35dde4444b3186beee6bc7f38680c0e4887ed6613c7eb8d43d39cadd97245e8f

Analysis

max time kernel
91s
max time network
105s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
25/09/2022, 13:28

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll
Size

1.3MB
MD5

57a31f678129b41c674d41a08e02d6c5
SHA1

7361ec2e64a6e4b0db73f44f9a13e8d297304a07
SHA256

35dde4444b3186beee6bc7f38680c0e4887ed6613c7eb8d43d39cadd97245e8f
SHA512

300ac01b4394be7c2a6ecd2540967b2893f1964e1d86f3acc6caa0e22b1121f73443fef2173b74207b762aba1514cc4b1cd58cb7d14f1c8ed26ed29073f6b928
SSDEEP

1536:VMJ/9/Uom0t17zVWcnpTHG8+tLs8UaJpHVyeTxQL0OVE015:+5fV7Ots8VnceTlOVE0

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2240 wrote to memory of 3012	2240	rundll32.exe	79
PID 2240 wrote to memory of 3012	2240	rundll32.exe	79
PID 2240 wrote to memory of 3012	2240	rundll32.exe	79
PID 3012 wrote to memory of 3092	3012	rundll32.exe	80
PID 3012 wrote to memory of 3092	3012	rundll32.exe	80
PID 3012 wrote to memory of 3092	3012	rundll32.exe	80
PID 3092 wrote to memory of 4884	3092	rundll32.exe	81
PID 3092 wrote to memory of 4884	3092	rundll32.exe	81
PID 3092 wrote to memory of 4884	3092	rundll32.exe	81
PID 4884 wrote to memory of 2812	4884	rundll32.exe	82
PID 4884 wrote to memory of 2812	4884	rundll32.exe	82
PID 4884 wrote to memory of 2812	4884	rundll32.exe	82
PID 2812 wrote to memory of 3056	2812	rundll32.exe	83
PID 2812 wrote to memory of 3056	2812	rundll32.exe	83
PID 2812 wrote to memory of 3056	2812	rundll32.exe	83
PID 3056 wrote to memory of 3716	3056	rundll32.exe	84
PID 3056 wrote to memory of 3716	3056	rundll32.exe	84
PID 3056 wrote to memory of 3716	3056	rundll32.exe	84
PID 3716 wrote to memory of 1696	3716	rundll32.exe	85
PID 3716 wrote to memory of 1696	3716	rundll32.exe	85
PID 3716 wrote to memory of 1696	3716	rundll32.exe	85
PID 1696 wrote to memory of 4948	1696	rundll32.exe	86
PID 1696 wrote to memory of 4948	1696	rundll32.exe	86
PID 1696 wrote to memory of 4948	1696	rundll32.exe	86
PID 4948 wrote to memory of 4924	4948	rundll32.exe	87
PID 4948 wrote to memory of 4924	4948	rundll32.exe	87
PID 4948 wrote to memory of 4924	4948	rundll32.exe	87
PID 4924 wrote to memory of 4840	4924	rundll32.exe	88
PID 4924 wrote to memory of 4840	4924	rundll32.exe	88
PID 4924 wrote to memory of 4840	4924	rundll32.exe	88
PID 4840 wrote to memory of 4836	4840	rundll32.exe	89
PID 4840 wrote to memory of 4836	4840	rundll32.exe	89
PID 4840 wrote to memory of 4836	4840	rundll32.exe	89
PID 4836 wrote to memory of 1564	4836	rundll32.exe	90
PID 4836 wrote to memory of 1564	4836	rundll32.exe	90
PID 4836 wrote to memory of 1564	4836	rundll32.exe	90
PID 1564 wrote to memory of 2356	1564	rundll32.exe	91
PID 1564 wrote to memory of 2356	1564	rundll32.exe	91
PID 1564 wrote to memory of 2356	1564	rundll32.exe	91
PID 2356 wrote to memory of 1836	2356	rundll32.exe	92
PID 2356 wrote to memory of 1836	2356	rundll32.exe	92
PID 2356 wrote to memory of 1836	2356	rundll32.exe	92
PID 1836 wrote to memory of 5060	1836	rundll32.exe	93
PID 1836 wrote to memory of 5060	1836	rundll32.exe	93
PID 1836 wrote to memory of 5060	1836	rundll32.exe	93
PID 5060 wrote to memory of 1516	5060	rundll32.exe	94
PID 5060 wrote to memory of 1516	5060	rundll32.exe	94
PID 5060 wrote to memory of 1516	5060	rundll32.exe	94
PID 1516 wrote to memory of 1064	1516	rundll32.exe	95
PID 1516 wrote to memory of 1064	1516	rundll32.exe	95
PID 1516 wrote to memory of 1064	1516	rundll32.exe	95
PID 1064 wrote to memory of 3972	1064	rundll32.exe	96
PID 1064 wrote to memory of 3972	1064	rundll32.exe	96
PID 1064 wrote to memory of 3972	1064	rundll32.exe	96
PID 3972 wrote to memory of 4172	3972	rundll32.exe	97
PID 3972 wrote to memory of 4172	3972	rundll32.exe	97
PID 3972 wrote to memory of 4172	3972	rundll32.exe	97
PID 4172 wrote to memory of 3600	4172	rundll32.exe	98
PID 4172 wrote to memory of 3600	4172	rundll32.exe	98
PID 4172 wrote to memory of 3600	4172	rundll32.exe	98
PID 3600 wrote to memory of 1840	3600	rundll32.exe	99
PID 3600 wrote to memory of 1840	3600	rundll32.exe	99
PID 3600 wrote to memory of 1840	3600	rundll32.exe	99
PID 1840 wrote to memory of 1888	1840	rundll32.exe	100

