, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T21:48:27.568Z [Protected] PID 30480, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T21:48:28.172Z [Protected] PID 32704, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T21:48:32.480Z [Protected] PID 33336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:52:59.654Z [Protected] PID 32664, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T21:52:59.680Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213025259
2016-12-12T21:53:32.483Z [Protected] PID 29336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:57:00.093Z [Protected] PID 31316, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T21:57:00.341Z [Protected] PID 17676, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T21:57:00.351Z [Protected] PID 26168, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T21:57:00.413Z [Protected] PID 32520, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T21:58:32.480Z [Protected] PID 32080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T21:59:00.204Z [Protected] PID 30980, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T22:00:00.519Z [Protected] PID 30212, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-12T22:00:00.988Z [Protected] PID 220, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-12T22:00:01.159Z [Protected] PID 26860, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-12T22:02:00.646Z [Protected] PID 33004, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T22:03:32.627Z [Protected] PID 28616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:04:30.232Z [Protected] PID 31148, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T22:04:30.253Z [Protected] PID 33324, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T22:08:38.342Z [Protected] PID 33596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:13:32.610Z [Protected] PID 32108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:14:30.503Z [Protected] PID 33292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T22:14:30.523Z [Protected] PID 33348, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-12T22:16:26.029Z [Protected] PID 22780, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T22:18:32.785Z [Protected] PID 33700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:23:00.010Z [Protected] PID 29868, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T22:23:00.037Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213032259
2016-12-12T22:23:01.387Z [Protected] PID 32756, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T22:23:03.511Z [Protected] PID 32112, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T22:23:04.017Z [Protected] PID 28996, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T22:23:32.483Z [Protected] PID 32548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:24:08.127Z [Protected] PID 33292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T22:24:08.138Z [Protected] PID 29376, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T22:24:08.471Z [Protected] PID 24856, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T22:24:08.483Z [Protected] PID 31488, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T22:27:07.143Z [Protected] PID 32988, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T22:27:13.221Z [Protected] PID 33456, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T22:27:13.573Z [Protected] PID 21668, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T22:27:35.165Z [Protected] PID 32356, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-12T22:28:02.143Z [Protected] PID 33628, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T22:28:02.434Z [Protected] PID 25164, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-12T22:28:32.836Z [Protected] PID 31156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:33:32.450Z [Protected] PID 33136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:34:59.405Z [Protected] PID 24856, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T22:38:32.484Z [Protected] PID 33080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:43:32.491Z [Protected] PID 32500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:48:32.481Z [Protected] PID 30852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:53:00.169Z [Protected] PID 13744, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T22:53:00.195Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213035300
2016-12-12T22:53:32.486Z [Protected] PID 31452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:57:00.202Z [Protected] PID 32924, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T22:57:00.765Z [Protected] PID 21668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T22:57:00.779Z [Protected] PID 31576, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T22:57:00.852Z [Protected] PID 32844, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T22:58:32.486Z [Protected] PID 21520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T22:59:00.376Z [Protected] PID 29360, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T23:03:32.488Z [Protected] PID 32760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:08:32.485Z [Protected] PID 31636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:13:32.548Z [Protected] PID 33204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:14:49.554Z [Protected] PID 21312, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-12T23:18:32.470Z [Protected] PID 33736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:23:00.095Z [Protected] PID 31792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T23:23:00.268Z [Protected] PID 32900, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T23:23:00.297Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213042300
2016-12-12T23:23:00.816Z [Protected] PID 33212, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-12T23:23:32.484Z [Protected] PID 32672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:24:08.728Z [Protected] PID 32780, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T23:24:08.732Z [Protected] PID 25856, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-12T23:24:08.982Z [Protected] PID 31216, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T23:24:08.993Z [Protected] PID 33416, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-12T23:27:04.556Z [Protected] PID 33176, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-12T23:28:32.483Z [Protected] PID 32244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:33:32.483Z [Protected] PID 33760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:38:32.481Z [Protected] PID 26328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:41:00.084Z [Protected] PID 32280, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T23:41:00.493Z [Protected] PID 33712, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-12T23:43:30.038Z [Protected] PID 31756, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-12T23:43:31.835Z [Protected] PID 32764, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T23:43:31.933Z [Protected] PID 33036, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-12T23:43:32.045Z [Protected] PID 32912, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-12T23:43:32.461Z [Protected] PID 32740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:43:32.663Z [Protected] PID 29028, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-12T23:43:33.542Z [Protected] PID 29376, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-12T23:48:32.478Z [Protected] PID 33364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:53:00.385Z [Protected] PID 30536, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-12T23:53:00.405Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213045300
2016-12-12T23:53:32.483Z [Protected] PID 32648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:57:00.057Z [Protected] PID 30192, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-12T23:57:00.294Z [Protected] PID 32408, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-12T23:57:00.307Z [Protected] PID 33720, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T23:57:00.376Z [Protected] PID 31760, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-12T23:58:32.481Z [Protected] PID 26076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-12T23:59:00.102Z [Protected] PID 33072, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-12T23:59:55.784Z [Protected] PID 31432, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T00:02:03.276Z [Protected] PID 30236, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T00:02:09.689Z [Protected] PID 19756, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T00:03:32.462Z [Protected] PID 26604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:08:32.491Z [Protected] PID 32704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:13:32.494Z [Protected] PID 32492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:18:32.477Z [Protected] PID 32436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:22:23.609Z [Protected] PID 31600, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T00:23:00.073Z [Protected] PID 31288, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T00:23:00.388Z [Protected] PID 32356, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T00:23:00.471Z [Protected] PID 18684, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T00:23:00.498Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213052300
2016-12-13T00:23:00.966Z [Protected] PID 33128, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T00:23:05.605Z [Protected] PID 33688, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-13T00:23:06.474Z [Protected] PID 30608, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T00:23:22.652Z [Protected] PID 31264, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-13T00:23:32.481Z [Protected] PID 33296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:24:09.185Z [Protected] PID 13684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T00:24:09.197Z [Protected] PID 33684, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T00:24:09.305Z [Protected] PID 33516, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T00:24:09.325Z [Protected] PID 32040, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T00:24:45.906Z [Protected] PID 31568, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-13T00:25:48.554Z [Protected] PID 31020, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T00:25:48.650Z [Protected] PID 33276, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T00:27:04.494Z [Protected] PID 31336, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T00:28:32.493Z [Protected] PID 33420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:33:32.497Z [Protected] PID 33724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:36:54.950Z [Protected] PID 31116, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T00:36:55.365Z [Protected] PID 31872, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T00:38:32.490Z [Protected] PID 24680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:43:32.484Z [Protected] PID 30808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:48:32.476Z [Protected] PID 32724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:48:37.869Z [Protected] PID 32772, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T00:53:00.575Z [Protected] PID 31524, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T00:53:00.595Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213055300
2016-12-13T00:53:32.470Z [Protected] PID 33472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:57:00.088Z [Protected] PID 32892, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T00:57:00.302Z [Protected] PID 32608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T00:57:00.318Z [Protected] PID 27680, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T00:57:00.405Z [Protected] PID 26940, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T00:58:32.453Z [Protected] PID 33720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T00:59:00.107Z [Protected] PID 33320, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T01:01:06.766Z [Protected] PID 33596, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T01:03:32.477Z [Protected] PID 33116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:06:48.165Z [Protected] PID 30208, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T01:06:48.491Z [Protected] PID 30644, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-13T01:06:48.692Z [Protected] PID 32096, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T01:08:32.460Z [Protected] PID 33160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:13:32.443Z [Protected] PID 32452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:17:27.082Z [Protected] PID 33384, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T01:17:27.327Z [Protected] PID 24428, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-13T01:17:27.966Z [Protected] PID 21312, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-13T01:18:32.432Z [Protected] PID 28484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:23:00.054Z [Protected] PID 32336, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T01:23:00.369Z [Protected] PID 12572, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T01:23:00.655Z [Protected] PID 33716, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T01:23:00.673Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213062300
2016-12-13T01:23:32.427Z [Protected] PID 33232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:24:09.425Z [Protected] PID 31636, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T01:24:09.437Z [Protected] PID 32248, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T01:24:09.546Z [Protected] PID 32308, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T01:24:09.556Z [Protected] PID 20580, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T01:27:04.554Z [Protected] PID 30536, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T01:28:32.452Z [Protected] PID 32880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:31:35.918Z [Protected] PID 32900, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T01:31:37.610Z [Protected] PID 31504, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T01:31:37.692Z [Protected] PID 33232, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T01:31:37.766Z [Protected] PID 33108, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T01:31:38.382Z [Protected] PID 33032, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T01:31:38.714Z [Protected] PID 32948, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T01:33:32.444Z [Protected] PID 32976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:35:37.323Z [Protected] PID 33556, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T01:38:32.458Z [Protected] PID 27112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:41:00.084Z [Protected] PID 31376, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T01:41:00.363Z [Protected] PID 17676, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T01:43:32.441Z [Protected] PID 32260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:48:32.455Z [Protected] PID 25244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:53:00.734Z [Protected] PID 31000, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T01:53:00.762Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213065300
2016-12-13T01:53:32.458Z [Protected] PID 29376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:57:00.077Z [Protected] PID 32872, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T01:57:00.317Z [Protected] PID 23112, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T01:57:00.320Z [Protected] PID 31284, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T01:57:00.399Z [Protected] PID 31764, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T01:58:32.473Z [Protected] PID 32828, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T01:59:00.106Z [Protected] PID 32852, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T02:02:05.203Z [Protected] PID 32140, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T02:03:32.472Z [Protected] PID 30644, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:08:32.479Z [Protected] PID 32232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:11:01.020Z [Protected] PID 24304, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T02:11:01.112Z [Protected] PID 33040, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T02:12:25.893Z [Protected] PID 30816, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T02:13:32.484Z [Protected] PID 29352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:13:46.518Z [Protected] PID 31216, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T02:13:46.593Z [Protected] PID 19332, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T02:14:43.483Z [Protected] PID 33540, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T02:14:43.493Z [Protected] PID 32076, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T02:18:33.044Z [Protected] PID 30636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:23:00.257Z [Protected] PID 31784, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T02:23:00.875Z [Protected] PID 33096, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T02:23:00.902Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213072300
2016-12-13T02:23:00.958Z [Protected] PID 14304, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T02:23:01.648Z [Protected] PID 31916, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T02:23:32.487Z [Protected] PID 31616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:24:09.679Z [Protected] PID 20032, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T02:24:09.690Z [Protected] PID 33024, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T02:24:09.794Z [Protected] PID 4196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T02:24:09.804Z [Protected] PID 32956, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T02:24:36.894Z [Protected] PID 32812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:27:06.075Z [Protected] PID 32476, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T02:28:32.480Z [Protected] PID 31356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:33:32.484Z [Protected] PID 32040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:38:32.467Z [Protected] PID 32804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:43:32.464Z [Protected] PID 31756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:48:32.453Z [Protected] PID 33532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:53:00.967Z [Protected] PID 32960, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T02:53:00.994Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213075300
2016-12-13T02:53:32.447Z [Protected] PID 33628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:57:00.084Z [Protected] PID 31544, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T02:57:00.326Z [Protected] PID 33584, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T02:57:00.346Z [Protected] PID 32260, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T02:57:00.399Z [Protected] PID 33512, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T02:58:32.446Z [Protected] PID 18844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T02:59:00.150Z [Protected] PID 33256, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T03:03:32.483Z [Protected] PID 31832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:03:41.241Z [Protected] PID 33512, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T03:03:43.109Z [Protected] PID 32928, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T03:03:43.284Z [Protected] PID 32076, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T03:03:43.379Z [Protected] PID 32736, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T03:03:43.899Z [Protected] PID 32572, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T03:03:44.154Z [Protected] PID 32592, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T03:04:45.004Z [Protected] PID 32944, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:04:45.017Z [Protected] PID 33308, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T03:08:32.670Z [Protected] PID 32236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:08:38.066Z [Protected] PID 13860, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T03:13:32.442Z [Protected] PID 26780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:13:52.542Z [Protected] PID 31644, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T03:13:52.629Z [Protected] PID 33288, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T03:18:32.446Z [Protected] PID 32972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:23:00.123Z [Protected] PID 6524, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T03:23:00.726Z [Protected] PID 31884, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T03:23:01.106Z [Protected] PID 32540, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T03:23:01.138Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213082300
2016-12-13T03:23:01.332Z [Protected] PID 32528, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T03:23:32.445Z [Protected] PID 31376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:24:09.927Z [Protected] PID 26536, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:24:09.940Z [Protected] PID 33552, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T03:24:10.050Z [Protected] PID 32452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:24:10.060Z [Protected] PID 32988, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T03:27:06.006Z [Protected] PID 33052, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T03:28:32.421Z [Protected] PID 32824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:33:32.443Z [Protected] PID 32448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:38:32.481Z [Protected] PID 31240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:41:00.084Z [Protected] PID 18684, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T03:41:00.372Z [Protected] PID 13124, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T03:43:32.441Z [Protected] PID 33664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:44:08.696Z [Protected] PID 29636, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T03:44:10.540Z [Protected] PID 28800, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-13T03:44:12.528Z [Protected] PID 31616, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T03:44:28.511Z [Protected] PID 33072, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-13T03:48:32.448Z [Protected] PID 31452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:49:24.018Z [Protected] PID 31848, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:49:24.028Z [Protected] PID 32772, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-13T03:49:24.244Z [Protected] PID 33296, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:49:24.256Z [Protected] PID 31580, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-13T03:49:24.283Z [Protected] PID 26168, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-13T03:49:27.765Z [Protected] PID 32968, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-13T03:49:28.838Z [Protected] PID 31964, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-13T03:49:41.369Z [Protected] PID 21480, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T03:52:05.807Z [Protected] PID 29420, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T03:53:01.707Z [Protected] PID 33200, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T03:53:01.735Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213085301
2016-12-13T03:53:32.896Z [Protected] PID 32964, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:53:56.179Z [Protected] PID 33596, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-13T03:53:56.708Z [Protected] PID 32804, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-13T03:54:54.041Z [Protected] PID 28652, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:54:54.055Z [Protected] PID 31016, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T03:57:01.385Z [Protected] PID 30404, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T03:57:01.975Z [Protected] PID 25244, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T03:57:02.004Z [Protected] PID 18548, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T03:57:02.075Z [Protected] PID 33728, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T03:58:33.293Z [Protected] PID 20032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T03:59:00.541Z [Protected] PID 30748, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T04:03:09.427Z [Protected] PID 32364, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T04:03:32.488Z [Protected] PID 32232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:06:55.275Z [Protected] PID 24804, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T04:06:56.420Z [Protected] PID 30812, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T04:08:32.489Z [Protected] PID 32692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:13:32.483Z [Protected] PID 30284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:18:32.484Z [Protected] PID 33764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:23:00.058Z [Protected] PID 33236, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T04:23:02.084Z [Protected] PID 33684, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T04:23:02.112Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213092301
2016-12-13T04:23:02.994Z [Protected] PID 32936, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T04:23:32.503Z [Protected] PID 25904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:24:10.341Z [Protected] PID 14000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T04:24:10.353Z [Protected] PID 30184, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T04:24:10.669Z [Protected] PID 29444, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T04:24:10.679Z [Protected] PID 32352, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T04:27:07.543Z [Protected] PID 30736, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T04:28:32.490Z [Protected] PID 33496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:33:32.500Z [Protected] PID 33516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:36:01.539Z [Protected] PID 31924, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T04:38:32.483Z [Protected] PID 28652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:43:32.488Z [Protected] PID 33052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:48:32.479Z [Protected] PID 32124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:53:02.174Z [Protected] PID 32960, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T04:53:02.201Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213095302
2016-12-13T04:53:32.493Z [Protected] PID 33436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:57:00.074Z [Protected] PID 32648, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T04:57:00.305Z [Protected] PID 33608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T04:57:00.335Z [Protected] PID 22780, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T04:57:00.413Z [Protected] PID 33440, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T04:58:32.486Z [Protected] PID 33332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T04:59:00.130Z [Protected] PID 26860, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T04:59:36.393Z [Protected] PID 32860, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T04:59:47.048Z [Protected] PID 25164, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T04:59:48.848Z [Protected] PID 32868, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T04:59:48.948Z [Protected] PID 32212, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T04:59:49.317Z [Protected] PID 33228, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T04:59:49.653Z [Protected] PID 33064, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T04:59:50.819Z [Protected] PID 32244, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T05:03:32.482Z [Protected] PID 22288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:05:03.574Z [Protected] PID 31316, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T05:08:32.479Z [Protected] PID 33488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:08:32.516Z [Protected] PID 31764, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T05:08:32.890Z [Protected] PID 32188, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-13T05:08:33.142Z [Protected] PID 33200, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T05:13:32.482Z [Protected] PID 32536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:14:56.161Z [Protected] PID 32408, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T05:14:56.173Z [Protected] PID 24288, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T05:18:32.809Z [Protected] PID 31764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:19:18.884Z [Protected] PID 31756, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T05:23:00.186Z [Protected] PID 32464, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T05:23:00.766Z [Protected] PID 26588, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T05:23:02.319Z [Protected] PID 33284, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T05:23:02.345Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213102302
2016-12-13T05:23:32.480Z [Protected] PID 33100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:24:10.795Z [Protected] PID 33276, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T05:24:10.806Z [Protected] PID 31576, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T05:24:10.894Z [Protected] PID 33552, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T05:24:10.919Z [Protected] PID 31772, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T05:27:06.048Z [Protected] PID 32740, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T05:27:11.128Z [Protected] PID 33452, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T05:28:32.477Z [Protected] PID 33508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:33:32.482Z [Protected] PID 33000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:35:01.159Z [Protected] PID 19332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T05:35:01.169Z [Protected] PID 21248, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T05:38:32.670Z [Protected] PID 32948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:41:00.220Z [Protected] PID 33616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T05:41:00.867Z [Protected] PID 29692, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T05:43:32.476Z [Protected] PID 32864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:46:32.789Z [Protected] PID 24200, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T05:46:33.058Z [ApplyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213104632
2016-12-13T05:48:32.482Z [Protected] PID 13684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:53:32.444Z [Protected] PID 32760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:57:00.091Z [Protected] PID 30332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T05:57:00.304Z [Protected] PID 33672, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T05:57:00.324Z [Protected] PID 31464, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T05:57:00.381Z [Protected] PID 30480, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T05:58:32.427Z [Protected] PID 32728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T05:59:00.187Z [Protected] PID 13684, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T06:03:32.442Z [Protected] PID 31476, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:08:32.411Z [Protected] PID 28616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:09:47.664Z [Protected] PID 32912, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T06:13:53.452Z [Protected] PID 23112, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T06:13:53.551Z [Protected] PID 33640, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T06:14:32.380Z [Protected] PID 32252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:16:33.085Z [Protected] PID 31940, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T06:16:33.110Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213111633
2016-12-13T06:18:32.427Z [Protected] PID 31844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:22:59.960Z [Protected] PID 32912, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T06:23:00.319Z [Protected] PID 13744, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T06:23:00.903Z [Protected] PID 32068, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T06:23:32.442Z [Protected] PID 17080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:24:10.924Z [Protected] PID 22844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T06:24:10.930Z [Protected] PID 29868, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T06:24:11.023Z [Protected] PID 33284, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T06:24:11.034Z [Protected] PID 31356, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T06:27:05.948Z [Protected] PID 30920, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T06:27:33.392Z [Protected] PID 31356, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-13T06:27:59.248Z [Protected] PID 32408, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T06:27:59.390Z [Protected] PID 15516, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T06:28:32.791Z [Protected] PID 33484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:33:32.475Z [Protected] PID 32884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:38:32.482Z [Protected] PID 32844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:43:32.478Z [Protected] PID 33556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:45:00.996Z [Protected] PID 33704, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T06:45:01.009Z [Protected] PID 32008, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T06:46:33.576Z [Protected] PID 32472, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T06:46:33.602Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213114633
2016-12-13T06:47:44.978Z [Protected] PID 32208, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T06:48:32.755Z [Protected] PID 33620, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:48:54.787Z [Protected] PID 30804, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T06:48:54.920Z [Protected] PID 33428, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T06:48:55.002Z [Protected] PID 30600, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T06:48:55.808Z [Protected] PID 13860, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T06:48:56.450Z [Protected] PID 32552, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T06:53:32.479Z [Protected] PID 32332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:57:00.154Z [Protected] PID 31652, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T06:57:00.401Z [Protected] PID 33696, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T06:57:00.413Z [Protected] PID 33464, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T06:57:00.495Z [Protected] PID 21312, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T06:58:32.472Z [Protected] PID 33028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T06:59:00.243Z [Protected] PID 30828, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T07:03:13.697Z [Protected] PID 33096, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T07:03:32.490Z [Protected] PID 33692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:06:04.243Z [Protected] PID 31152, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T07:08:32.487Z [Protected] PID 32884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:13:32.462Z [Protected] PID 33500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:16:33.676Z [Protected] PID 33060, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T07:16:33.703Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213121633
2016-12-13T07:18:32.485Z [Protected] PID 33632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:23:00.081Z [Protected] PID 32308, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T07:23:00.989Z [Protected] PID 27952, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T07:23:32.477Z [Protected] PID 31824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:24:11.253Z [Protected] PID 31868, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T07:24:11.264Z [Protected] PID 19756, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T07:24:11.540Z [Protected] PID 13684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T07:24:11.541Z [Protected] PID 32848, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T07:27:06.026Z [Protected] PID 33608, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T07:28:32.471Z [Protected] PID 31616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:33:32.464Z [Protected] PID 33012, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:35:30.771Z [Protected] PID 33164, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T07:36:55.833Z [Protected] PID 33636, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T07:36:56.183Z [Protected] PID 28628, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T07:38:32.474Z [Protected] PID 33648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:41:00.181Z [Protected] PID 28996, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T07:41:53.267Z [Protected] PID 14300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:41:53.307Z [Protected] PID 32752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:43:32.365Z [Protected] PID 32936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:45:09.082Z [Protected] PID 33212, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T07:45:09.094Z [Protected] PID 32912, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T07:46:33.891Z [Protected] PID 33652, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T07:46:33.933Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213124633
2016-12-13T07:48:32.610Z [Protected] PID 33316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:53:32.495Z [Protected] PID 33564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:57:00.191Z [Protected] PID 32780, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T07:57:00.420Z [Protected] PID 32992, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T07:57:00.440Z [Protected] PID 24200, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T07:57:00.498Z [Protected] PID 33712, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T07:58:32.487Z [Protected] PID 23112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T07:59:00.177Z [Protected] PID 32904, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T08:00:00.109Z [Protected] PID 33360, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T08:00:00.332Z [Protected] PID 33576, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T08:03:32.476Z [Protected] PID 33608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:03:58.538Z [Protected] PID 33020, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T08:08:32.489Z [Protected] PID 30788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:13:32.461Z [Protected] PID 33160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:16:33.989Z [Protected] PID 32724, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T08:16:34.016Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213131633
2016-12-13T08:18:32.495Z [Protected] PID 27112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:20:58.446Z [Protected] PID 33128, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T08:21:00.580Z [Protected] PID 33572, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T08:21:00.583Z [Protected] PID 32164, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T08:21:00.682Z [Protected] PID 31916, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T08:21:01.058Z [Protected] PID 31372, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T08:21:01.247Z [Protected] PID 30892, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T08:22:24.763Z [Protected] PID 30080, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T08:23:00.065Z [Protected] PID 31616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T08:23:00.649Z [Protected] PID 18304, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T08:23:32.479Z [Protected] PID 32460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:24:11.717Z [Protected] PID 32104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T08:24:11.728Z [Protected] PID 32244, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T08:24:11.814Z [Protected] PID 32792, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T08:24:11.825Z [Protected] PID 27844, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T08:24:46.929Z [Protected] PID 33740, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-13T08:27:05.897Z [Protected] PID 22844, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T08:27:33.027Z [Protected] PID 32760, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-13T08:27:43.298Z [Protected] PID 33448, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\hmpa64\hmpalert.exe
2016-12-13T08:27:47.789Z [Protected] PID 33652, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T08:27:47.942Z [Protected] PID 30356, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T08:27:54.946Z [Protected] PID 32776, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T08:27:54.972Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213132754
2016-12-13T08:28:32.519Z [Protected] PID 32216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:33:16.043Z [Protected] PID 19332, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T08:33:32.480Z [Protected] PID 33392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:38:32.467Z [Protected] PID 26780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:43:32.497Z [Protected] PID 26008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:48:15.603Z [Protected] PID 30492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:48:32.372Z [Protected] PID 25868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:53:32.498Z [Protected] PID 32340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:54:43.846Z [Protected] PID 20560, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T08:54:44.032Z [Protected] PID 22704, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-13T08:55:19.592Z [Protected] PID 32076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:56:35.307Z [Protected] PID 33332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:57:00.070Z [Protected] PID 28616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T08:57:00.345Z [Protected] PID 31956, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T08:57:00.361Z [Protected] PID 30724, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T08:57:00.431Z [Protected] PID 28480, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T08:57:55.040Z [Protected] PID 29592, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T08:57:55.069Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213135754
2016-12-13T08:58:32.389Z [Protected] PID 26912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:59:00.150Z [Protected] PID 32952, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T08:59:43.757Z [Protected] PID 29376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T08:59:46.509Z [Protected] PID 32864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:03:32.486Z [Protected] PID 33468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:04:47.681Z [Protected] PID 27136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:08:32.479Z [Protected] PID 33760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:08:54.642Z [Protected] PID 33140, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T09:08:55.436Z [Protected] PID 32340, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T09:08:55.748Z [Protected] PID 32584, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-13T09:08:56.024Z [Protected] PID 33284, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T09:13:32.467Z [Protected] PID 24304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:14:43.171Z [Protected] PID 29964, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:14:44.199Z [Protected] PID 31788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:14:52.442Z [Protected] PID 31432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:15:01.694Z [Protected] PID 31600, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T09:17:44.236Z [Protected] PID 30876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:17:46.571Z [Protected] PID 26660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:18:32.378Z [Protected] PID 31156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:20:39.389Z [Protected] PID 32756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:20:55.893Z [Protected] PID 33536, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T09:20:56.004Z [Protected] PID 32848, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T09:23:00.085Z [Protected] PID 31036, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T09:23:00.977Z [Protected] PID 32648, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T09:23:32.489Z [Protected] PID 22912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:24:12.106Z [Protected] PID 29264, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T09:24:12.116Z [Protected] PID 31956, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T09:24:12.357Z [Protected] PID 28048, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T09:24:12.366Z [Protected] PID 29672, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T09:25:37.557Z [Protected] PID 30372, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T09:25:37.649Z [Protected] PID 22080, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T09:26:16.792Z [Protected] PID 33608, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T09:27:04.781Z [Protected] PID 30816, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T09:27:55.144Z [Protected] PID 31432, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T09:27:55.170Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213142755
2016-12-13T09:28:32.483Z [Protected] PID 7160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:31:05.761Z [Protected] PID 14604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:32:22.870Z [Protected] PID 33216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:32:25.828Z [Protected] PID 31004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:32:28.426Z [Protected] PID 31784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:33:10.156Z [Protected] PID 33292, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T09:33:32.492Z [Protected] PID 24676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:37:00.370Z [Protected] PID 33692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:38:19.904Z [Protected] PID 27812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:38:32.398Z [Protected] PID 29264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:41:00.060Z [Protected] PID 33564, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T09:41:00.507Z [Protected] PID 30236, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T09:43:32.490Z [Protected] PID 29436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:48:32.442Z [Protected] PID 33236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:53:32.477Z [Protected] PID 29768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:57:00.072Z [Protected] PID 31868, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T09:57:00.309Z [Protected] PID 23616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T09:57:00.323Z [Protected] PID 33180, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T09:57:00.397Z [Protected] PID 31856, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T09:57:55.233Z [Protected] PID 32232, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T09:57:55.260Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213145755
