187570073544ada10dff94724a1f76c2565232d0a2c0448ee18fcdbe204d3010

Analysis

max time kernel
91s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
08-09-2022 12:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll
Size

136KB
MD5

d3c9033085631f091c79ffe93e4521fc
SHA1

a153a63ae80f45a7639770bcc8e5bd92a43ff502
SHA256

187570073544ada10dff94724a1f76c2565232d0a2c0448ee18fcdbe204d3010
SHA512

2404bcd095bd5fa2b7ca4c0ad95ed808bef5344fb36e9aaefaa7fd968115ada6348188521f8b56fb92fc239d590006a0d6467971cd02b41b4c11287870d42fd1
SSDEEP

3072:usYXmPYG7NsZBkWs2ksvAT5JZrdRoTBf1P8aFA+:8OYG7kBRs2lY9JpdRoTBtEIZ

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

rundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exe

description	pid	process	target process
PID 928 wrote to memory of 4900	928	rundll32.exe	rundll32.exe
PID 928 wrote to memory of 4900	928	rundll32.exe	rundll32.exe
PID 928 wrote to memory of 4900	928	rundll32.exe	rundll32.exe
PID 4900 wrote to memory of 3372	4900	rundll32.exe	rundll32.exe
PID 4900 wrote to memory of 3372	4900	rundll32.exe	rundll32.exe
PID 4900 wrote to memory of 3372	4900	rundll32.exe	rundll32.exe
PID 3372 wrote to memory of 3284	3372	rundll32.exe	rundll32.exe
PID 3372 wrote to memory of 3284	3372	rundll32.exe	rundll32.exe
PID 3372 wrote to memory of 3284	3372	rundll32.exe	rundll32.exe
PID 3284 wrote to memory of 4392	3284	rundll32.exe	rundll32.exe
PID 3284 wrote to memory of 4392	3284	rundll32.exe	rundll32.exe
PID 3284 wrote to memory of 4392	3284	rundll32.exe	rundll32.exe
PID 4392 wrote to memory of 5056	4392	rundll32.exe	rundll32.exe
PID 4392 wrote to memory of 5056	4392	rundll32.exe	rundll32.exe
PID 4392 wrote to memory of 5056	4392	rundll32.exe	rundll32.exe
PID 5056 wrote to memory of 4304	5056	rundll32.exe	rundll32.exe
PID 5056 wrote to memory of 4304	5056	rundll32.exe	rundll32.exe
PID 5056 wrote to memory of 4304	5056	rundll32.exe	rundll32.exe
PID 4304 wrote to memory of 3644	4304	rundll32.exe	rundll32.exe
PID 4304 wrote to memory of 3644	4304	rundll32.exe	rundll32.exe
PID 4304 wrote to memory of 3644	4304	rundll32.exe	rundll32.exe
PID 3644 wrote to memory of 3168	3644	rundll32.exe	rundll32.exe
PID 3644 wrote to memory of 3168	3644	rundll32.exe	rundll32.exe
PID 3644 wrote to memory of 3168	3644	rundll32.exe	rundll32.exe
PID 3168 wrote to memory of 372	3168	rundll32.exe	rundll32.exe
PID 3168 wrote to memory of 372	3168	rundll32.exe	rundll32.exe
PID 3168 wrote to memory of 372	3168	rundll32.exe	rundll32.exe
PID 372 wrote to memory of 876	372	rundll32.exe	rundll32.exe
PID 372 wrote to memory of 876	372	rundll32.exe	rundll32.exe