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2240
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:3012
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3092
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4884
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:2812
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:1696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:1564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:2356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:1836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:5060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:3972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:4172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:1840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        23⤵
        
        PID:1888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        24⤵
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        25⤵
        
        PID:260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        26⤵
        
        PID:216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        27⤵
        
        PID:224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        28⤵
        
        PID:384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        29⤵
        
        PID:3636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        30⤵
        
        PID:804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        31⤵
        
        PID:608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        32⤵
        
        PID:2588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        33⤵
        
        PID:4520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        34⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        35⤵
        
        PID:3416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        36⤵
        
        PID:4180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        37⤵
        
        PID:4512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        38⤵
        
        PID:4560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        39⤵
        
        PID:1776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        40⤵
        
        PID:3860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        41⤵
        
        PID:1712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        42⤵
        
        PID:664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        43⤵
        
        PID:1188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        44⤵
        
        PID:2788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        45⤵
        
        PID:2160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        46⤵
        
        PID:2008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        47⤵
        
        PID:3128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        48⤵
        
        PID:2876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        49⤵
        
        PID:4168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        50⤵
        
        PID:4996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        51⤵
        
        PID:3852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        52⤵
        
        PID:1240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        53⤵
        
        PID:4852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        54⤵
        
        PID:3316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        55⤵
        
        PID:4808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        56⤵
        
        PID:4244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        57⤵
        
        PID:3648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        58⤵
        
        PID:60
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        59⤵
        
        PID:3748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        60⤵
        
        PID:1400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        61⤵
        
        PID:4268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        62⤵
        
        PID:3512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        63⤵
        
        PID:2860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        64⤵
        
        PID:2360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        65⤵
        
        PID:4644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        66⤵
        
        PID:1108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        67⤵
        
        PID:1456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        68⤵
        
        PID:1780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        69⤵
        
        PID:3140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        70⤵
        
        PID:1868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        71⤵
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        72⤵
        
        PID:3076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        73⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        74⤵
        
        PID:1396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        75⤵
        
        PID:1084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        76⤵
        
        PID:788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        77⤵
        
        PID:4196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        78⤵
        
        PID:4664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        79⤵
        
        PID:3912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        80⤵
        
        PID:4360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        81⤵
        
        PID:1788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        82⤵
        
        PID:2212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        83⤵
        
        PID:3356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        84⤵
        
        PID:3296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        85⤵
        
        PID:3692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        86⤵
        
        PID:2500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        87⤵
        
        PID:2932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        88⤵
        
        PID:3112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        89⤵
        
        PID:3616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        90⤵
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        91⤵
        
        PID:3632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        92⤵
        
        PID:3384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        93⤵
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        94⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        95⤵
        
        PID:4656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        96⤵
        
        PID:604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        97⤵
        
        PID:1820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        98⤵
        
        PID:5100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        99⤵
        
        PID:4412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        100⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        101⤵
        