2016-12-13T09:58:32.496Z [Protected] PID 33488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T09:59:00.117Z [Protected] PID 33160, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T09:59:03.855Z [Protected] PID 29272, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T09:59:06.677Z [Protected] PID 26316, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T09:59:06.744Z [Protected] PID 31288, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T09:59:06.824Z [Protected] PID 30484, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T09:59:07.506Z [Protected] PID 33064, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T09:59:08.021Z [Protected] PID 18988, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T10:00:01.150Z [Protected] PID 33320, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-13T10:00:01.226Z [Protected] PID 30980, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-13T10:00:01.608Z [Protected] PID 31136, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:00:01.620Z [Protected] PID 29972, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-13T10:00:57.948Z [Protected] PID 26036, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T10:00:59.359Z [Protected] PID 25004, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T10:01:06.329Z [Protected] PID 30724, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:01:06.385Z [Protected] PID 30236, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T10:01:06.555Z [Protected] PID 32012, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T10:03:32.497Z [Protected] PID 32700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:08:15.818Z [Protected] PID 31452, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T10:08:32.500Z [Protected] PID 27980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:09:42.530Z [Protected] PID 26344, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T10:09:42.588Z [Protected] PID 29124, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T10:10:54.139Z [Protected] PID 31788, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-13T10:10:55.841Z [Protected] PID 30484, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-13T10:10:56.041Z [Protected] PID 27812, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-13T10:10:56.467Z [Protected] PID 24428, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T10:13:32.473Z [Protected] PID 18684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:16:19.016Z [Protected] PID 29768, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T10:18:32.507Z [Protected] PID 22912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:23:00.084Z [Protected] PID 31644, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T10:23:00.401Z [Protected] PID 29024, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T10:23:00.995Z [Protected] PID 33540, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T10:23:32.488Z [Protected] PID 21480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:24:12.625Z [Protected] PID 28716, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:24:12.635Z [Protected] PID 23392, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T10:24:12.756Z [Protected] PID 31344, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:24:12.761Z [Protected] PID 33060, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T10:27:07.600Z [Protected] PID 24288, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T10:27:34.395Z [Protected] PID 34604, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-13T10:27:55.624Z [Protected] PID 34280, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T10:27:55.674Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213152755
2016-12-13T10:27:58.911Z [Protected] PID 33548, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T10:27:59.125Z [Protected] PID 32520, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T10:28:32.528Z [Protected] PID 33976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:33:32.494Z [Protected] PID 33888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:35:27.554Z [Protected] PID 31636, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:35:27.566Z [Protected] PID 34336, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T10:38:01.901Z [Protected] PID 31784, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-13T10:38:08.039Z [Protected] PID 22844, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-13T10:38:33.191Z [Protected] PID 33648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:43:32.487Z [Protected] PID 33320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:45:34.831Z [Protected] PID 23140, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:45:34.841Z [Protected] PID 32908, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T10:48:32.696Z [Protected] PID 24900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:49:46.439Z [Protected] PID 33132, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T10:49:47.897Z [Protected] PID 26940, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T10:49:55.998Z [Protected] PID 19748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:49:56.028Z [Protected] PID 30724, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T10:49:56.255Z [Protected] PID 33828, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T10:53:32.505Z [Protected] PID 34316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:55:43.975Z [Protected] PID 34108, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T10:57:00.427Z [Protected] PID 31136, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T10:57:00.766Z [Protected] PID 32232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T10:57:00.780Z [Protected] PID 33320, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T10:57:00.857Z [Protected] PID 33888, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T10:57:55.852Z [Protected] PID 31156, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T10:57:55.888Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213155755
2016-12-13T10:58:08.590Z [Protected] PID 23616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:58:15.167Z [Protected] PID 33692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:58:15.618Z [Protected] PID 33648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:58:32.350Z [Protected] PID 33460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:58:33.714Z [Protected] PID 34676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:58:34.157Z [Protected] PID 32960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:58:53.953Z [Protected] PID 24680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T10:59:00.295Z [Protected] PID 18128, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T10:59:17.652Z [Protected] PID 19348, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T11:00:03.428Z [Protected] PID 27628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:02:59.757Z [Protected] PID 34624, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T11:03:01.057Z [Protected] PID 31856, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T11:03:07.611Z [Protected] PID 33852, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:03:07.631Z [Protected] PID 23112, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T11:03:07.803Z [Protected] PID 31636, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T11:03:32.453Z [Protected] PID 28504, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:06:13.828Z [Protected] PID 34324, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T11:06:15.107Z [Protected] PID 34120, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T11:06:21.806Z [Protected] PID 34304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:06:21.839Z [Protected] PID 33956, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T11:06:21.945Z [Protected] PID 32740, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T11:06:55.841Z [Protected] PID 34128, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T11:06:56.514Z [Protected] PID 33236, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T11:08:30.688Z [Protected] PID 34676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:08:32.398Z [Protected] PID 30980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:09:25.060Z [Protected] PID 34580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:11:42.104Z [Protected] PID 34796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:11:44.344Z [Protected] PID 20708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:13:32.391Z [Protected] PID 32012, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:14:40.101Z [Protected] PID 32728, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T11:18:32.446Z [Protected] PID 23140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:18:50.247Z [Protected] PID 33800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:18:51.817Z [Protected] PID 34624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:19:00.324Z [Protected] PID 34388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:19:15.781Z [Protected] PID 32924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:19:22.123Z [Protected] PID 34560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:23:00.075Z [Protected] PID 31616, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T11:23:02.465Z [Protected] PID 31284, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T11:23:03.015Z [Protected] PID 26588, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T11:23:32.445Z [Protected] PID 33492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:24:13.028Z [Protected] PID 31136, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:24:13.043Z [Protected] PID 31832, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T11:24:13.226Z [Protected] PID 33928, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:24:13.238Z [Protected] PID 32904, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T11:27:11.663Z [Protected] PID 33804, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T11:27:55.941Z [Protected] PID 32308, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T11:27:55.976Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213162755
2016-12-13T11:28:32.445Z [Protected] PID 33940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:33:32.449Z [Protected] PID 34520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:34:44.706Z [Protected] PID 33408, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T11:34:46.007Z [Protected] PID 34048, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T11:34:52.426Z [Protected] PID 34088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:34:52.448Z [Protected] PID 34600, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T11:34:52.586Z [Protected] PID 34060, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T11:38:32.486Z [Protected] PID 29972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:41:00.235Z [Protected] PID 33964, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T11:41:00.556Z [Protected] PID 32144, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T11:41:10.177Z [Protected] PID 33960, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T11:41:12.230Z [Protected] PID 34628, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T11:41:12.425Z [Protected] PID 34032, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T11:41:12.455Z [Protected] PID 33948, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T11:41:12.909Z [Protected] PID 34808, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T11:41:14.864Z [Protected] PID 29972, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T11:43:32.481Z [Protected] PID 34804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:48:32.493Z [Protected] PID 18844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:53:07.467Z [Protected] PID 34344, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T11:53:08.737Z [Protected] PID 30648, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T11:53:15.040Z [Protected] PID 34108, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:53:15.061Z [Protected] PID 33936, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T11:53:15.185Z [Protected] PID 34368, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T11:53:32.486Z [Protected] PID 32224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:54:29.298Z [Protected] PID 29768, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T11:57:00.220Z [Protected] PID 32096, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T11:57:00.563Z [Protected] PID 34700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T11:57:00.576Z [Protected] PID 33648, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T11:57:00.650Z [Protected] PID 26588, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T11:57:56.032Z [Protected] PID 29728, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T11:57:56.057Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213165755
2016-12-13T11:58:26.673Z [Protected] PID 32912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:58:27.337Z [Protected] PID 33788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:58:28.626Z [Protected] PID 30724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:58:29.088Z [Protected] PID 34056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:58:32.379Z [Protected] PID 34332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T11:59:00.116Z [Protected] PID 30372, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T11:59:03.301Z [Protected] PID 31320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:01:50.386Z [Protected] PID 31772, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T12:02:09.414Z [Protected] PID 32588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:02:39.417Z [Protected] PID 34020, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T12:02:40.716Z [Protected] PID 34068, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T12:02:47.236Z [Protected] PID 32976, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:02:47.258Z [Protected] PID 29964, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T12:02:47.414Z [Protected] PID 23140, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T12:03:32.379Z [Protected] PID 33808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:08:32.505Z [Protected] PID 34608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:11:43.678Z [Protected] PID 30600, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T12:11:44.978Z [Protected] PID 34560, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T12:11:51.285Z [Protected] PID 26136, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:11:51.309Z [Protected] PID 20708, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T12:11:51.469Z [Protected] PID 26604, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T12:13:26.378Z [Protected] PID 32584, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T12:13:26.566Z [Protected] PID 29484, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T12:13:32.523Z [Protected] PID 24316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:13:32.976Z [Protected] PID 34608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:13:32.999Z [Protected] PID 34588, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T12:13:33.077Z [Protected] PID 29964, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T12:14:21.448Z [Protected] PID 33936, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T12:16:18.153Z [Protected] PID 33944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:18:32.483Z [Protected] PID 30768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:18:49.839Z [Protected] PID 31764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:19:01.020Z [Protected] PID 34024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:19:15.828Z [Protected] PID 34912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:19:19.384Z [Protected] PID 35096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:19:29.974Z [Protected] PID 35328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:23:00.139Z [Protected] PID 32292, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T12:23:00.929Z [Protected] PID 31136, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T12:23:01.641Z [Protected] PID 35368, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T12:23:32.493Z [Protected] PID 34184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:24:13.402Z [Protected] PID 35632, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:24:13.414Z [Protected] PID 35828, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T12:24:13.555Z [Protected] PID 8660, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:24:13.567Z [Protected] PID 34856, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T12:26:46.261Z [Protected] PID 34224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:26:50.019Z [Protected] PID 35824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:27:04.563Z [Protected] PID 31868, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T12:27:56.129Z [Protected] PID 35768, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T12:27:56.155Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213172756
2016-12-13T12:28:32.375Z [Protected] PID 35748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:31:45.882Z [Protected] PID 31868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:33:32.375Z [Protected] PID 34932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:38:32.485Z [Protected] PID 35436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:40:30.167Z [Protected] PID 34700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:41:02.088Z [Protected] PID 33780, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T12:41:02.483Z [Protected] PID 35056, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
2016-12-13T12:41:07.127Z [Protected] PID 35608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:41:07.152Z [Protected] PID 33936, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\unzip.exe
2016-12-13T12:43:32.508Z [Protected] PID 35440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:48:32.620Z [Protected] PID 35564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:53:30.529Z [Protected] PID 33932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:53:32.378Z [Protected] PID 35456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:53:35.859Z [Protected] PID 35808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:53:39.263Z [Protected] PID 33408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:54:38.956Z [Protected] PID 35048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:56:06.500Z [Protected] PID 18988, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T12:57:00.096Z [Protected] PID 34800, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T12:57:00.342Z [Protected] PID 29972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T12:57:00.356Z [Protected] PID 34972, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T12:57:00.426Z [Protected] PID 33944, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T12:57:56.222Z [Protected] PID 29972, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T12:57:56.249Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213175756
2016-12-13T12:58:32.453Z [Protected] PID 25088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T12:59:00.122Z [Protected] PID 33332, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T13:03:15.479Z [Protected] PID 35688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:03:24.892Z [Protected] PID 35684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:03:32.399Z [Protected] PID 35048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:08:18.816Z [Protected] PID 35448, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T13:08:32.488Z [Protected] PID 24428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:11:11.486Z [Protected] PID 33228, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T13:11:11.867Z [Protected] PID 31264, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-13T13:11:12.109Z [Protected] PID 8660, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T13:13:32.487Z [Protected] PID 34960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:14:15.488Z [Protected] PID 34572, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T13:14:17.261Z [Protected] PID 31592, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T13:14:17.308Z [Protected] PID 34920, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T13:14:17.558Z [Protected] PID 34768, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T13:14:18.229Z [Protected] PID 35528, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T13:14:19.713Z [Protected] PID 35256, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T13:16:32.302Z [Protected] PID 35680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:16:34.025Z [Protected] PID 35120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:16:38.170Z [Protected] PID 35060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:16:40.943Z [Protected] PID 35052, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:18:32.501Z [Protected] PID 34572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:19:01.683Z [Protected] PID 35708, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T13:23:00.081Z [Protected] PID 32776, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T13:23:00.655Z [Protected] PID 31960, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T13:23:32.450Z [Protected] PID 25904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:24:13.703Z [Protected] PID 32840, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T13:24:13.715Z [Protected] PID 35008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T13:24:13.891Z [Protected] PID 35112, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T13:24:13.902Z [Protected] PID 35340, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T13:27:04.719Z [Protected] PID 35292, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T13:27:56.314Z [Protected] PID 34612, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T13:27:56.341Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213182756
2016-12-13T13:28:30.091Z [Protected] PID 35344, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-13T13:28:32.561Z [Protected] PID 17080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:28:34.866Z [Protected] PID 35748, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-13T13:28:35.030Z [Protected] PID 35600, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-13T13:28:35.423Z [Protected] PID 34144, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T13:31:26.966Z [Protected] PID 34808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:33:32.460Z [Protected] PID 35572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:35:57.311Z [Protected] PID 17080, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T13:35:58.609Z [Protected] PID 34056, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T13:36:05.223Z [Protected] PID 35456, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T13:36:05.244Z [Protected] PID 34900, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T13:36:05.368Z [Protected] PID 35836, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T13:38:32.451Z [Protected] PID 29728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:41:00.079Z [Protected] PID 32852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T13:41:00.403Z [Protected] PID 32740, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T13:43:32.448Z [Protected] PID 34904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:48:32.433Z [Protected] PID 7884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:53:32.459Z [Protected] PID 34800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:54:25.440Z [Protected] PID 35276, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T13:54:26.738Z [Protected] PID 35528, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T13:54:32.914Z [Protected] PID 35636, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T13:54:32.935Z [Protected] PID 35080, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T13:54:33.055Z [Protected] PID 20560, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T13:57:00.070Z [Protected] PID 34024, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T13:57:00.307Z [Protected] PID 34844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T13:57:00.319Z [Protected] PID 35040, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T13:57:00.415Z [Protected] PID 7884, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T13:57:56.404Z [Protected] PID 31788, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T13:57:56.430Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213185756
2016-12-13T13:58:08.676Z [Protected] PID 35260, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T13:58:09.938Z [Protected] PID 35092, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T13:58:15.519Z [Protected] PID 35004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T13:58:15.542Z [Protected] PID 35528, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T13:58:15.676Z [Protected] PID 28756, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T13:58:32.448Z [Protected] PID 35328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T13:59:00.112Z [Protected] PID 35104, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T14:02:24.779Z [Protected] PID 33132, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T14:03:32.484Z [Protected] PID 8636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:04:09.967Z [Protected] PID 29948, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T14:08:12.955Z [Protected] PID 35104, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T14:08:14.242Z [Protected] PID 35060, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T14:08:21.027Z [Protected] PID 31776, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T14:08:21.050Z [Protected] PID 35448, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T14:08:21.171Z [Protected] PID 34144, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T14:08:32.478Z [Protected] PID 32872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:11:20.025Z [Protected] PID 34172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:11:20.595Z [Protected] PID 34308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:11:28.291Z [Protected] PID 35448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:13:32.486Z [Protected] PID 34292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:16:40.415Z [Protected] PID 33888, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T14:16:41.666Z [Protected] PID 32852, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T14:16:48.002Z [Protected] PID 34608, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T14:16:48.024Z [Protected] PID 26620, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T14:16:48.141Z [Protected] PID 32588, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T14:18:18.089Z [Protected] PID 35644, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T14:18:18.357Z [Protected] PID 34336, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-13T14:18:32.476Z [Protected] PID 34832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:23:00.098Z [Protected] PID 35672, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T14:23:00.421Z [Protected] PID 34808, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T14:23:01.061Z [Protected] PID 35624, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T14:23:32.496Z [Protected] PID 35408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:24:14.046Z [Protected] PID 35616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T14:24:14.070Z [Protected] PID 34856, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T14:24:14.143Z [Protected] PID 35196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T14:24:14.154Z [Protected] PID 35312, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T14:27:04.545Z [Protected] PID 34584, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T14:27:33.906Z [Protected] PID 34456, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-13T14:27:57.104Z [Protected] PID 35412, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T14:27:57.155Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213192756
2016-12-13T14:27:58.263Z [Protected] PID 34572, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T14:27:58.599Z [Protected] PID 34028, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T14:28:32.532Z [Protected] PID 35304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:28:38.479Z [Protected] PID 34180, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T14:32:21.316Z [Protected] PID 27124, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T14:32:23.832Z [Protected] PID 35852, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T14:32:30.534Z [Protected] PID 36596, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T14:32:30.593Z [Protected] PID 36356, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T14:32:31.261Z [Protected] PID 36808, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T14:33:32.481Z [Protected] PID 36408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:36:55.850Z [Protected] PID 35784, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T14:36:56.166Z [Protected] PID 35736, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T14:38:32.464Z [Protected] PID 36040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:43:32.478Z [Protected] PID 24900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:48:32.487Z [Protected] PID 36112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:48:52.383Z [Protected] PID 35080, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-13T14:48:58.666Z [Protected] PID 35312, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-13T14:53:32.450Z [Protected] PID 36492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:57:00.070Z [Protected] PID 36508, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T14:57:00.323Z [Protected] PID 36740, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T14:57:00.333Z [Protected] PID 34028, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T14:57:00.396Z [Protected] PID 34992, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T14:57:57.221Z [Protected] PID 32924, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T14:57:57.247Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213195757
2016-12-13T14:58:32.495Z [Protected] PID 36488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T14:59:00.134Z [Protected] PID 35492, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T14:59:20.849Z [Protected] PID 36004, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T14:59:22.662Z [Protected] PID 26344, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T14:59:22.923Z [Protected] PID 34124, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T14:59:23.553Z [Protected] PID 33936, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T14:59:24.214Z [Protected] PID 35416, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T15:00:36.854Z [Protected] PID 34252, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T15:00:36.957Z [Protected] PID 35336, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T15:00:37.493Z [Protected] PID 34872, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T15:00:47.876Z [Protected] PID 34508, Features 000000361FBF2106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-13T15:00:51.484Z [Protected] PID 35680, Features 000000361FBF2106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-13T15:00:54.712Z [Protected] PID 34068, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-13T15:02:09.675Z [Protected] PID 33060, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T15:02:09.769Z [Protected] PID 33932, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T15:02:59.643Z [Protected] PID 36068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:03:02.681Z [Protected] PID 36124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:03:32.498Z [Protected] PID 33548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:04:12.220Z [Protected] PID 37120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:05:01.304Z [Protected] PID 37572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:05:02.618Z [Protected] PID 36588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:05:07.572Z [Protected] PID 34844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:05:57.538Z [Protected] PID 36604, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T15:05:57.552Z [Protected] PID 37140, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T15:08:33.707Z [Protected] PID 37080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:09:38.942Z [Protected] PID 32756, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T15:10:35.739Z [Protected] PID 29756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:10:37.141Z [Protected] PID 34968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:10:41.361Z [Protected] PID 31868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:11:20.240Z [Protected] PID 35148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:11:27.439Z [Protected] PID 34916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:13:32.445Z [Protected] PID 36692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:15:38.658Z [Protected] PID 35848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:18:34.917Z [Protected] PID 37392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:18:35.781Z [Protected] PID 32924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:18:38.514Z [Protected] PID 31952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:18:48.235Z [Protected] PID 37640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:19:32.321Z [Protected] PID 37324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:23:00.212Z [Protected] PID 36460, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T15:23:02.210Z [Protected] PID 36648, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T15:23:03.216Z [Protected] PID 37312, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T15:23:32.421Z [Protected] PID 35848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:24:14.271Z [Protected] PID 36820, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T15:24:14.283Z [Protected] PID 36380, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T15:24:14.588Z [Protected] PID 37768, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T15:24:14.608Z [Protected] PID 35988, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T15:25:26.610Z [Protected] PID 35908, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T15:25:28.228Z [Protected] PID 35072, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T15:25:35.221Z [Protected] PID 35520, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T15:25:35.366Z [Protected] PID 37876, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T15:25:35.495Z [Protected] PID 36452, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T15:27:06.499Z [Protected] PID 35524, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T15:27:57.276Z [Protected] PID 37640, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T15:27:57.301Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213202757
2016-12-13T15:28:32.443Z [Protected] PID 37040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:29:34.738Z [Protected] PID 37380, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T15:33:32.441Z [Protected] PID 35908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:38:32.451Z [Protected] PID 36820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:40:27.894Z [Protected] PID 37236, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T15:41:00.073Z [Protected] PID 37664, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T15:41:00.598Z [Protected] PID 37628, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T15:43:32.452Z [Protected] PID 24428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:47:04.403Z [Protected] PID 36320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:47:05.422Z [Protected] PID 36648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:47:20.893Z [Protected] PID 37784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:48:25.272Z [Protected] PID 37548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:48:32.374Z [Protected] PID 36996, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:53:02.799Z [Protected] PID 37008, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T15:53:04.105Z [Protected] PID 8660, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T15:53:10.922Z [Protected] PID 37452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T15:53:10.937Z [Protected] PID 35356, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T15:53:11.090Z [Protected] PID 35092, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T15:53:32.521Z [Protected] PID 36524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:57:00.094Z [Protected] PID 37828, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T15:57:00.469Z [Protected] PID 32840, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T15:57:00.485Z [Protected] PID 35224, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T15:57:00.553Z [Protected] PID 36112, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T15:57:57.362Z [Protected] PID 35072, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T15:57:57.390Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213205757
2016-12-13T15:58:32.488Z [Protected] PID 37084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T15:59:00.234Z [Protected] PID 35336, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T15:59:50.022Z [Protected] PID 20620, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T16:00:02.231Z [Protected] PID 36884, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T16:01:56.631Z [Protected] PID 8660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:02:00.941Z [Protected] PID 36952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:03:32.383Z [Protected] PID 36628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:05:04.835Z [Protected] PID 36820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:05:06.725Z [Protected] PID 37100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:08:18.903Z [Protected] PID 37868, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T16:08:25.368Z [Protected] PID 35864, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T16:08:26.870Z [Protected] PID 35156, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-13T16:08:32.500Z [Protected] PID 37132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:09:59.186Z [Protected] PID 30768, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-13T16:10:07.404Z [Protected] PID 37040, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T16:10:07.976Z [Protected] PID 37676, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
2016-12-13T16:10:13.850Z [Protected] PID 33080, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-13T16:13:32.475Z [Protected] PID 35984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:18:32.485Z [Protected] PID 37452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:22:26.079Z [Protected] PID 30192, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T16:22:55.216Z [Protected] PID 33080, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-13T16:23:00.080Z [Protected] PID 35728, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T16:23:00.883Z [Protected] PID 36524, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T16:23:01.249Z [Protected] PID 35604, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-13T16:23:01.746Z [Protected] PID 17080, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T16:23:32.488Z [Protected] PID 37996, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:24:14.801Z [Protected] PID 37184, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T16:24:14.812Z [Protected] PID 37612, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T16:24:14.981Z [Protected] PID 38892, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T16:24:14.993Z [Protected] PID 38868, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T16:24:47.737Z [Protected] PID 38212, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-13T16:25:46.552Z [Protected] PID 38452, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-13T16:25:47.703Z [Protected] PID 38288, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-13T16:25:48.681Z [Protected] PID 38872, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T16:25:49.572Z [Protected] PID 38740, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-13T16:27:02.395Z [Protected] PID 38048, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T16:27:02.405Z [Protected] PID 38036, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-13T16:27:02.571Z [Protected] PID 32548, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-13T16:27:02.688Z [Protected] PID 35152, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T16:27:05.404Z [Protected] PID 37608, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-13T16:27:05.753Z [Protected] PID 37292, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-13T16:27:05.943Z [Protected] PID 37184, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-13T16:27:06.021Z [Protected] PID 38892, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-13T16:27:06.176Z [Protected] PID 36852, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-13T16:27:06.402Z [Protected] PID 37736, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-13T16:27:09.941Z [Protected] PID 37664, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T16:27:57.464Z [Protected] PID 38084, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T16:27:57.491Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213212757
2016-12-13T16:28:32.545Z [Protected] PID 38904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:33:32.498Z [Protected] PID 37716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:38:26.523Z [Protected] PID 35900, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T16:38:30.087Z [Protected] PID 37628, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T16:38:30.401Z [Protected] PID 36852, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T16:38:30.648Z [Protected] PID 37328, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T16:38:31.559Z [Protected] PID 37312, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T16:38:32.508Z [Protected] PID 35804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:38:33.891Z [Protected] PID 37516, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T16:39:18.218Z [Protected] PID 37352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:39:19.345Z [Protected] PID 34308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:39:19.998Z [Protected] PID 38116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:39:22.823Z [Protected] PID 29756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:40:57.689Z [Protected] PID 38128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:40:58.197Z [Protected] PID 37076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:43:32.499Z [Protected] PID 37692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:48:32.481Z [Protected] PID 36464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:51:15.664Z [Protected] PID 36492, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-13T16:51:21.127Z [Protected] PID 34060, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-13T16:53:32.512Z [Protected] PID 38508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:57:00.091Z [Protected] PID 37128, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T16:57:00.312Z [Protected] PID 38088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T16:57:00.351Z [Protected] PID 34556, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T16:57:00.443Z [Protected] PID 36752, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T16:57:57.649Z [Protected] PID 37932, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T16:57:57.676Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213215757
2016-12-13T16:58:32.512Z [Protected] PID 36148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T16:59:00.139Z [Protected] PID 35440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T17:01:36.872Z [Protected] PID 38840, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T17:01:38.167Z [Protected] PID 37360, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T17:01:45.028Z [Protected] PID 36436, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:01:45.051Z [Protected] PID 38788, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T17:01:45.218Z [Protected] PID 38384, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T17:03:32.498Z [Protected] PID 37400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:03:38.741Z [Protected] PID 35212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:07:12.495Z [Protected] PID 38860, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T17:08:32.487Z [Protected] PID 34124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:12:30.444Z [Protected] PID 37596, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T17:13:04.008Z [Protected] PID 36148, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-13T17:13:04.154Z [Protected] PID 37708, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T17:13:15.460Z [Protected] PID 35536, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T17:13:16.773Z [Protected] PID 37184, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T17:13:23.313Z [Protected] PID 38128, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:13:23.338Z [Protected] PID 37524, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T17:13:23.458Z [Protected] PID 36456, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T17:13:32.526Z [Protected] PID 37768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:14:11.417Z [Protected] PID 37400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:14:13.091Z [Protected] PID 34024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:15:50.365Z [Protected] PID 35988, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T17:15:51.647Z [Protected] PID 38780, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T17:15:58.034Z [Protected] PID 37228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:15:58.068Z [Protected] PID 37352, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T17:15:58.171Z [Protected] PID 37364, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T17:16:03.177Z [Protected] PID 37184, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:16:03.190Z [Protected] PID 32428, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T17:16:05.597Z [Protected] PID 38280, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T17:18:33.966Z [Protected] PID 34028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:18:41.625Z [Protected] PID 38024, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-13T17:18:43.072Z [Protected] PID 37540, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-13T17:18:50.287Z [Protected] PID 38488, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:18:50.310Z [Protected] PID 38764, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-13T17:18:50.442Z [Protected] PID 35212, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-13T17:23:00.302Z [Protected] PID 38648, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T17:23:02.034Z [Protected] PID 38748, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T17:23:32.488Z [Protected] PID 38832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:24:15.237Z [Protected] PID 38748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:24:15.249Z [Protected] PID 36740, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T17:24:15.494Z [Protected] PID 38088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:24:15.505Z [Protected] PID 37924, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T17:26:24.940Z [Protected] PID 38124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:26:25.752Z [Protected] PID 30768, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:26:57.515Z [Protected] PID 35520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:27:06.374Z [Protected] PID 34556, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T17:27:57.850Z [Protected] PID 35412, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T17:27:57.876Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213222757
2016-12-13T17:28:32.490Z [Protected] PID 36424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:33:32.488Z [Protected] PID 37972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:38:32.488Z [Protected] PID 37412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:41:00.074Z [Protected] PID 37636, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T17:41:00.519Z [Protected] PID 37196, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T17:43:32.490Z [Protected] PID 39600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:47:35.978Z [Protected] PID 39904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:47:36.465Z [Protected] PID 38956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:48:32.374Z [Protected] PID 37300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:53:32.484Z [Protected] PID 39196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:55:29.353Z [Protected] PID 37132, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:55:31.837Z [Protected] PID 39404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:57:00.073Z [Protected] PID 38520, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T17:57:00.311Z [Protected] PID 38592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T17:57:00.325Z [Protected] PID 39120, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T17:57:00.398Z [Protected] PID 39604, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T17:57:57.941Z [Protected] PID 39356, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T17:57:57.968Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213225757
2016-12-13T17:58:32.492Z [Protected] PID 29756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T17:59:00.181Z [Protected] PID 38384, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T17:59:08.685Z [Protected] PID 39032, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-13T18:03:32.499Z [Protected] PID 39628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:06:56.764Z [Protected] PID 38392, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T18:06:57.270Z [Protected] PID 37524, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T18:08:32.492Z [Protected] PID 39160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:10:09.059Z [Protected] PID 39644, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T18:13:32.480Z [Protected] PID 39740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:18:32.574Z [Protected] PID 36996, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:22:34.249Z [Protected] PID 39020, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T18:22:36.289Z [Protected] PID 39424, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T18:22:36.300Z [Protected] PID 38464, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T18:22:36.507Z [Protected] PID 39072, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T18:22:36.931Z [Protected] PID 38992, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T18:22:37.523Z [Protected] PID 39128, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T18:23:00.094Z [Protected] PID 36648, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T18:23:00.783Z [Protected] PID 39712, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T18:23:32.490Z [Protected] PID 39716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:24:15.633Z [Protected] PID 38508, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T18:24:15.644Z [Protected] PID 39548, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T18:24:15.803Z [Protected] PID 37776, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T18:24:15.814Z [Protected] PID 36840, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T18:27:04.536Z [Protected] PID 39776, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T18:27:58.030Z [Protected] PID 36052, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T18:27:58.056Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213232757