PID 372 wrote to memory of 876	372	rundll32.exe	rundll32.exe
PID 876 wrote to memory of 4996	876	rundll32.exe	rundll32.exe
PID 876 wrote to memory of 4996	876	rundll32.exe	rundll32.exe
PID 876 wrote to memory of 4996	876	rundll32.exe	rundll32.exe
PID 4996 wrote to memory of 4984	4996	rundll32.exe	rundll32.exe
PID 4996 wrote to memory of 4984	4996	rundll32.exe	rundll32.exe
PID 4996 wrote to memory of 4984	4996	rundll32.exe	rundll32.exe
PID 4984 wrote to memory of 688	4984	rundll32.exe	rundll32.exe
PID 4984 wrote to memory of 688	4984	rundll32.exe	rundll32.exe
PID 4984 wrote to memory of 688	4984	rundll32.exe	rundll32.exe
PID 688 wrote to memory of 4952	688	rundll32.exe	rundll32.exe
PID 688 wrote to memory of 4952	688	rundll32.exe	rundll32.exe
PID 688 wrote to memory of 4952	688	rundll32.exe	rundll32.exe
PID 4952 wrote to memory of 4864	4952	rundll32.exe	rundll32.exe
PID 4952 wrote to memory of 4864	4952	rundll32.exe	rundll32.exe
PID 4952 wrote to memory of 4864	4952	rundll32.exe	rundll32.exe
PID 4864 wrote to memory of 4832	4864	rundll32.exe	rundll32.exe
PID 4864 wrote to memory of 4832	4864	rundll32.exe	rundll32.exe
PID 4864 wrote to memory of 4832	4864	rundll32.exe	rundll32.exe
PID 4832 wrote to memory of 1556	4832	rundll32.exe	rundll32.exe
PID 4832 wrote to memory of 1556	4832	rundll32.exe	rundll32.exe
PID 4832 wrote to memory of 1556	4832	rundll32.exe	rundll32.exe
PID 1556 wrote to memory of 4384	1556	rundll32.exe	rundll32.exe
PID 1556 wrote to memory of 4384	1556	rundll32.exe	rundll32.exe
PID 1556 wrote to memory of 4384	1556	rundll32.exe	rundll32.exe
PID 4384 wrote to memory of 1820	4384	rundll32.exe	rundll32.exe
PID 4384 wrote to memory of 1820	4384	rundll32.exe	rundll32.exe
PID 4384 wrote to memory of 1820	4384	rundll32.exe	rundll32.exe
PID 1820 wrote to memory of 2096	1820	rundll32.exe	rundll32.exe
PID 1820 wrote to memory of 2096	1820	rundll32.exe	rundll32.exe
PID 1820 wrote to memory of 2096	1820	rundll32.exe	rundll32.exe
PID 2096 wrote to memory of 2056	2096	rundll32.exe	rundll32.exe
PID 2096 wrote to memory of 2056	2096	rundll32.exe	rundll32.exe
PID 2096 wrote to memory of 2056	2096	rundll32.exe	rundll32.exe
PID 2056 wrote to memory of 3172	2056	rundll32.exe	rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:928
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4900
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3372
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3284
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4392
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:5056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        23⤵
        