        PID:752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        102⤵
        
        PID:2276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        103⤵
        
        PID:3952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        104⤵
        
        PID:5088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        105⤵
        
        PID:1528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        106⤵
        
        PID:4232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        107⤵
        
        PID:4136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        108⤵
        
        PID:4012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        109⤵
        
        PID:436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        110⤵
        
        PID:1380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        111⤵
        
        PID:1000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        112⤵
        
        PID:2828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        113⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        114⤵
        
        PID:4216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        115⤵
        
        PID:2288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        116⤵
        
        PID:2432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        117⤵
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        118⤵
        
        PID:1800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        119⤵
        
        PID:4732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        120⤵
        
        PID:1876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        121⤵
        
        PID:3400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        122⤵
        
        PID:3124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        123⤵
        
        PID:1936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        124⤵
        
        PID:852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        125⤵
        
        PID:4428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        126⤵
        
        PID:3480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        127⤵
        
        PID:2468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        128⤵
        
        PID:5124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        129⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        130⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        131⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        132⤵
        
        PID:5192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        133⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        134⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        135⤵
        
        PID:5236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        136⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        137⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        138⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        139⤵
        
        PID:5348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        140⤵
        
        PID:5360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        141⤵
        
        PID:5380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        142⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        143⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        144⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        145⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        146⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        147⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        148⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        149⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        150⤵
        
        PID:5608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        151⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        152⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        153⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        154⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        155⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        156⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        157⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        158⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        159⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        160⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        161⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        162⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        163⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        164⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        165⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        166⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        167⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        168⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        169⤵
        
        PID:5912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        170⤵
        
        PID:5924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        171⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        172⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        173⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        174⤵
        
        PID:5972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        175⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        176⤵
        
        PID:5996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        177⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        178⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        179⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        180⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        181⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        182⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        183⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        184⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        185⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        186⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        187⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        188⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        189⤵
        
        PID:6188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        190⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        191⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        192⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        193⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        194⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        195⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        196⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        197⤵
        
        PID:6304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        198⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        199⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        200⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        201⤵
        
        PID:6364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        202⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        203⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        204⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        205⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        206⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        207⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        208⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        209⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        210⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        211⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        212⤵
        
        PID:6516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        213⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        214⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        215⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        216⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        217⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        218⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        219⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        220⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        221⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        222⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        223⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        224⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        225⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        226⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        227⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        228⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        229⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        230⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        231⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        232⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        233⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        234⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        235⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        236⤵
        
        PID:6856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        237⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        238⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        239⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        240⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        241⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        242⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        243⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        244⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        245⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        246⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        247⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        248⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        249⤵
        
        PID:7064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        250⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        251⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        252⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        253⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        254⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        255⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        256⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        257⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        258⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        259⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        260⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        261⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        262⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        263⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        264⤵
        
        PID:7268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        265⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        266⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        267⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        268⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        269⤵
        
        PID:7340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        270⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        271⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        272⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        273⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        274⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        275⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        276⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        277⤵
        
        PID:7448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        278⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        279⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        280⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        281⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        282⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        283⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        284⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        285⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        286⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        287⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        288⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        289⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        290⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        291⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        292⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        293⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        294⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        295⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        296⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        297⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        298⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        299⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        300⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        301⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        302⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        303⤵
        
        PID:7804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        304⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        305⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        306⤵
        
        PID:7844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        307⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        308⤵
        
        PID:7868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        309⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        310⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        311⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        312⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        313⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        314⤵
        
        PID:7952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        315⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        316⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        317⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        318⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        319⤵
        
        PID:8020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        320⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        321⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        322⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        323⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        324⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        325⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        326⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        327⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        328⤵
        
        PID:8148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        329⤵
        
        PID:8160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        330⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        331⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        332⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        333⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        334⤵
        
        PID:8236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        335⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        336⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        337⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        338⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        339⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        340⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        341⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        342⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        343⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        344⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        345⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        346⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        347⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        348⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        349⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        350⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        351⤵
        
        PID:8580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        352⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        353⤵
        
        PID:8628

C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
1⤵
PID:8640
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
  2⤵
  PID:8656
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
    3⤵
    PID:8672
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
      4⤵
      PID:8688
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        5⤵
        
        PID:8712
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        6⤵
        
        PID:8728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        7⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        8⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        9⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        10⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        11⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        12⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        13⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        14⤵
        
        PID:8852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        15⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        16⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        17⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        18⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        19⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        20⤵
        
        PID:8944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        21⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        22⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        23⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        24⤵
        
        PID:9004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        25⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        26⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        27⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        28⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        29⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        30⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        31⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        32⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        33⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        34⤵
        