2016-12-13T18:28:32.482Z [Protected] PID 38592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:33:32.489Z [Protected] PID 38916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:36:21.631Z [Protected] PID 39660, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-13T18:36:50.613Z [Protected] PID 39224, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T18:36:50.817Z [Protected] PID 37960, Features 0000003000000102, C:\Program Files\Internet Explorer\IELowutil.exe
2016-12-13T18:37:10.605Z [Protected] PID 37796, Features 0000003000000102, C:\Program Files\Internet Explorer\IELowutil.exe
2016-12-13T18:38:32.489Z [Protected] PID 38460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:43:32.488Z [Protected] PID 39188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:48:32.450Z [Protected] PID 38104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:51:32.907Z [Protected] PID 38268, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T18:51:37.524Z [Protected] PID 39568, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T18:51:37.929Z [Protected] PID 39172, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-13T18:51:53.653Z [Protected] PID 38936, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-13T18:53:32.449Z [Protected] PID 39040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:57:00.078Z [Protected] PID 36840, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T18:57:00.314Z [Protected] PID 39044, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T18:57:00.330Z [Protected] PID 39104, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T18:57:00.437Z [Protected] PID 39584, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T18:57:58.127Z [Protected] PID 39772, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T18:57:58.161Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161213235758
2016-12-13T18:58:32.449Z [Protected] PID 38852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T18:59:00.118Z [Protected] PID 39516, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T19:02:29.155Z [Protected] PID 39540, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T19:03:32.451Z [Protected] PID 39432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:03:44.708Z [Protected] PID 39532, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T19:08:32.485Z [Protected] PID 38744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:13:32.488Z [Protected] PID 36148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:18:32.450Z [Protected] PID 36824, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:23:00.075Z [Protected] PID 38328, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T19:23:00.754Z [Protected] PID 37636, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T19:23:32.449Z [Protected] PID 39076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:24:15.963Z [Protected] PID 39792, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T19:24:15.974Z [Protected] PID 39620, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T19:24:16.080Z [Protected] PID 38168, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T19:24:16.089Z [Protected] PID 33204, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T19:26:11.983Z [Protected] PID 37980, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T19:26:11.996Z [Protected] PID 38280, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T19:27:06.453Z [Protected] PID 39260, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T19:27:34.794Z [Protected] PID 39336, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-13T19:27:58.777Z [Protected] PID 40944, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T19:27:58.854Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214002758
2016-12-13T19:28:01.682Z [Protected] PID 40760, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T19:28:01.987Z [Protected] PID 39184, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T19:28:32.897Z [Protected] PID 39152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:33:32.490Z [Protected] PID 39900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:38:32.487Z [Protected] PID 39952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:41:00.215Z [Protected] PID 38236, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T19:41:01.972Z [Protected] PID 39696, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T19:43:32.487Z [Protected] PID 40512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:48:32.480Z [Protected] PID 38096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:53:32.488Z [Protected] PID 39164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:57:00.073Z [Protected] PID 38316, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T19:57:00.320Z [Protected] PID 40672, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T19:57:00.337Z [Protected] PID 37336, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T19:57:00.409Z [Protected] PID 40456, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T19:57:58.919Z [Protected] PID 35468, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T19:57:58.945Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214005758
2016-12-13T19:58:32.482Z [Protected] PID 39204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T19:59:00.323Z [Protected] PID 40056, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T19:59:00.328Z [Protected] PID 39888, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T19:59:00.626Z [Protected] PID 39240, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-13T19:59:00.632Z [Protected] PID 40048, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-13T20:03:32.488Z [Protected] PID 40736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:04:39.888Z [Protected] PID 40648, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T20:04:44.222Z [Protected] PID 40016, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T20:04:44.698Z [Protected] PID 39312, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T20:04:44.703Z [Protected] PID 40208, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T20:04:45.136Z [Protected] PID 40388, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T20:04:45.857Z [Protected] PID 38196, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T20:08:32.491Z [Protected] PID 37588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:08:45.424Z [Protected] PID 30768, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T20:08:45.504Z [Protected] PID 40164, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T20:09:20.286Z [Protected] PID 39052, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T20:13:32.484Z [Protected] PID 38580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:18:32.489Z [Protected] PID 40104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:21:53.800Z [Protected] PID 38248, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T20:23:00.084Z [Protected] PID 40368, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T20:23:00.805Z [Protected] PID 31580, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T20:23:32.453Z [Protected] PID 32540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:23:39.445Z [Protected] PID 40360, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-13T20:23:41.561Z [Protected] PID 38764, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T20:23:57.455Z [Protected] PID 40544, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-13T20:24:16.315Z [Protected] PID 39352, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T20:24:16.327Z [Protected] PID 40128, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T20:24:16.575Z [Protected] PID 38960, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T20:24:16.586Z [Protected] PID 40648, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T20:27:04.784Z [Protected] PID 36840, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T20:27:59.009Z [Protected] PID 35520, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T20:27:59.036Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214012758
2016-12-13T20:28:32.484Z [Protected] PID 38972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:10.660Z [Protected] PID 39364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:10.887Z [Protected] PID 40856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:11.111Z [Protected] PID 40044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:11.294Z [Protected] PID 39568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:11.474Z [Protected] PID 38168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:11.653Z [Protected] PID 35988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:11.825Z [Protected] PID 39652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:12.024Z [Protected] PID 39024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:12.222Z [Protected] PID 38976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:12.401Z [Protected] PID 40928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:32:12.590Z [Protected] PID 39612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:33:32.373Z [Protected] PID 39804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:38:32.442Z [Protected] PID 38464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:43:32.446Z [Protected] PID 36940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:48:32.452Z [Protected] PID 38112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:53:32.448Z [Protected] PID 40572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:54:44.762Z [Protected] PID 39312, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T20:54:44.964Z [Protected] PID 39308, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-13T20:57:00.070Z [Protected] PID 34332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T20:57:00.300Z [Protected] PID 34876, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T20:57:00.314Z [Protected] PID 39504, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T20:57:00.385Z [Protected] PID 35804, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T20:57:59.098Z [Protected] PID 40700, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T20:57:59.125Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214015759
2016-12-13T20:58:32.449Z [Protected] PID 39956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T20:59:00.158Z [Protected] PID 37540, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T20:59:51.515Z [Protected] PID 40868, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T21:01:40.659Z [Protected] PID 39188, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T21:01:40.976Z [Protected] PID 40328, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-13T21:01:41.216Z [Protected] PID 38380, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T21:03:32.491Z [Protected] PID 37512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:06:58.374Z [Protected] PID 40452, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T21:08:32.447Z [Protected] PID 14140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:13:32.488Z [Protected] PID 39020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:18:32.449Z [Protected] PID 36456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:23:00.075Z [Protected] PID 40372, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T21:23:00.691Z [Protected] PID 40092, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T21:23:01.212Z [Protected] PID 39020, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T21:23:32.481Z [Protected] PID 39716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:24:16.769Z [Protected] PID 40748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T21:24:16.780Z [Protected] PID 37952, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T21:24:16.885Z [Protected] PID 39212, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T21:24:16.897Z [Protected] PID 40432, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T21:27:06.860Z [Protected] PID 37220, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T21:27:59.189Z [Protected] PID 38872, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T21:27:59.215Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214022759
2016-12-13T21:28:32.447Z [Protected] PID 40700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:33:32.487Z [Protected] PID 39812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:36:56.751Z [Protected] PID 36536, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T21:36:57.169Z [Protected] PID 36456, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-13T21:38:32.485Z [Protected] PID 39116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:41:00.228Z [Protected] PID 34556, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T21:43:32.490Z [Protected] PID 37580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:46:20.092Z [Protected] PID 37700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T21:46:20.104Z [Protected] PID 40416, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T21:48:32.685Z [Protected] PID 39916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:53:32.448Z [Protected] PID 37636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:53:39.600Z [Protected] PID 39896, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T21:55:48.860Z [Protected] PID 29636, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T21:55:49.005Z [Protected] PID 38736, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T21:55:49.064Z [Protected] PID 39984, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T21:55:49.572Z [Protected] PID 40128, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T21:55:49.742Z [Protected] PID 39444, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T21:57:00.100Z [Protected] PID 39528, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T21:57:00.345Z [Protected] PID 39880, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T21:57:00.359Z [Protected] PID 39588, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T21:57:00.433Z [Protected] PID 39376, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T21:57:59.331Z [Protected] PID 39792, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T21:57:59.358Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214025759
2016-12-13T21:58:32.488Z [Protected] PID 35892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T21:59:00.187Z [Protected] PID 40892, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T22:00:00.646Z [Protected] PID 36544, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-13T22:00:01.080Z [Protected] PID 39308, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-13T22:00:01.154Z [Protected] PID 40128, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-13T22:03:32.846Z [Protected] PID 39732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:08:32.838Z [Protected] PID 39628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:08:39.032Z [Protected] PID 40568, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T22:13:32.658Z [Protected] PID 36536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:18:32.456Z [Protected] PID 39084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:23:00.680Z [Protected] PID 34268, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T22:23:03.913Z [Protected] PID 39240, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T22:23:32.462Z [Protected] PID 40064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:24:17.266Z [Protected] PID 39672, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T22:24:17.286Z [Protected] PID 40260, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T22:24:17.572Z [Protected] PID 37908, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T22:24:17.596Z [Protected] PID 37300, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T22:27:07.853Z [Protected] PID 36488, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T22:27:59.569Z [Protected] PID 35444, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T22:27:59.590Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214032759
2016-12-13T22:28:32.453Z [Protected] PID 36324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:33:32.502Z [Protected] PID 40336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:38:32.477Z [Protected] PID 39184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:39:22.070Z [Protected] PID 37232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:43:32.496Z [Protected] PID 40868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:48:32.485Z [Protected] PID 40764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:53:32.487Z [Protected] PID 38852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:55:40.669Z [Protected] PID 39476, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T22:57:00.076Z [Protected] PID 38168, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T22:57:00.398Z [Protected] PID 39040, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T22:57:00.412Z [Protected] PID 39356, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T22:57:00.485Z [Protected] PID 40844, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T22:57:59.659Z [Protected] PID 39784, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T22:57:59.686Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214035759
2016-12-13T22:58:32.474Z [Protected] PID 31636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T22:59:00.144Z [Protected] PID 39120, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-13T23:03:32.486Z [Protected] PID 40612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:06:26.916Z [Protected] PID 34412, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T23:06:26.928Z [Protected] PID 39756, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-13T23:08:33.110Z [Protected] PID 37336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:08:33.798Z [Protected] PID 39632, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-13T23:13:32.485Z [Protected] PID 38316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:18:32.464Z [Protected] PID 38788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:23:00.193Z [Protected] PID 35936, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T23:23:01.099Z [Protected] PID 35148, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-13T23:23:32.486Z [Protected] PID 37664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:24:17.727Z [Protected] PID 37584, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T23:24:17.739Z [Protected] PID 40372, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-13T23:24:17.823Z [Protected] PID 38168, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T23:24:17.834Z [Protected] PID 34476, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-13T23:27:06.281Z [Protected] PID 39244, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-13T23:27:39.361Z [Protected] PID 39972, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-13T23:28:00.192Z [Protected] PID 35444, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T23:28:00.268Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214042759
2016-12-13T23:28:03.637Z [Protected] PID 39196, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T23:28:03.882Z [Protected] PID 40804, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-13T23:28:32.531Z [Protected] PID 39060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:33:32.481Z [Protected] PID 40352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:38:32.475Z [Protected] PID 39048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:38:52.572Z [Protected] PID 38892, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T23:38:55.212Z [Protected] PID 40252, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-13T23:38:56.070Z [Protected] PID 40240, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T23:38:56.555Z [Protected] PID 36536, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-13T23:38:56.851Z [Protected] PID 39940, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-13T23:38:58.014Z [Protected] PID 36756, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-13T23:41:00.101Z [Protected] PID 40848, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T23:41:00.527Z [Protected] PID 33448, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-13T23:43:32.487Z [Protected] PID 39632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:45:42.276Z [Protected] PID 37224, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T23:48:32.460Z [Protected] PID 37436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:49:30.301Z [Protected] PID 38488, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-13T23:53:32.504Z [Protected] PID 39420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:57:00.074Z [Protected] PID 40420, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-13T23:57:00.318Z [Protected] PID 37436, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-13T23:57:00.347Z [Protected] PID 39328, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T23:57:00.419Z [Protected] PID 36304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-13T23:58:00.330Z [Protected] PID 40920, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-13T23:58:00.356Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214045800
2016-12-13T23:58:32.477Z [Protected] PID 39752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-13T23:59:00.284Z [Protected] PID 39168, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T00:03:32.493Z [Protected] PID 35936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:08:32.474Z [Protected] PID 39912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:09:16.053Z [Protected] PID 38944, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T00:13:32.537Z [Protected] PID 37736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:18:32.490Z [Protected] PID 37896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:22:27.247Z [Protected] PID 40712, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T00:23:00.026Z [Protected] PID 34412, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T00:23:00.384Z [Protected] PID 39772, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T00:23:00.930Z [Protected] PID 40572, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T00:24:18.005Z [Protected] PID 40444, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T00:24:18.016Z [Protected] PID 40504, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T00:24:18.243Z [Protected] PID 40308, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T00:24:18.254Z [Protected] PID 38384, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T00:24:32.441Z [Protected] PID 38696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:24:48.667Z [Protected] PID 38900, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-14T00:25:49.280Z [Protected] PID 39044, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T00:25:49.356Z [Protected] PID 40328, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T00:27:04.812Z [Protected] PID 40508, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T00:28:00.368Z [Protected] PID 40124, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T00:28:00.388Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214052800
2016-12-14T00:28:32.470Z [Protected] PID 40096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:33:32.444Z [Protected] PID 40460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:36:33.739Z [Protected] PID 37536, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T00:36:33.751Z [Protected] PID 31580, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T00:38:32.728Z [Protected] PID 39604, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:43:32.769Z [Protected] PID 39572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:43:42.749Z [Protected] PID 39268, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T00:48:32.522Z [Protected] PID 40388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:53:32.472Z [Protected] PID 36076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:57:00.159Z [Protected] PID 39196, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T00:57:00.395Z [Protected] PID 40140, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T00:57:00.408Z [Protected] PID 34424, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T00:57:00.486Z [Protected] PID 40408, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T00:58:00.478Z [Protected] PID 40736, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T00:58:00.504Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214055800
2016-12-14T00:58:32.482Z [Protected] PID 34476, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T00:59:00.242Z [Protected] PID 34832, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T01:01:37.502Z [Protected] PID 40112, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T01:03:32.427Z [Protected] PID 40916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:06:57.691Z [Protected] PID 36408, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T01:06:58.144Z [Protected] PID 40648, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T01:08:32.495Z [Protected] PID 36400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:12:12.619Z [Protected] PID 38048, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T01:12:12.991Z [Protected] PID 39800, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T01:12:13.223Z [Protected] PID 36052, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T01:13:32.498Z [Protected] PID 38860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:18:32.452Z [Protected] PID 36076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:23:00.066Z [Protected] PID 36996, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T01:23:01.232Z [Protected] PID 33448, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T01:23:01.723Z [Protected] PID 39756, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T01:23:32.447Z [Protected] PID 32108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:24:18.465Z [Protected] PID 40340, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T01:24:18.476Z [Protected] PID 39060, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T01:24:18.571Z [Protected] PID 33772, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T01:24:18.582Z [Protected] PID 30660, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T01:27:10.176Z [Protected] PID 38828, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T01:28:00.567Z [Protected] PID 40432, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T01:28:00.593Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214062800
2016-12-14T01:28:32.498Z [Protected] PID 39168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:30:44.534Z [Protected] PID 40192, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T01:30:48.479Z [Protected] PID 40924, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-14T01:30:50.334Z [Protected] PID 39644, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T01:31:00.402Z [Protected] PID 40452, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T01:31:00.509Z [Protected] PID 40704, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T01:31:00.561Z [Protected] PID 40464, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T01:31:01.221Z [Protected] PID 37920, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T01:31:01.949Z [Protected] PID 40580, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T01:31:06.369Z [Protected] PID 40068, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-14T01:33:32.481Z [Protected] PID 34832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:38:32.504Z [Protected] PID 38988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:41:00.076Z [Protected] PID 40800, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T01:41:00.480Z [Protected] PID 40172, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T01:43:32.493Z [Protected] PID 40096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:48:32.480Z [Protected] PID 38988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:53:32.474Z [Protected] PID 40928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:54:25.880Z [Protected] PID 40584, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T01:57:00.069Z [Protected] PID 39792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T01:57:00.294Z [Protected] PID 38976, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T01:57:00.307Z [Protected] PID 39440, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T01:57:00.393Z [Protected] PID 32756, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T01:57:08.554Z [Protected] PID 38548, Features 0000003000000106, C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-12-14T01:57:10.565Z [Protected] PID 39116, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Temp\{50B6B4B7-A408-4842-932D-FFA4900142B3}\InstallFlashPlayer.exe
2016-12-14T01:57:14.445Z [Protected] PID 40736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T01:57:14.458Z [Protected] PID 40540, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-14T01:57:16.840Z [Protected] PID 40576, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T01:57:16.860Z [Protected] PID 39876, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T01:57:19.688Z [Protected] PID 39780, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T01:57:19.701Z [Protected] PID 39952, Features 0000003000000102, C:\Windows\SysWOW64\cmd.exe
2016-12-14T01:58:00.665Z [Protected] PID 40452, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T01:58:00.693Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214065800
2016-12-14T01:58:32.485Z [Protected] PID 39352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T01:59:00.113Z [Protected] PID 38924, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T01:59:16.098Z [Protected] PID 40420, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T02:03:32.479Z [Protected] PID 37736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:06:39.235Z [Protected] PID 38104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T02:06:39.247Z [Protected] PID 39300, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T02:08:25.680Z [Protected] PID 38932, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T02:08:32.658Z [Protected] PID 40804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:13:32.479Z [Protected] PID 40520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:18:32.482Z [Protected] PID 37932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:23:00.102Z [Protected] PID 39168, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T02:23:00.716Z [Protected] PID 35936, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T02:23:32.485Z [Protected] PID 38196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:24:18.714Z [Protected] PID 35444, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T02:24:18.724Z [Protected] PID 39204, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T02:24:18.807Z [Protected] PID 37952, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T02:24:18.817Z [Protected] PID 39212, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T02:27:06.106Z [Protected] PID 39472, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T02:28:00.804Z [Protected] PID 40504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T02:28:00.829Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214072800
2016-12-14T02:28:32.484Z [Protected] PID 40444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:33:32.480Z [Protected] PID 37540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:38:32.481Z [Protected] PID 40844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:43:32.482Z [Protected] PID 40028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:44:05.691Z [Protected] PID 39424, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T02:48:32.487Z [Protected] PID 39108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:53:32.483Z [Protected] PID 39268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:57:00.071Z [Protected] PID 39280, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T02:57:00.322Z [Protected] PID 38444, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T02:57:00.323Z [Protected] PID 38144, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T02:57:00.392Z [Protected] PID 36408, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T02:58:00.892Z [Protected] PID 28880, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T02:58:00.916Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214075800
2016-12-14T02:58:32.485Z [Protected] PID 35228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T02:59:00.179Z [Protected] PID 40768, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T03:03:32.482Z [Protected] PID 38580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:08:19.770Z [Protected] PID 37220, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T03:08:32.482Z [Protected] PID 40732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:08:42.071Z [Protected] PID 34044, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T03:08:42.314Z [Protected] PID 38004, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-14T03:08:42.863Z [Protected] PID 40540, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-14T03:11:03.923Z [Protected] PID 40560, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T03:11:05.786Z [Protected] PID 39084, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T03:11:06.054Z [Protected] PID 40672, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T03:11:06.174Z [Protected] PID 29252, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T03:11:06.572Z [Protected] PID 38676, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T03:11:06.844Z [Protected] PID 39704, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T03:13:32.462Z [Protected] PID 40868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:13:47.293Z [Protected] PID 40744, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T03:18:32.468Z [Protected] PID 39832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:23:00.070Z [Protected] PID 39944, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T03:23:00.385Z [Protected] PID 39312, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T03:23:00.977Z [Protected] PID 40376, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T03:23:32.461Z [Protected] PID 39780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:24:18.949Z [Protected] PID 38832, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T03:24:18.960Z [Protected] PID 40684, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T03:24:19.056Z [Protected] PID 30768, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T03:24:19.067Z [Protected] PID 40424, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T03:27:04.442Z [Protected] PID 40904, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T03:27:32.995Z [Protected] PID 39380, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-14T03:27:58.794Z [Protected] PID 40096, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T03:27:58.954Z [Protected] PID 40752, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T03:28:01.397Z [Protected] PID 37968, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T03:28:01.446Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214082800
2016-12-14T03:28:32.485Z [Protected] PID 40152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:31:23.659Z [Protected] PID 40892, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T03:33:32.448Z [Protected] PID 33364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:38:32.463Z [Protected] PID 39152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:41:00.085Z [Protected] PID 34224, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T03:41:00.544Z [Protected] PID 37524, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T03:43:32.445Z [Protected] PID 20976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:48:32.459Z [Protected] PID 39696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:53:32.447Z [Protected] PID 40684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:57:00.068Z [Protected] PID 38944, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T03:57:00.351Z [Protected] PID 39228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T03:57:00.363Z [Protected] PID 40916, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T03:57:00.469Z [Protected] PID 34804, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T03:58:01.521Z [Protected] PID 40368, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T03:58:01.537Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214085801
2016-12-14T03:58:32.480Z [Protected] PID 32584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T03:59:00.134Z [Protected] PID 37128, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T04:03:32.477Z [Protected] PID 36424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:04:24.979Z [Protected] PID 40816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:04:25.046Z [Protected] PID 38860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:06:43.843Z [Protected] PID 38928, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T04:08:32.484Z [Protected] PID 40624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:13:32.483Z [Protected] PID 34044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:18:32.482Z [Protected] PID 40564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:20:46.021Z [Protected] PID 38316, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T04:23:00.079Z [Protected] PID 36648, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T04:23:00.415Z [Protected] PID 39484, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T04:23:32.477Z [Protected] PID 40912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:24:19.272Z [Protected] PID 37232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T04:24:19.283Z [Protected] PID 38696, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T04:24:19.466Z [Protected] PID 38504, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T04:24:19.486Z [Protected] PID 40584, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T04:27:04.545Z [Protected] PID 39420, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T04:28:01.599Z [Protected] PID 40584, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T04:28:01.625Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214092801
2016-12-14T04:28:32.483Z [Protected] PID 39868, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:33:32.481Z [Protected] PID 40112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:36:58.687Z [Protected] PID 36000, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T04:36:59.163Z [Protected] PID 40868, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T04:38:32.482Z [Protected] PID 30524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:42:16.868Z [Protected] PID 36536, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T04:42:18.701Z [Protected] PID 39432, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T04:42:18.748Z [Protected] PID 40568, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T04:42:18.900Z [Protected] PID 39068, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T04:42:19.402Z [Protected] PID 12152, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T04:42:19.896Z [Protected] PID 40212, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T04:43:32.476Z [Protected] PID 40504, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:44:01.089Z [Protected] PID 39388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T04:44:01.102Z [Protected] PID 36112, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-14T04:44:01.343Z [Protected] PID 38948, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T04:44:01.356Z [Protected] PID 40784, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-14T04:44:01.395Z [Protected] PID 40464, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-14T04:44:05.232Z [Protected] PID 40196, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-14T04:44:06.079Z [Protected] PID 34972, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-14T04:44:28.810Z [Protected] PID 40912, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T04:46:49.799Z [Protected] PID 40348, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T04:48:32.830Z [Protected] PID 37928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:48:46.628Z [Protected] PID 40184, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-14T04:48:47.147Z [Protected] PID 40424, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-14T04:51:33.419Z [Protected] PID 39020, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T04:51:34.151Z [Protected] PID 39080, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T04:51:38.724Z [Protected] PID 39900, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T04:51:39.076Z [Protected] PID 40956, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T04:51:45.205Z [Protected] PID 38884, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T04:51:48.356Z [Protected] PID 40456, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-14T04:51:55.878Z [Protected] PID 39988, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T04:52:10.327Z [Protected] PID 37580, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T04:53:26.673Z [Protected] PID 35316, Features 000000300000010A, C:\Windows\servicing\TrustedInstaller.exe
2016-12-14T04:53:32.860Z [Protected] PID 34044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:53:59.424Z [Protected] PID 38676, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-14T04:57:00.253Z [Protected] PID 13696, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T04:57:01.576Z [Protected] PID 19520, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T04:57:01.591Z [Protected] PID 36752, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T04:57:01.664Z [Protected] PID 40444, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T04:58:01.827Z [Protected] PID 39544, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T04:58:01.853Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214095801
2016-12-14T04:58:32.582Z [Protected] PID 40376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T04:59:00.283Z [Protected] PID 39448, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T05:00:01.182Z [Protected] PID 40164, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-14T05:00:01.496Z [Protected] PID 40900, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T05:00:01.500Z [Protected] PID 38732, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-14T05:03:26.489Z [Protected] PID 39652, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T05:03:26.751Z [Protected] PID 40408, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T05:03:32.486Z [Protected] PID 40024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:05:53.061Z [Protected] PID 35052, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T05:08:32.466Z [Protected] PID 39672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:13:32.474Z [Protected] PID 40184, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:18:32.478Z [Protected] PID 40220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:23:00.069Z [Protected] PID 34476, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T05:23:01.045Z [Protected] PID 39696, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T05:23:01.617Z [Protected] PID 40484, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T05:23:32.469Z [Protected] PID 40920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:24:19.784Z [Protected] PID 39084, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T05:24:19.804Z [Protected] PID 38184, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T05:24:20.125Z [Protected] PID 39548, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T05:24:20.135Z [Protected] PID 39184, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T05:27:10.170Z [Protected] PID 39628, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T05:28:01.917Z [Protected] PID 40712, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T05:28:01.941Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214102801
2016-12-14T05:28:32.491Z [Protected] PID 39168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:33:32.463Z [Protected] PID 34224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:38:32.431Z [Protected] PID 38592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:41:00.074Z [Protected] PID 40520, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T05:41:00.909Z [Protected] PID 38268, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T05:43:32.436Z [Protected] PID 40328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:48:32.494Z [Protected] PID 39792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:53:32.457Z [Protected] PID 38972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:56:45.861Z [Protected] PID 36456, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T05:56:45.873Z [Protected] PID 40096, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T05:57:00.654Z [Protected] PID 38676, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T05:57:01.059Z [Protected] PID 37720, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T05:57:01.087Z [Protected] PID 38520, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T05:57:01.143Z [Protected] PID 40316, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T05:58:02.116Z [Protected] PID 35720, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T05:58:02.142Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214105801
2016-12-14T05:58:32.964Z [Protected] PID 38232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T05:59:00.259Z [Protected] PID 39648, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T06:01:11.446Z [Protected] PID 33448, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T06:03:32.494Z [Protected] PID 39316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:08:32.487Z [Protected] PID 39316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:12:37.872Z [Protected] PID 37400, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T06:13:32.480Z [Protected] PID 39312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:18:32.474Z [Protected] PID 38548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:23:00.070Z [Protected] PID 5444, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T06:23:01.135Z [Protected] PID 38952, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T06:23:01.657Z [Protected] PID 40008, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T06:23:32.490Z [Protected] PID 39584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:24:20.253Z [Protected] PID 39548, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T06:24:20.265Z [Protected] PID 38984, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T06:24:20.436Z [Protected] PID 36000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T06:24:20.447Z [Protected] PID 40076, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T06:27:09.834Z [Protected] PID 40052, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T06:28:02.206Z [Protected] PID 40104, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T06:28:02.231Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214112802
2016-12-14T06:28:32.462Z [Protected] PID 38292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:33:32.490Z [Protected] PID 39576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:34:52.761Z [Protected] PID 39632, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T06:38:32.488Z [Protected] PID 39636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:41:21.871Z [Protected] PID 39388, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T06:41:23.704Z [Protected] PID 39920, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T06:41:24.280Z [Protected] PID 40956, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T06:41:24.290Z [Protected] PID 40044, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T06:41:24.990Z [Protected] PID 38916, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T06:41:25.529Z [Protected] PID 40844, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T06:43:32.483Z [Protected] PID 40628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:48:32.480Z [Protected] PID 40496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:51:08.406Z [Protected] PID 39592, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T06:53:32.488Z [Protected] PID 39752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:57:00.080Z [Protected] PID 39228, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T06:57:00.325Z [Protected] PID 39076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T06:57:00.335Z [Protected] PID 39308, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T06:57:00.394Z [Protected] PID 38140, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T06:58:02.304Z [Protected] PID 40736, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T06:58:02.320Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214115802