        PID:3172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        24⤵
        
        PID:2464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        25⤵
        
        PID:4992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        26⤵
        
        PID:1064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        27⤵
        
        PID:644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        28⤵
        
        PID:3188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        29⤵
        
        PID:424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        30⤵
        
        PID:364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        31⤵
        
        PID:4640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        32⤵
        
        PID:996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        33⤵
        
        PID:1568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        34⤵
        
        PID:3632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        35⤵
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        36⤵
        
        PID:556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        37⤵
        
        PID:4780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        38⤵
        
        PID:2132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        39⤵
        
        PID:4200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        40⤵
        
        PID:3828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        41⤵
        
        PID:1112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        42⤵
        
        PID:1228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        43⤵
        
        PID:3972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        44⤵
        
        PID:3192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        45⤵
        
        PID:4376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        46⤵
        
        PID:4248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        47⤵
        
        PID:3144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        48⤵
        
        PID:3140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        49⤵
        
        PID:680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        50⤵
        
        PID:2380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        51⤵
        
        PID:5004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        52⤵
        
        PID:1728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        53⤵
        
        PID:1008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        54⤵
        
        PID:4784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        55⤵
        
        PID:5012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        56⤵
        
        PID:1208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        57⤵
        
        PID:2576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        58⤵
        
        PID:2940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        59⤵
        
        PID:4532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        60⤵
        
        PID:3656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        61⤵
        
        PID:4976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        62⤵
        
        PID:2332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        63⤵
        
        PID:3708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        64⤵
        
        PID:2452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        65⤵
        
        PID:2980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        66⤵
        
        PID:3788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        67⤵
        
        PID:3312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        68⤵
        
        PID:4520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        69⤵
        
        PID:4396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        70⤵
        
        PID:764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        71⤵
        
        PID:1436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        72⤵
        
        PID:3388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        73⤵
        
        PID:4408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        74⤵
        
        PID:2240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        75⤵
        
        PID:4704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        76⤵
        
        PID:1276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        77⤵
        
        PID:256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        78⤵
        
        PID:4544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        79⤵
        
        PID:5112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        80⤵
        
        PID:3952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        81⤵
        
        PID:4092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        82⤵
        
        PID:824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        83⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        84⤵
        
        PID:4260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        85⤵
        
        PID:3760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        86⤵
        
        PID:2960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        87⤵
        
        PID:1188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        88⤵
        
        PID:4840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        89⤵
        
        PID:2480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        90⤵
        
        PID:2548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        91⤵
        
        PID:3020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        92⤵
        
        PID:3964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        93⤵
        
        PID:1888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        94⤵
        
        PID:4428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        95⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        96⤵
        
        PID:3844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        97⤵
        
        PID:4416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        98⤵
        
        PID:4104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        99⤵
        
        PID:3876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        100⤵
        
        PID:2616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        101⤵
        
        PID:3492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        102⤵
        
        PID:4224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        103⤵
        
        PID:3588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        104⤵
        
        PID:4464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        105⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        106⤵
        
        PID:5140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        107⤵
        
        PID:5156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        108⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        109⤵
        
        PID:5188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        110⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        111⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        112⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        113⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        114⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        115⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        116⤵
        
        PID:5296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        117⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        118⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        119⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        120⤵
        
        PID:5360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        121⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        122⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        123⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        124⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        125⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        126⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        127⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        128⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        129⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        130⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        131⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        132⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        133⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        134⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        135⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        136⤵
        
        PID:5608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        137⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        138⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        139⤵
        
        PID:5652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        140⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        141⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        142⤵
        
        PID:5692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        143⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        144⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        145⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        146⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        147⤵
        
        PID:5772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        148⤵
        
        PID:5788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        149⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        150⤵
        
        PID:5816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        151⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        152⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        153⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        154⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        155⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        156⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        157⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        158⤵
        
        PID:5940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        159⤵
        
        PID:5956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        160⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        161⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        162⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        163⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        164⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        165⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        166⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        167⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        168⤵
        
        PID:6096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        169⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        170⤵
        
        PID:6124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        171⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        172⤵
        
        PID:2028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        173⤵
        
        PID:396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        174⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        175⤵
        
        PID:376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        176⤵
        
        PID:4932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        177⤵
        
        PID:4048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        178⤵
        
        PID:1244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        179⤵
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        180⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        181⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        182⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        183⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        184⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        185⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        186⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        187⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        188⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        189⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        190⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        191⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        192⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        193⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        194⤵
        
        PID:6360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        195⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        196⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        197⤵
        
        PID:6408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        198⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        199⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        200⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        201⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        202⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        203⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        204⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        205⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        206⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        207⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        208⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        209⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        210⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        211⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        212⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        213⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        214⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        215⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        216⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        217⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        218⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        219⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        220⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        221⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        222⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        223⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        224⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        225⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        226⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        227⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        228⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        229⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        230⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        231⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        232⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        233⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        234⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        235⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        236⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        237⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        238⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        239⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        240⤵
        
        PID:7064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        241⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        242⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        243⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        244⤵
        
        PID:7128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        245⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        246⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        247⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        248⤵
        
        PID:7192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        249⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        250⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        251⤵
        
        PID:7236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        252⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        253⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        254⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        255⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        256⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        257⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        258⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        259⤵
        