        PID:9164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        35⤵
        
        PID:9180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        36⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        37⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        38⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        39⤵
        
        PID:9244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        40⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        41⤵
        
        PID:9276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        42⤵
        
        PID:9292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        43⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        44⤵
        
        PID:9324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        45⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        46⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        47⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        48⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        49⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        50⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        51⤵
        
        PID:9440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        52⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        53⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        54⤵
        
        PID:9492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        55⤵
        
        PID:9508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        56⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        57⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        58⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        59⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        60⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        61⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        62⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        63⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        64⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        65⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        66⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        67⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        68⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        69⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        70⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        71⤵
        
        PID:9752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        72⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        73⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        74⤵
        
        PID:9800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        75⤵
        
        PID:9828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        76⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        77⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        78⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        79⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        80⤵
        
        PID:9916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        81⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        82⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        83⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        84⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        85⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        86⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        87⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        88⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        89⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        90⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        91⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        92⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        93⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        94⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        95⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        96⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        97⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        98⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        99⤵
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        100⤵
        
        PID:3160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        101⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        102⤵
        
        PID:4164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        103⤵
        
        PID:3804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        104⤵
        
        PID:1924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        105⤵
        
        PID:4220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        106⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        107⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        108⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        109⤵
        
        PID:10276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        110⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        111⤵
        
        PID:10308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        112⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        113⤵
        
        PID:10340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        114⤵
        
        PID:10356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        115⤵
        
        PID:10368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        116⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        117⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        118⤵
        
        PID:10412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        119⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        120⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        121⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        122⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        123⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        124⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        125⤵
        
        PID:10516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        126⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        127⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        128⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        129⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        130⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        131⤵
        
        PID:10604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        132⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        133⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        134⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        135⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        136⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        137⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        138⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        139⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        140⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        141⤵
        
        PID:10752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        142⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        143⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        144⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        145⤵
        
        PID:10816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        146⤵
        
        PID:10832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        147⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        148⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        149⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        150⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        151⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        152⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        153⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        154⤵
        
        PID:10956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        155⤵
        
        PID:10972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        156⤵
        
        PID:10988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        157⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        158⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        159⤵
        
        PID:11036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        160⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        161⤵
        
        PID:11068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        162⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        163⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        164⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        165⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        166⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        167⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        168⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        169⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        170⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        171⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        172⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        173⤵
        
        PID:11232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        174⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        175⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        176⤵
        
        PID:11268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        177⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        178⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        179⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        180⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        181⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        182⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        183⤵
        
        PID:11364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        184⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        185⤵
        
        PID:11400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        186⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        187⤵
        
        PID:11432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        188⤵
        
        PID:11444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        189⤵
        
        PID:11460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        190⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        191⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        192⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        193⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        194⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        195⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        196⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        197⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        198⤵
        
        PID:11588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        199⤵
        
        PID:11604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        200⤵
        
        PID:11616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        201⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        202⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        203⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        204⤵
        
        PID:11680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        205⤵
        
        PID:11692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        206⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        207⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        208⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        209⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        210⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        211⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        212⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        213⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        214⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        215⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        216⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        217⤵
        
        PID:11856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        218⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        219⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        220⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        221⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        222⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        223⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        224⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        225⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        226⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        227⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        228⤵
        
        PID:12000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        229⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        230⤵
        
        PID:12024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        231⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        232⤵
        
        PID:12048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        233⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        234⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        235⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        236⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        237⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        238⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        239⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        240⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        241⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        242⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        243⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        244⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        245⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        246⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        247⤵
        
        PID:12252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        248⤵
        
        PID:12264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        249⤵
        
        PID:12280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        250⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        251⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        252⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        253⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        254⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        255⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        256⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        257⤵
        
        PID:12396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        258⤵
        
        PID:12408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        259⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        260⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        261⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        262⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        263⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        264⤵
        
        PID:12484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        265⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        266⤵
        
        PID:12508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        267⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        268⤵
        
        PID:12536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        269⤵
        
        PID:12548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        270⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        271⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        272⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        273⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        274⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        275⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        276⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        277⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        278⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        279⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        280⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        281⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        282⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        283⤵
        
        PID:12744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        284⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        285⤵
        
        PID:12772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        286⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        287⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        288⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        289⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        290⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        291⤵
        
        PID:12852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        292⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        293⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        294⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        295⤵
        