2016-12-14T06:58:32.482Z [Protected] PID 38488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T06:59:00.110Z [Protected] PID 40404, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T06:59:10.129Z [Protected] PID 38048, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T07:03:32.476Z [Protected] PID 40108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:07:00.291Z [Protected] PID 31304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T07:07:00.301Z [Protected] PID 40508, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T07:08:32.679Z [Protected] PID 39336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:08:42.221Z [Protected] PID 40924, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T07:13:32.470Z [Protected] PID 39164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:18:32.478Z [Protected] PID 38548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:22:03.081Z [Protected] PID 38648, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T07:22:03.167Z [Protected] PID 34124, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T07:23:00.129Z [Protected] PID 19688, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T07:23:00.727Z [Protected] PID 40752, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T07:23:01.261Z [Protected] PID 39972, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T07:23:32.494Z [Protected] PID 38900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:24:20.578Z [Protected] PID 37400, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T07:24:20.590Z [Protected] PID 40744, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T07:24:20.691Z [Protected] PID 39788, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T07:24:20.692Z [Protected] PID 37328, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T07:27:05.932Z [Protected] PID 40844, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T07:28:02.434Z [Protected] PID 40380, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T07:28:02.460Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214122802
2016-12-14T07:28:32.482Z [Protected] PID 40124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:33:32.504Z [Protected] PID 39568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:38:32.507Z [Protected] PID 40000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:41:00.085Z [Protected] PID 39740, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T07:41:00.436Z [Protected] PID 39132, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T07:41:10.785Z [Protected] PID 37400, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T07:43:32.483Z [Protected] PID 38764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:48:32.494Z [Protected] PID 34224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:53:32.506Z [Protected] PID 39116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:57:00.087Z [Protected] PID 19688, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T07:57:00.302Z [Protected] PID 19124, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T07:57:00.315Z [Protected] PID 39724, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T07:57:00.383Z [Protected] PID 36304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T07:58:02.532Z [Protected] PID 39604, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T07:58:02.562Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214125802
2016-12-14T07:58:32.500Z [Protected] PID 40072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T07:59:00.168Z [Protected] PID 39980, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T08:00:00.085Z [Protected] PID 39956, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T08:00:00.556Z [Protected] PID 39640, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T08:03:32.488Z [Protected] PID 40364, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:06:58.685Z [Protected] PID 39780, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T08:06:58.919Z [Protected] PID 37896, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T08:08:32.486Z [Protected] PID 34424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:08:55.468Z [Protected] PID 38104, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T08:09:04.364Z [Protected] PID 36408, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T08:13:32.489Z [Protected] PID 39732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:17:07.438Z [Protected] PID 40528, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T08:17:07.451Z [Protected] PID 40200, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T08:18:32.816Z [Protected] PID 40728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:22:28.678Z [Protected] PID 40488, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T08:23:00.097Z [Protected] PID 37512, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T08:23:00.711Z [Protected] PID 39992, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T08:23:01.248Z [Protected] PID 39672, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T08:23:32.470Z [Protected] PID 40732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:24:20.832Z [Protected] PID 29636, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T08:24:20.843Z [Protected] PID 39364, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T08:24:20.949Z [Protected] PID 40804, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T08:24:20.959Z [Protected] PID 40508, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T08:24:48.670Z [Protected] PID 40276, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-14T08:27:06.023Z [Protected] PID 39044, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T08:28:02.663Z [Protected] PID 19124, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T08:28:02.690Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214132802
2016-12-14T08:28:32.479Z [Protected] PID 40892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:30:44.599Z [Protected] PID 32756, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T08:33:32.479Z [Protected] PID 40412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:36:27.534Z [Protected] PID 35344, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T08:36:29.625Z [Protected] PID 39968, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T08:36:29.690Z [Protected] PID 39236, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T08:36:29.754Z [Protected] PID 40776, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T08:36:30.641Z [Protected] PID 39696, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T08:36:31.865Z [Protected] PID 36492, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T08:37:12.975Z [Protected] PID 31748, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T08:37:12.988Z [Protected] PID 39132, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T08:38:32.817Z [Protected] PID 38840, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:43:32.490Z [Protected] PID 40792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:44:32.961Z [Protected] PID 38124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:44:36.036Z [Protected] PID 37952, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:44:40.302Z [Protected] PID 39260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:45:48.249Z [Protected] PID 40396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:45:51.969Z [Protected] PID 36652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:46:53.459Z [Protected] PID 40304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:46:56.414Z [Protected] PID 31152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:47:54.469Z [Protected] PID 40876, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-14T08:47:54.737Z [Protected] PID 38024, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-14T08:47:55.353Z [Protected] PID 35868, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-14T08:47:55.843Z [Protected] PID 38124, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T08:48:32.487Z [Protected] PID 40688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:53:32.487Z [Protected] PID 35312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:54:26.285Z [Protected] PID 15420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:54:30.563Z [Protected] PID 34556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:54:45.777Z [Protected] PID 40240, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T08:54:45.966Z [Protected] PID 39356, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-14T08:55:29.238Z [Protected] PID 39580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:57:00.075Z [Protected] PID 37664, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T08:57:00.457Z [Protected] PID 25332, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T08:57:00.471Z [Protected] PID 35316, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T08:57:00.545Z [Protected] PID 40448, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T08:58:02.806Z [Protected] PID 39144, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T08:58:02.834Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214135802
2016-12-14T08:58:32.472Z [Protected] PID 40368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T08:59:00.276Z [Protected] PID 40804, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T09:03:32.488Z [Protected] PID 39516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:04:33.301Z [Protected] PID 38280, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T09:04:33.641Z [Protected] PID 39020, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T09:04:33.867Z [Protected] PID 36000, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T09:04:59.963Z [Protected] PID 38540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:07:03.784Z [Protected] PID 31152, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T09:08:32.490Z [Protected] PID 37024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:11:21.561Z [Protected] PID 40392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:13:32.506Z [Protected] PID 41648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:17:19.782Z [Protected] PID 41752, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T09:17:19.794Z [Protected] PID 38104, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T09:18:32.834Z [Protected] PID 36000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:23:00.540Z [Protected] PID 41152, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T09:23:02.092Z [Protected] PID 38084, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T09:23:32.447Z [Protected] PID 40392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:24:21.392Z [Protected] PID 40548, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T09:24:21.402Z [Protected] PID 40996, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T09:24:21.712Z [Protected] PID 41300, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T09:24:21.722Z [Protected] PID 40076, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T09:25:02.202Z [Protected] PID 39800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:25:40.629Z [Protected] PID 37008, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T09:25:40.802Z [Protected] PID 41680, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T09:27:07.111Z [Protected] PID 39300, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T09:27:18.903Z [Protected] PID 42172, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-14T09:27:28.237Z [Protected] PID 41784, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T09:27:32.653Z [Protected] PID 41356, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\POWERPNT.EXE
2016-12-14T09:27:35.067Z [Protected] PID 40688, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T09:27:36.475Z [Protected] PID 42008, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-14T09:27:45.208Z [Protected] PID 42308, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-14T09:28:03.167Z [Protected] PID 38852, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T09:28:03.195Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214142802
2016-12-14T09:28:07.538Z [Protected] PID 37884, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-14T09:28:11.700Z [Protected] PID 42600, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-14T09:28:41.751Z [Protected] PID 41152, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T09:28:43.012Z [Protected] PID 42056, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T09:29:33.038Z [Protected] PID 42668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:29:52.033Z [Protected] PID 30020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:33:32.447Z [Protected] PID 38856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:38:29.166Z [Protected] PID 40464, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T09:38:32.481Z [Protected] PID 42104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:41:00.020Z [Protected] PID 42156, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T09:41:01.814Z [Protected] PID 41668, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T09:43:32.452Z [Protected] PID 42684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:47:56.777Z [Protected] PID 42352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:47:59.340Z [Protected] PID 39252, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T09:48:32.397Z [Protected] PID 41696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:51:53.669Z [Protected] PID 40220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:51:59.636Z [Protected] PID 35312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:52:01.946Z [Protected] PID 42720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:53:32.380Z [Protected] PID 32656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:57:00.222Z [Protected] PID 42036, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T09:57:00.740Z [Protected] PID 40644, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T09:57:00.767Z [Protected] PID 40024, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T09:57:00.853Z [Protected] PID 39720, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T09:58:03.300Z [Protected] PID 40324, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T09:58:03.327Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214145803
2016-12-14T09:58:32.470Z [Protected] PID 41656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T09:59:00.452Z [Protected] PID 41184, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T10:00:01.626Z [Protected] PID 41232, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-14T10:02:15.199Z [Protected] PID 34972, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-14T10:02:22.063Z [Protected] PID 40252, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-14T10:03:32.469Z [Protected] PID 42296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:08:32.534Z [Protected] PID 40172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:08:33.239Z [Protected] PID 30656, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T10:08:36.547Z [Protected] PID 36480, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T10:08:37.235Z [Protected] PID 41544, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T10:08:37.950Z [Protected] PID 42324, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T10:08:40.610Z [Protected] PID 40188, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:08:43.010Z [Protected] PID 37156, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T10:09:56.800Z [Protected] PID 41052, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T10:09:56.834Z [Protected] PID 41224, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T10:12:08.223Z [Protected] PID 41788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:13:32.367Z [Protected] PID 20160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:14:04.070Z [Protected] PID 39456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:14:04.566Z [Protected] PID 5180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:14:05.224Z [Protected] PID 17496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:14:07.153Z [Protected] PID 40836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:14:45.333Z [Protected] PID 40708, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T10:15:26.133Z [Protected] PID 30752, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T10:15:26.227Z [Protected] PID 42504, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T10:16:02.248Z [Protected] PID 21556, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:18:32.623Z [Protected] PID 38680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:23:00.088Z [Protected] PID 42856, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T10:23:01.382Z [Protected] PID 40952, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T10:23:32.465Z [Protected] PID 41680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:24:21.910Z [Protected] PID 40056, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T10:24:21.923Z [Protected] PID 42632, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T10:24:22.248Z [Protected] PID 13736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T10:24:22.261Z [Protected] PID 30524, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T10:27:22.791Z [Protected] PID 42748, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T10:28:03.416Z [Protected] PID 39180, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T10:28:03.446Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214152803
2016-12-14T10:28:07.565Z [Protected] PID 18608, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T10:28:32.500Z [Protected] PID 40300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:29:01.764Z [Protected] PID 38980, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-14T10:29:03.954Z [Protected] PID 39172, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-14T10:29:04.875Z [Protected] PID 37544, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-14T10:29:06.915Z [Protected] PID 39376, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T10:30:25.727Z [Protected] PID 38972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:30:40.682Z [Protected] PID 42280, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:30:44.163Z [Protected] PID 31212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:31:10.523Z [Protected] PID 39716, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T10:31:13.447Z [Protected] PID 31064, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T10:31:22.984Z [Protected] PID 30524, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T10:31:23.063Z [Protected] PID 20356, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T10:31:23.481Z [Protected] PID 42144, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T10:32:47.549Z [Protected] PID 37696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:32:48.484Z [Protected] PID 39252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:33:17.537Z [Protected] PID 37940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:33:32.399Z [Protected] PID 42028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:33:58.121Z [Protected] PID 42852, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T10:33:58.634Z [Protected] PID 41016, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-14T10:34:13.030Z [Protected] PID 42816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:34:19.455Z [Protected] PID 41968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:38:32.660Z [Protected] PID 39456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:40:54.982Z [Protected] PID 38112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:40:55.497Z [Protected] PID 40004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:42:19.894Z [Protected] PID 42512, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T10:42:20.019Z [Protected] PID 5444, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T10:42:20.723Z [Protected] PID 42064, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:42:21.513Z [Protected] PID 39704, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:42:39.041Z [Protected] PID 18988, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:42:49.072Z [Protected] PID 42112, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:42:54.473Z [Protected] PID 39800, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:43:04.054Z [Protected] PID 42580, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T10:43:32.495Z [Protected] PID 41464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:48:32.492Z [Protected] PID 42152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:53:32.492Z [Protected] PID 39836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:57:00.165Z [Protected] PID 42808, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T10:57:00.563Z [Protected] PID 40244, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T10:57:00.573Z [Protected] PID 40708, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T10:57:00.645Z [Protected] PID 36488, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T10:58:03.536Z [Protected] PID 33284, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T10:58:03.561Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214155803
2016-12-14T10:58:32.490Z [Protected] PID 38680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T10:59:00.288Z [Protected] PID 36488, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T11:03:32.495Z [Protected] PID 11668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:08:32.477Z [Protected] PID 38088, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:13:32.484Z [Protected] PID 13324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:14:32.681Z [Protected] PID 42000, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T11:15:29.024Z [Protected] PID 40896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:15:29.560Z [Protected] PID 39808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:18:28.113Z [Protected] PID 36076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:18:32.376Z [Protected] PID 19792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:18:34.773Z [Protected] PID 32064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:18:51.473Z [Protected] PID 20744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:18:54.549Z [Protected] PID 39720, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:23:00.314Z [Protected] PID 43144, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T11:23:01.527Z [Protected] PID 43340, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T11:23:08.538Z [Protected] PID 43380, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T11:23:13.911Z [Protected] PID 32692, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-14T11:23:13.953Z [Protected] PID 43532, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T11:23:29.470Z [Protected] PID 43900, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-14T11:23:32.551Z [Protected] PID 43188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:24:22.707Z [Protected] PID 43376, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T11:24:22.720Z [Protected] PID 41236, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T11:24:22.978Z [Protected] PID 40592, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T11:24:22.990Z [Protected] PID 40116, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T11:27:05.053Z [Protected] PID 41236, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T11:28:03.635Z [Protected] PID 42724, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T11:28:03.662Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214162803
2016-12-14T11:28:32.500Z [Protected] PID 42048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:33:32.496Z [Protected] PID 43512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:36:59.610Z [Protected] PID 43504, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T11:37:00.323Z [Protected] PID 43032, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T11:38:32.491Z [Protected] PID 44064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:40:47.312Z [Protected] PID 44176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:40:48.441Z [Protected] PID 44772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:40:49.560Z [Protected] PID 44812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:40:52.527Z [Protected] PID 44324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:40:53.063Z [Protected] PID 44536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:41:00.763Z [Protected] PID 45024, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T11:41:28.878Z [Protected] PID 44680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:42:15.269Z [Protected] PID 44324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:43:32.499Z [Protected] PID 44936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:48:32.495Z [Protected] PID 45556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:53:32.497Z [Protected] PID 45204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:57:00.173Z [Protected] PID 31152, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T11:57:00.428Z [Protected] PID 45820, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T11:57:00.438Z [Protected] PID 44080, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T11:57:00.528Z [Protected] PID 45848, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T11:58:03.740Z [Protected] PID 44504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T11:58:03.762Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214165803
2016-12-14T11:58:32.496Z [Protected] PID 45436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T11:58:39.871Z [Protected] PID 44304, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T11:58:42.206Z [Protected] PID 43940, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T11:58:42.413Z [Protected] PID 42096, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T11:58:43.423Z [Protected] PID 41324, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T11:58:44.848Z [Protected] PID 44132, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T11:59:00.247Z [Protected] PID 16736, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T11:59:56.898Z [Protected] PID 42228, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T12:00:00.289Z [Protected] PID 44664, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe
2016-12-14T12:00:01.216Z [Protected] PID 45392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:00:15.665Z [Protected] PID 45596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:00:47.699Z [Protected] PID 45324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:00:48.220Z [Protected] PID 45912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:03:32.495Z [Protected] PID 42468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:07:51.999Z [Protected] PID 45424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:08:29.127Z [Protected] PID 45764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:08:32.392Z [Protected] PID 44304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:08:39.449Z [Protected] PID 12860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:08:39.909Z [Protected] PID 43892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:09:12.670Z [Protected] PID 45436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:10:26.869Z [Protected] PID 45648, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T12:12:38.999Z [Protected] PID 42152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:12:50.984Z [Protected] PID 45848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:13:32.388Z [Protected] PID 45200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:14:23.646Z [Protected] PID 44788, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:14:24.105Z [Protected] PID 21820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:16:10.250Z [Protected] PID 44040, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T12:16:10.326Z [Protected] PID 20600, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T12:16:39.469Z [Protected] PID 44972, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T12:16:41.682Z [Protected] PID 12152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:16:43.446Z [Protected] PID 43072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:18:32.372Z [Protected] PID 40508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:19:56.262Z [Protected] PID 20092, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T12:19:56.366Z [Protected] PID 20600, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T12:20:07.275Z [Protected] PID 42236, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T12:20:07.415Z [Protected] PID 40744, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T12:20:21.926Z [Protected] PID 44472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:23:00.094Z [Protected] PID 45060, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T12:23:00.693Z [Protected] PID 42800, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T12:23:01.317Z [Protected] PID 45956, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T12:23:32.507Z [Protected] PID 46432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:24:23.172Z [Protected] PID 46996, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T12:24:23.173Z [Protected] PID 46984, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T12:24:23.314Z [Protected] PID 46128, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T12:24:23.324Z [Protected] PID 46112, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T12:27:04.514Z [Protected] PID 45608, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T12:27:34.445Z [Protected] PID 46688, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T12:27:34.459Z [Protected] PID 45532, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T12:28:04.517Z [Protected] PID 43876, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T12:28:04.537Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214172803
2016-12-14T12:28:33.491Z [Protected] PID 46144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:32:05.003Z [Protected] PID 46452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:32:06.898Z [Protected] PID 42468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:32:08.063Z [Protected] PID 40508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:32:12.584Z [Protected] PID 44324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:32:13.052Z [Protected] PID 42516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:32:24.588Z [Protected] PID 46308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:33:32.357Z [Protected] PID 32064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:34:43.390Z [Protected] PID 46588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:36:21.015Z [Protected] PID 40508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:37:36.228Z [Protected] PID 46424, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T12:37:36.242Z [Protected] PID 40216, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T12:38:32.854Z [Protected] PID 46840, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:43:32.512Z [Protected] PID 45212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:46:44.181Z [Protected] PID 46772, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-14T12:46:50.579Z [Protected] PID 43940, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-14T12:48:32.486Z [Protected] PID 18928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:53:32.530Z [Protected] PID 34580, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:56:59.228Z [Protected] PID 45624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:57:00.425Z [Protected] PID 46468, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T12:57:00.674Z [Protected] PID 44896, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T12:57:00.687Z [Protected] PID 46932, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T12:57:00.764Z [Protected] PID 46508, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T12:57:00.846Z [Protected] PID 40636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:58:04.692Z [Protected] PID 46896, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T12:58:04.720Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214175804
2016-12-14T12:58:32.393Z [Protected] PID 45772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T12:59:00.393Z [Protected] PID 41236, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T13:03:32.463Z [Protected] PID 46648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:05:02.907Z [Protected] PID 46572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:05:08.318Z [Protected] PID 38924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:06:05.426Z [Protected] PID 42228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:06:15.938Z [Protected] PID 45616, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T13:08:32.580Z [Protected] PID 46544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:11:13.857Z [Protected] PID 39280, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T13:11:14.289Z [Protected] PID 45192, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T13:11:14.588Z [Protected] PID 42132, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T13:11:25.204Z [Protected] PID 20092, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T13:12:58.572Z [Protected] PID 40636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:13:32.392Z [Protected] PID 46764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:18:32.505Z [Protected] PID 46612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:19:06.778Z [Protected] PID 46608, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:19:08.213Z [Protected] PID 42244, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:19:15.512Z [Protected] PID 38908, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:19:15.555Z [Protected] PID 46720, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:19:15.804Z [Protected] PID 46052, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:19:17.649Z [Protected] PID 38540, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:19:17.853Z [Protected] PID 45388, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:19:24.098Z [Protected] PID 46468, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:19:24.123Z [Protected] PID 45072, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:19:24.219Z [Protected] PID 46196, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:20:24.032Z [Protected] PID 46520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:20:26.308Z [Protected] PID 46172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:23:00.190Z [Protected] PID 45764, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T13:23:01.733Z [Protected] PID 44676, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T13:23:32.493Z [Protected] PID 37100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:24:23.651Z [Protected] PID 45620, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:24:23.665Z [Protected] PID 46352, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T13:24:23.925Z [Protected] PID 44304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:24:23.936Z [Protected] PID 46748, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T13:26:02.020Z [Protected] PID 46264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:26:11.047Z [Protected] PID 46228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:26:14.298Z [Protected] PID 46904, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:26:32.265Z [Protected] PID 42604, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-14T13:26:35.255Z [Protected] PID 46456, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T13:26:45.517Z [Protected] PID 46580, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-14T13:26:48.098Z [Protected] PID 46644, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-14T13:27:08.373Z [Protected] PID 38840, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T13:28:04.838Z [Protected] PID 47316, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T13:28:04.868Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214182804
2016-12-14T13:28:32.503Z [Protected] PID 33892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:29:24.104Z [Protected] PID 47636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:30:15.768Z [Protected] PID 47628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:30:16.337Z [Protected] PID 44660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:32:47.024Z [Protected] PID 46812, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T13:33:32.475Z [Protected] PID 47208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:38:32.482Z [Protected] PID 47756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:41:00.102Z [Protected] PID 46204, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T13:41:00.551Z [Protected] PID 47540, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T13:41:45.815Z [Protected] PID 46792, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T13:41:47.615Z [Protected] PID 47240, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T13:41:47.738Z [Protected] PID 46048, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T13:41:47.955Z [Protected] PID 44308, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T13:41:48.887Z [Protected] PID 47956, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T13:41:49.949Z [Protected] PID 45328, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T13:43:32.466Z [Protected] PID 47632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:43:34.662Z [Protected] PID 47832, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:43:35.975Z [Protected] PID 39832, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:43:42.263Z [Protected] PID 47828, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:43:42.269Z [Protected] PID 43804, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:43:42.405Z [Protected] PID 47624, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:44:45.175Z [Protected] PID 46096, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:44:45.366Z [Protected] PID 47880, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:44:51.772Z [Protected] PID 40684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:44:51.783Z [Protected] PID 48100, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:44:51.855Z [Protected] PID 35036, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:46:08.292Z [Protected] PID 46384, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:46:08.552Z [Protected] PID 41236, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:46:12.111Z [Protected] PID 37224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:46:12.975Z [Protected] PID 37400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:46:15.012Z [Protected] PID 42596, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:46:15.035Z [Protected] PID 45316, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:46:15.172Z [Protected] PID 38840, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:46:19.905Z [Protected] PID 44656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:48:32.468Z [Protected] PID 43244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:50:16.189Z [Protected] PID 41972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:50:17.009Z [Protected] PID 47688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:50:26.683Z [Protected] PID 47652, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:50:27.962Z [Protected] PID 45824, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:50:34.206Z [Protected] PID 46084, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:50:34.230Z [Protected] PID 39616, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:50:34.354Z [Protected] PID 47168, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:50:56.088Z [Protected] PID 42860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:51:00.876Z [Protected] PID 45412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:53:32.490Z [Protected] PID 42800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:56:56.527Z [Protected] PID 46604, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:56:57.809Z [Protected] PID 47636, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T13:57:00.074Z [Protected] PID 46184, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T13:57:00.330Z [Protected] PID 46480, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:57:00.350Z [Protected] PID 46828, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T13:57:00.405Z [Protected] PID 47788, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T13:57:04.294Z [Protected] PID 42468, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T13:57:04.316Z [Protected] PID 45476, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T13:57:04.438Z [Protected] PID 44076, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T13:58:04.927Z [Protected] PID 47576, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T13:58:04.947Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214185804
2016-12-14T13:58:24.083Z [Protected] PID 44528, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-14T13:58:25.210Z [Protected] PID 38108, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-14T13:58:26.123Z [Protected] PID 46444, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-14T13:58:26.505Z [Protected] PID 44660, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T13:58:32.495Z [Protected] PID 48092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T13:59:00.137Z [Protected] PID 45440, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T13:59:56.595Z [Protected] PID 40232, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T13:59:57.860Z [Protected] PID 37352, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T14:00:04.014Z [Protected] PID 47076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T14:00:04.046Z [Protected] PID 39616, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T14:00:04.157Z [Protected] PID 47796, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T14:02:14.728Z [Protected] PID 45424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:02:15.848Z [Protected] PID 47652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:02:28.144Z [Protected] PID 10100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:02:47.460Z [Protected] PID 48096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:03:29.068Z [Protected] PID 44488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:03:31.988Z [Protected] PID 47292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:03:32.402Z [Protected] PID 34948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:03:43.159Z [Protected] PID 46224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:05:14.516Z [Protected] PID 47368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:05:16.822Z [Protected] PID 45324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:05:35.433Z [Protected] PID 47328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:06:35.785Z [Protected] PID 42100, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T14:08:32.487Z [Protected] PID 47848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:13:32.500Z [Protected] PID 42452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:13:55.796Z [Protected] PID 48036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:13:58.627Z [Protected] PID 44076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:14:12.314Z [Protected] PID 45760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:14:15.252Z [Protected] PID 22760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:14:43.993Z [Protected] PID 47880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:14:46.614Z [Protected] PID 47540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:16:38.551Z [Protected] PID 40896, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T14:18:32.494Z [Protected] PID 46260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:21:50.776Z [Protected] PID 42148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:23:00.088Z [Protected] PID 42688, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T14:23:01.170Z [Protected] PID 47856, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T14:23:32.382Z [Protected] PID 44836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:24:24.141Z [Protected] PID 47724, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T14:24:24.154Z [Protected] PID 44680, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T14:24:24.451Z [Protected] PID 42888, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T14:24:24.462Z [Protected] PID 39688, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T14:24:57.900Z [Protected] PID 40860, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T14:24:59.215Z [Protected] PID 47824, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T14:25:05.570Z [Protected] PID 47000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T14:25:05.600Z [Protected] PID 47140, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T14:25:05.723Z [Protected] PID 46660, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T14:27:10.404Z [Protected] PID 46924, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T14:27:24.887Z [Protected] PID 41976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:27:33.223Z [Protected] PID 47696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:27:35.043Z [Protected] PID 47668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:27:39.550Z [Protected] PID 44304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:27:42.981Z [Protected] PID 47956, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-14T14:28:05.575Z [Protected] PID 47996, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T14:28:05.647Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214192804
2016-12-14T14:28:10.273Z [Protected] PID 40896, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T14:28:10.612Z [Protected] PID 47544, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T14:28:32.419Z [Protected] PID 45748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:33:32.497Z [Protected] PID 48076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:37:47.022Z [Protected] PID 35036, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T14:37:47.042Z [Protected] PID 47388, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T14:38:33.793Z [Protected] PID 30660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:43:32.523Z [Protected] PID 44136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:44:49.044Z [Protected] PID 47356, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-14T14:44:56.058Z [Protected] PID 45772, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-14T14:47:48.356Z [Protected] PID 45616, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-14T14:47:48.584Z [Protected] PID 48064, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-14T14:47:50.995Z [Protected] PID 47788, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-14T14:47:53.792Z [Protected] PID 42076, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T14:48:32.473Z [Protected] PID 47724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:49:44.114Z [Protected] PID 47736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:51:33.129Z [Protected] PID 47160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:51:41.843Z [Protected] PID 33936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:51:44.408Z [Protected] PID 46772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:53:32.361Z [Protected] PID 48776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:57:00.615Z [Protected] PID 43100, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T14:57:01.260Z [Protected] PID 48884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T14:57:01.290Z [Protected] PID 48516, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T14:57:01.364Z [Protected] PID 46324, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T14:57:01.638Z [Protected] PID 47872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:57:20.052Z [Protected] PID 47128, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T14:58:05.777Z [Protected] PID 40216, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T14:58:05.816Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214195805
2016-12-14T14:58:32.400Z [Protected] PID 44656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:58:54.766Z [Protected] PID 48200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:58:58.106Z [Protected] PID 45068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:58:58.660Z [Protected] PID 45772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:59:00.731Z [Protected] PID 48468, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T14:59:10.479Z [Protected] PID 48884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T14:59:26.466Z [Protected] PID 47036, Features 0000003000000102, C:\Windows\System32\wisptis.exe
2016-12-14T15:03:32.612Z [Protected] PID 48400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:05:37.149Z [Protected] PID 47500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:05:45.542Z [Protected] PID 47632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:06:59.792Z [Protected] PID 49008, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T15:07:00.670Z [Protected] PID 48972, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T15:08:32.624Z [Protected] PID 47300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:13:32.678Z [Protected] PID 43260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:13:51.700Z [Protected] PID 49260, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T15:13:53.793Z [Protected] PID 49904, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T15:13:54.663Z [Protected] PID 49320, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T15:13:54.864Z [Protected] PID 49540, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T15:13:55.065Z [Protected] PID 49676, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T15:13:58.717Z [Protected] PID 48660, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T15:14:48.028Z [Protected] PID 49432, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T15:16:48.369Z [Protected] PID 49896, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T15:18:32.482Z [Protected] PID 49712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:23:00.249Z [Protected] PID 45756, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T15:23:03.203Z [Protected] PID 50032, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T15:23:04.159Z [Protected] PID 50336, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T15:23:04.483Z [Protected] PID 50616, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T15:23:32.459Z [Protected] PID 49216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:24:24.850Z [Protected] PID 51108, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T15:24:24.873Z [Protected] PID 51096, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T15:24:25.195Z [Protected] PID 51184, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T15:24:25.209Z [Protected] PID 50204, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T15:27:08.254Z [Protected] PID 46392, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T15:28:05.882Z [Protected] PID 51096, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T15:28:05.908Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214202805
2016-12-14T15:28:32.484Z [Protected] PID 48480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:33:32.496Z [Protected] PID 50548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:38:32.481Z [Protected] PID 45204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:39:31.444Z [Protected] PID 50256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:39:35.624Z [Protected] PID 50716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:40:00.481Z [Protected] PID 50240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:41:00.224Z [Protected] PID 50272, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T15:41:00.957Z [Protected] PID 46676, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T15:43:30.188Z [Protected] PID 50624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:43:32.381Z [Protected] PID 46520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:43:42.974Z [Protected] PID 48124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:48:32.674Z [Protected] PID 49500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:53:07.325Z [Protected] PID 50440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:53:08.363Z [Protected] PID 50268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:53:32.399Z [Protected] PID 44164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:54:13.540Z [Protected] PID 51016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:57:00.274Z [Protected] PID 48932, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T15:57:00.630Z [Protected] PID 47172, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T15:57:00.645Z [Protected] PID 50656, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T15:57:00.728Z [Protected] PID 45752, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T15:58:05.977Z [Protected] PID 51196, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T15:58:06.006Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214205805
2016-12-14T15:58:09.298Z [Protected] PID 50948, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T15:58:09.312Z [Protected] PID 49488, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T15:58:32.387Z [Protected] PID 50696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T15:59:01.127Z [Protected] PID 46356, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T16:02:31.962Z [Protected] PID 46840, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:03:32.382Z [Protected] PID 48340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:07:05.178Z [Protected] PID 48136, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T16:08:32.499Z [Protected] PID 47640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:13:24.179Z [Protected] PID 47640, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T16:13:26.136Z [Protected] PID 51196, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T16:13:32.527Z [Protected] PID 50428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:13:35.713Z [Protected] PID 50364, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T16:13:35.887Z [Protected] PID 40860, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T16:13:36.335Z [Protected] PID 48080, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T16:16:47.935Z [Protected] PID 51020, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T16:16:48.059Z [Protected] PID 50328, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T16:18:32.491Z [Protected] PID 51104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:22:29.994Z [Protected] PID 48748, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T16:23:00.250Z [Protected] PID 46792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T16:23:02.522Z [Protected] PID 51132, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T16:23:32.494Z [Protected] PID 51408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:24:25.413Z [Protected] PID 52040, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T16:24:25.425Z [Protected] PID 48052, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T16:24:25.597Z [Protected] PID 50228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T16:24:25.609Z [Protected] PID 52176, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T16:24:49.770Z [Protected] PID 51332, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-14T16:27:09.950Z [Protected] PID 51688, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T16:28:06.179Z [Protected] PID 50816, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T16:28:06.207Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214212806
2016-12-14T16:28:32.482Z [Protected] PID 39636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:33:32.512Z [Protected] PID 53128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:34:21.040Z [Protected] PID 51404, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T16:34:22.376Z [Protected] PID 51752, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T16:34:28.953Z [Protected] PID 52736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T16:34:28.975Z [Protected] PID 51332, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T16:34:29.095Z [Protected] PID 53156, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T16:36:09.806Z [Protected] PID 50912, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T16:36:10.006Z [Protected] PID 48424, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T16:36:16.449Z [Protected] PID 51244, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T16:36:16.472Z [Protected] PID 50148, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T16:36:16.554Z [Protected] PID 50048, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T16:38:32.490Z [Protected] PID 52616, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:43:32.489Z [Protected] PID 51780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:48:32.501Z [Protected] PID 51408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:51:24.372Z [Protected] PID 50204, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T16:51:58.440Z [Protected] PID 50444, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T16:51:58.655Z [Protected] PID 47608, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T16:51:58.824Z [Protected] PID 51872, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T16:51:59.380Z [Protected] PID 52904, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T16:52:00.771Z [Protected] PID 51596, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T16:53:32.493Z [Protected] PID 51736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:57:00.117Z [Protected] PID 51856, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T16:57:00.353Z [Protected] PID 52536, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T16:57:00.366Z [Protected] PID 48132, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T16:57:00.437Z [Protected] PID 52340, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T16:57:46.537Z [Protected] PID 52544, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T16:58:06.275Z [Protected] PID 52444, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T16:58:06.303Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214215806
2016-12-14T16:58:32.483Z [Protected] PID 53060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T16:59:00.113Z [Protected] PID 45940, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T16:59:28.337Z [Protected] PID 52396, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T17:02:39.529Z [Protected] PID 52124, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T17:02:39.999Z [Protected] PID 52404, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T17:02:40.235Z [Protected] PID 50700, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T17:03:32.460Z [Protected] PID 49956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:05:40.823Z [Protected] PID 52748, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T17:05:42.119Z [Protected] PID 35356, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T17:05:49.217Z [Protected] PID 51852, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:05:49.239Z [Protected] PID 51924, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T17:05:49.362Z [Protected] PID 51440, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T17:06:03.430Z [Protected] PID 52336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:06:09.453Z [Protected] PID 52204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:06:09.918Z [Protected] PID 52284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:06:35.455Z [Protected] PID 51884, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-14T17:06:43.334Z [Protected] PID 53148, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T17:06:44.468Z [Protected] PID 53184, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-14T17:08:05.269Z [Protected] PID 52300, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T17:08:11.063Z [Protected] PID 52844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:08:11.077Z [Protected] PID 52212, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T17:08:32.744Z [Protected] PID 49220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:08:33.840Z [Protected] PID 53220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:08:42.319Z [Protected] PID 51652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:09:09.698Z [Protected] PID 51732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:10:20.303Z [Protected] PID 51024, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:10:25.306Z [Protected] PID 52836, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:11:36.260Z [Protected] PID 50304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:11:47.833Z [Protected] PID 53224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:11:50.405Z [Protected] PID 48896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:13:32.377Z [Protected] PID 50848, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:15:34.807Z [Protected] PID 52896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:15:38.421Z [Protected] PID 52280, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:15:39.940Z [Protected] PID 51420, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:16:19.837Z [Protected] PID 35444, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-14T17:16:21.209Z [Protected] PID 50584, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-14T17:16:27.917Z [Protected] PID 51936, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:16:27.941Z [Protected] PID 51512, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-14T17:16:28.083Z [Protected] PID 51340, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-14T17:17:07.219Z [Protected] PID 52220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:18:32.467Z [Protected] PID 51784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:23:00.501Z [Protected] PID 52532, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T17:23:02.065Z [Protected] PID 47608, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T17:23:26.271Z [Protected] PID 51540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:23:26.952Z [Protected] PID 51216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:23:32.386Z [Protected] PID 53068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:23:34.997Z [Protected] PID 51596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:24:19.113Z [Protected] PID 46792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:24:25.964Z [Protected] PID 35652, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:24:25.985Z [Protected] PID 51832, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T17:24:26.318Z [Protected] PID 51356, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:24:26.330Z [Protected] PID 49364, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T17:27:00.331Z [Protected] PID 51760, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T17:27:02.675Z [Protected] PID 52696, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:27:02.686Z [Protected] PID 52848, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-14T17:27:02.847Z [Protected] PID 51148, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-14T17:27:05.406Z [Protected] PID 51848, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-14T17:27:05.948Z [Protected] PID 50304, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-14T17:27:06.104Z [Protected] PID 51296, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-14T17:27:06.215Z [Protected] PID 52684, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-14T17:27:06.317Z [Protected] PID 48572, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-14T17:27:06.781Z [Protected] PID 51132, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-14T17:27:13.201Z [Protected] PID 51452, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T17:28:06.481Z [Protected] PID 53920, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T17:28:06.507Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214222806
2016-12-14T17:28:32.474Z [Protected] PID 54204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:29:48.914Z [Protected] PID 45204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:29:54.551Z [Protected] PID 52676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:30:41.059Z [Protected] PID 52880, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-14T17:33:32.472Z [Protected] PID 52596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:38:32.493Z [Protected] PID 39636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:41:00.124Z [Protected] PID 52812, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T17:41:00.869Z [Protected] PID 45720, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T17:43:32.489Z [Protected] PID 53284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:48:32.490Z [Protected] PID 50216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:53:32.516Z [Protected] PID 52100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:57:00.086Z [Protected] PID 52856, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T17:57:00.313Z [Protected] PID 52704, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T17:57:00.327Z [Protected] PID 45216, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T17:57:00.402Z [Protected] PID 51240, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T17:58:06.573Z [Protected] PID 50928, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T17:58:06.603Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214225806
2016-12-14T17:58:32.489Z [Protected] PID 51324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T17:59:00.262Z [Protected] PID 50428, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T18:00:30.205Z [Protected] PID 54172, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T18:03:32.483Z [Protected] PID 51944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:08:32.543Z [Protected] PID 52560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:13:32.613Z [Protected] PID 39636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:18:32.491Z [Protected] PID 52492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:23:00.245Z [Protected] PID 53328, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T18:23:00.968Z [Protected] PID 49024, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T18:23:01.756Z [Protected] PID 51904, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T18:23:04.216Z [Protected] PID 52640, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T18:23:04.425Z [Protected] PID 38856, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T18:23:05.715Z [Protected] PID 54176, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T18:23:06.002Z [Protected] PID 46740, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T18:23:07.747Z [Protected] PID 52536, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T18:23:32.484Z [Protected] PID 53928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:24:26.532Z [Protected] PID 50912, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T18:24:26.543Z [Protected] PID 52184, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T18:24:26.732Z [Protected] PID 52120, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T18:24:26.744Z [Protected] PID 53840, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T18:27:04.446Z [Protected] PID 51232, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T18:27:35.939Z [Protected] PID 53516, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-14T18:28:03.462Z [Protected] PID 54084, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T18:28:03.807Z [Protected] PID 54180, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T18:28:07.049Z [Protected] PID 50532, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T18:28:07.111Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214232806
2016-12-14T18:28:32.594Z [Protected] PID 51792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:30:27.127Z [Protected] PID 51480, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T18:33:32.409Z [Protected] PID 49956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:36:22.879Z [Protected] PID 54244, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-14T18:37:00.564Z [Protected] PID 53832, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T18:37:01.353Z [Protected] PID 54052, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T18:38:25.346Z [Protected] PID 52644, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T18:39:32.393Z [Protected] PID 52444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:43:32.449Z [Protected] PID 50724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:48:32.503Z [Protected] PID 52148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:53:32.492Z [Protected] PID 45400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:56:59.983Z [Protected] PID 51256, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T18:57:00.394Z [Protected] PID 52084, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T18:57:00.395Z [Protected] PID 54268, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T18:57:00.485Z [Protected] PID 38980, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T18:58:07.080Z [Protected] PID 47692, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T18:58:07.106Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161214235807
2016-12-14T18:58:32.486Z [Protected] PID 52496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T18:59:00.210Z [Protected] PID 49380, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T19:03:32.528Z [Protected] PID 53264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:08:32.488Z [Protected] PID 54252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:12:42.601Z [Protected] PID 50672, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T19:13:32.483Z [Protected] PID 47172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:18:32.493Z [Protected] PID 48080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:23:00.169Z [Protected] PID 44164, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T19:23:00.920Z [Protected] PID 52480, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T19:23:32.486Z [Protected] PID 51556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:24:26.967Z [Protected] PID 50196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T19:24:27.004Z [Protected] PID 53368, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T19:24:27.318Z [Protected] PID 38856, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T19:24:27.343Z [Protected] PID 50820, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T19:25:19.859Z [Protected] PID 51316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:27:04.715Z [Protected] PID 51848, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T19:28:07.183Z [Protected] PID 51504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T19:28:07.213Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215002807
2016-12-14T19:28:32.484Z [Protected] PID 46600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:33:03.666Z [Protected] PID 52124, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T19:33:32.488Z [Protected] PID 45216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:38:32.491Z [Protected] PID 52912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:41:00.095Z [Protected] PID 53044, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T19:41:00.563Z [Protected] PID 49956, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T19:43:32.492Z [Protected] PID 53516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:48:32.488Z [Protected] PID 53864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:53:32.489Z [Protected] PID 52476, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:57:00.070Z [Protected] PID 52100, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T19:57:00.314Z [Protected] PID 50304, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T19:57:00.315Z [Protected] PID 52268, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T19:57:00.382Z [Protected] PID 53512, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T19:57:08.853Z [Protected] PID 51476, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T19:57:10.549Z [Protected] PID 54024, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T19:57:10.636Z [Protected] PID 52052, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T19:57:10.953Z [Protected] PID 52388, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T19:57:11.596Z [Protected] PID 51512, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T19:57:12.987Z [Protected] PID 50652, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T19:58:07.253Z [Protected] PID 45940, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T19:58:07.279Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215005807
2016-12-14T19:58:32.451Z [Protected] PID 50264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T19:59:00.215Z [Protected] PID 51932, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T19:59:00.216Z [Protected] PID 47544, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T19:59:00.382Z [Protected] PID 43780, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T19:59:00.752Z [Protected] PID 54052, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-14T19:59:00.756Z [Protected] PID 52768, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-14T20:00:30.345Z [Protected] PID 52448, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T20:03:32.495Z [Protected] PID 51084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:08:18.412Z [Protected] PID 49216, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T20:08:18.424Z [Protected] PID 53016, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T20:08:33.565Z [Protected] PID 51944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:12:13.587Z [Protected] PID 50572, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T20:13:32.485Z [Protected] PID 51776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:18:18.624Z [Protected] PID 49024, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T20:18:18.625Z [Protected] PID 53680, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T20:18:32.806Z [Protected] PID 50700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:23:00.263Z [Protected] PID 51932, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T20:23:01.328Z [Protected] PID 51584, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T20:23:32.497Z [Protected] PID 47380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:24:27.541Z [Protected] PID 49964, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T20:24:27.553Z [Protected] PID 52428, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T20:24:27.718Z [Protected] PID 53120, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T20:24:27.729Z [Protected] PID 50304, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T20:26:43.010Z [Protected] PID 53544, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T20:26:56.802Z [Protected] PID 53616, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-14T20:26:58.313Z [Protected] PID 52668, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-14T20:26:59.644Z [Protected] PID 50428, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-14T20:27:00.715Z [Protected] PID 51232, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T20:27:12.582Z [Protected] PID 50920, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T20:28:04.321Z [Protected] PID 52800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:28:07.580Z [Protected] PID 52756, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T20:28:07.607Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215012807
2016-12-14T20:28:25.508Z [Protected] PID 53120, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T20:28:25.523Z [Protected] PID 52780, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T20:28:32.429Z [Protected] PID 54008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:24.727Z [Protected] PID 53776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:25.076Z [Protected] PID 44236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:25.299Z [Protected] PID 54144, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:25.498Z [Protected] PID 54256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:25.692Z [Protected] PID 42880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:25.891Z [Protected] PID 52776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:26.117Z [Protected] PID 49460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:26.353Z [Protected] PID 51832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:26.553Z [Protected] PID 54104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:26.771Z [Protected] PID 53724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:32:26.965Z [Protected] PID 35652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:33:32.378Z [Protected] PID 42784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:38:32.488Z [Protected] PID 50704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:40:38.654Z [Protected] PID 53516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:40:40.517Z [Protected] PID 53688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:41:28.504Z [Protected] PID 51948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:41:59.585Z [Protected] PID 53532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:42:00.630Z [Protected] PID 52688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:42:09.887Z [Protected] PID 51544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:43:32.485Z [Protected] PID 52592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:44:14.758Z [Protected] PID 46660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:44:43.999Z [Protected] PID 52080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:45:03.031Z [Protected] PID 50284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:45:04.931Z [Protected] PID 33204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:45:56.724Z [Protected] PID 52792, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T20:45:56.922Z [Protected] PID 52928, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T20:45:57.243Z [Protected] PID 51936, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T20:45:58.264Z [Protected] PID 53288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:45:58.555Z [Protected] PID 53272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:45:59.004Z [Protected] PID 51728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:48:00.802Z [Protected] PID 53984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:48:05.199Z [Protected] PID 50756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:48:32.388Z [Protected] PID 53424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:52:45.267Z [Protected] PID 53256, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T20:52:45.525Z [Protected] PID 50328, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T20:52:45.566Z [Protected] PID 54256, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T20:52:49.841Z [Protected] PID 53392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:53:12.680Z [Protected] PID 53072, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-14T20:53:27.784Z [Protected] PID 52636, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T20:53:29.022Z [Protected] PID 51892, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-14T20:53:32.386Z [Protected] PID 51308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:54:46.996Z [Protected] PID 53680, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T20:54:47.214Z [Protected] PID 50448, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-14T20:56:16.885Z [Protected] PID 53564, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T20:56:17.025Z [Protected] PID 21820, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T20:56:19.523Z [Protected] PID 51892, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T20:56:26.239Z [Protected] PID 47680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:56:39.404Z [Protected] PID 53184, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T20:56:41.390Z [Protected] PID 50428, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T20:56:41.670Z [Protected] PID 53524, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-14T20:57:00.077Z [Protected] PID 51072, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T20:57:00.606Z [Protected] PID 52292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T20:57:00.637Z [Protected] PID 52504, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T20:57:00.724Z [Protected] PID 51636, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T20:58:07.724Z [Protected] PID 53868, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T20:58:07.751Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215015807
2016-12-14T20:58:32.652Z [Protected] PID 52596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T20:59:00.420Z [Protected] PID 54144, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T21:01:07.839Z [Protected] PID 52056, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T21:01:28.719Z [Protected] PID 45560, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T21:01:29.618Z [Protected] PID 50428, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-14T21:01:29.902Z [Protected] PID 52784, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T21:02:54.864Z [Protected] PID 46116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:03:05.358Z [Protected] PID 51476, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:03:32.388Z [Protected] PID 53368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:08:32.514Z [Protected] PID 54124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:13:32.513Z [Protected] PID 52780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:18:32.491Z [Protected] PID 54084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:21:51.721Z [Protected] PID 51492, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T21:21:51.800Z [Protected] PID 51540, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T21:22:12.868Z [Protected] PID 52884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:22:24.105Z [Protected] PID 53664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:23:00.073Z [Protected] PID 54076, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T21:23:01.658Z [Protected] PID 53080, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T21:23:32.375Z [Protected] PID 53724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:24:28.011Z [Protected] PID 48240, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T21:24:28.025Z [Protected] PID 52324, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T21:24:28.373Z [Protected] PID 50364, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T21:24:28.385Z [Protected] PID 45204, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T21:25:07.634Z [Protected] PID 44204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:25:12.646Z [Protected] PID 44384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:25:14.630Z [Protected] PID 53600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:25:15.043Z [Protected] PID 54000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:25:16.268Z [Protected] PID 51540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:25:43.382Z [Protected] PID 52408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:25:45.704Z [Protected] PID 50756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:27:08.405Z [Protected] PID 52804, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T21:27:21.573Z [Protected] PID 51308, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:28:07.815Z [Protected] PID 48240, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T21:28:07.841Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215022807
2016-12-14T21:28:22.831Z [Protected] PID 46468, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T21:28:22.847Z [Protected] PID 46156, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-14T21:28:32.421Z [Protected] PID 46112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:28:49.992Z [Protected] PID 42748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:28:55.009Z [Protected] PID 54224, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:28:57.096Z [Protected] PID 53380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:30:29.341Z [Protected] PID 13872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:30:30.358Z [Protected] PID 51596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:30:31.807Z [Protected] PID 52220, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:30:31.860Z [Protected] PID 53076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:30:33.093Z [Protected] PID 53288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:32:43.495Z [Protected] PID 51652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:32:45.578Z [Protected] PID 29892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:32:47.434Z [Protected] PID 49748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:32:48.713Z [Protected] PID 42452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:33:32.378Z [Protected] PID 53256, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:34:21.251Z [Protected] PID 54004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:34:22.992Z [Protected] PID 53212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:34:37.841Z [Protected] PID 48572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:34:58.350Z [Protected] PID 52504, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:35:00.062Z [Protected] PID 53880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:36:19.186Z [Protected] PID 54008, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:38:14.900Z [Protected] PID 53876, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T21:38:18.616Z [Protected] PID 54412, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T21:38:19.401Z [Protected] PID 54732, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T21:38:19.438Z [Protected] PID 54328, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T21:38:19.938Z [Protected] PID 54976, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T21:38:22.124Z [Protected] PID 54656, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T21:38:32.493Z [Protected] PID 51096, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:40:06.327Z [Protected] PID 52340, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-14T21:41:00.245Z [Protected] PID 52676, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T21:41:01.086Z [Protected] PID 48552, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T21:43:32.487Z [Protected] PID 47692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:48:32.491Z [Protected] PID 54492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:51:32.767Z [Protected] PID 54052, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T21:53:32.476Z [Protected] PID 42452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:57:00.113Z [Protected] PID 55280, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T21:57:00.430Z [Protected] PID 54624, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T21:57:00.436Z [Protected] PID 54284, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T21:57:00.504Z [Protected] PID 53716, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T21:58:07.974Z [Protected] PID 54688, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T21:58:07.994Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215025807
2016-12-14T21:58:32.488Z [Protected] PID 54344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T21:59:00.271Z [Protected] PID 52740, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T21:59:47.484Z [Protected] PID 53024, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T22:00:01.309Z [Protected] PID 50264, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-14T22:00:01.860Z [Protected] PID 55124, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-14T22:00:01.945Z [Protected] PID 49820, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-14T22:00:19.880Z [Protected] PID 54572, Features 0000003000000106, C:\Program Files (x86)\Google\Update\Install\{0D241D96-1107-4D34-81E4-46F98AD94555}\55.0.2883.87_54.0.2840.99_chrome_updater.exe
2016-12-14T22:00:20.664Z [Protected] PID 52636, Features 0000003000000106, C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\Installer\setup.exe
2016-12-14T22:00:20.773Z [Protected] PID 53864, Features 0000003000000106, C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\Installer\setup.exe
2016-12-14T22:00:22.562Z [Protected] PID 54644, Features 0000003000000106, C:\Windows\Temp\CR_712F0.tmp\setup.exe
2016-12-14T22:00:22.654Z [Protected] PID 51860, Features 0000003000000106, C:\Windows\Temp\CR_712F0.tmp\setup.exe
2016-12-14T22:01:00.889Z [Protected] PID 54452, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T22:01:01.055Z [Protected] PID 54492, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T22:01:01.626Z [Protected] PID 54632, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T22:01:11.322Z [Protected] PID 50500, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T22:03:33.009Z [Protected] PID 53560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:07:02.871Z [Protected] PID 50260, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T22:07:10.742Z [Protected] PID 52908, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-14T22:08:08.842Z [Protected] PID 52748, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T22:08:32.886Z [Protected] PID 54140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:13:32.798Z [Protected] PID 53300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:18:32.472Z [Protected] PID 55156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:23:00.298Z [Protected] PID 53608, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T22:23:01.567Z [Protected] PID 53936, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T22:23:32.465Z [Protected] PID 52584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:24:28.815Z [Protected] PID 53668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T22:24:28.861Z [Protected] PID 55056, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T22:24:29.174Z [Protected] PID 46796, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T22:24:29.191Z [Protected] PID 52580, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T22:27:00.989Z [Protected] PID 45720, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T22:27:07.265Z [Protected] PID 53812, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T22:27:37.810Z [Protected] PID 55292, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-14T22:28:05.775Z [Protected] PID 54468, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T22:28:06.083Z [Protected] PID 45960, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-14T22:28:09.167Z [Protected] PID 53324, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T22:28:09.235Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215032808
2016-12-14T22:28:32.530Z [Protected] PID 49820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:33:32.551Z [Protected] PID 42076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:38:32.493Z [Protected] PID 55016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:43:32.496Z [Protected] PID 52684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:48:32.502Z [Protected] PID 52568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:53:32.531Z [Protected] PID 54740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:57:00.113Z [Protected] PID 53636, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T22:57:00.459Z [Protected] PID 49384, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T22:57:00.476Z [Protected] PID 54448, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T22:57:00.546Z [Protected] PID 55000, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T22:58:10.402Z [Protected] PID 52012, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T22:58:10.428Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215035809
2016-12-14T22:58:32.486Z [Protected] PID 54488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T22:59:00.207Z [Protected] PID 53608, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-14T23:03:32.486Z [Protected] PID 54196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:06:34.145Z [Protected] PID 45400, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-14T23:08:32.502Z [Protected] PID 55116, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:13:32.478Z [Protected] PID 53760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:16:33.534Z [Protected] PID 35712, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T23:18:32.492Z [Protected] PID 45940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:23:00.071Z [Protected] PID 53568, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T23:23:00.744Z [Protected] PID 54584, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-14T23:23:32.479Z [Protected] PID 51636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:24:29.423Z [Protected] PID 54324, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T23:24:29.433Z [Protected] PID 46660, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-14T23:24:29.694Z [Protected] PID 34080, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T23:24:29.705Z [Protected] PID 54252, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-14T23:27:04.619Z [Protected] PID 52316, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-14T23:28:10.489Z [Protected] PID 54300, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T23:28:10.516Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215042810
2016-12-14T23:28:32.483Z [Protected] PID 51696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:33:21.910Z [Protected] PID 46156, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T23:33:23.833Z [Protected] PID 52580, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-14T23:33:23.891Z [Protected] PID 52428, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T23:33:24.018Z [Protected] PID 50028, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-14T23:33:24.567Z [Protected] PID 54312, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-14T23:33:24.815Z [Protected] PID 36900, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-14T23:33:32.495Z [Protected] PID 52288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:38:32.487Z [Protected] PID 50928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:41:00.086Z [Protected] PID 54352, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T23:41:00.519Z [Protected] PID 48828, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-14T23:41:35.109Z [Protected] PID 47980, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-14T23:43:32.430Z [Protected] PID 53212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:48:32.492Z [Protected] PID 53312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:53:32.501Z [Protected] PID 47064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:57:00.068Z [Protected] PID 54968, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-14T23:57:00.312Z [Protected] PID 52960, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-14T23:57:00.322Z [Protected] PID 53100, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T23:57:00.381Z [Protected] PID 51220, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-14T23:58:10.595Z [Protected] PID 54568, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-14T23:58:10.625Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215045810
2016-12-14T23:58:32.454Z [Protected] PID 47172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-14T23:59:00.122Z [Protected] PID 54176, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T00:00:01.232Z [Protected] PID 51388, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-15T00:00:01.592Z [Protected] PID 51336, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T00:00:01.602Z [Protected] PID 54992, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-15T00:03:32.482Z [Protected] PID 55004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:07:58.331Z [Protected] PID 52684, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T00:08:32.440Z [Protected] PID 53252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:08:38.388Z [Protected] PID 53668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T00:08:38.399Z [Protected] PID 36992, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T00:13:32.725Z [Protected] PID 51708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:18:32.792Z [Protected] PID 54508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:22:31.549Z [Protected] PID 50028, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T00:23:00.147Z [Protected] PID 53188, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T00:23:01.356Z [Protected] PID 52052, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T00:23:02.217Z [Protected] PID 50584, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T00:23:32.482Z [Protected] PID 51388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:24:29.924Z [Protected] PID 55064, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T00:24:29.935Z [Protected] PID 54360, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T00:24:30.044Z [Protected] PID 54996, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T00:24:30.054Z [Protected] PID 46132, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T00:24:50.496Z [Protected] PID 55156, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-15T00:25:50.088Z [Protected] PID 54772, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T00:25:50.186Z [Protected] PID 54280, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T00:27:06.101Z [Protected] PID 55204, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T00:28:10.719Z [Protected] PID 50576, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T00:28:10.746Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215052810
2016-12-15T00:28:32.496Z [Protected] PID 54540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:33:32.472Z [Protected] PID 53332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:38:32.488Z [Protected] PID 48240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:43:32.489Z [Protected] PID 51552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:47:34.665Z [Protected] PID 54500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:48:32.397Z [Protected] PID 54020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:53:32.464Z [Protected] PID 52244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:57:00.074Z [Protected] PID 53560, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T00:57:00.312Z [Protected] PID 50228, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T00:57:00.326Z [Protected] PID 51172, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T00:57:00.395Z [Protected] PID 54756, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T00:57:12.654Z [Protected] PID 55212, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T00:58:10.811Z [Protected] PID 50364, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T00:58:10.836Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215055810
2016-12-15T00:58:32.493Z [Protected] PID 52568, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T00:59:00.185Z [Protected] PID 53164, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T01:03:32.488Z [Protected] PID 46432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:08:32.486Z [Protected] PID 54352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:10:17.404Z [Protected] PID 51884, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T01:10:17.761Z [Protected] PID 54620, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T01:10:17.963Z [Protected] PID 55256, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T01:11:46.589Z [Protected] PID 54308, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T01:13:32.490Z [Protected] PID 42076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:18:32.487Z [Protected] PID 54668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:21:27.129Z [Protected] PID 55212, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T01:21:29.001Z [Protected] PID 54356, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T01:21:29.074Z [Protected] PID 54872, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T01:21:29.160Z [Protected] PID 54500, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T01:21:29.680Z [Protected] PID 54720, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T01:21:29.785Z [Protected] PID 54364, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T01:23:00.087Z [Protected] PID 53164, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T01:23:00.650Z [Protected] PID 54560, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T01:23:01.113Z [Protected] PID 53272, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T01:23:32.470Z [Protected] PID 51948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:24:30.180Z [Protected] PID 53760, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T01:24:30.191Z [Protected] PID 52512, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T01:24:30.315Z [Protected] PID 54660, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T01:24:30.326Z [Protected] PID 48828, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T01:27:05.469Z [Protected] PID 49916, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T01:28:10.900Z [Protected] PID 51892, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T01:28:10.943Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215062810
2016-12-15T01:28:32.485Z [Protected] PID 47064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:30:00.613Z [Protected] PID 53860, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T01:33:32.483Z [Protected] PID 49736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:37:01.528Z [Protected] PID 54716, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T01:37:01.959Z [Protected] PID 55276, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T01:38:32.487Z [Protected] PID 54972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:41:00.342Z [Protected] PID 51372, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T01:43:32.479Z [Protected] PID 53920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:48:32.489Z [Protected] PID 54832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:53:32.477Z [Protected] PID 51280, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:54:05.189Z [Protected] PID 54820, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T01:57:00.073Z [Protected] PID 54900, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T01:57:00.301Z [Protected] PID 54644, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T01:57:00.313Z [Protected] PID 42784, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T01:57:00.387Z [Protected] PID 53300, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T01:58:10.985Z [Protected] PID 54872, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T01:58:11.011Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215065810
2016-12-15T01:58:32.484Z [Protected] PID 38980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T01:59:00.106Z [Protected] PID 55008, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T02:03:32.485Z [Protected] PID 49204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:07:33.643Z [Protected] PID 53788, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T02:08:32.485Z [Protected] PID 53724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:11:57.085Z [Protected] PID 54180, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T02:11:57.329Z [Protected] PID 52856, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-15T02:11:57.899Z [Protected] PID 52748, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-15T02:13:32.471Z [Protected] PID 54740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:18:32.488Z [Protected] PID 54696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:23:00.066Z [Protected] PID 55004, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T02:23:00.376Z [Protected] PID 55080, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T02:23:01.026Z [Protected] PID 52568, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T02:23:32.489Z [Protected] PID 54944, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:24:30.435Z [Protected] PID 54844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T02:24:30.446Z [Protected] PID 49404, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T02:24:30.540Z [Protected] PID 54700, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T02:24:30.551Z [Protected] PID 53748, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T02:27:04.196Z [Protected] PID 55180, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T02:27:13.337Z [Protected] PID 53608, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T02:27:13.432Z [Protected] PID 49404, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T02:28:11.072Z [Protected] PID 53812, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T02:28:11.099Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215072811
2016-12-15T02:28:32.486Z [Protected] PID 54072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:32:25.961Z [Protected] PID 54280, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:33:32.374Z [Protected] PID 54896, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:38:32.502Z [Protected] PID 54820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:43:32.487Z [Protected] PID 52436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:48:32.497Z [Protected] PID 51020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:51:43.297Z [Protected] PID 41972, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T02:53:32.502Z [Protected] PID 53468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:57:00.072Z [Protected] PID 54840, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T02:57:00.283Z [Protected] PID 49024, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T02:57:00.301Z [Protected] PID 54108, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T02:57:00.366Z [Protected] PID 46784, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T02:58:11.168Z [Protected] PID 54736, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T02:58:11.195Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215075811
2016-12-15T02:58:32.483Z [Protected] PID 54852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T02:59:00.109Z [Protected] PID 47408, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T02:59:43.257Z [Protected] PID 53596, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T03:02:32.440Z [Protected] PID 53200, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T03:02:34.068Z [Protected] PID 54956, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T03:02:34.165Z [Protected] PID 53896, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T03:02:34.241Z [Protected] PID 52148, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T03:02:34.791Z [Protected] PID 50500, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T03:02:34.906Z [Protected] PID 55020, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T03:03:32.497Z [Protected] PID 53388, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:07:39.467Z [Protected] PID 54920, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T03:08:03.153Z [Protected] PID 53524, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T03:08:03.166Z [Protected] PID 55168, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-15T03:08:03.440Z [Protected] PID 55288, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T03:08:03.441Z [Protected] PID 55264, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-15T03:08:03.477Z [Protected] PID 53920, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-15T03:08:07.190Z [Protected] PID 54044, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-15T03:08:08.203Z [Protected] PID 51744, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-15T03:08:32.501Z [Protected] PID 55176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:12:04.683Z [Protected] PID 53184, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T03:12:52.475Z [Protected] PID 51668, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-15T03:12:53.044Z [Protected] PID 51932, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-15T03:13:32.828Z [Protected] PID 49268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:14:24.933Z [Protected] PID 52644, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T03:18:32.477Z [Protected] PID 51336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:18:37.228Z [Protected] PID 53928, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T03:18:37.242Z [Protected] PID 54868, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T03:23:01.291Z [Protected] PID 54332, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T03:23:03.691Z [Protected] PID 51212, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T03:23:04.621Z [Protected] PID 51760, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T03:23:32.959Z [Protected] PID 51072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:24:30.898Z [Protected] PID 55172, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T03:24:30.908Z [Protected] PID 55244, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T03:24:31.202Z [Protected] PID 54460, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T03:24:31.213Z [Protected] PID 53468, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T03:27:08.105Z [Protected] PID 51076, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T03:27:44.846Z [Protected] PID 51060, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-15T03:28:11.470Z [Protected] PID 54852, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T03:28:11.868Z [Protected] PID 54056, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T03:28:12.160Z [Protected] PID 54940, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T03:28:12.234Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215082811
2016-12-15T03:28:32.570Z [Protected] PID 53760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:33:32.489Z [Protected] PID 51852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:38:32.465Z [Protected] PID 52448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:41:00.122Z [Protected] PID 54392, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T03:41:01.248Z [Protected] PID 50620, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T03:44:32.429Z [Protected] PID 54528, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:45:35.637Z [Protected] PID 47132, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T03:48:32.432Z [Protected] PID 53392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:53:32.490Z [Protected] PID 49324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:57:00.059Z [Protected] PID 53928, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T03:57:00.420Z [Protected] PID 54808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T03:57:00.421Z [Protected] PID 54868, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T03:57:00.494Z [Protected] PID 52532, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T03:58:12.223Z [Protected] PID 54904, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T03:58:12.249Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215085812
2016-12-15T03:58:32.484Z [Protected] PID 52656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T03:59:00.361Z [Protected] PID 54376, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T04:03:32.485Z [Protected] PID 53528, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:08:32.469Z [Protected] PID 54504, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:08:52.985Z [Protected] PID 54432, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T04:08:52.995Z [Protected] PID 54312, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T04:13:11.609Z [Protected] PID 54876, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T04:13:32.930Z [Protected] PID 53928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:18:32.491Z [Protected] PID 54296, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:23:00.182Z [Protected] PID 55248, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T04:23:01.518Z [Protected] PID 52796, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T04:23:02.131Z [Protected] PID 51880, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T04:23:32.473Z [Protected] PID 53924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:24:31.387Z [Protected] PID 55104, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T04:24:31.398Z [Protected] PID 54532, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T04:24:31.613Z [Protected] PID 50616, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T04:24:31.620Z [Protected] PID 53384, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T04:27:10.394Z [Protected] PID 46784, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T04:28:12.375Z [Protected] PID 52724, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T04:28:12.400Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215092812
2016-12-15T04:28:32.487Z [Protected] PID 49404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:33:32.441Z [Protected] PID 52532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:35:34.937Z [Protected] PID 53132, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T04:38:32.435Z [Protected] PID 52056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:43:32.468Z [Protected] PID 55236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:43:41.697Z [Protected] PID 54844, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T04:47:38.887Z [Protected] PID 51020, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T04:47:39.340Z [Protected] PID 44916, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T04:47:43.570Z [Protected] PID 54824, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T04:47:43.796Z [Protected] PID 55200, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T04:47:49.658Z [Protected] PID 53860, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T04:47:52.515Z [Protected] PID 52432, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-15T04:47:57.974Z [Protected] PID 54864, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T04:48:09.089Z [Protected] PID 53380, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T04:48:32.483Z [Protected] PID 52812, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:49:59.081Z [Protected] PID 43500, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-15T04:53:32.486Z [Protected] PID 53380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:57:00.073Z [Protected] PID 48584, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T04:57:00.320Z [Protected] PID 54448, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T04:57:00.330Z [Protected] PID 51556, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T04:57:00.409Z [Protected] PID 53036, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T04:58:12.475Z [Protected] PID 42748, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T04:58:12.501Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215095812
2016-12-15T04:58:32.485Z [Protected] PID 54764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T04:59:00.210Z [Protected] PID 54896, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T05:00:37.372Z [Protected] PID 47728, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T05:00:39.325Z [Protected] PID 52988, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T05:00:39.390Z [Protected] PID 47692, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T05:00:40.311Z [Protected] PID 51696, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T05:00:40.512Z [Protected] PID 54548, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T05:00:41.794Z [Protected] PID 54360, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T05:03:32.505Z [Protected] PID 53940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:06:00.505Z [Protected] PID 51016, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T05:06:00.734Z [Protected] PID 53936, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T05:06:00.915Z [Protected] PID 54928, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T05:07:02.444Z [Protected] PID 51020, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T05:07:02.913Z [Protected] PID 54964, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T05:08:32.488Z [Protected] PID 54820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:10:53.723Z [Protected] PID 39708, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T05:13:32.485Z [Protected] PID 54496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:18:32.480Z [Protected] PID 51760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:23:00.080Z [Protected] PID 55156, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T05:23:00.719Z [Protected] PID 53384, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T05:23:01.335Z [Protected] PID 54016, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T05:23:32.484Z [Protected] PID 54860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:24:31.839Z [Protected] PID 52056, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T05:24:31.849Z [Protected] PID 53252, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T05:24:31.920Z [Protected] PID 50764, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T05:24:31.931Z [Protected] PID 52496, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T05:26:08.769Z [Protected] PID 53808, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T05:27:05.019Z [Protected] PID 54920, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T05:28:12.566Z [Protected] PID 55184, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T05:28:12.594Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215102812
2016-12-15T05:28:32.498Z [Protected] PID 54608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:28:47.262Z [Protected] PID 47004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T05:28:47.274Z [Protected] PID 54600, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T05:33:33.018Z [Protected] PID 53532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:38:32.490Z [Protected] PID 53380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:38:55.011Z [Protected] PID 42076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T05:38:55.025Z [Protected] PID 52276, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T05:41:00.392Z [Protected] PID 54540, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T05:41:01.716Z [Protected] PID 53828, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T05:43:32.569Z [Protected] PID 53732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:46:56.178Z [Protected] PID 52708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:46:56.282Z [Protected] PID 54292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:48:32.367Z [Protected] PID 48424, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:53:32.464Z [Protected] PID 50740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:57:00.069Z [Protected] PID 53404, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T05:57:00.302Z [Protected] PID 54860, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T05:57:00.316Z [Protected] PID 40672, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T05:57:00.388Z [Protected] PID 50436, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T05:58:12.722Z [Protected] PID 53080, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T05:58:12.731Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215105812
2016-12-15T05:58:32.494Z [Protected] PID 40516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T05:59:00.206Z [Protected] PID 38980, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T06:03:32.499Z [Protected] PID 42076, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:05:20.916Z [Protected] PID 53664, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T06:08:32.489Z [Protected] PID 53808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:13:32.485Z [Protected] PID 51260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:18:32.493Z [Protected] PID 51640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:23:00.085Z [Protected] PID 55024, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T06:23:00.847Z [Protected] PID 54976, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T06:23:01.484Z [Protected] PID 54488, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T06:23:32.486Z [Protected] PID 51828, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:24:32.073Z [Protected] PID 52452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T06:24:32.084Z [Protected] PID 54568, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T06:24:32.215Z [Protected] PID 55196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T06:24:32.226Z [Protected] PID 54844, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T06:27:05.934Z [Protected] PID 52048, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T06:28:12.794Z [Protected] PID 48240, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T06:28:12.820Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215112812
2016-12-15T06:28:32.495Z [Protected] PID 52948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:28:45.229Z [Protected] PID 55224, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T06:33:32.498Z [Protected] PID 53664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:38:32.482Z [Protected] PID 47404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:43:32.486Z [Protected] PID 53748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:46:43.478Z [Protected] PID 54008, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T06:46:45.333Z [Protected] PID 52708, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T06:46:45.463Z [Protected] PID 54192, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T06:46:45.483Z [Protected] PID 54724, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T06:46:46.464Z [Protected] PID 53388, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T06:46:47.161Z [Protected] PID 51404, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T06:48:32.498Z [Protected] PID 51640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:53:32.484Z [Protected] PID 50444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:57:00.073Z [Protected] PID 53100, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T06:57:00.298Z [Protected] PID 54008, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T06:57:00.311Z [Protected] PID 54600, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T06:57:00.392Z [Protected] PID 52600, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T06:58:12.886Z [Protected] PID 54432, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T06:58:12.912Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215115812
2016-12-15T06:58:32.487Z [Protected] PID 54960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T06:59:00.122Z [Protected] PID 50740, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T07:03:32.473Z [Protected] PID 46672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:04:16.545Z [Protected] PID 55056, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T07:08:32.473Z [Protected] PID 52796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:11:17.014Z [Protected] PID 54476, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T07:13:32.486Z [Protected] PID 21820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:18:32.457Z [Protected] PID 50920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:23:00.076Z [Protected] PID 44972, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T07:23:00.391Z [Protected] PID 53528, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T07:23:32.452Z [Protected] PID 39160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:24:32.345Z [Protected] PID 54016, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T07:24:32.356Z [Protected] PID 54724, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T07:24:32.436Z [Protected] PID 54628, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T07:24:32.447Z [Protected] PID 54032, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T07:27:06.315Z [Protected] PID 50264, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T07:28:12.972Z [Protected] PID 54056, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T07:28:12.998Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215122812
2016-12-15T07:28:32.445Z [Protected] PID 44384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:33:32.476Z [Protected] PID 50460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:38:32.428Z [Protected] PID 52736, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:41:00.068Z [Protected] PID 52284, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T07:41:00.627Z [Protected] PID 50988, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T07:43:32.442Z [Protected] PID 55260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:48:32.444Z [Protected] PID 53508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:53:01.557Z [Protected] PID 54820, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T07:53:32.446Z [Protected] PID 55168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:57:00.072Z [Protected] PID 39848, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T07:57:00.299Z [Protected] PID 54568, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T07:57:00.313Z [Protected] PID 52272, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T07:57:00.396Z [Protected] PID 50700, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T07:58:13.063Z [Protected] PID 52012, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T07:58:13.098Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215125813
2016-12-15T07:58:32.492Z [Protected] PID 54504, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T07:59:00.123Z [Protected] PID 55176, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T07:59:45.638Z [Protected] PID 54864, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T08:00:00.080Z [Protected] PID 49820, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T08:00:00.432Z [Protected] PID 54108, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T08:00:03.329Z [Protected] PID 54624, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T08:02:47.892Z [Protected] PID 52168, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T08:03:32.479Z [Protected] PID 54536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:08:32.457Z [Protected] PID 53724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:09:04.577Z [Protected] PID 51368, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T08:09:04.585Z [Protected] PID 54396, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T08:13:32.975Z [Protected] PID 52656, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:18:32.491Z [Protected] PID 52724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:22:32.964Z [Protected] PID 48840, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T08:23:00.146Z [Protected] PID 47264, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T08:23:01.512Z [Protected] PID 50444, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T08:23:02.228Z [Protected] PID 52928, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T08:23:32.494Z [Protected] PID 50028, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:24:32.566Z [Protected] PID 51852, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T08:24:32.577Z [Protected] PID 55176, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T08:24:32.703Z [Protected] PID 54088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T08:24:32.714Z [Protected] PID 49820, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T08:24:51.443Z [Protected] PID 21820, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-15T08:26:20.728Z [Protected] PID 47736, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-15T08:26:21.752Z [Protected] PID 51300, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-15T08:26:22.620Z [Protected] PID 53532, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-15T08:26:23.115Z [Protected] PID 51900, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T08:26:33.888Z [Protected] PID 49404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:26:42.565Z [Protected] PID 54500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:27:06.748Z [Protected] PID 53756, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T08:27:43.041Z [Protected] PID 50920, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-15T08:28:03.566Z [Protected] PID 51668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:28:10.624Z [Protected] PID 54480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:28:15.505Z [Protected] PID 53116, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T08:28:15.532Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215132813
2016-12-15T08:28:18.212Z [Protected] PID 54552, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T08:28:20.152Z [Protected] PID 54752, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T08:28:32.362Z [Protected] PID 54844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:28:36.553Z [Protected] PID 50436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:29:03.769Z [Protected] PID 54000, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:29:11.538Z [Protected] PID 54700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:30:01.790Z [Protected] PID 55216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:30:29.812Z [Protected] PID 54072, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:32:47.342Z [Protected] PID 52876, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:33:32.384Z [Protected] PID 55036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:36:02.441Z [Protected] PID 39764, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:36:05.659Z [Protected] PID 54900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:37:03.614Z [Protected] PID 48776, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T08:37:04.623Z [Protected] PID 50988, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T08:37:05.735Z [Protected] PID 51448, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T08:38:28.559Z [Protected] PID 44500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:38:32.393Z [Protected] PID 51756, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:38:41.591Z [Protected] PID 51800, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:39:50.306Z [Protected] PID 53808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:41:05.509Z [Protected] PID 51668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:43:32.715Z [Protected] PID 52208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:43:49.691Z [Protected] PID 55288, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T08:43:52.967Z [Protected] PID 46900, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T08:43:55.637Z [Protected] PID 54480, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T08:43:55.826Z [Protected] PID 48760, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T08:43:56.828Z [Protected] PID 44384, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T08:44:01.185Z [Protected] PID 54760, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T08:48:32.474Z [Protected] PID 49984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:49:16.810Z [Protected] PID 51584, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T08:49:19.101Z [Protected] PID 54960, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T08:49:27.941Z [Protected] PID 51668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T08:49:28.025Z [Protected] PID 55192, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T08:49:28.482Z [Protected] PID 53196, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T08:53:32.577Z [Protected] PID 50460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:53:32.585Z [Protected] PID 54432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:53:37.011Z [Protected] PID 40516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:54:47.650Z [Protected] PID 37792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T08:54:47.826Z [Protected] PID 54512, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-15T08:57:00.083Z [Protected] PID 54724, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T08:57:00.649Z [Protected] PID 54656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T08:57:00.677Z [Protected] PID 46112, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T08:57:00.766Z [Protected] PID 55164, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T08:58:15.836Z [Protected] PID 51212, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T08:58:15.864Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215135815
2016-12-15T08:58:32.611Z [Protected] PID 53964, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T08:59:00.637Z [Protected] PID 52596, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T09:00:55.289Z [Protected] PID 54780, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T09:00:55.853Z [Protected] PID 52284, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T09:00:56.203Z [Protected] PID 51552, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T09:02:21.598Z [Protected] PID 51708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:02:22.862Z [Protected] PID 50620, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:02:33.949Z [Protected] PID 52428, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:03:32.394Z [Protected] PID 54980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:05:12.140Z [Protected] PID 46136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:06:32.566Z [Protected] PID 54032, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T09:08:32.497Z [Protected] PID 54056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:13:32.494Z [Protected] PID 39596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:14:54.855Z [Protected] PID 54512, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-15T09:15:01.068Z [Protected] PID 54580, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-15T09:17:11.178Z [Protected] PID 52296, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-15T09:17:12.472Z [Protected] PID 53732, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-15T09:17:13.759Z [Protected] PID 54804, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-15T09:17:14.546Z [Protected] PID 55064, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T09:18:32.494Z [Protected] PID 54500, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:19:14.500Z [Protected] PID 52184, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T09:23:00.078Z [Protected] PID 54724, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T09:23:00.965Z [Protected] PID 54140, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T09:23:02.560Z [Protected] PID 49024, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T09:23:31.402Z [Protected] PID 54444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:23:32.388Z [Protected] PID 51552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:23:40.788Z [Protected] PID 54480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:24:33.349Z [Protected] PID 54120, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T09:24:33.361Z [Protected] PID 53252, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T09:24:33.681Z [Protected] PID 42092, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T09:24:33.702Z [Protected] PID 51348, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T09:25:41.985Z [Protected] PID 47408, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T09:25:42.103Z [Protected] PID 54232, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T09:27:05.647Z [Protected] PID 54804, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T09:28:15.951Z [Protected] PID 46468, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T09:28:15.979Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215142815
2016-12-15T09:28:32.545Z [Protected] PID 52268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:31:55.112Z [Protected] PID 50724, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
2016-12-15T09:32:00.036Z [Protected] PID 53596, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-15T09:33:32.554Z [Protected] PID 48240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:38:32.583Z [Protected] PID 54772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:41:00.137Z [Protected] PID 50532, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T09:41:01.019Z [Protected] PID 43500, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T09:43:32.535Z [Protected] PID 52056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:48:06.363Z [Protected] PID 55156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:48:09.575Z [Protected] PID 47524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:48:13.547Z [Protected] PID 51804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:48:20.844Z [Protected] PID 54912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:48:30.684Z [Protected] PID 55344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:48:32.382Z [Protected] PID 55584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:51:43.808Z [Protected] PID 55872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:52:21.221Z [Protected] PID 52456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:52:50.599Z [Protected] PID 53412, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T09:52:56.058Z [Protected] PID 51064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:52:57.915Z [Protected] PID 44444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:53:32.382Z [Protected] PID 55108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:56:50.219Z [Protected] PID 54968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:57:00.110Z [Protected] PID 50460, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T09:57:00.506Z [Protected] PID 53664, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T09:57:00.519Z [Protected] PID 55904, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T09:57:00.674Z [Protected] PID 55608, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T09:58:16.052Z [Protected] PID 55440, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T09:58:16.081Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215145815
2016-12-15T09:58:21.360Z [Protected] PID 54196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:58:32.388Z [Protected] PID 51140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T09:59:00.321Z [Protected] PID 55552, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T09:59:11.480Z [Protected] PID 55512, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T09:59:11.494Z [Protected] PID 55048, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T10:00:00.802Z [Protected] PID 52852, Features 000000300000010A, C:\Windows\System32\sdclt.exe
2016-12-15T10:01:54.039Z [Protected] PID 55860, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:01:55.570Z [Protected] PID 54592, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:02:03.428Z [Protected] PID 48760, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:02:03.520Z [Protected] PID 48104, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:02:03.756Z [Protected] PID 55888, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:03:33.167Z [Protected] PID 55784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:03:40.802Z [Protected] PID 55532, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:03:40.990Z [Protected] PID 32584, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:03:47.283Z [Protected] PID 55336, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:03:47.306Z [Protected] PID 55472, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:03:47.386Z [Protected] PID 54652, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:05:42.003Z [Protected] PID 52892, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T10:08:32.492Z [Protected] PID 54460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:13:32.491Z [Protected] PID 55156, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:18:32.528Z [Protected] PID 54216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:23:00.269Z [Protected] PID 55844, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T10:23:02.068Z [Protected] PID 56236, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T10:23:02.843Z [Protected] PID 55208, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T10:23:05.258Z [Protected] PID 50864, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:23:06.531Z [Protected] PID 51036, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:23:13.235Z [Protected] PID 56020, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:23:13.259Z [Protected] PID 46268, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:23:13.426Z [Protected] PID 56164, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:23:13.527Z [Protected] PID 48104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:23:13.997Z [Protected] PID 54980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:23:20.147Z [Protected] PID 56136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:23:32.384Z [Protected] PID 55468, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:24:33.954Z [Protected] PID 50884, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:24:33.967Z [Protected] PID 51140, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T10:24:34.244Z [Protected] PID 37088, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:24:34.257Z [Protected] PID 56068, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T10:27:06.702Z [Protected] PID 55084, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T10:28:16.264Z [Protected] PID 55500, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T10:28:16.290Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215152816
2016-12-15T10:28:32.489Z [Protected] PID 55408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:33:32.488Z [Protected] PID 52104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:34:32.715Z [Protected] PID 55672, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-15T10:34:39.116Z [Protected] PID 55356, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T10:34:46.068Z [Protected] PID 39596, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-15T10:36:09.753Z [Protected] PID 55976, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T10:36:15.843Z [Protected] PID 55336, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-15T10:36:17.897Z [Protected] PID 52164, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-15T10:37:43.605Z [Protected] PID 53996, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:37:44.906Z [Protected] PID 55936, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:37:51.215Z [Protected] PID 52268, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:37:51.238Z [Protected] PID 56280, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:37:51.360Z [Protected] PID 54976, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:38:32.493Z [Protected] PID 54960, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:38:58.936Z [Protected] PID 55252, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T10:39:01.546Z [Protected] PID 55724, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T10:39:01.552Z [Protected] PID 56168, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T10:39:01.769Z [Protected] PID 46132, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T10:39:01.999Z [Protected] PID 50532, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T10:39:03.853Z [Protected] PID 55036, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T10:39:41.098Z [Protected] PID 50996, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:39:41.299Z [Protected] PID 44252, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:39:47.694Z [Protected] PID 54656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:39:47.716Z [Protected] PID 55496, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:39:47.793Z [Protected] PID 52532, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:43:01.586Z [Protected] PID 51232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:43:05.375Z [Protected] PID 46696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:43:32.379Z [Protected] PID 54972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:47:00.947Z [Protected] PID 54984, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:47:02.250Z [Protected] PID 53828, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:47:08.695Z [Protected] PID 53544, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:47:08.719Z [Protected] PID 52924, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:47:08.842Z [Protected] PID 50884, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:48:32.488Z [Protected] PID 52664, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:48:52.469Z [Protected] PID 43004, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:48:52.658Z [Protected] PID 32584, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:48:59.050Z [Protected] PID 55732, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:48:59.073Z [Protected] PID 55492, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:48:59.155Z [Protected] PID 55504, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:49:56.939Z [Protected] PID 53468, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T10:50:18.524Z [Protected] PID 55688, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:50:18.770Z [Protected] PID 54980, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:50:25.145Z [Protected] PID 46972, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:50:25.168Z [Protected] PID 53756, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:50:25.295Z [Protected] PID 52664, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:52:00.277Z [Protected] PID 52960, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T10:52:00.467Z [Protected] PID 55924, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T10:52:06.865Z [Protected] PID 55452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:52:06.887Z [Protected] PID 46456, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T10:52:06.970Z [Protected] PID 51944, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T10:53:32.495Z [Protected] PID 52092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:55:09.374Z [Protected] PID 54968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:55:12.609Z [Protected] PID 46140, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:55:15.500Z [Protected] PID 55404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:56:40.154Z [Protected] PID 55136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:57:00.245Z [Protected] PID 51000, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T10:57:00.892Z [Protected] PID 34832, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T10:57:00.907Z [Protected] PID 55820, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T10:57:01.042Z [Protected] PID 54580, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T10:58:16.375Z [Protected] PID 51552, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T10:58:16.402Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215155816
2016-12-15T10:58:32.380Z [Protected] PID 50724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T10:59:00.400Z [Protected] PID 55336, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T11:00:14.663Z [Protected] PID 53164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:01:01.584Z [Protected] PID 52860, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T11:03:32.489Z [Protected] PID 54900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:07:27.008Z [Protected] PID 55324, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T11:07:28.341Z [Protected] PID 52404, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T11:07:34.763Z [Protected] PID 46676, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:07:34.784Z [Protected] PID 42092, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T11:07:34.906Z [Protected] PID 54776, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T11:08:32.491Z [Protected] PID 54464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:09:29.404Z [Protected] PID 55252, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:09:29.417Z [Protected] PID 51396, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T11:09:38.933Z [Protected] PID 54932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:09:41.541Z [Protected] PID 42092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:09:49.557Z [Protected] PID 52892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:13:34.094Z [Protected] PID 49216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:14:04.301Z [Protected] PID 55892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:14:11.345Z [Protected] PID 54900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:16:13.644Z [Protected] PID 53776, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T11:16:15.155Z [Protected] PID 56084, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T11:16:22.317Z [Protected] PID 52664, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:16:22.338Z [Protected] PID 52888, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T11:16:22.487Z [Protected] PID 56316, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T11:18:32.491Z [Protected] PID 50448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:18:38.068Z [Protected] PID 54860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:18:41.707Z [Protected] PID 55816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:18:42.915Z [Protected] PID 53884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:18:43.851Z [Protected] PID 54292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:19:27.331Z [Protected] PID 51944, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:19:27.344Z [Protected] PID 55312, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T11:20:32.136Z [Protected] PID 55476, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T11:22:28.643Z [Protected] PID 49916, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T11:22:29.966Z [Protected] PID 56188, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T11:22:36.753Z [Protected] PID 35940, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:22:36.775Z [Protected] PID 46352, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T11:22:36.908Z [Protected] PID 55980, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T11:22:53.383Z [Protected] PID 55812, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T11:23:00.174Z [Protected] PID 55364, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T11:23:01.212Z [Protected] PID 55480, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T11:23:32.594Z [Protected] PID 54692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:24:34.412Z [Protected] PID 56064, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:24:34.424Z [Protected] PID 45084, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T11:24:34.643Z [Protected] PID 51512, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:24:34.654Z [Protected] PID 47612, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T11:24:46.576Z [Protected] PID 55972, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T11:24:47.844Z [Protected] PID 55836, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T11:24:53.758Z [Protected] PID 55816, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:24:53.779Z [Protected] PID 46140, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T11:24:53.899Z [Protected] PID 54728, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T11:27:05.988Z [Protected] PID 53164, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T11:28:16.521Z [Protected] PID 56812, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T11:28:16.548Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215162816
2016-12-15T11:28:32.490Z [Protected] PID 57060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:33:32.489Z [Protected] PID 22760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:35:19.919Z [Protected] PID 51236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:36:41.571Z [Protected] PID 58264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:36:42.826Z [Protected] PID 57084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:36:46.880Z [Protected] PID 56640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:21.917Z [Protected] PID 57100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:23.234Z [Protected] PID 56932, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:32.071Z [Protected] PID 55648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:32.393Z [Protected] PID 57716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:35.349Z [Protected] PID 57884, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:37.805Z [Protected] PID 54368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:38:40.589Z [Protected] PID 56228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:41:00.301Z [Protected] PID 10100, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T11:41:01.174Z [Protected] PID 57560, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T11:43:32.499Z [Protected] PID 46776, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:44:08.030Z [Protected] PID 55108, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:44:09.514Z [Protected] PID 54552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:44:13.752Z [Protected] PID 57480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:48:32.493Z [Protected] PID 58040, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:50:26.220Z [Protected] PID 56956, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T11:50:27.520Z [Protected] PID 57128, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T11:50:34.186Z [Protected] PID 56724, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:50:34.208Z [Protected] PID 57452, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T11:50:34.329Z [Protected] PID 58320, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T11:51:19.855Z [Protected] PID 49272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:51:21.861Z [Protected] PID 56976, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:51:25.889Z [Protected] PID 56524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:52:24.789Z [Protected] PID 48104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:52:26.332Z [Protected] PID 58128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:52:45.094Z [Protected] PID 56392, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:52:46.542Z [Protected] PID 57092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:52:54.986Z [Protected] PID 55708, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:53:32.565Z [Protected] PID 45080, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:55:53.391Z [Protected] PID 56128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:55:54.547Z [Protected] PID 54968, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:55:59.585Z [Protected] PID 44252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:57:00.241Z [Protected] PID 57432, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T11:57:01.861Z [Protected] PID 54736, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T11:57:01.874Z [Protected] PID 57452, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T11:57:01.952Z [Protected] PID 55252, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T11:57:04.392Z [Protected] PID 58016, Features 000000361FBF0106, C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
2016-12-15T11:57:06.268Z [Protected] PID 57328, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-15T11:57:07.676Z [Protected] PID 55852, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T11:57:07.938Z [Protected] PID 57364, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T11:58:16.614Z [Protected] PID 55880, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T11:58:16.643Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215165816
2016-12-15T11:58:32.494Z [Protected] PID 53716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:58:40.604Z [Protected] PID 56704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T11:59:00.310Z [Protected] PID 54720, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T11:59:48.712Z [Protected] PID 56508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:00:21.141Z [Protected] PID 51552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:00:26.037Z [Protected] PID 56524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:00:30.031Z [Protected] PID 56920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:03:32.488Z [Protected] PID 55676, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:07:03.457Z [Protected] PID 57572, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T12:07:04.116Z [Protected] PID 57680, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T12:08:32.491Z [Protected] PID 55536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:09:17.301Z [Protected] PID 56368, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:12:51.557Z [Protected] PID 58216, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T12:13:32.487Z [Protected] PID 46136, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:16:54.581Z [Protected] PID 57920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:18:32.377Z [Protected] PID 58268, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:22:34.650Z [Protected] PID 58124, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:22:38.013Z [Protected] PID 55600, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T12:22:38.109Z [Protected] PID 58076, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T12:22:44.244Z [Protected] PID 56092, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:23:00.072Z [Protected] PID 57804, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T12:23:00.922Z [Protected] PID 56820, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T12:23:01.594Z [Protected] PID 10100, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T12:23:32.386Z [Protected] PID 57212, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:24:34.864Z [Protected] PID 55364, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T12:24:34.876Z [Protected] PID 57576, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T12:24:35.102Z [Protected] PID 54056, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T12:24:35.113Z [Protected] PID 56920, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T12:27:04.217Z [Protected] PID 54204, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T12:28:16.708Z [Protected] PID 53560, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T12:28:16.735Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215172816
2016-12-15T12:28:32.495Z [Protected] PID 55816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:33:04.706Z [Protected] PID 55376, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T12:33:06.956Z [Protected] PID 56032, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T12:33:07.010Z [Protected] PID 53544, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T12:33:07.046Z [Protected] PID 56696, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T12:33:08.091Z [Protected] PID 39596, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T12:33:08.993Z [Protected] PID 57244, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T12:33:32.490Z [Protected] PID 55956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:36:05.943Z [Protected] PID 56680, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:38:32.496Z [Protected] PID 56576, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:43:05.453Z [Protected] PID 52724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:43:32.368Z [Protected] PID 56436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:49:32.402Z [Protected] PID 57612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:49:41.471Z [Protected] PID 58076, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T12:49:47.533Z [Protected] PID 50436, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T12:49:50.737Z [Protected] PID 44252, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-15T12:49:55.343Z [Protected] PID 51020, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T12:49:57.885Z [Protected] PID 57556, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T12:49:57.910Z [Protected] PID 56272, Features 0000003000000102, C:\Windows\System32\cmd.exe
2016-12-15T12:49:58.171Z [Protected] PID 18056, Features 0000003000000102, C:\Windows\System32\NETSTAT.EXE
2016-12-15T12:49:58.424Z [Protected] PID 54684, Features 0000003000000102, C:\Windows\System32\tasklist.exe
2016-12-15T12:49:59.656Z [Protected] PID 57452, Features 000000361FBF0102, C:\Windows\System32\wscript.exe
2016-12-15T12:51:55.933Z [Protected] PID 57300, Features 000000300000010A, C:\Windows\System32\wbem\WmiApSrv.exe
2016-12-15T12:53:32.463Z [Protected] PID 10100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:56:59.979Z [Protected] PID 57916, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T12:57:00.274Z [Protected] PID 54964, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T12:57:00.288Z [Protected] PID 55504, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T12:57:00.375Z [Protected] PID 56304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T12:57:52.357Z [Protected] PID 46972, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-15T12:57:58.153Z [Protected] PID 54328, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-15T12:58:16.681Z [Protected] PID 57820, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T12:58:16.708Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215175816
2016-12-15T12:58:32.498Z [Protected] PID 58244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T12:59:00.128Z [Protected] PID 49984, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T12:59:35.008Z [Protected] PID 39160, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T13:02:31.391Z [Protected] PID 54780, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T13:02:31.772Z [Protected] PID 55924, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T13:03:32.497Z [Protected] PID 51860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:04:03.872Z [Protected] PID 57404, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T13:08:32.493Z [Protected] PID 56988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:13:32.493Z [Protected] PID 45084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:15:27.193Z [Protected] PID 57692, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T13:18:32.496Z [Protected] PID 46300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:23:00.106Z [Protected] PID 56260, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T13:23:00.904Z [Protected] PID 49748, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T13:23:01.578Z [Protected] PID 56292, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T13:23:32.492Z [Protected] PID 54496, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:24:35.178Z [Protected] PID 56816, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T13:24:35.189Z [Protected] PID 18056, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T13:24:35.399Z [Protected] PID 57236, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T13:24:35.411Z [Protected] PID 57696, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T13:27:04.297Z [Protected] PID 51404, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T13:27:37.676Z [Protected] PID 57476, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-15T13:28:04.300Z [Protected] PID 52568, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T13:28:04.486Z [Protected] PID 56304, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T13:28:17.824Z [Protected] PID 58228, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T13:28:17.971Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215182816
2016-12-15T13:28:32.564Z [Protected] PID 54608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:33:32.482Z [Protected] PID 57700, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:38:32.486Z [Protected] PID 53732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:39:30.583Z [Protected] PID 54720, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T13:39:30.596Z [Protected] PID 57672, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T13:41:00.991Z [Protected] PID 50884, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T13:41:03.584Z [Protected] PID 43552, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T13:43:32.924Z [Protected] PID 56100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:48:32.492Z [Protected] PID 57464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:53:32.490Z [Protected] PID 55408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:57:00.074Z [Protected] PID 53372, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T13:57:00.387Z [Protected] PID 57904, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T13:57:00.405Z [Protected] PID 50984, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T13:57:00.477Z [Protected] PID 57312, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T13:58:18.090Z [Protected] PID 56412, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T13:58:18.117Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215185817
2016-12-15T13:58:32.490Z [Protected] PID 55536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T13:59:00.340Z [Protected] PID 56656, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T14:03:32.487Z [Protected] PID 56900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:07:08.122Z [Protected] PID 56336, Features 0000003000800102, C:\Windows\explorer.exe
2016-12-15T14:07:14.110Z [Protected] PID 57180, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T14:07:14.899Z [Protected] PID 54288, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-15T14:07:29.108Z [Protected] PID 50928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:07:34.792Z [Protected] PID 55820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:07:35.242Z [Protected] PID 56548, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:07:44.392Z [Protected] PID 57536, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T14:08:02.730Z [Protected] PID 54344, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T14:08:04.665Z [Protected] PID 47404, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T14:08:13.390Z [Protected] PID 56620, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T14:08:13.448Z [Protected] PID 55124, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T14:08:13.839Z [Protected] PID 56504, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T14:08:32.384Z [Protected] PID 51232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:08:32.679Z [Protected] PID 56852, Features 000000361FBF0106, C:\Program Files\iTunes\iTunes.exe
2016-12-15T14:08:33.010Z [Protected] PID 40048, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-15T14:08:34.948Z [Protected] PID 40600, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-15T14:08:35.965Z [Protected] PID 57660, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T14:12:10.765Z [Protected] PID 58096, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T14:12:13.352Z [Protected] PID 57424, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T14:12:13.614Z [Protected] PID 57240, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T14:12:13.804Z [Protected] PID 55812, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T14:12:14.243Z [Protected] PID 57436, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T14:12:16.407Z [Protected] PID 57260, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T14:13:32.540Z [Protected] PID 54444, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:16:14.812Z [Protected] PID 57300, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T14:18:32.492Z [Protected] PID 55980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:23:00.093Z [Protected] PID 54988, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T14:23:01.159Z [Protected] PID 57284, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T14:23:07.648Z [Protected] PID 57564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:23:32.384Z [Protected] PID 54448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:24:35.879Z [Protected] PID 55976, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T14:24:35.937Z [Protected] PID 54676, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T14:24:36.409Z [Protected] PID 53128, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T14:24:36.421Z [Protected] PID 55676, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T14:27:07.761Z [Protected] PID 55324, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T14:28:18.185Z [Protected] PID 54780, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T14:28:18.212Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215192818
2016-12-15T14:28:32.470Z [Protected] PID 56556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:32:30.906Z [Protected] PID 55520, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:33:32.379Z [Protected] PID 58344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:33:58.348Z [Protected] PID 55276, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T14:36:27.269Z [Protected] PID 54692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:38:32.487Z [Protected] PID 49272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:39:40.253Z [Protected] PID 56764, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T14:39:40.267Z [Protected] PID 57252, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T14:40:09.224Z [Protected] PID 57464, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:40:11.286Z [Protected] PID 49272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:40:15.148Z [Protected] PID 53560, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:43:33.703Z [Protected] PID 59272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:47:45.807Z [Protected] PID 59308, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T14:47:47.209Z [Protected] PID 57516, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T14:47:54.371Z [Protected] PID 58796, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T14:47:54.414Z [Protected] PID 58996, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T14:47:54.572Z [Protected] PID 56780, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T14:48:32.490Z [Protected] PID 51688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:48:45.015Z [Protected] PID 58344, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:48:49.761Z [Protected] PID 59208, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:48:53.825Z [Protected] PID 55648, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:49:11.591Z [Protected] PID 52876, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T14:49:13.781Z [Protected] PID 59000, Features 000000361FBF0106, C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
2016-12-15T14:52:53.577Z [Protected] PID 57748, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:53:32.386Z [Protected] PID 58912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:57:00.522Z [Protected] PID 57516, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T14:57:00.999Z [Protected] PID 56764, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T14:57:01.013Z [Protected] PID 55340, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T14:57:01.092Z [Protected] PID 57072, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T14:58:18.384Z [Protected] PID 50320, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T14:58:18.410Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215195818
2016-12-15T14:58:32.498Z [Protected] PID 58652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T14:59:00.425Z [Protected] PID 57528, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T15:03:21.373Z [Protected] PID 58604, Features 0000003000000102, C:\Windows\System32\scrnsave.scr
2016-12-15T15:03:28.469Z [Protected] PID 56488, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-15T15:03:32.496Z [Protected] PID 58804, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:08:32.495Z [Protected] PID 56816, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:11:44.664Z [Protected] PID 57948, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T15:13:32.496Z [Protected] PID 59164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:18:32.494Z [Protected] PID 39596, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:23:00.074Z [Protected] PID 56280, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T15:23:01.512Z [Protected] PID 57232, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T15:23:02.353Z [Protected] PID 57444, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T15:23:32.490Z [Protected] PID 46336, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:24:36.595Z [Protected] PID 59232, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T15:24:36.607Z [Protected] PID 56860, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T15:24:36.773Z [Protected] PID 57060, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T15:24:36.785Z [Protected] PID 56856, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T15:27:06.288Z [Protected] PID 58912, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T15:28:18.481Z [Protected] PID 59504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T15:28:18.510Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215202818
2016-12-15T15:28:32.497Z [Protected] PID 59936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:33:32.514Z [Protected] PID 60100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:37:04.388Z [Protected] PID 59504, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T15:37:04.951Z [Protected] PID 60036, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T15:38:32.500Z [Protected] PID 57612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:39:02.407Z [Protected] PID 57180, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:39:03.452Z [Protected] PID 59872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:39:06.679Z [Protected] PID 60164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:41:00.706Z [Protected] PID 58912, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T15:43:32.485Z [Protected] PID 59880, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:44:35.368Z [Protected] PID 59660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:46:05.845Z [Protected] PID 60316, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T15:46:07.169Z [Protected] PID 59808, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T15:46:13.951Z [Protected] PID 59444, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T15:46:13.974Z [Protected] PID 59388, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T15:46:14.113Z [Protected] PID 58064, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T15:47:12.955Z [Protected] PID 59928, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:47:44.776Z [Protected] PID 59472, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:47:46.129Z [Protected] PID 59796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:48:32.397Z [Protected] PID 59348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:49:48.962Z [Protected] PID 59988, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T15:49:48.975Z [Protected] PID 59972, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T15:53:33.626Z [Protected] PID 59592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:57:00.272Z [Protected] PID 54004, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T15:57:00.566Z [Protected] PID 58828, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T15:57:00.579Z [Protected] PID 59884, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T15:57:00.651Z [Protected] PID 54328, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T15:57:41.645Z [Protected] PID 57508, Features 0000003000000102, C:\Windows\System32\WUDFHost.exe
2016-12-15T15:57:42.622Z [Protected] PID 56816, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-15T15:57:43.045Z [Protected] PID 49916, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T15:58:18.677Z [Protected] PID 59456, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T15:58:18.703Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215205818
2016-12-15T15:58:24.009Z [Protected] PID 59972, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T15:58:25.335Z [Protected] PID 56896, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T15:58:31.831Z [Protected] PID 59540, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T15:58:31.852Z [Protected] PID 60396, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T15:58:31.992Z [Protected] PID 51816, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T15:58:32.474Z [Protected] PID 60332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T15:59:00.317Z [Protected] PID 60156, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T16:00:38.307Z [Protected] PID 58032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:02:56.379Z [Protected] PID 19104, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T16:03:32.633Z [Protected] PID 60376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:08:17.236Z [Protected] PID 56816, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T16:08:19.745Z [Protected] PID 44916, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T16:08:20.027Z [Protected] PID 56580, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T16:08:20.252Z [Protected] PID 52848, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T16:08:20.802Z [Protected] PID 60036, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T16:08:23.224Z [Protected] PID 55376, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T16:08:32.489Z [Protected] PID 59284, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:10:59.089Z [Protected] PID 56688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:11:00.660Z [Protected] PID 58216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:11:03.427Z [Protected] PID 56588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:11:16.657Z [Protected] PID 60248, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:11:20.558Z [Protected] PID 55320, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:11:24.567Z [Protected] PID 59272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:11:57.075Z [Protected] PID 51232, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T16:13:32.480Z [Protected] PID 60304, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:15:29.874Z [Protected] PID 59396, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:15:39.271Z [Protected] PID 53796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:18:32.508Z [Protected] PID 59636, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:18:44.193Z [Protected] PID 61048, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T16:18:47.107Z [Protected] PID 46364, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T16:18:54.650Z [Protected] PID 61076, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:18:54.673Z [Protected] PID 58948, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T16:18:55.377Z [Protected] PID 59888, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T16:19:32.080Z [Protected] PID 61128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:19:33.234Z [Protected] PID 58556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:19:55.011Z [Protected] PID 59956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:20:18.567Z [Protected] PID 60552, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:20:25.485Z [Protected] PID 61016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:20:41.289Z [Protected] PID 59408, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:20:59.187Z [Protected] PID 60704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:21:02.534Z [Protected] PID 19172, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T16:21:11.382Z [Protected] PID 60588, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:21:35.017Z [Protected] PID 60940, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:21:46.683Z [Protected] PID 60516, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:22:04.871Z [Protected] PID 59404, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T16:22:06.225Z [Protected] PID 55408, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T16:22:12.787Z [Protected] PID 59264, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:22:12.811Z [Protected] PID 59280, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T16:22:12.937Z [Protected] PID 60716, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T16:22:34.310Z [Protected] PID 58244, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T16:23:00.158Z [Protected] PID 57224, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T16:23:02.281Z [Protected] PID 61280, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T16:23:32.530Z [Protected] PID 60032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:23:51.766Z [Protected] PID 60324, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T16:23:52.000Z [Protected] PID 60908, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T16:23:58.192Z [Protected] PID 52836, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:23:58.218Z [Protected] PID 60260, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T16:23:58.300Z [Protected] PID 59136, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T16:24:37.228Z [Protected] PID 56580, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:24:37.275Z [Protected] PID 61332, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T16:24:37.674Z [Protected] PID 61024, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:24:37.686Z [Protected] PID 60648, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T16:24:52.328Z [Protected] PID 61260, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-15T16:26:05.112Z [Protected] PID 60944, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T16:26:05.511Z [Protected] PID 61176, Features 0000003000000106, C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
2016-12-15T16:27:08.575Z [Protected] PID 59972, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T16:28:00.151Z [Protected] PID 60260, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-15T16:28:19.558Z [Protected] PID 60304, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T16:28:19.588Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215212818
2016-12-15T16:28:32.526Z [Protected] PID 59224, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T16:28:32.915Z [Protected] PID 59744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:28:33.710Z [Protected] PID 61240, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T16:29:07.951Z [Protected] PID 52576, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T16:33:32.564Z [Protected] PID 60892, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:38:32.510Z [Protected] PID 59792, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:43:32.647Z [Protected] PID 58172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:48:32.559Z [Protected] PID 60600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:53:32.664Z [Protected] PID 60056, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:55:45.852Z [Protected] PID 59252, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:55:46.822Z [Protected] PID 56100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:55:48.661Z [Protected] PID 54660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:56:32.782Z [Protected] PID 59960, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T16:56:33.383Z [Protected] PID 61204, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T16:57:00.133Z [Protected] PID 58916, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T16:57:00.851Z [Protected] PID 59388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:57:00.865Z [Protected] PID 61280, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T16:57:00.944Z [Protected] PID 61152, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T16:57:30.576Z [Protected] PID 58660, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T16:57:34.317Z [Protected] PID 58844, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T16:57:42.545Z [Protected] PID 50204, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T16:57:42.624Z [Protected] PID 61060, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T16:57:43.753Z [Protected] PID 59704, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T16:58:11.031Z [Protected] PID 59176, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:58:13.653Z [Protected] PID 60704, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:58:19.902Z [Protected] PID 60020, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T16:58:19.929Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215215819
2016-12-15T16:58:32.386Z [Protected] PID 60796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T16:59:00.322Z [Protected] PID 61204, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T17:00:06.630Z [Protected] PID 60272, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T17:02:29.564Z [Protected] PID 52848, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T17:02:30.610Z [Protected] PID 60684, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T17:02:31.474Z [Protected] PID 53008, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T17:03:32.492Z [Protected] PID 57300, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:04:24.464Z [Protected] PID 60412, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:08:32.534Z [Protected] PID 60784, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:11:33.533Z [Protected] PID 59924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:13:32.385Z [Protected] PID 59608, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:13:38.528Z [Protected] PID 59332, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T17:13:39.842Z [Protected] PID 44508, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T17:13:46.640Z [Protected] PID 50484, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T17:13:46.663Z [Protected] PID 59752, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T17:13:46.785Z [Protected] PID 61008, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T17:15:07.809Z [Protected] PID 60668, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T17:18:32.505Z [Protected] PID 61400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:23:00.076Z [Protected] PID 60268, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T17:23:00.858Z [Protected] PID 50484, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T17:23:01.849Z [Protected] PID 60428, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T17:23:02.894Z [Protected] PID 61340, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T17:23:32.496Z [Protected] PID 19172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:24:37.978Z [Protected] PID 61152, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T17:24:37.990Z [Protected] PID 59604, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T17:24:38.144Z [Protected] PID 53020, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T17:24:38.156Z [Protected] PID 59388, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T17:26:06.429Z [Protected] PID 57712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:26:37.786Z [Protected] PID 60516, Features 0000003000002102, C:\Program Files (x86)\ShoreTel\Web Dialer\STCallURL.exe
2016-12-15T17:26:39.142Z [Protected] PID 61244, Features 0000003000000102, C:\Program Files (x86)\ShoreTel\ShoreTel 3rd Party\STCLogin.exe
2016-12-15T17:26:45.585Z [Protected] PID 61316, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T17:26:45.620Z [Protected] PID 61344, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
2016-12-15T17:26:45.744Z [Protected] PID 55112, Features 0000003000002106, C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
2016-12-15T17:27:04.843Z [Protected] PID 61160, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T17:28:20.008Z [Protected] PID 56504, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T17:28:20.033Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215222819
2016-12-15T17:28:28.761Z [Protected] PID 53008, Features 0000003000000102, C:\Windows\System32\LogonUI.exe
2016-12-15T17:28:32.498Z [Protected] PID 57832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:33:32.558Z [Protected] PID 59432, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:38:32.489Z [Protected] PID 60956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:41:00.117Z [Protected] PID 58384, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T17:41:01.045Z [Protected] PID 59564, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T17:43:32.482Z [Protected] PID 47228, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:48:32.490Z [Protected] PID 61244, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:53:32.494Z [Protected] PID 51584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:55:06.853Z [Protected] PID 58916, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T17:57:00.073Z [Protected] PID 59724, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T17:57:00.338Z [Protected] PID 61040, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T17:57:00.352Z [Protected] PID 60344, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T17:57:00.420Z [Protected] PID 56344, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T17:58:20.104Z [Protected] PID 60700, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T17:58:20.130Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215225820
2016-12-15T17:58:32.487Z [Protected] PID 61164, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T17:59:00.139Z [Protected] PID 58020, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T17:59:23.174Z [Protected] PID 57688, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T17:59:25.222Z [Protected] PID 60140, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T17:59:25.848Z [Protected] PID 60316, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T17:59:25.926Z [Protected] PID 58900, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T17:59:27.261Z [Protected] PID 60632, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T17:59:29.427Z [Protected] PID 59616, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T17:59:31.299Z [Protected] PID 51120, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T18:03:32.547Z [Protected] PID 60972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:03:37.755Z [Protected] PID 60264, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T18:08:32.492Z [Protected] PID 60832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:13:32.489Z [Protected] PID 59740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:18:32.574Z [Protected] PID 59544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:23:00.071Z [Protected] PID 57516, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T18:23:00.841Z [Protected] PID 55872, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T18:23:01.478Z [Protected] PID 56316, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T18:23:32.484Z [Protected] PID 61160, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:24:38.371Z [Protected] PID 60292, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:24:38.382Z [Protected] PID 60812, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T18:24:38.478Z [Protected] PID 33668, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:24:38.487Z [Protected] PID 56592, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T18:27:02.264Z [Protected] PID 58864, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:27:02.274Z [Protected] PID 59952, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\GatherTelem.exe
2016-12-15T18:27:02.416Z [Protected] PID 60980, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\AUTelem.exe
2016-12-15T18:27:02.589Z [Protected] PID 59916, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T18:27:05.268Z [Protected] PID 57284, Features 0000003000000106, C:\Program Files (x86)\Sophos\Health\HealthClient.exe
2016-12-15T18:27:06.068Z [Protected] PID 60232, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVTelem.exe
2016-12-15T18:27:06.257Z [Protected] PID 56620, Features 0000003000000106, C:\Program Files\Sophos\Endpoint Defense\Telemetry.exe
2016-12-15T18:27:06.376Z [Protected] PID 59784, Features 0000003000000106, C:\Program Files\Sophos\Sophos System Protection\TelemetryPlugin.exe
2016-12-15T18:27:06.496Z [Protected] PID 59752, Features 0000003000000106, C:\Program Files\Sophos\Sophos UI\Telemetry.exe
2016-12-15T18:27:06.660Z [Protected] PID 24200, Features 0000003000000106, C:\Program Files (x86)\Sophos\AutoUpdate\Telemetry\SubmitTelem.exe
2016-12-15T18:27:10.172Z [Protected] PID 60460, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T18:28:20.194Z [Protected] PID 56316, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T18:28:20.220Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215232820
2016-12-15T18:28:32.489Z [Protected] PID 59752, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:33:32.481Z [Protected] PID 59260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:36:23.807Z [Protected] PID 29980, Features 000000300000010A, C:\Windows\System32\msfeedssync.exe
2016-12-15T18:36:27.832Z [Protected] PID 60552, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T18:36:28.401Z [Protected] PID 55408, Features 0000003000000102, C:\Program Files\Internet Explorer\IELowutil.exe
2016-12-15T18:38:32.486Z [Protected] PID 52288, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:43:32.488Z [Protected] PID 60772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:48:32.484Z [Protected] PID 57484, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:50:36.924Z [Protected] PID 60868, Features 0000003000000106, C:\Windows\Temp\mbae-setup-1.09.2.1291.exe
2016-12-15T18:50:37.564Z [Protected] PID 60512, Features 0000003000000102, C:\Windows\Temp\is-DV6C7.tmp\mbae-setup-1.09.2.1291.tmp
2016-12-15T18:50:38.478Z [Protected] PID 59332, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T18:50:42.141Z [Protected] PID 60028, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:50:42.170Z [Protected] PID 61160, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-uninstaller.exe
2016-12-15T18:50:42.197Z [Protected] PID 54692, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
2016-12-15T18:50:52.149Z [Protected] PID 46356, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:50:52.191Z [Protected] PID 59176, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
2016-12-15T18:51:18.003Z [Protected] PID 59952, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
2016-12-15T18:51:19.349Z [Protected] PID 59388, Features 000000300000010E, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
2016-12-15T18:51:19.771Z [Protected] PID 8000, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:51:19.785Z [Protected] PID 2652, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
2016-12-15T18:51:20.965Z [Protected] PID 60436, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T18:51:21.040Z [Protected] PID 60240, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T18:53:32.450Z [Protected] PID 59480, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:57:00.080Z [Protected] PID 24200, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T18:57:00.335Z [Protected] PID 57224, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T18:57:00.353Z [Protected] PID 2256, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T18:57:00.440Z [Protected] PID 59952, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T18:58:20.285Z [Protected] PID 32596, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T18:58:20.311Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161215235820
2016-12-15T18:58:32.453Z [Protected] PID 60556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T18:59:00.131Z [Protected] PID 60536, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T19:00:01.364Z [Protected] PID 59752, Features 000000300000010A, C:\Windows\System32\wsqmcons.exe
2016-12-15T19:00:01.662Z [Protected] PID 2712, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T19:00:01.674Z [Protected] PID 55712, Features 0000003000000102, C:\Windows\System32\schtasks.exe
2016-12-15T19:03:32.456Z [Protected] PID 31572, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:06:07.063Z [Alert] Intruder, familyId=6dde2382-a756-40fa-b401-b3a99d409fa9, PID 8096, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:06:07.092Z [Sophos] dropped C:\ProgramData\HitmanPro.Alert\MCS\Alert-20161216000607064-1.xml
2016-12-15T19:06:07.171Z [Sophos] dropped C:\ProgramData\Sophos\Health\Event Store\Incoming\35226e33-127c-467d-adfd-b85e83779beb.json
2016-12-15T19:06:09.162Z [Protected] PID 59784, Features 0000003000000106, C:\Program Files\Sophos\Clean\SophosClean.exe
2016-12-15T19:06:17.035Z [Protected] PID 59724, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T19:06:17.061Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216000616
2016-12-15T19:07:05.190Z [Protected] PID 61424, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T19:07:07.906Z [Protected] PID 2596, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T19:08:32.492Z [Protected] PID 62292, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:10:13.184Z [Protected] PID 2596, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T19:13:32.635Z [Protected] PID 61624, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:18:32.571Z [Protected] PID 62328, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:23:00.168Z [Protected] PID 61732, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T19:23:01.006Z [Protected] PID 57164, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T19:23:01.650Z [Protected] PID 2628, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T19:23:32.438Z [Protected] PID 56620, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:24:38.701Z [Protected] PID 7684, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T19:24:38.713Z [Protected] PID 61460, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T19:24:38.875Z [Protected] PID 62408, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T19:24:38.886Z [Protected] PID 61728, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T19:27:04.316Z [Protected] PID 1032, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T19:28:32.438Z [Protected] PID 60760, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:33:32.435Z [Protected] PID 59980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:36:17.136Z [Protected] PID 61008, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T19:36:17.162Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216003617
2016-12-15T19:38:32.439Z [Protected] PID 59740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:39:10.109Z [Protected] PID 61932, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T19:39:13.466Z [Protected] PID 58828, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-15T19:39:15.616Z [Protected] PID 60184, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T19:39:31.064Z [Protected] PID 61532, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-15T19:41:00.107Z [Protected] PID 61828, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T19:41:00.535Z [Protected] PID 54004, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T19:43:32.440Z [Protected] PID 3016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:48:32.431Z [Protected] PID 51120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:53:28.913Z [Protected] PID 42208, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T19:53:30.716Z [Protected] PID 2628, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T19:53:30.814Z [Protected] PID 62080, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T19:53:31.023Z [Protected] PID 62004, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T19:53:32.120Z [Protected] PID 51584, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T19:53:32.438Z [Protected] PID 61632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:53:33.126Z [Protected] PID 62092, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T19:57:00.069Z [Protected] PID 54460, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T19:57:00.296Z [Protected] PID 59528, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T19:57:00.309Z [Protected] PID 59388, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T19:57:00.379Z [Protected] PID 58164, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T19:58:32.440Z [Protected] PID 61628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T19:59:00.179Z [Protected] PID 33104, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T19:59:00.181Z [Protected] PID 61844, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T19:59:00.486Z [Protected] PID 49808, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
2016-12-15T19:59:00.492Z [Protected] PID 61528, Features 0000003000000106, C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
2016-12-15T20:03:32.431Z [Protected] PID 33724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:05:19.344Z [Protected] PID 58756, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T20:06:17.221Z [Protected] PID 61732, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T20:06:17.247Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216010617
2016-12-15T20:08:32.434Z [Protected] PID 58216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:13:32.440Z [Protected] PID 61888, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:18:32.431Z [Protected] PID 62440, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:23:00.072Z [Protected] PID 52188, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T20:23:00.774Z [Protected] PID 61900, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T20:23:01.440Z [Protected] PID 62460, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T20:23:32.430Z [Protected] PID 59068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:24:39.020Z [Protected] PID 62324, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T20:24:39.032Z [Protected] PID 61196, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T20:24:39.124Z [Protected] PID 62276, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T20:24:39.135Z [Protected] PID 62412, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T20:27:04.137Z [Protected] PID 60268, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T20:27:30.131Z [Protected] PID 61696, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-15T20:27:57.505Z [Protected] PID 62008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T20:27:57.767Z [Protected] PID 61636, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-15T20:28:32.758Z [Protected] PID 61532, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:36.934Z [Protected] PID 62004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.043Z [Protected] PID 62404, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.125Z [Protected] PID 61716, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.218Z [Protected] PID 62216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.303Z [Protected] PID 62200, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.394Z [Protected] PID 56316, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.484Z [Protected] PID 62280, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.570Z [Protected] PID 2600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.654Z [Protected] PID 60508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.739Z [Protected] PID 33724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:32:37.848Z [Protected] PID 59900, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:33:32.340Z [Protected] PID 60168, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:36:17.497Z [Protected] PID 62008, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T20:36:17.523Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216013617
2016-12-15T20:38:32.443Z [Protected] PID 33104, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:43:12.754Z [Protected] PID 1032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:43:32.339Z [Protected] PID 61844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:46:49.906Z [Protected] PID 58352, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T20:48:32.430Z [Protected] PID 62360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:53:32.435Z [Protected] PID 1032, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:54:48.371Z [Protected] PID 60816, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T20:54:48.744Z [Protected] PID 29980, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-15T20:57:00.068Z [Protected] PID 4060, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T20:57:00.306Z [Protected] PID 61632, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T20:57:00.319Z [Protected] PID 61692, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T20:57:00.389Z [Protected] PID 62008, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T20:58:32.438Z [Protected] PID 59980, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T20:59:00.149Z [Protected] PID 61892, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T21:01:50.206Z [Protected] PID 59936, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T21:01:50.767Z [Protected] PID 61580, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-15T21:01:51.039Z [Protected] PID 62200, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T21:03:32.434Z [Protected] PID 60584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:06:17.590Z [Protected] PID 62172, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T21:06:17.616Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216020617
2016-12-15T21:08:32.433Z [Protected] PID 62312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:11:35.515Z [Protected] PID 60168, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T21:13:32.438Z [Protected] PID 61004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:18:32.441Z [Protected] PID 7684, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:20:13.702Z [Protected] PID 62384, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T21:20:18.213Z [Protected] PID 60476, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-15T21:20:19.936Z [Protected] PID 57712, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T21:20:35.960Z [Protected] PID 3016, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-15T21:23:00.070Z [Protected] PID 62124, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T21:23:00.778Z [Protected] PID 51376, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T21:23:32.431Z [Protected] PID 57380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:24:39.337Z [Protected] PID 59564, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T21:24:39.347Z [Protected] PID 7684, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T21:24:39.584Z [Protected] PID 62384, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T21:24:39.595Z [Protected] PID 61008, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T21:27:04.439Z [Protected] PID 62188, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T21:28:32.436Z [Protected] PID 61864, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:28:34.170Z [Protected] PID 55444, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T21:28:36.132Z [Protected] PID 6316, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T21:28:36.685Z [Protected] PID 62204, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T21:28:36.846Z [Protected] PID 62248, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T21:28:38.440Z [Protected] PID 62176, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T21:28:40.891Z [Protected] PID 62424, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T21:33:32.441Z [Protected] PID 18612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:36:17.679Z [Protected] PID 60448, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T21:36:17.707Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216023617
2016-12-15T21:38:32.441Z [Protected] PID 59068, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:41:00.071Z [Protected] PID 58848, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T21:41:00.558Z [Protected] PID 49808, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T21:43:32.437Z [Protected] PID 62460, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:48:32.440Z [Protected] PID 60512, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:54:32.394Z [Protected] PID 61524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:57:00.004Z [Protected] PID 62360, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T21:57:00.232Z [Protected] PID 62420, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T21:57:00.245Z [Protected] PID 62116, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T21:57:00.314Z [Protected] PID 61892, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T21:58:32.424Z [Protected] PID 62064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T21:59:00.138Z [Protected] PID 62288, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T22:00:01.068Z [Protected] PID 61712, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
2016-12-15T22:00:01.544Z [Protected] PID 58216, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-15T22:00:01.653Z [Protected] PID 7816, Features 0000003000000102, C:\Windows\SysWOW64\regsvr32.exe
2016-12-15T22:03:32.697Z [Protected] PID 61820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:06:18.299Z [Protected] PID 61404, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T22:06:18.345Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216030617
2016-12-15T22:08:10.095Z [Protected] PID 4060, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T22:08:32.679Z [Protected] PID 61640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:10:46.588Z [Protected] PID 61992, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T22:13:32.657Z [Protected] PID 33724, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:18:32.434Z [Protected] PID 6688, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:23:00.337Z [Protected] PID 55996, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T22:23:01.661Z [Protected] PID 61572, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T22:23:02.496Z [Protected] PID 62384, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T22:23:32.431Z [Protected] PID 2632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:24:39.984Z [Protected] PID 59860, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T22:24:40.021Z [Protected] PID 59936, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T22:24:40.323Z [Protected] PID 61872, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T22:24:40.334Z [Protected] PID 55032, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T22:27:04.710Z [Protected] PID 61940, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T22:28:32.432Z [Protected] PID 59564, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:33:32.439Z [Protected] PID 60772, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:36:18.410Z [Protected] PID 61576, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T22:36:18.436Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216033618
2016-12-15T22:37:05.265Z [Protected] PID 61736, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T22:37:05.719Z [Protected] PID 55872, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-15T22:37:52.685Z [Protected] PID 60304, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T22:37:52.886Z [Protected] PID 61196, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T22:38:32.439Z [Protected] PID 62100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:43:32.434Z [Protected] PID 61640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:48:32.433Z [Protected] PID 62060, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:53:32.438Z [Protected] PID 61872, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:57:00.088Z [Protected] PID 60344, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T22:57:00.456Z [Protected] PID 62004, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T22:57:00.469Z [Protected] PID 61472, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T22:57:00.539Z [Protected] PID 62364, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T22:58:32.437Z [Protected] PID 61936, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T22:59:00.170Z [Protected] PID 62172, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T22:59:39.224Z [Protected] PID 62432, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-15T23:03:32.451Z [Protected] PID 24728, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:06:18.501Z [Protected] PID 60440, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T23:06:18.527Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216040618
2016-12-15T23:08:11.271Z [Protected] PID 61628, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-15T23:08:17.802Z [Protected] PID 59712, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T23:08:32.454Z [Protected] PID 49808, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:13:32.432Z [Protected] PID 61632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:18:32.437Z [Protected] PID 61744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:20:12.624Z [Protected] PID 62392, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T23:20:12.636Z [Protected] PID 62024, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-15T23:23:00.426Z [Protected] PID 42208, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T23:23:01.939Z [Protected] PID 61872, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-15T23:23:02.569Z [Protected] PID 56344, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T23:23:32.907Z [Protected] PID 62592, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:23:41.805Z [Protected] PID 61632, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T23:23:42.117Z [Protected] PID 63312, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-15T23:23:42.205Z [Protected] PID 59548, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-15T23:23:43.055Z [Protected] PID 62484, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-15T23:23:43.661Z [Protected] PID 62736, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-15T23:24:40.461Z [Protected] PID 5388, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T23:24:40.473Z [Protected] PID 62264, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-15T23:24:40.584Z [Protected] PID 62288, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T23:24:40.595Z [Protected] PID 62124, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-15T23:27:06.034Z [Protected] PID 61936, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-15T23:28:32.436Z [Protected] PID 61856, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:29:27.136Z [Protected] PID 62564, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-15T23:33:32.439Z [Protected] PID 58020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:36:18.695Z [Protected] PID 63252, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-15T23:36:18.720Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216043618
2016-12-15T23:38:32.441Z [Protected] PID 2612, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:41:00.115Z [Protected] PID 62400, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T23:41:00.835Z [Protected] PID 1032, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-15T23:43:32.433Z [Protected] PID 59264, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:48:32.437Z [Protected] PID 61456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:53:32.437Z [Protected] PID 53348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:57:00.068Z [Protected] PID 62404, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-15T23:57:00.313Z [Protected] PID 62808, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-15T23:57:00.324Z [Protected] PID 62828, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T23:57:00.396Z [Protected] PID 62440, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-15T23:58:32.422Z [Protected] PID 57924, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-15T23:59:00.204Z [Protected] PID 63112, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T00:03:32.436Z [Protected] PID 62312, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:06:18.782Z [Protected] PID 20008, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T00:06:18.808Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216050618
2016-12-16T00:07:40.484Z [Protected] PID 63436, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T00:08:32.442Z [Protected] PID 62984, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:13:32.437Z [Protected] PID 62660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:18:32.443Z [Protected] PID 62188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:22:35.439Z [Protected] PID 61916, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T00:23:00.074Z [Protected] PID 63136, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T00:23:00.725Z [Protected] PID 61880, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T00:23:01.245Z [Protected] PID 52188, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T00:23:32.479Z [Protected] PID 62380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:23:56.428Z [Protected] PID 61760, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T00:23:56.441Z [Protected] PID 59876, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\agshelper.exe
2016-12-16T00:24:02.303Z [Protected] PID 62124, Features 000000300000010E, C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
2016-12-16T00:24:40.692Z [Protected] PID 63452, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T00:24:40.703Z [Protected] PID 8084, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T00:24:40.817Z [Protected] PID 62880, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T00:24:40.828Z [Protected] PID 63216, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T00:24:53.349Z [Protected] PID 62648, Features 0000003000000106, C:\Program Files\Microsoft Office\Office15\msoia.exe
2016-12-16T00:25:50.894Z [Protected] PID 62116, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T00:25:50.972Z [Protected] PID 61908, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T00:26:52.231Z [Protected] PID 62780, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T00:27:04.133Z [Protected] PID 62484, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T00:27:39.139Z [Protected] PID 63388, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-16T00:28:06.704Z [Protected] PID 56708, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-16T00:28:06.976Z [Protected] PID 57960, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-16T00:28:32.791Z [Protected] PID 60556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:33:32.445Z [Protected] PID 62112, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:36:18.955Z [Protected] PID 62480, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T00:36:18.965Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216053618
2016-12-16T00:38:32.447Z [Protected] PID 53348, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:43:32.417Z [Protected] PID 62832, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:48:32.439Z [Protected] PID 57036, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:53:32.436Z [Protected] PID 62780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:57:00.212Z [Protected] PID 61896, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T00:57:00.552Z [Protected] PID 63200, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T00:57:00.572Z [Protected] PID 63080, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T00:57:00.631Z [Protected] PID 61460, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T00:57:21.322Z [Protected] PID 61744, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T00:57:25.960Z [Protected] PID 63204, Features 000000300000010A, C:\Windows\System32\svchost.exe
2016-12-16T00:57:27.886Z [Protected] PID 62364, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T00:57:43.905Z [Protected] PID 59936, Features 000000300000010A, C:\Windows\System32\raserver.exe
2016-12-16T00:58:32.435Z [Protected] PID 5988, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T00:59:00.156Z [Protected] PID 59388, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T01:03:32.430Z [Protected] PID 62400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:06:19.029Z [Protected] PID 63088, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T01:06:19.058Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216060618
2016-12-16T01:08:32.433Z [Protected] PID 61004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:08:45.295Z [Protected] PID 62672, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T01:08:47.502Z [Protected] PID 57084, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T01:08:47.838Z [Protected] PID 60240, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T01:08:48.383Z [Protected] PID 62656, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-16T01:08:49.764Z [Protected] PID 62696, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T01:13:11.621Z [Protected] PID 63132, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T01:13:32.441Z [Protected] PID 61732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:18:32.435Z [Protected] PID 61916, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:20:31.126Z [Protected] PID 63112, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T01:20:31.615Z [Protected] PID 62668, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-16T01:20:31.932Z [Protected] PID 62208, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T01:23:00.075Z [Protected] PID 63176, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T01:23:00.828Z [Protected] PID 63028, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T01:23:32.469Z [Protected] PID 46356, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:24:41.104Z [Protected] PID 38992, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T01:24:41.116Z [Protected] PID 61660, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T01:24:41.364Z [Protected] PID 62248, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T01:24:41.375Z [Protected] PID 53348, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T01:27:04.432Z [Protected] PID 63424, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T01:28:32.418Z [Protected] PID 63376, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:33:32.432Z [Protected] PID 62492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:36:19.124Z [Protected] PID 62884, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T01:36:19.150Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216063619
2016-12-16T01:38:32.434Z [Protected] PID 61740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:41:00.076Z [Protected] PID 62336, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T01:41:00.783Z [Protected] PID 2600, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-16T01:43:32.429Z [Protected] PID 54652, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:47:26.897Z [Protected] PID 56820, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:48:32.343Z [Protected] PID 63148, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:53:32.436Z [Protected] PID 58352, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:57:00.073Z [Protected] PID 63432, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T01:57:00.301Z [Protected] PID 62620, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T01:57:00.314Z [Protected] PID 63444, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T01:57:00.385Z [Protected] PID 63288, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T01:58:32.440Z [Protected] PID 63400, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T01:59:00.123Z [Protected] PID 60552, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T02:03:32.440Z [Protected] PID 61536, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:04:51.752Z [Protected] PID 56708, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T02:06:19.223Z [Protected] PID 63192, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T02:06:19.249Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216070619
2016-12-16T02:07:05.273Z [Protected] PID 62792, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T02:07:05.876Z [Protected] PID 61632, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-16T02:08:32.433Z [Protected] PID 62660, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:10:18.315Z [Protected] PID 62476, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T02:10:18.327Z [Protected] PID 62396, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T02:13:33.215Z [Protected] PID 63456, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:16:27.961Z [Protected] PID 61740, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T02:18:32.436Z [Protected] PID 62972, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:23:00.234Z [Protected] PID 57084, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T02:23:01.599Z [Protected] PID 55408, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T02:23:02.098Z [Protected] PID 62768, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T02:23:32.509Z [Protected] PID 63332, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:24:41.583Z [Protected] PID 63096, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T02:24:41.595Z [Protected] PID 62376, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T02:24:41.730Z [Protected] PID 61860, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T02:24:41.741Z [Protected] PID 60044, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T02:27:05.885Z [Protected] PID 62252, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T02:28:32.428Z [Protected] PID 8084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:33:32.436Z [Protected] PID 63044, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:36:19.364Z [Protected] PID 62920, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T02:36:19.390Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216073619
2016-12-16T02:38:32.442Z [Protected] PID 62668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:39:50.910Z [Protected] PID 62864, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T02:39:53.543Z [Protected] PID 62512, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-16T02:39:54.112Z [Protected] PID 62776, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T02:39:54.504Z [Protected] PID 62752, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T02:39:54.741Z [Protected] PID 62168, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-16T02:39:55.930Z [Protected] PID 30840, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T02:43:32.438Z [Protected] PID 62488, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:48:32.434Z [Protected] PID 57712, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:53:32.433Z [Protected] PID 63260, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:56:25.495Z [Protected] PID 54324, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T02:57:00.079Z [Protected] PID 62812, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T02:57:00.311Z [Protected] PID 63324, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T02:57:00.324Z [Protected] PID 62120, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T02:57:00.410Z [Protected] PID 62940, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T02:58:32.441Z [Protected] PID 57048, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T02:59:00.221Z [Protected] PID 63336, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T03:03:32.455Z [Protected] PID 62384, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:04:28.963Z [Protected] PID 63204, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T03:06:19.460Z [Protected] PID 2644, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T03:06:19.476Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216080619
2016-12-16T03:08:32.448Z [Protected] PID 61920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:13:32.431Z [Protected] PID 62744, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:18:32.454Z [Protected] PID 62528, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:23:00.105Z [Protected] PID 62692, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T03:23:00.777Z [Protected] PID 62988, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T03:23:01.382Z [Protected] PID 61692, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T03:23:32.448Z [Protected] PID 61948, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:24:41.869Z [Protected] PID 56656, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T03:24:41.880Z [Protected] PID 63376, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T03:24:42.009Z [Protected] PID 62396, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T03:24:42.020Z [Protected] PID 58864, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T03:27:04.198Z [Protected] PID 59936, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T03:28:32.451Z [Protected] PID 63272, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:33:32.444Z [Protected] PID 62632, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:36:19.537Z [Protected] PID 62072, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T03:36:19.563Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216083619
2016-12-16T03:38:32.440Z [Protected] PID 61780, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:41:00.082Z [Protected] PID 62656, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T03:41:00.780Z [Protected] PID 62796, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-16T03:43:32.442Z [Protected] PID 62380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:48:32.432Z [Protected] PID 27920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:53:32.442Z [Protected] PID 62796, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:55:03.079Z [Protected] PID 63484, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T03:55:03.305Z [Protected] PID 61424, Features 0000003000000106, C:\Program Files\Common Files\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2016-12-16T03:55:03.864Z [Protected] PID 63184, Features 000000300000010E, C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2016-12-16T03:57:00.096Z [Protected] PID 3100, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T03:57:00.109Z [Protected] PID 63052, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T03:57:00.180Z [Protected] PID 62716, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T03:58:32.443Z [Protected] PID 63100, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T03:59:00.109Z [Protected] PID 62756, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T03:59:31.485Z [Protected] PID 63448, Features 000000300000010E, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T04:03:32.434Z [Protected] PID 63380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:03:43.118Z [Protected] PID 62368, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T04:05:57.872Z [Protected] PID 60436, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T04:06:19.625Z [Protected] PID 63096, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T04:06:19.651Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216090619
2016-12-16T04:08:32.440Z [Protected] PID 62600, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:13:32.434Z [Protected] PID 63236, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:13:57.420Z [Protected] PID 62780, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T04:13:59.091Z [Protected] PID 58384, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-16T04:13:59.135Z [Protected] PID 53960, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T04:13:59.202Z [Protected] PID 63372, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T04:14:00.390Z [Protected] PID 62496, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-16T04:14:00.533Z [Protected] PID 59332, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T04:18:32.441Z [Protected] PID 63188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:23:00.069Z [Protected] PID 63384, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T04:23:00.737Z [Protected] PID 62796, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T04:23:01.244Z [Protected] PID 62756, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T04:23:32.512Z [Protected] PID 61692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:24:42.164Z [Protected] PID 62444, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T04:24:42.176Z [Protected] PID 57252, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T04:24:42.272Z [Protected] PID 62912, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T04:24:42.284Z [Protected] PID 63456, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T04:27:04.156Z [Protected] PID 63408, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T04:27:35.981Z [Protected] PID 2268, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\decoded\savxp\crt\avremovew.exe
2016-12-16T04:28:02.176Z [Protected] PID 60988, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-16T04:28:02.405Z [Protected] PID 63448, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe
2016-12-16T04:28:32.803Z [Protected] PID 63204, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:33:32.430Z [Protected] PID 62696, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:36:19.787Z [Protected] PID 63344, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T04:36:19.814Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216093619
2016-12-16T04:38:27.891Z [Protected] PID 62256, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T04:38:32.449Z [Protected] PID 63436, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:43:32.439Z [Protected] PID 60448, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:48:32.425Z [Protected] PID 61860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:49:07.243Z [Protected] PID 60524, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T04:49:07.266Z [Protected] PID 61724, Features 000000300000010A, C:\Windows\System32\compattel\DiagTrackRunner.exe
2016-12-16T04:49:08.196Z [Protected] PID 63244, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T04:49:08.209Z [Protected] PID 54732, Features 000000300000010A, C:\Windows\System32\CompatTelRunner.exe
2016-12-16T04:49:08.284Z [Protected] PID 58268, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-16T04:49:13.106Z [Protected] PID 63404, Features 000000300000010A, C:\Windows\System32\sppsvc.exe
2016-12-16T04:49:14.429Z [Protected] PID 63100, Features 0000003000000102, C:\Windows\System32\DeviceDisplayObjectProvider.exe
2016-12-16T04:49:30.339Z [Protected] PID 63176, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T04:52:39.042Z [Protected] PID 54652, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T04:53:30.426Z [Protected] PID 63360, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-16T04:53:30.991Z [Protected] PID 63304, Features 0000003000000102, C:\Windows\System32\CompatTelRunner.exe
2016-12-16T04:53:32.686Z [Protected] PID 61380, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:57:00.333Z [Protected] PID 56316, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T04:57:01.232Z [Protected] PID 62912, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T04:57:01.246Z [Protected] PID 63144, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T04:57:01.321Z [Protected] PID 60972, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T04:58:32.441Z [Protected] PID 33668, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T04:59:00.282Z [Protected] PID 59176, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T04:59:54.133Z [Protected] PID 60268, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T05:03:32.672Z [Protected] PID 63064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:06:20.006Z [Protected] PID 62340, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T05:06:20.032Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216100619
2016-12-16T05:06:54.444Z [Protected] PID 63428, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T05:08:32.437Z [Protected] PID 63452, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:10:38.685Z [Protected] PID 56820, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T05:10:39.319Z [Protected] PID 61592, Features 0000003000000102, C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
2016-12-16T05:10:39.605Z [Protected] PID 62504, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T05:13:32.440Z [Protected] PID 10584, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:18:32.435Z [Protected] PID 60556, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:23:00.163Z [Protected] PID 63436, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T05:23:01.077Z [Protected] PID 62516, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T05:23:02.748Z [Protected] PID 46356, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T05:23:32.435Z [Protected] PID 62540, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:24:42.557Z [Protected] PID 62920, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T05:24:42.570Z [Protected] PID 61072, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T05:24:42.868Z [Protected] PID 58020, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T05:24:42.879Z [Protected] PID 62448, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T05:27:05.342Z [Protected] PID 63324, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T05:28:32.431Z [Protected] PID 62188, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:33:32.422Z [Protected] PID 62908, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:36:20.095Z [Protected] PID 61888, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T05:36:20.121Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216103620
2016-12-16T05:37:05.271Z [Protected] PID 60556, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T05:37:06.025Z [Protected] PID 61960, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-16T05:38:32.434Z [Protected] PID 60524, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:41:00.335Z [Protected] PID 2644, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-16T05:43:32.436Z [Protected] PID 61216, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:48:32.480Z [Protected] PID 61740, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:50:31.471Z [Protected] PID 62952, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T05:50:31.485Z [Protected] PID 62828, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T05:53:33.623Z [Protected] PID 62492, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:54:55.639Z [Protected] PID 62872, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T05:57:00.722Z [Protected] PID 63196, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T05:57:01.154Z [Protected] PID 62520, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T05:57:01.168Z [Protected] PID 2240, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T05:57:01.241Z [Protected] PID 60304, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T05:58:32.444Z [Protected] PID 62020, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T05:59:00.359Z [Protected] PID 60380, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T05:59:03.143Z [Protected] PID 62620, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T05:59:07.175Z [Protected] PID 62600, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T05:59:07.581Z [Protected] PID 58280, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-16T05:59:07.625Z [Protected] PID 63148, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-16T05:59:07.635Z [Protected] PID 55408, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T05:59:09.558Z [Protected] PID 62308, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T06:00:34.839Z [Protected] PID 62588, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T06:00:34.852Z [Protected] PID 62268, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T06:03:32.609Z [Protected] PID 62196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:06:20.291Z [Protected] PID 54652, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T06:06:20.317Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216110620
2016-12-16T06:08:32.436Z [Protected] PID 63152, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:12:34.818Z [Protected] PID 61340, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T06:13:32.438Z [Protected] PID 62196, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:14:42.070Z [Protected] PID 61776, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T06:14:42.206Z [Protected] PID 63048, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T06:15:30.503Z [Protected] PID 60168, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T06:17:26.773Z [Protected] PID 63172, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T06:17:26.848Z [Protected] PID 63120, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T06:18:32.430Z [Protected] PID 63360, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:20:34.912Z [Protected] PID 62368, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T06:20:34.924Z [Protected] PID 62708, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T06:23:00.278Z [Protected] PID 62320, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T06:23:02.078Z [Protected] PID 59712, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T06:23:32.532Z [Protected] PID 62324, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:24:04.605Z [Protected] PID 61340, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T06:24:43.087Z [Protected] PID 62420, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T06:24:43.098Z [Protected] PID 62688, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T06:24:43.210Z [Protected] PID 31844, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T06:24:43.232Z [Protected] PID 62396, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T06:27:05.849Z [Protected] PID 2612, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T06:28:32.432Z [Protected] PID 61860, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:33:32.434Z [Protected] PID 62732, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:34:07.355Z [Protected] PID 50672, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:34:07.484Z [Protected] PID 63232, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:36:20.432Z [Protected] PID 23632, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T06:36:20.458Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216113620
2016-12-16T06:38:32.440Z [Protected] PID 63004, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:43:32.783Z [Protected] PID 61544, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:48:32.433Z [Protected] PID 2276, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:49:53.208Z [Protected] PID 63304, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T06:53:32.434Z [Protected] PID 60628, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T06:57:00.033Z [Protected] PID 63252, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T06:57:00.328Z [Protected] PID 62752, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T06:57:00.342Z [Protected] PID 54460, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T06:57:00.411Z [Protected] PID 62420, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T06:59:00.177Z [Protected] PID 24728, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T06:59:32.352Z [Protected] PID 63120, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:04:32.390Z [Protected] PID 61920, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:06:20.409Z [Protected] PID 63304, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T07:06:20.421Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216120620
2016-12-16T07:08:32.423Z [Protected] PID 61852, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:10:36.995Z [Protected] PID 63196, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T07:10:37.006Z [Protected] PID 61860, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T07:13:33.095Z [Protected] PID 62240, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:14:30.478Z [Protected] PID 62764, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T07:17:27.679Z [Protected] PID 63128, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T07:17:27.780Z [Protected] PID 61216, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T07:18:32.447Z [Protected] PID 61640, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:23:00.090Z [Protected] PID 59388, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T07:23:01.365Z [Protected] PID 55444, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupdate.exe
2016-12-16T07:23:01.967Z [Protected] PID 62164, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T07:23:32.439Z [Protected] PID 63172, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:24:43.221Z [Protected] PID 63404, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T07:24:43.232Z [Protected] PID 54824, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
2016-12-16T07:24:43.328Z [Protected] PID 20596, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T07:24:43.339Z [Protected] PID 50672, Features 0000003000000106, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag_64.exe
2016-12-16T07:27:05.559Z [Protected] PID 14204, Features 0000003000000106, C:\ProgramData\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SophosUpdate.exe
2016-12-16T07:28:32.433Z [Protected] PID 53128, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:30:09.210Z [Protected] PID 63092, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T07:30:11.116Z [Protected] PID 61404, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T07:30:11.187Z [Protected] PID 62184, Features 0000003000000102, C:\Windows\System32\SearchFilterHost.exe
2016-12-16T07:30:11.279Z [Protected] PID 6316, Features 0000003000000102, C:\Windows\System32\PrintIsolationHost.exe
2016-12-16T07:30:11.955Z [Protected] PID 57052, Features 0000003000000102, C:\Windows\System32\dllhost.exe
2016-12-16T07:30:12.838Z [Protected] PID 62960, Features 0000003000000102, C:\Windows\System32\SearchProtocolHost.exe
2016-12-16T07:30:41.675Z [Protected] PID 62704, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T07:30:41.687Z [Protected] PID 62324, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T07:33:32.780Z [Protected] PID 62956, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:36:20.536Z [Protected] PID 62816, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T07:36:20.562Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216123620
2016-12-16T07:38:32.437Z [Protected] PID 62340, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:40:41.124Z [Protected] PID 62708, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T07:40:41.134Z [Protected] PID 61880, Features 0000003000000106, C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamapi.exe
2016-12-16T07:41:00.345Z [Protected] PID 62736, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T07:41:01.879Z [Protected] PID 62996, Features 0000003000000106, C:\Users\erichc\AppData\Local\Citrix\GoToMeeting\6039\g2mupload.exe
2016-12-16T07:43:32.528Z [Protected] PID 63064, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:43:49.336Z [Protected] PID 59260, Features 0000003000000102, C:\Windows\System32\wbem\WmiPrvSE.exe
2016-12-16T07:48:32.447Z [Protected] PID 61912, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:53:32.446Z [Protected] PID 11508, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:57:00.071Z [Protected] PID 7296, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T07:57:00.316Z [Protected] PID 58848, Features 0000003000000102, C:\Windows\System32\conhost.exe
2016-12-16T07:57:00.330Z [Protected] PID 63352, Features 0000003000000106, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T07:57:00.402Z [Protected] PID 62328, Features 000000300000010E, C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
2016-12-16T07:58:32.441Z [Protected] PID 63016, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T07:59:00.206Z [Protected] PID 62604, Features 0000003000000106, C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2016-12-16T08:00:00.072Z [Protected] PID 63336, Features 0000003000000102, C:\Windows\System32\taskeng.exe
2016-12-16T08:00:00.588Z [Protected] PID 61724, Features 0000003000000106, C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2016-12-16T08:03:32.433Z [Protected] PID 62844, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T08:06:20.679Z [Protected] PID 20500, Features 0000003000000106, C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
2016-12-16T08:06:20.705Z [VerifyPolicy] success, C:\ProgramData\HitmanPro.Alert\policy_20161216130620
2016-12-16T08:06:23.912Z [Protected] PID 60536, Features 000000300000010A, C:\Windows\System32\taskhost.exe
2016-12-16T08:08:32.484Z [Protected] PID 60692, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T08:13:32.491Z [Protected] PID 63416, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2016-12-16T08:18:32.433Z [Protected] PID 63084, Features 000000341FBFB106, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
This thread was automatically locked due to age.