        PID:7356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        260⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        261⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        262⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        263⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        264⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        265⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        266⤵
        
        PID:7468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        267⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        268⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        269⤵
        
        PID:7512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        270⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        271⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        272⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        273⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        274⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        275⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        276⤵
        
        PID:7620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        277⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        278⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        279⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        280⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        281⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        282⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        283⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        284⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        285⤵
        
        PID:7756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        286⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        287⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        288⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        289⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        290⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        291⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        292⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        293⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        294⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        295⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        296⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        297⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        298⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        299⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        300⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        301⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        302⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        303⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        304⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        305⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        306⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        307⤵
        
        PID:8084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        308⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        309⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        310⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        311⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        312⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        313⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        314⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        315⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        316⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        317⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        318⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        319⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        320⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        321⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        322⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        323⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        324⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        325⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        326⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        327⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        328⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        329⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        330⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        331⤵
        
        PID:8456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        332⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        333⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        334⤵
        
        PID:8508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        335⤵
        
        PID:8524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        336⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        337⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        338⤵
        
        PID:8568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        339⤵
        
        PID:8580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        340⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        341⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        342⤵
        
        PID:8628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        343⤵
        
        PID:8648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        344⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        345⤵
        
        PID:8676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        346⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        347⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        348⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        349⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        350⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        351⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        352⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        353⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        354⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        355⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        356⤵
        
        PID:8852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        357⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        358⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        359⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        360⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        361⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        362⤵
        
        PID:8944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        363⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        364⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        365⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        366⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        367⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        368⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        369⤵
        
        PID:9052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        370⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        371⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        372⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        373⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        374⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        375⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        376⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        377⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        378⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        379⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        380⤵
        
        PID:9220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        381⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        382⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        383⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        384⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        385⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        386⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        387⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        388⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        389⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        390⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        391⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        392⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        393⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        394⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        395⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        396⤵
        
        PID:9464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        397⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        398⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        399⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        400⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        401⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        402⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        403⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        404⤵
        
        PID:9592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        405⤵
        
        PID:9604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        406⤵
        
        PID:9620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        407⤵
        
        PID:9632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        408⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        409⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        410⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        411⤵
        
        PID:9692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        412⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        413⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        414⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        415⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        416⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        417⤵
        
        PID:9776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        418⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        419⤵
        
        PID:9808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        420⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        421⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        422⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        423⤵
        
        PID:9868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        424⤵
        
        PID:9880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        425⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        426⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        427⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        428⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        429⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        430⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        431⤵
        
        PID:9988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        432⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        433⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        434⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        435⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        436⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        437⤵
        
        PID:10080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        438⤵
        
        PID:10096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        439⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        440⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        441⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        442⤵
        
        PID:10156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        443⤵
        
        PID:10172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        444⤵
        
        PID:10188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        445⤵
        
        PID:10204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        446⤵
        
        PID:10220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        447⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        448⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        449⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        450⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        451⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        452⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        453⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        454⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        455⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        456⤵
        
        PID:10372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        457⤵
        
        PID:10384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        458⤵
        
        PID:10400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        459⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        460⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        461⤵
        
        PID:10448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        462⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        463⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        464⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        465⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        466⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        467⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        468⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        469⤵
        
        PID:10572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        470⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        471⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        472⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        473⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        474⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        475⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        476⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        477⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        478⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        479⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        480⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        481⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        482⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        483⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        484⤵
        
        PID:10808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        485⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        486⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        487⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        488⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        489⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        490⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        491⤵
        
        PID:10908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        492⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        493⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        494⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        495⤵
        
        PID:10976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        496⤵
        
        PID:10992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        497⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        498⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        499⤵
        
        PID:11036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        500⤵
        
        PID:11052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        501⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        502⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        503⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        504⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        505⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        506⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        507⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        508⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        509⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        510⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        511⤵
        
        PID:11216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        512⤵
        
        PID:11232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        513⤵
        
        PID:11248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        514⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        515⤵
        
        PID:11272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        516⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        517⤵
        
        PID:11304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        518⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        519⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        520⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        521⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        522⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        523⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        524⤵
        
        PID:11400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        525⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        526⤵
        
        PID:11432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        527⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        528⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        529⤵
        
        PID:11476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        530⤵
        
        PID:11492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        531⤵
        
        PID:11508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        532⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        533⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        534⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        535⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        536⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        537⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        538⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        539⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        540⤵
        
        PID:11644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        541⤵
        
        PID:11660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        542⤵
        
        PID:11676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        543⤵
        
        PID:11692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        544⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        545⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        546⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        547⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        548⤵
        
        PID:11768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        549⤵
        
        PID:11784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        550⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        551⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        552⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        553⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        554⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        555⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        556⤵
        
        PID:11884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        557⤵
        
        PID:11900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        558⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        559⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        560⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        561⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        562⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        563⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        564⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        565⤵
        
        PID:12024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        566⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        567⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        568⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        569⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        570⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        571⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        572⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        573⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        574⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        575⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        576⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        577⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        578⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        579⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        580⤵
        
        PID:12248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        581⤵
        
        PID:12264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        582⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        583⤵
        
        PID:2724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        584⤵
        
        PID:12292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        585⤵
        
        PID:12308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        586⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        587⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        588⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        589⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        590⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        591⤵
        
        PID:12396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        592⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        593⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        594⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        595⤵
        
        PID:12456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        596⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        597⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        598⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        599⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        600⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        601⤵
        
        PID:12548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        602⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        603⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        604⤵
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        605⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        606⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        607⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        608⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        609⤵
        
        PID:12664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        610⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        611⤵
        
        PID:12696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        612⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        613⤵
        
        PID:12724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        614⤵
        
        PID:12740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        615⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        616⤵
        
        PID:12772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        617⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        618⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        619⤵
        
        PID:12820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        620⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        621⤵
        
        PID:12852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        622⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        623⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        624⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        625⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        626⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        627⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        628⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        629⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        630⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        631⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        632⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        633⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        634⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        635⤵
        
        PID:13072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        636⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        637⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        638⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        639⤵
        
        PID:13140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        640⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        641⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        642⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        643⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        644⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        645⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        646⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        647⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        648⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        649⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        650⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        651⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        652⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        653⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        654⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        655⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        656⤵
        
        PID:13404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        657⤵
        
        PID:13416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        658⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        659⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        660⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        661⤵
        
        PID:13480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        662⤵
        
        PID:13492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        663⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        664⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        665⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        666⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        667⤵
        
        PID:13576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        668⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        669⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        670⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        671⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        672⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        673⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        674⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        675⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        676⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        677⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        678⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        679⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        680⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        681⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        682⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        683⤵
        
        PID:13816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        684⤵
        
        PID:13832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        685⤵
        
        PID:13844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        686⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        687⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        688⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        689⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        690⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        691⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        692⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        693⤵
        
        PID:13960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        694⤵
        
        PID:13972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        695⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        696⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        697⤵
        
        PID:14024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        698⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        699⤵
        
        PID:14048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        700⤵
        
        PID:14064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        701⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        702⤵
        
        PID:14096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        703⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        704⤵
        
        PID:14128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        705⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        706⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        707⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        708⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        709⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        710⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        711⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        712⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        713⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        714⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        715⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        716⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        717⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        718⤵
        
        PID:4476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        719⤵
        
        PID:3868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        720⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        721⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        722⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        723⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        724⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        725⤵
        
        PID:14424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        726⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        727⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        728⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        729⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        730⤵
        
        PID:14504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        731⤵
        
        PID:14516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        732⤵
        
        PID:14532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        733⤵
        
        PID:14544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        734⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        735⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        736⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        737⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        738⤵
        
        PID:14624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        739⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        740⤵
        
        PID:14652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        741⤵
        
        PID:14668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        742⤵
        
        PID:14684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        743⤵
        
        PID:14696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        744⤵
        
        PID:14712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        745⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        746⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        747⤵
        
        PID:14760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        748⤵
        
        PID:14772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        749⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        750⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        751⤵
        
        PID:14820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        752⤵
        
        PID:14836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        753⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        754⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        755⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        756⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        757⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        758⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        759⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        760⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        761⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        762⤵
        
        PID:14980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        763⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        764⤵
        
        PID:15012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        765⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        766⤵
        
        PID:15040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        767⤵
        
        PID:15056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        768⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        769⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        770⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        771⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        772⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        773⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        774⤵
        
        PID:15176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        775⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        776⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        777⤵
        
        PID:15224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        778⤵
        
        PID:15236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        779⤵
        
        PID:15252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        780⤵
        
        PID:15268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        781⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        782⤵
        
        PID:15300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        783⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        784⤵
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        785⤵
        
        PID:15344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        786⤵
        
        PID:15356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        787⤵
        
        PID:4052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        788⤵
        
        PID:3684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        789⤵
        
        PID:3216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        790⤵
        
        PID:4568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        791⤵
        
        PID:4388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        792⤵
        
        PID:15376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        793⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        794⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        795⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        796⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        797⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        798⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        799⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        800⤵
        
        PID:15496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        801⤵
        
        PID:15512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        802⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        803⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        804⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        805⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        806⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        807⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        808⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        809⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        810⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        811⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        812⤵
        
        PID:15684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        813⤵
        
        PID:15700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        814⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        815⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        816⤵
        
        PID:15748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        817⤵
        
        PID:15764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        818⤵
        
        PID:15780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        819⤵
        
        PID:15796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        820⤵
        
        PID:15812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        821⤵
        
        PID:15824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        822⤵
        
        PID:15840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        823⤵
        
        PID:15856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        824⤵
        
        PID:15872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        825⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        826⤵
        
        PID:15904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        827⤵
        
        PID:15920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        828⤵
        
        PID:15936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        829⤵
        
        PID:15952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        830⤵
        
        PID:15968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        831⤵
        
        PID:15984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        832⤵
        
        PID:16000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        833⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        834⤵
        
        PID:16028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        835⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        836⤵
        
        PID:16060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        837⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        838⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        839⤵
        
        PID:16108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        840⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        841⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        842⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        843⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        844⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        845⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        846⤵
        
        PID:16208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        847⤵
        
        PID:16224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        848⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        849⤵
        
        PID:16252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        850⤵
        
        PID:16268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        851⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        852⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        853⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        854⤵
        
        PID:16372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        855⤵
        
        PID:1756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        856⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        857⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        858⤵
        
        PID:16420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        859⤵
        
        PID:16464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        860⤵
        
        PID:16516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        861⤵
        
        PID:16528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        862⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        863⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        864⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        865⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        866⤵
        
        PID:16612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        867⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        868⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        869⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        870⤵
        
        PID:16672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        871⤵
        
        PID:16688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        872⤵
        
        PID:16708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        873⤵
        
        PID:16720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        874⤵
        
        PID:16732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        875⤵
        
        PID:16748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        876⤵
        
        PID:16764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        877⤵
        
        PID:16780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        878⤵
        
        PID:16796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        879⤵
        
        PID:16808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        880⤵
        
        PID:16828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        881⤵
        
        PID:16840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        882⤵
        
        PID:16860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        883⤵
        
        PID:16876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1988-58-0x00000000008B0000-0x00000000008D2000-memory.dll,#1
        884⤵
        
        PID:16892

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/364-160-0x0000000000000000-mapping.dmp

Download
memory/372-140-0x0000000000000000-mapping.dmp

Download
memory/424-159-0x0000000000000000-mapping.dmp

Download
memory/556-166-0x0000000000000000-mapping.dmp

Download
memory/644-157-0x0000000000000000-mapping.dmp

Download
memory/680-179-0x0000000000000000-mapping.dmp

Download
memory/688-144-0x0000000000000000-mapping.dmp

Download
memory/876-141-0x0000000000000000-mapping.dmp

Download
memory/996-162-0x0000000000000000-mapping.dmp

Download
memory/1008-183-0x0000000000000000-mapping.dmp

Download
memory/1064-156-0x0000000000000000-mapping.dmp

Download
memory/1112-171-0x0000000000000000-mapping.dmp

Download
memory/1208-186-0x0000000000000000-mapping.dmp

Download
memory/1228-172-0x0000000000000000-mapping.dmp

Download
memory/1556-148-0x0000000000000000-mapping.dmp

Download
memory/1568-163-0x0000000000000000-mapping.dmp

Download
memory/1728-182-0x0000000000000000-mapping.dmp

Download
memory/1820-150-0x0000000000000000-mapping.dmp

Download
memory/2056-152-0x0000000000000000-mapping.dmp

Download
memory/2096-151-0x0000000000000000-mapping.dmp

Download
memory/2132-168-0x0000000000000000-mapping.dmp

Download
memory/2332-192-0x0000000000000000-mapping.dmp

Download
memory/2380-180-0x0000000000000000-mapping.dmp

Download
memory/2452-194-0x0000000000000000-mapping.dmp

Download
memory/2464-154-0x0000000000000000-mapping.dmp

Download
memory/2576-187-0x0000000000000000-mapping.dmp

Download
memory/2940-188-0x0000000000000000-mapping.dmp

Download
memory/2980-195-0x0000000000000000-mapping.dmp

Download
memory/3140-178-0x0000000000000000-mapping.dmp

Download
memory/3144-177-0x0000000000000000-mapping.dmp

Download
memory/3168-139-0x0000000000000000-mapping.dmp

Download
memory/3172-153-0x0000000000000000-mapping.dmp

Download
memory/3188-158-0x0000000000000000-mapping.dmp

Download
memory/3192-174-0x0000000000000000-mapping.dmp

Download
memory/3284-134-0x0000000000000000-mapping.dmp

Download
memory/3372-133-0x0000000000000000-mapping.dmp

Download
memory/3632-164-0x0000000000000000-mapping.dmp

Download
memory/3644-138-0x0000000000000000-mapping.dmp

Download
memory/3656-190-0x0000000000000000-mapping.dmp

Download
memory/3708-193-0x0000000000000000-mapping.dmp

Download
memory/3828-170-0x0000000000000000-mapping.dmp

Download
memory/3972-173-0x0000000000000000-mapping.dmp

Download
memory/4200-169-0x0000000000000000-mapping.dmp

Download
memory/4248-176-0x0000000000000000-mapping.dmp

Download
memory/4296-165-0x0000000000000000-mapping.dmp

Download
memory/4304-137-0x0000000000000000-mapping.dmp

Download
memory/4376-175-0x0000000000000000-mapping.dmp

Download
memory/4384-149-0x0000000000000000-mapping.dmp

Download
memory/4392-135-0x0000000000000000-mapping.dmp

Download
memory/4532-189-0x0000000000000000-mapping.dmp

Download
memory/4640-161-0x0000000000000000-mapping.dmp

Download
memory/4780-167-0x0000000000000000-mapping.dmp

Download
memory/4784-184-0x0000000000000000-mapping.dmp

Download
memory/4832-147-0x0000000000000000-mapping.dmp

Download
memory/4864-146-0x0000000000000000-mapping.dmp

Download
memory/4900-132-0x0000000000000000-mapping.dmp

Download
memory/4952-145-0x0000000000000000-mapping.dmp

Download
memory/4976-191-0x0000000000000000-mapping.dmp

Download
memory/4984-143-0x0000000000000000-mapping.dmp

Download
memory/4992-155-0x0000000000000000-mapping.dmp

Download
memory/4996-142-0x0000000000000000-mapping.dmp

Download
memory/5004-181-0x0000000000000000-mapping.dmp

Download
memory/5012-185-0x0000000000000000-mapping.dmp

Download
memory/5056-136-0x0000000000000000-mapping.dmp

Download