        PID:12904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        296⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        297⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        298⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        299⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        300⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        301⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        302⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        303⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        304⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        305⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        306⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        307⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        308⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        309⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        310⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        311⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        312⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        313⤵
        
        PID:13148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        314⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        315⤵
        
        PID:13176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        316⤵
        
        PID:13192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        317⤵
        
        PID:13204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        318⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        319⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        320⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        321⤵
        
        PID:13256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        322⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        323⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        324⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        325⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        326⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        327⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        328⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        329⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        330⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        331⤵
        
        PID:13404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        332⤵
        
        PID:13416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        333⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        334⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        335⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        336⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        337⤵
        
        PID:13480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        338⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        339⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        340⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        341⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        342⤵
        
        PID:13552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        343⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        344⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        345⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        346⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        347⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        348⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        349⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        350⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        351⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        352⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        353⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        354⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        355⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        356⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        357⤵
        
        PID:13764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        358⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        359⤵
        
        PID:13788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        360⤵
        
        PID:13800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        361⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        362⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        363⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        364⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        365⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        366⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        367⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        368⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        369⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        370⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        371⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        372⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        373⤵
        
        PID:13972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        374⤵
        
        PID:13984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        375⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        376⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        377⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        378⤵
        
        PID:14040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        379⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        380⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        381⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        382⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        383⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        384⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        385⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        386⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        387⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        388⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        389⤵
        
        PID:14212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        390⤵
        
        PID:14228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        391⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        392⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        393⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        394⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        395⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        396⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        397⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        398⤵
        
        PID:14340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        399⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        400⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        401⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        402⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        403⤵
        
        PID:14408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        404⤵
        
        PID:14424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        405⤵
        
        PID:14436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        406⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        407⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        408⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        409⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        410⤵
        
        PID:14500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        411⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        412⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        413⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        414⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        415⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        416⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        417⤵
        
        PID:14588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        418⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        419⤵
        
        PID:14612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        420⤵
        
        PID:14624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        421⤵
        
        PID:14640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        422⤵
        
        PID:14652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        423⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        424⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        425⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        426⤵
        
        PID:14700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        427⤵
        
        PID:14712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        428⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        429⤵
        
        PID:14740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        430⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        431⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        432⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        433⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        434⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        435⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        436⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        437⤵
        
        PID:14836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        438⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        439⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        440⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        441⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        442⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        443⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        444⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        445⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        446⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        447⤵
        
        PID:14980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        448⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        449⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        450⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        451⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        452⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        453⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        454⤵
        
        PID:15072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        455⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        456⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        457⤵
        
        PID:15116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        458⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        459⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        460⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        461⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        462⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        463⤵
        
        PID:15196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        464⤵
        
        PID:15208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        465⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        466⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        467⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        468⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        469⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        470⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        471⤵
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        472⤵
        
        PID:15340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        473⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        474⤵
        
        PID:1004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        475⤵
        
        PID:15368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        476⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        477⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        478⤵
        
        PID:15412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        479⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        480⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        481⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        482⤵
        
        PID:15476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        483⤵
        
        PID:15488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        484⤵
        
        PID:15504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        485⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        486⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        487⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        488⤵
        
        PID:15556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        489⤵
        
        PID:15568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        490⤵
        
        PID:15584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        491⤵
        
        PID:15596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        492⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        493⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        494⤵
        
        PID:15632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        495⤵
        
        PID:15648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        496⤵
        
        PID:15660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        497⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        498⤵
        
        PID:15684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        499⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        500⤵
        
        PID:15712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        501⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        502⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        503⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        504⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        505⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        506⤵
        
        PID:15800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        507⤵
        
        PID:15812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        508⤵
        
        PID:15828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        509⤵
        
        PID:15844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        510⤵
        
        PID:15856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        511⤵
        
        PID:15872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        512⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        513⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        514⤵
        
        PID:15908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        515⤵
        
        PID:15920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        516⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        517⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        518⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        519⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        520⤵
        
        PID:15984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        521⤵
        
        PID:15996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        522⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        523⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        524⤵
        
        PID:16036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        525⤵
        
        PID:16048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        526⤵
        
        PID:16064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        527⤵
        
        PID:16080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        528⤵
        
        PID:16092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        529⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        530⤵
        
        PID:16116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        531⤵
        
        PID:16128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1476-55-0x0000000000B80000-0x0000000000CD4000-memory.dll,#1
        532⤵
        
        PID:16140

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads